chuong6-bgp

5/26/2018 chuong6-bgp

1/49

Gio trnh thc hnh BSCI Chng 6 - BGP

197

CChhnngg66-- BBGGPP

BBii66..11 CCuuhhnnhhBBGGPPvviiddeeffaauullttrroouuttiinngg

66..11..11 SSlluunnll

S0

S1 S0

S1

10.0.0.0/30 172.16.0.0/30

12.0.1.0/24 172.16.1.0/24

192.

168.0.0/24

192.168.1.0/2

4

ISP1 ISP2

Router1

AS 200 AS 300

AS 100

Hnh 6.1.1-1: Hnh v s lun l

66..11..22 MMccttiiuuccaabbiitthhcchhnnhh

Bi lab ny cu hnh BGP trao i thong tin nh tuyn vi 2 ISP.

66..11..33 HHnnggddnnccuuhhnnhh

Bc 1:Cu hnh c bn cho Router1, ISP1, ISP2.

Router1

Router(config)#hostname Router1

Router1(config)#enable password ciscoRouter1(config)#no ip domain-lookup


2/49


198

Router1(config)#banner motd ^C Router1^C

Router1(config)#line console 0

Router1(config-line)# logging synchronous

Router1(config-line)# password cisco

Router1(config-line)# loginRouter1(config)#line vty 0 4


Router1(config-line)# login

Router1(config)#interface Serial 1

Router1(config-if)#ip address 10.0.0.2 255.255.255.252

Router1(config-if)#no shutdown

Router1(config-if)#exit

Router1(config)#interface loopback 0






ISP1

Router(config)#hostname ISP1ISP1(config)#enable password cisco

ISP1(config)#no ip domain-lookup

ISP1(config)#banner motd ^C ISP1^C

ISP1(config)#line console 0

ISP1(config-line)# logging synchronous

ISP1(config-line)# password cisco

ISP1(config-line)# login

ISP1(config)#line vty 0 4



IPS1(config)#interface Serial 0

IPS1(config-if)#ip address 10.0.0.1 255.255.255.252

IPS1(config-if)#clock rate 64000

IPS1(config-if)#no shutdown

IPS1(config)#int loopback 0

IPS1(config-if)#ip address 12.0.1.1 255.255.255.0


3/49


199

IPS2

Router(config)#hostname ISP2

ISP2(config)#enable password cisco

ISP2(config)#no ip domain-lookup

ISP2(config)#banner motd ^C ISP2^CISP2(config)#line console 0

ISP2(config-line)# logging synchronous



ISP2(config)#line vty 0 4



ISP2(config)#interface serial 1

ISP2(config-if)#ip address 172.16.0.1 255.255.255.252

ISP2(config-if)#no shutdown

ISP2(config)#interface loopback 0

ISP2(config-if)#ip address 172.16.1.1 255.255.255.0

Bc 2:Cu hnh BGP trnRouter1, ISP1, ISP2.

Cu hnh BGP trn Router1

Router1(config)#router bgp 100Router1(config-router)#neighbor 10.0.0.1 remote-as 200

Router1(config-router)#neighbor 172.16.0.1 remote-as 300

Router1(config-router)#network 192.168.0.0

Router1(config-router)#network 192.168.1.0

Router1(config-router)#exit

Cu hnh BGP trn ISP1

IPS1(config)#router bgp 200

IPS1(config-router)#neighbor 10.0.0.2 remote-as 100

IPS1(config-router)#network 12.0.1.0 mask 255.255.255.0

IPS1(config-router)#exit

Cu hnh BGP trn ISP2

ISP2(config)#router bgp 300

ISP2(config-router)#neighbor 172.16.0.2 remote-as 100

ISP2(config-router)#network 172.16.1.0 mask 255.255.255.0

IPS2(config-router)#exit

Bc3:kim tra BGP.

