Đồ hình:
Hai router ISP_VDC và ISP_FPT đóng vai trò như là 2 PPPoE Server cung cấp địa chỉ cho PPPoE client (NAT_ROUTER).
Yêu cầu:
1. Mạng 192.168.10.0/24 đi net bằng đường của VDC, mạng 192.168.20.0/24 đi net bằng đường của FPT
2. Khi đường VDC (hoặc FPT) đứt thì chuyển sang đường còn lại nghĩa là 2 đường net hoạt động theo kiểu active – active.
Với yêu cầu (1) thì mình đã thực hiện được rồi nhưng còn yêu cầu (2) thì vẫn chưa làm được, xin các bro chỉ mình giải pháp thực hiện yêu cầu (2). Cảm ơn rất nhiều. Dưới đây là cấu hình mình đã thực hiện.
INSIDE#sh run
Building configuration...
Current configuration : 917 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname INSIDE
!
boot-start-marker
boot-end-marker
!
no aaa new-model
!
resource policy
!
memory-size iomem 5
ip cef
!
interface Loopback0
ip address 192.168.10.1 255.255.255.0
!
interface Loopback1
ip address 192.168.20.1 255.255.255.0
!
interface FastEthernet0/0
no ip address
shutdown
duplex auto
speed auto
!
interface Serial0/0
ip address 192.168.30.1 255.255.255.0
clock rate 2000000
!
interface FastEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface Serial0/1
no ip address
shutdown
clock rate 2000000
!
ip route 0.0.0.0 0.0.0.0 Serial0/0
!
!
ip http server
no ip http secure-server
!
control-plane
!
line con 0
exec-timeout 0 0
line aux 0
line vty 0 4
login
!
!
End
NAT_ROUTER#sh run
Building configuration...
Current configuration : 1891 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname NAT_ROUTER
!
boot-start-marker
boot-end-marker
!
no aaa new-model
!
resource policy
!
memory-size iomem 5
ip cef
!
interface FastEthernet0/0
no ip address
speed 100
full-duplex
pppoe enable
pppoe-client dial-pool-number 1
!
interface Serial0/0
ip address 192.168.30.2 255.255.255.0
ip nat inside
ip virtual-reassembly
ip policy route-map net
clock rate 2000000
!
interface FastEthernet0/1
no ip address
speed 100
full-duplex
pppoe enable
pppoe-client dial-pool-number 2
!
interface Serial0/1
no ip address
shutdown
clock rate 2000000
!
interface Dialer1
mtu 1492
ip address negotiated
ip nat outside
ip virtual-reassembly
encapsulation ppp
dialer pool 1
ppp pap sent-username cisco password 0 cisco
!
interface Dialer2
mtu 1492
ip address negotiated
ip nat outside
ip virtual-reassembly
encapsulation ppp
dialer pool 2
ppp pap sent-username cisco password 0 cisco
!
ip route 0.0.0.0 0.0.0.0 Dialer2
ip route 0.0.0.0 0.0.0.0 Dialer1
ip route 192.168.10.0 255.255.255.0 192.168.30.1
ip route 192.168.20.0 255.255.255.0 192.168.30.1
!
ip http server
no ip http secure-server
ip nat inside source route-map nat1 interface Dialer1 overload
ip nat inside source route-map nat2 interface Dialer2 overload
!
access-list 1 permit 192.168.10.0 0.0.0.255
access-list 2 permit 192.168.20.0 0.0.0.255
!
route-map nat2 permit 20
match interface Dialer2
set interface Dialer2
!
route-map nat1 permit 10
match interface Dialer1
set interface Dialer1
!
route-map net permit 10
match ip address 1
set interface Dialer1
!
route-map net permit 20
match ip address 2
set interface Dialer2
!
control-plane
!
line con 0
line aux 0
line vty 0 4
login
!
End
ISP_VDC#sh run
Building configuration...
