1台服务器做双出口NAT server的配置.docx
- 文档编号:23491766
- 上传时间:2023-05-17
- 格式:DOCX
- 页数:15
- 大小:44.22KB
1台服务器做双出口NAT server的配置.docx
《1台服务器做双出口NAT server的配置.docx》由会员分享,可在线阅读,更多相关《1台服务器做双出口NAT server的配置.docx(15页珍藏版)》请在冰豆网上搜索。
1台服务器做双出口NATserver的配置
这里使用的AR46-20做的实验,所有中低端路由器都可以这样做。
1台服务器做双出口NATserver的配置
•用户的server只有一块网卡,要求在AR46-20上e0/0/0接口连接网通,e0/0/1接口连接电信,在两个接口上都要做natserver指向内网的服务器。
•要实现用户的需求必须要保证在e0/0/0接口进入的访问服务器的外网报文要能从e0/0/0口返回给外网,在e0/0/1接口进入的访问服务器的外网报文要能从e0/0/1口返回给外网。
所以在服务器的一块网卡上要配置两个ip地址,在路由器连接服务器的接口上必须要配置策略路由才能实现。
具体的配置信息如下:
CopyrightNotice:
Allrightsreserved(Aug172005).
Withouttheowner'spriorwrittenconsent,nodecompiling
norreverse-engineeringshallbeallowed.
Huawei-3ComVersatileRoutingPlatformSoftware
VRP(R)software,Version3.40,ReleaseRT-0013
Copyright(c)2003-2005HangzhouHuawei-3ComTech.Co.,Ltd.Allrightsreserved.
Copyright(c)2000-2003HuaweiTech.Co.,Ltd.Allrightsreserved.
QuidwayAR46-20uptimeis0week,0day,1hour,25minutes
Rpu'sversioninformation:
RouterAR46-20with1PowerPC750Processor
256MbytesSDRAM
32MbytesFLASH
512KbytesNVRAM
PcbVersion:
RTM1RPUA.2
RPELogicVersion:
RPE3.4
SBGLogicVersion:
012
SmallBootROMVersion:
3.07
BigBootROMVersion:
5.14
ConfigRegisterpointstoFLASH[SLOT0]AUX0(Hardware)A.2,(Driver)1.0,(Cpld)3.4[SLOT0]ETH0(Hardware)A.2,(Driver)1.0,(Cpld)3.4[SLOT0]ETH1(Hardware)A.2,(Driver)1.0,(Cpld)3.4
[SLOT1]2FE(Hardware)2.1,(Driver)2.0,(Cpld)0.0
[SLOT2]E1VI(Hardware)1.0,(Driver)2.7,(Cpld)1.0
#
sysnameNAT
#
FTPserverenable
#
l2tpdomainsuffix-separator@
#
radiusschemesystem
#
domainsystem
#
local-useradmin
passwordcipher.]@USE=B,53Q=^Q`MAF4<<"TX$_S#6.NM(0=0\)*5WWQ=^Q`MAF4<<"TX$_S#6.N
service-typetelnetterminal
level3
service-typeftp
#
controllerE12/0/0
usinge1
#
interfaceAux0
asyncmodeflow
#
interfaceEthernet0/0/0
ipaddress10.0.0.1255.255.255.0
natserverprotocolicmpglobal10.0.0.3inside192.168.0.2
#
interfaceEthernet0/0/1
ipaddress20.0.0.1255.255.255.0
natserverprotocolicmpglobal20.0.0.3inside192.168.1.2
#
interfaceEthernet1/0/0
ipaddress192.168.0.1255.255.255.0
ipaddress192.168.1.1255.255.255.0sub
ippolicyroute-policynat
#
interfaceEthernet1/0/1
ipaddressdhcp-alloc
#
interfaceSerial2/0/0:
0
link-protocolppp
ipaddressppp-negotiate
#
interfaceNULL0
#
aclnumber2000
rule0permitsource192.168.0.00.0.0.255
rule1deny
aclnumber2001
rule0permitsource192.168.1.00.0.0.255
rule1deny
#
route-policynatpermitnode10
if-matchacl2000
applyip-addressnext-hop10.0.0.2(如果是拨号口,可以写output-interface后跟接口号)
route-policynatpermitnode20
if-matchacl2001
applyip-addressnext-hop20.0.0.2(如果是拨号口,可以写output-interface后跟接口号)
#
iproute-static0.0.0.00.0.0.010.0.0.2preference60
iproute-static0.0.0.00.0.0.020.0.0.2preference60
如果是电信网通双出口,可以按照轻轻松松配18手册进行双线路由负载分担的方法进行配置静态路由表。
#
user-interfacecon0
user-interfaceaux0
user-interfacevty04
authentication-modescheme
#
return
验证一下配置后的效果:
%Currentterminalmonitorison
%Currentterminaldebuggingison
*0.5124410NATIP/8/debug_case:
Receiving,interface=Ethernet0/0/0,version=4,headlen=20,tos=0,
