H3C S5560S-EI Series Скачать руководство пользователя | Manualshive

Страница: 27 / 47

background image

20

Figure 5 Network diagram

Procedure

1.

Create VPN instances on the MCE and PE 1, and bind the VPN instances to VLAN interfaces.
For the configuration procedure, see "

Example: Configuring the MCE that uses OSPF to

advertise VPN routes to the PE

."

2.

Configure routing between the MCE and VPN sites:

# Enable an OSPF process on the devices in the two VPNs, and advertise the subnets. (Details
not shown.)

# Configure OSPF on the MCE, and bind OSPF process 10 to VPN instance

vpn1

to learn the

routes of VPN 1.

<MCE> system-view

[MCE] ospf 10 router-id 10.10.10.1 vpn-instance vpn1

[MCE-ospf-10] area 0

[MCE-ospf-10-area-0.0.0.0] network 10.214.10.0 0.0.0.255

[MCE-ospf-10-area-0.0.0.0] quit

[MCE-ospf-10] quit

# Display the routing table of VPN 1 on the MCE.

[MCE] display ip routing-table vpn-instance vpn1

Destinations : 13 Routes : 13

Destination/Mask Proto Pre Cost NextHop Interface

0.0.0.0/32 Direct 0 0 127.0.0.1 InLoop0

10.214.10.0/24 Direct 0 0 10.214.10.3 Vlan10

10.214.10.0/32 Direct 0 0 10.214.10.3 Vlan10

CE 2

VPN 1

Site 2

CE 1

VPN 2

Site 1

PE 1

PE 3

PE 2

VPN 2

192.168.10.0/24

VR 2

VPN 1

192.168.0.0/24

VR 1

MCE

Vlan-int10

10.214.10.3/24

Vlan-int30: 30.1.1.2/24
Vlan-int40: 40.1.1.2/24

Vlan-int30: 30.1.1.1/24
Vlan-int40: 40.1.1.1/24

Vlan-int20
10.214.20.3/24

«
...
25
26
27
28
29
...
»

Содержание S5560S-EI Series

Страница 1: ...ter H3C S5560S SI switch series Release 6310 and later H3C S5500V3 SI switch series Release 6310 and later H3C MS4520V2 switch series MS4520V2 28S and MS4520V2 24TP switches Release 6310 and later H3C...

Страница 2: ...H3C Technologies Co Ltd any trademarks that may be mentioned in this document are the property of their respective owners Notice The information in this document is subject to change without notice A...

Страница 3: ...at are optional x y Braces enclose a set of required syntax choices separated by vertical bars from which you select one x y Square brackets enclose a set of optional syntax choices separated by verti...

Страница 4: ...s a Layer 2 or Layer 3 switch or a router that supports Layer 2 forwarding and other Layer 2 features Represents an access controller a unified wired WLAN module or the access controller engine on a u...

Страница 5: ...Documentation feedback You can e mail your comments about product documentation to info h3c com We appreciate your comments...

Страница 6: ...ce commands for MCE 14 MCE configuration examples 14 Example Configuring the MCE that uses OSPF to advertise VPN routes to the PE 14 Example Configuring the MCE that uses EBGP to advertise VPN routes...

Страница 7: ...ii Example Configuring IPv6 MCE 34...

Страница 8: ...evices Using a common CE for multiple VPNs cannot ensure data security because the VPNs use the same routing table The MCE feature offers balance between cost and security It creates multiple VPN inst...

Страница 9: ...e classified into different sets by policies Only the sites in the same set can access each other through the provider network Such a set is called a VPN VPN instance VPN instances implement route iso...

Страница 10: ...e global uniqueness for a VPN IPv4 address do not set the Administrator subfield to any private AS number or private IP address Route target attribute MPLS L3VPN uses route target community attributes...

Страница 11: ...ment dynamic IP assignment for DHCP clients in private networks you can configure DHCP server or DHCP relay agent on the MCE When the MCE functions as the DHCP server the IP addresses assigned to diff...

Страница 12: ...nstance 5 Optional Configure a VPN ID for the VPN instance vpn id vpn id By default no VPN ID is configured for a VPN instance Associating a VPN instance with a Layer 3 interface 1 Enter system view s...

Страница 13: ...nity By default no route targets are configured 4 Set the maximum number of active routes routing table limit number warn threshold simply alert By default the number of active routes in a VPN instanc...

Страница 14: ...IP process Procedure 1 Enter system view system view 2 Create a RIP process for a VPN instance and enter RIP view rip process id vpn instance vpn instance name A RIP process can belong to only one VPN...

