Febriyan Net - Sekarang kita kan mencoba mempraktekkan ospf dengan pembagian area area yang berbeda beda di ospf nya mikrotik. Berikut topologi yang akan kita buat :
Nah, tujuan kita adalah menghubungkan semua router yang ada di dalam topologi tersebut dan juga menghubungkan 4 pc yang ada di tempat yang berbeda beda dengan menggunakan tunnel EoIP, dan juga IPIP .
Materi :
Oke, pertama, konfigurasikan alamat ip pada masing masing router .
R1
R2
R3
R4
R7
PC 3
R5
R8
PC 4
R6
R9
R10
PC2
R11
PC1
Pengecekan
Verify table routing pada router pojok pojok yang menanamkan tunneling .
R8
R11
R10
R7
Pastikan semua router sudah dapat terkoneksi satu sama lain dengan cara melakukan ping,
Langkah terakhir, pengujian ping dari PC4 (pojok kiri) ke PC 3 (pojok kanan) yang berbeda network .
Jika ping menunjukkan reply, berarti konfigurasi yang telah kita lakukan sudah berhasil. teman teman juga bisa mengujinya dengan ping ke PC 2 ataupung PC1 .
Nah, tujuan kita adalah menghubungkan semua router yang ada di dalam topologi tersebut dan juga menghubungkan 4 pc yang ada di tempat yang berbeda beda dengan menggunakan tunnel EoIP, dan juga IPIP .
Materi :
- OSPF Standard Area
- OSPF Stub Area
- OSPF Totally Stub Area
- OSPF Not So Stubby Area (NSSA)
- IPIP Tunnel
- OSPF Via Tunnel
- EoIP Tunnel
Oke, pertama, konfigurasikan alamat ip pada masing masing router .
R1
[admin@R1] > /interface bridge
[admin@R1] /interface bridge> add name=lo
[admin@R1] > /routing ospf area
[admin@R1] /routing ospf area> add area-id=0.0.0.1 name=area1
[admin@R1] > /ip address
[admin@R1] /ip address> add address=10.1.1.1/24 interface=ether1 network=10.1.1.0
[admin@R1] /ip address> add address=1.1.1.1 interface=lo network=1.1.1.1
[admin@R1] /ip address> add address=10.5.5.1/24 interface=ether2 network=10.5.5.0
[admin@R1] > /routing ospf network
[admin@R1] /routing ospf network> add area=backbone network=1.1.1.1/32
[admin@R1] /routing ospf network> add area=backbone network=10.1.1.0/24
[admin@R1] /routing ospf network> add area=backbone network=10.2.2.0/24
[admin@R1] /routing ospf network> add area=area1 network=10.5.5.0/24
[admin@R1] > /routing ospf virtual-link
[admin@R1] /routing ospf virtual-link> add neighbor-id=5.5.5.5 transit-area=area1
[admin@R1] /interface bridge> add name=lo
[admin@R1] > /routing ospf area
[admin@R1] /routing ospf area> add area-id=0.0.0.1 name=area1
[admin@R1] > /ip address
[admin@R1] /ip address> add address=10.1.1.1/24 interface=ether1 network=10.1.1.0
[admin@R1] /ip address> add address=1.1.1.1 interface=lo network=1.1.1.1
[admin@R1] /ip address> add address=10.5.5.1/24 interface=ether2 network=10.5.5.0
[admin@R1] > /routing ospf network
[admin@R1] /routing ospf network> add area=backbone network=1.1.1.1/32
[admin@R1] /routing ospf network> add area=backbone network=10.1.1.0/24
[admin@R1] /routing ospf network> add area=backbone network=10.2.2.0/24
[admin@R1] /routing ospf network> add area=area1 network=10.5.5.0/24
[admin@R1] > /routing ospf virtual-link
[admin@R1] /routing ospf virtual-link> add neighbor-id=5.5.5.5 transit-area=area1
R2
[admin@R2] > /interface bridge
[admin@R2] /interface bridge> add name=lo0
[admin@R2] > /ip address
[admin@R2] /ip address> add address=10.1.1.2/24 interface=ether1 network=10.1.1.0
[admin@R2] /ip address> add address=2.2.2.2 interface=lo0 network=2.2.2.2
[admin@R2] /ip address> add address=10.2.2.2/24 interface=ether2 network=10.2.2.0
[admin@R2] > /routing ospf network
[admin@R2] /routing ospf network> add area=backbone network=10.1.1.0/24
[admin@R2] /routing ospf network> add area=backbone network=10.2.2.0/24
[admin@R2] /routing ospf network> add area=backbone network=2.2.2.2/32
[admin@R2] /interface bridge> add name=lo0
[admin@R2] > /ip address
[admin@R2] /ip address> add address=10.1.1.2/24 interface=ether1 network=10.1.1.0
[admin@R2] /ip address> add address=2.2.2.2 interface=lo0 network=2.2.2.2
[admin@R2] /ip address> add address=10.2.2.2/24 interface=ether2 network=10.2.2.0
[admin@R2] > /routing ospf network
[admin@R2] /routing ospf network> add area=backbone network=10.1.1.0/24
[admin@R2] /routing ospf network> add area=backbone network=10.2.2.0/24
[admin@R2] /routing ospf network> add area=backbone network=2.2.2.2/32
R3
[admin@R3] > /interface bridge
[admin@R3] /interface bridge> add name=lo0
[admin@R3] > /routing ospf area
[admin@R3] /routing ospf area> add area-id=0.0.0.3 name=area3
[admin@R3] > /ip address
[admin@R3] /ip address> add address=10.2.2.3/24 interface=ether1 network=10.2.2.0
[admin@R3] /ip address> add address=3.3.3.3 interface=lo0 network=3.3.3.3
[admin@R3] /ip address> add address=10.3.3.3/24 interface=ether2 network=10.3.3.0
[admin@R3] > /ip route
[admin@R3] /ip route> add distance=1 dst-address=4.4.4.4/32 gateway=10.3.3.4
[admin@R3] > /routing ospf network
[admin@R3] /routing ospf network> add area=backbone network=10.2.2.0/24
[admin@R3] /routing ospf network> add area=area3 network=10.3.3.0/24
[admin@R3] /routing ospf network> add area=backbone network=3.3.3.3/32
[admin@R3] > /routing ospf virtual-link
[admin@R3] /routing ospf virtual-link> add neighbor-id=4.4.4.4 transit-area=area3>