pktlen=84,pktid=3718,offset=0,ttl=255,protocol=1,
checksum=55837,s=200.1.1.1,d=10.0.0.3
prompt:
ReceivingIPpacketfromEthernet0/0/0
*0.5124750NATIP/8/debug_case:
Sending,interface=Ethernet1/0/0,version=4,headlen=20,tos=0,
pktlen=84,pktid=3718,offset=0,ttl=254,protocol=1,
checksum=9334,s=200.1.1.1,d=192.168.0.2
prompt:
SendingthepacketfromEthernet0/0/0atEthernet1/0/0
*0.5125110NATIP/8/debug_case:
Receiving,interface=Ethernet1/0/0,version=4,headlen=20,tos=0,
pktlen=84,pktid=8185,offset=0,ttl=128,protocol=1,
checksum=37123,s=192.168.0.2,d=200.1.1.1
prompt:
ReceivingIPpacketfromEthernet1/0/0
*0.5125450NATIP/8/debug_case:
Sending,interface=Ethernet0/0/0,version=4,headlen=20,tos=0,
pktlen=84,pktid=8185,offset=0,ttl=127,protocol=1,
checksum=18603,s=10.0.0.3,d=200.1.1.1
prompt:
SendingthepacketfromEthernet1/0/0atEthernet0/0/0
*0.5125800NATIP/8/debug_case:
Receiving,interface=Ethernet0/0/0,version=4,headlen=20,tos=0,
pktlen=84,pktid=3719,offset=0,ttl=255,protocol=1,
checksum=55836,s=200.1.1.1,d=10.0.0.3
prompt:
ReceivingIPpacketfromEthernet0/0/0
*0.5126140NATIP/8/debug_case:
Sending,interface=Ethernet1/0/0,version=4,headlen=20,tos=0,
pktlen=84,pktid=3719,offset=0,ttl=254,protocol=1,
checksum=9333,s=200.1.1.1,d=192.168.0.2
prompt:
SendingthepacketfromEthernet0/0/0atEthernet1/0/0
*0.5126500NATIP/8/debug_case:
Receiving,interface=Ethernet1/0/0,version=4,headlen=20,tos=0,
pktlen=84,pktid=8186,offset=0,ttl=128,protocol=1,
checksum=37122,s=192.168.0.2,d=200.1.1.1
prompt:
ReceivingIPpacketfromEthernet1/0/0
*0.5126840NATIP/8/debug_case:
Sending,interface=Ethernet0/0/0,version=4,headlen=20,tos=0,
pktlen=84,pktid=8186,offset=0,ttl=127,protocol=1,
checksum=18602,s=10.0.0.3,d=200.1.1.1
prompt:
SendingthepacketfromEthernet1/0/0atEthernet0/0/0
*0.5127190NATIP/8/debug_case:
Receiving,interface=Ethernet0/0/0,version=4,headlen=20,tos=0,
pktlen=84,pktid=3720,offset=0,ttl=255,protocol=1,
checksum=55835,s=200.1.1.1,d=10.0.0.3
prompt:
ReceivingIPpacketfromEthernet0/0/0
*0.5127530NATIP/8/debug_case:
Sending,interface=Ethernet1/0/0,version=4,headlen=20,tos=0,
pktlen=84,pktid=3720,offset=0,ttl=254,protocol=1,
checksum=9332,s=200.1.1.1,d=192.168.0.2
prompt:
SendingthepacketfromEthernet0/0/0atEthernet1/0/0
*0.5127890NATIP/8/debug_case:
Receiving,interface=Ethernet1/0/0,version=4,headlen=20,tos=0,
pktlen=84,pktid=8187,offset=0,ttl=128,protocol=1,
checksum=37121,s=192.168.0.2,d=200.1.1.1
prompt:
ReceivingIPpacketfromEthernet1/0/0
*0.5128230NATIP/8/debug_case:
Sending,interface=Ethernet0/0/0,version=4,headlen=20,tos=0,
pktlen=84,pktid=8187,offset=0,ttl=127,protocol=1,
checksum=18601,s=10.0.0.3,d=200.1.1.1
prompt:
SendingthepacketfromEthernet1/0/0atEthernet0/0/0
*0.5128580NATIP/8/debug_case:
Receiving,interface=Ethernet0/0/0,version=4,headlen=20,tos=0,
pktlen=84,pktid=3721,offset=0,ttl=255,protocol=1,
checksum=55834,s=200.1.1.1,d=10.0.0.3
prompt:
ReceivingIPpacketfromEthernet0/0/0
