前言
这次来分析一下防环的黑洞路由 黑洞路由可以将所有无关路由吸入其中, 使其有来无回 在一定层面上可以节约网络设备性能
实验拓扑
当RTB路由器去ping一个192.168.3.1静态不存在的地址时 会根据缺省路由0.0.0.0/0发送给RTA路由器 RTA有条静态路由192.168.0.0/16又会将报文发送给RTB从而导致环路 解决办法即是配置黑洞路由
ip route-static 192.168.0.0 16 null0 // 配置黑洞路由
RTA配置
[RTA]dis current-configuration
#
version 7.1.075, ESS 8305
#
sysname RTA
#
system-working-mode standard
xbar load-single
password-recovery enable
lpu-type f-series
#
vlan 1
#
interface Serial0/0/3
#
interface Serial0/0/4
#
interface Serial0/0/5
#
interface Serial0/0/6
#
interface NULL0
#
interface GigabitEthernet0/0/0
port link-mode route
combo enable copper
ip address 10.0.0.6 255.255.255.252
#
interface GigabitEthernet0/0/1
port link-mode route
combo enable copper
ip address 10.0.0.1 255.255.255.252
#
interface GigabitEthernet0/0/2
port link-mode route
combo enable copper
#
interface GigabitEthernet0/0/7
port link-mode route
combo enable copper
#
interface GigabitEthernet0/0/8
port link-mode route
combo enable copper
#
interface GigabitEthernet0/0/9
port link-mode route
combo enable copper
#
interface GigabitEthernet0/0/10
port link-mode route
combo enable copper
#
scheduler logfile size 16
#
line class aux
user-role network-operator
#
line class console
user-role network-admin
#
line class tty
user-role network-operator
#
line class vty
user-role network-operator
#
line aux 0
user-role network-operator
#
line con 0
user-role network-admin
#
line vty 0 63
user-role network-operator
#
ip route-static 192.168.0.0 16 10.0.0.2
#
domain name system
#
domain default enable system
#
role name level-0
description Predefined level-0 role
#
role name level-1
description Predefined level-1 role
#
role name level-10
description Predefined level-10 role
#
role name level-11
description Predefined level-11 role
#
role name level-12
description Predefined level-12 role
#
role name level-13
description Predefined level-13 role
#
role name level-14
description Predefined level-14 role
#
role name level-2
description Predefined level-2 role
#
role name level-3
description Predefined level-3 role
#
role name level-4
description Predefined level-4 role
#
role name level-5
description Predefined level-5 role
#
role name level-6
description Predefined level-6 role
#
role name level-7
description Predefined level-7 role
#
role name level-8
description Predefined level-8 role
#
role name level-9
description Predefined level-9 role
#
user-group system
#
return
[RTA]
RTB配置
[RTB]display current-configuration
#
version 7.1.064, Release 0427P22
#
sysname RTB
#
system-working-mode standard
xbar load-single
password-recovery enable
lpu-type f-series
#
vlan 1
#
interface Serial1/0
#
interface Serial2/0
#
interface Serial3/0
#
interface Serial4/0
#
interface NULL0
#
interface GigabitEthernet0/0
port link-mode route
combo enable copper
ip address 192.168.1.254 255.255.255.0
#
interface GigabitEthernet0/1
port link-mode route
combo enable copper
ip address 10.0.0.2 255.255.255.252
#
interface GigabitEthernet0/2
port link-mode route
combo enable copper
ip address 192.168.2.254 255.255.255.0
#
interface GigabitEthernet5/0
port link-mode route
combo enable copper
#
interface GigabitEthernet5/1
port link-mode route
combo enable copper
#
interface GigabitEthernet6/0
port link-mode route
combo enable copper
#
interface GigabitEthernet6/1
port link-mode route
combo enable copper
#
scheduler logfile size 16
#
line class aux
user-role network-operator
#
line class console
user-role network-admin
#
line class tty
user-role network-operator
#
line class vty
user-role network-operator
#
line aux 0
user-role network-operator
#
line con 0
user-role network-admin
#
line vty 0 63
user-role network-operator
#
ip route-static 0.0.0.0 0 10.0.0.1
ip route-static 192.168.0.0 16 NULL0 // 配置黑洞路由
#
domain system
#
domain default enable system
#
role name level-0
description Predefined level-0 role
#
role name level-1
description Predefined level-1 role
#
role name level-2
description Predefined level-2 role
#
role name level-3
description Predefined level-3 role
#
role name level-4
description Predefined level-4 role
#
role name level-5
description Predefined level-5 role
#
role name level-6
description Predefined level-6 role
#
role name level-7
description Predefined level-7 role
#
role name level-8
description Predefined level-8 role
#
role name level-9
description Predefined level-9 role
#
role name level-10
description Predefined level-10 role
#
role name level-11
description Predefined level-11 role
#
role name level-12
description Predefined level-12 role
#
role name level-13
description Predefined level-13 role
#
role name level-14
description Predefined level-14 role
#
user-group system
#
return
[RTB]
不配置黑洞路由抓包分析
大量的报文影响设备性能
