问题描述:
故障现象:
对路由器发起telnet 远程后,界面无任何反应。
去现场接console口,进去Telnet 自己测试也是 界面提示 大意是 链接的用户超出。
原来vty是 0 4 ;改成vty 0 10 ,也是同样提示。
去查看line 用户数是0。
配置里面vty 没有配置in 或者out 方向限制。
Telnet 未配置端口号。
Telnet 服务器已经开启。
用户下Telnet权限也给了。
用户权限级别是net-admin
从远程telnet 这台服务器任何地址都是界面无任何显示。
近期发现别的2台8808也是同样的现象。
麻烦各位工程帮忙解决一下,提供一下排障方法。
有问题的那台是核心网络,也不敢重启。但是网络是正常的。
组网及组网描述:
<SR8806-1>dis cu
#
version 7.1.048, Release 7353P17
#
mdc Admin id 1
#
sysname SR8806-1
#
ip vpn-instance TT123-VPN
route-distinguisher 112233:1110
vpn-target 10000:1110 import-extcommunity
vpn-target 10000:1110 export-extcommunity
#
ip vpn-instance test1
route-distinguisher 223344:66
vpn-target 223344:66 import-extcommunity
vpn-target 223344:66 export-extcommunity
#
telnet server enable
#
service-mode mix-bridging-routing slot 2
#
router id 11.12.222.82
#
ospf 1
area 0.0.0.0
network 11.12.222.82 0.0.0.0
network 11.12.223.108 0.0.0.3
network 11.12.223.116 0.0.0.3
network 11.12.224.216 0.0.0.3
#
ospf 66 router-id 65.1.233.3 vpn-instance test1
import-route bgp type 1
area 0.0.0.0
network 65.1.233.3 0.0.0.0
network 65.1.233.188 0.0.0.3
#
ospf 1110 router-id 172.16.7.253 vpn-instance TT123-VPN
import-route direct
import-route bgp route-policy bgp-to-ospf1110
area 0.0.0.0
network 172.16.7.8 0.0.0.3
#
mpls lsr-id 11.12.222.82
#
ip unreachables enable
ip ttl-expires enable
#
lldp global enable
#
system-working-mode standard
password-recovery enable
#
vlan 1
#
mpls ldp
#
l2vpn enable
#
interface Route-Aggregation1
description To M9000_1
ip address 11.12.224.217 255.255.255.252
#
interface NULL0
#
interface LoopBack0
ip address 11.12.222.82 255.255.255.255
#
interface LoopBack1
ip binding vpn-instance TT123-VPN
ip address 172.16.7.253 255.255.255.255
#
interface LoopBack66
ip binding vpn-instance test1
ip address 65.1.233.3 255.255.255.255
#
interface GigabitEthernet2/0/1
port link-mode route
ip binding vpn-instance test1
ip address 65.1.233.190 255.255.255.252
#
interface GigabitEthernet2/0/2
port link-mode route
#
interface GigabitEthernet2/0/3
port link-mode route
#
interface GigabitEthernet2/0/4
port link-mode route
#
interface GigabitEthernet2/0/5
port link-mode route
#
interface GigabitEthernet2/0/6
port link-mode route
#
interface GigabitEthernet2/0/7
port link-mode route
#
interface GigabitEthernet2/0/8
port link-mode route
#
interface GigabitEthernet2/0/9
port link-mode route
#
interface GigabitEthernet2/0/10
port link-mode route
#
interface GigabitEthernet2/0/11
port link-mode route
#
interface GigabitEthernet2/0/12
port link-mode route
#
interface GigabitEthernet2/0/13
port link-mode route
#
interface GigabitEthernet2/0/14
port link-mode route
#
interface GigabitEthernet2/0/15
port link-mode route
#
interface GigabitEthernet2/0/16
port link-mode route
#
interface GigabitEthernet2/0/16.263
description TO-6X-0
vlan-type dot1q vid 263
#
interface GigabitEthernet2/0/17
port link-mode route
combo enable copper
#
interface GigabitEthernet2/0/18
port link-mode route
combo enable copper
#
interface GigabitEthernet2/0/19
port link-mode route
combo enable copper
#
interface GigabitEthernet2/0/20
port link-mode route
combo enable copper
#
interface GigabitEthernet2/0/21
port link-mode route
combo enable copper
#
interface GigabitEthernet2/0/22
port link-mode route
combo enable copper
#
interface GigabitEthernet2/0/23
port link-mode route
combo enable copper
#
interface GigabitEthernet2/0/24
port link-mode route
combo enable copper