[admin@R3] /interface bridge> add name=lo0
[admin@R3] > /routing ospf area
[admin@R3] /routing ospf area> add area-id=0.0.0.3 name=area3
[admin@R3] > /ip address
[admin@R3] /ip address> add address=10.2.2.3/24 interface=ether1 network=10.2.2.0
[admin@R3] /ip address> add address=3.3.3.3 interface=lo0 network=3.3.3.3
[admin@R3] /ip address> add address=10.3.3.3/24 interface=ether2 network=10.3.3.0
[admin@R3] > /ip route
[admin@R3] /ip route> add distance=1 dst-address=4.4.4.4/32 gateway=10.3.3.4
[admin@R3] > /routing ospf network
[admin@R3] /routing ospf network> add area=backbone network=10.2.2.0/24
[admin@R3] /routing ospf network> add area=area3 network=10.3.3.0/24
[admin@R3] /routing ospf network> add area=backbone network=3.3.3.3/32
[admin@R3] > /routing ospf virtual-link
[admin@R3] /routing ospf virtual-link> add neighbor-id=4.4.4.4 transit-area=area3>
R4
[admin@R3] > /interface bridge
[admin@R3] /interface bridge> add name=lo0
[admin@R3] > /routing ospf area
[admin@R3] /routing ospf area> add area-id=0.0.0.3 name=area3
[admin@R3] > /routing ospf instance
[admin@R3] /routing ospf instance> set [ find default=yes ] redistribute-rip=as-type-2
[admin@R3] > /ip address
[admin@R3] /ip address> add address=10.3.3.4/24 interface=ether1 network=10.3.3.0
[admin@R3] /ip address> add address=4.4.4.4 interface=lo0 network=4.4.4.4
[admin@R3] /ip address> add address=10.4.4.4/24 interface=ether2 network=10.4.4.0
[admin@R3] > /ip route
[admin@R3] /ip route> add distance=1 dst-address=3.3.3.3/32 gateway=10.3.3.3
[admin@R3] > /routing ospf network
[admin@R3] /routing ospf network> add area=area3 network=10.3.3.0/24
[admin@R3] /routing ospf network> add area=area3 network=4.4.4.4/32
[admin@R3] /routing ospf network> add area=area3 network=10.4.4.0/24
[admin@R3] > /routing ospf virtual-link
[admin@R3] /routing ospf virtual-link> add neighbor-id=3.3.3.3 transit-area=area3
[admin@R3] > /routing rip
[admin@R3] /routing rip> set redistribute-ospf=yes
[admin@R3] > /routing rip network
[admin@R3] /routing rip network> add network=10.4.4.0/24
[admin@R3] /routing rip network> add network=10.3.3.0/24
[admin@R3] /interface bridge> add name=lo0
[admin@R3] > /routing ospf area
[admin@R3] /routing ospf area> add area-id=0.0.0.3 name=area3
[admin@R3] > /routing ospf instance
[admin@R3] /routing ospf instance> set [ find default=yes ] redistribute-rip=as-type-2
[admin@R3] > /ip address
[admin@R3] /ip address> add address=10.3.3.4/24 interface=ether1 network=10.3.3.0
[admin@R3] /ip address> add address=4.4.4.4 interface=lo0 network=4.4.4.4
[admin@R3] /ip address> add address=10.4.4.4/24 interface=ether2 network=10.4.4.0
[admin@R3] > /ip route
[admin@R3] /ip route> add distance=1 dst-address=3.3.3.3/32 gateway=10.3.3.3
[admin@R3] > /routing ospf network
[admin@R3] /routing ospf network> add area=area3 network=10.3.3.0/24
[admin@R3] /routing ospf network> add area=area3 network=4.4.4.4/32
[admin@R3] /routing ospf network> add area=area3 network=10.4.4.0/24
[admin@R3] > /routing ospf virtual-link
[admin@R3] /routing ospf virtual-link> add neighbor-id=3.3.3.3 transit-area=area3
[admin@R3] > /routing rip
[admin@R3] /routing rip> set redistribute-ospf=yes
[admin@R3] > /routing rip network
[admin@R3] /routing rip network> add network=10.4.4.0/24
[admin@R3] /routing rip network> add network=10.3.3.0/24
R7
[admin@R7] > /interface bridge
[admin@R7] /interface bridge> add name=lo0
[admin@R7] /interface bridge> add name=lokal
[admin@R7] > /interface eoip
[admin@R7] /interface eoip> add local-address=7.7.7.7 mac-address=FE:92:9F:DC:CE:DD name=eoip1 remote-address=100.200.100.200 tunnel-id=200
[admin@R7] > /interface bridge port
[admin@R7] /interface bridge port> add bridge=lokal interface=eoip1
[admin@R7] /interface bridge port> add bridge=lokal interface=ether2
[admin@R7] > /ip address
[admin@R7] /ip address> add address=10.4.4.7/24 interface=ether1 network=10.4.4.0
[admin@R7] /ip address> add address=192.168.2.7/24 interface=lokal network=192.168.2.0
[admin@R7] /ip address> add address=7.7.7.7 interface=lo0 network=7.7.7.7
[admin@R7] > /routing rip network
[admin@R7] /routing rip network> add network=10.4.4.0/24
[admin@R7] /routing rip network> add network=7.7.7.7/32
[admin@R7] /interface bridge> add name=lo0
[admin@R7] /interface bridge> add name=lokal
[admin@R7] > /interface eoip
[admin@R7] /interface eoip> add local-address=7.7.7.7 mac-address=FE:92:9F:DC:CE:DD name=eoip1 remote-address=100.200.100.200 tunnel-id=200
[admin@R7] > /interface bridge port
[admin@R7] /interface bridge port> add bridge=lokal interface=eoip1
[admin@R7] /interface bridge port> add bridge=lokal interface=ether2
[admin@R7] > /ip address
[admin@R7] /ip address> add address=10.4.4.7/24 interface=ether1 network=10.4.4.0
[admin@R7] /ip address> add address=192.168.2.7/24 interface=lokal network=192.168.2.0
[admin@R7] /ip address> add address=7.7.7.7 interface=lo0 network=7.7.7.7
[admin@R7] > /routing rip network
[admin@R7] /routing rip network> add network=10.4.4.0/24
[admin@R7] /routing rip network> add network=7.7.7.7/32
PC 3
VPCS-3> ip 192.168.2.3/24 192.168.2.10
Checking for duplicate address...