Kim tra BGP trn Router1


4/49


200

Router1#show ip route

Gateway of last resort is not set

172.16.0.0/16 is variably subnetted, 2 subnets, 2 masks

C 172.16.0.0/30 is directly connected, Serial0B 172.16.1.0/24 [20/0] via 172.16.0.1, 00:01:31

10.0.0.0/30 is subnetted, 1 subnets

C 10.0.0.0 is directly connected, Serial1

C 192.168.0.0/24 is directly connected, Loopback0


B 12.0.1.0 [20/0] via 10.0.0.1, 00:01:31


Router1#show ip bgp

BGP table version is 5, local router ID is 192.168.1.1

Status codes: s suppressed, d damped, h history, * valid, > best, i - internal

Origin codes: i - IGP, e - EGP, ? - incomplete

Network Next Hop Metric LocPrf Weight Path

*> 12.0.1.0/24 10.0.0.1 0 0 200 i

*> 172.16.1.0/24 172.16.0.1 0 0 300 i

*> 192.168.0.0 0.0.0.0 0 32768 i*> 192.168.1.0 0.0.0.0 0 32768 i

Kim tra BGP trn ISP1

IPS1#show ip route



B 172.16.1.0 [20/0] via 10.0.0.2, 00:03:07


C 10.0.0.0 is directly connected, Serial0

B 192.168.0.0/24 [20/0] via 10.0.0.2, 00:03:36


C 12.0.1.0 is directly connected, Loopback0

B 192.168.1.0/24 [20/0] via 10.0.0.2, 00:02:37

IPS1#show ip bgp


Status codes: s suppressed, d damped, h history, * valid, > best, i - internal

Origin codes: i - IGP, e - EGP, ? - incomplete


5/49


201


*> 12.0.1.0/24 0.0.0.0 0 32768 i

*> 172.16.1.0/24 10.0.0.2 0 100 300 i

*> 192.168.0.0 10.0.0.2 0 0 100 i*> 192.168.1.0 10.0.0.2 0 0 100 i

Kim tra BGP trn ISP2

ISP2#show ip route


172.16.0.0/16 is variably subnetted, 2 subnets, 2 masks

C 172.16.0.0/30 is directly connected, Serial1


B 192.168.0.0/24 [20/0] via 172.16.0.2, 00:02:53


B 12.0.1.0 [20/0] via 172.16.0.2, 00:02:53

B 192.168.1.0/24 [20/0] via 172.16.0.2, 00:02:00

ISP2#show ip bgp


Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,

r RIB-failure, S StaleOrigin codes: i - IGP, e - EGP, ? - incomplete


*> 12.0.1.0/24 172.16.0.2 0 100 200 i

*> 172.16.1.0/24 0.0.0.0 0 32768 i

*> 192.168.0.0 172.16.0.2 0 0 100 i

*> 192.168.1.0 172.16.0.2 0 0 100 i


6/49


202

BBii66..22 BBGGPP&&TThheeAASS__PPaatthhAAttttrriibbuuttee


S0/3/1

S0/3/0 S0/3/1

S0/0/0

192.168.1.4/30 172.25.1.16/30

12.0.1.0/24 172.16.1.0/24

202.0.0.0/24

Router1 Router2

ISP

AS 100 AS 65000

AS 300



dng AS_PATH Attribute to Filter Routes

66..22..33 HHnnggddnnccuuhhnnhhvvhhnnhhvvmmiinnhhhhaa

Bc1:Cu hnh c bn cho ISP, Router1, Router2

Router1


Router1(config)#enable password cisco

Router1(config)#no ip domain-lookup



Router1(config-line)# logging synchronousRouter1(config-line)# password cisco


7/49


203


Router1(config)#line vty 0 4



Router1(config)#interface serial 0/3/1






Router2


Router2(config)#enable password cisco

Router2(config)#no ip domain-lookup







Router2(config-line)# password ciscoRouter2(config-line)# login

Router2(config)#interface Serial 0/0/0


Router2(config-if)#clock rate 64000




ISP

Router(config)#hostname ISP1

ISP(config)#enable password cisco

ISP(config)#no ip domain-lookup

ISP(config)#banner motd ^C ISP1^C

ISP(config)#line console 0

ISP(config-line)# logging synchronous

ISP(config-line)# password cisco

ISP(config-line)# login

ISP(config)#line vty 0 4


8/49


204



IPS(config)#interface Serial 0/3/0

IPS(config-if)#ip address 192.168.1.6 255.255.255.252IPS(config-if)#clock rate 64000

