xlfm22 发表于 2018-7-26 10:41:09

控制列表加nat转换(华为)

控制列表加NAT转换(华为)

  实验环境:真机
  实验器材:三台路由器,一台windows虚拟机(桥接)
  

  
  R1配置:
  inter e0
  ip address 192.168.1.254 24
  loopback
  Ethernet0 running on loopback mode
  in
  %22:02:31: Interface Ethernet0 is UP
  %22:02:31: tLine protocol ip on the interface Ethernet0 is UP
  Incomplete command
  
  inter s0
  ip address 192.168.4.1 24
  R2配置:
  inter e0
  ip address 192.168.3.254 24
  
  %22:03:14: Line protocol ip on the interface Ethernet0 is UP
  inter s0
  ip address 192.168.4.2 24
  
  %22:03:34: Line protocol ip on the interface Serial0 is UP
  shut
  % Interface Serial0 is shut down
  
  %22:03:39: Interface Serial0 is DOWN
  %22:03:39: Line protocol ip on the interface Serial0 is DOWN
  undo shut
  inter s1
  ip address 192.168.5.2 24
  
  %22:04:16: Line protocol ip on the interface Serial1 is UP
  shut
  % Interface Serial1 is shut down
  
  %22:04:23: Interface Serial1 is DOWN
  undo shut
  R3配置:
  inter e0
  ip address 192.168.2.254 24
  loopback
  Ethernet0 running on loopback mode
  
  %01:08:52: Interface Ethernet0 is UP
  %01:08:52: Line protocol ip on the interface Ethernet0 is UP
  inter s0
  ip address 192.168.5.1 24
  
  %01:09:16: Line protocol ip on the interface Serial0 is UP
  shut
  % Interface Serial0 is down
  
  %01:09:19: Interface Serial0 is DOWN
  undo shut
  R2上做静态路由:
  ip route 192.168.1.0 24 192.168.4.1
  ip route 192.168.2.0 24 192.168.5.1
  ping 192.168.1.254
  PING 192.168.1.254: 56data bytes, press CTRL_C to break
  Reply from 192.168.1.254: bytes=56 Sequence=0 ttl=255 time = 25 ms
  Reply from 192.168.1.254: bytes=56 Sequence=1 ttl=255 time = 25 ms
  Reply from 192.168.1.254: bytes=56 Sequence=2 ttl=255 time = 25 ms
  Reply from 192.168.1.254: bytes=56 Sequence=3 ttl=255 time = 25 ms
  Reply from 192.168.1.254: bytes=56 Sequence=4 ttl=255 time = 25 ms
  
  --- 192.168.1.254 ping statistics ---
  5 packets transmitted
  5 packets received
  0.00% packet loss
  round-trip min/avg/max = 25/25/25 ms
  
  ping 192.168.2.254
  PING 192.168.2.254: 56data bytes, press CTRL_C to break
  Reply from 192.168.2.254: bytes=56 Sequence=0 ttl=255 time = 26 ms
  Reply from 192.168.2.254: bytes=56 Sequence=1 ttl=255 time = 26 ms
  Reply from 192.168.2.254: bytes=56 Sequence=2 ttl=255 time = 26 ms
  Reply from 192.168.2.254: bytes=56 Sequence=3 ttl=255 time = 26 ms
  Reply from 192.168.2.254: bytes=56 Sequence=4 ttl=255 time = 26 ms
  
  --- 192.168.2.254 ping statistics ---
  5 packets transmitted
  5 packets received
  0.00% packet loss
  round-trip min/avg/max = 26/26/26 ms
  r2上做访问列表:
  acl 2000
  rule permit source 192.168.3.0 0.0.0.255
  Rule has been added to normal packet-filtering rules
  acl 2001
  rule permit source 192.168.3.0 0.0.0.255
  Rule has been added to normal packet-filtering rules
  inter s0
  nat outbound 2000 interface
  inter s1
  nat outbound 2001 interface
  
