BGP联盟和团体属性实验

目录

一、实验拓扑

二、实验要求

三、实验步骤

1、IP地址配置

2、ospf配置

3、BGP建邻

4、宣告网段

5、配置团体属性

---

一、实验拓扑

二、实验要求

1、按照图示配 IP 地址，R2，R3，R4，R5分别配 Loopbacke 口地址作为OSPF的Route_id和IBGP邻居地址，地址格式为 x.x.x.x/32，x为设备编号。R1 上配置Loopback口模拟业务网段

2、As 200内部配置OSPF，仅用于实现BGP的TCP可达

3、AS 200内部建立BGP联盟，联盟A为 AS 200，包含2个子AS为 AS 6501 和 AS 65002。R1和R2建立EBGP邻居，R4 和 R6 建立 EBGP邻居，R2和R4建立EBGP邻居，子AS内部建立IBGP全连接

4、R1把业务网段宣告进BGP，要求AS 200内部所有路由器都能够学习到该业务网段路由

5、通过配置团体属性，使 192.168.0.0/24 网段路由只能传递至 AS 200

三、实验步骤

1、IP地址配置

[AR1]int g0/0/0
[AR1-GigabitEthernet0/0/0]ip add 100.1.1.1 24
[AR1-GigabitEthernet0/0/0]int l0
[AR1-LoopBack0]ip add 192.168.0.1 24
[AR1-LoopBack0]int l1
[AR1-LoopBack1]ip add 192.168.1.1 24

[AR2]int g0/0/0
[AR2-GigabitEthernet0/0/0]ip add 100.1.1.2 24
[AR2-GigabitEthernet0/0/0]int g0/0/1
[AR2-GigabitEthernet0/0/1]ip add 100.2.2.2 24
[AR2-GigabitEthernet0/0/1]int g0/0/2
[AR2-GigabitEthernet0/0/2]ip add 100.3.3.2 24
[AR2]int l0
[AR2-LoopBack0]ip add 2.2.2.2 32

[AR3]int g0/0/0
[AR3-GigabitEthernet0/0/0]ip add 100.3.3.3 24
[AR3-GigabitEthernet0/0/0]int g0/0/1
[AR3-GigabitEthernet0/0/1]ip add 100.5.5.3 24
[AR3-GigabitEthernet0/0/1]int l0
[AR3-LoopBack0]ip add 3.3.3.3 32

[AR4]int g0/0/0
[AR4-GigabitEthernet0/0/0]ip add 100.2.2.4 24
[AR4-GigabitEthernet0/0/0]int g0/0/1
[AR4-GigabitEthernet0/0/1]ip add 100.6.6.4 24
[AR4-GigabitEthernet0/0/1]int g0/0/2
[AR4-GigabitEthernet0/0/2]ip add 100.4.4.4 24
[AR4-GigabitEthernet0/0/2]int l0
[AR4-LoopBack0]ip add 4.4.4.4 32

[AR5]int g0/0/0
[AR5-GigabitEthernet0/0/0]ip add 100.5.5.5 24
[AR5-GigabitEthernet0/0/0]int g0/0/1
[AR5-GigabitEthernet0/0/1]ip add 100.4.4.5 24
[AR5-GigabitEthernet0/0/1]int l0
[AR5-LoopBack0]ip add 5.5.5.5 32

[AR6]int g0/0/0
[AR6-GigabitEthernet0/0/0]ip add 100.6.6.6 24

2、ospf配置

[AR2]ospf 1 router-id 2.2.2.2
[AR2-ospf-1]a 0
[AR2-ospf-1-area-0.0.0.0]net 100.2.2.0 0.0.0.255
[AR2-ospf-1-area-0.0.0.0]net 100.3.3.0 0.0.0.255
[AR2-ospf-1-area-0.0.0.0]net 2.2.2.2 0.0.0.0
 
[AR3]ospf 1 router-id 3.3.3.3
[AR3-ospf-1]a 0
[AR3-ospf-1-area-0.0.0.0]net 0.0.0.0 255.255.255.255 # 懒人宣告法
 
[AR4]ospf 1 router-id 4.4.4.4
[AR4-ospf-1]a 0
[AR4-ospf-1-area-0.0.0.0]net 100.2.2.0 0.0.0.255
[AR4-ospf-1-area-0.0.0.0]net 100.4.4.0 0.0.0.255
[AR4-ospf-1-area-0.0.0.0]net 4.4.4.4 0.0.0.0
 
[AR5]ospf 1 router-id 5.5.5.5
[AR5-ospf-1]a 0
[AR5-ospf-1-area-0.0.0.0]net 0.0.0.0 255.255.255.255

3、BGP建邻

[AR1]bgp 100
[AR1-bgp]peer 100.1.1.2 as-number 200
 
[AR2]bgp 65001                                # 申明联盟AS
[AR2-bgp]confederation id 200
[AR2-bgp]confederation peer-as 65002          # 申明联盟同伴
[AR2-bgp]peer 100.1.1.1 as-number 100
[AR2-bgp]peer 3.3.3.3 as-number 65001
[AR2-bgp]peer 3.3.3.3 connect-interface l0
[AR2-bgp]peer 3.3.3.3 next-hop-local 
[AR2-bgp]peer 100.2.2.4 as-number 65002
[AR2-bgp]peer 100.2.2.4 next-hop-local
 
[AR3]bgp 65001
[AR3-bgp]confederation id 200
[AR3-bgp]peer 2.2.2.2 as 65001
[AR3-bgp]peer 2.2.2.2 connect-interface l0
 
[AR4]bgp 65002
[AR4-bgp]confederation id 200
[AR4-bgp]confederation peer-as 65001
[AR4-bgp]peer 100.2.2.2 as-number 65001
[AR4-bgp]peer 100.2.2.2 next-hop-local 
[AR4-bgp]peer 100.6.6.6 as-number 300
[AR4-bgp]peer 5.5.5.5 as-number 65002
[AR4-bgp]peer 5.5.5.5 connect-interface l0	
[AR4-bgp]peer 5.5.5.5 next-hop-local 
 
[AR5]bgp 65002
[AR5-bgp]confederation id 200
[AR5-bgp]peer 4.4.4.4 as-number 65002
[AR5-bgp]peer 4.4.4.4 connect-interface l0
 
[AR6]bgp 300
[AR6-bgp]peer 100.6.6.4 as-number 200

4、宣告网段

[AR1]bgp 100
[AR1-bgp]net 192.168.0.0 24
[AR1-bgp]net 192.168.1.0 24

5、配置团体属性

[AR1]acl 2000
[AR1-acl-basic-2000]rule permit  source 192.168.0.0 0.0.0.255
[AR1]route-policy com permit node 10
[AR1-route-policy]if-match acl 2000
[AR1-route-policy]apply community no-export	
[AR1]route-policy com permit node 20
[AR1]bgp 100
[AR1-bgp]peer 100.1.1.2 route-policy com export 
[AR1-bgp]peer 100.1.1.2 advertise-community
[AR2-bgp]peer 100.2.2.4 advertise-community