Tweet
Xử lý khi danh sách hàng xóm (Neighbor List) trong OSPF rỗng (phần 2)
3. Interface được cấu hình passive OSPF
Ví dụ:
Khi show cấu hình
R2#show ip ospf interface Ethernet 0
Ethernet0 is up, line protocol is up
Internet Address 131.108.1.2/24, Area 0
Process ID 1, Router ID 131.108.1.2, Network Type BROADCAST, Cost: 10
Transmit Delay is 1 sec, State DR, Priority 1
Designated Router (ID) 131.108.1.2, Interface address 131.108.1.2
No backup designated router on this network
Timer intervals configured, Hello 10, Dead 40, Wait 40, Retransmit 5
No Hellos (Passive interface)
Neighbor Count is 0, Adjacent neighbor count is 0
Suppress hello for 0 neighbor(s)
Giải pháp:
Vào Router và đánh câu lệnh
R2#
router ospf 1
no passive-interface Ethernet0
network 131.108.0.0 0.0.255.255 area 0
4. Một danh sách truy cập được ngăn chặn gói Hellos OSPF trên cả hai bên
Ta có mô hình:
Ví dụ:
R1#
interface Ethernet0
ip address 131.108.1.1 255.255.255.0
ip access-group 100 in
access-list 100 permit tcp any any
access-list 100 permit udp any any
access-list 101 permit ip 131.108.1.0 0.0.0.255 host 224.0.0.5
R2#
interface Ethernet0
ip address 131.108.1.2 255.255.255.0
ip access-group 100 in
access-list 100 permit tcp any any
access-list 100 permit udp any any
access-list 101 permit ip 131.108.1.0 0.0.0.255 host 224.0.0.5
Chạy lệnh:
R2#debug ip packet 101 detail
IP packet debugging is on (detailed) for access list 101
IP: s=131.108.1.2 (Ethernet0), d=224.0.0.5, len 68, access denied, proto=89
Giải pháp:
Vào Router và đánh câu lệnh
interface Ethernet0
ip address 131.108.1.2 255.255.255.0
ip access-group 100 in
!
access-list 100 permit tcp any any
access-list 100 permit udp any any
access-list 100 permit ip any host 224.0.0.5
Nguyễn Minh Hải – VnPro
Ví dụ:
Khi show cấu hình
R2#show ip ospf interface Ethernet 0
Ethernet0 is up, line protocol is up
Internet Address 131.108.1.2/24, Area 0
Process ID 1, Router ID 131.108.1.2, Network Type BROADCAST, Cost: 10
Transmit Delay is 1 sec, State DR, Priority 1
Designated Router (ID) 131.108.1.2, Interface address 131.108.1.2
No backup designated router on this network
Timer intervals configured, Hello 10, Dead 40, Wait 40, Retransmit 5
No Hellos (Passive interface)
Neighbor Count is 0, Adjacent neighbor count is 0
Suppress hello for 0 neighbor(s)
Giải pháp:
Vào Router và đánh câu lệnh
R2#
router ospf 1
no passive-interface Ethernet0
network 131.108.0.0 0.0.255.255 area 0
4. Một danh sách truy cập được ngăn chặn gói Hellos OSPF trên cả hai bên
Ta có mô hình:
Ví dụ:
R1#
interface Ethernet0
ip address 131.108.1.1 255.255.255.0
ip access-group 100 in
access-list 100 permit tcp any any
access-list 100 permit udp any any
access-list 101 permit ip 131.108.1.0 0.0.0.255 host 224.0.0.5
R2#
interface Ethernet0
ip address 131.108.1.2 255.255.255.0
ip access-group 100 in
access-list 100 permit tcp any any
access-list 100 permit udp any any
access-list 101 permit ip 131.108.1.0 0.0.0.255 host 224.0.0.5
Chạy lệnh:
R2#debug ip packet 101 detail
IP packet debugging is on (detailed) for access list 101
IP: s=131.108.1.2 (Ethernet0), d=224.0.0.5, len 68, access denied, proto=89
Giải pháp:
Vào Router và đánh câu lệnh
interface Ethernet0
ip address 131.108.1.2 255.255.255.0
ip access-group 100 in
!
access-list 100 permit tcp any any
access-list 100 permit udp any any
access-list 100 permit ip any host 224.0.0.5
Nguyễn Minh Hải – VnPro