MGRM、RIP、NAT综合实验_rip+nat组网实验-CSDN博客

本文链接：https://blog.csdn.net/m0_66120938/article/details/122417400

一、实验要求

二、实验拓扑

三、实验分析

1.根据实验要求划分网段、分配隧道地址。（具体见拓扑图）

2.给各设备配置IP地址、隧道地址。

3.给R5 R2 R3进行PPP认证，R5作为认证方。R1选择PAP、R2选择CHAP。

4.将R3到R5默认的封装类型PPP修改成HDLC.

5.R1 R2 R3 之间搭建MGRM环境，R1作为中心站点，R1 R4之间搭建GRM环境。

6.配置RIP以及各设备到公网的默认路由。

7.创建ACL,抓取各设备去往公网的流量，通过easy-ip实现访问ISP的环回地址。

四、实验配置

R1:

配置IP地址：

#
interface Serial4/0/0
ip address 15.0.0.1 255.255.255.0
#
interface GigabitEthernet0/0/0
ip address 192.168.1.1 255.255.255.0
#
interface Tunnel0/0/0
ip address 192.168.5.1 255.255.255.0
#
interface Tunnel0/0/1
ip address 192.168.6.1 255.255.255.0
#

PAP认证

#
interface Serial4/0/0
ppp pap local-user shiyan password cipher zhengque
#

MGRM GRM配置

#
interface Tunnel0/0/0
undo rip split-horizon
tunnel-protocol gre p2mp
source 15.0.0.1
nhrp entry multicast dynamic
nhrp network-id 100
#
interface Tunnel0/0/1
tunnel-protocol gre
source 15.0.0.1
destination 45.0.0.4
#

配置RIP 默认路由

#
rip 1
version 2
network 192.168.1.0
network 192.168.5.0
network 192.168.6.0
#
ip route-static 0.0.0.0 0.0.0.0 15.0.0.5
#

配置easy-ip

#
acl number 2000
rule 5 permit source 192.168.1.0 0.0.0.255
#
interface Serial4/0/0
nat outbound 2000
#

R2:

配置IP地址：
#
interface Serial4/0/0
ip address 25.0.0.2 255.255.255.0
#
interface GigabitEthernet0/0/0
ip address 192.168.2.1 255.255.255.0
#
interface Tunnel0/0/0
ip address 192.168.5.2 255.255.255.0
#

PAP认证

#
interface Serial4/0/0
ppp chap user shiyan
ppp chap password cipher zhengque
#

MGRM 配置
#
interface Tunnel0/0/0
tunnel-protocol gre p2mp
source Serial4/0/0
nhrp network-id 100
nhrp entry 192.168.5.1 15.0.0.1 register
#

配置RIP 默认路由

#
rip 1
version 2
network 192.168.2.0
network 192.168.5.0
#
ip route-static 0.0.0.0 0.0.0.0 25.0.0.5
#

配置easy-ip

#
acl number 2000
rule 5 permit source 192.168.2.0 0.0.0.255
#
interface Serial4/0/0
nat outbound 2000
#

R3:

配置IP地址：

#
interface Serial4/0/0
ip address 35.0.0.3 255.255.255.0
#
interface GigabitEthernet0/0/0
ip address 192.168.3.1 255.255.255.0
#
interface Tunnel0/0/0
ip address 192.168.5.3 255.255.255.0
#

修改链路封装类型

#
interface Serial4/0/0
link-protocol hdlc
#

MGRM 配置

#
interface Tunnel0/0/0
tunnel-protocol gre p2mp
source Serial4/0/0
nhrp network-id 100
nhrp entry 192.168.5.1 15.0.0.1 register
#

配置RIP 默认路由

#
rip 1
version 2
network 192.168.3.0
network 192.168.5.0
#
ip route-static 0.0.0.0 0.0.0.0 35.0.0.5
#

配置easy-ip

#
acl number 2000
rule 5 permit source 192.168.3.0 0.0.0.255
#
interface Serial4/0/0
nat outbound 2000
#

R4:

配置IP地址：

#
interface GigabitEthernet0/0/0
ip address 45.0.0.4 255.255.255.0
#
interface GigabitEthernet0/0/1
ip address 192.168.4.1 255.255.255.0
#
interface Tunnel0/0/0
ip address 192.168.6.2 255.255.255.0
#

GRM 配置

#
interface Tunnel0/0/0
tunnel-protocol gre
source 45.0.0.4
destination 15.0.0.1
#

配置RIP 默认路由

#
rip 1
version 2
network 192.168.4.0
network 192.168.6.0
#
ip route-static 0.0.0.0 0.0.0.0 45.0.0.5
#

配置easy-ip

#
acl number 2000
rule 5 permit source 192.168.4.0 0.0.0.255
#
interface GigabitEthernet0/0/0
nat outbound 2000
#

ISP:

配置IP地址：

#
interface Serial3/0/0
ip address 15.0.0.5 255.255.255.0
#
interface Serial3/0/1
ip address 25.0.0.5 255.255.255.0
#
interface Serial4/0/0
ip address 35.0.0.5 255.255.255.0
#
interface GigabitEthernet0/0/0
ip address 45.0.0.5 255.255.255.0
#

PPP认证

#
aaa
local-user shiyan password cipher zhengque
local-user shiyan service-type ppp
#
interface Serial3/0/0
ppp authentication-mode pap
#
interface Serial3/0/1
ppp authentication-mode chap
#

修改链路封装类型

#
interface Serial4/0/0
link-protocol hdlc
#