Ejercicio_BGP

download Ejercicio_BGP

of 11

Transcript of Ejercicio_BGP

  • 7/27/2019 Ejercicio_BGP

    1/11

    EjerciciosdeBGPiBGP,eBGP

    EnlasiguienteprcticaestableceremossesionesbsicasdeiBGPyeBGP.CadaAS

    intercambiarrutasconunproveedordeserviciosdeInternet(ISP),yluegoconlosASde

    otrosgruposporvadeunpuntodeintercambiodeInternet(IXP).Porfavorutilicelosdiagramasdetopologaparaguiarse.

    Estaprcticaesunacontinuacindelosejerciciosdecapa2ydeOSPF,asqueasumiremosqueOSPFyahasidoconfiguradointernamente,yquehayconectividadcompletaentre

    enrutadoresyestacionesdetrabajo.

  • 7/27/2019 Ejercicio_BGP

    2/11

    iBGP

    1. Verificar que tenemos buena conectividad hacia cada una de lasinterfaces loopback.

    ping 10.10.254.2ping 10.10.254.3ping 10.10.64.2ping 10.10.64.3

    ping ipv6 FEC0:10:0:FE::2ping ipv6 FEC0:10:0:FE::3ping ipv6 FEC0:10:2:64::2ping ipv6 FEC0:10:2:64::3

    IPv4:

    show ip ospf : Muestra informacin general de OSPFshow ip ospf interface : Muestra el estatus de OSPF en cada interfazshow ip ospf neighbor : Muestra la lista de vecinos OSPF.show ip ospf database : Muestra la base de datos topolgica de OSPF

    IPv6:show ipv6 ospfshow ipv6 ospf interfaceshow ipv6 ospf neighborshow ipv6 ospf database

    2. Establezca los parmetros globales.router bgp 10bgp log-neighbor-changesno synchronization

    no auto-summarybgp deterministic-meddistance bgp 200 200 200

    3. Configure los vecinos iBGP.R11:

    router bgp 10neighbor 10.10.254.2 remote-as 10neighbor 10.10.254.2 update-source loopback 0neighbor 10.10.254.2 description iBGP to R12neighbor 10.10.254.2 password NSRCneighbor 10.10.254.3 remote-as 10neighbor 10.10.254.3 update-source loopback 0neighbor 10.10.254.3 description iBGP to R13neighbor 10.10.254.3 password NSRCneighbor FEC0:10:0:FE::2 remote-as 10neighbor FEC0:10:0:FE::2 update-source loopback 0neighbor FEC0:10:0:FE::2 description iBGP to R12neighbor FEC0:10:0:FE::2 password NSRCneighbor FEC0:10:0:FE::3 remote-as 10neighbor FEC0:10:0:FE::3 update-source loopback 0

  • 7/27/2019 Ejercicio_BGP

    3/11

    neighbor FEC0:10:0:FE::3 description iBGP to R13neighbor FEC0:10:0:FE::3 password NSRCaddress-family ipv4no neighbor FEC0:10:0:FE::2 activateno neighbor FEC0:10:0:FE::3 activateaddress-family ipv6neighbor FEC0:10:0:FE::2 activateneighbor FEC0:10:0:FE::3 activate

    4. PARE - Checkpoint 1. IPv4:

    show ip bgp summary : Muestra informacin de BGP y de los vecinosshow ip bgp : Muestra la lista de las rutas aprendidasshow ip route : Muestra todas las rutas instaladas en la FIB

    IPv6:show bgp ipv6 unicast summaryshow bgp ipv6show ipv6 route

    5. Crear redes de clientes para anunciar via iBGPEn los enrutadores interiores (RX2 y RX3) solamente:

    router bgp 10network 10.10.64.0 mask 255.255.192.0address-family ipv6network FEC0:10:2::/48

    6.PARE - Checkpoint 2.

    En R12 y R13:

    show ip bgp neighbors 10.10.254.1 advertised-routesshow bgp ipv6 unicast neighbors FEC0:10:0:FE::1 advertised-routes

    En el enrutador de frontera:

    show ip bgpshow bgp ipv6 unicast

    Por qu no est siendo anunciado el prefijo?

