Конфигурации устройств
RT.MSK
system {
host-name RT.MSK.M34;
root-authentication {
encrypted-password "$1$qJWadfgn$miUUR35MmW7coGaM.PoV20"; ## SECRET-DATA
}
syslog {
user * {
any emergency;
}
file messages {
any notice;
authorization info;
}
file interactive-commands {
interactive-commands any;
}
}
}
chassis {
aggregated-devices {
ethernet {
device-count 5;
}
}
}
interfaces {
interface-range to_m9 {
member-range ge-0/0/4 to ge-0/0/5;
gigether-options {
802.3ad ae1;
}
}
ge-0/0/0 {
gigether-options {
802.3ad ae0;
}
}
ge-0/0/1 {
unit 0 {
family inet {
address 8.0.0.3/31;
}
}
}
ae0 {
description RT.MSK.M34;
aggregated-ether-options {
lacp {
active;
periodic fast;
}
}
unit 0 {
family inet {
address 10.1.1.0/31;
}
}
}
ae1 {
description RT.MSK.M9;
aggregated-ether-options {
lacp {
active;
}
}
unit 0 {
family inet {
address 10.1.1.2/31;
}
}
}
lo0 {
unit 0 {
family inet {
address 10.1.1.200/32;
}
}
}
}
routing-options {
generate {
route 0.0.0.0/0 policy Contributes_For_Gateway;
}
autonomous-system 65001;
confederation 9000 members [ 65001 65002 65003 ];
forwarding-table {
export LoadBalancing;
}
}
protocols {
bgp {
import BGPimport;
group eBGP {
type external;
metric-out igp;
import [ 9000:666-import BGPimport ];
export 9000:666-export;
neighbor 8.0.0.2 {
peer-as 8000;
}
}
group intra-Sub-AS {
type internal;
local-address 10.1.1.200;
import [ 9000:666-import BGPimport ];
export [ next-hop-self Gateway_to_iBGP ];
multipath;
neighbor 10.1.1.201;
neighbor 10.1.1.202;
}
}
ospf {
reference-bandwidth 1g;
area 0.0.0.0 {
interface ae0.0 {
interface-type p2p;
hello-interval 2;
dead-interval 10;
}
interface ae1.0 {
interface-type p2p;
hello-interval 2;
dead-interval 10;
}
interface lo0.0 {
passive;
}
}
}
}
policy-options {
prefix-list private {
10.0.0.0/8;
172.16.0.0/12;
192.168.0.0/16;
}
policy-statement 9000:666-export {
from {
community Blackhole;
route-filter 0.0.0.0/0 prefix-length-range /32-/32;
}
then {
community add Blackhole-Uplinks;
accept;
}
}
policy-statement 9000:666-import {
from {
community Blackhole;
route-filter 0.0.0.0/0 prefix-length-range /32-/32;
}
then {
next-hop discard;
accept;
}
}
policy-statement BGPimport {
from {
protocol bgp;
route-filter 0.0.0.0/0 prefix-length-range /25-/32;
prefix-list-filter private orlonger;
}
then reject;
}
policy-statement Contributes_For_Gateway {
term 1 {
from {
route-filter 40.0.0.0/8 orlonger;
}
then reject;
}
term 2 {
from {
protocol bgp;
route-type external;
}
then accept;
}
then reject;
}
policy-statement Gateway_to_iBGP {
from {
protocol aggregate;
route-filter 0.0.0.0/0 exact;
}
then accept;
}
policy-statement LoadBalancing {
from protocol [ bgp ospf ];
then {
load-balance per-packet;
}
}
policy-statement next-hop-self {
from {
protocol bgp;
route-type external;
}
then {
next-hop self;
}
}
community Blackhole members 9000:666;
community Blackhole-Uplinks members [ 9001:666 9002:666 8000:666 8001:666 ];
}
RT.SPB
system {
host-name RT.SPB.STL;
root-authentication {
encrypted-password "$1$8G6X1vds$P9xsK7Qc..W9pOWA/2RRr1"; ## SECRET-DATA
