|
|
实验环境# G$ s7 V" @7 ]! r/ m9 E
* B; q' i8 o) p: o7 W
pppoe-client上面的接口信息
2 W: r5 g* D7 A$ t4 [" n7 d
s9 T2 r. m9 o m( j5 N3 m[AR1]dis ip interface brief
% c" J% E$ ~' B$ Y*down: administratively down
/ X4 C7 J) y7 t; I" E+ T- B- @) n^down: standby" _) u. G. C% P8 _/ E5 D$ f
(l): loopback* i! H% c1 x1 R! P6 k& m' d
(s): spoofing
9 J" b2 o$ w4 Q3 d7 `- l6 _2 J$ M' qThe number of interface that is UP in Physical is 2
8 b; @, c, ~' C/ AThe number of interface that is DOWN in Physical is 1
2 E6 D @9 Q& t% PThe number of interface that is UP in Protocol is 18 g' f4 y& _! l5 i) W0 Y
The number of interface that is DOWN in Protocol is 20 o g$ G/ k5 E Y
! Z- @/ A8 C" E8 O
Interface IP Address/Mask Physical Protocol % T6 b$ c& v- Y/ w, a( `& N
GigabitEthernet0/0/0 unassigned up down ' O+ _. \/ L2 L# \; q+ n
GigabitEthernet0/0/1 192.168.1.254/24 down down
9 @. Q: \+ s+ Z% P; [8 kNULL0 unassigned up up(s)
: U3 b$ Z2 C7 }4 ~, V/ ~) p3 ^
9 C) J" n9 v. z$ u! M; t% h
. H# t/ i/ a6 Y8 K. s4 c' }7 ]0 @配置了基于接口的DHCP
3 f0 o' ]! }& c3 J" c
! E {% A! s' n7 e6 S+ s, Einterface GigabitEthernet0/0/18 k+ x5 f4 t5 w- p) d& b
ip address 192.168.1.254 255.255.255.0
' C# v* p: b8 ?5 v5 ? dhcp select interface2 X; i( ^# \( o" I$ m5 e; p
dhcp server dns-list 8.8.8.8 % M$ c( T) J5 g+ s
dhcp server domain-name pokes.com
7 p* T2 Y- Z! Y" E
' Y0 `1 z+ ]. F7 f9 b2 ^% R" M注意事项:AR1、AR2的物理接口g0/0/0不配地址.
* e: l1 n2 I, F8 c7 J* @; [+ Y% q1 K7 q0 ]
一、pppoe-server的配置 K, M# r; ?. n- |
1、pppoe-server 配置地址池/ Y. V% Q! W$ K, [
[pppoe-server]ip pool pokes #创建名为pokes的地址池,名字可以随便起,后面要调用
0 n s/ Y: p- U+ kInfo: It's successful to create an IP address pool.5 y4 k; F7 z' E% M% w- s
[pppoe-server-ip-pool-pokes]network 10.1.12.0 mask 24 #地址池为10.1.12.0/24" k! l# ^& S' v: ^
[pppoe-server-ip-pool-pokes]dis th% X s, n4 K( z" m( \1 s
[V200R003C00]6 y: z/ f+ E* Q- x+ s: ?7 X( D! V4 E
#
( Z" C8 w& ^* \ jip pool pokes1 v1 S4 B9 ~0 V4 W( F. t
network 10.1.12.0 mask 255.255.255.0 + j4 q) A: `, ?1 i( g
#% w$ ]- J+ W- G% ]& E O
return+ X- v$ E$ ~+ T# M+ `& x
[pppoe-server-ip-pool-pokes]q
8 ~( G% O0 c% u5 a+ @8 y' U" D1 k
6 J0 K9 Z- D( z3 H4 ~: V5 l# {! m2、配置虚拟口关联地址池
+ s- m+ Y: Z: v配置虚拟口关联地址池,即创建Virtual-Template 1模版。4 E9 C$ J4 D+ y- C
