Difference between revisions of "IP Telefoni Tele-punkt/netværk"
From Teknologisk videncenter
m |
m |
||
Line 2: | Line 2: | ||
[[Image:Telepunkt netværk.png|thumb|1000px|left|Testnetværk i lokalet]] | [[Image:Telepunkt netværk.png|thumb|1000px|left|Testnetværk i lokalet]] | ||
== Config R1 == | == Config R1 == | ||
+ | <source lang=cli> | ||
+ | |||
+ | Current configuration : 5456 bytes | ||
+ | ! | ||
+ | ! Last configuration change at 13:54:05 UTC Thu Mar 18 2010 by cisco | ||
+ | ! NVRAM config last updated at 08:04:39 UTC Thu Mar 18 2010 | ||
+ | ! | ||
+ | version 12.4 | ||
+ | service timestamps debug datetime msec | ||
+ | service timestamps log datetime msec | ||
+ | no service password-encryption | ||
+ | ! | ||
+ | hostname R1 | ||
+ | ! | ||
+ | boot-start-marker | ||
+ | boot-end-marker | ||
+ | ! | ||
+ | enable secret 5 $1$M7by$NcEdXiw609erFqnF31PBG1 | ||
+ | enable password class | ||
+ | ! | ||
+ | no aaa new-model | ||
+ | ! | ||
+ | resource policy | ||
+ | ! | ||
+ | ip cef | ||
+ | ! | ||
+ | ! | ||
+ | no ip dhcp use vrf connected | ||
+ | ip dhcp excluded-address 192.168.64.0 192.168.64.49 | ||
+ | ! | ||
+ | ip dhcp pool PC | ||
+ | network 192.168.64.0 255.255.255.0 | ||
+ | domain-name pb1.tekkom.dk | ||
+ | default-router 192.168.64.1 | ||
+ | dns-server 192.168.22.73 | ||
+ | option 150 ip 192.168.22.4 | ||
+ | ! | ||
+ | ! | ||
+ | ip vrf PB | ||
+ | description Kunde: Pengebanken (PB) i Rodborg (RDB) : PB-RDB | ||
+ | rd 3292:2 | ||
+ | route-target export 1100:2 | ||
+ | route-target import 1100:2 | ||
+ | ! | ||
+ | no ip domain lookup | ||
+ | ip host r1 10.10.10.1 | ||
+ | ip host r2 10.10.10.2 | ||
+ | ip host r3 10.10.10.3 | ||
+ | ip host bks1 192.168.64.2 | ||
+ | ip host bks2 192.168.64.3 | ||
+ | ip host bks3 192.168.64.4 | ||
+ | ip host rdb1 192.168.72.2 | ||
+ | ip host rdb2 192.168.72.3 | ||
+ | ip host rdb3 192.168.72.4 | ||
+ | ip host pb1 192.168.64.3 | ||
+ | ip host pb2 192.168.64.4 | ||
+ | ip host pb3 192.168.72.3 | ||
+ | ip host pb4 192.168.72.4 | ||
+ | ! | ||
+ | class-map match-all Telnet | ||
+ | match protocol telnet | ||
+ | class-map match-all Voice | ||
+ | match ip dscp ef | ||
+ | class-map match-all Signaling | ||
+ | match ip dscp cs3 | ||
+ | ! | ||
+ | ! | ||
+ | policy-map VoIP | ||
+ | class Telnet | ||
+ | bandwidth 200 | ||
+ | class Voice | ||
+ | priority 200 | ||
+ | class Signaling | ||
+ | bandwidth 10 | ||
+ | class class-default | ||
+ | fair-queue | ||
+ | ! | ||
+ | interface Loopback0 | ||
+ | ip address 10.10.10.1 255.255.255.255 | ||
+ | ip router isis | ||
+ | ! | ||
+ | interface Loopback10 | ||
+ | ip address 10.10.1.1 255.255.255.0 | ||
+ | ! | ||
+ | interface FastEthernet0/0 | ||
+ | no ip address | ||
+ | ip nat inside | ||
+ | ip virtual-reassembly | ||
+ | speed auto | ||
+ | full-duplex | ||
+ | no mop enabled | ||
+ | ! | ||
+ | interface FastEthernet0/0.1 | ||
+ | encapsulation dot1Q 1 native | ||
+ | ip address 192.168.64.1 255.255.255.0 | ||
+ | ip nat inside | ||
+ | ip virtual-reassembly | ||
+ | ! | ||
