企业官网建设流程全解析

首页 / 建站日记 / 企业官网建设流程全解析
IP-OSPF域外路由引入实验
2026/6/1 11:06:18 网站建设 项目流程

实验拓扑:

一、配置IP地址

R1

R2

R3

R4

R5

R6

R7

R8

R9

R10

R11

R12

二、配置缺省路由使全网通

R3:[R3]IP route-static 0.0.0.0 0 34.0.0.4

R5:[R5]IP route-static 0.0.0.0 0 45.0.0.4

R6:[R6]ip route-static 0.0.0.0 0 46.0.0.4

R7:[R7]ip route-static 0.0.0.0 0 47.0.0.4

公网通测试

三、配置OSPF

area3使用进程1,area4使用进程2

[r9-ospf-1]import-route ospf 2

[r9-ospf-2]import-route ospf 1

将RIP引入area2

[r12-ospf-1]import-route rip 1

四、配置MGRE

[r3-Tunnel0/0/1]interface Tunnel0/0/0
[r3-Tunnel0/0/1] ip address 172.16.6.3 255.255.255.0
[r3-Tunnel0/0/1] tunnel-protocol gre p2mp
[r3-Tunnel0/0/1] source 34.0.0.3
[r3-Tunnel0/0/1]nhrp network-id 1000

[r5-Tunnel0/0/1]interface Tunnel0/0/0
[r5-Tunnel0/0/1] ip address 172.16.6.5 255.255.255.0
[r5-Tunnel0/0/1] tunnel-protocol gre p2mp
[r5-Tunnel0/0/1]source Serial4/0/0
[r5-Tunnel0/0/1] nhrp network-id 1000
[r5-Tunnel0/0/1]nhrp entry 172.16.6.3 34.0.0.3 register

[r6-Tunnel0/0/1]interface Tunnel0/0/0
[r6-Tunnel0/0/1] ip address 172.16.6.6 255.255.255.0
[r6-Tunnel0/0/1] tunnel-protocol gre p2mp
[r6-Tunnel0/0/1] source Serial4/0/0
[r6-Tunnel0/0/1] nhrp network-id 1000
[r6-Tunnel0/0/1] nhrp entry 172.16.6.3 34.0.0.3 register

[r7-Tunnel0/0/1]interface Tunnel0/0/0
[r7-Tunnel0/0/1] ip address 172.16.6.7 255.255.255.0
[r7-Tunnel0/0/1] tunnel-protocol gre p2mp
[r7-Tunnel0/0/1]source GigabitEthernet0/0/0
[r7-Tunnel0/0/1] nhrp network-id 1000
[r7-Tunnel0/0/1] nhrp entry 172.16.6.3 34.0.0.3 register

1、在中心站点开启伪广播

[r3-Tunnel0/0/1]nhrp entry multicast dynamic

2、将隧道接口修改成广播型

[r3-Tunnel0/0/1]ospf network-type broadcast

[r5-Tunnel0/0/1]ospf network-type broadcast

[r6-Tunnel0/0/1]ospf network-type broadcast

[r7-Tunnel0/0/1]ospf network-type broadcast

3、修改DR的选举

[r5-Tunnel0/0/1]ospf dr-priority 0

[r6-Tunnel0/0/1]ospf dr-priority 0

[r7-Tunnel0/0/1]ospf dr-priority 0

5.内网出口配置nat抓取流量

[r3]acl number 2000

[r3-acl-basic -2000]rule 5 permit source 172.16.0.0 0.0.0.255

[r3-Serial4/0/0]nat outbound 2000

[r5]acl number 2000
[r5-acl-basic -2000]rule 5 permit source 172.16.0.0 0.0.255.255

[r5-Serial4/0/0]nat outbound 2000

[r6]acl number 2000

[r6-acl-basic-2000]rule 5 permit source 172.16.0.0 0.0.0.255

[r6-Serial4/0/0]nat outbound 2000

[r7]acl number 2000
[r7-acl-basic-2000]rule 5 permit source 172.16.0.0 0.0.255.255

[r7-GigabitEthernet4/0/0]nat outbound 2000

在ABR上下放缺省路由
[r3-ospf-1]default-route-advertise

[r5-ospf-1]default-route-advertise

[r6-ospf-1]default-route-advertise

[r7-ospf-1]default-route-advertise

ping通测:

6.路由汇总和特殊区域
[r3-ospf-1-area-0.0.0.1]abr-summary 172.16.32.0 255.255.224.0
[r3-ospf-1-area-0.0.0.1]stub no-summary
[r1-ospf-1-area-0.0.0.1]stub no-summary
[r2-ospf-1-area-0.0.0.1]stub no-summary

[r6-ospf-1-area-0.0.0.2]abr-summary 172.16.64.0 255.255.224.0
[r6-ospf-1-area-0.0.0.2]nssa no-summary

[r7-ospf-1-area-0.0.0.3]abr-summary 172.16.96.0 255.255.224.0
[r7-ospf-1-area-0.0.0.3]nssa no-summary

