跳到主要內容

EIGRP 小記

1. Classless
2.支援VLSM
3.Unequal-Cost pathways  (OSPF Equal-Cost Load Balancing)
4.預設會Auto Summary
..........


EIGRP有三張Table
1.neighbor Table
         |
         |     dual 演算法
         V
2.Topology Table (不是Database),已經知道下一站要怎麼走,OSPF還要使用SPF演算法
a.路徑走Successor,若Successor斷掉,則走Feasible Successor
b.FD=介面到下一站Router的Metric+AD值
c.要成為Feasible Successor,必須AD值小於Successor的FD值(Metric)


3.Riouting Table




EIGRP 也有送Hello Packets(預設每5秒送一次Hello),會包含AS Number,若是AS Number不同,鄰居關係會無法建立
OSPF 中的Process ID可以不用,但是Area要相同


----------------------------------------------
例如
----------------------------------------------

B3#show ip interface brief 
Interface              IP-Address      OK? Method Status                Protocol

FastEthernet0/0        172.16.4.254    YES manual up                    up

FastEthernet0/1        unassigned      YES unset  administratively down down

Serial0/0/0            192.168.1.21    YES manual up                    up

Serial0/0/1            192.168.1.6     YES manual up                    up

Vlan1                  unassigned      YES unset  administratively down down
B3#



B3(config)#router eigrp 100  (AS Number為100)

B3(config-router)#network 172.16.4.254 0.0.0.0  (不打Wildcard Mask也可以 or 172.16.0.0)
B3(config-router)#network 192.168.1.21 0.0.0.0
B3(config-router)#network 192.168.1.6 0.0.0.0
B3(config-router)#no auto-summary (取消Auto Summary)





B3#show ip protocols 


Routing Protocol is "eigrp  100
  Outgoing update filter list for all interfaces is not set 
  Incoming update filter list for all interfaces is not set 
  Default networks flagged in outgoing updates  
  Default networks accepted from incoming updates 
  EIGRP metric weight K1=1, K2=0, K3=1, K4=0, K5=0
  EIGRP maximum hopcount 100
  EIGRP maximum metric variance 1
Redistributing: eigrp 100
  Automatic network summarization is in effect  
  Automatic address summarization: 
    192.168.1.0/24 for FastEthernet0/0
      Summarizing with metric 2169856
    172.16.0.0/16 for Serial0/0/0, Serial0/0/1
      Summarizing with metric 28160
  Maximum path: 4
  Routing for Networks:  
     172.16.4.254/32
     192.168.1.21/32
     192.168.1.6/32
  Routing Information Sources:  
    Gateway         Distance      Last Update 
  Distance: internal 90 external 170




檢查有無錯誤
show iop route
show ip protocols



B3#show ip eigrp topology 
IP-EIGRP Topology Table for AS 168


Codes: P - Passive, A - Active, U - Update, Q - Query, R - Reply,
       r - Reply status


P 172.16.4.0/24, 1 successors, FD is 28160
         via Connected, FastEthernet0/0
P 192.168.1.20/30, 1 successors, FD is 2169856
         via Connected, Serial0/0/0
P 192.168.1.4/30, 1 successors, FD is 2169856
         via Connected, Serial0/0/1
P 172.16.3.0/24, 1 successors, FD is 2172416
         via 192.168.1.5 (2172416/28160), Serial0/0/1
P 192.168.1.16/30, 1 successors, FD is 2681856
         via 192.168.1.5 (2681856/2169856), Serial0/0/1






B3#show ip eigrp neighbors 
IP-EIGRP neighbors for process 168
H   Address         Interface      Hold Uptime    SRTT   RTO   Q   Seq
                                   (sec)          (ms)        Cnt  Num
0   192.168.1.5     Se0/0/1        13   00:04:10  40     1000  0   10






