溫馨提示×

您好,登錄后才能下訂單哦!

密碼登錄×
登錄注冊(cè)×
其他方式登錄
點(diǎn)擊 登錄注冊(cè) 即表示同意《億速云用戶服務(wù)條款》

BGP團(tuán)體屬性(實(shí)驗(yàn))

發(fā)布時(shí)間:2020-03-20 11:29:13 來(lái)源:網(wǎng)絡(luò) 閱讀:1160 作者:717465139 欄目:網(wǎng)絡(luò)安全

根據(jù)BGP路由的團(tuán)體屬性設(shè)置BGP路由策略


BGP團(tuán)體屬性(實(shí)驗(yàn))

 

R1配置:

Loopback0 1.1.1.1

Loopback1 192.168.1.1/24

Loopback2 192.168.2.1/24

Loopback3 192.168.3.1/24

Loopback4 192.168.4.1/24

E1/0 10.1.12.1

R2配置:

Loopback 2.2.2.2

E1/0 10.1.12.2

 

配置IGPRIP)保持連通性:

R1配置:

router rip

 version 2

 network 1.0.0.0

 network 10.0.0.0

 network 192.168.1.0

 network 192.168.2.0

 network 192.168.3.0

 network 192.168.4.0

 no auto-summary

R2配置:

router rip

 version 2

 network 2.0.0.0

 network 10.0.0.0

 no auto-summary

 

開始配置BGP(EBGP)

R1

router bgp 109

 bgp router-id 1.1.1.1

 bgp log-neighbor-changes

 network 1.1.1.1 mask 255.255.255.255

 network 10.1.12.0 mask 255.255.255.0

 network 192.168.1.0

 network 192.168.2.0

 network 192.168.3.0

 network 192.168.4.0

 neighbor 10.1.12.2 remote-as 110

 

R2

router bgp 110

 bgp router-id 2.2.2.2

 bgp log-neighbor-changes

 network 1.1.1.1 mask 255.255.255.255

 network 10.1.12.0 mask 255.255.255.0

 neighbor 10.1.12.1 remote-as 109

 neighbor 10.1.12.1 route-map set_local_pref in

 

R2#sh ip bgp

BGP table version is 7, local router ID is 2.2.2.2

Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,

              r RIB-failure, S Stale, m multipath, b backup-path, f RT-Filter,

              x best-external, a additional-path, c RIB-compressed,

Origin codes: i - IGP, e - EGP, ? - incomplete

RPKI validation codes: V valid, I invalid, N Not found

 

     Network          Next Hop            Metric LocPrf Weight Path

 *>  1.1.1.1/32       10.1.12.1                1         32768 i

 *>  10.1.12.0/24     0.0.0.0                  0         32768 i

 *>  192.168.1.0      10.1.12.1                0    200      0 109 i

 *>  192.168.2.0      10.1.12.1                0    200      0 109 i

 *>  192.168.3.0      10.1.12.1                0    150      0 109 i

 *>  192.168.4.0      10.1.12.1                0    150      0 109 i

 

 

R1配置團(tuán)體屬性

第一步:開啟路由器支持團(tuán)體屬性

ip bgp-community new-format

 

第二步,配置prefix-list列表

ip prefix-list 1 permit 192.168.1.0/24

ip prefix-list 1 permit 192.168.2.0/24

ip prefix-list 2 permit 192.168.3.0/24

ip prefix-list 2 permit 192.168.4.0/24

 

第三步,配置route-map set_community

route-map set_community permit 10

 match ip address prefix-list 1

 set community 109:1

route-map set_community permit 20

 match ip address prefix-list 2

 set community 109:2

 

第四步,在BGP當(dāng)中調(diào)用

neighbor 10.1.12.2 send-community

neighbor 10.1.12.2 route-map set_community out

 

R2上配置route-map set_local_pref,對(duì)R1傳遞過(guò)來(lái)的帶有團(tuán)體屬性的路由進(jìn)行匹配,并附上特定的local-preference

第一步:開啟路由器支持團(tuán)體屬性

ip bgp-community new-format

 

第二步:設(shè)置團(tuán)體屬性列表

ip prefix-list 1 seq 5 permit 192.168.2.0/24

ip prefix-list 1 seq 10 permit 192.168.4.0/24

 

第三步:

route-map set_local_pref permit 10

 match community 1

 set local-preference 200

route-map set_local_pref permit 20

 match community 2

 set local-preference 150

 

第四步:在BGP當(dāng)中調(diào)用route-map set_local_pref

neighbor 10.1.12.1 route-map set_local_pref in

 

驗(yàn)證配置:

R2#sh ip bgp

BGP table version is 7, local router ID is 2.2.2.2

Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,

              r RIB-failure, S Stale, m multipath, b backup-path, f RT-Filter,

              x best-external, a additional-path, c RIB-compressed,

Origin codes: i - IGP, e - EGP, ? - incomplete

RPKI validation codes: V valid, I invalid, N Not found

 

     Network          Next Hop            Metric LocPrf Weight Path

 *>  1.1.1.1/32       10.1.12.1                1         32768 i

 *>  10.1.12.0/24     0.0.0.0                  0         32768 i

 *>  192.168.1.0      10.1.12.1                0    200      0 109 i

 *>  192.168.2.0      10.1.12.1                0    200      0 109 i

 *>  192.168.3.0      10.1.12.1                0    150      0 109 i

 *>  192.168.4.0      10.1.12.1                0    150      0 109 i

 

R2#sh ip bgp 192.168.1.0

BGP routing table entry for 192.168.1.0/24, version 2

Paths: (1 available, best #1, table default)

  Not advertised to any peer

  Refresh Epoch 1

  109

    10.1.12.1 from 10.1.12.1 (1.1.1.1)

      Origin IGP, metric 0, localpref 200, valid, external, best

      Community: 109:1

      rx pathid: 0, tx pathid: 0x0

 

R1學(xué)來(lái)的團(tuán)體屬性為Community: 109:1的路由設(shè)置本地優(yōu)先級(jí)為200.

 

R2#sh ip bgp 192.168.3.0

BGP routing table entry for 192.168.3.0/24, version 4

Paths: (1 available, best #1, table default)

  Not advertised to any peer

  Refresh Epoch 1

  109

    10.1.12.1 from 10.1.12.1 (1.1.1.1)

      Origin IGP, metric 0, localpref 150, valid, external, best

      Community: 109:2

      rx pathid: 0, tx pathid: 0x0

 

R1學(xué)來(lái)的團(tuán)體屬性為Community: 109:2的路由設(shè)置本地優(yōu)先級(jí)為150.

沒(méi)有被匹配的路由還是以默認(rèn)值傳遞。

向AI問(wèn)一下細(xì)節(jié)

免責(zé)聲明:本站發(fā)布的內(nèi)容(圖片、視頻和文字)以原創(chuàng)、轉(zhuǎn)載和分享為主,文章觀點(diǎn)不代表本網(wǎng)站立場(chǎng),如果涉及侵權(quán)請(qǐng)聯(lián)系站長(zhǎng)郵箱:is@yisu.com進(jìn)行舉報(bào),并提供相關(guān)證據(jù),一經(jīng)查實(shí),將立刻刪除涉嫌侵權(quán)內(nèi)容。

AI