电脑技术学习

AR18宽带路由器NAT+QoS典型应用和配置

dn001

 应用说明
  目标:在AR1830上同时启用NAT和QOS,从PC1发送的数据流定义为Gold(优先级为5),至少要保证50%的ADSL带宽;从PC2发送的数据流定义为multimedia(优先级3),至少要保证20%的ADSL带宽;网管(优先级7)要保证10%带宽,但是在网络不忙的时候,各个数据流都可以超过自己所定义的带宽。
  
  实现:首先是在以太网入口上,对Gold,Multimedia做识别并打IP-precedence,对于网管流量,配置classifier来匹配源地址是Lo0口的数据包,然后在上行口(adsl口)先配置car来打IP-precedence,并同时配置EF队列保证优先转发。对在以太网入口打过IP-precedence的Multimedia和gold流,在上行口上做AF队列来保证带宽。 这里要注重的一点是,在出接口上要么只能配置百分比带宽,要么只能配置指定数字带宽,不能如客户要求的那样配置成既有百分比又有数据带宽(如25%/25%/16K),所以需要预先知道上行带宽,然后自己计算一下,再确认是配置成百分比还是数字带宽。
  
  另外,ADSL接口的QoS带宽根据国际标准均为640bps。
  
  组网图
  

AR18宽带路由器NAT+QoS典型应用和配置

  
  注重事项
  1、 QoS CBQ只能应用在ATM接口的PVC下,不可以直接用在ATM接口或Dialer口;
  
  具体配置
  AR18-30(PPPoE Client)配置:                                    
  
  dis cur                                
  
  #                                       
  
  sysname Router                                
  
  #                                       
  
   dialer-rule 1 ip permit                            
  
  #                                       
  
  traffic classifier gold operator and                      
  
   if-match ip-precedence 5                           
  
  traffic classifier snmp operator and                      
  
   if-match acl 3003                               
  
  traffic classifier multimedia operator and                   
  
   if-match ip-precedence 3                           
  
  #                                       
  
  traffic behavior gold                             
  
   queue af bandwidth pct 50                          
  
  traffic behavior snmp                             
  
   queue af bandwidth pct 10                          
  
  traffic behavior multimedia                          
  
   queue af bandwidth pct 20                          
  
  #                                       
  
  qos policy policy1                               
  
   classifier multimedia behavior multimedia                   
  
   classifier gold behavior gold                         
  
   classifier snmp behavior snmp                         
  
  #                                       
  
  interface Dialer1                               
  
   link-protocol ppp                               
  
   mtu 1450                                   
  
   ip address ppp-negotiate                           
  
   dialer user test                               
  
   dialer-group 1                                
  
   dialer bundle 1                                
  
   nat outbound 3000                               
  
  #                                       
  
  interface Ethernet1/0                             
  
   ip address 202.150.1.31 255.255.255.0                     
  
   qos car inbound acl 3001 cir 100000000 cbs 100000000 ebs 0 green remark-prec-pa
  
  ss 5 red remark-prec-pass 5                          
  
   qos car inbound acl 3002 cir 100000000 cbs 100000000 ebs 0 green remark-prec-pa
  
  ss 3 red remark-prec-pass 3                          
  
  #                                       
  
  interface Atm2/0                                
  
   pvc 4/33                                   
  
   map bridge Virtual-Ethernet1                         
  
   qos reserved-bandwidth pct 100                        
  
   qos apply policy policy1 outbound                      
  
   qos car outbound acl 3003 cir 16000 cbs 15000 ebs 0 green remark-prec-pass 7 re
  
  d remark-prec-pass 7                              
  
  #                                       
  
  interface Virtual-Ethernet1                          
  
   pppoe-client dial-bundle-number 1                       
  
  #                                       
  
  interface NULL0                                
  
  #                                       
  
  interface LoopBack0                              
  
   ip address 202.150.10.1 255.255.255.255                    
  
  #                                       
  
  acl number 3000                                
  
   rule 0 permit ip source 202.150.1.0 0.0.0.255                 
  
   rule 1 deny ip                                
  
  acl number 3001                                
  
   rule 0 permit ip source 202.150.1.1 0                     
  
  acl number 3002                                
  
   rule 0 permit ip source 202.150.1.2 0                     
  
  acl number 3003                                
  
   rule 0 permit ip source 202.150.10.1 0                    
  
  #                                       
  
   ip route-static 0.0.0.0 0.0.0.0 Dialer 1 preference 60            
  
  #                                       
  
  user-interface con 0                              
  
   idle-timeout 0 0                               
  
  user-interface vty 0 4                             
  
   authentication-mode none                           
  
   user privilege level 3                            
  
  #                                       
  
  return                                     
  
  AR4640(PPPoE Server)配置:
  
  dis cur                                
  
  #                                       
  
   sysname AR46-40                                
  
  #                                       
  
   local-user test passWord simple test                     
  
  #                                       
  
   ip pool 143 202.143.1.100 202.143.1.200                      
  
  #                                       
  
  interface Virtual-Template33  
  
   ppp authentication-mode pap scheme default
  
   ppp accounting scheme default                        
  
   ip address 202.143.1.46 255.255.255.0                     
  
   remote address pool 143                         
  
  #                                       
  
  interface Aux0                                 
  
   async mode flow