document/ccna60d
2
0
Fork 0
mirror of https://github.com/gnu4cn/ccna60d.git synced 2024-05-21 04:55:00 +08:00
Code Issues Packages Projects Releases Wiki Activity
3ac26aac8f
ccna60d/d38-EIGRP-For-IPv6.md
Peng Hailin 3ac26aac8f Delete commits history.
2020-11-24 16:46:30 +08:00

17 KiB
Raw Blame History

第38天 EIGRP对IPv6的支持

EIGRP For IPv6

Gitbookccna60d.xfoss.com

你可以在 https://github.com/gnu4cn/ccna60d 上 fork 本项目,并提交你的修正。

本书结合了学习技巧,包括阅读、复习、背书、测试以及 hands-on 实验。

本书译者用其业余时间完成本书的翻译工作,并将其公布到网上,以方便你对网络技术的学习掌握,为使译者更有动力改进翻译及完成剩下章节,你可以 捐赠译者

第38天任务

  • 阅读今天的课文(以下内容)
  • 复习EIGRP模块
  • 复习EIGRP故障排除模块

尽管针对IPv6的EIGRP内容并没有在新的CCNA考试大纲中特别列出但因为以下原因此方面的内容将在本模块中加以涵盖。首先CCNA题目对有关EIGRP与IPv6技术有着较高的关注所以就算看起来不怎么可能EIGRPv6方面的题目仍可能出现在考试中。其次此方面内容相对容易而简单因此掌握起来也不会花很多时间尤其在考虑讲解并不会深入的情况下。

除了那些开放的标准协议外思科专有的EIGRP也已被修订到支持IPv6了。因为其支持IPv6, 所以有时这个修订版的EIGRP被成为是EIGRPv6而并不是因为它是EIGRP路由协议的第6版。类似地IPv4的EIGRP有时也被称为EIGRPv4, 以区别两个版本所支持的其所路由协议的不同In addition to open standart protocols, the Cisco-proprietary EIGRP has also been modified to support IPv6. This modified version of EIGRP is sometimes referred to as EIGRPv6 because of its support for IPv6, not because it is revision 6 of the EIGRP routing protocol. Similarly, EIGRP for IPv4 is also sometimes referred to as EIGRPv4 to differentiate between the routing protocol versions supported by either version

今天将学习以下内容:

  • IPv6下的思科EIGRP概览与基础知识Cisco EIGRP for IPv6 overview and fundamentals
  • IPv6下的EIGRP的配置基础

本课程对应了以下CCNA大纲要求

  • 配置并验证EIGRP单一自治系统Configure and verify EIGRP(Single AS)

EIGRPv6保留了EIGRPv4中的大部分相同基础的核心功能For the most part, EIGRPv6 retains the same basic core functions as EIGRPv4。比如两个版本仍使用弥散更新算法来确保无环回的路径同时两个版本都使用多播数据包来发送更新--尽管EIGRPv6使用的是IPv6的多播地址FF02::A而EIGRPv4使用的是组地址224.0.0.10。在保留了一些相同核心基础的同时版本之间有着一些不同之处。下表38.1列出了EIGRPv4与EIGRPv6之间或简单且更通常地说是IPv4下的EIGRP与IPv6下的EIGRP之间的不同之处

表 38.1 -- EIGRPv4与EIGRPv6的差异

协议特性Protocol Characteristic IPv4下的EIGRP IPv6下的EIGRP
自动汇总特性 支持Yes 不适用Not Applicable
认证或安全特性 MD5 内建于IPv6中Built into IPv6
要求对等点处于同一子网Common Subnet for Peers 要求Yes 不要求No
通告内容Advertisement Contents 子网/掩码Subnet/Mask 前缀/长度Prefix/Length
数据包的封装Packet Encapsulation IPv4封装IPv4 IPv6封装IPv6

注意: 因为EIGRPv6使用邻居的链路本地地址作为下一跳地址因此在位于同一自治系统及同一网段的两台路由器建立邻居关系时就不需要其全局的IPv6单播子网一致了。这一点是要求邻居在同一子网的EIGRPv4与使用链路本地地址建立邻居关系而消除了此要求的EIGRPv6之间最为显著的不同之一Because EIGRPv6 uses the Link-Local address of the neighbour as the next-hop address, the global IPv6 Unicast subnets do not need to be the same for a neighbour relationship to be established between two routers that reside within the same autonomous system and are on a common network segment. This is one of the most significant differences between EIGRPv4, which requires neighbours to be on a common subnet, and EIGRPv6, which negates this need by using the Link-Local addresses for neighbour relationships instead