PC1 : 192.168.2.3 255.255.255.0 gateway 192.168.2.10
Checking for duplicate address...
PC1 : 192.168.2.3 255.255.255.0 gateway 192.168.2.10
R5
[admin@R5] > /interface bridge
[admin@R5] /interface bridge> add name=lo0
[admin@R5] > /routing ospf area
[admin@R5] /routing ospf area> add area-id=0.0.0.1 name=area1
[admin@R5] /routing ospf area> add area-id=0.0.0.2 name=area2
[admin@R5] /routing ospf area> add area-id=0.0.0.4 default-cost=1 inject-summary-lsas=no name=area4 type=stub
[admin@R5] > /ip address
[admin@R5] /ip address> add address=10.5.5.5/24 interface=ether1 network=10.5.5.0
[admin@R5] /ip address> add address=10.6.6.5/24 interface=ether2 network=10.6.6.0
[admin@R5] /ip address> add address=10.10.10.5/24 interface=ether3 network=10.10.10.0
[admin@R5] /ip address> add address=5.5.5.5 interface=lo0 network=5.5.5.5
[admin@R5] > /ip route
[admin@R5] /ip route> add distance=1 dst-address=1.1.1.1/32 gateway=10.5.5.1
[admin@R5] /ip route> add distance=1 dst-address=6.6.6.6/32 gateway=10.6.6.6
[admin@R5] > /routing ospf network
[admin@R5] /routing ospf network> add area=area1 network=5.5.5.5/32
[admin@R5] /routing ospf network> add area=area1 network=10.5.5.0/24
[admin@R5] /routing ospf network> add area=area4 network=10.10.10.0/24
[admin@R5] /routing ospf network> add area=area2 network=10.6.6.0/24
[admin@R5] > /routing ospf virtual-link
[admin@R5] /routing ospf virtual-link> add neighbor-id=1.1.1.1 transit-area=area1
[admin@R5] /routing ospf virtual-link> add neighbor-id=6.6.6.6 transit-area=area2
[admin@R5] /interface bridge> add name=lo0
[admin@R5] > /routing ospf area
[admin@R5] /routing ospf area> add area-id=0.0.0.1 name=area1
[admin@R5] /routing ospf area> add area-id=0.0.0.2 name=area2
[admin@R5] /routing ospf area> add area-id=0.0.0.4 default-cost=1 inject-summary-lsas=no name=area4 type=stub
[admin@R5] > /ip address
[admin@R5] /ip address> add address=10.5.5.5/24 interface=ether1 network=10.5.5.0
[admin@R5] /ip address> add address=10.6.6.5/24 interface=ether2 network=10.6.6.0
[admin@R5] /ip address> add address=10.10.10.5/24 interface=ether3 network=10.10.10.0
[admin@R5] /ip address> add address=5.5.5.5 interface=lo0 network=5.5.5.5
[admin@R5] > /ip route
[admin@R5] /ip route> add distance=1 dst-address=1.1.1.1/32 gateway=10.5.5.1
[admin@R5] /ip route> add distance=1 dst-address=6.6.6.6/32 gateway=10.6.6.6
[admin@R5] > /routing ospf network
[admin@R5] /routing ospf network> add area=area1 network=5.5.5.5/32
[admin@R5] /routing ospf network> add area=area1 network=10.5.5.0/24
[admin@R5] /routing ospf network> add area=area4 network=10.10.10.0/24
[admin@R5] /routing ospf network> add area=area2 network=10.6.6.0/24
[admin@R5] > /routing ospf virtual-link
[admin@R5] /routing ospf virtual-link> add neighbor-id=1.1.1.1 transit-area=area1
[admin@R5] /routing ospf virtual-link> add neighbor-id=6.6.6.6 transit-area=area2
R8
[admin@R8] > /interface bridge
[admin@R8] /interface bridge> add name=lo0
[admin@R8] /interface bridge> add name=lokal
[admin@R8] > /interface eoip
[admin@R8] /interface eoip> add local-address=8.8.8.8 mac-address=FE:5F:84:30:85:97 name=eoip1 remote-address=11.11.11.11 tunnel-id=100
[admin@R8] > /routing ospf area
[admin@R8] /routing ospf area> add area-id=0.0.0.4 default-cost=1 inject-summary-lsas=no name=area4 type=stub
[admin@R8] > /interface bridge port
[admin@R8] /interface bridge port> add bridge=lokal interface=ether2
[admin@R8] /interface bridge port> add bridge=lokal interface=eoip1
[admin@R8] > /ip address
[admin@R8] /ip address> add address=10.10.10.8/24 interface=ether1 network=10.10.10.0
[admin@R8] /ip address> add address=192.168.1.8/24 interface=lokal network=192.168.1.0
[admin@R8] /ip address> add address=8.8.8.8 interface=lo0 network=8.8.8.8
[admin@R8] > /routing ospf network
[admin@R8] /routing ospf network> add area=area4 network=10.10.10.0/24
[admin@R8] /routing ospf network> add area=area4 network=8.8.8.8/32
[admin@R8] /interface bridge> add name=lo0
[admin@R8] /interface bridge> add name=lokal
[admin@R8] > /interface eoip
[admin@R8] /interface eoip> add local-address=8.8.8.8 mac-address=FE:5F:84:30:85:97 name=eoip1 remote-address=11.11.11.11 tunnel-id=100
[admin@R8] > /routing ospf area
[admin@R8] /routing ospf area> add area-id=0.0.0.4 default-cost=1 inject-summary-lsas=no name=area4 type=stub
[admin@R8] > /interface bridge port
[admin@R8] /interface bridge port> add bridge=lokal interface=ether2
[admin@R8] /interface bridge port> add bridge=lokal interface=eoip1
[admin@R8] > /ip address
[admin@R8] /ip address> add address=10.10.10.8/24 interface=ether1 network=10.10.10.0
[admin@R8] /ip address> add address=192.168.1.8/24 interface=lokal network=192.168.1.0
[admin@R8] /ip address> add address=8.8.8.8 interface=lo0 network=8.8.8.8
[admin@R8] > /routing ospf network
[admin@R8] /routing ospf network> add area=area4 network=10.10.10.0/24
[admin@R8] /routing ospf network> add area=area4 network=8.8.8.8/32
PC 4
VPCS-4> ip 192.168.1.4/24 192.168.1.11
Checking for duplicate address...