[r8-ospf-1-area-0.0.0.3]nssa no-summary

[r9-ospf-1-area-0.0.0.3]nssa no-summary

[r11-ospf-1-area-0.0.0.2]nssa no-summary

[r12-ospf-1-area-0.0.0.2]nssa no-summary

此时area 4没法访问外网

给area 4下发缺省路由

[r9-ospf-2]default-route-advertise

ping通测试

7、减少LSA的更新量,加快收敛,保障更新安全

[r1-GigabitEthernet0/0/0]ospf timer hello 1

[r2-GigabitEthernet0/0/0]ospf timer hello 1

[r3-GigabitEthernet0/0/0]ospf timer hello 1

[r3-Tunnel0/0/1]ospf timer hello 1

[r5-Tunnel0/0/1]ospf timer hello 1

[r6-Tunnel0/0/1]ospf timer hello 1

[r6-GigabitEthernet0/0/1]ospf timer hello 1

[r7-Tunnel0/0/1]ospf timer hello 1

[r7-GigabitEthernet0/0/1]ospf timer hello 1

[r8-GigabitEthernet0/0/0]ospf timer hello 1

[r8-GigabitEthernet0/0/1]ospf timer hello 1

[r9-GigabitEthernet0/0/0]ospf timer hello 1

[r9-GigabitEthernet0/0/1]ospf timer hello 1

[r10-GigabitEthernet0/0/0]ospf timer hello 1

[r11-GigabitEthernet0/0/0]ospf timer hello 1

[r11-GigabitEthernet0/0/1]ospf timer hello 1

[r12-GigabitEthernet0/0/0]ospf timer hello 1

8、进行OSPF认证

[r1-ospf-1-area-0.0.0.1]authentication-mode md5 1 cipher 12345

[r2-ospf-1-area-0.0.0.1]authentication-mode md5 1 cipher 12345

[r3-ospf-1-area-0.0.0.1]authentication-mode md5 1 cipher 12345

[r3-ospf-1-area-0.0.0.0]authentication-mode md5 1 cipher 12345

[r5-ospf-1-area-0.0.0.0]authentication-mode md5 1 cipher 12345

[r6-ospf-1-area-0.0.0.2]authentication-mode md5 1 cipher 12345

[r6-ospf-1-area-0.0.0.0]authentication-mode md5 1 cipher 12345

[r7-ospf-1-area-0.0.0.0]authentication-mode md5 1 cipher 12345

[r7-ospf-1-area-0.0.0.3]authentication-mode md5 1 cipher 12345

[r8-ospf-1-area-0.0.0.3]authentication-mode md5 1 cipher 12345

[r9-ospf-1-area-0.0.0.3]authentication-mode md5 1 cipher 12345

[r9-ospf-2-area-0.0.0.4]authentication-mode md5 1 cipher 12345

[r10-ospf-2-area-0.0.0.4]authentication-mode md5 1 cipher 12345

[r11-ospf-1-area-0.0.0.2]authentication-mode md5 1 cipher 12345

[r12-ospf-1-area-0.0.0.2]authentication-mode md5 1 cipher 12345

全网通测试








标签: 网站建设 企业官网 项目流程 UI设计 前端开发

热门文章

文章分类

标签云

网站建设 响应式设计 用户体验 SEO优化 前端开发 小程序 电商平台 性能优化

相关文章

您可能感兴趣的其他内容

显卡驱动大扫除:DDU终极指南,让你的电脑重获新生
2026/6/1 11:04:30 网站建设

显卡驱动大扫除:DDU终极指南,让你的电脑重获新生

显卡驱动大扫除:DDU终极指南,让你的电脑重获新生 【免费下载链接】display-drivers-uninstaller Display Driver Uninstaller (DDU) a driver removal utility / cleaner utility 项目地址: https://gitcode.com/gh_mirrors/di/display-drivers-uninst…...

阅读更多 →
微软Ruuh聊天机器人深度体验:大模型如何实现文化适配与本地化
2026/6/1 11:04:20 网站建设

微软Ruuh聊天机器人深度体验:大模型如何实现文化适配与本地化

1. 项目概述:一次对微软Ruuh聊天机器人的深度体验最近在探索对话式AI的实际应用时,我花了不少时间深度体验了微软在特定市场推出的聊天机器人——Ruuh。这个名字在印地语中意为“灵魂”,其定位非常明确:一款旨在理解并融入当地文化…...

阅读更多 →
终极艾尔登法环帧率解锁与游戏增强完整指南
2026/6/1 10:59:34 网站建设

终极艾尔登法环帧率解锁与游戏增强完整指南

终极艾尔登法环帧率解锁与游戏增强完整指南 【免费下载链接】EldenRingFpsUnlockAndMore A small utility to remove frame rate limit, change FOV, add widescreen support and more for Elden Ring 项目地址: https://gitcode.com/gh_mirrors/el/EldenRingFpsUnlockAndMor…...

阅读更多 →

需要专业的网站建设服务?

联系我们获取免费的网站建设咨询和方案报价,让我们帮助您实现业务目标

立即咨询