思科IOS软件在EIGRPv4与EIGRPv6配置上的差异

Cisco IOS Software EIGRPv4 and EIGRPv6 Configuration Differences

思科IOS软件中对EIGRPv4与EIGRPv4的配置上有着一些显著的差异。那么第一个显著差异就在于开启受路由的协议方式的不同。对于EIGRPv4来说需要使用全局配置命令router eigrp [ASN]来开启EIGRPv4的路由并指定该EIGRPv4自治系统编号。而在配置EIGRPv6时则是使用ipv6 router eigrp [ASN]来开启EIGRPv6并指定出本地路由器ASNThere are some notable differences in the configuration of EIGRPv4 and EIGRPv6 in Cisco IOS software. The first notable difference is the way in which the routing protocol is enabled. For EIGRPv4, the router eigrp [ASN] global configuration command is required to enable EIGRPv4 routing and to specify the EIGRPv4 autonomous system number(ASN). When configuring EIGRPv6, the ipv6 router eigrp [ASN] global configuration command is used instead to enable EIGRPv6 and to specify the local router ASN)。

尽管EIGRPv4与EIGRPv6的开启有些类似但在两个路由进程开启之后的协议状态中是有着非常显著的不同的。默认在开启了EIGRPv4时该协议就自动启动并在其假定有桌正确配置的情况下开始在所有指定的运作接口上发送Hello数据包。而当在思科IOS软件中启用EIGRPv6时默认情况下在该协议被开启后其将保持关闭状态。这就意味着就算在某些指定接口下得以开启在执行路由器配置命令no shutdown之前EIGRP进程仍不是运作中的While enabling EIGRPv4 and EIGRPv6 is somewhat similar, there is a very notable and significant difference in the protocol states once the routing process has been enabled. By default, when EIGRPv4 is enabled, the protocol automatically starts and, assuming correct configuration, begins sending Hello packets on all specified interfaces. When enabling EIGRPv6 in Cisco IOS software, by default, after the protocol has been enabled, it remains in the shutdown state. This means that even if enabled under specified interfaces, the EIGRP process will not be operational until the no shutdown router configuration command is issued

而EIGRPv4与EIGRPv6的另一配置差异就是在EIGRPv6下路由器ID是强制要求的且必须以IPv4的点分十进制表示法进行指定。在分配RID时要记住该地址不必是一个可路由或可达的地址Yet another configuration difference between EIGRPv4 and EIGRPv6 is that with EIGRPv6, the router ID is mandatory and must be specified in IPv4 dotted-decimal notation. When assigning the RID, keep in mind that the address does not have to be a routable or reachable address

注意: 如在本地路由器上有任何配置了IPv4地址的接口那么该路由器将从这些接口选取路由器ID -- 优先选取环回接口在路由器上没有配置环回接口或环回接口不可运作时就使用物理接口。在有环回接口运行时将选取环回接口IP地址中最高的作为RID。在没有环回接口运行而有物理接口运行时就选择物理接口IP地址中最高的作为RID。在路由器上环回接口与物理接口都没有配置时就必须使用eigrp router-id [IPv4 Addresses]命令指定出一个RIDIf there are any interfaces with IPv4 address configured on the local router, then the router will select the router ID from these interfaces -- preferring Loopback interfaces, and then using physical interfaces if no Loopback interfaces are configured or operational on the router. The highest IP address of the Loopback interface(s), if up, will be selected. If not, the RID will be selected from the highest IP address of the physical interfaces, if up. If neither is configured on the router, the eigrp router-id [IPv4 Address] command must be used

思科IOS软件中IPv6的配置与验证

Configuring and Verifying EIGRPv6 in Cisco IOS Software

继续上一小节其中突出了EIGRPv4与EIGRPv6之间的配置差异, 本节对在思科IOS软件中开启并验证EIGRPv6功能与路由所需的步骤序列加以贯穿这些步骤如下

  1. 使用全局配置命令ipv6 unicast-routing来全局性地开启IPv6路由。在思科IOS软件中IPv6路由默认是关闭的。
  2. 使用全局配置命令ipv6 router eigrp [ASN]来配置一或多个的EIGRPv6进程。
  3. 如路由器上没有配置了IPv4地址的运行接口就要使用路由器配置命令eigrp router-id [IPv4 Address]来手动配置EIGRPv6的RID。
  4. 使用路由器配置命令no shutdown来开启EIGRPv6进程。
  5. 在需要的接口上,使用接口配置命令ipv6 addressipv6 enable开启其IPv6功能。
  6. 使用接口配置命令ipv6 eigrp [ASN], 来开启该接口下的一或多个EIGRPv6进程。

因为对于EIGRPv6来说自动汇总是不适用的因此就没有关闭此行为的需要。为对EIGRPv6配置的掌握进行加强请考虑下图38.1中所演示的拓扑,该图演示了一个由两台路由器所构成的网络。两台路由器都使用AS 1运行着EIGRPv6。路由器R3将通过EIGRPv6通告两个额外的前缀