4 t% V8 x {7 C1 `' Q& ~7 M
[pppoe-server]interface Virtual-Template 1 #创建虚拟接口1
+ p- V6 A" i# Y; f6 u0 n% u$ @[pppoe-server-Virtual-Template1]ip add 10.1.12.2 24 #虚拟接口1的地址' y/ d* k0 A& v1 ?+ U, h5 C
[pppoe-server-Virtual-Template1]ppp authentication-mode chap #认证类型
& N+ V! G+ u( O2 s$ M8 r[pppoe-server-Virtual-Template1]remote address pool pokes #客户端的地址池pokes9 o0 O) J$ a: r* p5 M( u1 v3 m
[pppoe-server-Virtual-Template1]dis th
) b5 m% |6 _+ r2 ^' b! Winterface Virtual-Template1
: D# S5 g* O2 w2 m% C" O! c4 ^' b: D ppp authentication-mode chap
/ l! c. C* O! T3 \8 j remote address pool pokes
2 U# a% d' q; A2 m' m ip address 10.1.12.2 255.255.255.0( o6 o( C) F# ]$ @# u1 K- a
: Y3 l( ^4 ^" e3 o! J[pppoe-server]int g0/0/0
$ ^& t& j' Z" p0 T) g& P/ }[pppoe-server-GigabitEthernet0/0/0]pppoe-server bind virtual-template 1 #将虚拟接口1关联到g0/0/0接口
, D1 [2 \2 X& J3 H* E[pppoe-server-GigabitEthernet0/0/0]dis th: h8 D& |8 ~, g# H, `
[V200R003C00]2 I8 I1 E$ Y* P5 T- p8 ?7 V
#
0 g: L" H+ q, F9 X3 \# S# binterface GigabitEthernet0/0/0
3 @5 N: |. g- p) Q6 } pppoe-server bind Virtual-Template 12 Q' q# \$ }2 b0 N+ z0 X
#; g: y/ v7 g; R
return
- _! i7 w* J2 {8 E# M" u[pppoe-server-GigabitEthernet0/0/0]
: ]% ^, i; [4 [
- {9 }+ l- L" ]& H G# x1 O3、创建pppoe拨号的账号
, F! \( u" i% j& _8 h+ A0 l按理我们应该创建pppoe拨号的账号。
. Y1 J5 u i% D3 K这里为了演示拨号失败,我们这里先不新建账号,后面再新建。6 Q- |# |. M( I* S6 c! m/ W
0 Q7 `' A+ `5 _# [1 y1 _- o二、pppoe-client的配置
0 c( v/ t- ]; {$ ^[pppoe-client]dialer-rule
7 s: x. j$ }" i; m* Y+ [[pppoe-client-dialer-rule]dialer-rule 1 ?
9 q- L4 v6 H# c7 S7 \ acl Permit or deny based on access-list 9 g- f. C9 ]) G8 {# N# x7 c
ip Ip4 j" s& y; F, ]
ipv6 Ipv6 / T+ l9 O ~9 O) T @9 A, g$ \
[pppoe-client-dialer-rule]dialer-rule 1 ip permit #创建拨号规则,允许ip流量触发拨号
( O1 W8 K+ ^( g# O$ q
# ]& J+ s5 V& X Y7 X& [; q; t$ b0 C[pppoe-client]interface Dialer 1- F+ D0 A& A" S
Jul 15 2021 18:55:22-08:00 pppoe-client %%01IFPDT/4/IF_STATE(l)[0]:Interface Dia# T9 a8 D" b+ r$ s" R) O
ler1 has turned into UP state.* K* t! w/ D2 u* M7 Y; {6 a
[pppoe-client-Dialer1]ip add $ R1 X: s2 O' z& q" X- S0 N4 R
[pppoe-client-Dialer1]ip address ppp * i) w% C! [( E' q/ W
[pppoe-client-Dialer1]ip address ppp-negotiate #地址采用ppp协商
