一•CISCO路由器简介
1.1 统一采用IOS操作系统,操作具有一致性。
1.2 CISCO IOS操作环境。
ROM monitor > Failure of passWord recovery
BootROM router(boot) > Flash image upgrade
Cisco IOS router > Normal operation
1.3 Command Modes命令模式。
User EXEC Router> user Access
Privileged EXEC Router# System adminstration
Configuration mode Router(config)# Modify configuration
Setup Prompted dialog Create the initial
configuration
二 配置前的预备工作
2.1 用终端或仿真终端接入CONSOLE口 。
终端或仿真终端配置信息如下:
9600 baud 8 data bits no parity 2 stop bits (9600,8/N/2)
2.2 用TELNET命令在网上进行设置。
系统治理员可在网上用telnet address命令进行远程配置。
三 配置方法
3.1 Auto install
3.2 setup
3.3 config 命令行设置-
四 配置IP地址
4. 1采用 (3.1 /3.2) 方法进行配置。
4.2 config命令行方式进行设置
4.2.1 首先启动ROUTER 进入router > 模式。
键入Enable 进入router # 模式
然后键入config 进入router(config)# 模式
4.2.2 选择要配置的路由器端口
Router(config) # interface端口号
进入端口设置状态 Router(config-if)
此时用命令IP address
设定路由器端口IP地址
五 配置ip路由协议 (RIP ,OSPF ,BGP ,STATICS)
在globle模式下配置 例图见附图。
5. 1静态路由
IP route 目的网络地址 子网掩码 端口号
例:在RA1上配RA2的路由
IP route 10.0.210.4 255.255.255.252 E0
5.2 RIP2设置
以路器A1为例进行如下设置
router rip ;enable rip
version 2 ;选择版本2
network 10.86.16.0 ;相关子网地址
network 10.85.1.4
network 10.85.1.8
5.3 OSPF设置
以路由器D为例进行如下配置
router ospf 200 ;enable ospf 进程号为200
redistribute bgp 200 subnets ;
network 10.0.210.4 0.0.0.3 area 1 ; 相关子网地址及区域号
network 10.185.1.16 0.0.0.3 area 1
5.4 BGP设置
以路由器A2和D为例
A2:
router bgp 100 ;enable bgp 设置自治域号
network 10.0.210.4 mask 255.255.255.252 ;相关子网地址及子
网掩码
network 10.80.0.0 mask 255.240.0.0 ; 这些地址由bgp发到邻
居路由器
redistribute rip
neighbor 10.0.210.6 remote-as 200 ;设置远程相连自治域边
界路由器端口
D2:
router bgp 200
network 10.0.210.4 mask 255.255.255.252
network 10.0.32.0 mask 255.255.240.0
network 10.185.1.16 mask 255.255.255.252
network 10.0.1.0 mask 255.255.255.252
neighbor 10.0.210.5 remote-as 100
六 radius认证的设置
6.1 radius的简述
RADIUS的全称为(Remote Access Dail-In User Service),它是对远程拨号用户访问进行认证的一种协议。主要进行Authentication Authorization Accounting (AAA) 三方面的工作。
6.2 radius的配置
具体配置如下:
aaa new-mode ;enable radius
radius-server host ;指明radius server在网
上的地址
radius-server key
aaa authentication login default radius local ;进行login认证,若radius
server未找到从本地数据库内查找
aaa authentication ppp default radius local
aaa authorization network radius local ;授权检测
aaa accounting network start-stop radius ;计帐检测
七 路由器软件升级方法
7.1 改变操作环境
在global config mode设置: config -reg 0x2101
reload 进入Boot Rom 模式:router(boot)>
7.2 运行tFTP server
在网上运行tftp server,使升级文件可以传输。
7.3 升级版本
命令如下:
copy tftp flash ;将tftp server上的文件传入路由器的flash memoy中
copy flash tftp ; j将flash中的文件备份到tftp server中
八 配置路由器的一些注重事项
8.1拨号用户的配置。
cisco 2509/2511的异步串行通讯口在配置modem时,modem需设置成自动应答方式。具体方法如下:
用超级终端进入modem AT 命令方式,键入ats0=1 设置自动应答方式,然后键入at&w 将设置写入寄存器。
8.2 RIP & BGP的设置
当一个运行RIP路由协议的子网,做为一个自治域,用BGP协议接入另一
自治域时。此子网内所有路由器需添加参数: ip classless 。同时在
与边界路由器直接相连的路由器上需添加一个缺省网关。
设置如下:
ip 0.0.0.0 0.0.0.0 边界路由器地址。
8.3 v.35电缆直连的设置
在相关的端口上设置时钟速率:clock rate < speed> .