IPS(config-if)#no shutdown

IPS(config)#interface interface Serial 0/3/1

IPS(config-if)#ip address 172.25.1.18 255.255.255.252


IPS(config)#int loopback 0


Bc 2:Cu hnh BGP

Cu hnh BGP trn Router1

Router1(config)#router bgp 100


Router1(config-router)#network 12.0.1.0 mask 255.255.255.0




B 202.0.0.0/24 [20/0] via 192.168.1.6, 00:00:39


B 172.16.1.0 [20/0] via 192.168.1.6, 00:00:39




C 192.168.1.4 is directly connected, Serial0/3/1Cu hnh BGP trn Router2








9/49


205

B 202.0.0.0/24 [20/0] via 172.25.1.18, 00:01:55




C 172.25.1.0 is directly connected, Serial0/0/012.0.0.0/24 is subnetted, 1 subnets

B 12.0.1.0 [20/0] via 172.25.1.18, 00:01:24

Cu hnh BGP trn ISP

ISP(config)#router bgp 300

ISP(config-router)#neighbor 192.168.1.5 remote-as 100


ISP(config-router)#network 202.0.0.0 mask 255.255.255.0

ISP(config-router)#exit

ISP#show ip route

Gateway of last resort is 10.11.6.2 to network 0.0.0.0



B 172.16.1.0 [20/0] via 172.25.1.17, 00:00:37


C 172.25.1.16 is directly connected, Serial0/3/110.0.0.0/24 is subnetted, 1 subnets

C 10.11.6.0 is directly connected, GigabitEthernet0/0


B 12.0.1.0 [20/0] via 192.168.1.5, 00:00:02


C 192.168.1.4 is directly connected, Serial0/3/0

Bc3:Remove the Private AS


ISP(config-router)#neighbor 192.168.1.5 remove-private-as


10/49


206

Kim tra trn Router1

Hnh 6.2.3-1: Show ip bgp trn Router1 kim tra

Bc 4:dng AS_PATH Attribute to Filter Routes

ISP(config)#ip as-path access-list 1 deny ^100$

ISP(config)#ip as-path access-list 1 permit .*


ISP(config-router)#neighbor 172.25.1.17 filter-list 1 out

Hnh 6.2.3-2: Show ip route trn Router1

Hnh 6.2.3-3: Show ip route trn Router2


11/49


207

Hnh 6.2.3-4: Show ip bgp regexp ^100$


12/49


208

BBii66..33 eeBBGGPPmmuullttiihhoopp


R1 R2

10.0.0.0/30

Lo0 : 2.2.2.2/32

Lo1 : 192.168.1.1/24

10.0.0.4/30

Fa0/0 Fa0/0

Fa0/1 Fa0/1

1.1.1.1/32

BGP AS 1 BGP AS 2

Hnh 6.3.1-1: S lun l


eBGP multihop c th dng loadshare traffic qua nhiu link eBGP

peers.


Bc 1:Cu hnh c bn R1, R2

R1

Router(config)#hostname R1

R1(config)#enable password cisco

R1(config)#no ip domain-lookup

R1(config)#banner motd ^C Router1^C

R1(config)#line console 0

R1(config-line)# logging synchronous

R1(config-line)# password cisco

R1(config-line)# login

R1(config)#line vty 0 4



R1(config)# interface FastEthernet0/0

R1(config-if)#ip address 10.0.0.1 255.255.255.252

R1(config-if)#no shutdown

R1(config)# interface FastEthernet0/1R1(config-if)#ip address 10.0.0.5 255.255.255.252