+ | interface FastEthernet0/0.21 | ||
+ | description VRF PB for hold 1 | ||
+ | encapsulation dot1Q 21 | ||
+ | ip vrf forwarding PB | ||
+ | ip address 192.168.21.1 255.255.255.252 | ||
+ | ! | ||
+ | interface FastEthernet0/0.22 | ||
+ | description VRF PB for hold 2 | ||
+ | encapsulation dot1Q 22 | ||
+ | ip vrf forwarding PB | ||
+ | ip address 192.168.22.1 255.255.255.252 | ||
+ | ! | ||
+ | interface FastEthernet0/0.101 | ||
+ | description Internet Hold 1 | ||
+ | encapsulation dot1Q 101 | ||
+ | ip address 10.10.101.1 255.255.255.252 | ||
+ | ip nat inside | ||
+ | ip virtual-reassembly | ||
+ | ! | ||
+ | interface FastEthernet0/0.102 | ||
+ | encapsulation dot1Q 102 | ||
+ | ip address 10.10.102.1 255.255.255.252 | ||
+ | ip nat inside | ||
+ | ip virtual-reassembly | ||
+ | ! | ||
+ | interface FastEthernet0/1 | ||
+ | description internet access | ||
+ | ip address dhcp | ||
+ | ip nat outside | ||
+ | ip virtual-reassembly | ||
+ | ip route-cache flow | ||
+ | duplex auto | ||
+ | speed auto | ||
+ | ! | ||
+ | interface Serial0/2/0 | ||
+ | ip address 10.10.0.5 255.255.255.252 | ||
+ | ip router isis | ||
+ | mpls label protocol ldp | ||
+ | mpls ip | ||
+ | clock rate 2000000 | ||
+ | service-policy output VoIP | ||
+ | ! | ||
+ | router isis | ||
+ | mpls traffic-eng router-id Loopback0 | ||
+ | mpls traffic-eng level-2 | ||
+ | net 49.0000.0101.3300.1111.00 | ||
+ | metric-style wide | ||
+ | default-information originate | ||
+ | ! | ||
+ | router bgp 3292 | ||
+ | bgp log-neighbor-changes | ||
+ | neighbor 10.10.10.2 remote-as 3292 | ||
+ | neighbor 10.10.10.2 update-source Loopback0 | ||
+ | neighbor 10.10.10.3 remote-as 3292 | ||
+ | neighbor 10.10.10.3 update-source Loopback0 | ||
+ | ! | ||
+ | address-family ipv4 | ||
+ | neighbor 10.10.10.2 activate | ||
+ | neighbor 10.10.10.3 activate | ||
+ | default-information originate | ||
+ | no auto-summary | ||
+ | no synchronization | ||
+ | network 10.10.1.0 mask 255.255.255.0 | ||
+ | network 192.168.64.0 | ||
+ | exit-address-family | ||
+ | ! | ||
+ | address-family vpnv4 | ||
+ | neighbor 10.10.10.2 activate | ||
+ | neighbor 10.10.10.2 send-community both | ||
+ | neighbor 10.10.10.3 activate | ||
+ | neighbor 10.10.10.3 send-community extended | ||
+ | exit-address-family | ||
+ | ! | ||
+ | address-family ipv4 vrf PB | ||
+ | redistribute connected | ||
+ | redistribute static | ||
+ | neighbor 192.168.21.2 remote-as 65001 | ||
+ | neighbor 192.168.21.2 activate | ||
+ | neighbor 192.168.22.2 remote-as 65002 | ||
+ | neighbor 192.168.22.2 activate | ||
+ | no synchronization | ||
+ | exit-address-family | ||
+ | ! | ||
+ | ip route 0.0.0.0 0.0.0.0 192.168.22.73 | ||
+ | ip route 172.21.1.0 255.255.255.0 10.10.101.2 | ||
+ | ip route 172.21.100.0 255.255.255.0 10.10.101.2 | ||
+ | ip route 172.22.1.0 255.255.255.0 10.10.102.2 | ||
+ | ip route 172.22.100.0 255.255.255.0 10.10.102.2 | ||
+ | ip route 172.23.1.0 255.255.255.0 10.10.103.2 | ||
+ | ip route 172.23.100.0 255.255.255.0 10.10.103.2 | ||
+ | ip route 172.24.1.0 255.255.255.0 10.10.104.2 | ||