/ s3 y4 _. o, D9 L
; i1 t, l s, b% L: C[pppoe-client]interface Dialer 1 #创建接口拨号组1& T$ G% O" x& S) B3 ^" r+ Z
[pppoe-client-Dialer1]ip address ppp-negotiate #ip地址采用ppp协商
! H. o! b" V( `) Z! s[pppoe-client-Dialer1]dialer user zhprny #此用户不用于认证,是标识作用以及和dialer绑定
B5 f. I" c5 K[pppoe-client-Dialer1]dialer bundle 1 #设备通过Dialer bundle将物理接口与拨号接口关联起来。
! K; g o. A. h+ i% H. m' G6 m; @[pppoe-client-Dialer1]dialer-group 1 #放到一个拨号访问组1中
. C2 x) J+ ?1 g0 S4 Z[pppoe-client-Dialer1]ppp chap user pokes #指定dialer1接口的编号,拨号账号& V1 h- R' V1 C1 c
[pppoe-client-Dialer1]ppp chap password 123456 #拨号的密码- p' P ^9 q/ q" ?3 ?0 p& |" l% B
1 q" e4 J. S p D) @% S" E
9 R- c5 e+ R" l3 W* W- Q1 @6 Z[pppoe-client-Dialer1]dis th' R% S' e5 O# N( z" z5 c
[V200R003C00]
8 \! e1 b2 L. V0 N2 e#
+ {1 N7 p7 P3 s l$ r* K" v( M, v3 }/ Dinterface Dialer1
; D6 o Z3 ?, ? I* e( L link-protocol ppp5 G2 `4 J4 [4 I3 ]
ppp chap user pokes# P& Z# V6 J* D, M" k# \1 ], n
ppp chap password cipher %$%$I/!'WCyd<7p[~8;,>51L,$sl%$%$/ s1 U- A" j, @
ip address ppp-negotiate: K" F% ?0 D/ D
dialer user zhprny
7 d1 D& H; h1 Q' o, R( Y dialer bundle 17 Y' ]$ O H( S0 g4 N' S( I
dialer-group 1
% ~% @( y4 P" b) W( ^$ D0 X0 i6 R1 a6 f9 K6 Y1 l
[pppoe-client-GigabitEthernet0/0/0]
, [8 k# E `0 _# a- F# Z1 QJul 15 2021 19:07:54-08:00 pppoe-client %%01IFNET/4/LINK_STATE(l)[0]:The line pr
- F/ v9 ]% u! S% Sotocol PPP on the interface Dialer1:0 has entered the UP state. #PPP已进入启动状态, t2 X8 D0 C8 t: N
[pppoe-client-GigabitEthernet0/0/0]0 w& c+ {( N7 Q/ k" u
Jul 15 2021 19:07:54-08:00 pppoe-client %%01IFNET/4/LINK_STATE(l)[1]:The line pr
* F# G$ U: D+ V/ Sotocol PPP on the interface Dialer1:0 has entered the DOWN state. #PPP已进入关闭状态: j+ J$ T2 ` e4 l1 ?! m9 R
/ d6 h/ ^2 y2 j- ^. E, ]3 z( e
#不停的循环。。。。
6 ~% v& C; c1 E/ R; v
2 c/ N3 U& Z& l% `- N8 y* w' c' \, p& @1 C% G \& _2 p' \
#原因是没有认证成功,因为我们在PPPOE-server上面还没有创建认证用户和密码
( W' o" }% z+ g# T# P" F/ A5 O, L' A' T& Q H- @( U5 j% h; w: R" n3 g
三、pppoe服务器上新建认证用户- f( Y5 k, p+ I$ z/ C
我们到服务器上直接新建认证用户:
c2 T0 W8 K `. D$ v' w6 A; }6 ~7 S2 N2 D
[pppoe-server]aaa4 ~! `% \) o" o8 [: W; k
[pppoe-server-aaa]local-user pokes password cipher 123456- H8 n+ s/ w. N, L" M
Info: Add a new user.