PC1 : 192.168.1.4 255.255.255.0 gateway 192.168.1.11
Checking for duplicate address...
PC1 : 192.168.1.4 255.255.255.0 gateway 192.168.1.11
R6
[admin@R6] > /interface bridge
[admin@R6] /interface bridge> add name=lo0
[admin@R6] > /routing ospf area
[admin@R6] /routing ospf area> add area-id=0.0.0.2 name=area2
[admin@R6] /routing ospf area> add area-id=0.0.0.5 name=area5
[admin@R6] /routing ospf area> add area-id=0.0.0.6 default-cost=1 inject-summary-lsas=no name=area6 type=stub
[admin@R6] > /ip address
[admin@R6] /ip address> add address=10.6.6.6/24 interface=ether1 network=10.6.6.0
[admin@R6] /ip address> add address=10.7.7.6/24 interface=ether2 network=10.7.7.0
[admin@R6] /ip address> add address=6.6.6.6 interface=lo0 network=6.6.6.6
[admin@R6] /ip address> add address=10.9.9.6/24 interface=ether3 network=10.9.9.0
[admin@R6] > /ip route
[admin@R6] /ip route> add distance=1 dst-address=5.5.5.5/32 gateway=10.6.6.5
[admin@R6] /ip route> add distance=1 dst-address=9.9.9.9/32 gateway=10.7.7.9
[admin@R6] > /routing ospf network
[admin@R6] /routing ospf network> add area=area2 network=10.6.6.0/24
[admin@R6] /routing ospf network> add area=area2 network=6.6.6.6/32
[admin@R6] /routing ospf network> add area=area5 network=10.7.7.0/24
[admin@R6] /routing ospf network> add area=area6 network=10.9.9.0/24
[admin@R6] > /routing ospf virtual-link
[admin@R6] /routing ospf virtual-link> add neighbor-id=5.5.5.5 transit-area=area2
[admin@R6] /routing ospf virtual-link> add neighbor-id=9.9.9.9 transit-area=area5
[admin@R6] /interface bridge> add name=lo0
[admin@R6] > /routing ospf area
[admin@R6] /routing ospf area> add area-id=0.0.0.2 name=area2
[admin@R6] /routing ospf area> add area-id=0.0.0.5 name=area5
[admin@R6] /routing ospf area> add area-id=0.0.0.6 default-cost=1 inject-summary-lsas=no name=area6 type=stub
[admin@R6] > /ip address
[admin@R6] /ip address> add address=10.6.6.6/24 interface=ether1 network=10.6.6.0
[admin@R6] /ip address> add address=10.7.7.6/24 interface=ether2 network=10.7.7.0
[admin@R6] /ip address> add address=6.6.6.6 interface=lo0 network=6.6.6.6
[admin@R6] /ip address> add address=10.9.9.6/24 interface=ether3 network=10.9.9.0
[admin@R6] > /ip route
[admin@R6] /ip route> add distance=1 dst-address=5.5.5.5/32 gateway=10.6.6.5
[admin@R6] /ip route> add distance=1 dst-address=9.9.9.9/32 gateway=10.7.7.9
[admin@R6] > /routing ospf network
[admin@R6] /routing ospf network> add area=area2 network=10.6.6.0/24
[admin@R6] /routing ospf network> add area=area2 network=6.6.6.6/32
[admin@R6] /routing ospf network> add area=area5 network=10.7.7.0/24
[admin@R6] /routing ospf network> add area=area6 network=10.9.9.0/24
[admin@R6] > /routing ospf virtual-link
[admin@R6] /routing ospf virtual-link> add neighbor-id=5.5.5.5 transit-area=area2
[admin@R6] /routing ospf virtual-link> add neighbor-id=9.9.9.9 transit-area=area5
R9
[admin@R0] > /interface bridge
[admin@R0] /interface bridge> add name=lo0
[admin@R0] > /routing bgp instance
[admin@R0] /routing bgp instance> set default as=200 redistribute-ospf=yes router-id=9.9.9.9
[admin@R0] > /routing ospf area
[admin@R0] /routing ospf area> add area-id=0.0.0.9 name=area9
[admin@R0] /routing ospf area> add area-id=0.0.0.5 name=area5
[admin@R0] > /routing ospf instance
[admin@R0] /routing ospf instance> set [ find default=yes ] redistribute-bgp=as-type-2
[admin@R0] > /ip address
[admin@R0] /ip address> add address=10.7.7.9/24 interface=ether1 network=10.7.7.0
[admin@R0] /ip address> add address=10.8.8.9/24 interface=ether2 network=10.8.8.0
[admin@R0] /ip address> add address=9.9.9.9 interface=lo0 network=9.9.9.9
[admin@R0] > /ip route
[admin@R0] /ip route> add distance=1 dst-address=6.6.6.6/32 gateway=10.7.7.6
[admin@R0] /ip route> add distance=1 dst-address=100.100.100.100/32 gateway=10.8.8.10
[admin@R0] > /routing bgp network
[admin@R0] /routing bgp network> add network=10.7.7.0/24
[admin@R0] > /routing bgp peer
[admin@R0] /routing bgp peer> add name=peer1 remote-address=100.100.100.100 remote-as=200 update-source=9.9.9.9
[admin@R0] > /routing ospf network
[admin@R0] /routing ospf network> add area=area5 network=10.7.7.0/24
[admin@R0] /routing ospf network> add area=area5 network=9.9.9.9/32
[admin@R0] /routing ospf network> add area=area5 network=10.8.8.0/24
[admin@R0] > /routing ospf virtual-link
[admin@R0] /routing ospf virtual-link> add neighbor-id=6.6.6.6 transit-area=area5
[admin@R0] /interface bridge> add name=lo0
[admin@R0] > /routing bgp instance
[admin@R0] /routing bgp instance> set default as=200 redistribute-ospf=yes router-id=9.9.9.9
[admin@R0] > /routing ospf area
[admin@R0] /routing ospf area> add area-id=0.0.0.9 name=area9
[admin@R0] /routing ospf area> add area-id=0.0.0.5 name=area5
[admin@R0] > /routing ospf instance
[admin@R0] /routing ospf instance> set [ find default=yes ] redistribute-bgp=as-type-2
[admin@R0] > /ip address
[admin@R0] /ip address> add address=10.7.7.9/24 interface=ether1 network=10.7.7.0
[admin@R0] /ip address> add address=10.8.8.9/24 interface=ether2 network=10.8.8.0