+ | ip route 172.24.100.0 255.255.255.0 10.10.104.2 | ||
+ | ! | ||
+ | ip flow-cache timeout inactive 10 | ||
+ | ip flow-export version 5 | ||
+ | ip flow-export destination 192.168.72.55 9991 | ||
+ | ! | ||
+ | ip http server | ||
+ | no ip http secure-server | ||
+ | ip nat inside source list 38 interface FastEthernet0/1 overload | ||
+ | ip nat inside source static tcp 10.10.10.1 23 interface FastEthernet0/1 23 | ||
+ | ip nat inside source static tcp 10.10.10.1 22 interface FastEthernet0/1 22 | ||
+ | ! | ||
+ | access-list 10 permit any | ||
+ | access-list 38 permit 10.10.0.0 0.0.255.255 | ||
+ | access-list 38 permit 192.168.64.0 0.0.15.255 | ||
+ | access-list 38 permit 172.21.0.0 0.0.255.255 | ||
+ | access-list 38 permit 172.22.0.0 0.0.255.255 | ||
+ | access-list 38 permit 172.23.0.0 0.0.255.255 | ||
+ | access-list 38 permit 172.24.0.0 0.0.255.255 | ||
+ | snmp-server community public RO | ||
+ | snmp-server community secret RW | ||
+ | snmp-server ifindex persist | ||
+ | snmp-server location Mercantec locale 308 | ||
+ | snmp-server contact Henrik Thomsen | ||
+ | snmp-server chassis-id Cisco xxx | ||
+ | ! | ||
+ | route-map Internet permit 10 | ||
+ | match ip address 10 | ||
+ | ! | ||
+ | route-map Internet permit 20 | ||
+ | set level level-2 | ||
+ | ! | ||
+ | line con 0 | ||
+ | logging synchronous | ||
+ | line aux 0 | ||
+ | line vty 0 4 | ||
+ | password cisco | ||
+ | logging synchronous | ||
+ | login | ||
+ | ! | ||
+ | scheduler allocate 20000 1000 | ||
+ | </source> | ||
== Config R2 == | == Config R2 == | ||
== Config R3 == | == Config R3 == | ||
Line 10: | Line 241: | ||
== Config PB3 == | == Config PB3 == | ||
== Config PB4 == | == Config PB4 == | ||
+ | {{Source cli}} | ||
[[Category:Kurser]] | [[Category:Kurser]] |
Revision as of 09:34, 19 March 2010
Contents
Config R1
Current configuration : 5456 bytes
!
! Last configuration change at 13:54:05 UTC Thu Mar 18 2010 by cisco
! NVRAM config last updated at 08:04:39 UTC Thu Mar 18 2010
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R1
!
boot-start-marker
boot-end-marker
!
enable secret 5 $1$M7by$NcEdXiw609erFqnF31PBG1
enable password class
!
no aaa new-model
!
resource policy
!
ip cef
!
!
no ip dhcp use vrf connected
ip dhcp excluded-address 192.168.64.0 192.168.64.49
!
ip dhcp pool PC
network 192.168.64.0 255.255.255.0
domain-name pb1.tekkom.dk
default-router 192.168.64.1
dns-server 192.168.22.73
option 150 ip 192.168.22.4
!
!
ip vrf PB
description Kunde: Pengebanken (PB) i Rodborg (RDB) : PB-RDB
rd 3292:2
route-target export 1100:2
route-target import 1100:2
!
no ip domain lookup
ip host r1 10.10.10.1
ip host r2 10.10.10.2
ip host r3 10.10.10.3
ip host bks1 192.168.64.2
ip host bks2 192.168.64.3
ip host bks3 192.168.64.4
ip host rdb1 192.168.72.2
ip host rdb2 192.168.72.3
ip host rdb3 192.168.72.4
ip host pb1 192.168.64.3
ip host pb2 192.168.64.4
ip host pb3 192.168.72.3
ip host pb4 192.168.72.4
!
class-map match-all Telnet
match protocol telnet
class-map match-all Voice
match ip dscp ef
class-map match-all Signaling
match ip dscp cs3
!