+ d( s" Z( n, M K$ n0 x[pppoe-server-aaa]local-user pokes service-type ppp #类型为ppp7 }+ J' K' l/ a* j* w% N
' ?* j) }" p+ G1 o/ b7 Q+ M
& m F4 |) }+ J: I2 u: C" [# e四、客户端验证结果7 v) h- X" R' s5 p7 y
1、认证成功信息# s3 F7 b6 [; B7 J) Z% V
然后客户端就会出现认证成功的提示:
2 s4 x4 X a; t1 A( j5 G
- R4 t9 K$ V6 }[pppoe-client-GigabitEthernet0/0/0]
! Y) Z, G9 c d# z, H Q) \Jul 15 2021 19:09:23-08:00 pppoe-client %%01IFNET/4/LINK_STATE(l)[10]:The line p
! C0 d' L' t* t# P$ e/ {; z- ^rotocol PPP on the interface Dialer1:0 has entered the UP state. % v4 l$ D- B+ }4 J
[pppoe-client-GigabitEthernet0/0/0]
" P R* G- }% G: e* SJul 15 2021 19:09:23-08:00 pppoe-client %%01IFNET/4/LINK_STATE(l)[11]:The line p% C$ b7 W# U K$ r3 i* o! g
rotocol PPP IPCP on the interface Dialer1:0 has entered the UP state. 0 X# B& m: |" N1 s7 p C
[pppoe-client-GigabitEthernet0/0/0]q
+ x4 q/ `2 N, q2 @$ n[pppoe-client]dis ip in b
! R3 f) V/ U2 j. F1 ?( H+ S*down: administratively down
) O _" S2 e; t1 l' l5 P: M^down: standby. k0 M' W& |6 T1 N
(l): loopback5 h7 q$ O/ Q# l0 N# c5 p
(s): spoofing
9 z0 {/ R8 K) x* u- iThe number of interface that is UP in Physical is 4
. X) P6 E. k# s! x3 E. xThe number of interface that is DOWN in Physical is 07 z* D( {4 K. R( v- i/ T6 c3 ^
The number of interface that is UP in Protocol is 3; y5 E; h3 e0 A" s `8 S0 x3 g
The number of interface that is DOWN in Protocol is 1" @& ~! E* ?' J6 O) l
% C* q/ v; ]/ g
Interface IP Address/Mask Physical Protocol
( n) M: V$ Z/ ?. }. Y4 mDialer1 10.1.12.254/32 up up(s) #拿到了PPPOE服务器上的地址3 I' b1 B+ u5 y8 ^7 V
GigabitEthernet0/0/0 unassigned up down
" J D+ A: K4 S+ C3 n! |3 ~1 RGigabitEthernet0/0/1 192.168.1.254/24 up up * E2 R& Z y: I+ l- H
NULL0 unassigned up up(s) ! M- K4 @; H* d9 v6 o. |9 h7 t! A
4 y `1 Y Y0 {" E3 @
3 o! Y9 b! O F8 V2、pppoe-server 信息
2 n% F w+ |( I& [5 ?$ m0 l<pppoe-server>dis interface Virtual-Template 1
3 i$ Q W. Q7 M& w2 l/ {7 f2 @' A* L0 wVirtual-Template1 current state : UP
2 w, U7 Z! [; f+ A- C' NLine protocol current state : UP
4 {$ y' ~! h! b$ a: T) H/ Z8 r$ M- DLast line protocol up time : 2021-07-15 19:09:22 UTC-08:00' t5 G. b9 @$ M# Z
Description:HUAWEI, AR Series, Virtual-Template1 Interface
/ `, F( X, S- Z1 S1 m/ xRoute Port,The Maximum Transmit Unit is 1492, Hold timer is 10(sec)
( h) \3 R7 V; gInternet Address is 10.1.12.2/24+ F1 {; i% j- G# l, c- Y. Y9 f
Link layer protocol is PPP+ r, [% A0 J2 ~5 |$ P! O+ R" n! P. ?