    7. Crear una ruta esttica para su prefijo.En los enrutadores interiores (RX2 y RX3) solamente:

    ip route 10.10.64.0 255.255.192.0 Null0 250ipv6 route FEC0:10:2::/48 Null0 250

  • 7/27/2019 Ejercicio_BGP

    4/11

    8. STOP -- Checkpointping 10.10.254.2ping 10.10.254.3ping 10.10.1.1ping 10.10.1.2

    ping 10.10.64.1ping 10.10.65.1ping FEC0:10:0:FE::2ping FEC0:10:0:FE::3ping FEC0:10:2:64::2ping FEC0:10:2:64::3ping FEC0:10:2:65::2ping FEC0:10:2:65::3

    write memoryshow running-configshow startup-config

  • 7/27/2019 Ejercicio_BGP

    5/11

    eBGP

    1. Configure su interfaz con el ISP.R11:

    interface FastEthernet0/0description Link to ISP

    ip address 10.254.10.2 255.255.255.252ipv6 enableipv6 address FEC0:FE:0:10::2/64no ip redirectsno ip directed-broadcastno ip proxy-arpno shutdown

  • 7/27/2019 Ejercicio_BGP

    6/11

    ISP:

    TodoslosenlacesdeclientessonagregadosenunswitchgestionadoporelISP,ydesdeall

    todaslasconexionessontransportadasenunatroncalqueterminaenunainterfazfsicadelenrutador.Poresaraznutilizaremosetiquetado802.1QenelenrutadordelISP.LaID

    delaVLANcorresponderconelnmerodeAS:

    interface FastEthernet0/0.10description Link to as10encapsulation dot1Q 10ip address 10.254.10.1 255.255.255.252ipv6 address FEC0:FE:0:10::1/64ipv6 enableno ip redirectsno ip directed-broadcastno ip proxy-arpno shutdown!

    2. Configure la sesin eBGP con el ISP.R11:

    router bgp 10neighbor 10.254.10.1 remote-as 254neighbor 10.254.10.1 description eBGP to ISPneighbor 10.254.10.1 password NSRCneighbor FEC0:FE:0:10::1 remote-as 254neighbor FEC0:FE:0:10::1 description eBGP to ISPneighbor FEC0:FE:0:10::1 password NSRCaddress-family ipv4

    no neighbor FEC0:FE:0:10::1 activateaddress-family ipv6neighbor FEC0:FE:0:10::1 activate

    ISP:router bgp 254bgp log-neighbor-changesneighbor 10.254.10.2 remote-as 10neighbor 10.254.10.2 description eBGP to as10neighbor 10.254.10.2 password NSRCneighbor FEC0:FE:0:10::2 remote-as 10neighbor FEC0:FE:0:10::2 description eBGP to as10neighbor FEC0:FE:0:10::2 password NSRC

    address-family ipv4no neighbor FEC0:FE:0:10::2 activate

    exit-address-family!address-family ipv6neighbor FEC0:FE:0:10::2 activate

    3. PARE - Checkpoint.

  • 7/27/2019 Ejercicio_BGP

    7/11

    show ip bgp summaryshow ip bgp neighbors 10.254.10.1show ip bgp neighbors 10.254.10.1 advertised-routesshow ip bgp neighbors 10.254.10.1 routesshow ip bgp

    show bgp ipv6 unicast summaryshow bgp ipv6 unicast neighbors FEC0:FE:0:10::1show bgp ipv6 unicast neighbors FEC0:FE:0:10::1 advertised-routesshow bgp ipv6 unicast neighbors FEC0:FE:0:10::1 routesshow bgp ipv6 unicast

    Puede observar alguno de los prefijos del ISP en su RIB de BGP? Por qu?