#
interface M-GigabitEthernet0/0/0
#
interface Ten-GigabitEthernet3/0/1
port link-mode route
description TO-HH-HX-SW-1
ip binding vpn-instance TT123-VPN
ip address 172.16.7.9 255.255.255.252
ospf cost 1
#
interface Ten-GigabitEthernet3/0/2
port link-mode route
description TO 6X-SR8806-02 TEN 3/0/2
ip address 11.12.223.117 255.255.255.252
ospf cost 100
mpls enable
mpls ldp enable
#
interface Ten-GigabitEthernet3/0/3
port link-mode route
port link-aggregation group 1
#
interface Ten-GigabitEthernet3/0/4
port link-mode route
port link-aggregation group 1
#
interface Ten-GigabitEthernet3/0/5
port link-mode route
#
interface Ten-GigabitEthernet3/0/6
port link-mode route
#
interface Ten-GigabitEthernet3/0/7
port link-mode route
#
interface Ten-GigabitEthernet3/0/8
port link-mode route
#
interface Ten-GigabitEthernet3/0/9
port link-mode route
#
interface Ten-GigabitEthernet3/0/11
port link-mode route
#
interface Ten-GigabitEthernet3/0/12
port link-mode route
description To HS_C_SR8808_1 TENG 7/1/1
duplex full
speed 10000
ip address 11.12.223.110 255.255.255.252
mpls enable
mpls ldp enable
#
interface Ten-GigabitEthernet3/0/10
port link-mode bridge
#
bgp 223344
peer 11.12.239.240 as-number 223344
peer 11.12.239.240 connect-interface LoopBack0
peer 11.12.251.253 as-number 223344
peer 11.12.251.253 connect-interface LoopBack0
#
address-family vpnv4
peer 11.12.239.240 enable
peer 11.12.239.240 route-policy setLP export
peer 11.12.251.253 enable
#
ip vpn-instance TT123-VPN
#
address-family ipv4 unicast
import-route direct
import-route static
import-route ospf 1110 route-policy ospf110-to-bgp
#
ip vpn-instance test1
#
address-family ipv4 unicast
import-route direct
import-route static
import-route ospf 66
#
route-policy bgp-to-ospf1110 deny node 10
if-match ip address prefix-list ospf110-to-bgp
#
route-policy bgp-to-ospf1110 permit node 20
apply cost-type type-1
#
route-policy ospf110-to-bgp permit node 10
if-match ip address prefix-list ospf110-to-bgp
#
route-policy ospf110-to-bgp deny node 20
#
route-policy setLP permit node 10
if-match ip address prefix-list ospf110-to-bgp
apply local-preference 150
#
route-policy setLP permit node 20
#
ip prefix-list ospf110-to-bgp index 10 permit 172.16.1.0 24
ip prefix-list ospf110-to-bgp index 20 permit 172.16.2.0 24
ip prefix-list ospf110-to-bgp index 30 permit 172.16.3.0 24
ip prefix-list ospf110-to-bgp index 40 permit 172.16.4.0 24
ip prefix-list ospf110-to-bgp index 50 permit 172.16.7.252 32
#
xconnect-group 1
connection 14
ac interface GigabitEthernet2/0/16.263
peer 11.12.251.253 pw-id 15015
#
scheduler logfile size 16
#
line class aux
user-role network-operator
#
line class console
user-role network-admin
#
line class vty
user-role network-operator
#
line aux 0 1
user-role network-operator
#
line con 0 1
authentication-mode password
user-role network-admin
set authentication password hash $h$6$iULYy6C4yCvTwTi8$g3x6WM1g+JHNCh3hM+hgbmuUPpJ4RqB
+k6UNjnNLGy7QYLhnjUNchEKquRIlWYBWCobPDCtzqdQWtpKi+NgJpA==
idle-timeout 5 0
#
line vty 0 63
authentication-mode scheme
user-role level-1
user-role network-admin
user-role network-operator
idle-timeout 5 0
#
snmp-agent
snmp-agent local-engineid 000007DB7FFFFFFF00007561
snmp-agent community write HS
snmp-agent sys-info version all
snmp-agent target-host trap address udp-domain 11.12.1.165 params securityname HS v2c
snmp-agent target-host trap address udp-domain 11.12.1.42 params securityname HS
