问题描述:
路由器下有两个网络,192.168.41.0和192.168.4.0
我试过静态路由和RIP,都没办法将两个网络互通
现在要将这两个网络互通,该怎么做
组网及组网描述:
- 2023-07-25提问
- 举报
-
(0)
最佳答案
zhiliao_nBCqgU
知了小白
- #
- version 7.1.064, Release 0809P34
- #
- sysname H3C
- #
- telnet server enable
- #
- rip 1
- #
- ip pool aaa 192.168.41.10 192.168.41.200
- ip pool aaa gateway 192.168.41.1
- #
- dhcp enable
- dhcp server always-broadcast
- #
- dns proxy enable
- #
- password-recovery enable
- #
- vlan 1
- #
- object-group ip address lan1
- 10 network range 192.168.4.2 192.168.4.254
- #
- object-group ip address lan2
- 0 network range 192.168.2.2 192.168.2.254
- #
- object-group ip address lan3
- 0 network range 192.168.3.2 192.168.3.254
- #
- dhcp server ip-pool gigabitethernet0/0
- gateway-list 192.168.4.1
- network 192.168.4.0 mask 255.255.255.0
- address range 192.168.4.3 192.168.4.240
- dns-list 114.114.114.114
- #
- dhcp server ip-pool gigabitethernet0/2
- gateway-list 192.168.2.1
- network 192.168.2.0 mask 255.255.255.0
- address range 192.168.2.2 192.168.2.254
- dns-list 114.114.114.114
- #
- dhcp server ip-pool gigabitethernet0/4
- gateway-list 192.168.3.1
- network 192.168.3.0 mask 255.255.255.0
- address range 192.168.3.2 192.168.3.254
- dns-list 114.114.114.114
- #
- policy-based-route erp permit node 0
- if-match acl 3002
- apply next-hop 58.221.86.225
- #
- policy-based-route erp permit node 1
- apply next-hop 192.168.1.1
- #
- controller Cellular0/0
- #
- interface Virtual-Template0
- #
- interface Virtual-Template1
- bandwidth 1000000
- ppp authentication-mode pap domain system
- remote address pool aaa
- ip address 192.168.41.1 255.255.255.0
- tcp mss 1200
- #
- interface NULL0
- #
- interface GigabitEthernet0/0
- port link-mode route
- combo enable copper
- ip address 192.168.4.1 255.255.255.0
- packet-filter name WebTelnet2 inbound
- nat server protocol tcp global current-interface 5366 inside 192.168.4.140 5366
- nat static enable
- ip policy-based-route erp
- #
- interface GigabitEthernet0/1
- port link-mode route
- description Multiple_Line
- bandwidth 1000000
- combo enable copper
- ip address 58.221.86.226 255.255.255.252
- dns server 61.147.37.1
- packet-filter name WebTelnet3 inbound
- packet-filter name WebHttpHttps3 inbound
- nat outbound
- nat server protocol tcp global current-interface 81 inside 192.168.4.140 81
- nat server protocol tcp global current-interface 18888 inside 192.168.4.141 80
- nat static enable
- #
- interface GigabitEthernet0/2
- port link-mode route
- combo enable copper
- ip address 192.168.2.1 255.255.255.0
- packet-filter name WebTelnet4 inbound
- nat static enable
- #
- interface GigabitEthernet0/3
- port link-mode route
- description Multiple_Line
- bandwidth 1000000
- combo enable copper
- duplex full
- speed 1000
- ip address dhcp-alloc
- packet-filter name WebHttpHttps5 inbound
- packet-filter name WebPing5 inbound
- packet-filter name WebTelnet5 inbound
- nat outbound
- nat static enable
- #
- interface GigabitEthernet0/4
- port link-mode route
- ip address 192.168.3.1 255.255.255.0
- packet-filter name WebTelnet6 inbound
- nat static enable
- #
- interface GigabitEthernet0/5
- port link-mode route
- packet-filter name WebTelnet7 inbound
- nat static enable
- #
- security-zone name Local
- #
- security-zone name Trust
- #
- security-zone name DMZ
- #
- security-zone name Untrust
- #
- security-zone name Management
- #
- scheduler logfile size 16
- #
- line class console
- user-role network-admin
- #
- line class tty
- user-role network-operator
- #
- line class usb
- user-role network-admin
- #
- line class vty
- user-role network-operator
- #
- line con 0
- user-role network-admin
- #
- line vty 0 63
- authentication-mode scheme
- user-role network-operator
- #
- ip route-static 0.0.0.0 0 GigabitEthernet0/1 58.221.86.225
- ip route-static 192.168.4.0 24 192.168.4.1
- ip route-static 192.168.41.0 24 192.168.41.1
- #
- acl advanced 3002
- rule 0 permit ip source 192.168.4.140 0
- rule 5 permit ip source 192.168.2.0 0.0.0.255
- rule 10 permit ip source 192.168.4.141 0
- rule 15 permit ip source 192.168.41.0 0
- #