    4. Agregue la red punto-a-punto en su IGP, pero asegrese de noestablecer una adyacencia OSPF con su vecino eBGP!

    router ospf 100

    passive-interface FastEthernet0/0!ipv6 router ospf 100passive-interface FastEthernet0/0

    interface FastEthernet0/0ip ospf 100 area 0ipv6 ospf 100 area 0

    5. Haga agregacin de los bloques CIDR.router bgp 10aggregate-address 10.10.0.0 255.255.0.0

    address-family ipv6aggregate-address FEC0:10::/32

    6. PARE - Checkpoint.show ip bgp neighbors 10.254.10.1 advertised-routesshow ip bgp neighbors 10.254.10.1 routesshow bgp ipv6 unicast neighbors FEC0:FE:0:10::1 advertised-routesshow bgp ipv6 unicast neighbors FEC0:FE:0:10::1 routes

    7. Anuncie slo el bloque agregado, no sus componentes.router bgp 10aggregate-address 10.10.0.0 255.255.0.0 summary-onlyaddress-family ipv6aggregate-address FEC0:10::/32 summary-only

    Otra opcin sera:

    router bgp 10no aggregate-address 10.10.0.0 255.255.0.0 summary-only

  • 7/27/2019 Ejercicio_BGP

    8/11

    network 10.10.0.0 mask 255.255.0.0address-family ipv6no aggregate-address FEC0:10::/32 summary-onlynetwork FEC0:10::/32exitexitip route 10.10.0.0 255.255.0.0 Null0 250ipv6 route FEC0:10::/32 Null0 250

    8. Cree listas de prefijos para polticas de entrada/salida.R11:

    ip prefix-list out-peer permit 10.10.0.0/16 le 32ip prefix-list isp-in-peer deny 10.10.0.0/16 le 32ip prefix-list isp-in-peer permit 0.0.0.0/0 le 32ipv6 prefix-list ipv6-out-peer permit FEC0:10::/32 le 128ipv6 prefix-list ipv6-isp-in-peer deny FEC0:10::/32 le 128ipv6 prefix-list ipv6-isp-in-peer permit ::/0 le 128

    ISP: ip prefix-list as10-in-peer permit 10.10.0.0/16 le 32ipv6 prefix-list ipv6-as10-in-peer permit FEC0:10::/32 le 128

    9. Cree las polticas de entrada/salida.R11:

    router bgp 10neighbor 10.254.10.1 prefix-list out-peer outneighbor 10.254.10.1 prefix-list isp-in-peer inneighbor FEC0:FE:0:10::1 prefix-list ipv6-out-peer outneighbor FEC0:FE:0:10::1 prefix-list ipv6-isp-in-peer in

    ISP:router bgp 254neighbor 10.254.10.2 prefix-list as10-in-peer inneighbor FEC0:FE:0:10::2 prefix-list ipv6-as10-in-peer in

    10. PARE - Checkpoint.show ip bgp summaryshow ip bgpping traceroute

    write memoryshow running-configshow startup-config

  • 7/27/2019 Ejercicio_BGP

    9/11

    PuntosdeIntercambio

    Ahoraintroduciremosunpuntodeintercambiodecapa-2(IXP).UnIXPdecapa-2es

    bsicamenteunswitchquepermitealosASestablecersesionesdeintercambiodetrfico

    (peering),evitandoatravesarinnecesariamentecircuitosdelISPquecuestandinero.Enestaprctica,cadaASharpeeringconotrosdosAS,ademsdesusesinconelISP.

    Unelementoclaveenelestablecimientodeunpeeringesusarfiltrosdeprefijosparaevitar

    anunciosBGPquepudierancausarquesuASseconviertaenunpuntodetrnsito(pasando

    trficoquenioriginaniterminaensured).

  • 7/27/2019 Ejercicio_BGP

    10/11

    1. Configure la interfaz que conecta con el IXP.R11:

    interface FastEthernet0/3/0description Link to IXPip address 10.255.0.10 255.255.255.0

    ipv6 enableipv6 address FEC0:FF::10/64no ip redirectsno ip directed-broadcastno ip proxy-arpno shutdown

