书签分享收藏举报版权申诉 / 58

立即下载

当前位置：首页 > 教育专区 > 教案示例 > 某某电信城域网asbr对接cn2-asbr割接方案【完整版】.doc

某某电信城域网asbr对接cn2-asbr割接方案【完整版】.doc

上传人：知****量

文档编号：91694326

上传时间：2023-05-27

格式：DOC

页数：58

大小：937.04KB

( 4.5 )

《某某电信城域网asbr对接cn2-asbr割接方案【完整版】.doc》由会员分享，可在线阅读，更多相关《某某电信城域网asbr对接cn2-asbr割接方案【完整版】.doc（58页珍藏版）》请在淘文阁 - 分享文档赚钱的网站上搜索。

1、某某电信城域网asbr对接cn2 asbr割接方案【完整版】(文档可以直接使用，也可根据实际需要修订后使用,可编辑放心下载）南京电信城域网ASBR对接CN2 ASBR割接方案2006年9月Confidential目录实施方案概述3网络现状描述4YNL NE40割接步骤4一城域网鼓楼GSR12416初始化配置5根本配置5VPN-IPV4配置6Vpn instance配置13二CN2鼓楼PE初始化配置19根本配置19VPN-IPV4配置19Vpn instance配置26三城域网ASBR建立至VRR的IBGP邻居31四开通城域网鼓楼GSR12416至CN2鼓楼PE链路32五应急措施及回退方案3

2、2HZM NE40割接步骤33一城域网鼓楼大行宫GSR12416初始化配置33根本配置33VPN-IPV4配置34Vpn instance配置41二CN2游府西街PE初始化配置45根本配置45VPN-IPV4配置46Vpn instance配置51三城域网ASBR建立至VRR的IBGP邻居56四开通城域网大行宫GSR12416至CN2游府西街PE链路56五应急措施及回退方案57实施方案概述本方案遵循集团公司关于CN2业务延伸网络连接实施的要求，是为实现CN2与江苏IP城域VPN网互联而准备的实施方案。本方案是基于对现行的江苏电信163、CN2及IP城域网运行状态的理解，以及将来业务的规划而做出

3、的。在整个实施方案中，我们一直遵循如下原那么：充分保证实施方案整体的可靠性；全面考虑网络过渡过程的各方面因素，尽可能地减少对现网业务的影响；在实施过程中进行必要的测试，保证整个实施过程的正确性。本期CN2业务延伸网络连接目标包括物理连接层面、路由层面、平安与管理层面三个主要层面，总体目标如下：物理连接层面: 实现CN2与IP城域网VPN互连。路由层面: 建立CN2与南京IP城域VPN网的路由连接并保障路由平安。网络现状描述目前中国电信CN2网络江苏南京节点有T640两台作为C设备，有GSR12416两台作为S设备。其中C设备已与IP城域网核心Cisco12416设备采用OC192端口互联

4、；S设备已与IP城域网VPN设备的VRR采用GE端口互联，目前采用两台华为NE40作为ASBR。这两台NE40兼做南京城域网VPN的VRR，南京城域网和CN2使用Option A方式实现跨域VPN。南京城域网VPN使用AS号64512，城域网AS为64660。南京城域网和CN2使用Option A方式实现跨域VPN，在这种方式下作为ASBR的PE需要管理所有VPN，这将导致PE上的VPN-IPv4路由数量非常庞大，对PE设备的要求非常高。本次割接实现ASBR从华为NE40割接至南京城域网利旧的两台GSR12416原城域网核心设备上，采用性能更优的GSR12416作为跨域VPN的专用ASBR，以

5、满足网络扩展的要求，完成CN2 MPLS VPN与南京电信MPLS VPN城域网之间跨域对接工作，与CN2 PE设备采用POS链路互联，所以在CN2 PE侧还需要各增加一块POS板卡，互联路由实为PECE路由采用eBGP每客户一个会话，跨域互联采用Option A方式。本次割接需要在保证传输资源已经到位的情况下进行。本次实施对城域网的业务无影响。YNL NE40割接步骤本次割接工作要求传输及尾纤布放工作(鼓楼GSR12416CN2鼓楼PE)提前准备，并调通相应互联链路。一城域网鼓楼GSR12416初始化配置根本配置Int loopback0 Router isis vpn Net *.* Pa

6、ssive loopback0mpls label protocol ldpInt pos*/*(上联鼓楼) no ip redirects no ip unreachables no ip directed-broadcast no ip proxy-arpcrc 32no cdp enabletag-switching ipip router isis vpnInt pos*/*(上联大行宫) no ip redirects no ip unreachables no ip directed-broadcast no ip proxy-arpcrc 32no cdp enabletag-s