Страница 15: ...belongs to any area nor runs OSPF Configuring IS IS between an MCE and a VPN site About IS IS between an MCE and a VPN site Binding IS IS processes to VPN instances can isolate routes of different VP...

Страница 16: ...VPN instance view are the same as those in BGP instance view For more information see Layer 3 IP Routing Configuration Guide 4 Configure the VPN site as an EBGP peer peer group name ipv4 address mask...

Страница 17: ...f each VPN instance on the VPN site Restrictions and guidelines You must configure a VPN site to advertise VPN network addresses to the connected MCE Configuring the MCE 1 Enter system view system vie...

Страница 18: ...eers 6 Redistribute the IGP routes of the VPN into BGP import route protocol process id all processes allow direct med med value route policy route policy name By default no routes are redistributed i...

Страница 19: ...or a VPN instance and enter OSPF view ospf process id router id router id vpn instance vpn instance name 3 Disable routing loop detection vpn instance capability simple By default routing loop detecti...

Страница 20: ...nterface isis enable process id By default no IS IS process is enabled on the interface Configuring EBGP between an MCE and a PE 1 Enter system view system view 2 Enter BGP instance view bgp as number...

Страница 21: ...rt route protocol process id all processes allow direct med med value route policy route policy name By default no routes are redistributed into BGP Display and maintenance commands for MCE Execute di...

Страница 22: ...10 to VPN instance vpn1 and configure an IP address for the VLAN interface MCE interface vlan interface 10 MCE Vlan interface10 ip binding vpn instance vpn1 MCE Vlan interface10 ip address 10 214 10 3...

Страница 23: ...0 2 Bind the static route to VPN instance vpn1 MCE ip route static vpn instance vpn1 192 168 0 0 24 10 214 10 2 On the MCE display the routing information maintained for VPN instance vpn1 MCE display...

Страница 24: ...Direct 0 0 10 214 20 3 Vlan20 127 0 0 0 8 Direct 0 0 127 0 0 1 InLoop0 127 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 127 0 0 1 32 Direct 0 0 127 0 0 1 InLoop0 127 255 255 255 32 Direct 0 0 127 0 0 1 InLoo...

Страница 25: ...lity simple Set the domain ID to 10 MCE ospf 10 domain id 10 On the MCE advertise subnet 30 1 1 0 in area 0 and redistribute the static route of VPN 1 MCE ospf 10 area 0 MCE ospf 10 area 0 0 0 0 netwo...

Страница 26: ...rect 0 0 40 1 1 2 Vlan40 40 1 1 2 32 Direct 0 0 127 0 0 1 InLoop0 40 1 1 255 32 Direct 0 0 40 1 1 2 Vlan40 127 0 0 0 8 Direct 0 0 127 0 0 1 InLoop0 127 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 127 0 0 1...

Страница 27: ...10 router id 10 10 10 1 vpn instance vpn1 MCE ospf 10 area 0 MCE ospf 10 area 0 0 0 0 network 10 214 10 0 0 0 0 255 MCE ospf 10 area 0 0 0 0 quit MCE ospf 10 quit Display the routing table of VPN 1 on...

Страница 28: ...32 Direct 0 0 10 214 20 3 Vlan20 10 214 20 3 32 Direct 0 0 127 0 0 1 InLoop0 10 214 20 255 32 Direct 0 0 10 214 20 3 Vlan20 127 0 0 0 8 Direct 0 0 127 0 0 1 InLoop0 127 0 0 0 32 Direct 0 0 127 0 0 1 I...

Страница 29: ...2 Vlan30 127 0 0 0 8 Direct 0 0 127 0 0 1 InLoop0 127 0 0 0 32 Direct 0 0 127 0 0 1 InLoop0 127 0 0 1 32 Direct 0 0 127 0 0 1 InLoop0 127 255 255 255 32 Direct 0 0 127 0 0 1 InLoop0 192 168 0 0 24 BG...

Страница 30: ...23 255 255 255 255 32 Direct 0 0 127 0 0 1 InLoop0 The MCE has redistributed the OSPF routes of the two VPN instances into the EBGP routing tables of PE 1...

Страница 31: ...routing protocols to save system resources IPv6 MCE tasks at a glance To configure IPv6 MCE perform the following tasks 1 Configuring VPN instances Perform the following VPN instance tasks on PEs and...

Страница 32: ...e with an interface or disassociating a VPN instance from an interface will clear the IP address and routing protocol settings of the interface Configuration of this command deletes the IPv6 address o...

