DynagenでCCIEを目指す
20100629 GREトンネルとの併用
最終更新:
it_certification
-
view
目的
- マルチキャスト・ユニキャスト複合環境の対応方法を確認します。
- マルチキャストをサポートしないルータはGREトンネルを用いて、経由させます。
構成
- 設定概要
- Loopback AdapterとR1 f1/0を接続します
- EIGRPによってルーティングします。
- R2はマルチキャストをサポートしないルータとします
- R1, R3間でGREトンネルを構築します
- 構成図
- netファイル
model = 3620
[localhost]
[[3620]]
image = C:\Program Files\Dynamips\images\c3620-j1s3-mz.123-18.bin
ram = 128
[[ROUTER R1]]
f1/0 = NIO_gen_eth:\Device\NPF_{EEC4A317-FFD6-4B4A-9787-64BB3651D3B0}
f0/0 = R2 f0/0
[[ROUTER R2]]
f1/0 = R3 f1/0
[[ROUTER R3]]
- 初期設定 R1
! version 12.3 service timestamps debug datetime msec service timestamps log datetime msec no service password-encryption ! hostname R1 ! boot-start-marker boot-end-marker ! ! no aaa new-model ip subnet-zero ! ! ! ip cef ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! interface Loopback0 ip address 1.1.1.1 255.255.255.255 ! interface FastEthernet0/0 ip address 192.168.12.1 255.255.255.0 duplex auto speed auto ! interface FastEthernet1/0 ip address 192.168.1.1 255.255.255.0 duplex auto speed auto ! router eigrp 1 passive-interface default no passive-interface FastEthernet0/0 network 1.1.1.1 0.0.0.0 network 192.168.1.1 0.0.0.0 network 192.168.12.1 0.0.0.0 no auto-summary ! ip http server ip classless ! ! ! ! ! ! ! ! line con 0 line aux 0 line vty 0 4 ! ! end
- 初期設定 R2
! version 12.3 service timestamps debug datetime msec service timestamps log datetime msec no service password-encryption ! hostname R2 ! boot-start-marker boot-end-marker ! ! no aaa new-model ip subnet-zero ! ! ! ip cef ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! interface Loopback0 ip address 2.2.2.2 255.255.255.255 ! interface FastEthernet0/0 ip address 192.168.12.2 255.255.255.0 duplex auto speed auto ! interface FastEthernet1/0 ip address 192.168.23.2 255.255.255.0 duplex auto speed auto ! router eigrp 1 passive-interface default no passive-interface FastEthernet0/0 no passive-interface FastEthernet1/0 network 2.2.2.2 0.0.0.0 network 192.168.12.2 0.0.0.0 network 192.168.23.2 0.0.0.0 no auto-summary ! ip http server ip classless ! ! ! ! ! ! ! ! line con 0 line aux 0 line vty 0 4 ! ! end
- 初期設定 R3
! version 12.3 service timestamps debug datetime msec service timestamps log datetime msec no service password-encryption ! hostname R3 ! boot-start-marker boot-end-marker ! ! no aaa new-model ip subnet-zero ! ! ! ip cef ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! interface Loopback0 ip address 3.3.3.3 255.255.255.255 ! interface FastEthernet1/0 ip address 192.168.23.3 255.255.255.0 duplex auto speed auto ! router eigrp 1 passive-interface default no passive-interface FastEthernet1/0 network 3.3.3.3 0.0.0.0 network 192.168.23.3 0.0.0.0 no auto-summary ! ip http server ip classless ! ! ! ! ! ! ! ! line con 0 line aux 0 line vty 0 4 ! ! end
検証1 検証環境構築
- PIMの設定
R1, R3の各I/Fに対して、PIMを有効にします。このシナリオでは、最も実装が簡単なdense-modeを使用します。
R1(config)#ip multicast-routing R1(config)# R1(config)# R1(config)#interface FastEthernet 1/0 R1(config-if)#ip pim dense-mode R1(config-if)# *Mar 1 00:03:31.291: %PIM-5-DRCHG: DR change from neighbor 0.0.0.0 to 192.168.1.1 on interface FastEthernet1/0 (vrf default) R1(config-if)# R3(config)#ip multicast-routing R3(config)# R3(config)# R3(config)#interface Loopback 0 R3(config-if)#ip pim dense-mode R3(config-if)# *Mar 1 00:04:40.327: %PIM-5-DRCHG: DR change from neighbor 0.0.0.0 to 3.3.3.3 on interface Loopback0 (vrf default) R3(config-if)# R3(config-if)#exit R3(config)# R3(config)#interface FastEthernet 1/0 R3(config-if)#ip pim dense-mode R3(config-if)# *Mar 1 00:04:59.719: %PIM-5-DRCHG: DR change from neighbor 0.0.0.0 to 192.168.23.3 on interface FastEthernet1/0 (vrf default) R3(config-if)#
