OSPF综合实验,在这个实验包含邻居认证,区域MD5认证,虚链路,多个OSPF进程号的作用,重分布,NSSA区域,更新过滤

 
 
实验内容:
1。配置基本OSPF协议,使得全网环回口可见
2。AREA 3 采用MD5的区域认证
3。AREA 2 采用明文邻居认证
4。不让EIGRP 10的5.5.5.5发送到R2上
5。将R2上看到关于44.4.0.4/24   44.4.1.4/24  44.4.2.4/24   44.4.3.4/24 汇总路由
6。将R5上运行EIGRP的5.5.5.0重分布到OSPF中,在网络任何一处都能PING 5.5.5.5
7。R1只能通过R2-R4-R5到达5.5.5.5
 
基本配置命令:
认证: area * au m
   ip os me * md5 cisco
      ip os au-key skyyue
汇总:area 3 range 44.4.0.0 0.0.3.255
过滤:ip access-list sta 1
       per 55.5.5.0
      distr 1 out
VLK: area 1 virtual-link 3.3.3.3
      area 1 virtual-line 1.1.1.1
重分布:redstr os 1 sub met 1000 100 255 1 1500
        redst  eigrp 10 sub
 
难点:在第7点中要用的多个OSPF进程,只让5.5.5.0重分布到area 3中
      area 0的区域认证,在之前我已经做了
R1#sh run
Building configuration...
Current configuration : 1158 bytes
!
version 12.3
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R1
!
boot-start-marker
boot-end-marker
no aaa new-model
ip subnet-zero
ip cef
interface Loopback0
 ip address 1.1.1.1 255.255.255.0
 ip ospf network point-to-point
!
interface FastEthernet0/0
 ip address 10.1.1.1 255.255.255.0
 duplex half
!
interface Serial1/0
 ip address 13.1.1.1 255.255.255.0
 serial restart-delay 0
!
interface Serial1/1
 ip address 12.1.1.1 255.255.255.0
 serial restart-delay 0
!
interface Serial1/2
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial1/3
 no ip address
 shutdown
 serial restart-delay 0
!
router ospf 1
 router-id 1.1.1.1
 log-adjacency-changes
 area 1 virtual-link 3.3.3.1
 network 1.1.1.0 0.0.0.255 area 0
 network 10.1.1.0 0.0.0.255 area 0
 network 12.1.1.0 0.0.0.255 area 0
 network 13.1.1.0 0.0.0.255 area 1
!
ip classless
no ip http server
no ip http secure-server
gatekeeper
 shutdown
!
!
line con 0
 exec-timeout 0 0
 logging synchronous
 stopbits 1
line aux 0
 stopbits 1
line vty 0 4
!
!
end
R1#
R2#sh run
Building configuration...
*Jun  8 23:15:16.655: %SYS-5-CONFIG_I: Configured from console by console
Current configuration : 1084 bytes
!
version 12.3
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R2
!
boot-start-marker
boot-end-marker
!
no aaa new-model
ip subnet-zero
!
ip cef
!
interface Loopback0
 ip address 2.2.2.2 255.255.255.0
 ip ospf network point-to-point
!
interface FastEthernet0/0
 no ip address
 shutdown
 duplex half
!        
interface Serial1/0
 ip address 12.1.1.2 255.255.255.0
 serial restart-delay 0
!
interface Serial1/1
 ip address 24.1.1.2 255.255.255.0
 serial restart-delay 0
!
interface Serial1/2
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial1/3
 no ip address
 shutdown
 serial restart-delay 0
!
router ospf 1
 router-id 2.2.2.2
 log-adjacency-changes
 network 2.2.2.0 0.0.0.255 area 0
 network 12.1.1.0 0.0.0.255 area 0
 network 24.1.1.0 0.0.0.255 area 0
!
ip classless
no ip http server
no ip http secure-server

gatekeeper
 shutdown
line con 0
 exec-timeout 0 0
 logging synchronous
 stopbits 1
line aux 0
 stopbits 1
line vty 0 4
end
R2#
 