思科IOS软件中EIGRPv6的配置 图38.1 -- 思科IOS软件中EIGRPv6的配置

根据上述配置步骤顺序,路由器R1上EIGRPv6将被如下配置上

R1(config)#ipv6 unicast-routing
R1(config)#ipv6 router eigrp 1
R1(config-rtr)#eigrp router-id 1.1.1.1
R1(config-rtr)#no shutdown
R1(config-rtr)#exit
R1(config)#interface GigabitEthernet0/0
R1(config-if)#ipv6 address 3fff:1234:abcd:1::1/64
R1(config-if)#ipv6 enable
R1(config-if)#ipv6 eigrp 1
R1(config-if)#exit

而根据同样的步骤顺序,路由器R3上的EIGRPv6就被如下这样配置上

R3(config)#ipv6 unicast-routing
R3(config)#ipv6 router eigrp 1
R3(config-rtr)#eigrp router-id 3.3.3.3
R3(config-rtr)#no shutdown
R3(config-rtr)#exit
R3(config)#interface GigabitEthernet0/0
R3(config-if)#ipv6 address 3fff:1234:abcd:1::3/64
R3(config-if)#ipv6 enable
R3(config-if)#ipv6 eigrp 1
R3(config-if)#exit
R3(config)#interface GigabitEthernet0/1
R3(config-if)#ipv6 address 3fff:1234:abcd:2::3/64
R3(config-if)#ipv6 address 3fff:1234:abcd:3::3/64
R3(config-if)#ipv6 enable
R3(config-if)#ipv6 eigrp 1
R3(config-if)#exit

EIGRPv6的验证过程将按照EIGRPv4的同样过程进行。首先要验证EIGRP的邻居关系已被成功建立。对于EIGRPv6, 这是通过使用show ipv6 eigrp neighbours命令完成的,如下所示:

R1#show ipv6 eigrp neighbors
EIGRP-IPv6 Neighbors for AS(1)
H   Address              Interface Hold Uptime    SRTT   RTO Q   Seq
                                   (sec)          (ms)       Cnt Num
0   Link-local address:  Gi0/0      13  00:01:37  1200       0   3
    FE80::1AEF:63FF:FE63:1B00

如同先前指出的那样请注意这里的下一跳地址也就是EIGRP的邻居地址被指定为本地链路地址而不是全局单播地址。此命令所打印出的所有其它信息show ip eigrp neighbors命令打印出是相同的。而要查看详细的邻居信息,可简单地在show ipv6 eigrp neighbours命令后面追加上[detail]关键字。使用此选项就打印出有关EIGRP版本、以及从那个特定EIGRP邻居处接收到的前缀数目等信息如下所示

R1#show ipv6 eigrp neighbors
EIGRP-IPv6 Neighbors for AS(1)
H   Address              Interface Hold Uptime    SRTT   RTO Q   Seq
                                   (sec)          (ms)       Cnt Num
0   Link-local address:  Gi0/0      13  00:01:37  1200       0   3
    FE80::1AEF:63FF:FE63:1B00
   Version 5.0/3.0, Retrans: 1, Retries: 0, Prefixes: 3
   Topology-ids from peer - 0

在对EIGRPv6的邻居关系进行验证之后就可以对路由信息进行验证了。比如要查看到从EIGRPv6邻居处接收到的那些IPv6前缀就将使用show ipv6 route命令,如下面的输出所示:

R1#show ipv6 route eigrp
IPv6 Routing Table - default - 6 entries
Codes: C - Connected, L - Local, S - Static, U - Per-user Static route
       B - BGP, HA - Home Agent, MR - Mobile Router, R - RIP
       I1 - ISIS L1, I2 - ISIS L2, IA - ISIS inter area, IS - ISIS summary
       D - EIGRP, EX - EIGRP external, ND - Neighbor Discovery
D   3FFF:1234:ABCD:2::/64 [90/3072]
     via FE80::1AEF:63FF:FE63:1B00, GigabitEthernet0/0
D   3FFF:1234:ABCD:3::/64 [90/3072]
     via FE80::1AEF:63FF:FE63:1B00, GigabitEthernet0/0

请再次注意这里所接收到的前缀都包含着作为所有接收到的前缀的下一跳IPv6地址的本地链路地址。而要查看EIGRPv6的拓扑表就应使用show ipv6 eigrp topology命令。该命令支持那些与用于查看EIGRPv4的拓扑表的show ip eigrp topology命令下可用的同样的参数。这里基于上面已部署的配置,R1上的拓扑表显示出以下IPv6前缀信息