検証2 GREトンネル
- GREトンネルの設定
R1 Loopback 0とR3 Loopback 0の間でGREトンネルを作成します。
R1(config)#interface tunnel 13 R1(config-if)# *Mar 1 00:05:47.063: %LINEPROTO-5-UPDOWN: Line protocol on Interface Tunnel13, changed state to down R1(config-if)#tunnel source Loopback 0 R1(config-if)#tunnel destination 3.3.3.3 R1(config-if)# *Mar 1 00:06:06.319: %LINEPROTO-5-UPDOWN: Line protocol on Interface Tunnel13, changed state to up R1(config-if)#ip address 192.168.13.1 255.255.255.0 R1(config-if)#ip pim dense-mode R3(config)#interface tunnel 13 R3(config-if)# *Mar 1 00:08:08.051: %LINEPROTO-5-UPDOWN: Line protocol on Interface Tunnel13, changed state to down R3(config-if)#tunnel source Loopback 0 R3(config-if)#tunnel destination 1.1.1.1 R3(config-if)# *Mar 1 00:08:19.891: %LINEPROTO-5-UPDOWN: Line protocol on Interface Tunnel13, changed state to up R3(config-if)#ip address 192.168.13.3 255.255.255.0 R3(config-if)#ip pim dense-mode R3(config-if)# *Mar 1 00:08:35.339: %PIM-5-NBRCHG: neighbor 192.168.13.1 UP on interface Tunnel13 (vrf default) R3(config-if)#
検証3 RPFチェック失敗の確認
- マルチキャストグループへの参加
R3 Loopback 0 を239.1.1.1のマルチキャストグループに参加させます。
R3(config)#interface Loopback 0 R3(config-if)#ip igmp join-group 239.1.1.1
- ping送信
ホストから239.1.1.1に対しpingを送信します。
Microsoft Windows XP [Version 5.1.2600]
(C) Copyright 1985-2001 Microsoft Corp.
C:\Documents and Settings\shoichiro-suzuki>route add 224.0.0.0 mask 240.0.0.0 19
2.168.1.100
C:\Documents and Settings\shoichiro-suzuki>ping 239.1.1.1
Pinging 239.1.1.1 with 32 bytes of data:
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Ping statistics for 239.1.1.1:
Packets: Sent = 4, Received = 0, Lost = 4 (100% loss),
C:\Documents and Settings\shoichiro-suzuki>
- ディストリビューションツリーの確認
ディストリビューションツリーを確認します。
特筆すべき事は、R3の(192.168.1.100, 239.1.1.1)です。RPFが192.168.23.2になっていますが、GREトンネルを経由するため192.168.13.1経由でパケットが送信されるはずです。ですから、RPF checkに失敗している事が推測できます。
特筆すべき事は、R3の(192.168.1.100, 239.1.1.1)です。RPFが192.168.23.2になっていますが、GREトンネルを経由するため192.168.13.1経由でパケットが送信されるはずです。ですから、RPF checkに失敗している事が推測できます。
R1#show ip mroute 239.1.1.1
IP Multicast Routing Table
Flags: D - Dense, S - Sparse, B - Bidir Group, s - SSM Group, C - Connected,
L - Local, P - Pruned, R - RP-bit set, F - Register flag,
T - SPT-bit set, J - Join SPT, M - MSDP created entry,
X - Proxy Join Timer Running, A - Candidate for MSDP Advertisement,
U - URD, I - Received Source Specific Host Report,
Z - Multicast Tunnel, z - MDT-data group sender,
Y - Joined MDT-data group, y - Sending to MDT-data group
Outgoing interface flags: H - Hardware switched, A - Assert winner
Timers: Uptime/Expires
Interface state: Interface, Next-Hop or VCD, State/Mode
(*, 239.1.1.1), 00:00:12/stopped, RP 0.0.0.0, flags: D
Incoming interface: Null, RPF nbr 0.0.0.0
Outgoing interface list:
Tunnel13, Forward/Dense, 00:00:12/00:00:00
(192.168.1.100, 239.1.1.1), 00:00:12/00:02:55, flags: T
Incoming interface: FastEthernet1/0, RPF nbr 0.0.0.0