13/49


209


R1(config)#interface loopback 0


R1(config-if)#exit

R2Router(config)#hostname R2



R2(config)#banner motd ^C Router2^C












R2(config-if)#ip address 10.0.0.6 255.255.255.252R2(config-if)#no shutdown





Bc 2:Cu hnh eBGP multihop trn R1, R2

Cu hnh eBGP multi ho p trn Router1

R1(config)#router bgp 1

R1(config-router)# neighbor 2.2.2.2 remote-as 2

R1(config-router)# neighbor 2.2.2.2 ebgp-multihop 2

R1(config-router)# neighbor 2.2.2.2 update-source Loopback0

R1(config-router)#exit

R1(config)#ip route 2.2.2.2 255.255.255.255 10.0.0.2

R1(config)#ip route 2.2.2.2 255.255.255.255 10.0.0.6

Cu hnh eBGP multi ho p trn Router2



14/49


210

R2(config-router)#network 192.168.1.0

R2(config-router)# neighbor 1.1.1.1 remote-as 1

R2(config-router)# neighbor 1.1.1.1 ebgp-multihop 2

R2(config-router)#neighbor 1.1.1.1 update-source Loopback0

R2(config-router)#exitR2(config)#ip route 1.1.1.1 255.255.255.255 10.0.0.1

R2(config)#ip route 1.1.1.1 255.255.255.255 10.0.0.5

Bc 3:Kim tra cu hnh

Hnh 6.3.3-1: Show ip route trn R1

Hnh 6.3.3-2: Show ip cef 192.168.1.0


15/49


211

BBii66..44 CCuuhhnnhhIIBBGGPPvvEEBBGGPP,,LLooccaallPPrreeffeerreenncceevvMMEEDD((MMuullttii--

EExxiittDDiissccrriimmiinnaattoorr))


S0/3/0

S0/3/1 S0/3/0

S0/0/1

192.168.1.4/30 172.16.1.0/24

Lo0: 192.168.100.0/24 Lo0: 172.16.32.0/24

Lo0: 172.16.64.0/24

ISP R2

R1

AS 64512

EIGRP

192.168.1.0/30S0/3/1

S0/0/0

iBGP

EBGP

EBGP



Cu hnh IBGP v EBGP, Local Preference v MED (Multi-Exit

Discriminator)


Bc 1:Cu hnh c bn trn Router1, Router2, ISP

Router1




16/49


212





Router1(config-line)# loginRouter1(config)#line vty 0 4







Router1(config)#interface serial 0/3/1






Router2




















17/49


213


ISP

Router(config)#hostname ISP

ISP(config)#enable password cisco

ISP(config)#no ip domain-lookupISP(config)#banner motd ^C ISP^C

ISP(config)#line console 0

ISP(config-line)# logging synchronous



ISP(config)#line vty 0 4



IPS(config)#interface Serial 0/3/0


IPS(config-if)#clock rate 64000


IPS(config)#interface interface Serial 0/3/1



IPS(config)#int loopback 0IPS(config-if)#ip address 192..168.100.1 255.255.255.0

Bc 2:Cu hnh EIGRP trn Router1 v Router2

Cu hnh EIGRP trn Router1

Router1(config)#router eigrp 64512

Router1(config-router)#network 172.16.1.1 0.0.0.0


Router1(config-router)#no auto-summary

Hnh 6.4.3-1: Show ip eirgp neighbors trn Router1

Cu hnh EIGRP trn Router2

Router2(config)#router eigrp 64512


Router2(config-router)#network 172.16.32.1 0.0.0.0Router2(config-router)#no auto-summary


18/49


214

Hnh 6.4.3-2: Show ip eirgp neighbors trn Router1

Bc3:Cu hnh iBGP trn Router1 v Router2

Cu hnh iBGP trn Router1



Router1(config-router)#neighbor 172.16.32.1 update-source loopback 0

Router1(config-router)#end

Hnh 6.4.3-3: Show ip bgp neighbors trn Router1

Cu hnh iBGP trn Router2



Router2(config-router)#neighbor 172.16.64.1 update-source loopback 0



Bc4:Cu hnh EBGP(ISP run EBGP vi Router1v Router2)

