华为HCNA(HCIA)考试培训认证作业-PPPoE的实施-乾颐堂安德(周亚军)HCIE#2198
HCNA题库稳定
1.CHAP
CHAP
挑战握手协议,通过3次握手发送MD5之后的校验值来进行认证。
发送的是MD5之后的校验值,但是配置依旧需要配置用户名和密码
2.PPPoE
作业:PPPoE的实施和优化
服务器端:
aaa
[Server-R2-aaa]local-user hcie1 password cipher hcie1
!
ip pool PPPoE1
network 202.100.1.0 mask 255.255.255.0
dns-list 114.114.114.114 8.8.8.8
!
interface Virtual-Template1 //创建逻辑的虚拟模版接口
remote address pool PPPoE1
ip address 202.100.1.1 255.255.255.0
#
interface GigabitEthernet0/0/0
pppoe-server bind Virtual-Template 1
客户端(传统VPN中的VPDN)
dialer-rule
dialer-rule 1 ip permit
!
interface Dialer1 //创建拨号接口
link-protocol ppp
ip address ppp-negotiate //地址的获取方式从对端服务器得到
dialer user QYT
dialer bundle 1
dialer-group 1
!
interface GigabitEthernet0/0/0
pppoe-client dial-bundle-number 1 //物理接口换个逻辑接口绑定
<R1-Gateway>display ip int bri
*down: administratively down
^down: standby
(l): loopback
(s): spoofing
The number of interface that is UP in Physical is 5
The number of interface that is DOWN in Physical is 2
The number of interface that is UP in Protocol is 3
The number of interface that is DOWN in Protocol is 4
Interface IP Address/Mask Physical Protocol
Dialer1 202.100.1.254/32 up up(s) //重点在于逻辑接口是否工作,物理接口在协议上是down的是正确的!
GigabitEthernet0/0/0 unassigned up down
GigabitEthernet0/0/1 unassigned down down
GigabitEthernet0/0/2 unassigned up down
NULL0 unassigned up up(s)
Serial1/0/0 unassigned up up
Serial1/0/1 unassigned down down
<R1-Gateway>display pppoe-client session summary
PPPoE Client Session:
ID Bundle Dialer Intf Client-MAC Server-MAC State
1 1 1 GE0/0/0 00e0fcc246b1 00e0fc8e7a48 UP
PPPoE的优化:
a.MTU
b.MSS
c.DNS
d.静态默认路由
[R1-Gateway]ip route-static 0.0.0.0 0.0.0.0 Dialer 1 //由于dial1接口是一个PPP的接口
拨号接口下:
ppp ipcp dns admit-any
ppp ipcp dns request
3.NAT(网络地址转换)
不要依赖ping来验证;地址是否成功的做了转换
3.1 静态NAT转换
一对一的转换,并不常用。整个的唯一的公网地址全部被占用
3.2 NAT服务器
3.3 动态NAT
3.4 easyIP(PAT)
4.ACL
5.IPSEC VPN
华为HCNA(HCIA)考试培训认证作业-PPPoE的实施-乾颐堂安德(周亚军)HCIE#2198
咨询QQ及电话:4006188070
乾颐堂官网:www.qytang.com
乾颐堂网络实验室 我们为您想的更多
姓名:
Q Q:
电话:
|