8.4 loopback端口的设置
loopback端口是一个虚拟端口,端口状态始终处于UP。通过它可以使由BGP相连的AS之间始终保持连系,不会由于边界路由器端口状态的改变而发生变化。其具体配置如下:
interface loopback
九常用的路由器命令 (见附录)
十 问与答
10.1如何检测网络是否通畅?
A:在网络主机上采用命令ping
10.2如何查看路由器配置信息?
A:在EXEC模式下用show config命令。
10.3如何查看路由器路由信息?
A:在EXEC模式下用show ip route 命令。
10.4如何查看路由器端口信息?
A:在EXEX模式下用show int <端口号> 命令。
10.5为什么端口协议已经配置,状态仍然是down?
A:在CONFIG模式下,选择该端口,执行no shutdwon命令。
10.6 config模式有几种状态,对应那些操作?
A:config模式有以下几种状态:
• globle config 全局配置操作 exec模式键入config t
• interface config 端口配置操作 config模式键入int <端口号>
• line config 线路配置操作 config模式键入line <线路号>
• router config 路由配置操作 config模式键入router<路由
协议>
十一网络实验简介
本实验模拟广东视聆通网络情况。将网络划分为AS 100和AS 200 .AS 100内动态路由协议采用RIP,AS 200内采用OSPF。两个自治域间采用BGP协议互连。该实验主要测试目的在于,测试一个采用RIP协议的网络能否划分自治域,并与其它自治域相连。
测试环境网络图见附图:
各点配置如下:
路由器A2配置:
hostname a2
!
enable secret 5 $1$kJyk$CfMLfg87wovmbVp5lHUfk/
enable password cisco
!
!
interface Loopback0
ip address 10.0.2.1 255.255.255.252
!
interface Ethernet0
ip address 10.86.16.2 255.255.240.0
ip rip send version 2
ip rip receive version 2
!
interface Ethernet1
ip address 10.0.210.5 255.255.255.252
ip rip send version 2
ip rip receive version 2
!
interface Serial0
no ip address
shutdown
!
interface Serial1
no ip address
shutdown
!
router rip
version 2
redistribute bgp 100
network 10.0.0.0
!
router bgp 100
network 10.0.210.4 mask 255.255.255.252
network 10.80.0.0 mask 255.240.0.0
redistribute rip
neighbor 10.0.210.6 remote-as 200
!
ip classless
!
line con 0
line aux 0
line vty 0 4
password cisco
login
!
end
路由器D的配置:
d#sh conf
Using 1069 out of 32762 bytes
!
version 11.0
service udp-small-servers
service tcp-small-servers
!
hostname d
!
enable secret 5 $1$EBoX$3AWqea9PpP9xTgr49gqLy.
enable password cisco
!
!
interface Loopback0
description Loopback Interface of Router
ip address 10.0.1.1 255.255.255.252
no ip mroute-cache
!
interface Ethernet0
description Core Region Router in Guangzhou
ip address 10.0.210.6 255.255.255.252
no ip mroute-cache
!
interface Serial0
ip address 10.185.1.17 255.255.255.252
no ip mroute-cache
ip ospf network broadcast
clockrate 9600
!
interface Serial1
no ip address
no ip mroute-cache
ip ospf network broadcast
shutdown
!
router ospf 200
redistribute bgp 200 subnets
network 10.0.210.4 0.0.0.3 area 1
network 10.185.1.16 0.0.0.3 area 1
!
router bgp 200
network 10.0.210.4 mask 255.255.255.252
network 10.0.32.0 mask 255.255.240.0
network 10.185.1.16 mask 255.255.255.252
network 10.0.1.0 mask 255.255.255.252
neighbor 10.0.210.5 remote-as 100
!
ip classless
ip ospf name-lookup
!
line con 0
line aux 0
transport input all
line vty 0 4
password cisco
login
!
end
路由器B的配置:
b#sh ip route
Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP
i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, * - candidate default
U - per-user static route
Gateway of last resort is 10.85.1.5 to network 0.0.0.0
10.0.0.0/8 is variably subnetted, 7 subnets, 2 masks
R 10.0.2.0/30 [120/2] via 10.85.1.5, 00:00:25, Serial0
C 10.88.16.0/20 is directly connected, Ethernet0
R 10.86.16.0/20 [120/1] via 10.85.1.5, 00:00:25, Serial0
R 10.87.16.0/20 [120/2] via 10.85.1.5, 00:00:25, Serial0
R 10.85.1.8/30 [120/1] via 10.85.1.5, 00:00:25, Serial0
C 10.85.1.4/30 is directly connected, Serial0
R 10.0.210.4/30 [120/2] via 10.85.1.5, 00:00:25, Serial0
R* 0.0.0.0/0 [120/1] via 10.85.1.5, 00:00:00, Serial0
b#sh conf
Using 572 out of 32762 bytes
!
version 11.1
service udp-small-servers
service tcp-small-servers
!
hostname b
!