Cu hnh EBGP trn ISP







ISP(config-router)#end

Cu hnh EBGP trn Router1







19/49


215

Cu hnh EBGP trn Router2




Router2(config-router)#network 172.16.1.0 mask 255.255.255.0Router2(config-router)#end

Bc5:Kim tra BGP Neighbors

Hnh 6.4.3-5: Show ip bgp neighbors trn ISP



Bc 6Kim tra Which Path Traffic Takes

Hnh 6.4.3-8: Show ip bgp trn ISP


20/49


216

Hnh 6.4.3-9: Show ip bgp trn Router1

Hnh 6.4.3-10: Show ip bgp trn Router2

Bc 7: BGP Next-Hop-Self

Kim tra trc khi s dng Next-Hop-Seft

Hnh 6.4.3-11: Show ip bgp Router1 trc khi dng Next-Hop-Self


21/49


217

Hnh 6.4.3-12: Show ip route Router1 trc khi dng Next-Hop-Self

Hnh 6.4.3-13: Show ip bgp Router2 trc khi dng Next-Hop-Self

Hnh 6.4.3-14: Show ip route Router2 trc khi dng Next-Hop-Self

Cu hnh Next-Hop -Self t rn Rou ter1


Router1(config-router)#neighbor 172.16.32.1 next-hop-self

Cu hnh Next-Hop -Self t rn Rou ter2



22/49


218

Router2(config-router)#neighbor 172.16.64.1 next-hop-self

Kim tra sau khi s dng Next-Hop-Self

Hnh 6.4.3-15: Show ip route Router1 sau khi dng Next-Hop-Self

Hnh 6.4.3-16: Show ip route Router2 sau khi dng Next-Hop-Self

Bc8:Set BGP Local Preference

Set BGP Lo cal Preferen ce trn Router1

Router1(config)#route-map PRIMARY_LocPrf_IN permit 10

Router1(config-route-map)#set local-preference 150

Router1(config-route-map)#exit

Router1(config)#router bgp 64512Router1(config-router)#neighbor 192.168.1.5 route-map PRIMARY_ LocPrf_IN

in


Router1#clear ip bgp * soft


Router2(config)#route-map SECONDARY_ LocPrf_IN permit 10

Router2(config-route-map)#set local-preference 125




23/49


219

Router2(config-router)#neighbor 192.168.1.1 route-map SECONDARY_

LocPrf_IN in



Kim tra kt qu sau khi set BGP Local Preference

Hnh 6.4.3-17: Show ip bgp sau khi set BGP Local Preference trn Router1

Hnh 6.4.3-18: Show ip bgp sau khi set BGP Local Preference trn Router2

Bc 9:Set BGP MED

Set BGP MED trn Ro uter1

Router1(config)#route-map PRIMARY_MED_OUT permit 10

Router1(config-route-map)#set metric 50



Router1(config-router)#neighbor 192.168.1.5 route-map

PRIMARY_MED_OUT out



Set BGP MED trn Ro uter2

Router2(config)#route-map SECONDARY_MED_OUT permit 10

Router2(config-route-map)#set metric 100Router2(config-route-map)#exit


24/49


220


Router2(config-router)#neighbor 192.168.1.1 route-map

SECONDARY_MED_OUT out


Router2#clear ip bgp * softKim tra kt qu sau khi set BGP MED

Hnh 6.4.3-19: Show ip bgp trn ISP sau khi set BGP MED

Bc 10:Establish a Default Network

Router1(config)#ip default-network 192.168.100.0


Router1(config-router)#neighbor 172.16.32.1 default-originate

Router1(config-router)#endKim tra cu hnh trn Router1 v Rout2

Hnh 6.4.3-20: Show ip route trn Router1 sau khi c default network


25/49


221

Hnh 6.4.3-21: Show ip route tren Router2 sau khi c default network


26/49


222

BBii66..55 BBGGPPvvEEIIGGRRPP


Fa0/1

S0/0/1 S0/0/0

S0/1

10.1.102.0/29 10.1.203.0/29

Lo0: 10.1.1.1/24

Lo0:10.3.