R1#show ipv6 eigrp topology
EIGRP-IPv6 Topology Table for AS(1)/ID(1.1.1.1)
Codes: P - Passive, A - Active, U - Update, Q - Query, R - Reply,
       r - reply Status, s - sia Status
P 3FFF:1234:ABCD:2::/64, 1 successors, FD is 3072
        via FE80::1AEF:63FF:FE63:1B00 (3072/2816), GigabitEthernet0/0
P 3FFF:1234:ABCD:1::/64, 1 successors, FD is 2816
        via Connected, GigabitEthernet0/0
P 3FFF:1234:ABCD:3::/64, 1 successors, FD is 3072
        via FE80::1AEF:63FF:FE63:1B00 (3072/2816), GigabitEthernet0/0

与EIGRPv4中的情况一样可在此命令的后面追加一个前缀以查看到有关那个前缀或子网的详细信息。比如要查看有关子网3FFF:1234:ABCD:2::/64的详细信息,就应简单的输入show ipv6 eigrp topology 3FFF:1234:ABCD:2::/64命令,如下所示:

R1#show ipv6 eigrp topology 3FFF:1234:ABCD:2::/64
EIGRP-IPv6 Topology Entry for AS(1)/ID(1.1.1.1) for 3FFF:1234:ABCD:2::/64
  State is Passive, Query origin flag is 1, 1 Successor(s), FD is 3072
  Descriptor Blocks:
  FE80::1AEF:63FF:FE63:1B00 (GigabitEthernet0/0), from FE80::1AEF:63FF:FE63:1B00, Send
flag is 0x0
      Composite metric is (3072/2816), route is Internal
      Vector metric:
        Minimum bandwidth is 1000000 Kbit
        Total delay is 20 microseconds
        Reliability is 255/255
        Load is 1/255
        Minimum MTU is 1500
        Hop count is 1
        Originating router is 3.3.3.3

最后,一个简单的ping就可以且应该用于对子网之间的连通性加以验证。下面就是一个从R1R3上的地址3FFF:1234:ABCD:2::3ping操作:

R1#ping 3FFF:1234:ABCD:2::3 repeat 10
Type escape sequence to abort.
Sending 10, 100-byte ICMP Echos to 3FFF:1234:ABCD:2::3, timeout is 2 seconds:
!!!!!!!!!!
Success rate is 100 percent (10/10), round-trip min/avg/max = 0/0/4 ms

与EIGRPv4下的情况一样也可使用show ipv6 protocols对EIGRPv6的一些默认协议数值进行检查该命令的输出在下面有打印出来。该命令包含了那些开启了EIGRP实例的接口、路由重分发的信息在适用时以及手动配置指定或所配置的点分十进制的EIGRPv6路由器ID。

R1#show ipv6 protocols
IPv6 Routing Protocol is “eigrp 1”
EIGRP-IPv6 Protocol for AS(1)
  Metric weight K1=1, K2=0, K3=1, K4=0, K5=0
  NSF-aware route hold timer is 240
  Router-ID: 1.1.1.1
  Topology : 0 (base)
    Active Timer: 3 min
    Distance: internal 90 external 170
    Maximum path: 16
    Maximum hopcount 100
    Maximum metric variance 1
  Interfaces:
    GigabitEthernet0/0
  Redistribution:

第38天问题

  1. IPv6 security for EIGRPv6 is built-in. True or false?
  2. Because EIGRPv6 uses the Link-Local address of the neighbour as the next-hop address, the global IPv6 Unicast subnets do not need to be the same in order for a neighbour relationship to be established between two routers that reside within the same autonomous system and are on a common network segment. True or false?
  3. Which command do you use to enter EIGRP for IPv6 Router Configuration mode?
  4. Which state is the EIGRP for IPv6 initially in (active or shutdown)?
  5. How do you enable EIGRP for IPv6 on a router interface?

第38天答案

  1. True.
  2. True.
  3. The ipv6 router eigrp [ASN] command.
  4. The shutdown state.
  5. Issue the ipv6 eigrp [ASN] command.

第38天实验

请重复第36天的EIGRP实验不过这次要使用IPv6地址并激活IPv6下的EIGRP-IPV6

  • 在两台路由器上开启IPv6的单播路由
  • 在接口上配置IPv6地址
  • 使用ipv6 router eigrp 100命令配置EIGRP进程
  • 使用命令eigrp router-id 10.10.10.10配置一个RID
  • 使用no shutdown命令激活进程
  • 使用ipv6 eigrp 10命令在IPv6接口上开启EIGRP
  • 使用show ipv6 eigrp neighbors [detail]命令对邻居关系进行检查
  • 使用命令show ipv6 route eigrp对所通告的路由进行检查
  • 使用show ipv6 eigrp topology命令对EIGRP的拓扑进行检查

请访问www.in60days.com并免费观看作者如何完成的此实验。