RIP实验详细配置
实验:
1.R3环回为3.3.3.0/24
2.其他基于192.168.1.0/24进行划分
3.R1/2均存在两个环回
4.整个网络运行RIPV2,但不能直接宣告R3的环回
5.全网可达,保障更新安全,减少路由条目数量,避免环路
1.规划IP
192.168.1.0/24
192.168.1.0/26 骨干
192.168.1.0/30
192.168.1.4/30
192.168.1.8/30
192.168.1.12/30
192.168.1.16/30
192.168.1.20/30
192.168.1.24/30
……
192.168.1.60/30
192.168.1.64/26 R1
192.168.1.64/27
192.168.1.96/27
192.168.1.128/26 R2
192.168.1.128/27
192.168.1.160/27
192.168.1.192/26
2.配置IP
R1:
[r1]int LoopBack 0
[r1-LoopBack0]ip add 192.168.1.65 27
[r1-LoopBack0]int LoopBack 1
[r1-LoopBack1]ip add 192.168.1.97 27
[r1-LoopBack1]int g0/0/1
[r1-GigabitEthernet0/0/1]ip add 192.168.1.1 30
R2:
[r2]int LoopBack 0
[r2-LoopBack0]ip add 192.168.1.129 27
[r2-LoopBack0]int LoopBack 1
[r2-LoopBack1]ip add 192.168.1.161 27
[r2-LoopBack1]int g0/0/0
[r2-GigabitEthernet0/0/0]ip add 192.168.1.2 30
[r2-GigabitEthernet0/0/0]int g0/0/1
[r2-GigabitEthernet0/0/1]ip add 192.168.1.5 30
R3:
[r3]int LoopBack 0
[r3-LoopBack0]ip add 3.3.3.3 24
[r3-LoopBack0]int g0/0/0
[r3-GigabitEthernet0/0/0]ip add 192.168.1.6 30
测试直连连通性
3.RIP
R1:
[r1]rip
[r1-rip-1]version 2
[r1-rip-1]undo summary
[r1-rip-1]network 192.168.1.0
R2:
r2]rip
[r2-rip-1]version 2
[r2-rip-1]undo summary
[r2-rip-1]network 192.168.1.0
R3:
[r3]rip
[r3-rip-1]version 2
[r3-rip-1]undo summary
[r3-rip-1]network 192.168.1.0
[r3]dis ip routing-table protocol rip 查看路由表
验证:
4.处理3.3.3.0/24 配置缺省
[r3]rip
[r3-rip-1]default-route originate
验证:
5.做认证
[r1]int g0/0/1
[r1-GigabitEthernet0/0/1]rip authentication-mode md5 usual cipher 123456
再次抓包 看不到信息
R2发过来的还可以看到 同理给R2做认证
[r2]int g0/0/0
[r2-GigabitEthernet0/0/0]rip authentication-mode md5 usual cipher 123456
同理23之间也需要做认证 密码可以和12不一样,只要保证邻居之间密码相同即可
[r2]int g0/0/1
[r2-GigabitEthernet0/0/1]rip authentication-mode md5 usual cipher 789456
[r3]int g0/0/0
[r3-GigabitEthernet0/0/0]rip authentication-mode md5 usual cipher 789456
6.汇总
[r1]int g0/0/1
[r1-GigabitEthernet0/0/1]rip summary-address 192.168.1.64 255. 255. 255.192
同理汇总R2
7.防环:
[r1]ip route-static 192.168.1.64 26 null 0
[r2]ip route-static 192.168.1.128 26 null 0