    2. Asegrese de incluir la red del IXP en su IGP.R11:

    router ospf 100passive-interface FastEthernet0/3/0

    !ipv6 router ospf 100passive-interface FastEthernet0/3/0

    interface FastEthernet0/3/0ip ospf 100 area 0ipv6 ospf 100 area 0

    3. Configure sus sesiones eBGP por cada vecino en el IXP. Recuerde mirarel diagrama.

    R11:router bgp 10neighbor 10.255.0.20 remote-as 20neighbor 10.255.0.20 description IXP to AS20neighbor 10.255.0.50 remote-as 50neighbor 10.255.0.50 description IXP to AS50neighbor FEC0:FF::20 remote-as 20neighbor FEC0:FF::20 description IXP to AS20neighbor FEC0:FF::50 remote-as 50neighbor FEC0:FF::50 description IXP to AS50address-family ipv4no neighbor FEC0:FE::20 activateno neighbor FEC0:FE::50 activateaddress-family ipv6neighbor FEC0:FF::20 activate

    neighbor FEC0:FF::50 activate

    4. PARE Checkpoint.show ip bgp summaryshow ip bgp neighbors 10.255.0.20show ip bgp neighbors 10.255.0.20 advertised-routesshow ip bgp neighbors 10.255.0.20 routesshow ip bgp

  • 7/27/2019 Ejercicio_BGP

    11/11

    show bgp ipv6 unicast summaryshow bgp ipv6 unicast neighbors FEC0:FF::20show bgp ipv6 unicast neighbors FEC0:FF::20 advertised-routesshow bgp ipv6 unicast neighbors FEC0:FF::20 routesshow bgp ipv6 unicast

    5. Cree listas de prefijos para sus polticas de salida.ip prefix-list out-peer permit 10.10.0.0/16 le 32ipv6 prefix-list ipv6-out-peer permit FEC0:10::/32 le 128

    6. Y para sus polticas de entrada.ip prefix-list as20-in-peer permit 10.20.0.0/16 le 32ip prefix-list as50-in-peer permit 10.50.0.0/16 le 32!ipv6 prefix-list ipv6-as20-in-peer permit FEC0:20::/32 le 128ipv6 prefix-list ipv6-as50-in-peer permit FEC0:50::/32 le 128

    7. Cree las polticas de entrada/salida.router bgp 10neighbor 10.255.0.20 prefix-list out-peer outneighbor 10.255.0.20 prefix-list as20-in-peer inneighbor 10.255.0.50 prefix-list out-peer outneighbor 10.255.0.50 prefix-list as50-in-peer inneighbor FEC0:FF::20 prefix-list ipv6-out-peer outneighbor FEC0:FF::20 prefix-list ipv6-as20-in-peer inneighbor FEC0:FF::50 prefix-list ipv6-out-peer outneighbor FEC0:FF::50 prefix-list ipv6-as50-in-peer in

    8. PARE Checkpoint.show ip bgp summaryshow ip bgpping traceroute show bgp ipv6 unicast summaryshow bgp ipv6 unicastping ipv6 traceroute ipv6

    write memoryshow running-config


Book1

Book1

BAREMOS

BAREMOS

EXPLOCION CE INSUMO HOSPITAL

EXPLOCION CE INSUMO HOSPITAL

hoja de costos falda2

hoja de costos falda2

Libro1

Libro1

PLANTILLA PROYECTO DE INVERSION

PLANTILLA PROYECTO DE INVERSION

FORMULARIO DIMAR

FORMULARIO DIMAR

Ejemplos de ficha bibliográfica

Ejemplos de ficha bibliográfica

Mapas Conceptuales

Mapas Conceptuales

Calculo Ciclon

Calculo Ciclon

Puntuación PAEF,s

Puntuación PAEF,s

Municipios de España

Municipios de España

REGISTRO EXCEL ASISTENCIA LABORAL II 2007

REGISTRO EXCEL ASISTENCIA LABORAL II 2007

Logos

Logos

Kar Español

Kar Español

Método De Solfeo - Laz Tomo 1

Método De Solfeo - Laz Tomo 1

CARGUE PUCC

CARGUE PUCC

problemes unitats de mesura

problemes unitats de mesura

Formato Financiero-1 (con tabla de amortizacion corregida)

Formato Financiero-1 (con tabla de amortizacion corregida)

Hiato, Diptongo y Triptongo

Hiato, Diptongo y Triptongo