3.3/24

R1 R3

R2

10.1.103.0/29S0/3/1

S0/0

SW1

192.168.34.0/30

192.168.14.0/30

Lo0 : 10.2.2.2/24

Lo1 : 10.20.0.1/24

Lo2 : 10.20.1.1/24

Lo3 : 10.20.2.1/24

Lo4 : 10.20.3.1/24

Lo1 : 172.16.0.1/22

Lo2 : 172.16.4.1/22

Lo3 : 172.16.8.1/22

Lo4 : 172.16.12.1/22

BGP AS 65001

&

EIGRP AS 65001

International

BGP AS 65002

&

EIGRP AS 65002

Providers

S0/3/0

S0/2Gi0/0

Fa0/2 Fa0/0

R4

S0/3/0



Cu hnh Provider network vi EIGRP AS 65002 (Tt chc nng

automatic summarization trn c 2 domain ca EIGRP)


27/49


223

Cu hnh International network vi BGP AS 65001 v Provider network

vi BGP 65002

Qung b mng 192.168.14.0/30 v 192.168.34.0/30 trn c 2 AS ca

EIGRP

Tt c router tham gia vo BGP. Cu hnh tt c router dng full mest

iBGP. Qung b tt c interface loopback vo BGP, ngoi tr R2, ch

qun b loopback 10.2.2.0/24.

Trn R2, to mt static summary route cho cc interface loopback cn

li v qun b static route ny vo BGP.

R4 gi mt summary route ca tt c interface loopback ti vng

International.

Nhng Router trong vng International s dng ng i ti vng

Provider thng qua lin kt Ethernet gia R1 v R4. hon thnh

vic ny, cn phi chnh sa thng s Local Preference ca cc ng

route qun b t Providers.