7、witching ipip router isis vpn int POS*/* description to JS-NJ-GL-S-1.CN2 POS */* mtu 9178 no shutdownVPN-IPV4配置ip vrf CT_SoftSwitch_Media rd 4809:1038 route-target export 4809:1038 route-target import 4809:1038 !ip vrf LDJhujiaopingtai rd 64512:156 route-target export 64512:156 route-target import 6

8、4512:156 !ip vrf bianfangzongdui rd 64512:155 route-target export 64512:155 route-target import 64512:155 ! ip vrf caizhenju rd 64512:144 route-target export 64512:144 route-target import 64512:144 !ip vrf gulouquzhenfu rd 64512:138 route-target export 64512:138 route-target import 64512:138 !ip vrf

9、 huiminyiyuanbanqiao rd 64512:164 route-target export 64512:164 route-target import 64512:164 !ip vrf jiaotongguanlichu rd 64512:153 route-target export 64512:151 route-target export 64512:153 route-target import 64512:151 route-target import 64512:153 !ip vrf langchi rd 64512:502 route-target expor

10、t 64512:502 route-target import 64512:502 !ip vrf nanjingdianxin rd 64512:151 route-target export 64512:151 route-target import 64512:151 !ip vrf nanjingshilaodongju rd 64512:106 route-target export 64512:106 route-target import 64512:106 !ip vrf panchengyiyuan rd 64512:165 route-target export 64512

11、:165 route-target import 64512:165 !ip vrf pukoulaobao rd 64512:128 route-target export 64512:128 route-target import 64512:128 !ip vrf shengcaizhenting rd 64512:145 route-target export 64512:145 route-target import 64512:145 !ip vrf shenglaodongju rd 64512:115 route-target export 64512:115 route-ta

12、rget import 64512:115 !ip vrf shiyunhui rd 64512:133 route-target export 64512:133 route-target import 64512:133 !ip vrf test rd 100:1 route-target export 100:1 route-target import 100:1 route-target import 100:2 route-target import 100:3 route-target import 100:4 !ip vrf test1 rd 100:100 route-targ

13、et export 100:100 route-target export 100:1001 route-target export 4134:100 route-target import 100:100 route-target import 100:1001 route-target import 4134:100 !ip vrf vpn-baixiaquzhengfu rd 64512:139 route-target export 64512:139 route-target import 64512:139 !ip vrf vpn-xiaguanquzhenfu rd 64512:

14、163 route-target export 64512:163 route-target import 64512:163 !ip vrf zhongshihua rd 64512:142 route-target export 64512:142 route-target import 64512:142 router bgp 64512 bgp log-neighbor-changes neiremote-as 64512neinei description TO YNL-NE40-VRRnei shutdownneiremote-as 64512neinei description

15、TO HZM-NE40-VRRnei shutdown ! address-family vpnv4 nei activate nei send-community bothnei next-hop-self neiremote-as 64512 nei activate nei send-community both nei next-hop-self nei remote-as 64512 exit-address-family!int pos*/*.101encapsulation dot1Q 101ip vrf forwarding CT_SoftSwitch_Media int po

16、s*/*.102encapsulation dot1Q 102ip vrf forwarding LDJhujiaopingtaiint pos*/*.103encapsulation dot1Q 103ip vrf forwarding bianfangzongduiint pos*/*.104encapsulation dot1Q 104ip vrf forwarding caizhenju int pos*/*.105encapsulation dot1Q 105ip vrf forwarding gulouquzhenfu int pos*/*.106encapsulation dot

17、1Q 106ip vrf forwarding huiminyiyuanbanqiao int pos*/*.107encapsulation dot1Q 107ip vrf forwarding jiaotongguanlichu int pos*/*.108encapsulation dot1Q 108ip vrf forwarding langchi int pos*/*.109encapsulation dot1Q 109ip vrf forwarding nanjingdianxin int pos*/*.110encapsulation dot1Q 110ip vrf forwar

18、ding nanjingshilaodongju int pos*/*.111encapsulation dot1Q 111ip vrf forwarding panchengyiyuanint pos*/*.112encapsulation dot1Q 112ip vrf forwarding pukoulaobao int pos*/*.113encapsulation dot1Q 113ip vrf forwarding shengcaizhenting int pos*/*.114encapsulation dot1Q 114ip vrf forwarding shenglaodong

19、ju int pos*/*.115encapsulation dot1Q 115ip vrf forwarding shiyunhui int pos*/*.116encapsulation dot1Q 116ip vrf forwarding test int pos*/*.117encapsulation dot1Q 117ip vrf forwarding test1 int pos*/*.118encapsulation dot1Q 118ip vrf forwarding vpn-baixiaquzhengfu int pos*/*.119encapsulation dot1Q 11