}
syslog {
user * {
any emergency;
}
file messages {
any notice;
authorization info;
}
file interactive-commands {
interactive-commands any;
}
}
}
chassis {
aggregated-devices {
ethernet {
device-count 4;
}
}
}
interfaces {
ge-0/0/0 {
gigether-options {
802.3ad ae1;
}
}
ge-0/0/1 {
gigether-options {
802.3ad ae1;
}
}
ge-0/0/2 {
gigether-options {
802.3ad ae2;
}
}
ge-0/0/3 {
gigether-options {
802.3ad ae2;
}
}
ge-0/0/4 {
gigether-options {
802.3ad ae0;
}
}
ge-0/0/5 {
gigether-options {
802.3ad ae0;
}
}
ae0 {
aggregated-ether-options {
lacp {
active;
}
}
unit 0 {
family inet {
address 10.0.0.10/31;
}
}
}
ae1 {
aggregated-ether-options {
lacp {
active;
}
}
unit 0 {
family inet {
address 10.0.0.5/31;
}
}
}
ae2 {
aggregated-ether-options {
lacp {
active;
}
}
unit 0 {
family inet {
address 10.0.0.1/31;
}
}
}
lo0 {
unit 0 {
family inet {
address 10.0.0.200/32;
}
}
}
}
routing-options {
autonomous-system 65002;
confederation 9000 members [ 65001 65002 65003 ];
forwarding-table {
export LoadBalancing;
}
}
protocols {
bgp {
group inter-Sub-AS {
type external;
import 9000:666-import;
peer-as 65001;
multipath;
neighbor 10.0.0.0;
}
group rr-client {
type internal;
local-address 10.0.0.200;
import 9000:666-import;
multipath;
neighbor 10.0.0.201;
neighbor 10.0.0.204;
}
}
ospf {
reference-bandwidth 1g;
area 0.0.0.0 {
interface ae0.0 {
interface-type p2p;
hello-interval 2;
dead-interval 10;
}
interface ae1.0 {
interface-type p2p;
hello-interval 2;
dead-interval 10;
}
interface ae2.0 {
interface-type p2p;
hello-interval 2;
dead-interval 10;
}
interface lo0.0 {
passive;
}
}
}
}
policy-options {
policy-statement 9000:666-import {
from {
community Blackhole;
route-filter 0.0.0.0/0 prefix-length-range /32-/32;
}
then {
next-hop discard;
accept;
}
}
policy-statement LoadBalancing {
from protocol [ bgp ospf ];
then {
load-balance per-packet;
}
}
community Blackhole members 9000:666;
community Blackhole-Uplinks members [ 9001:666 9002:666 8000:666 8001:666 ];
}
RT.[IKT/EKB/VVK]
system {
host-name RT.IKT.MRK;
root-authentication {
encrypted-password "$1$jKIWptB2$p8Yi.awlie5ciBwPTq6KN1"; ## SECRET-DATA
}
syslog {
user * {
any emergency;
}
file messages {
any notice;
authorization info;
}
file interactive-commands {
interactive-commands any;
}
}
}
chassis {
aggregated-devices {
ethernet {
device-count 4;
}
}
}
interfaces {
ge-0/0/0 {
gigether-options {
802.3ad ae0;
}
}
ge-0/0/1 {
gigether-options {
802.3ad ae0;
}
}
ge-0/0/2 {
gigether-options {
802.3ad ae2;
}
}
ge-0/0/3 {
gigether-options {
802.3ad ae2;
}
}
ge-0/0/4 {
gigether-options {
802.3ad ae1;
}
}
ae0 {
aggregated-ether-options {
lacp {
active;
}
}
unit 0 {
family inet {
address 10.2.2.3/31;
}
}
}
ae1 {
aggregated-ether-options {
lacp {
active;
}
}
unit 0 {
family inet {
address 10.2.2.6/31;
}
}
}
ae2 {
aggregated-ether-options {
lacp {
active;
}
}
unit 0 {
family inet {
address 10.2.2.4/31;
}
}
}
lo0 {
unit 0 {
family inet {
address 10.2.2.200/32;
}
}
}
}
routing-options {