LCP initial$ T% m5 k. g# K$ ~0 v8 [9 v
Physical is None, x5 C8 ], s- I1 O7 V
Current system time: 2021-07-15 20:27:28-08:00, l; J/ s6 R# t4 H+ C
Last 300 seconds input rate 0 bits/sec, 0 packets/sec
i3 c/ m" I: l n, q Last 300 seconds output rate 0 bits/sec, 0 packets/sec
?* W1 l. N8 ?% C/ x* Q0 D1 h Realtime 0 seconds input rate 0 bits/sec, 0 packets/sec: G/ x( B. K7 r1 b
Realtime 0 seconds output rate 0 bits/sec, 0 packets/sec1 q& T8 I2 A. ~7 _/ r( ^- M
Input: 0 bytes! a* g" L: p, R! |% c) C
Output:0 bytes- E! y; [- X# v6 y7 |$ [* W7 P
Input bandwidth utilization : 0%
7 D4 @4 y+ _. B; t6 n Output bandwidth utilization : 0%
$ h. ~7 k: @& b, _
) v3 v C* F! K, G<pppoe-server>
& d8 Y S! e, M% w9 ~
& T0 l' r7 k+ ?8 K6 ]) x+ l H% [% j, M, o0 P
3、pppoe-client信息$ m, P. Q" K3 M& l- O& F6 `
<pppoe-client>dis interface Dialer 1
5 {+ o* f+ q) YDialer1 current state : UP/ K/ E% S5 Y# B3 X H
Line protocol current state : UP (spoofing)( q% K* P( r6 }# J% l" o9 S" p
Description:HUAWEI, AR Series, Dialer1 Interface" [3 T& [! f3 I- X; A: I- b0 F
Route Port,The Maximum Transmit Unit is 1500, Hold timer is 10(sec)( d$ k9 A/ g( p) d0 }3 U- ^
Internet Address is negotiated, 10.1.12.254/32
7 V/ |/ g0 q' Z$ jLink layer protocol is PPP
6 _3 {1 g& s) F0 l. D" wLCP initial
: G# f; ~" {/ F( ?9 F. HPhysical is Dialer
2 U' h- F2 \9 nCurrent system time: 2021-07-15 20:23:56-08:004 g% r' w- U3 r, E8 a" r& F
Last 300 seconds input rate 0 bits/sec, 0 packets/sec' P( F8 B" D1 j, y* ~
Last 300 seconds output rate 0 bits/sec, 0 packets/sec2 K3 T* u4 j L7 S2 n
Realtime 0 seconds input rate 0 bits/sec, 0 packets/sec
; F% D/ A+ e# D! i% `) ` Realtime 0 seconds output rate 0 bits/sec, 0 packets/sec% z7 w2 t) g5 P0 U3 P6 z; h1 U
Input: 0 bytes
/ F c, B5 Z0 d& z( M Output:0 bytes
' C+ K1 |5 a1 @: \- p Input bandwidth utilization : 0%+ ^: _4 n8 [% ~, L% I/ D# T
Output bandwidth utilization : 0%7 O" ^5 |7 a! S: j
Bound to Dialer1:0:
! O, s6 {2 V: @0 B0 rDialer1:0 current state : UP ,
- l/ B" y% a# z$ F+ L- dLine protocol current state : UP
" N, w( Y/ B6 o7 S
0 t* k2 u9 C3 p# s5 R/ @8 D6 |1 KLink layer protocol is PPP9 K4 |+ E6 o8 r1 x( H8 p+ D7 H6 y
LCP opened, IPCP opened
, }$ W& C. U; z4 oPackets statistics:' W9 _# }: d5 k1 `; s1 }
Input packets:0, 0 bytes' {" k" U0 j" r& c8 L* \
Output packets:4, 336 bytes
6 U' d. y! V% u8 \) i4 x FCS error packets:0
, M# k/ l7 ~) N& @! e( P/ g. f Address error packets:0' h9 _# l- N7 y/ Y) l9 a4 i
