4 分钟前 上传
下载附件 (55.42 KB)
配置PCA
[PCA]int g0/1/0
[PCA-GigabitEthernet0/1/0]ip address 192.168.1.2 24
[PCA]ip route-static 0.0.0.0 0.0.0.0 192.168.1.1
配置PCB
[PCB]int g0/1/0。
[PCB-GigabitEthernet0/1/0]ip address 192.168.2.24
[PCA]ip route-static 0.0.0.0 0.0.0.0 192.168.2.1
[RTA] ike local-name rta
[RTA] ike peer rtb
[RTA-ike-peer-rtb] exchange-modeaggressive
[RTA-ike-peer-rtb]pre-shared-key abc
[RTA-ike-peer-rtb]id-type name
[RTA-ike-peer-rtb]remote-name rtb
[RTA-ike-peer-rtb]ipsec proposal prop-for-rtb
[RTA-ipsec-proposal-prop-for-rtb]esp authentication-algorithm sha1
[RTA-ipsec-proposal-prop-for-rtb]esp encryption-algorithm 3des
[RTA]acl number 3000
[RTA-acl-adv-3000]rule 0 permit ip source 192.168.1.0 0.0.0.255 destination 192.168.2.0 0.0.0.255
[RTA-acl-adv-3000]rule 1 deny ip
[RTA]ipsec policy policy1 10 isakmp
[RTA-ipsec-policy-isakmp-policy1-10]security acl 3000
[RTA-ipsec-policy-isakmp-policy1-10]ike-peer rtb
[RTA-ipsec-policy-isakmp-policy1-10]proposal prop-for-rtb
[RTA-ipsec-policy-isakmp-policy1-10] interface G0/1/0
[RTA-GigabitEthernet0/1/0] ip address 192.168.1.1255.255.255.0
[RTA-GigabitEthernet0/1/0] ] interface Serial0/2/1
[RTA-Serial0/2/1]link-protocol ppp
[RTA-Serial0/2/1]ip address 10.1.12.1 255.255.255.0
[RTA-Serial0/2/1]ipsec policy policy1
[RTA] iproute-static 0.0.0.0 0.0.0.0 Serial 0/2/1
[RTB]ike local-name rtb
[RTB]ike peer rta
[RTB-ike-peer-rta]exchange-mode aggressive
[RTB-ike-peer-rta]pre-shared-key abc
[RTB-ike-peer-rta]id-type name
[RTB-ike-peer-rta]remote-name rta
[RTB-ike-peer-rta]remote-address 10.1.12.1
[RTB-ike-peer-rta]ipsec proposal prop-for-rta
[RTB-ipsec-proposal-prop-for-rta]esp authentication-algorithm sha1
[RTB-ipsec-proposal-prop-for-rta]esp encryption-algorithm 3des
[RTB]acl number 3000
[RTB-acl-adv-3000]rule 0 permit ip source 192.168.2.0 0.0.0.255 destination 192.168.1.0 0.0.0.255
[RTB-acl-adv-3000]rule 1 deny ip
[RTB]ipsec policy policy1 10 isakmp
[RTB-ipsec-policy-isakmp-policy1-10]security acl 3000
[RTB-ipsec-policy-isakmp-policy1-10]ike-peer rta
[RTB-ipsec-policy-isakmp-policy1-10]proposal prop-for-rta
[RTB-acl-adv-3000] int g0/1/0
[RTB-GigabitEthernet0/1/0] ip address 192.168.2.1 255.255.255.0
[RTB-GigabitEthernet0/1/0] interface Serial0/2/1
[RTB-Serial0/2/1]link-protocol ppp
[RTB-Serial0/2/1]ip address ppp-negotiate
[RTB-Serial0/2/1]ipsec policy policy1
[RTB]ip route-static 0.0.0.0 0.0.0.0 Serial0/2/1 配置好之后,提示icmp协商错误
%Dec 15 20:24:59:952 2011 RTA IFNET/4/UPDOWN:
Line protocol on the interface Serial0/2/1 is UP
%Dec 15 20:24:59:952 2011 RTA IFNET/4/UPDOWN:
Protocol PPP IPCP on the interface Serial0/2/1 is UP
%Dec 15 20:24:59:968 2011 RTA IFNET/4/UPDOWN:
Protocol PPP IPCP on the interface Serial0/2/1 is DOWN
路由表中也看不到配置的默认路由
[RTA]dis ip routing-table
Routing Tables: Public
Destinations : 4 Routes : 4
Destination/Mask Proto Pre Cost NextHop Interface
127.0.0.0/8 Direct 0 0 127.0.0.1 InLoop0
127.0.0.1/32 Direct 0 0 127.0.0.1 InLoop0
192.168.1.0/24 Direct 0 0 192.168.1.1 GE0/1/0
192.168.1.1/32 Direct 0 0 127.0.0.1 InLoop0
RTB也是一样,求高手解答,,谢谢
| 
简体中文
英语
日语
韩语
法语
西班牙语
越南语
泰语
阿拉伯语
俄语
葡萄牙语
德语
意大利语
希腊语
荷兰语
波兰语
保加利亚语
爱沙尼亚语
丹麦语
芬兰语
捷克语
罗马尼亚语
斯洛文尼亚语
瑞典语
匈牙利语
繁体中文
文言文
发表于 2011-12-15 20:33:29
置顶卡
喧嚣卡
变色卡
千斤顶
楼主