Current configuration : 1037 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname ISP_VDC
!
boot-start-marker
boot-end-marker
!
no aaa new-model
!
resource policy
!
memory-size iomem 5
ip cef
!
vpdn enable
!
username cisco password 0 cisco
!
bba-group pppoe global
virtual-template 1
!
interface Loopback0
ip address 1.1.1.1 255.255.255.255
!
interface FastEthernet0/0
ip address 10.0.1.1 255.255.255.0
speed 100
full-duplex
pppoe enable group global
!
interface FastEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface Virtual-Template1
mtu 1492
ip unnumbered FastEthernet0/0
peer default ip address pool pixpool
ppp authentication pap
!
ip local pool pixpool 203.162.0.181 203.162.0.190
ip route 203.162.0.160 255.255.255.224 FastEthernet0/0
!
ip http server
no ip http secure-server
!
control-plane
!
line con 0
exec-timeout 0 0
line aux 0
line vty 0 4
login
!
End
ISP_FPT#sh run
Building configuration...
Current configuration : 1032 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname ISP_FPT
!
boot-start-marker
boot-end-marker
!
no aaa new-model
!
resource policy
!
memory-size iomem 5
ip cef
!
vpdn enable
!
username cisco password 0 cisco
!
bba-group pppoe global
virtual-template 1
!
interface Loopback0
ip address 1.1.1.1 255.255.255.255
!
interface FastEthernet0/0
ip address 10.0.2.1 255.255.255.0
speed 100
full-duplex
pppoe enable group global
!
interface FastEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface Virtual-Template1
mtu 1492
ip unnumbered FastEthernet0/0
peer default ip address pool pixpool
ppp authentication pap
!
ip local pool pixpool 210.245.0.9 210.245.0.14
ip route 210.245.0.8 255.255.255.248 FastEthernet0/0
!
ip http server
no ip http secure-server
!
control-plane
!
line con 0
exec-timeout 0 0
line aux 0
line vty 0 4
login
!
end
Hai router ISP_VDC và ISP_FPT đóng vai trò như là 2 PPPoE Server cung cấp địa chỉ cho PPPoE client (NAT_ROUTER).
Yêu cầu:
1. Mạng 192.168.10.0/24 đi net bằng đường của VDC, mạng 192.168.20.0/24 đi net bằng đường của FPT
2. Khi đường VDC (hoặc FPT) đứt thì chuyển sang đường còn lại nghĩa là 2 đường net hoạt động theo kiểu active – active.
Với yêu cầu (1) thì mình đã thực hiện được rồi nhưng còn yêu cầu (2) thì vẫn chưa làm được, xin các bro chỉ mình giải pháp thực hiện yêu cầu (2). Cảm ơn rất nhiều. Dưới đây là cấu hình mình đã thực hiện.
INSIDE#sh run
Building configuration...
Current configuration : 917 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname INSIDE
!
boot-start-marker
boot-end-marker
!
no aaa new-model
!
resource policy
!
memory-size iomem 5
ip cef
!
interface Loopback0
ip address 192.168.10.1 255.255.255.0
!
interface Loopback1
ip address 192.168.20.1 255.255.255.0
!
interface FastEthernet0/0
no ip address
shutdown
duplex auto
speed auto
!
interface Serial0/0
ip address 192.168.30.1 255.255.255.0
clock rate 2000000
!
interface FastEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface Serial0/1
no ip address
shutdown
clock rate 2000000
!
ip route 0.0.0.0 0.0.0.0 Serial0/0
!
!
ip http server
no ip http secure-server
!
control-plane
!
line con 0
exec-timeout 0 0
line aux 0
line vty 0 4
login
!
!
End
NAT_ROUTER#sh run
Building configuration...
