【Juniper技术分享】FBF实验测试
简易topo R1 R3 //
=======R2
\
\
\
R11 R4
该实验使用olive 版本10.2做,9.4的olive版本不行,因为驱动问题,使得filter不生效。
验证流量
lab@ITAA-JUNOS-102-188# run monitor interface em2.24
lab@ITAA-JUNOS-102-188# run monitor interface em2.24
lab@ITAA-JUNOS-102-188# show | no-more
## Last changed: 2012-03-06 07:21:32 UTC
version 10.2R1.8;
system {
host-name ITAA-JUNOS-102-188;
root-authentication {
encrypted-password "$1$n3HU8VoA$B7ELxPMpQ2TYLFhs4iKQl."; ## SECRET-DATA
}
login {
user lab {
uid 2002;
class super-user;
authentication {
encrypted-password "$1$S1sKn3QC$h7cmxBtIIYrkSS2T1Q4pM."; ## SECRET-DATA
}
}
}
services {
telnet;
}
}
logical-systems {
r1 {
interfaces {
em1 {
unit 12 {
vlan-id 12;
family inet {
address 12.1.1.0/31;
}
}
}
}
routing-options {
static {
route 0.0.0.0/0 next-hop 12.1.1.1;
}
}
}
r11 {
interfaces {
em3 {
unit 12 {
vlan-id 12;
family inet {
address 112.1.1.0/31;
}
}
}
}
routing-options {
static {
route 0.0.0.0/0 next-hop 112.1.1.1;
}
}
}
r2 {
interfaces {
em1 {
unit 23 {
vlan-id 23;
family inet {
address 23.1.1.0/31;
}
}
unit 24 {
vlan-id 24;
family inet {
address 24.1.1.0/31;
}
}
}
em2 {
unit 12 {
vlan-id 12;
family inet {
filter {
input classify-customers;
}
address 12.1.1.1/31;
address 112.1.1.1/31;
}
}
}
}
routing-instances {
ISP1 {
instance-type forwarding;
routing-options {
static {
route 0.0.0.0/0 next-hop 23.1.1.1;
}
}
}
ISP2 {
instance-type forwarding;
routing-options {
static {
route 0.0.0.0/0 next-hop 24.1.1.1;
}
}
}
}
routing-options {
interface-routes {
rib-group inet my-rib-group;
}
rib-groups {
my-rib-group {
import-rib [ inet.0 ISP1.inet.0 ISP2.inet.0 ];
}
}
}
firewall {
family inet {
filter classify-customers {
term isp1-customers {
from {
source-address {
12.1.1.0/24;
}
}
then {
routing-instance ISP1;
}
}
term isp2-customers {
from {
source-address {
112.1.1.0/24;
}
}
then {
routing-instance ISP2;
}
}
term default {
then accept;
}
}
}
}
}
r3 {
interfaces {
em2 {
unit 23 {
vlan-id 23;
family inet {
address 23.1.1.1/31;
}
}
}
lo0 {
unit 3 {
family inet {
address 34.34.34.34/32;
}
}
}
}
routing-options {
static {
route 12.1.1.0/24 next-hop 23.1.1.0;
}
}
}
r4 {
interfaces {
em2 {
unit 24 {
vlan-id 24;
family inet {
address 24.1.1.1/31;
}
}
}
lo0 {
unit 4 {
family inet {
address 34.34.34.34/32;
}
}
}
}
routing-options {
static {
route 112.1.1.0/24 next-hop 24.1.1.0;
}
}
}
}
interfaces {
em0 {
unit 0 {
family inet {
address 192.168.102.188/24;
}
}
}
em1 {
vlan-tagging;
}
em2 {
vlan-tagging;
}
em3 {
vlan-tagging;
}
}
routing-options {
static {
route 0.0.0.0/0 next-hop 192.168.102.1;
}
}
页:
[1]