Control field control error packets:0; N8 L$ d, Z4 c0 I: d# S
! [1 q, H; B9 u6 m
9 e" [ _/ I1 |& A
<pppoe-client> r3 o6 y0 w# G
) [. O) r! `8 B. Q* [) g+ o
五、NAT的配置
4 _5 |+ V) W5 ]6 I用PC2直接ping 10.1.12.254是可以通的。10.1.12.254是AR1的g0/0/0口获取到的地址,其实就是我们常说的WAN口地址。% N. ?; o" T l- z5 q E0 R
+ A) o, K; X/ o
PC2>ping 10.1.12.254, q( b: H8 k: b
) T# O" a+ P- q( Z% @Ping 10.1.12.254: 32 data bytes, Press Ctrl_C to break
q( {4 |$ R2 d3 q5 s7 Q# UFrom 10.1.12.254: bytes=32 seq=1 ttl=255 time=63 ms* I3 }1 o- D4 e* t4 d3 G
From 10.1.12.254: bytes=32 seq=2 ttl=255 time=31 ms
# s f/ K1 {, P. P8 n6 cFrom 10.1.12.254: bytes=32 seq=3 ttl=255 time=47 ms
% ~* s* a1 G6 J3 |/ T# zFrom 10.1.12.254: bytes=32 seq=4 ttl=255 time=31 ms4 M: z- Z( z L
From 10.1.12.254: bytes=32 seq=5 ttl=255 time=47 ms
% d8 S* _; H) {; @9 \: y: ]* p5 A, W$ Q2 ^, P, K5 C
--- 10.1.12.254 ping statistics --- j5 d. ]& t: L8 Y! E' W
5 packet(s) transmitted
- E! r" @2 m/ d1 R 5 packet(s) received+ H' \% ^# d% Z8 J. ] w
0.00% packet loss: c, N, b% ]2 a' M- K
round-trip min/avg/max = 31/43/63 ms, `1 l9 K7 S2 W/ @# y/ M
6 h2 D$ F1 m' ]
PC2>ping 10.1.12.2
% h7 D4 `: @, }- \. L1 s; ~, u9 X8 \5 `
Ping 10.1.12.2: 32 data bytes, Press Ctrl_C to break% U7 v7 I- R1 R7 } R- F
Request timeout!
V) L$ ^4 K2 mRequest timeout!$ `( H) [. P$ h! A9 |
Request timeout!8 a* E! H( u+ S; A' c
Request timeout!
8 t1 W/ z9 C4 f/ I. U9 `4 v) h& ORequest timeout!
, g9 ]$ V* }4 Q( C# r1 g% t0 H8 F" ~5 M8 l% v+ m+ z
--- 10.1.12.2 ping statistics ---; s2 V) K2 h! Q* \
5 packet(s) transmitted
" ^' o& {7 o g# p- ]( T A 0 packet(s) received# J# L0 l5 }# v# R" F
100.00% packet loss
# F! O! O9 j2 E6 f0 d* g#但是无法ping通10.1.12.24 n- U, [6 v2 b- h% E \ F
* F. H) u, z. O9 e. G) T6 i
1 A/ D# I0 F$ d无法ping通10.1.12.2的原因是:我们没有做NAT .接下来我们在pppoe-client上面做NAT
* u4 Q% E7 i- J S% ?
6 {0 u6 X6 m0 F" P# m. Q1、这里配置规则2000
: w1 X1 D4 `1 _4 n[pppoe-client]acl number 2000
' ~% f; u! {* B0 P% n& d3 H, ?[pppoe-client-acl-basic-2000]rule permit source 192.168.1.0 0.0.0.2559 `( E" M( Y* F) Z) ]2 n
) t7 g J* \6 d& c
2、将规则2000绑定到接口
. T- i1 V2 Y5 d8 L. M. m如下接口信息,需要注意的是pppoe的接口是Dialer1,并不是GigabitEthernet0/0/0口。我们必须将规则绑定在Dialer1口,最容易犯错的就是直接绑定在g0/0/0口。
- n$ r' P) m1 s$ S y0 o" b' ]! ~4 ]6 d
[pppoe-client]dis ip int b
0 z3 f) o2 [+ q, r% k$ G; J! h7 d*down: administratively down4 ~1 r9 p) s. l5 Y( u, r
^down: standby/ U& k! S$ m4 y) J) u) q" A0 E* H
(l): loopback b" u. h, A9 g8 q6 m
(s): spoofing. _" ^5 N+ j% x9 t* t