!
!
interface Ethernet0
ip address 10.88.16.1 255.255.240.0
ip rip send version 2
ip rip receive version 2
!
interface Serial0
ip address 10.85.1.6 255.255.255.252
ip rip send version 2
ip rip receive version 2
clockrate 9600
!
interface Serial1
ip address 10.85.1.13 255.255.255.252
ip rip send version 2
ip rip receive version 2
clockrate 9600
!
router rip
version 2
network 10.0.0.0
!
ip classless
!
line con 0
line 1 8
line aux 0
line vty 0 4
password cisco
login
!
end
/************************************************************************/
路由器A1的配置:
a1#sh ip route
Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP
i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, * - candidate default
U - per-user static route, o - ODR
Gateway of last resort is 10.86.16.2 to network 0.0.0.0
10.0.0.0/8 is variably subnetted, 7 subnets, 2 masks
R 10.0.2.0/30 [120/1] via 10.86.16.2, 00:00:23, Ethernet0
R 10.88.16.0/20 [120/1] via 10.85.1.6, 00:00:27, Serial0
C 10.86.16.0/20 is directly connected, Ethernet0
R 10.87.16.0/20 [120/1] via 10.85.1.10, 00:00:24, Serial1
C 10.85.1.8/30 is directly connected, Serial1
C 10.85.1.4/30 is directly connected, Serial0
R 10.0.210.4/30 [120/1] via 10.86.16.2, 00:00:23, Ethernet0
S* 0.0.0.0/0 [1/0] via 10.86.16.2
a1#sh conf
Using 600 out of 32762 bytes
!
version 11.2
!
hostname a1
!
enable secret 5 $1$PKCA$FzjiYXenZNipsGuOcpwAg0
enable password cisco
!
!
interface Ethernet0
ip address 10.86.16.1 255.255.240.0
ip rip send version 2
ip rip receive version 2
!
interface Serial0
ip address 10.85.1.5 255.255.255.252
ip rip send version 2
ip rip receive version 2
!
interface Serial1
ip address 10.85.1.9 255.255.255.252
ip rip send version 2
ip rip receive version 2
clockrate 9600
!
router rip
version 2
network 10.0.0.0
!
ip classless
ip route 0.0.0.0 0.0.0.0 10.86.16.2
!
line con 0
line aux 0
line vty 0 4
password cisco
login
!
end
a1#
/*****************************************************/
路由器B1的配置:
b1#sh ip route
Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP
i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, * - candidate default
U - per-user static route
Gateway of last resort is not set
10.0.0.0/8 is variably subnetted, 4 subnets, 3 masks
O E2 10.0.0.0/8 [110/1] via 10.185.1.17, 00:34:51, Serial0
C 10.0.32.0/20 is directly connected, Ethernet0
C 10.185.1.16/30 is directly connected, Serial0
O 10.0.210.4/30 [110/74] via 10.185.1.17, 00:53:25, Serial0
b1#sh conf
Using 441 out of 32762 bytes
!
version 11.1
service udp-small-servers
service tcp-small-servers
!
hostname b1
!
!
!
interface Ethernet0
ip address 10.0.32.1 255.255.240.0
!
interface Serial0
ip address 10.185.1.18 255.255.255.252
ip ospf network broadcast
!
interface Serial1
no ip address
shutdown
!
router ospf 200
network 10.0.32.0 0.0.0.3 area 1
network 10.185.1.16 0.0.0.3 area 1
!
no ip classless
!
line con 0
line 1 8
line aux 0
line vty 0 4
login
!
end
路由器C的配置:
!
hostname c
!
enable secret 5 $1$IoKm$0ai6l75ThSs0zeR9T90W3/
enable password cisco
!
!
interface Ethernet0
ip address 10.87.16.1 255.255.240.0
ip rip send version 2
ip rip receive version 2
!
interface Serial0
ip address 10.85.1.14 255.255.255.252
ip rip send version 2
clockrate 9600
!
interface Serial1
ip address 10.85.1.10 255.255.255.252
ip rip send version 2
ip rip receive version 2
!
router rip
version 2
network 10.0.0.0
!
ip classless
!
line con 0
line 1 16
transport input all
line aux 0
transport input all
line vty 0 4
password cisco
login
!
end