!
policy-map VoIP
class Telnet
bandwidth 200
class Voice
priority 200
class Signaling
bandwidth 10
class class-default
fair-queue
!
interface Loopback0
ip address 10.10.10.1 255.255.255.255
ip router isis
!
interface Loopback10
ip address 10.10.1.1 255.255.255.0
!
interface FastEthernet0/0
no ip address
ip nat inside
ip virtual-reassembly
speed auto
full-duplex
no mop enabled
!
interface FastEthernet0/0.1
encapsulation dot1Q 1 native
ip address 192.168.64.1 255.255.255.0
ip nat inside
ip virtual-reassembly
!
interface FastEthernet0/0.21
description VRF PB for hold 1
encapsulation dot1Q 21
ip vrf forwarding PB
ip address 192.168.21.1 255.255.255.252
!
interface FastEthernet0/0.22
description VRF PB for hold 2
encapsulation dot1Q 22
ip vrf forwarding PB
ip address 192.168.22.1 255.255.255.252
!
interface FastEthernet0/0.101
description Internet Hold 1
encapsulation dot1Q 101
ip address 10.10.101.1 255.255.255.252
ip nat inside
ip virtual-reassembly
!
interface FastEthernet0/0.102
encapsulation dot1Q 102
ip address 10.10.102.1 255.255.255.252
ip nat inside
ip virtual-reassembly
!
interface FastEthernet0/1
description internet access
ip address dhcp
ip nat outside
ip virtual-reassembly
ip route-cache flow
duplex auto
speed auto
!
interface Serial0/2/0
ip address 10.10.0.5 255.255.255.252
ip router isis
mpls label protocol ldp
mpls ip
clock rate 2000000
service-policy output VoIP
!
router isis
mpls traffic-eng router-id Loopback0
mpls traffic-eng level-2
net 49.0000.0101.3300.1111.00
metric-style wide
default-information originate
!
router bgp 3292
bgp log-neighbor-changes
neighbor 10.10.10.2 remote-as 3292
neighbor 10.10.10.2 update-source Loopback0
neighbor 10.10.10.3 remote-as 3292
neighbor 10.10.10.3 update-source Loopback0
!
address-family ipv4
neighbor 10.10.10.2 activate
neighbor 10.10.10.3 activate
default-information originate
no auto-summary
no synchronization
network 10.10.1.0 mask 255.255.255.0
network 192.168.64.0
exit-address-family
!
address-family vpnv4
neighbor 10.10.10.2 activate
neighbor 10.10.10.2 send-community both
neighbor 10.10.10.3 activate
neighbor 10.10.10.3 send-community extended
exit-address-family
!
address-family ipv4 vrf PB
redistribute connected
redistribute static
neighbor 192.168.21.2 remote-as 65001
neighbor 192.168.21.2 activate
neighbor 192.168.22.2 remote-as 65002
neighbor 192.168.22.2 activate
no synchronization
exit-address-family
!
ip route 0.0.0.0 0.0.0.0 192.168.22.73
ip route 172.21.1.0 255.255.255.0 10.10.101.2
ip route 172.21.100.0 255.255.255.0 10.10.101.2
ip route 172.22.1.0 255.255.255.0 10.10.102.2
ip route 172.22.100.0 255.255.255.0 10.10.102.2
ip route 172.23.1.0 255.255.255.0 10.10.103.2
ip route 172.23.100.0 255.255.255.0 10.10.103.2
ip route 172.24.1.0 255.255.255.0 10.10.104.2
ip route 172.24.100.0 255.255.255.0 10.10.104.2
!
ip flow-cache timeout inactive 10
ip flow-export version 5
ip flow-export destination 192.168.72.55 9991
!
ip http server
no ip http secure-server
ip nat inside source list 38 interface FastEthernet0/1 overload
ip nat inside source static tcp 10.10.10.1 23 interface FastEthernet0/1 23
ip nat inside source static tcp 10.10.10.1 22 interface FastEthernet0/1 22
!
access-list 10 permit any
access-list 38 permit 10.10.0.0 0.0.255.255
access-list 38 permit 192.168.64.0 0.0.15.255
access-list 38 permit 172.21.0.0 0.0.255.255
access-list 38 permit 172.22.0.0 0.0.255.255
access-list 38 permit 172.23.0.0 0.0.255.255
access-list 38 permit 172.24.0.0 0.0.255.255
snmp-server community public RO
snmp-server community secret RW
snmp-server ifindex persist
snmp-server location Mercantec locale 308
snmp-server contact Henrik Thomsen
snmp-server chassis-id Cisco xxx
!
route-map Internet permit 10
match ip address 10
!
route-map Internet permit 20
set level level-2
!
line con 0
logging synchronous
line aux 0
line vty 0 4
password cisco
logging synchronous
login
!
scheduler allocate 20000 1000