- acl advanced name WebHttpHttps3
- rule 65533 deny tcp destination-port eq www
- rule 65534 deny tcp destination-port eq 443
- #
- acl advanced name WebHttpHttps5
- rule 65533 deny tcp destination-port eq www
- rule 65534 deny tcp destination-port eq 443
- #
- acl advanced name WebPing5
- rule 1 deny icmp icmp-type echo
- #
- acl advanced name WebTelnet2
- rule 65533 deny tcp destination-port eq telnet
- #
- acl advanced name WebTelnet3
- rule 65533 deny tcp destination-port eq telnet
- #
- acl advanced name WebTelnet4
- rule 65533 deny tcp destination-port eq telnet
- #
- acl advanced name WebTelnet5
- rule 65533 deny tcp destination-port eq telnet
- #
- acl advanced name WebTelnet6
- rule 65533 deny tcp destination-port eq telnet
- #
- acl advanced name WebTelnet7
- rule 65533 deny tcp destination-port eq telnet
- #
- acl mac 4999
- rule 10 permit
- #
- undo password-control aging enable
- undo password-control history enable
- password-control length 6
- password-control login-attempt 3 exceed lock-time 10
- password-control update-interval 0
- password-control login idle-time 0
- #
- domain system
- authentication ppp local
- #
- domain default enable system
- #
- role name level-0
- description Predefined level-0 role
- #
- role name level-1
- description Predefined level-1 role
- #
- role name level-2
- description Predefined level-2 role
- #
- role name level-3
- description Predefined level-3 role
- #
- role name level-4
- description Predefined level-4 role
- #
- role name level-5
- description Predefined level-5 role
- #
- role name level-6
- description Predefined level-6 role
- #
- role name level-7
- description Predefined level-7 role
- #
- role name level-8
- description Predefined level-8 role
- #
- role name level-9
- description Predefined level-9 role
- #
- role name level-10
- description Predefined level-10 role
- #
- role name level-11
- description Predefined level-11 role
- #
- role name level-12
- description Predefined level-12 role
- #
- role name level-13
- description Predefined level-13 role
- #
- role name level-14
- description Predefined level-14 role
- #
- user-group system
- #
- local-user admin class manage
- password hash $h$6$SPDiL1U5iAIJjjJv$OBr9V866UnrDeiHu+oK8lMPF9f+E8jYx2eMY0BGtCRxMXEHk/sGXuLPZHO4J2DbqbmGK0r1VjRaon1Vk97UAJQ==
- service-type telnet http
- authorization-attribute user-role network-admin
- #
- local-user vpn2 class network
- password cipher $c$3$s0c0huTle+XucJqIwtALH8+Y+sUklUur8Vob
- service-type ppp
- authorization-attribute user-role network-operator
- #
- local-user vpnuser1 class network
- password cipher $c$3$y7GTBADDIvBdqRrjDbeFKXsPWiRcKI/MlN+V
- service-type ppp
- authorization-attribute user-role network-operator
- #
- l2tp-group 1 mode lns
- allow l2tp virtual-template 1
- undo tunnel authentication
- tunnel name LNS
- #
- l2tp enable
- #
- ip http enable
- #
- wlan global-configuration
- #
- wlan ap-group default-group
- vlan 1
- #
- cloud-management server domain oasis.h3c.com
- #
- return
- 2023-07-25回答
- 评论(0)
- 举报
-
(0)
编辑答案
➤
✖
亲~登录后才可以操作哦!
确定
✖
✖
你的邮箱还未认证,请认证邮箱或绑定手机后进行当前操作
✖
举报
×
侵犯我的权益
>
对根叔社区有害的内容
>
辱骂、歧视、挑衅等(不友善)
侵犯我的权益
×
侵犯了我企业的权益
>
抄袭了我的内容
>
诽谤我
>
辱骂、歧视、挑衅等(不友善)
骚扰我
侵犯了我企业的权益
×
您好,当您发现根叔知了上有关于您企业的造谣与诽谤、商业侵权等内容时,您可以向根叔知了进行举报。 请您把以下内容通过邮件发送到 pub.zhiliao@h3c.com 邮箱,我们会在审核后尽快给您答复。
- 1. 您举报的内容是什么?(请在邮件中列出您举报的内容和链接地址)
- 2. 您是谁?(身份证明材料,可以是身份证或护照等证件)
- 3. 是哪家企业?(营业执照,单位登记证明等证件)
- 4. 您与该企业的关系是?(您是企业法人或被授权人,需提供企业委托授权书)
我们认为知名企业应该坦然接受公众讨论,对于答案中不准确的部分,我们欢迎您以正式或非正式身份在根叔知了上进行澄清。
抄袭了我的内容
×
原文链接或出处
诽谤我
×
您好,当您发现根叔知了上有诽谤您的内容时,您可以向根叔知了进行举报。 请您把以下内容通过邮件发送到pub.zhiliao@h3c.com 邮箱,我们会尽快处理。
- 1. 您举报的内容以及侵犯了您什么权益?(请在邮件中列出您举报的内容、链接地址,并给出简短的说明)
- 2. 您是谁?(身份证明材料,可以是身份证或护照等证件)
我们认为知名企业应该坦然接受公众讨论,对于答案中不准确的部分,我们欢迎您以正式或非正式身份在根叔知了上进行澄清。
对根叔社区有害的内容
×
垃圾广告信息
色情、暴力、血腥等违反法律法规的内容
政治敏感
不规范转载
>
辱骂、歧视、挑衅等(不友善)
骚扰我
诱导投票
不规范转载
×
举报说明
路由器以下没有其他三层设备了
可以看一下路由器的路由表项,直连下设备网段都互通,只要终端网关写的路由器端口ip,那就可以互相通信
电脑上的网关写的是端口IP,但是不行
那终端是否能正常ping通网关呢
网关能通,但是对方网络下的设备不能通
两边的终端都要确保能ping通网关,如果都能通,还是有问题,建议贴路由器配置+路由表跟拓扑图出来
路由器配置我贴在下边了
其中41.0是VPN进来的网络
41.0的网段的终端能ping通41.1吗?看了一下好像没有绑定接口吧
能通,不仅能ping通41.1,还能PING通4.1