20、9ip vrf forwarding vpn-xiaguanquzhenfuint pos*/*.120encapsulation dot1Q 120ip vrf forwarding zhongshihuaVpn instance配置Router bgp 64512 address-family ipv4 vrf test redistribute connected no synchronizationremote-as 4809send-community exit-address-family ! address-family ipv4 vrf test1 redistribute c

21、onnected no synchronizationremote-as 4809send-community exit-address-family ! address-family ipv4 vrf nanjingshilaodongju redistribute connected no synchronizationremote-as 4809send-community exit-address-family ! address-family ipv4 vrf gulouquzhenfu redistribute connected no synchronizationremote-

22、as 4809send-community exit-address-family ! address-family ipv4 vrf shiyunhui redistribute connected no synchronizationremote-as 4809send-community exit-address-family ! address-family ipv4 vrf zhongshihua redistribute connected no synchronizationremote-as 4809send-community exit-address-family ! ad

23、dress-family ipv4 vrf shenglaodongju redistribute connected no synchronizationremote-as 4809send-community exit-address-family ! address-family ipv4 vrf caizhenju redistribute connected no synchronizationremote-as 4809send-community exit-address-family ! address-family ipv4 vrf shengcaizhenting redi

24、stribute connected no synchronizationremote-as 4809send-community exit-address-family ! address-family ipv4 vrf nanjingdianxin redistribute connected no synchronizationremote-as 4809send-community exit-address-family ! address-family ipv4 vrf bianfangzongdui redistribute connected no synchronization

25、remote-as 4809send-community exit-address-family ! address-family ipv4 vrf langchi redistribute connected no synchronizationremote-as 4809send-community exit-address-family ! address-family ipv4 vrf jiaotongguanlichu redistribute connected no synchronization remote-as 4809send-communityexit-address-

26、family ! address-family ipv4 vrf LDJhujiaopingtai redistribute connected no synchronizationremote-as 4809send-community exit-address-family ! address-family ipv4 vrf vpn-baixiaquzhengfu redistribute connected no synchronizationremote-as 4809send-community exit-address-family ! address-family ipv4 vr

27、f pukoulaobao redistribute connected no synchronizationremote-as 4809send-community exit-address-family ! address-family ipv4 vrf vpn-xiaguanquzhenfu redistribute connected no synchronizationremote-as 4809send-community exit-address-family ! address-family ipv4 vrf panchengyiyuan redistribute connec

28、ted no synchronizationremote-as 4809send-community exit-address-family ! address-family ipv4 vrf CT_SoftSwitch_Media redistribute connected no synchronizationremote-as 4809send-community exit-address-family ! address-family ipv4 vrf huiminyiyuanbanqiao redistribute connected no synchronizationremote

29、-as 4809 neisend-community exit-address-family !二CN2鼓楼PE初始化配置根本配置 int pos*/* description to JS-NJ-GL-R-4.MAN POS */* mtu 9178 no shutdownVPN-IPV4配置ip vrf CT_SoftSwitch_Media rd 4809:1038 route-target export 4809:1038 route-target import 4809:1038 !ip vrf LDJhujiaopingtai rd 64512:156 route-target ex

30、port 64512:156 route-target import 64512:156 !ip vrf bianfangzongdui rd 64512:155 route-target export 64512:155 route-target import 64512:155 ! ip vrf caizhenju rd 64512:144 route-target export 64512:144 route-target import 64512:144 !ip vrf gulouquzhenfu rd 64512:138 route-target export 64512:138 r

31、oute-target import 64512:138 !ip vrf huiminyiyuanbanqiao rd 64512:164 route-target export 64512:164 route-target import 64512:164 !ip vrf jiaotongguanlichu rd 64512:153 route-target export 64512:151 route-target export 64512:153 route-target import 64512:151 route-target import 64512:153 !ip vrf lan

32、gchi rd 64512:502 route-target export 64512:502 route-target import 64512:502 !ip vrf nanjingdianxin rd 64512:151 route-target export 64512:151 route-target import 64512:151 !ip vrf nanjingshilaodongju rd 64512:106 route-target export 64512:106 route-target import 64512:106 !ip vrf panchengyiyuan rd

33、 64512:165 route-target export 64512:165 route-target import 64512:165 !ip vrf pukoulaobao rd 64512:128 route-target export 64512:128 route-target import 64512:128 !ip vrf shengcaizhenting rd 64512:145 route-target export 64512:145 route-target import 64512:145 !ip vrf shenglaodongju rd 64512:115 ro

34、ute-target export 64512:115 route-target import 64512:115 !ip vrf shiyunhui rd 64512:133 route-target export 64512:133 route-target import 64512:133 !ip vrf test rd 100:1 route-target export 100:1 route-target import 100:1 route-target import 100:2 route-target import 100:3 route-target import 100:4

35、 !ip vrf test1 rd 100:100 route-target export 100:100 route-target export 100:1001 route-target export 4134:100 route-target import 100:100 route-target import 100:1001 route-target import 4134:100 !ip vrf vpn-baixiaquzhengfu rd 64512:139 route-target export 64512:139 route-target import 64512:139 !