  本地虚拟机测试:


  
  dis ip rout
  Routing Tables:
  Destination/MaskProto   Pref   Metric   Nexthop    Interface
  127.0.0.0/8   Direct    0         0      127.0.0.1 LoopBack0
  127.0.0.1/32Direct    0         0      127.0.0.1 LoopBack0
  192.168.1.0/24Static   60         0      192.168.4.1 Serial0
  192.168.2.0/24Static   60         0      192.168.5.1 Serial1
  192.168.3.0/24Direct    0         0    192.168.3.254 Ethernet0
  192.168.3.254/32Direct    0         0      127.0.0.1 LoopBack0
  192.168.4.0/24Direct    0         0      192.168.4.1 Serial0
  192.168.4.1/32Direct    0         0      192.168.4.1 Serial0
  192.168.4.2/32Direct    0         0      127.0.0.1 LoopBack0
  192.168.5.0/24Direct    0         0      192.168.5.1 Serial1
  192.168.5.1/32Direct    0         0      192.168.5.1 Serial1
  192.168.5.2/32Direct    0         0      127.0.0.1 LoopBack0
  ping 192.168.2.254
  PING 192.168.2.254: 56data bytes, press CTRL_C to break
  Reply from 192.168.2.254: bytes=56 Sequence=0 ttl=255 time = 25 ms
  Reply from 192.168.2.254: bytes=56 Sequence=1 ttl=255 time = 25 ms
  Reply from 192.168.2.254: bytes=56 Sequence=2 ttl=255 time = 25 ms
  Reply from 192.168.2.254: bytes=56 Sequence=3 ttl=255 time = 25 ms
  Reply from 192.168.2.254: bytes=56 Sequence=4 ttl=255 time = 25 ms
  
  --- 192.168.2.254 ping statistics ---
  5 packets transmitted
  5 packets received
  0.00% packet loss
  round-trip min/avg/max = 25/25/25 ms
  
  ping 192.168.1.254
  PING 192.168.1.254: 56data bytes, press CTRL_C to break
  Reply from 192.168.1.254: bytes=56 Sequence=0 ttl=255 time = 25 ms
  Reply from 192.168.1.254: bytes=56 Sequence=1 ttl=255 time = 25 ms
  Reply from 192.168.1.254: bytes=56 Sequence=2 ttl=255 time = 25 ms
  Reply from 192.168.1.254: bytes=56 Sequence=3 ttl=255 time = 25 ms
  Reply from 192.168.1.254: bytes=56 Sequence=4 ttl=255 time = 25 ms
  
  --- 192.168.1.254 ping statistics ---
  5 packets transmitted
  5 packets received
  0.00% packet loss
  round-trip min/avg/max = 25/25/25 ms
  
  
  dis ip rout
  Routing Tables:
  Destination/MaskProto   Pref   Metric   Nexthop    Interface
  127.0.0.0/8   Direct    0         0      127.0.0.1 LoopBack0
  127.0.0.1/32Direct    0         0      127.0.0.1 LoopBack0
  192.168.1.0/24Direct    0         0    192.168.1.254 Ethernet0
  192.168.1.254/32Direct    0         0      127.0.0.1 LoopBack0
  192.168.4.0/24Direct    0         0      192.168.4.2 Serial0
  192.168.4.1/32Direct    0         0      127.0.0.1 LoopBack0
  192.168.4.2/32Direct    0         0      192.168.4.2 Serial0
  ping 192.168.3.254
  PING 192.168.3.254: 56data bytes, press CTRL_C to break
  Request time out
  Request time out
  Request time out
  Request time out
  Request time out
  
  --- 192.168.3.254 ping statistics ---
  5 packets transmitted
  0 packets received
  100.00% packet loss
  
  dis ip rout
  Routing Tables:
  Destination/MaskProto   Pref   Metric   Nexthop    Interface
  127.0.0.0/8   Direct    0         0      127.0.0.1 LoopBack0
  127.0.0.1/32Direct    0         0      127.0.0.1 LoopBack0
  192.168.2.0/24Direct    0         0    192.168.2.254 Ethernet0
  192.168.2.254/32Direct    0         0      127.0.0.1 LoopBack0
  192.168.5.0/24Direct    0         0      192.168.5.2 Serial0
  192.168.5.1/32Direct    0         0      127.0.0.1 LoopBack0
  192.168.5.2/32Direct    0         0      192.168.5.2 Serial0
  ping 192.168.3.254
  PING 192.168.3.254: 56data bytes, press CTRL_C to break
  Request time out
  Request time out
  Request time out
  Request time out
  
页: [1]
查看完整版本: 控制列表加nat转换(华为)