[admin@R0] /ip address> add address=9.9.9.9 interface=lo0 network=9.9.9.9
[admin@R0] > /ip route
[admin@R0] /ip route> add distance=1 dst-address=6.6.6.6/32 gateway=10.7.7.6
[admin@R0] /ip route> add distance=1 dst-address=100.100.100.100/32 gateway=10.8.8.10
[admin@R0] > /routing bgp network
[admin@R0] /routing bgp network> add network=10.7.7.0/24
[admin@R0] > /routing bgp peer
[admin@R0] /routing bgp peer> add name=peer1 remote-address=100.100.100.100 remote-as=200 update-source=9.9.9.9
[admin@R0] > /routing ospf network
[admin@R0] /routing ospf network> add area=area5 network=10.7.7.0/24
[admin@R0] /routing ospf network> add area=area5 network=9.9.9.9/32
[admin@R0] /routing ospf network> add area=area5 network=10.8.8.0/24
[admin@R0] > /routing ospf virtual-link
[admin@R0] /routing ospf virtual-link> add neighbor-id=6.6.6.6 transit-area=area5
R10
[admin@R10] > /interface bridge
[admin@R10] /interface bridge> add name=lo0
[admin@R10] /interface bridge> add name=lo1
[admin@R10] /interface bridge> add name=lokal
[admin@R10] > /interface eoip
[admin@R10] /interface eoip> add local-address=100.200.100.200 mac-address=FE:DE:B0:04:3F:98 name=eoip1 remote-address=7.7.7.7 tunnel-id=200
[admin@R10] > /interface ipip
[admin@R10] /interface ipip> add local-address=100.200.100.200 name=ipip-tunnel2 remote-address=11.11.11.11
[admin@R10] > /routing bgp instance
[admin@R10] /routing bgp instance> set default as=200 router-id=100.100.100.100
[admin@R10] > /routing ospf instance
[admin@R10] /routing ospf instance> add name=tunnel
[admin@R10] > /routing ospf area
[admin@R10] /routing ospf area> add area-id=0.0.0.99 instance=tunnel name=area99
[admin@R10] > /interface bridge port
[admin@R10] /interface bridge port> add bridge=lokal interface=ether2
[admin@R10] /interface bridge port> add bridge=lokal interface=eoip1
[admin@R10] > /ip address
[admin@R10] /ip address> add address=10.8.8.10/24 interface=ether1 network=10.8.8.0
[admin@R10] /ip address> add address=192.168.2.10/24 interface=lokal network=192.168.2.0
[admin@R10] /ip address> add address=100.100.100.100 interface=lo0 network=100.100.100.100
[admin@R10] /ip address> add address=100.200.100.200 interface=lo1 network=100.200.100.200
[admin@R10] /ip address> add address=172.10.10.2/30 interface=ipip-tunnel2 network=172.10.10.0
[admin@R10] > /ip ipsec peer
[admin@R10] /ip ipsec peer> add address=172.10.10.1/32 secret=123
[admin@R10] > /ip ipsec policy
[admin@R10] /ip ipsec policy> add dst-address=192.168.1.0/24 sa-dst-address=172.10.10.1 sa-src-address=172.10.10.2 src-address=192.168.2.0/24 tunnel=yes
[admin@R10] > /ip route
[admin@R10] /ip route> add distance=1 dst-address=9.9.9.9/32 gateway=10.8.8.9
[admin@R10] > /routing bgp network
[admin@R10] /routing bgp network> add network=100.100.100.100/32
[admin@R10] /routing bgp network> add network=100.200.100.200/32
[admin@R10] > /routing bgp peer
[admin@R10] /routing bgp peer> add name=peer1 remote-address=9.9.9.9 remote-as=200 update-source=100.100.100.100
[admin@R10] > /routing ospf interface
[admin@R10] /routing ospf interface> add interface=ipip-tunnel2 network-type=point-to-point
[admin@R10] > /routing ospf network
[admin@R10] /routing ospf network> add area=area99 network=172.10.10.0/30
[admin@R10] /routing ospf network> add area=area99 network=192.168.2.0/24
[admin@R10] /interface bridge> add name=lo0
[admin@R10] /interface bridge> add name=lo1
[admin@R10] /interface bridge> add name=lokal
[admin@R10] > /interface eoip
[admin@R10] /interface eoip> add local-address=100.200.100.200 mac-address=FE:DE:B0:04:3F:98 name=eoip1 remote-address=7.7.7.7 tunnel-id=200
[admin@R10] > /interface ipip
[admin@R10] /interface ipip> add local-address=100.200.100.200 name=ipip-tunnel2 remote-address=11.11.11.11
[admin@R10] > /routing bgp instance
[admin@R10] /routing bgp instance> set default as=200 router-id=100.100.100.100
[admin@R10] > /routing ospf instance
[admin@R10] /routing ospf instance> add name=tunnel
[admin@R10] > /routing ospf area
[admin@R10] /routing ospf area> add area-id=0.0.0.99 instance=tunnel name=area99
[admin@R10] > /interface bridge port
[admin@R10] /interface bridge port> add bridge=lokal interface=ether2
[admin@R10] /interface bridge port> add bridge=lokal interface=eoip1
[admin@R10] > /ip address
[admin@R10] /ip address> add address=10.8.8.10/24 interface=ether1 network=10.8.8.0
[admin@R10] /ip address> add address=192.168.2.10/24 interface=lokal network=192.168.2.0
[admin@R10] /ip address> add address=100.100.100.100 interface=lo0 network=100.100.100.100
[admin@R10] /ip address> add address=100.200.100.200 interface=lo1 network=100.200.100.200
[admin@R10] /ip address> add address=172.10.10.2/30 interface=ipip-tunnel2 network=172.10.10.0
[admin@R10] > /ip ipsec peer
[admin@R10] /ip ipsec peer> add address=172.10.10.1/32 secret=123
[admin@R10] > /ip ipsec policy
[admin@R10] /ip ipsec policy> add dst-address=192.168.1.0/24 sa-dst-address=172.10.10.1 sa-src-address=172.10.10.2 src-address=192.168.2.0/24 tunnel=yes
[admin@R10] > /ip route
[admin@R10] /ip route> add distance=1 dst-address=9.9.9.9/32 gateway=10.8.8.9