snmp-agent target-host trap address udp-domain 11.12.1.44 params securityname HS
snmp-agent trap source LoopBack0
#
domain system
#
aaa session-limit ftp 32
aaa session-limit telnet 32
aaa session-limit http 32
aaa session-limit ssh 32
aaa session-limit https 32
domain default enable system
#
role name level-0
description Predefined level-0 role
#
role name level-1
description Predefined level-1 role
#
role name level-2
description Predefined level-2 role
#
role name level-3
description Predefined level-3 role
#
role name level-4
description Predefined level-4 role
#
role name level-5
description Predefined level-5 role
#
role name level-6
description Predefined level-6 role
#
role name level-7
description Predefined level-7 role
#
role name level-8
description Predefined level-8 role
#
role name level-9
description Predefined level-9 role
#
role name level-10
description Predefined level-10 role
#
role name level-11
description Predefined level-11 role
#
role name level-12
description Predefined level-12 role
#
role name level-13
description Predefined level-13 role
#
role name level-14
description Predefined level-14 role
#
user-group system
#
local-user admin class manage
password hash $h
$6$jbly4f48p07PU0a3$Igs48aj/Y58jzutpSsx6rzJnLYl1fIvQ5iZYfDPBC0qakMxxwtHjbcPk/pP4eo
+DTEzhXmkGmgZ59ljNHyxC4g==
service-type telnet
authorization-attribute user-role level-1
authorization-attribute user-role network-operator
#
local-user HS class manage
password hash $h$6$vfAsAf9fx9Cqpw35$r9UBF36It6Yme
+a90dr118dBpnl7axZV7vtR6FyV35YnoXttESLKFeMx5FBanHwjIjF7GgRiCEaSnrfuKaBa/g==
service-type telnet
authorization-attribute user-role network-admin
authorization-attribute user-role network-operator
#
local-user ftp class manage
password hash $h$6$Et0itlyI8yT+qhPE
$LVZRI/sgOT/3FN/HePPQQwFZZksjwvlX684eHtjCIANifotqu4mTgl7amnco4utetvEBKGqPh1BmQJDD0/ZrsA==
service-type ftp
authorization-attribute work-directory flash:/
authorization-attribute user-role network-admin
authorization-attribute user-role network-operator
#
ftp server enable
#
return
<SR8806-1>dis cpu
Slot 0 CPU 0 CPU usage:
13% in last 5 seconds
13% in last 1 minute
13% in last 5 minutes
Slot 1 CPU 0 CPU usage:
13% in last 5 seconds
13% in last 1 minute
13% in last 5 minutes
Slot 2 CPU 0 CPU usage:
14% in last 5 seconds
13% in last 1 minute
13% in last 5 minutes
Slot 3 CPU 0 CPU usage:
13% in last 5 seconds
13% in last 1 minute
13% in last 5 minutes
<SR8806-1>dis fan
Fan Frame 1 State: Normal
<SR8806-1>dis power
<SR8806-1>dis power
Power 1 State: Normal
Power 2 State: Normal
<SR8806-1>dis mem
<SR8806-1>dis memory
The statistics about memory is measured in KB:
Slot 0:
Total Used Free Shared Buffers Cached FreeRatio
Mem: 4035340 1622268 2413072 0 4140 598248 59.8%
-/+ Buffers/Cache: 1019880 3015460
S0p: 0 0 0
Slot 1:
Total Used Free Shared Buffers Cached FreeRatio
Mem: 4035340 1103304 2932036 0 4120 143500 72.7%
-/+ Buffers/Cache: 955684 3079656
S0p: 0 0 0
Slot 2:
Total Used Free Shared Buffers Cached FreeRatio
Mem: 984416 470360 514056 0 0 45380 52.2%
-/+ Buffers/Cache: 424980 559436
S0p: 0 0 0
Slot 3:
Total Used Free Shared Buffers Cached FreeRatio
Mem: 4053628 651424 3402204 0 0 80780 83.9%
-/+ Buffers/Cache: 570644 3482984
S0p: 0 0 0
<SR8806-1>dis version
H3C Com0re Soft0re, Version 7.1.048, Release 7353P17
Copyright (c) 2004-2017 New H3C Technologies Co., Ltd. All rights reserved.
