做了GREoveripsec,运行一段时间隧道就断
- 0关注
- 1收藏,848浏览
问题描述:
做了GREoveripsec,运行一段时间隧道就断了,然后自启就恢复,ospf协议
组网及组网描述:
总与分
- 2019-08-06提问
- 举报
-
(0)
最佳答案
设备什么版本,有配置文件嘛,上传看看
- 2019-08-06回答
- 评论(1)
- 举报
-
(0)
version 7.1.064, Release 0605P13 3.# 4. sysname DMSD_2_XJ_ICG3000 5.# 6. clock timezone BeiJing add 08:00:00 7.# 8. telnet server enable 9.# 10.ospf 1 router-id 192.168.255.8 11. dscp 63 12. area 0.0.0.0 13. network 10.1.18.0 0.0.0.3 14. network 10.128.26.0 0.0.0.255 15.# 16. dhcp enable 17. dhcp server always-broadcast 18.# 19. dns proxy enable 20.# 21. password-recovery enable 22.# 23.vlan 1 24.# 25.dhcp server ip-pool lan 26. gateway-list 10.128.26.1 27. network 10.128.26.0 mask 255.255.255.0 28. address range 10.128.26.50 10.128.26.250 29. dns-list 114.114.114.114 30.# 31.dhcp server ip-pool lan1 32. gateway-list 192.168.0.1 33. network 192.168.0.0 mask 255.255.254.0 34. address range 192.168.1.2 192.168.1.254 35. dns-list 192.168.0.1 36.# 37.controller Cellular0/0 38.# 39.interface NULL0 40.# 41.interface LoopBack0 42. ip address 192.168.255.8 255.255.255.255 43.# 44.interface Vlan-interface1 45. ip address 10.128.26.1 255.255.255.0 46.# 47.interface Ethernet4/0 48. port link-mode bridge 49.# 50.interface Ethernet4/1 51. port link-mode bridge 52.# 53.interface Ethernet4/2 54. port link-mode bridge 55.# 56.interface Ethernet4/3 57. port link-mode bridge 58.# 59.interface GigabitEthernet0/0 60. port link-mode route 61. ip address dhcp-alloc 62. nat outbound 63. ipsec apply policy policy 64.# 65.interface GigabitEthernet0/1 66. port link-mode route 67.# 68.interface GigabitEthernet0/2 69. port link-mode route 70. combo enable copper 71.# 72.interface GigabitEthernet0/3 73. port link-mode route 74. combo enable copper 75.# 76.interface GigabitEthernet0/4 77. port link-mode route 78.# 79.interface GigabitEthernet0/5 80. port link-mode route 81.# 82.interface Tunnel0 mode gre 83. ip address 10.1.18.2 255.255.255.252 84. tcp mss 1200 85. source LoopBack0 86. destination 192.168.255.1 87. keepalive 10 3 88.# 89. scheduler logfile size 16 90.# 91.line class console 92. user-role network-admin 93.# 94.line class tty 95. user-role network-operator 96.# 97.line class vty 98. user-role network-operator 99.# 100.line con 0 101. user-role network-admin 102.# 103.line vty 0 63 104. authentication-mode scheme 105. user-role network-operator 106.# 107. ip route-static 0.0.0.0 0 192.168.20.1 108.# 109. ntp-service enable 110. ntp-service source Tunnel0 111. ntp-service unicast-server 10.1.18.1 source Tunnel0 112.# 113.acl advanced 3333 114. rule 10 permit gre source 192.168.255.8 0 destination 192.168.255.1 0 115.# 116.domain system 117.# 118. domain default enable system 119.# 120.role name level-0 121. description Predefined level-0 role 122.# 123.role name level-1 124. description Predefined level-1 role 125.# 126.role name level-2 127. description Predefined level-2 role 128.# 129.role name level-3 130. description Predefined level-3 role 131.# 132.role name level-4 133. description Predefined level-4 role 134.# 135.role name level-5 136. description Predefined level-5 role 137.# 138.role name level-6 139. description Predefined level-6 role 140.# 141.role name level-7 142. description Predefined level-7 role 143.# 144.role name level-8 145. description Predefined level-8 role 146.# 147.role name level-9 148. description Predefined level-9 role 149.# 150.role name level-10 151. description Predefined level-10 role 152.# 153.role name level-11 154. description Predefined level-11 role 155.# 156.role name level-12 157. description Predefined level-12 role 158.