拓扑图
需求:R4-R6,R5-R7实现BGP MPLS VPN内网互联, R4-R6 CE段使用BGP互联。 R5-R7使用OSPF。
配置思路
1. 配置互联接口IP和环回口IP
2. 配置骨干网ISIS和MPLS
3. 配置两个PE之间的BGP vpnv4邻居
4. 配置两个PE的4个接入实例,绑定接口配置IP
5. 配置PE-CE的bgp邻居(R4-R1,R3-R6),CE发布私有网络和开启允许as环路。
6. 配置PE-CE的ospf邻居(R5-R1,R3-R7)发布ospf路由。R1/R3 ospf绑定实例, PE的ospf下引入bgp路由,bgp对应实例中引入ospf路由。
配置命令
1. 配置互联接口IP和环回口IP,绑定VRF的接口在创建实例后再配置。
#R1
sys
sysn R1
int g0/0/0
ip addr 12.1.1.1 24
int lo0
ip addr 1.1.1.1 32
#R2
sys
sysn R2
int g0/0/0
ip addr 12.1.1.2 24
int g0/0/1
ip addr 23.1.1.2 24
int lo0
ip addr 2.2.2.2 32
#R3
sys
sysn R3
int g0/0/0
ip addr 23.1.1.3 24
int lo0
ip addr 3.3.3.3 32
#R4
sys
sysn R4
int g0/0/0
ip addr 192.168.14.4 24
int lo0
ip addr 172.16.1.1 24
#R5
sys
sysn R5
int g0/0/0
ip addr 192.168.15.5 24
int lo0
ip addr 172.16.1.1 24
#R6
sys
sysn R6
int g0/0/0
ip addr 192.168.36.6 24
int lo0
ip addr 172.16.2.1 24
#R7
sys
sysn R7
int g0/0/0
ip addr 192.168.37.7 24
int lo0
ip addr 172.16.2.1 242.配置R1-R2-R3骨干网的ISIS/MPLS
#R1
isis 1
is-level level-2
network-ent 49.0123.0000.0000.0001.00
int g0/0/0
isis en 1
int lo0
isis en 1
qu
mpls lsr-id 1.1.1.1
mpls
mpls ldp
int g0/0/0
mpls
mpls ldp
#R2
isis 1
is-level level-2
network-ent 49.0123.0000.0000.0002.00
int g0/0/0
isis en 1
int g0/0/1
isis en 1
int lo0
isis en 1
qu
mpls lsr-id 2.2.2.2
mpls
mpls ldp
int g0/0/0
mpls
mpls ldp
int g0/0/1
mpls
mpls ldp
#R3
isis 1
is-level level-2
network-ent 49.0123.0000.0000.0003.00
int g0/0/0
isis en 1
int lo0
isis en 1
qu
mpls lsr-id 3.3.3.3
mpls
mpls ldp
int g0/0/0
mpls
mpls ldp3.配置R1-R3 BGP vpnv4邻居
#R1
bgp 100
router-id 1.1.1.1
undo default ipv4-unicast
peer 3.3.3.3 as 100
peer 3.3.3.3 connect-int lo0
ipv4-family vpnv4
peer 3.3.3.3 en
#R3
bgp 100
router-id 3.3.3.3
undo default ipv4-unicast
peer 1.1.1.1 as 100
peer 1.1.1.1 connect-int lo0
ipv4-family vpnv4
peer 1.1.1.1 en4.配置R1/R3接入的4个vpn实例,绑定接口配置IP
#R1
ip vpn-instance 4
router-dist 4:4
vpn-target 4:6 ex
vpn-target 6:4 im
qu
qu
ip vpn-instance 5
router-dist 5:5
vpn-target 5:7 ex
vpn-target 7:5 im
qu
qu
int g0/0/1
ip bind vpn-instance 4
ip addr 192.168.14.1 24
int g0/0/2
ip bind vpn-instance 5
ip addr 192.168.15.1 24
#R3
ip vpn-instance 6
router-dist 6:6
vpn-target 6:4 ex
vpn-target 4:6 im
qu
qu
ip vpn-instance 7
router-dist 7:7
vpn-target 7:5 ex
vpn-target 5:7 im
qu
qu
int g0/0/1
ip bind vpn-instance 6
ip addr 192.168.36.3 24
int g0/0/2
ip bind vpn-instance 7
ip addr 192.168.37.3 245.配置接入端R1与R4建立EBGP,R3与R6建立EBGP,接入端R4/R6允许as环路并发布私有网络。
#R1
bgp 100
ipv4-family vpn-instance 4
peer 192.168.14.4 as 65001
#R4
bgp 65001
peer 192.168.14.1 as 100
peer 192.168.14.1 allow-as-loop
network 172.16.1.1 24
#R3
bgp 100
ipv4-family vpn-instance 6
peer 192.168.36.6 as 65001
#R6
bgp 65001
peer 192.168.36.3 as 100
peer 192.168.36.3 allow-as-loop
network 172.16.2.1 246.配置R1与R5建立OSPF邻居/R3与R7建立OSPF邻居并发布OSPF路由。R1/R3 OSPF绑定实例
#R1
ospf 1 router-id 1.1.1.1 vpn-instance 5
area 0
network 192.168.15.1 0.0.0.255
#R5
ospf 1 router-id 5.5.5.5
area 0
network 192.168.15.5 0.0.0.255
network 172.16.1.1 0.0.0.255
#R3
ospf 1 router-id 3.3.3.3 vpn-instance 7
area 0
network 192.168.37.3 0.0.0.255
#R7
ospf 1 router-id 7.7.7.7
area 0
network 192.168.37.7 0.0.0.255
network 172.16.2.1 0.0.0.2557.配置R1/R3 实例OSPF中引入bgp,BGP vpn实例族中引入OSPF
#R1
ospf 1 router-id 1.1.1.1 vpn-instance 5
import-route bgp
bgp 100
ipv4-family vpn-instance 5
import-route ospf 1
#R3
ospf 1 router-id 3.3.3.3 vpn-instance 7
import-route bgp
bgp 100
ipv4-family vpn-instance 7
import-route ospf 1结果验证