H3C SR8806-X-S uptime is 183 weeks, 3 days, 9 hours, 7 minutes
Last reboot reason : Cold reboot
Boot image: cfa0:/SR8800-CMW710-BOOT-R7353P17.bin
Boot image version: 7.1.048, Release 7353P17
Compiled Jun 07 2017 15:04:30
System image: cfa0:/SR8800-CMW710-SYSTEM-R7353P17.bin
System image version: 7.1.048, Release 7353P17
Compiled Jun 07 2017 15:04:30
Feature image(s) list:
cfa0:/SR8800-CMW710-DEVKIT-R7353P17.bin, version: 7.1.048
Compiled Jun 07 2017 15:05:10
MPU(M) 0:
Uptime is 183 weeks,3 days,9 hours,8 minutes
BOARD TYPE: SR07SRPUB1
DRAM: 4096M bytes
CFCARD: 4002M bytes
FLASH: 500M bytes
NVRAM: 1M bytes
PCB 1 Version: VER.A
Bootrom Version: 142
CPLD 1 Version: 001
CPLD 2 Version: 002
Release Version: H3C SR8806-X-S-7353P17
Patch Version : None
Reboot Cause : ColdReboot
Number of Exist Subcards: 0
MPU(S) 1:
Uptime is 183 weeks,3 days,9 hours,16 minutes
BOARD TYPE: SR07SRPUB1
DRAM: 4096M bytes
CFCARD: 4002M bytes
FLASH: 500M bytes
NVRAM: 1M bytes
PCB 1 Version: VER.A
Bootrom Version: 142
CPLD 1 Version: 001
CPLD 2 Version: 002
Release Version: H3C SR8806-X-S-7353P17
Patch Version : None
Reboot Cause : ColdReboot
Number of Exist Subcards: 0
LPU 2:
Uptime is 183 weeks,3 days,10 hours,13 minutes
BOARD TYPE: SPC-GP24LA1
DRAM: 1024M bytes
FLASH: 0M bytes
NVRAM: 0K bytes
PCB 1 Version: VER.B
Bootrom Version: 600
CPLD 1 Version: 003
CPLD 2 Version: 002
Release Version: H3C SR8806-X-S-7353P17
Patch Version : None
Reboot Cause : ColdReboot
Number of Exist Subcards: 0
LPU 3:
Uptime is 183 weeks,3 days,9 hours,11 minutes
BOARD TYPE: SPC-XP12LC
DRAM: 4096M bytes
PCB 1 Version: VER.A
Bootrom Version: 122
CPLD 1 Version: 001
Release Version: H3C SR8806-X-S-7353P17
Patch Version : None
Reboot Cause : ColdReboot
Number of Exist
- 2023-12-14提问
- 举报
-
(0)
最佳答案
亲~登录后才可以操作哦!
确定你的邮箱还未认证,请认证邮箱或绑定手机后进行当前操作
举报
×
侵犯我的权益
×
侵犯了我企业的权益
×
- 1. 您举报的内容是什么?(请在邮件中列出您举报的内容和链接地址)
- 2. 您是谁?(身份证明材料,可以是身份证或护照等证件)
- 3. 是哪家企业?(营业执照,单位登记证明等证件)
- 4. 您与该企业的关系是?(您是企业法人或被授权人,需提供企业委托授权书)
抄袭了我的内容
×
原文链接或出处
诽谤我
×
- 1. 您举报的内容以及侵犯了您什么权益?(请在邮件中列出您举报的内容、链接地址,并给出简短的说明)
- 2. 您是谁?(身份证明材料,可以是身份证或护照等证件)
对根叔社区有害的内容
×
不规范转载
×
举报说明
行呢,得去现场,离机房特别远,得找时间过去看一下。