一、拓扑
二、BGP全互联
1、去掉之前的R2和R5上的路由引入
[R5-ospf-1]undo import-route bgp
[R2-ospf-1]undo import-route bgp
2、配置BGP全互联解决路由黑洞同时打破IBGP的水平分割
AS200内的设备两两之间配置IBGP邻居关系
R2 BGP 配置:
[R2-bgp]di th
bgp 200
router-id 2.2.2.2
peer 3.3.3.3 as-number 200
peer 3.3.3.3 connect-interface LoopBack0
peer 4.4.4.4 as-number 200
peer 4.4.4.4 connect-interface LoopBack0
peer 5.5.5.5 as-number 200
peer 5.5.5.5 connect-interface LoopBack0
peer 6.6.6.6 as-number 200
peer 6.6.6.6 connect-interface LoopBack0
peer 10.1.12.1 as-number 100
ipv4-family unicast
undo synchronization
network 22.22.22.22 255.255.255.255
peer 3.3.3.3 enable
peer 3.3.3.3 next-hop-local
peer 4.4.4.4 enable
peer 4.4.4.4 next-hop-local
peer 5.5.5.5 enable
peer 5.5.5.5 next-hop-local
peer 6.6.6.6 enable
peer 6.6.6.6 next-hop-local
peer 10.1.12.1 enable
R3 BGP 配置:
[R3-bgp]di th
bgp 200
peer 2.2.2.2 as-number 200
peer 2.2.2.2 connect-interface LoopBack0
peer 4.4.4.4 as-number 200
peer 4.4.4.4 connect-interface LoopBack0
peer 5.5.5.5 as-number 200
peer 5.5.5.5 connect-interface LoopBack0
peer 6.6.6.6 as-number 200
peer 6.6.6.6 connect-interface LoopBack0
peer 10.1.13.1 as-number 100
ipv4-family unicast
undo synchronization
peer 2.2.2.2 enable
peer 2.2.2.2 next-hop-local
peer 4.4.4.4 enable
peer 4.4.4.4 next-hop-local
peer 5.5.5.5 enable
peer 5.5.5.5 next-hop-local
peer 6.6.6.6 enable
peer 6.6.6.6 next-hop-local
peer 10.1.13.1 enable
R4 BGP 配置:
[R4-bgp]di th
bgp 200
router-id 4.4.4.4
peer 2.2.2.2 as-number 200
peer 2.2.2.2 connect-interface LoopBack0
peer 3.3.3.3 as-number 200
peer 3.3.3.3 connect-interface LoopBack0
peer 5.5.5.5 as-number 200
peer 5.5.5.5 connect-interface LoopBack0
peer 6.6.6.6 as-number 200
peer 6.6.6.6 connect-interface LoopBack0
ipv4-family unicast
undo synchronization
peer 2.2.2.2 enable
peer 3.3.3.3 enable
peer 5.5.5.5 enable
peer 6.6.6.6 enable
R5 BGP 配置:
[R5-bgp]di th
[V200R003C00]
bgp 200
router-id 5.5.5.5
peer 2.2.2.2 as-number 200
peer 2.2.2.2 connect-interface LoopBack0
peer 3.3.3.3 as-number 200
peer 3.3.3.3 connect-interface LoopBack0
peer 4.4.4.4 as-number 200
peer 4.4.4.4 connect-interface LoopBack0
peer 6.6.6.6 as-number 200
peer 6.6.6.6 connect-interface LoopBack0
peer 10.1.57.7 as-number 300
ipv4-family unicast
undo synchronization
peer 2.2.2.2 enable
peer 2.2.2.2 next-hop-local
peer 3.3.3.3 enable
peer 3.3.3.3 next-hop-local
peer 4.4.4.4 enable
peer 4.4.4.4 next-hop-local
peer 6.6.6.6 enable
peer 6.6.6.6 next-hop-local
R6 BGP 配置:
[R6-bgp]di th
[V200R003C00]
bgp 200
router-id 6.6.6.6
peer 2.2.2.2 as-number 200
peer 2.2.2.2 connect-interface LoopBack0
peer 3.3.3.3 as-number 200
peer 3.3.3.3 connect-interface LoopBack0
peer 4.4.4.4 as-number 200
peer 4.4.4.4 connect-interface LoopBack0
peer 5.5.5.5 as-number 200
peer 5.5.5.5 connect-interface LoopBack0
ipv4-family unicast
undo synchronization
peer 2.2.2.2 enable
peer 2.2.2.2 next-hop-local
peer 3.3.3.3 enable
peer 3.3.3.3 next-hop-local
peer 4.4.4.4 enable
peer 4.4.4.4 next-hop-local
peer 5.5.5.5 enable
peer 5.5.5.5 next-hop-local
三、验证BGP路由
1、R4可以通过BGP学到7和11网段的路由
2、此时已经解决BGP路由黑洞问题,R7和R1之间可以互相ping通
三、优化全互联配置
通过全互联配置大量的对等体邻居关系,此时我们可以通过peer-group配置
R2 配置为例,其他设备配置方法一样,此处不再赘述
[R2-bgp]group IBGP
[R2-bgp]peer IBGP connect-interface loo 0
[R2-bgp]peer IBGP next-hop-local
[R2-bgp]peer 4.4.4.4 group IBGP
[R2-bgp]peer 3.3.3.3 group IBGP
[R2-bgp]peer 5.5.5.5 group IBGP
[R2-bgp]peer 6.6.6.6 group IBGP
[R2-bgp]di bgp group //查看peer group组配置
<R7>ping -a 7.7.7.7 11.11.11.11 //R7和R1直接通信正常
PING 11.11.11.11: 56 data bytes, press CTRL_C to break
Reply from 11.11.11.11: bytes=56 Sequence=1 ttl=252 time=40 ms
Reply from 11.11.11.11: bytes=56 Sequence=2 ttl=252 time=50 ms
Reply from 11.11.11.11: bytes=56 Sequence=3 ttl=252 time=40 ms
Reply from 11.11.11.11: bytes=56 Sequence=4 ttl=252 time=40 ms