The number of interface that is UP in Physical is 4
9 @& K" Z0 e3 J* ^! K( _The number of interface that is DOWN in Physical is 0* @9 u6 R6 B: z; a' M5 o6 O
The number of interface that is UP in Protocol is 3
# t/ S: ]1 V( e& |9 X( j X3 H5 k% gThe number of interface that is DOWN in Protocol is 1. e9 l8 y4 t% I2 Z
! F1 w2 ^" z( i' _+ hInterface IP Address/Mask Physical Protocol * B8 r6 j2 i8 |& p! ?% W1 }
Dialer1 10.1.12.254/32 up up(s) ; }$ c$ U5 h/ g. |
GigabitEthernet0/0/0 unassigned up down ' w8 ~1 U) e4 A6 h+ k4 @ w
GigabitEthernet0/0/1 192.168.1.254/24 up up T; W/ q- w1 Z3 J; Z1 B8 q, Z2 U
NULL0 unassigned up up(s) 2 R# T( T9 w2 {1 q/ H
[pppoe-client]
. s0 X+ \ U: |: z7 i# v7 W/ Z1 t. F( E! e7 `( o* a$ m/ P- P
[pppoe-client]int Dialer 1
- X, E- M3 w/ W( ?6 k' J& y' i[pppoe-client-Dialer1]nat outbound 2000 ?$ ^% @) x4 Z& b$ }4 q
[pppoe-client-Dialer1]dis th5 E: Q8 B" ?- m+ l
[V200R003C00]8 Y3 S: L, E+ j" S4 Z
#/ n& [2 n5 \/ H5 w! K5 ^
interface Dialer1
9 H( B8 }1 x* h3 [2 [) ^ L6 J link-protocol ppp
' z1 U* V6 p' P4 c6 ]/ l7 l0 N ppp chap user pokes
1 ~* O/ h- \- e5 i3 F2 n9 ] ppp chap password cipher %$%$I/!'WCyd<7p[~8;,>51L,$sl%$%$
: ]$ l& T( A" D/ [% b4 N; Y9 z ip address ppp-negotiate
) B" D- r8 z: F4 \ dialer user zhprny
7 _4 i: v! U& h& P7 ]$ u& @+ K3 l+ |; W dialer bundle 1
t' _/ z5 \8 o4 J dialer-group 18 w7 F3 @0 J& E4 B0 x- \# p5 y$ I
nat outbound 2000& J/ o* o6 N7 ^# i/ s
#
# ]* L4 j* g9 E4 F. a. F9 }: n( zreturn- P6 a s# D. v \# u
[pppoe-client-Dialer1]& \2 ^2 c6 K9 U2 a/ M" Q$ g
7 J& P4 @1 c5 L% R Y
接下来我们就可以ping通10.1.12.2 了。& \2 W1 u& z3 R8 L. c2 x# W
0 [4 r& A- ^# |5 m# e- V( M0 j
PC2>ping 10.1.12.2
: p/ I7 F+ ]1 N' Z% T2 x, s3 Y
/ G7 `) q2 X( e2 e0 p, `/ wPing 10.1.12.2: 32 data bytes, Press Ctrl_C to break% d6 |2 F. l, ^
From 10.1.12.2: bytes=32 seq=1 ttl=254 time=31 ms! X- }" J4 n$ N: k- O
From 10.1.12.2: bytes=32 seq=2 ttl=254 time=32 ms$ F! U" T1 B$ t+ Z
From 10.1.12.2: bytes=32 seq=3 ttl=254 time=46 ms; U6 y3 y/ P S& I7 t
From 10.1.12.2: bytes=32 seq=4 ttl=254 time=32 ms \1 g/ e3 d/ J U0 H e' e
From 10.1.12.2: bytes=32 seq=5 ttl=254 time=31 ms
/ R- w) @$ U5 E u Q
& r- a+ Z$ W4 G" V! n- e--- 10.1.12.2 ping statistics ---9 [8 I3 O* s9 r5 h; q
5 packet(s) transmitted' x8 Q9 h# F' [, `' N
5 packet(s) received
% Y; _, t5 g. D7 ?- ]9 G9 C 0.00% packet loss, |8 Y* ]- ]& }# Y8 S. G
round-trip min/avg/max = 31/34/46 ms- g8 k, |4 @. d6 M' s/ u; [
5 g# F4 L! Z" u
, C* w* R0 D$ p1 S% R7 O8 x |
|
发表于 2022-3-16 09:39:13