R3#sh run
Building configuration...
Current configuration : 1195 bytes
!
version 12.3
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R3
!
boot-start-marker
boot-end-marker
!
no aaa new-model
ip subnet-zero
!
ip cef
!
interface Loopback0
 ip address 3.3.3.3 255.255.255.0
 ip ospf network point-to-point
!
interface FastEthernet0/0
 no ip address
 shutdown
 duplex half
!        
interface Serial1/0
 ip address 35.1.1.3 255.255.255.0
 ip ospf authentication
 ip ospf authentication-key skyyue
 serial restart-delay 0
!
interface Serial1/1
 ip address 13.1.1.3 255.255.255.0
 serial restart-delay 0
!
interface Serial1/2
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial1/3
 no ip address
 shutdown
 serial restart-delay 0
!
router ospf 1
 router-id 3.3.3.1
 log-adjacency-changes
 area 1 virtual-link 1.1.1.1
 network 3.3.3.0 0.0.0.255 area 2
 network 13.1.1.0 0.0.0.255 area 1
 network 35.1.1.0 0.0.0.255 area 2
 distribute-list 1 out
!
ip classless
no ip http server
no ip http secure-server
!
gatekeeper
 shutdown
!
!
line con 0
 exec-timeout 0 0
 logging synchronous
 stopbits 1
line aux 0
 stopbits 1
line vty 0 4
!
end
R3#
 
R4#sh run
Building configuration...
Current configuration : 1484 bytes
!
version 12.3
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R4
!
boot-start-marker
boot-end-marker
!
no aaa new-model
ip subnet-zero
!
ip cef
!        
interface Loopback0
 ip address 4.4.4.4 255.255.255.0
 ip ospf network point-to-point
!
interface Loopback1
 ip address 44.4.0.4 255.255.255.0 secondary
 ip address 44.4.1.4 255.255.255.0 secondary
 ip address 44.4.2.4 255.255.255.0 secondary
 ip address 44.4.3.4 255.255.255.0
!
interface FastEthernet0/0
 ip address 10.1.1.4 255.255.255.0
 duplex half
!
interface Serial1/0
 ip address 24.1.1.4 255.255.255.0
 serial restart-delay 0
!
interface Serial1/1
 ip address 45.1.1.4 255.255.255.0
 ip ospf message-digest-key 1 md5 cisco
 serial restart-delay 0
!
interface Serial1/2
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial1/3
 no ip address
 shutdown
 serial restart-delay 0
!
router ospf 1
 router-id 4.4.4.4
 log-adjacency-changes
 area 3 authentication message-digest
 area 3 nssa
 area 3 range 44.4.0.0 255.255.252.0
 network 4.4.4.0 0.0.0.255 area 3
 network 10.1.1.0 0.0.0.255 area 0
 network 24.1.1.0 0.0.0.255 area 0
 network 44.4.0.0 0.0.3.255 area 3
 network 45.1.1.0 0.0.0.255 area 3
!
ip classless
no ip http server
no ip http secure-server
!
gatekeeper
 shutdown
!
line con 0
 exec-timeout 0 0
 logging synchronous
 stopbits 1
line aux 0
 stopbits 1
line vty 0 4
!
end
R5#sh run
Building configuration...
*Jun  8 23:15:28.563: %SYS-5-CONFIG_I: Configured from console by console
Current configuration : 1345 bytes
!
version 12.3
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R5
!
boot-start-marker
boot-end-marker
!
no aaa new-model
ip subnet-zero
!
ip cef
!
interface Loopback0
 ip address 5.5.5.5 255.255.255.0
!
interface FastEthernet0/0
 no ip address
 shutdown
 duplex half
!
interface Serial1/0
 ip address 45.1.1.5 255.255.255.0
 ip ospf message-digest-key 1 md5 cisco
 serial restart-delay 0
!
interface Serial1/1
 ip address 35.1.1.5 255.255.255.0
 ip ospf authentication
 ip ospf authentication-key skyyue
 serial restart-delay 0
!
interface Serial1/2
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial1/3
 no ip address
 shutdown
 serial restart-delay 0
!
router eigrp 10
 redistribute ospf 1 metric 1000 100 255 1 1500
 network 5.5.5.0 0.0.0.255
 auto-summary
!
router ospf 1
 router-id 5.5.5.5
 log-adjacency-changes
 area 3 authentication message-digest
 area 3 nssa
 redistribute eigrp 10 subnets
 network 45.1.1.0 0.0.0.255 area 3
!
router ospf 2
 log-adjacency-changes
 network 35.1.1.0 0.0.0.255 area 2
!
ip classless
no ip http server
no ip http secure-server
!
gatekeeper
 shutdown
!
line con 0
 exec-timeout 0 0
 logging synchronous
 stopbits 1
line aux 0
 stopbits 1
line vty 0 4
!
end
出自 51CTO.COM博客