[admin@R10] > /routing bgp network
[admin@R10] /routing bgp network> add network=100.100.100.100/32
[admin@R10] /routing bgp network> add network=100.200.100.200/32
[admin@R10] > /routing bgp peer
[admin@R10] /routing bgp peer> add name=peer1 remote-address=9.9.9.9 remote-as=200 update-source=100.100.100.100
[admin@R10] > /routing ospf interface
[admin@R10] /routing ospf interface> add interface=ipip-tunnel2 network-type=point-to-point
[admin@R10] > /routing ospf network
[admin@R10] /routing ospf network> add area=area99 network=172.10.10.0/30
[admin@R10] /routing ospf network> add area=area99 network=192.168.2.0/24
PC2
VPCS-2> ip 192.168.2.2/24 192.168.2.10
Checking for duplicate address...
PC1 : 192.168.2.2 255.255.255.0 gateway 192.168.2.10
Checking for duplicate address...
PC1 : 192.168.2.2 255.255.255.0 gateway 192.168.2.10
R11
[admin@R11] > /interface bridge
[admin@R11] /interface bridge> add name=lo0
[admin@R11] /interface bridge> add name=lokal
[admin@R11] > /interface eoip
[admin@R11] /interface eoip> add local-address=11.11.11.11 mac-address=FE:5B:1E:3B:C3:A4 name=eoip1 remote-address=8.8.8.8 tunnel-id=100
[admin@R11] > /interface ipip
[admin@R11] /interface ipip> add local-address=11.11.11.11 name=ipip-tunnel1 remote-address=100.200.100.200
[admin@R11] > /routing ospf area
[admin@R11] /routing ospf area> add area-id=0.0.0.6 default-cost=1 inject-summary-lsas=no name=area6 type=stub
[admin@R11] > /routing ospf instance
[admin@R11] /routing ospf instance> add name=tunnel
[admin@R11] > /routing ospf area
[admin@R11] /routing ospf area> add area-id=0.0.0.99 instance=tunnel name=area99
[admin@R11] > /interface bridge port
[admin@R11] /interface bridge port> add bridge=lokal interface=eoip1
[admin@R11] /interface bridge port> add bridge=lokal interface=ether2
[admin@R11] > /ip address
[admin@R11] /ip address> add address=10.9.9.11/24 interface=ether1 network=10.9.9.0
[admin@R11] /ip address> add address=11.11.11.11 interface=lo0 network=11.11.11.11
[admin@R11] /ip address> add address=192.168.1.11/24 interface=lokal network=192.168.1.0
[admin@R11] /ip address> add address=172.10.10.1/30 interface=ipip-tunnel1 network=172.10.10.0
[admin@R11] > /ip ipsec peer
[admin@R11] /ip ipsec peer> add address=172.10.10.2/32 secret=123
[admin@R11] > /ip ipsec policy
[admin@R11] /ip ipsec policy> add dst-address=192.168.2.0/24 sa-dst-address=172.10.10.2 sa-src-address=172.10.10.1 src-address=192.168.1.0/24 tunnel=yes
[admin@R11] > /routing ospf interface
[admin@R11] /routing ospf interface> add interface=ipip-tunnel1 network-type=point-to-point
[admin@R11] > /routing ospf network
[admin@R11] /routing ospf network> add area=area6 network=10.9.9.0/24
[admin@R11] /routing ospf network> add area=area6 network=11.11.11.11/32
[admin@R11] /routing ospf network> add area=area99 network=192.168.1.0/24
[admin@R11] /routing ospf network> add area=area99 network=172.10.10.0/30
[admin@R11] /interface bridge> add name=lo0
[admin@R11] /interface bridge> add name=lokal
[admin@R11] > /interface eoip
[admin@R11] /interface eoip> add local-address=11.11.11.11 mac-address=FE:5B:1E:3B:C3:A4 name=eoip1 remote-address=8.8.8.8 tunnel-id=100
[admin@R11] > /interface ipip
[admin@R11] /interface ipip> add local-address=11.11.11.11 name=ipip-tunnel1 remote-address=100.200.100.200
[admin@R11] > /routing ospf area
[admin@R11] /routing ospf area> add area-id=0.0.0.6 default-cost=1 inject-summary-lsas=no name=area6 type=stub
[admin@R11] > /routing ospf instance
[admin@R11] /routing ospf instance> add name=tunnel
[admin@R11] > /routing ospf area
[admin@R11] /routing ospf area> add area-id=0.0.0.99 instance=tunnel name=area99
[admin@R11] > /interface bridge port
[admin@R11] /interface bridge port> add bridge=lokal interface=eoip1
[admin@R11] /interface bridge port> add bridge=lokal interface=ether2
[admin@R11] > /ip address
[admin@R11] /ip address> add address=10.9.9.11/24 interface=ether1 network=10.9.9.0
[admin@R11] /ip address> add address=11.11.11.11 interface=lo0 network=11.11.11.11
[admin@R11] /ip address> add address=192.168.1.11/24 interface=lokal network=192.168.1.0
[admin@R11] /ip address> add address=172.10.10.1/30 interface=ipip-tunnel1 network=172.10.10.0
[admin@R11] > /ip ipsec peer
[admin@R11] /ip ipsec peer> add address=172.10.10.2/32 secret=123
[admin@R11] > /ip ipsec policy
[admin@R11] /ip ipsec policy> add dst-address=192.168.2.0/24 sa-dst-address=172.10.10.2 sa-src-address=172.10.10.1 src-address=192.168.1.0/24 tunnel=yes
[admin@R11] > /routing ospf interface
[admin@R11] /routing ospf interface> add interface=ipip-tunnel1 network-type=point-to-point
[admin@R11] > /routing ospf network
[admin@R11] /routing ospf network> add area=area6 network=10.9.9.0/24
[admin@R11] /routing ospf network> add area=area6 network=11.11.11.11/32
[admin@R11] /routing ospf network> add area=area99 network=192.168.1.0/24
[admin@R11] /routing ospf network> add area=area99 network=172.10.10.0/30
PC1
VPCS-1> ip 192.168.1.1/24 192.168.1.11
Checking for duplicate address...