Bc 1:Cu hnh c bn cho R1, R2, R3, R4

R1




R1(config)#banner motd ^C R1^C



R1(config-line)# password ciscoR1(config-line)# login




R1(config)#interface Serial 0/3/0


R1(config-if)#clock rate 64000



28/49


224

R1(config-if)#exit




R1(config-if)#exitR1(config)#interface loopback 0


R1(config-if)#exit

R1(config)#interface GigabitEthernet 0/0

R1(config-if)#ip add 192.168.14.1 255.255.255.252


R1(config-if)#exit

R2









R2(config)#line vty 0 4R2(config-line)# password cisco


R2(config)#interface serial 0/0/0




R2(config-if)#exit




R2(config-if)#exit



R2(config-if)#exit



R2(config-if)#exit


29/49


225



R2(config-if)#exit


R2(config-if)#ip address 10.20.2.1 255.255.255.0R2(config-if)#exit



R2(config-if)#exit

R3












R3(config)#interface Serial 0/0




R3(config-if)#exit




R3(config-if)#exit




R3(config-if)#exit


R3(config-if)# ip address 10.3.3.3 255.255.255.0

R3(config-if)#exit

R4Router(config)#hostname R4


30/49


226





R4(config-line)# logging synchronousR4(config-line)# password cisco









R4(config-if)#exit

R4(config)#interface FastEthernet 0/0

R4(config-if)#ip add 192.168.14.2 255.255.255.252

R4(config-if)#no shut


R4(config-if)#exit

R4(config)#interface loopback 0R4(config-if)# ip address 10.4..4.4 255.255.255.0

R4(config-if)#exit



R4(config-if)#exit



R4(config-if)#exit



R4(config-if)#exit



R4(config-if)#exit

Bc 2:Cu hnh International network vi EIGRP AS 65001

Cu hnh EIGRP trn R1R1(config)#router eigrp 65001


31/49


227

R1(config-router)#network 10.1.1.1 0.0.0.0



R1(config-router)#no auto-summary

R1(config-router)#exitCu hnh EIGRP trn R2

R2(config)#router eigrp 65001










Cu hnh EIGRP trn R3





R3(config-router)#no auto-summaryR3(config-router)#exit

Kim tra cu hnh

Hnh 6.5.3-1: Show ip eigrp neighbors trn R1

Hnh 6.5.3-2: Show ip route eigrp trn R1


32/49


228





Bc 3:Cu hnh Provider network vi EIGRP AS 65002 (Tt chc

nngautomatic summarization trn c 2 domain ca EIGRP)

Cu hnh EIGRP trn R1





Cu hnh EIGRP trn R3





Cu hnh EIGRP trn R4



R4(config-router)#network 192.168.34.2 0.0.0.0R4(config-router)#network 10.4.4.4 0.0.0.0


33/49


229



Bc 4: Cu hnh International network vi BGP AS 65001 v

Provider network vi BGP 65002

Cu hnh BGP trn R1


R1(config-router)#neighbor 10.2.2.2 remote-as 65001


R1(config-router)#neighbor 10.2.2.2 update-source loopback 0




Cuhnh BGP trn R2







Cu hnh BGP trn R3

R3(config)#router bgp 65001R3(config-router)#neighbor 10.1.1.1 remote-as 65001






Cu hnh BGP trn R4





Kim tra cu hnh

Hnh 6.5.3-7: Show ip bgp neighbors trn R1


34/49


230




Bc 5:Qung b mng 192.168.14.0/30 v 192.168.34.0/30 trn c

2 AS ca EIGRP

Cu hnh EIGRP trn R1




Cu hnh EIGRP trn R3




Kim tra cu hnh



35/49


231


Bc 6:Tt c router tham gia vo BGP. Cu hnh tt c router dng

full mest iBGP. Qung b tt c interface loopback vo BGP, ngoi trR2, ch qun b loopback 10.2.2.0/24.

Cu hnh BGP trn R1


R1(config-router)#network 10.1.1.0 mask 255.255.255.0




Cu hnh BGP trn R2



R2(config-router)# network 10.1.102.0 mask 255.255.255.248

R2(config-router)# network 10.1.203.0 mask 255.255.255.248




R2(config-router)#network 10.20.3.0 mask 255.255.255.0R2(config-router)#exit

Cu hnh BGP trn R3






Cu hnh BGP trn R4

R4(config)#router bgp 65002R4(config-router)#network 10.4.4.0 mask 255.255.255.0


36/49


232





R4(config-router)#network 172.16.8.0 mask 255.255.252.0R4(config-router)#network 172.16.12.0 mask 255.255.252.0


Kim tra cu hnh

Hnh 6.5.3-13: Show ip bgp trn R1

Hnh 6.5.3-14: Show ip route bgp trn R1


37/49


233




38/49


234




39/49


235



Bc 7: Trn R2, to mt static summary route cho cc interface

loopback cn li v qun b static route ny vo BGP.


R2(config-router)#aggregate-address 10.20.0.0 255.255.252.0



40/49


236



41/49


237


Hnh 6.5.3-23: show ip route bgp trn R4

Bc 8:R4 gi mt summary route ca tt c interface loopback ti

vng International.


R4(config-router)#aggregate-address 172.16.0.0 255.255.240.0

R4(config-router)#end


42/49


238



43/49


239



Bc 9:R4 s dng ng n vng International bng lin kt giaR1 v R4. Hon thnh vic ny bng vic thay i thng s MED qun

b ti v Providers.