autonomous-system 65003;
confederation 9000 members [ 65001 65002 65003 ];
forwarding-table {
export LoadBalancing;
}
}
protocols {
bgp {
group intra-Sub-AS {
type internal;
local-address 10.2.2.200;
import 9000:666-import;
multipath;
neighbor 10.2.2.201;
neighbor 10.2.2.202;
}
group inter-Sub-AS {
type external;
import 9000:666-import;
peer-as 65002;
multipath;
neighbor 10.2.2.2;
}
}
ospf {
reference-bandwidth 1g;
area 0.0.0.0 {
interface ae0.0 {
interface-type p2p;
hello-interval 2;
dead-interval 10;
}
interface ae1.0 {
interface-type p2p;
hello-interval 2;
dead-interval 10;
}
interface ae2.0 {
interface-type p2p;
hello-interval 2;
dead-interval 10;
}
interface lo0.0 {
passive;
}
}
}
}
policy-options {
policy-statement 9000:666-import {
from {
community Blackhole;
route-filter 0.0.0.0/0 prefix-length-range /32-/32;
}
then {
next-hop discard;
accept;
}
}
policy-statement LoadBalancing {
from protocol [ bgp ospf ];
then {
load-balance per-packet;
}
}
community Blackhole members 9000:666;
community Blackhole-Uplinks members [ 9001:666 9002:666 8000:666 8001:666 ];
}
Uplinks and Client
system {
host-name AS8000;
root-authentication {
encrypted-password "$1$tUg9Q5YH$W.lEdnFPxGPNDmiqnFFet0"; ## SECRET-DATA
}
syslog {
user * {
any emergency;
}
file messages {
any notice;
authorization info;
}
file interactive-commands {
interactive-commands any;
}
}
}
interfaces {
ge-0/0/1 {
unit 0 {
family inet {
address 8.0.0.2/31;
}
}
}
ge-0/0/2 {
unit 0 {
family inet {
address 8.1.1.1/31;
}
}
}
ge-0/0/4 {
unit 0 {
family inet {
address 8.0.0.0/31;
}
}
}
lo0 {
unit 0 {
family inet {
address 100.0.0.1/32;
}
}
}
}
routing-options {
static {
route 100.0.0.0/24 discard;
route 100.0.1.0/25 discard;
route 8.0.0.0/16 discard;
}
autonomous-system 8000;
forwarding-table {
export LoadBalancing;
}
}
protocols {
bgp {
import [ 8000:666-import BGPimport ];
export [ exportBGP 8000:666-export ];
group eBGP {
type external;
multipath;
neighbor 8.0.0.3 {
peer-as 9000;
}
neighbor 8.0.0.1 {
peer-as 9000;
}
neighbor 8.1.1.0 {
peer-as 8001;
}
}
}
}
policy-options {
prefix-list private {
10.0.0.0/8;
172.16.0.0/12;
192.168.0.0/16;
}
policy-statement 8000:666-export {
from {
community Blackhole;
route-filter 0.0.0.0/0 prefix-length-range /32-/32;
}
then {
community add Blackhole-Uplinks;
accept;
}
}
policy-statement 8000:666-import {
from {
community Blackhole;
route-filter 0.0.0.0/0 prefix-length-range /32-/32;
}
then {
next-hop discard;
accept;
}
}
policy-statement BGPimport {
from {
protocol bgp;
route-filter 0.0.0.0/0 prefix-length-range /25-/32;
prefix-list-filter private orlonger;
}
then reject;
}
policy-statement LoadBalancing {
from {
route-filter 40.0.0.0/24 exact;
}
then {
load-balance per-packet;
}
}
policy-statement exportBGP {
from {
protocol static;
route-filter 100.0.0.0/8 upto /25;
route-filter 8.0.0.0/16 exact;
}
then accept;
}
community Blackhole members 8000:666;
community Blackhole-Uplinks members [ 9000:666 9002:666 8001:666 9001:666 ];
}
Last updated
Was this helpful?