1.拓扑图
参考:http://www.time-dms.com.cn/viewthread.asp?tid=1904
2.基本接口配置:
R1:
R1(config)#int e0/0
R1(config-if)#ip add 10.1.1.1 255.255.255.0
R1(config-if)#no sh
R2:
R2(config)#int e0/0
R2(config-if)#ip add 10.1.1.2 255.255.255.0
R2(config-if)#no sh
R2(config)#int e0/1
R2(config-if)#ip add 202.100.1.2 255.255.255.0
R2(config-if)#no sh
R3:
R3(config)#int e0/0
R3(config-if)#ip add 202.100.1.3 255.255.255.0
R3(config-if)#no sh
R3(config)#int e0/1
R3(config-if)#ip add 202.100.2.3 255.255.255.0
R3(config-if)#no sh
C1:
eth0: 202.100.1.10/24
eth1:10.1.2.10/24
PC:
eth0:10.1.2.10/24
3.路由配置:
R1(config)#ip route 0.0.0.0 0.0.0.0 10.1.1.2
R2(config)#ip route 0.0.0.0 0.0.0.0 202.100.1.3
C1:Default GateWay 202.100.2.3
PC:Default GateWay 10.1.2.10
4.GRE配置
R3:
R2(config)#int tun 0
R2(config-if)#ip add 172.16.1.1 255.255.255.252
R2(config-if)#tunnel source 202.100.1.2
R2(config-if)#tun
R2(config-if)#tunnel de
R2(config-if)#tunnel destination 202.100.2.10
R2(config-if)#end
R2(config)#ip route 10.1.2.0 255.255.255.0 tunnel 0
C1:
A.确定是否加载了GRE模块
[root@cluster01 ~]# lsmod |grep ip_gre
B.加载GRE模块
[root@cluster01 ~]# insmod /lib/modules/2.6.18-
2.6.18-159.el5/ 2.6.18-238.9.1.el5/ 2.6.18-92.1.10.el5/
2.6.18-164.el5/ 2.6.18-238.el5/
[root@cluster01 ~]# uname -an
Linux cluster01 2.6.18-238.9.1.el5 #1 SMP Tue Apr 12 18:10:56 EDT 2011 i686 i686 i386 GNU/Linux
[root@cluster01 ~]# insmod
insmod insmod.static
[root@cluster01 ~]# insmod /lib/modules/2.6.18-238.9.1.el5/kernel/net/ipv4/ip
ipcomp.ko ip_gre.ko ipip.ko ipvs/
[root@cluster01 ~]# insmod /lib/modules/2.6.18-238.9.1.el5/kernel/net/ipv4/ip_gre.ko
C.GRE tunnel接口配置
[root@cluster01 ~]# ip tunnel add tunnel0 mode gre remote 202.100.1.2 local 202.100.2.10 ttl 225
[root@cluster01 ~]# ip link set tunnel0 up mtu 1500
[root@cluster01 ~]# ip addr add 172.16.1.2/30 peer 172.16.1.1/30 dev tunnel0
[root@cluster01 ~]# ip route add 10.1.1.0/24 dev tunnel0
D.验证GRE接口
[root@cluster01 ~]# ip addr show
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 16436 qdisc noqueue
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast qlen 1000
link/ether 00:0c:29:27:7d:b8 brd ff:ff:ff:ff:ff:ff
inet 202.100.2.10/24 brd 202.100.2.255 scope global eth0
inet6 fe80::20c:29ff:fe27:7db8/64 scope link
valid_lft forever preferred_lft forever
3: eth1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast qlen 1000
link/ether 00:0c:29:27:7d:c2 brd ff:ff:ff:ff:ff:ff
inet 10.1.2.10/24 brd 10.1.2.255 scope global eth1
inet6 fe80::20c:29ff:fe27:7dc2/64 scope link
valid_lft forever preferred_lft forever
4: sit0: <NOARP> mtu 1480 qdisc noop
link/sit 0.0.0.0 brd 0.0.0.0
5: gre0: <NOARP> mtu 1476 qdisc noop
link/gre 0.0.0.0 brd 0.0.0.0
6: tunnel0@NONE: <POINTOPOINT,NOARP,UP,LOWER_UP> mtu 1500 qdisc noqueue
link/gre 202.100.2.10 peer 202.100.1.2
inet 172.16.1.2 peer 172.16.1.1/30 scope global tunnel0
[root@cluster01 ~]# ip link show
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 16436 qdisc noqueue
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast qlen 1000
link/ether 00:0c:29:27:7d:b8 brd ff:ff:ff:ff:ff:ff
3: eth1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast qlen 1000
link/ether 00:0c:29:27:7d:c2 brd ff:ff:ff:ff:ff:ff
4: sit0: <NOARP> mtu 1480 qdisc noop
link/sit 0.0.0.0 brd 0.0.0.0
5: gre0: <NOARP> mtu 1476 qdisc noop
link/gre 0.0.0.0 brd 0.0.0.0
6: tunnel0@NONE: <POINTOPOINT,NOARP,UP,LOWER_UP> mtu 1500 qdisc noqueue
link/gre 202.100.2.10 peer 202.100.1.2
[root@cluster01 ~]# ip route show
172.16.1.0/30 dev tunnel0 proto kernel scope link src 172.16.1.2
202.100.2.0/24 dev eth0 proto kernel scope link src 202.100.2.10
10.1.1.0/24 dev tunnel0 scope link
10.1.2.0/24 dev eth1 proto kernel scope link src 10.1.2.10
169.254.0.0/16 dev eth1 scope link
default via 202.100.2.3 dev eth0
E.开启路由转发
[root@cluster01 ~]# echo 1 > /proc/sys/net/ipv4/ip_forward
本文转自 碧云天 51CTO博客,原文链接:http://blog.51cto.com/333234/846702,如需转载请自行联系原作者
