俩台pc访问5.5.5.5 vlan10走左边上去 vlan20 走右边上
求个配置思路
感谢大佬
(0)
最佳答案
路由器策略路由+NQA 地址按照你拓扑图的改就行了
track 1 nqa entry admin test1 reaction 1
#
track 2 nqa entry admin test2 reaction 2
#
policy-based-route pbr permit node 5
if-match acl 3001
apply next-hop 10.1.13.1 track 1
#
policy-based-route neiwang permit node 10
if-match acl 3002
apply next-hop 10.1.14.1 track 2
#
nqa entry admin test1
type icmp-echo
destination ip 10.1.35.1
frequency 1000
out interface g1/0/1
reaction 1 checked-element probe-fail threshold-type consecutive 3 action-type trigger-only
#
nqa entry admin test2
type icmp-echo
destination ip 10.1.36.1
frequency 1000
out interface g1/0/2
reaction 2 checked-element probe-fail threshold-type consecutive 3 action-type trigger-only
#
nqa entry admin test3
type icmp-echo
destination ip 202.98.5.68
frequency 1000
out interface Dialer3
reaction 3 checked-element probe-fail threshold-type consecutive 3 action-type trigger-only
#
nqa schedule admin test start-time now lifetime forever
nqa schedule admin test1 start-time now lifetime forever
#
interface NULL0
#
interface GigabitEthernet1/0/1
port link-mode route
combo enable copper
ip address 12.1.1.1 255.255.255.0
nat outbound
#
interface GigabitEthernet1/0/2
port link-mode route
combo enable copper
ip address 13.1.1.1 255.255.255.0
nat outbound
#
interface GigabitEthernet1/0/3
port link-mode route
combo enable copper
ip address 192.168.2.1 255.255.255.0
ip policy-based-route neiwang
#
acl advanced 3002
rule 0 permit ip source 10.10.1.0 0.0.0.255
#
acl advanced 3003
rule 0 permit ip source 10.1.20.0 0.0.0.255
#
(0)
1、交换机上2个ACL,一个匹配10段,一个匹配20段
2、设备2个traffic-behavior匹配不通的traffic class,traffic-class匹配不通的acl,behavior设备不同的下一跳
(2)
暂无评论
亲~登录后才可以操作哦!
确定你的邮箱还未认证,请认证邮箱或绑定手机后进行当前操作
举报
×
侵犯我的权益
×
侵犯了我企业的权益
×
抄袭了我的内容
×
原文链接或出处
诽谤我
×
对根叔社区有害的内容
×
不规范转载
×
举报说明
暂无评论