配置拓补
具体配置
- Linux
- 开启核心转发模块,加载GRE协议模块
# 开启ipv4路由转发
echo 1 > /proc/sys/net/ipv4/ip_forward
# 查看GRE内核模块信息
modinfo ip_gre
# 查看GRE内核模块是否安装
lsmod | grep ip_gre
# 加载GRE内核模块
modprobe ip_gre
modprobe --first-time ip_gre
- 创建隧道虚接口tunnel1并配置隧道接口ip
# 配置GRE隧道的source和destination ip(外部,公网地址)
ip tunnel add tunnel1 mode gre local 192.168.15.6 remote 192.168.15.8 ttl 255 dev eth0
# 配置GRE tunnel接口的隧道标识(在数通设备上可以通过ip unnumber借用其他接口的primary ip)
ip addr add 10.0.0.5 dev tunnel1 peer 10.0.0.6/30
# 开启tunnel1接口
ip link set dev tunnel1 up
# 查看tunnel接口
ifconfig
ip addr
- 添加路由
# 添加私网路由指向隧道口
ip route add 10.10.34.0/24 dev tunnel1
- Cisco
Router-1#sh run int tunnel 1
Building configuration...
Current configuration : 148 bytes
!
interface Tunnel1
ip address 10.0.0.6 255.255.255.252
ip tcp adjust-mss 1400
tunnel source 192.168.15.8
tunnel destination 192.168.15.6
end
ip route 192.168.0.0 255.255.255.0 Tunnel1
Router-1# traceroute 192.168.0.2
Type escape sequence to abort.
Tracing the route to ip-2-0-168-192.xxxx.com (192.168.0.2)
1 10.0.0.5 [AS 65100] 0 msec
可能会遇到MTU问题。需要调整MTU,MSS参数
转载请注明来源