B3#show ip eigrp interfaces 
IP-EIGRP interfaces for process 168


                        Xmit Queue   Mean   Pacing Time   Multicast    Pending
Interface        Peers  Un/Reliable  SRTT   Un/Reliable   Flow Timer   Routes
Fa0/0              0        0/0      1236       0/10           0           0
Se0/0/0            0        0/0      1236       0/10           0           0
Se0/0/1            1        0/0      1236       0/10           0           0



Peers 代表鄰居關係數



啟用驗證
key chain abc
key1
key-string kfc
interface fa 0/1

在介面套上
ip authentication mode eigrp 100 md5
ip authentication key-chain eigrp 100 abc



Routing Protocol的比較可以參考這裡

留言

這個網誌中的熱門文章

使用Cisco L3 Switch做VLAN的Routing

目標: 讓VLAN100與VLAN200的電腦透過L3 Swtich做VLAN的Routing,並且可以互相存取資源與上網,另外再使用Windows Server 2012配發VLAN100,VLAN200的IP Firewall: 使用ASUS AP當Firewall,並設兩條Static Route Switch: Core Switch為Cisco 3750切VLAN 10,VLAN100,VLAN200,VLAN10為預設的VLAN,VLAN100為Sales,VLAN200為RD Edge Switch為Cisco 3750與2950,其中2950為VLAN100,3750為VLAN200,如果要By Port切VLAN也可以,這裡只是為了方便說明,所以Edge Switch都直接設為單一VLAN Core Switch的設定 原本我只想Show Running-config其中比較重要的設定,後來想想還是全部列出,用紅色標記重要的設定 Gi 1/0/1接2950 Gi 1/0/2接3750 Gi 1/0/24接Router Core-3750#show running-config Building configuration... Current configuration : 2436 bytes ! version 12.2 no service pad service timestamps debug datetime msec service timestamps log datetime msec no service password-encryption ! hostname Core-3750 ! boot-start-marker boot-end-marker ! ! ! ! no aaa new-model switch 1 provision ws-c3750g-24t system mtu routing 1546 ip routing no ip domain-lookup ! ! ! ! ! ! ! ! spanning-tree mode pvst spanning-tree portfas...

Cisco Switch 發生Loopback

User告知網路無法使用,看了Switch的狀況後,發現那個Port的狀態是Error Disable,接著又看了Switch的log Feb  8 12:14:14 TW: %DHCP_SNOOPING-5-DHCP_SNOOPING_UNTRUSTED_PORT: DHCP_SNOOPING drop message on untrusted port, message type: DHCPNAK, MAC sa: 2c56.dc86.xxxx Feb  8 12:15:49 TW: %DHCP_SNOOPING-5-DHCP_SNOOPING_UNTRUSTED_PORT: DHCP_SNOOPING drop message on untrusted port, message type: DHCPNAK, MAC sa: 2c56.dc86.xxxx Feb  8 12:18:00 TW: %ETHCNTR-3-LOOP_BACK_DETECTED: Keepalive packet loop-back detected on FastEthernet0/10. Feb  8 12:18:00 TW: %PM-4-ERR_DISABLE: loopback error detected on Fa0/10, putting Fa0/10 in err-disable state Feb  8 12:18:01 TW: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/10, changed state to down Feb  8 12:18:02 TW: %LINK-3-UPDOWN: Interface FastEthernet0/10, changed state to down 應該是User私接設備,除了造成Loopback之外,又在隨便發放IP....... 不過因為那個User比較特殊,先教育了一下之後,再把那個Port shutdown , no shutdown,接著把Recovery設了上去,下次如果再遇到相同狀況,10分鐘後會自動恢復 xxx...

2台 Vigor 2920建立 LAN To LAN VPN (IPsec)

我有兩台Vigor 2920,環境如下: Vigor B 撥出 LAN:192.168.1.0/24 Vigor A 撥入 LAN:172.16.1.0/24 設定如下: Vigor B設定 Vigor A設定 詳細設定請參考官網 http://www.draytek.com/index.php?option=com_k2&view=item&id=2666&Itemid=264&lang=tw