*0.5128920NATIP/8/debug_case:
Sending,interface=Ethernet1/0/0,version=4,headlen=20,tos=0,
pktlen=84,pktid=3721,offset=0,ttl=254,protocol=1,
checksum=9331,s=200.1.1.1,d=192.168.0.2
prompt:
SendingthepacketfromEthernet0/0/0atEthernet1/0/0
*0.5129280NATIP/8/debug_case:
Receiving,interface=Ethernet1/0/0,version=4,headlen=20,tos=0,
pktlen=84,pktid=8188,offset=0,ttl=128,protocol=1,
checksum=37120,s=192.168.0.2,d=200.1.1.1
prompt:
ReceivingIPpacketfromEthernet1/0/0
*0.5129620NATIP/8/debug_case:
Sending,interface=Ethernet0/0/0,version=4,headlen=20,tos=0,
pktlen=84,pktid=8188,offset=0,ttl=127,protocol=1,
checksum=18600,s=10.0.0.3,d=200.1.1.1
prompt:
SendingthepacketfromEthernet1/0/0atEthernet0/0/0
*0.5129970NATIP/8/debug_case:
Receiving,interface=Ethernet0/0/0,version=4,headlen=20,tos=0,
pktlen=84,pktid=3722,offset=0,ttl=255,protocol=1,
checksum=55833,s=200.1.1.1,d=10.0.0.3
prompt:
ReceivingIPpacketfromEthernet0/0/0
*0.5130310NATIP/8/debug_case:
Sending,interface=Ethernet1/0/0,version=4,headlen=20,tos=0,
pktlen=84,pktid=3722,offset=0,ttl=254,protocol=1,
checksum=9330,s=200.1.1.1,d=192.168.0.2
prompt:
SendingthepacketfromEthernet0/0/0atEthernet1/0/0
*0.5130670NATIP/8/debug_case:
Receiving,interface=Ethernet1/0/0,version=4,headlen=20,tos=0,
pktlen=84,pktid=8189,offset=0,ttl=128,protocol=1,
checksum=37119,s=192.168.0.2,d=200.1.1.1
prompt:
ReceivingIPpacketfromEthernet1/0/0
*0.5131010NATIP/8/debug_case:
Sending,interface=Ethernet0/0/0,version=4,headlen=20,tos=0,
pktlen=84,pktid=8189,offset=0,ttl=127,protocol=1,
checksum=18599,s=10.0.0.3,d=200.1.1.1
prompt:
SendingthepacketfromEthernet1/0/0atEthernet0/0/0
*0.5142230NATIP/8/debug_case:
Receiving,interface=Ethernet0/0/1,version=4,headlen=20,tos=0,
pktlen=84,pktid=54239,offset=0,ttl=255,protocol=1,
checksum=28356,s=100.1.1.1,d=20.0.0.3
prompt:
ReceivingIPpacketfromEthernet0/0/1
*0.5142570NATIP/8/debug_case:
Sending,interface=Ethernet1/0/0,version=4,headlen=20,tos=0,
pktlen=84,pktid=54239,offset=0,ttl=254,protocol=1,
checksum=49692,s=100.1.1.1,d=192.168.1.2
prompt:
SendingthepacketfromEthernet0/0/1atEthernet1/0/0
*0.5142930NATIP/8/debug_case:
Receiving,interface=Ethernet1/0/0,version=4,headlen=20,tos=0,
pktlen=84,pktid=8190,offset=0,ttl=128,protocol=1,
checksum=62462,s=192.168.1.2,d=100.1.1.1
prompt:
ReceivingIPpacketfromEthernet1/0/0
*0.5143270NATIP/8/debug_case:
Sending,interface=Ethernet0/0/1,version=4,headlen=20,tos=0,
pktlen=84,pktid=8190,offset=0,ttl=127,protocol=1,
checksum=41638,s=20.0.0.3,d=100.1.1.1
prompt:
SendingthepacketfromEthernet1/0/0atEthernet0/0/1
*0.5143620NATIP/8/debug_case:
Receiving,interface=Ethernet0/0/1,version=4,headlen=20,tos=0,
pktlen=84,pktid=54240,offset=0,ttl=255,protocol=1,
checksum=28355,s=100.1.1.1,d=20.0.
- 配套讲稿:
如PPT文件的首页显示word图标,表示该PPT已包含配套word讲稿。双击word图标可打开word文档。
- 特殊限制:
部分文档作品中含有的国旗、国徽等图片,仅作为作品整体效果示例展示,禁止商用。设计者仅对作品中独创性部分享有著作权。
- 关 键 词:
- 1台服务器做双出口NAT server的配置 服务器 出口 NAT server 配置