PC1 : 192.168.1.1 255.255.255.0 gateway 192.168.1.11
Checking for duplicate address...
PC1 : 192.168.1.1 255.255.255.0 gateway 192.168.1.11
Pengecekan
Verify table routing pada router pojok pojok yang menanamkan tunneling .
R8
[admin@R8] > ip route print
Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme,
B - blackhole, U - unreachable, P - prohibit
# DST-ADDRESS PREF-SRC GATEWAY DISTANCE
0 ADo 0.0.0.0/0 10.10.10.5 110
1 ADC 8.8.8.8/32 8.8.8.8 lo0 0
2 ADC 10.10.10.0/24 10.10.10.8 ether1 0
3 ADC 192.168.1.0/24 192.168.1.8 lokal 0
[admin@R8] >
Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme,
B - blackhole, U - unreachable, P - prohibit
# DST-ADDRESS PREF-SRC GATEWAY DISTANCE
0 ADo 0.0.0.0/0 10.10.10.5 110
1 ADC 8.8.8.8/32 8.8.8.8 lo0 0
2 ADC 10.10.10.0/24 10.10.10.8 ether1 0
3 ADC 192.168.1.0/24 192.168.1.8 lokal 0
[admin@R8] >
R11
[admin@R11] > ip route print
Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme,
B - blackhole, U - unreachable, P - prohibit
# DST-ADDRESS PREF-SRC GATEWAY DISTANCE
0 ADo 0.0.0.0/0 10.9.9.6 110
1 ADC 10.9.9.0/24 10.9.9.11 ether1 0
2 ADC 11.11.11.11/32 11.11.11.11 lo0 0
3 ADC 172.10.10.0/30 172.10.10.1 ipip-tunnel1 0
4 ADC 192.168.1.0/24 192.168.1.11 lokal 0
5 ADo 192.168.2.0/24 172.10.10.2 110
Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme,
B - blackhole, U - unreachable, P - prohibit
# DST-ADDRESS PREF-SRC GATEWAY DISTANCE
0 ADo 0.0.0.0/0 10.9.9.6 110
1 ADC 10.9.9.0/24 10.9.9.11 ether1 0
2 ADC 11.11.11.11/32 11.11.11.11 lo0 0
3 ADC 172.10.10.0/30 172.10.10.1 ipip-tunnel1 0
4 ADC 192.168.1.0/24 192.168.1.11 lokal 0
5 ADo 192.168.2.0/24 172.10.10.2 110
R10
[admin@R10] > ip route print
Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme,
B - blackhole, U - unreachable, P - prohibit
# DST-ADDRESS PREF-SRC GATEWAY DISTANCE
0 ADb 1.1.1.1/32 9.9.9.9 200
1 ADb 2.2.2.2/32 9.9.9.9 200
2 ADb 3.3.3.3/32 9.9.9.9 200
3 ADb 4.4.4.4/32 9.9.9.9 200
4 ADb 5.5.5.5/32 9.9.9.9 200
5 ADb 7.7.7.7/32 9.9.9.9 200
6 ADb 8.8.8.8/32 9.9.9.9 200
7 A S 9.9.9.9/32 10.8.8.9 1
8 ADb 10.1.1.0/24 9.9.9.9 200
9 ADb 10.2.2.0/24 9.9.9.9 200
10 ADb 10.3.3.0/24 9.9.9.9 200
11 ADb 10.4.4.0/24 9.9.9.9 200
12 ADb 10.5.5.0/24 9.9.9.9 200
13 ADb 10.6.6.0/24 9.9.9.9 200
14 ADb 10.7.7.0/24 9.9.9.9 200
15 ADC 10.8.8.0/24 10.8.8.10 ether1 0
16 ADb 10.9.9.0/24 9.9.9.9 200
17 ADb 10.10.10.0/24 9.9.9.9 200
18 ADb 11.11.11.11/32 9.9.9.9 200
19 ADC 100.100.100.100/32 100.100.100.100 lo0 0
20 ADC 100.200.100.200/32 100.200.100.200 lo1 0
21 ADC 172.10.10.0/30 172.10.10.2 ipip-tunnel2 0
22 ADo 192.168.1.0/24 172.10.10.1 110
23 ADC 192.168.2.0/24 192.168.2.10 lokal 0
[admin@R10] >
Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme,
B - blackhole, U - unreachable, P - prohibit
# DST-ADDRESS PREF-SRC GATEWAY DISTANCE
0 ADb 1.1.1.1/32 9.9.9.9 200
1 ADb 2.2.2.2/32 9.9.9.9 200
2 ADb 3.3.3.3/32 9.9.9.9 200
3 ADb 4.4.4.4/32 9.9.9.9 200
4 ADb 5.5.5.5/32 9.9.9.9 200
5 ADb 7.7.7.7/32 9.9.9.9 200
6 ADb 8.8.8.8/32 9.9.9.9 200
7 A S 9.9.9.9/32 10.8.8.9 1
8 ADb 10.1.1.0/24 9.9.9.9 200
9 ADb 10.2.2.0/24 9.9.9.9 200
10 ADb 10.3.3.0/24 9.9.9.9 200