# 159.role name level-13 160. description Predefined level-13 role 161.# 162.role name level-14 163. description Predefined level-14 role 164.# 165.user-group system 166.# 167.local-user admin class manage 168. password hash $h$6$2ve3QdqIo+KA5bTG$Fsl0t3GyxgqHwSs752WssdtnRj93BFRW4zDl8APTuuBdHv6tSnRjfKiqnPXukBSneb7VB0M4SrF5Ksyipd9prA== 169. service-type telnet http https 170. authorization-attribute user-role network-admin 171.# 172.ipsec transform-set policy 173. esp encryption-algorithm 3des-cbc 174. esp authentication-algorithm sha1 175.# 176.ipsec policy policy 65535 isakmp 177. transform-set policy 178. security acl 3333 179. remote-address 218.75.117.10 180. ike-profile policy 181.# 182. ike invalid-spi-recovery enable 183. ike identity fqdn dmsd2xj 184.# 185.ike profile policy 186. keychain policy 187. exchange-mode aggressive 188. local-identity fqdn dmsd2xj 189. match remote identity fqdn zongbu 190. proposal 65535 191.# 192.ike proposal 65535 193.# 194.ike keychain policy 195. pre-shared-key address 218.75.117.10 255.255.255.255 key cipher $c$3$iqG9vgTVxb8qecS1xwp1QtBI7tyVWrmG 196.# 197. ip http enable 198. ip https enable 199.# 200.wlan global-configuration 201. control-address disable 202.# 203.wlan ap-group default-group 204.# 205.return
var FrameInfo = {};
- version 7.1.064, Release 0605P13
- #
- sysname DMSD_2_XJ_ICG3000
- #
- clock timezone BeiJing add 08:00:00
- #
- telnet server enable
- #
- ospf 1 router-id 192.168.255.8
- dscp 63
- area 0.0.0.0
- network 10.1.18.0 0.0.0.3
- network 10.128.26.0 0.0.0.255
- #
- dhcp enable
- dhcp server always-broadcast
- #
- dns proxy enable
- #
- password-recovery enable
- #
- vlan 1
- #
- dhcp server ip-pool lan
- gateway-list 10.128.26.1
- network 10.128.26.0 mask 255.255.255.0
- address range 10.128.26.50 10.128.26.250
- dns-list 114.114.114.114
- #
- dhcp server ip-pool lan1
- gateway-list 192.168.0.1
- network 192.168.0.0 mask 255.255.254.0
- address range 192.168.1.2 192.168.1.254
- dns-list 192.168.0.1
- #
- controller Cellular0/0
- #
- interface NULL0
- #
- interface LoopBack0
- ip address 192.168.255.8 255.255.255.255
- #
- interface Vlan-interface1
- ip address 10.128.26.1 255.255.255.0
- #
- interface Ethernet4/0
- port link-mode bridge
- #
- interface Ethernet4/1
- port link-mode bridge
- #
- interface Ethernet4/2
- port link-mode bridge
- #
- interface Ethernet4/3
- port link-mode bridge
- #
- interface GigabitEthernet0/0
- port link-mode route
- ip address dhcp-alloc
- nat outbound
- ipsec apply policy policy
- #
- interface GigabitEthernet0/1
- port link-mode route
- #
- interface GigabitEthernet0/2
- port link-mode route
- combo enable copper
- #
- interface GigabitEthernet0/3
- port link-mode route
- combo enable copper
- #
- interface GigabitEthernet0/4
- port link-mode route
- #
- interface GigabitEthernet0/5
- port link-mode route
- #
- interface Tunnel0 mode gre
- ip address 10.1.18.2 255.255.255.252
- tcp mss 1200
- source LoopBack0
- destination 192.168.255.1
- keepalive 10 3
- #
- scheduler logfile size 16
- #
- line class console
- user-role network-admin
- #
- line class tty
- user-role network-operator
- #
- line class vty
- user-role network-operator
- #
- line con 0
- user-role network-admin
- #
- line vty 0 63
- authentication-mode scheme
- user-role network-operator
- #
- ip route-static 0.0.0.0 0 192.168.20.1
- #
- ntp-service enable
- ntp-service source Tunnel0
- ntp-service unicast-server 10.1.18.1 source Tunnel0
- #
- acl advanced 3333
- rule 10 permit gre source 192.168.255.8 0 destination 192.168.255.1 0
- #
- domain system
- #
- domain default enable system
- #
- role name level-0
- description Predefined level-0 role
- #
- role name level-1
- description Predefined level-1 role
- #
- role name level-2
- description Predefined level-2 role
- #
- role name level-3
- description Predefined level-3 role
- #
- role name level-4
- description Predefined level-4 role
- #
- role name level-5
- description Predefined level-5 role
- #
- role name level-6
- description Predefined level-6 role
- #
- role name level-7
- description Predefined level-7 role
- #
- role name level-8
- description Predefined level-8 role
- #
- role name level-9
- description Predefined level-9 role
- #
- role name level-10
- description Predefined level-10 role
- #
- role name level-11
- description Predefined level-11 role
- #
- role name level-12
- description Predefined level-12 role
- #
- role name level-13
- description Predefined level-13 role
- #
- role name level-14
- description Predefined level-14 role
- #
- user-group system
- #
- local-user admin class manage
- password hash $h$6$2ve3QdqIo+KA5bTG$Fsl0t3GyxgqHwSs752WssdtnRj93BFRW4zDl8APTuuBdHv6tSnRjfKiqnPXukBSneb7VB0M4SrF5Ksyipd9prA==
- service-type telnet http https
- authorization-attribute user-role network-admin
- #
- ipsec transform-set policy
- esp encryption-algorithm 3des-cbc
- esp authentication-algorithm sha1
- #
- ipsec policy policy 65535 isakmp
- transform-set policy
- security acl 3333
- remote-address 218.75.117.10
- ike-profile policy
- #
- ike invalid-spi-recovery enable
- ike identity fqdn dmsd2xj
- #
- ike profile policy
- keychain policy
- exchange-mode aggressive
- local-identity fqdn dmsd2xj
- match remote identity fqdn zongbu
- proposal 65535
- #
- ike proposal 65535
- #
- ike keychain policy
- pre-shared-key address 218.75.117.10 255.255.255.255 key cipher $c$3$iqG9vgTVxb8qecS1xwp1QtBI7tyVWrmG
- #
- ip http enable
- ip https enable
- #
- wlan global-configuration
- control-address disable
- #
- wlan ap-group default-group
- #
- return
- 2019-08-06回答
- 评论(4)
- 举报
-
(0)
好的,谢谢
设备具体型号是什么?每次重启就能恢复?
升级到最新版本观察下吧
好的,谢谢
编辑答案
亲~登录后才可以操作哦!
确定你的邮箱还未认证,请认证邮箱或绑定手机后进行当前操作
举报
×
侵犯我的权益
×
侵犯了我企业的权益
×
- 1. 您举报的内容是什么?(请在邮件中列出您举报的内容和链接地址)
- 2. 您是谁?(身份证明材料,可以是身份证或护照等证件)
- 3. 是哪家企业?(营业执照,单位登记证明等证件)
- 4. 您与该企业的关系是?(您是企业法人或被授权人,需提供企业委托授权书)
抄袭了我的内容
×
原文链接或出处
诽谤我
×
- 1. 您举报的内容以及侵犯了您什么权益?(请在邮件中列出您举报的内容、链接地址,并给出简短的说明)
- 2. 您是谁?(身份证明材料,可以是身份证或护照等证件)
对根叔社区有害的内容
×
不规范转载
×
举报说明
version 7.1.064, Release 0605P13 3.# 4. sysname DMSD_2_XJ_ICG3000 5.# 6. clock timezone BeiJing add 08:00:00 7.# 8. telnet server enable 9.# 10.ospf 1 router-id 192.168.255.8 11. dscp 63 12. area 0.0.0.0 13. network 10.1.18.0 0.0.0.3 14. network 10.128.26.0 0.0.0.255 15.# 16. dhcp enable 17. dhcp server always-broadcast 18.# 19. dns proxy enable 20.# 21. password-recovery enable 22.# 23.vlan 1 24.# 25.dhcp server ip-pool lan 26. gateway-list 10.128.26.1 27. network 10.128.26.0 mask 255.255.255.0 28. address range 10.128.26.50 10.128.26.250 29. dns-list 114.114.114.114 30.# 31.dhcp server ip-pool lan1 32. gateway-list 192.168.0.1 33. network 192.168.0.0 mask 255.255.254.0 34. address range 192.168.1.2 192.168.1.254 35. dns-list 192.168.0.1 36.# 37.controller Cellular0/0 38.# 39.interface NULL0 40.# 41.interface LoopBack0 42. ip address 192.168.255.8 255.255.255.255 43.# 44.interface Vlan-interface1 45. ip address 10.128.26.1 255.255.255.0 46.# 47.interface Ethernet4/0 48. port link-mode bridge 49.# 50.interface Ethernet4/1 51. port link-mode bridge 52.# 53.interface Ethernet4/2 54. port link-mode bridge 55.# 56.interface Ethernet4/3 57. port link-mode bridge 58.# 59.interface GigabitEthernet0/0 60. port link-mode route 61. ip address dhcp-alloc 62. nat outbound 63. ipsec apply policy policy 64.# 65.interface GigabitEthernet0/1 66. port link-mode route 67.# 68.interface GigabitEthernet0/2 69. port link-mode route 70. combo enable copper 71.# 72.interface GigabitEthernet0/3 73. port link-mode route 74. combo enable copper 75.# 76.interface GigabitEthernet0/4 77. port link-mode route 78.# 79.interface GigabitEthernet0/5 80. port link-mode route 81.# 82.interface Tunnel0 mode gre 83. ip address 10.1.18.2 255.255.255.252 84. tcp mss 1200 85. source LoopBack0 86. destination 192.168.255.1 87. keepalive 10 3 88.# 89. scheduler logfile size 16 90.# 91.line class console 92. user-role network-admin 93.# 94.line class tty 95. user-role network-operator 96.# 97.line class vty 98. user-role network-operator 99.# 100.line con 0 101. user-role network-admin 102.# 103.line vty 0 63 104. authentication-mode scheme 105. user-role network-operator 106.# 107. ip route-static 0.0.0.0 0 192.168.20.1 108.# 109. ntp-service enable 110. ntp-service source Tunnel0 111. ntp-service unicast-server 10.1.18.1 source Tunnel0 112.# 113.acl advanced 3333 114. rule 10 permit gre source 192.168.255.8 0 destination 192.168.255.1 0 115.# 116.domain system 117.# 118. domain default enable system 119.# 120.role name level-0 121. description Predefined level-0 role 122.# 123.role name level-1 124. description Predefined level-1 role 125.# 126.role name level-2 127. description Predefined level-2 role 128.# 129.role name level-3 130. description Predefined level-3 role 131.# 132.role name level-4 133. description Predefined level-4 role 134.# 135.role name level-5 136. description Predefined level-5 role 137.# 138.role name level-6 139. description Predefined level-6 role 140.# 141.role name level-7 142. description Predefined level-7 role 143.# 144.role name level-8 145. description Predefined level-8 role 146.# 147.role name level-9 148. description Predefined level-9 role 149.# 150.role name level-10 151. description Predefined level-10 role 152.# 153.role name level-11 154. description Predefined level-11 role 155.# 156.role name level-12 157. description Predefined level-12 role 158.# 159.role name level-13 160. description Predefined level-13 role 161.# 162.role name level-14 163. description Predefined level-14 role 164.# 165.user-group system 166.# 167.local-user admin class manage 168. password hash $h$6$2ve3QdqIo+KA5bTG$Fsl0t3GyxgqHwSs752WssdtnRj93BFRW4zDl8APTuuBdHv6tSnRjfKiqnPXukBSneb7VB0M4SrF5Ksyipd9prA== 169. service-type telnet http https 170. authorization-attribute user-role network-admin 171.# 172.ipsec transform-set policy 173. esp encryption-algorithm 3des-cbc 174. esp authentication-algorithm sha1 175.# 176.ipsec policy policy 65535 isakmp 177. transform-set policy 178. security acl 3333 179. remote-address 218.75.117.10 180. ike-profile policy 181.# 182. ike invalid-spi-recovery enable 183. ike identity fqdn dmsd2xj 184.# 185.ike profile policy 186. keychain policy 187. exchange-mode aggressive 188. local-identity fqdn dmsd2xj 189. match remote identity fqdn zongbu 190. proposal 65535 191.# 192.ike proposal 65535 193.# 194.ike keychain policy 195. pre-shared-key address 218.75.117.10 255.255.255.255 key cipher $c$3$iqG9vgTVxb8qecS1xwp1QtBI7tyVWrmG 196.# 197. ip http enable 198. ip https enable 199.# 200.wlan global-configuration 201. control-address disable 202.# 203.wlan ap-group default-group 204.# 205.return