R4(config)#route-map PRIMARY_MED_OUT permit 10

R4(config-route-map)#set metric 50

R4(config-route-map)#exit

R4(config)#route-map SECONDARY_MED_OUT permit 10

R4(config-route-map)#set metric 100

R4(config-route-map)#exitR4(config)#router bgp 65002


44/49


240

R4(config-router)#neighbor 192.168.14.1 route-map PRIMARY_MED_OUT

out

R4(config-router)#neighbor 192.168.34.1 route-map

SECONDARY_MED_OUT out

R4(config-router)#endR4#clear ip bgp * soft

Kim tra kt qu sau khi set BGP MED

Bc 10: Nhng Router trong vng International s dng ng i ti

vng Provider thng qua lin kt Ethernet gia R1 v R4. hon

thnh vic ny, cn phi chnh sa thng s Local Preference ca cc

ng route qun b t Providers.


R1(config)#route-map PRIMARY_LocPrf_IN permit 10

R1(config-route-map)#set local-preference 150



R1(config-router)#neighbor 192.168.14.2 route-map PRIMARY_ LocPrf_IN in


R1#clear ip bgp * soft


R3(config)#route-map SECONDARY_ LocPrf_IN permit 10R3(config-route-map)#set local-preference 50



R3(config-router)#neighbor 192.168.34.2 route-map SECONDARY_

LocPrf_IN in


R3#clear ip bgp * soft


45/49


241

BBii66..66 BBGGPPRRoouutteeRReefflleeccttoorrss&&FFiilltteerrss


200.100.50.0/24

199.9.9.0/24

172.24.1.0/24192.168.1.4/30

AS 100AS 100

S0/3/1 S0/3/0

S0/0/1S0/3/0

R2

R1 R3


66..66..22 MMccttiiuubbiitthhcchhnnhh

Bi lab ny cu hnh IBGP routers dng route reflector v route filter


Bc 1:Cu hnh c bn cho R1, R2, R3

R1

Router(config)#hostname R1R1(config)#enable password cisco










46/49


242




R1(config-if)#clock rate 64000R1(config-if)#no shutdown

R1(config)#int loopback 0

R1(config-if)#ip address 192..168.100.1 255.255.255.0

R2












R2(config)#interface Serial 0/3/0R2(config-if)#ip address 172.24.1.1 255.255.255.0








R2(config-if)#exit

R3










47/49


243




R3(config)#interface Serial 0/0/1R3(config-if)#ip address 172.24.1.2 255.255.255.0




R3(config-if)#exit

Bc 2:Cu hnh IBGP peers cho BGP. Sau cu hnh R2 route

reflector. Sau khi cu hnh xong R2, cu hnh 2 router cn li l route

reflector clients. IBGP kg cn cu hnh full mesh. Kim tra R2 cestablished peering vi R1 v R3 hay khng?

Cu hnh EIGRP cho R1, R2, R3





R2(config)#router eigrp 100R2(config-router)#network 172.24.1.1 0.0.0.0



R2(config-router)#passive-interface loopback 0





R3(config-router)#passive-interface loopback 0



Cu hnh iBGP cho R1, R2, R3






48/49


244




R3(config)#router bgp 100R3(config-router)#neighbor 172.24.1.1 remote-as 100


Bc 3:Inject an External Route vo BGP



Hnh 6.6.3-1: show ip route tren R1


R2(config-router)#neighbor 192.168.1.5 route-reflector-client

R2(config-router)#neighbor 172.24.1.2 route-reflector-client


Hnh 6.6.3-2: Show ip route tren R1 khi su dung route-reflector-client


49/49


245

Bc 4:Inject mtSummary Address vo BGP, cu hnh R3 inject mt

summary address vo BGP


R3(config-router)#aggregate-address 199.0.0.0 255.0.0.0R3(config-router)#end

Hnh 6.6.3-3: Show ip route tren R1

Hnh 6.6.3-4: show ip bgp trn R2

R2(config)#ip prefix-list SUPERNETONLY permit 199.0.0.0/8


R2(config-router)#neighbor 192.168.1.5 prefix-list SUPERNETONLY out


Hnh 6.6.3-5: show ip route tren R1 khi su dung prefix-list

chuong6-bgp

Documents

Transcript of chuong6-bgp