11 ADb 10.4.4.0/24 9.9.9.9 200
12 ADb 10.5.5.0/24 9.9.9.9 200
13 ADb 10.6.6.0/24 9.9.9.9 200
14 ADb 10.7.7.0/24 9.9.9.9 200
15 ADC 10.8.8.0/24 10.8.8.10 ether1 0
16 ADb 10.9.9.0/24 9.9.9.9 200
17 ADb 10.10.10.0/24 9.9.9.9 200
18 ADb 11.11.11.11/32 9.9.9.9 200
19 ADC 100.100.100.100/32 100.100.100.100 lo0 0
20 ADC 100.200.100.200/32 100.200.100.200 lo1 0
21 ADC 172.10.10.0/30 172.10.10.2 ipip-tunnel2 0
22 ADo 192.168.1.0/24 172.10.10.1 110
23 ADC 192.168.2.0/24 192.168.2.10 lokal 0
[admin@R10] >
R7
[admin@R7] > ip route print
Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme,
B - blackhole, U - unreachable, P - prohibit
# DST-ADDRESS PREF-SRC GATEWAY DISTANCE
0 ADr 1.1.1.1/32 10.4.4.4 120
1 ADr 2.2.2.2/32 10.4.4.4 120
2 ADr 5.5.5.5/32 10.4.4.4 120
3 ADr 6.6.6.6/32 10.4.4.4 120
4 ADC 7.7.7.7/32 7.7.7.7 lo0 0
5 ADr 8.8.8.8/32 10.4.4.4 120
6 ADr 9.9.9.9/32 10.4.4.4 120
7 ADr 10.1.1.0/24 10.4.4.4 120
8 ADr 10.2.2.0/24 10.4.4.4 120
9 ADr 10.3.3.0/24 10.4.4.4 120
10 ADC 10.4.4.0/24 10.4.4.7 ether1 0
11 ADr 10.5.5.0/24 10.4.4.4 120
12 ADr 10.6.6.0/24 10.4.4.4 120
13 ADr 10.7.7.0/24 10.4.4.4 120
14 ADr 10.8.8.0/24 10.4.4.4 120
15 ADr 10.9.9.0/24 10.4.4.4 120
16 ADr 10.10.10.0/24 10.4.4.4 120
17 ADr 11.11.11.11/32 10.4.4.4 120
18 ADr 100.200.100.200/32 10.4.4.4 120
19 ADC 192.168.2.0/24 192.168.2.7 lokal 0
[admin@R7] >
Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme,
B - blackhole, U - unreachable, P - prohibit
# DST-ADDRESS PREF-SRC GATEWAY DISTANCE
0 ADr 1.1.1.1/32 10.4.4.4 120
1 ADr 2.2.2.2/32 10.4.4.4 120
2 ADr 5.5.5.5/32 10.4.4.4 120
3 ADr 6.6.6.6/32 10.4.4.4 120
4 ADC 7.7.7.7/32 7.7.7.7 lo0 0
5 ADr 8.8.8.8/32 10.4.4.4 120
6 ADr 9.9.9.9/32 10.4.4.4 120
7 ADr 10.1.1.0/24 10.4.4.4 120
8 ADr 10.2.2.0/24 10.4.4.4 120
9 ADr 10.3.3.0/24 10.4.4.4 120
10 ADC 10.4.4.0/24 10.4.4.7 ether1 0
11 ADr 10.5.5.0/24 10.4.4.4 120
12 ADr 10.6.6.0/24 10.4.4.4 120
13 ADr 10.7.7.0/24 10.4.4.4 120
14 ADr 10.8.8.0/24 10.4.4.4 120
15 ADr 10.9.9.0/24 10.4.4.4 120
16 ADr 10.10.10.0/24 10.4.4.4 120
17 ADr 11.11.11.11/32 10.4.4.4 120
18 ADr 100.200.100.200/32 10.4.4.4 120
19 ADC 192.168.2.0/24 192.168.2.7 lokal 0
[admin@R7] >
Pastikan semua router sudah dapat terkoneksi satu sama lain dengan cara melakukan ping,
Langkah terakhir, pengujian ping dari PC4 (pojok kiri) ke PC 3 (pojok kanan) yang berbeda network .
VPCS-4> ping 192.168.2.3
84 bytes from 192.168.2.3 icmp_seq=1 ttl=62 time=10.437 ms
84 bytes from 192.168.2.3 icmp_seq=2 ttl=62 time=7.812 ms
84 bytes from 192.168.2.3 icmp_seq=3 ttl=62 time=7.663 ms
84 bytes from 192.168.2.3 icmp_seq=4 ttl=62 time=8.399 ms
84 bytes from 192.168.2.3 icmp_seq=5 ttl=62 time=6.779 ms
VPCS-4>
84 bytes from 192.168.2.3 icmp_seq=1 ttl=62 time=10.437 ms
84 bytes from 192.168.2.3 icmp_seq=2 ttl=62 time=7.812 ms
84 bytes from 192.168.2.3 icmp_seq=3 ttl=62 time=7.663 ms
84 bytes from 192.168.2.3 icmp_seq=4 ttl=62 time=8.399 ms
84 bytes from 192.168.2.3 icmp_seq=5 ttl=62 time=6.779 ms
VPCS-4>
Jika ping menunjukkan reply, berarti konfigurasi yang telah kita lakukan sudah berhasil. teman teman juga bisa mengujinya dengan ping ke PC 2 ataupung PC1 .
0 comments