实验要求
R1-R2-R3-R4-R5 运行RIPV2
R6-R7运行RIPV1
1.使用合理IP地址规划网络,各自创建环回接口
2.R1创建环回 172.16.1.1/24 172.16.2.1/24 172.16.3.1/24
3.要求R3使用R2访问R1环回
4.减少路由条目数量,增加路由传递安全性
5.R5创建一个环回模拟运营商,不能通告
6.R1 telnet R2环回实际telnet 到R7上
7.R6-R7路由器不能学习到达R1环回路由
8.全网可达
IP地址划分如下
相关配置
AR1
interface GigabitEthernet0/0/0
ip address 192.168.1.1 255.255.255.252
rip summary-address 172.16.0.0 255.255.252.0
interface GigabitEthernet0/0/1
ip address 192.168.1.9 255.255.255.252
rip summary-address 172.16.0.0 255.255.252.0
interface GigabitEthernet0/0/2
interface NULL0
interface LoopBack0
ip address 172.16.1.1 255.255.255.0
interface LoopBack1
ip address 172.16.2.1 255.255.255.0
interface LoopBack2
ip address 172.16.3.1 255.255.255.0
rip 1
undo summary
version 2
network 192.168.1.0
network 172.16.0.0
user-interface con 0
authentication-mode password
user-interface vty 0 4
authentication-mode aaa
user-interface vty 16 20
AR2
interface GigabitEthernet0/0/0
ip address 192.168.1.2 255.255.255.252
nat server protocol tcp global interface LoopBack 0 telnet inside 192.168.1.161
telnet
interface GigabitEthernet0/0/1
ip address 192.168.1.5 255.255.255.252
interface GigabitEthernet0/0/2
interface NULL0
interface LoopBack0
ip address 192.168.1.33 255.255.255.224
interface LoopBack1
ip address 2.2.2.2 255.255.255.0
rip 1
undo summary
version 2
network 192.168.1.0
AR3
interface GigabitEthernet0/0/0
ip address 192.168.1.6 255.255.255.252
interface GigabitEthernet0/0/1
ip address 192.168.1.14 255.255.255.252
rip metricin 1
interface GigabitEthernet0/0/2
interface NULL0
interface LoopBack0
ip address 192.168.1.97 255.255.255.224
rip 1
undo summary
version 2
network 192.168.1.0
AR4
interface GigabitEthernet0/0/0
ip address 192.168.1.10 255.255.255.252
interface GigabitEthernet0/0/1
ip address 192.168.1.13 255.255.255.252
interface GigabitEthernet0/0/2
ip address 192.168.1.21 255.255.255.252
interface GigabitEthernet4/0/0
ip address 192.168.1.17 255.255.255.252
rip authentication-mode md5 usual cipher %
%
]V
t
Y
n
s
A
(
T
(
G
N
Q
5
@
w
/
<
′
7
/
tYnsA(T(GN_Q5@w_/<'7/%
tYnsA(T(GNQ5@w/<′7/%$
interface NULL0
interface LoopBack0
ip address 192.168.1.65 255.255.255.224
rip 1
undo summary
version 2
network 192.168.1.0
AR5
interface LoopBack0
ip address 5.5.5.5 255.255.255.0
rip 1
undo summary
default-route originate
version 2
network 192.168.1.0
network 172.16.0.0
AR6
interface GigabitEthernet0/0/0
ip address 192.168.1.22 255.255.255.252
rip version 2 multicast
interface GigabitEthernet0/0/1
ip address 192.168.1.25 255.255.255.252
interface GigabitEthernet0/0/2
interface NULL0
interface LoopBack0
ip address 192.168.1.129 255.255.255.224
rip 1
undo summary
version 1
network 192.168.1.0
AR7
aaa
authentication-scheme default
authorization-scheme default
accounting-scheme default
domain default
domain default_admin
local-user lei password cipher %
%
EA=[.DX3}.I{9>LJ\4<><FZ%
%
local-user lei privilege level 15
local-user lei service-type telnet
local-user admin password cipher %
%
K8m.Nt84DZ}e#<0`8bmE3Uw}%
%
local-user admin service-type http
firewall zone Local
priority 15
interface GigabitEthernet0/0/0
interface GigabitEthernet0/0/1
ip address 192.168.1.26 255.255.255.252
interface GigabitEthernet0/0/2
interface NULL0
interface LoopBack0
ip address 192.168.1.161 255.255.255.224
rip 1
version 1
network 192.168.1.0
测试
1、全网可达
R3使用R2访问R1环回
R6-R7路由器不能学习到达R1环回路由
路由过滤前,R6、R7可以学习到R1汇总后的环回路由172.16.0.0
路由过滤后,R6、R7学习不到R1环回