华三路由器MSR3660路由策略设置

MSR3660双链路配置：专线+宽带组合使用，昨天专线断网，另外找根宽带接上都不能上网，拔掉新加的宽带网线就可以上网，问题如果专线断网，新加宽带如何配置能保证双链路同时可用配置如下：

track 1 nqa entry wan1 1_2 reaction 1 

# track 2 interface Dialer0 protocol ipv4 

# object-group ip address WAN1 1 network range 10.1.0.0 10.21.255.255 

# object-group ip address WAN2 1 network range 10.22.0.0 10.27.255.255 2 network subnet 192.168.0.0 255.255.0.0 

# dhcp server ip-pool vlan101 

gateway-list 10.1.0.1 

network 10.1.0.0 mask 255.255.0.0 

address range 10.1.0.2 10.1.199.255 

dns-list 219.149.135.188 59.49.49.49 

 # policy-based-route WAN1 permit node 1

 if-match acl 3005

 apply output-interface GigabitEthernet0/0 track 1 

# policy-based-route WAN1 permit node 5 

if-match acl 3010 

apply output-interface Dialer0 track 2

 # policy-based-route WAN11 permit node 10

 apply default-output-interface GigabitEthernet0/0 track 1 

# policy-based-route WAN2 permit node 1

 if-match acl 3010 apply output-interface Dialer0 track 2

 # policy-based-route WAN22 permit node 10 

apply default-output-interface Dialer0 track 2 

 policy-based-route test permit node 10

if-match acl 3009 

apply output-interface Dialer0 track 2 

# nqa entry wan1 1_2

 type icmp-echo 

 destination ip 59.49.49.49 

 frequency 9600 

 probe count 3 

 reaction 1 checked-element probe-fail threshold-type consecutive 5 action-type trigger-only 

 source interface GigabitEthernet0/0 

# nqa schedule wan1 1_2 start-time now lifetime forever 

 # interface Route-Aggregation1.1

 ip address 10.1.0.1 255.255.0.0 

vlan-type dot1q vid 101 

dhcp server apply ip-pool vlan101 

 interface Dialer0

 bandwidth 400000 

ppp chap password cipher $c$3$i8vIOSfrJ8

 ppp ipcp 

dns admit-any ppp ipcp dns request  

ppp pap local-user 13934 password cipher $c$3$HMExsm/xT5UTXGdX5XmCh5FCqdPqJa4ZTw==

 dialer bundle enable

 dialer-group 1

 dialer timer idle 0 

dialer timer autodial 5

 ip address ppp-negotiate

 tcp mss 1440

 packet-filter name WebTelnet17443 inbound 

nat outbound 

# interface Virtual-Template0 

# interface NULL0

 # interface GigabitEthernet0/0 

port link-mode route 

description Multiple_Line

 bandwidth 500000 

combo enable copper 

ip address 59.49.

 255.255.255.240 

dns server 59.49.49.49 

dns server 114.114.114.114 

tcp mss 1460 

packet-filter name WebTelnet2 inbound 

packet-filter name WebHttpHttps2 inbound

 connection-limitapply policy 1

 nat outbound 

# interface GigabitEthernet0/1 

port link-mode route 

combo enable copper

 port link-aggregation group 1 

# interface GigabitEthernet0/2 

port link-mode route 

description Multiple_Line 

pppoe-client dial-bundle-number 0 

 ip route-static 0.0.0.0 0 Dialer0 preference 80

 ip route-static 0.0.0.0 0 GigabitEthernet0/0 

 ip route-static 10.200.0.0 16 192.168.1.1 

ip route-static 11.100.0.0 24 192.168.1.1 

# acl advanced 3005

 rule 5 permit ip source object-group WAN1

 rule 10 permit ip source 10.0.0.0 0.240.255.255

 # acl advanced 3009

 rule 10 permit ip source 10.17.0.0 0.0.255.255 

# acl advanced 3010 

rule 5 permit ip source object-group WAN2 

rule 10 permit ip 

acl advanced 3100

 rule 20 permit ip source 11.100.0.0 0.0.255.255 

rule 25 permit ip source 10.0.0.0 0.255.255.255 

# acl advanced name WebHttpHttps2

 rule 65533 deny tcp destination-port eq www

 rule 65534 deny tcp destination-port eq 23456

 # acl advanced name WebTelnet2 

rule 65533 deny tcp destination-port eq 12345

# acl advanced name WebTelnet17443 

rule 65533 deny tcp destination-port eq 1234

 # connection-limit policy 1 limit 10 acl 3100 per-source amount 150 140