36、ip vrf vpn-xiaguanquzhenfu rd 64512:163 route-target export 64512:163 route-target import 64512:163 !ip vrf zhongshihua rd 64512:142 route-target export 64512:142 route-target import 64512:142 !int pos*/*.101encapsulation dot1Q 101ip vrf forwarding CT_SoftSwitch_Media int pos*/*.102encapsulation dot

37、1Q 102ip vrf forwarding LDJhujiaopingtaiint pos*/*.103encapsulation dot1Q 103ip vrf forwarding bianfangzongduiint pos*/*.104encapsulation dot1Q 104ip vrf forwarding caizhenju int pos*/*.105encapsulation dot1Q 105ip vrf forwarding gulouquzhenfu int pos*/*.106encapsulation dot1Q 106ip vrf forwarding h

38、uiminyiyuanbanqiao int pos*/*.107encapsulation dot1Q 107ip vrf forwarding jiaotongguanlichu int pos*/*.108encapsulation dot1Q 108ip vrf forwarding langchi int pos*/*.109encapsulation dot1Q 109ip vrf forwarding nanjingdianxin int pos*/*.110encapsulation dot1Q 110ip vrf forwarding nanjingshilaodongju

39、int pos*/*.111encapsulation dot1Q 111ip vrf forwarding panchengyiyuanint pos*/*.112encapsulation dot1Q 112ip vrf forwarding pukoulaobao int pos*/*.113encapsulation dot1Q 113ip vrf forwarding shengcaizhenting int pos*/*.114encapsulation dot1Q 114ip vrf forwarding shenglaodongju int pos*/*.115encapsul

40、ation dot1Q 115ip vrf forwarding shiyunhui int pos*/*.116encapsulation dot1Q 116ip vrf forwarding test int pos*/*.117encapsulation dot1Q 117ip vrf forwarding test1 int pos*/*.118encapsulation dot1Q 118ip vrf forwarding vpn-baixiaquzhengfu int pos*/*.119encapsulation dot1Q 119ip vrf forwarding vpn-xi

41、aguanquzhenfuint pos*/*.120encapsulation dot1Q 120ip vrf forwarding zhongshihuaVpn instance配置Router bgp 4809 address-family ipv4 vrf test redistribute connected no synchronizationremote-as 64512send-community exit-address-family ! address-family ipv4 vrf test1 redistribute connected no synchronizati

42、onremote-as 64512send-community exit-address-family ! address-family ipv4 vrf nanjingshilaodongju redistribute connected no synchronizationremote-as 64512send-community exit-address-family ! address-family ipv4 vrf gulouquzhenfu redistribute connected no synchronizationremote-as 64512send-community

43、exit-address-family ! address-family ipv4 vrf shiyunhui redistribute connected no synchronizationremote-as 64512send-community exit-address-family ! address-family ipv4 vrf zhongshihua redistribute connected no synchronizationremote-as 64512send-community exit-address-family ! address-family ipv4 vrf shenglaodongju redistribute connected no synchronizat

文档加载中……请稍候！
如果长时间未打开，您也可以点击刷新试试。

下载文档到电脑，查找使用更方便

12 金币

版权申诉 word格式文档无特别注明外均可编辑修改；预览文档经过压缩，下载后原文更清晰！ 立即下载

配套讲稿：: 如PPT文件的首页显示word图标，表示该PPT已包含配套word讲稿。双击word图标可打开word文档。
特殊限制：: 部分文档作品中含有的国旗、国徽等图片，仅作为作品整体效果示例展示，禁止商用。设计者仅对作品中独创性部分享有著作权。
关键词：: 完整版某某电信城域网 asbr 对接 cn2 方案

淘文阁 - 分享文档赚钱的网站所有资源均是用户自行上传分享，仅供网友学习交流，未经上传用户书面授权，请勿作他用。

限制150内

关于本文

本文标题：某某电信城域网asbr对接cn2-asbr割接方案【完整版】.doc
链接地址：https://www.taowenge.com/p-91694326.html