XE隧道穿越NAT&FW应用的配置
一、组网需求:
无
二、组网图:
1.XE2000-A配置
[xe2000a-ps]dis cur
#
sysname xe2000a
#
interface Aux0
async mode flow
#
interface GigabitEthernet0/0
ip address 10.1.1.1 255.0.0.0
#
interface GigabitEthernet0/1
#
interface NULL0
#
ip route-static 61.1.1.1 255.255.255.255 10.1.1.3 preference 60
#
user-interface con 0
user-interface aux 0
user-interface vty 0 4
authentication-mode none
user privilege level 3
#
process-server
ps-config xe2000-a interface GigabitEthernet0/0
ls-mode remote ip-address 61.1.1.1 port 13579
#
2.XE2000-C配置
[xe2000c-ps]dis cur
#
sysname xe2000c
#
interface Aux0
async mode flow
#
interface GigabitEthernet0/0
ip address 10.2.1.1 255.0.0.0
#
interface GigabitEthernet0/1
#
interface NULL0
#
ip route-static 61.1.1.1 255.255.255.255 10.2.1.3 preference 60
#
user-interface con 0
user-interface aux 0
user-interface vty 0 4
authentication-mode none
user privilege level 3
#
process-server
ps-config xe2000-c interface GigabitEthernet0/0
ls-mode remote ip-address 61.1.1.1 port 13579
#
2.XE2000-B配置
[xe2000b-ls]dis this
#
location-server
#
..............
#
domain pub
attribute public
#
domain pri_a
attribute private
#
domain pri_c
attribute private
..............
process-server xe2000a
ip-address 61.1.1.3
tunnel enable
belongto pri_a
#
process-server xe2000c
ip-address 61.1.1.4
tunnel enable
belongto pri_c
#
process-server xe2000b
ip-address 61.1.1.1
tunnel enable
belongto pub
#
nat&fw
tunnelpeer c_b private xe2000c 61.1.1.1 port 9700 public xe2000b 61.1.1.4 port 80
tunnelpeer a_b private xe2000a 61.1.1.1 port 9600 public xe2000b 61.1.1.3 port 2001
四、配置关键点:
无
该案例暂时没有网友评论
✖
案例意见反馈
亲~登录后才可以操作哦!
确定你的邮箱还未认证,请认证邮箱或绑定手机后进行当前操作