Страница 33: ...MCE and a VPN site About IPv6 static routing between an MCE and a VPN site An MCE can reach a VPN site through an IPv6 static route IPv6 static routing on a traditional CE is globally effective and d...

Страница 34: ...tes are redistributed into RIPng 4 Return to system view quit 5 Enter interface view interface interface type interface number 6 Enable RIPng on the interface ripng process id enable By default RIPng...

Страница 35: ...ration on the MCE On a VPN site configure common IPv6 IS IS Procedure 1 Enter system view system view 2 Create an IPv6 IS IS process for a VPN instance and enter IS IS view isis process id vpn instanc...

Страница 36: ...unicast 6 Enable BGP to exchange IPv6 unicast routes with the specified peer peer group name ipv6 address prefix length enable By default BGP does not exchange IPv6 unicast routes with any peer 7 Redi...

Страница 37: ...nge IPv6 unicast routes with the peer peer group name ipv6 address prefix length enable By default BGP does not exchange IPv6 unicast routes with any peer 7 Optional Configure the local device as the...

Страница 38: ...een the MCE and the PE Perform the following configurations on the MCE For information about configuring the PE see the documentation for the PE Configuring IPv6 static routing between an MCE and a PE...

Страница 39: ...t route protocol as number process id all processes allow ibgp allow direct cost cost value nssa only route policy route policy name tag tag type type By default no routes are redistributed into OSPFv...

Страница 40: ...r BGP VPN instance view ip vpn instance vpn instance name 4 Configure the PE as an EBGP peer peer group name ipv6 address prefix length as number as number 5 Enter BGP VPN IPv6 unicast address family...

Страница 41: ...no routes are redistributed into BGP Display and maintenance commands for IPv6 MCE Execute display commands in any view Task Command Display VPN instance information display ip vpn instance instance...

Страница 42: ...stance vpn2 quit Bind VLAN interface 10 to VPN instance vpn1 and configure an IPv6 address for the VLAN interface MCE interface vlan interface 10 MCE Vlan interface10 ip binding vpn instance vpn1 MCE...

Страница 43: ...ng 2001 1 1 VR1 system view VR1 ipv6 route static 0 2001 1 1 On the MCE configure an IPv6 static route to 2012 1 64 with the next hop 2001 1 2 Bind the static route to VPN instance vpn1 MCE ipv6 route...

Страница 44: ...erence 0 Interface NULL0 Cost 0 Destination FF00 8 Protocol Direct NextHop Preference 0 Interface NULL0 Cost 0 MCE display ipv6 routing table vpn instance vpn2 Destinations 6 Routes 6 Destination 1 12...

Страница 45: ...e PE1 interface vlan interface 30 PE1 Vlan interface30 ip binding vpn instance vpn1 PE1 Vlan interface30 ipv6 address 30 2 64 PE1 Vlan interface30 quit Bind VLAN interface 40 to VPN instance vpn2 and...

Страница 46: ...rface InLoop0 Cost 0 Destination 30 64 Protocol Direct NextHop Preference 0 Interface Vlan30 Cost 0 Destination 30 2 128 Protocol Direct NextHop 1 Preference 0 Interface InLoop0 Cost 0 Destination 201...

Страница 47: ..._ASE2 NextHop FE80 200 FF FE0F 5 Preference 150 Interface Vlan40 Cost 1 Destination FE80 10 Protocol Direct NextHop Preference 0 Interface NULL0 Cost 0 Destination FF00 8 Protocol Direct NextHop Prefe...

Отзывы:

Нет отзывов

Похожие инструкции для S5560S-EI Series

Бренд: Camozzi Страницы: 2

Crouse-Hinds CEAG KO

Бренд: Cooper Страницы: 12

Бренд: Linksys Страницы: 3

Бренд: Tripp Lite Страницы: 80

MatrixPRO 8x8 DVI

Бренд: Barco Страницы: 2

Бренд: FS Страницы: 41

Бренд: HIKVISION Страницы: 5

Бренд: Cable Electronics Страницы: 16

Бренд: I-Tech Страницы: 19

Бренд: Linkskey Страницы: 2

Бренд: Radio Shack Страницы: 8

Бренд: Metra Electronics Страницы: 8

Бренд: Generac Power Systems Страницы: 2

OSD2251P Series

Бренд: Optical Systems Design Страницы: 48

Бренд: Extron electronics Страницы: 6

Бренд: Net Optics Страницы: 20

PSEN ma2.1p/ATEX

Бренд: Pilz Страницы: 8

Бренд: SmartThings Страницы: 2

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды