华三6602 双电信链路如何设置并发
- 0关注
- 1收藏,1170浏览
问题描述:
电信两条专线接入6602分别接在0/0/0 和0/0/2端口,0/0/1 接入内网,telnet0/0/0端口上的IP地址是连通状态,telnet 0/0/2端口上的IP地址不通,但可以ping通(内外网都可以ping通),另外在内网两条专线上的IP地址都可以telnet通,如何解决此问题?
组网及组网描述:
<6602-X>dis cu # version 5.20, Release 3302 # sysname 6602-X # ftp server enable # domain default enable system # dns server 202.98.224.70 dns server 114.114.114.114 # telnet server enable # lldp enable # password-recovery enable # acl number 2000 rule 3 permit source 2.2.2.0 0.0.0.255 rule 5 permit source 172.1.2.0 0.0.0.255 rule 10 permit source 172.1.3.0 0.0.0.255 rule 20 permit source 172.1.6.0 0.0.0.255 rule 25 permit source 172.1.7.0 0.0.0.255 rule 30 permit source 172.1.8.0 0.0.0.255 rule 35 permit source 172.1.9.0 0.0.0.255 rule 40 permit source 172.1.10.0 0.0.0.255 rule 45 permit source 172.1.12.0 0.0.0.255 rule 50 permit source 172.1.13.0 0.0.0.255 rule 55 permit source 172.1.14.0 0.0.0.255 rule 60 permit source 172.1.15.0 0.0.0.255 rule 65 permit source 172.1.16.0 0.0.0.255 rule 125 permit source 192.168.5.0 0.0.0.255 rule 130 permit source 192.168.6.0 0.0.0.255 rule 135 permit source 172.1.11.0 0.0.0.255 rule 175 permit source 192.168.2.0 0.0.0.255 rule 180 permit source 172.1.4.0 0.0.0.255 rule 210 permit source 172.1.23.0 0.0.0.255 rule 215 permit source 172.1.24.0 0.0.0.255 rule 260 permit source 172.1.1.0 0.0.0.255 rule 265 permit source 172.1.17.0 0.0.0.255 rule 270 permit source 172.1.18.0 0.0.0.255 rule 275 permit source 172.1.19.0 0.0.0.255 rule 280 permit source 172.1.20.0 0.0.0.255 rule 285 permit source 172.1.21.0 0.0.0.255 rule 290 permit source 172.1.22.0 0.0.0.255 rule 295 permit source 172.1.25.0 0.0.0.255 rule 300 permit source 172.1.26.0 0.0.0.255 rule 305 permit source 172.1.27.0 0.0.0.255 rule 310 permit source 172.1.28.0 0.0.0.255 rule 315 permit source 172.1.29.0 0.0.0.255 rule 320 permit source 172.1.32.0 0.0.0.255 rule 325 permit source 172.1.34.0 0.0.0.255 rule 330 permit source 172.1.35.0 0.0.0.255 rule 335 permit source 172.1.46.0 0.0.0.255 rule 340 permit source 172.1.5.0 0.0.0.255 acl number 2001 rule 0 permit source 172.1.17.0 0.0.0.255 rule 5 permit source 172.1.18.0 0.0.0.255 rule 10 permit source 172.1.19.0 0.0.0.255 rule 15 permit source 172.1.20.0 0.0.0.255 rule 20 permit source 172.1.21.0 0.0.0.255 rule 25 permit source 172.1.22.0 0.0.0.255 rule 30 permit source 172.1.23.0 0.0.0.255 rule 35 permit source 172.1.24.0 0.0.0.255 rule 40 permit source 172.1.25.0 0.0.0.255 rule 45 permit source 172.1.26.0 0.0.0.255 rule 50 permit source 172.1.27.0 0.0.0.255 rule 55 permit source 172.1.28.0 0.0.0.255 rule 60 permit source 172.1.29.0 0.0.0.255 rule 65 permit source 172.1.32.0 0.0.0.255 rule 70 permit source 172.1.34.0 0.0.0.255 rule 75 permit source 172.1.35.0 0.0.0.255 rule 80 permit source 172.1.46.0 0.0.0.255 rule 85 permit source 172.1.5.0 0.0.0.255 # acl number 3000 rule 0 deny tcp destination-port eq 445 rule 5 deny tcp destination-port eq 3389 acl number 3999 rule 0 permit ip source 172.1.0.0 0.0.255.255 destination 172.1.1.66 0 # domain system access-limit disable state active idle-cut disable self-service-url disable # traffic classifier liutong operator and if-match acl 3888 # traffic behavior liutong filter permit # qos policy liuitong classifier liutong behavior liutong # policy-based-route dianxin219 permit node 1 if-match acl 2000 apply ip-address next-hop 219.151.35.1 track 1 policy-based-route dianxin219 permit node 2 if-match acl 2001 apply ip-address next-hop 124.31.217.65 track 2 # user-group system group-attribute allow-guest # local-user admin password cipher $c$3$ZoW4Umlnnc3JElswUGHdY7Bg4zcPOGKh15X+JHEF authorization-attribute level 3 service-type telnet service-type web # interface NULL0 # interface LoopBack0 # interface GigabitEthernet0/0/0 nat outbound 2000 nat server protocol tcp global 219.151.35.224 8088 inside 192.168.2.8 8088 nat server protocol tcp global 219.151.35.224 65422 inside 192.168.2.8 65422 nat server protocol tcp global 219.151.35.224 6000 inside 192.168.2.15 6000 nat server protocol tcp global 219.151.35.224 8001 inside 192.168.2.15 www nat server protocol tcp global 219.151.35.119 5001 inside 172.1.1.68 5001 ip address 219.151.35.224 255.255.255.0 ip address 219.151.35.119 255.255.255.0 sub ip policy-based-route dianxin219 # interface GigabitEthernet0/0/1 nat outbound 2000 nat server protocol tcp global 219.151.35.224 8088 inside 192.168.2.8 8088 nat server protocol tcp global 219.151.35.224 65422 inside 192.168.2.8 65422 nat server protocol tcp global 219.151.35.224 6000 inside 192.168.2.15 6000 nat server protocol tcp global 219.151.35.224 8001 inside 192.168.2.15 www nat server protocol tcp global 124.31.217.65 any inside 192.168.2.4 any nat server protocol tcp global 219.151.35.119 5001 inside 172.1.1.68 5001 ip address 172.1.1.1 255.255.255.0 # interface GigabitEthernet0/0/2 nat outbound 2001 ip address 124.31.217.89 255.255.255.192 ip address 124.31.217.65 255.255.255.192 sub # interface GigabitEthernet0/0/3 combo enable fiber shutdown # interface M-GigabitEthernet0/0/0 # ip route-static 0.0.0.0 0.0.0.0 219.151.35.1 track 1 ip route-static 0.0.0.0 0.0.0.0 124.31.217.65 track 2 ip route-static 10.1.1.0 255.255.255.0 172.2.1.5 ip route-static 10.1.1.0 255.255.255.0 172.1.1.5 ip route-static 10.1.1.2 255.255.255.254 172.1.1.5 ip route-static 172.1.1.0 255.255.255.0 172.1.1.5 ip route-static 172.1.2.0 255.255.255.0 172.1.1.5 ip route-static 172.1.3.0 255.255.255.0 172.1.1.5 ip route-static 172.1.4.0 255.255.255.0 172.1.1.5 ip route-static 172.1.5.0 255.255.255.0 172.1.1.5 ip route-static 172.1.6.0 255.255.255.0 172.1.1.5 ip route-static 172.1.7.0 255.255.255.0 172.1.1.5 ip route-static 172.1.8.0 255.255.255.0 172.1.1.5 ip route-static 172.1.9.0 255.255.255.0 172.1.1.5 ip route-static 172.1.10.0 255.255.255.0 172.1.1.5 ip route-static 172.1.11.0 255.255.255.0 172.1.1.5 ip route-static 172.1.12.0 255.255.255.0 172.1.1.5 ip route-static 172.1.13.0 255.255.255.0 172.1.1.5 ip route-static 172.1.14.0 255.255.255.0 172.1.1.5 ip route-static 172.1.15.0 255.255.255.0 172.1.1.5 ip route-static 172.1.16.0 255.255.255.0 172.1.1.5 ip route-static 172.1.17.0 255.255.255.0 172.1.1.5 ip route-static 172.1.18.0 255.255.255.0 172.1.1.5 ip route-static 172.1.19.0 255.255.255.0 172.1.1.5 ip route-static 172.1.20.0 255.255.255.0 172.1.1.5 ip route-static 172.1.21.0 255.255.255.0 172.1.1.5 ip route-static 172.1.22.0 255.255.255.0 172.1.1.5 ip route-static 172.1.23.0 255.255.255.0 172.1.1.5 ip route-static 172.1.24.0 255.255.255.0 172.1.1.5 ip route-static 172.1.25.0 255.255.255.0 172.1.1.5 ip route-static 172.1.26.0 255.255.255.0 172.1.1.5 ip route-static 172.1.27.0 255.255.255.0 172.1.1.5 ip route-static 172.1.28.0 255.255.255.0 172.1.1.5 ip route-static 172.1.29.0 255.255.255.0 172.1.1.5 ip route-static 172.1.34.0 255.255.255.0 172.1.1.5 ip route-static 172.1.35.0 255.255.255.0 172.1.1.5 ip route-static 172.1.46.0 255.255.255.0 172.1.1.5 ip route-static 172.2.1.0 255.255.255.0 172.1.1.5 ip route-static 172.3.1.0 255.255.255.0 172.1.1.5 ip route-static 192.168.2.0 255.255.255.0 172.1.1.5 ip route-static 192.168.5.0 255.255.255.0 172.1.1.5 ip route-static 192.168.6.0 255.255.255.0 172.1.1.5 # load xml-configuration # user-interface con 0 authentication-mode password set authentication password cipher $c$3$FYgDLGe9IZ1i/tsJy6tYhN3uAlAfVny7qdYgJfU8 user-interface aux 0 user-interface vty 0 4 authentication-mode scheme # return <6602-X>
- 2020-05-26提问
- 举报
-
(0)
最佳答案
亲~登录后才可以操作哦!
确定你的邮箱还未认证,请认证邮箱或绑定手机后进行当前操作
举报
×
侵犯我的权益
×
侵犯了我企业的权益
×
- 1. 您举报的内容是什么?(请在邮件中列出您举报的内容和链接地址)
- 2. 您是谁?(身份证明材料,可以是身份证或护照等证件)
- 3. 是哪家企业?(营业执照,单位登记证明等证件)
- 4. 您与该企业的关系是?(您是企业法人或被授权人,需提供企业委托授权书)
抄袭了我的内容
×
原文链接或出处
诽谤我
×
- 1. 您举报的内容以及侵犯了您什么权益?(请在邮件中列出您举报的内容、链接地址,并给出简短的说明)
- 2. 您是谁?(身份证明材料,可以是身份证或护照等证件)
对根叔社区有害的内容
×
不规范转载
×
举报说明
大神 加在哪里? 看不大清楚