Current configuration : 1891 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname NAT_ROUTER
!
boot-start-marker
boot-end-marker
!
no aaa new-model
!
resource policy
!
memory-size iomem 5
ip cef
!
interface FastEthernet0/0
no ip address
speed 100
full-duplex
pppoe enable
pppoe-client dial-pool-number 1
!
interface Serial0/0
ip address 192.168.30.2 255.255.255.0
ip nat inside
ip virtual-reassembly
ip policy route-map net
clock rate 2000000
!
interface FastEthernet0/1
no ip address
speed 100
full-duplex
pppoe enable
pppoe-client dial-pool-number 2
!
interface Serial0/1
no ip address
shutdown
clock rate 2000000
!
interface Dialer1
mtu 1492
ip address negotiated
ip nat outside
ip virtual-reassembly
encapsulation ppp
dialer pool 1
ppp pap sent-username cisco password 0 cisco
!
interface Dialer2
mtu 1492
ip address negotiated
ip nat outside
ip virtual-reassembly
encapsulation ppp
dialer pool 2
ppp pap sent-username cisco password 0 cisco
!
ip route 0.0.0.0 0.0.0.0 Dialer2
ip route 0.0.0.0 0.0.0.0 Dialer1
ip route 192.168.10.0 255.255.255.0 192.168.30.1
ip route 192.168.20.0 255.255.255.0 192.168.30.1
!
ip http server
no ip http secure-server
ip nat inside source route-map nat1 interface Dialer1 overload
ip nat inside source route-map nat2 interface Dialer2 overload
!
access-list 1 permit 192.168.10.0 0.0.0.255
access-list 2 permit 192.168.20.0 0.0.0.255
!
route-map nat2 permit 20
match interface Dialer2
set interface Dialer2
!
route-map nat1 permit 10
match interface Dialer1
set interface Dialer1
!
route-map net permit 10
match ip address 1
set interface Dialer1
!
route-map net permit 20
match ip address 2
set interface Dialer2
!
control-plane
!
line con 0
line aux 0
line vty 0 4
login
!
End
ISP_VDC#sh run
Building configuration...
Current configuration : 1037 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname ISP_VDC
!
boot-start-marker
boot-end-marker
!
no aaa new-model
!
resource policy
!
memory-size iomem 5
ip cef
!
vpdn enable
!
username cisco password 0 cisco
!
bba-group pppoe global
virtual-template 1
!
interface Loopback0
ip address 1.1.1.1 255.255.255.255
!
interface FastEthernet0/0
ip address 10.0.1.1 255.255.255.0
speed 100
full-duplex
pppoe enable group global
!
interface FastEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface Virtual-Template1
mtu 1492
ip unnumbered FastEthernet0/0
peer default ip address pool pixpool
ppp authentication pap
!
ip local pool pixpool 203.162.0.181 203.162.0.190
ip route 203.162.0.160 255.255.255.224 FastEthernet0/0
!
ip http server
no ip http secure-server
!
control-plane
!
line con 0
exec-timeout 0 0
line aux 0
line vty 0 4
login
!
End
ISP_FPT#sh run
Building configuration...
Current configuration : 1032 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname ISP_FPT
!
boot-start-marker
boot-end-marker
!
no aaa new-model
!
resource policy
!
memory-size iomem 5
ip cef
!
vpdn enable
!
username cisco password 0 cisco
!
bba-group pppoe global
virtual-template 1
!
interface Loopback0
ip address 1.1.1.1 255.255.255.255
!
interface FastEthernet0/0
ip address 10.0.2.1 255.255.255.0
speed 100
full-duplex
pppoe enable group global
!
interface FastEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface Virtual-Template1
mtu 1492
ip unnumbered FastEthernet0/0
peer default ip address pool pixpool
ppp authentication pap
!
ip local pool pixpool 210.245.0.9 210.245.0.14
ip route 210.245.0.8 255.255.255.248 FastEthernet0/0
!
ip http server
no ip http secure-server
!
control-plane
!
line con 0
exec-timeout 0 0
line aux 0
line vty 0 4
login
!
end
Comment