Outgoing interface list:
Tunnel13, Forward/Dense, 00:00:12/00:00:00
R1#
R3#show ip mroute 239.1.1.1
IP Multicast Routing Table
Flags: D - Dense, S - Sparse, B - Bidir Group, s - SSM Group, C - Connected,
L - Local, P - Pruned, R - RP-bit set, F - Register flag,
T - SPT-bit set, J - Join SPT, M - MSDP created entry,
X - Proxy Join Timer Running, A - Candidate for MSDP Advertisement,
U - URD, I - Received Source Specific Host Report,
Z - Multicast Tunnel, z - MDT-data group sender,
Y - Joined MDT-data group, y - Sending to MDT-data group
Outgoing interface flags: H - Hardware switched, A - Assert winner
Timers: Uptime/Expires
Interface state: Interface, Next-Hop or VCD, State/Mode
(*, 239.1.1.1), 00:03:01/stopped, RP 0.0.0.0, flags: DCL
Incoming interface: Null, RPF nbr 0.0.0.0
Outgoing interface list:
Tunnel13, Forward/Dense, 00:03:01/00:00:00
Loopback0, Forward/Dense, 00:03:01/00:00:00
(192.168.1.100, 239.1.1.1), 00:01:40/00:01:19, flags: L
Incoming interface: FastEthernet1/0, RPF nbr 192.168.23.2 <- RPF checkに失敗
Outgoing interface list:
Loopback0, Forward/Dense, 00:01:40/00:00:00
Tunnel13, Forward/Dense, 00:01:40/00:00:00
R3#
- カウンタ確認
R3のマルチキャストに関するカウンタを確認します。4パケットがRPF failedであった事が確認できます。
R3#show ip mroute 239.1.1.1 count IP Multicast Statistics 3 routes using 2242 bytes of memory 2 groups, 0.50 average sources per group Forwarding Counts: Pkt Count/Pkts per second/Avg Pkt Size/Kilobits per second Other counts: Total/RPF failed/Other drops(OIF-null, rate-limit etc) Group: 239.1.1.1, Source count: 1, Packets forwarded: 0, Packets received: 4 Source: 192.168.1.100/32, Forwarding: 0/0/0/0, Other: 4/4/0 <- RPF check に失敗した事を確認 R3#
検証4 RPFインターフェースの変更
- RPFインターフェースの変更
RPFインターフェースを静的に定義します。
R3(config)#ip mroute 192.168.1.100 255.255.255.255 tunnel 13
- ping送信
ホストからpingを送信します。
C:\Documents and Settings\shoichiro-suzuki>ping 239.1.1.1
Pinging 239.1.1.1 with 32 bytes of data:
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Ping statistics for 239.1.1.1:
Packets: Sent = 4, Received = 0, Lost = 4 (100% loss),
C:\Documents and Settings\shoichiro-suzuki>
- RPF checkの確認
show ip mrouteコマンドを見ると、RPFインターフェースが変わった事が確認できます。また、カウンタを確認すると、パケットがフォワードされた事が確認できます。
R3#show ip mroute 239.1.1.1
IP Multicast Routing Table
Flags: D - Dense, S - Sparse, B - Bidir Group, s - SSM Group, C - Connected,
L - Local, P - Pruned, R - RP-bit set, F - Register flag,
T - SPT-bit set, J - Join SPT, M - MSDP created entry,
X - Proxy Join Timer Running, A - Candidate for MSDP Advertisement,
U - URD, I - Received Source Specific Host Report,
Z - Multicast Tunnel, z - MDT-data group sender,
Y - Joined MDT-data group, y - Sending to MDT-data group
Outgoing interface flags: H - Hardware switched, A - Assert winner
Timers: Uptime/Expires
Interface state: Interface, Next-Hop or VCD, State/Mode
(*, 239.1.1.1), 00:08:13/stopped, RP 0.0.0.0, flags: DCL
Incoming interface: Null, RPF nbr 0.0.0.0
Outgoing interface list:
Tunnel13, Forward/Dense, 00:08:13/00:00:00
Loopback0, Forward/Dense, 00:08:13/00:00:00
(192.168.1.100, 239.1.1.1), 00:01:20/00:02:05, flags: LT
Incoming interface: Tunnel13, RPF nbr 192.168.13.1, Mroute <- RPF nbrが192.168.13.1に変わった事が確認できます
Outgoing interface list:
Loopback0, Forward/Dense, 00:01:20/00:00:00
R3#
R3#
R3#show ip mroute 239.1.1.1 count
IP Multicast Statistics
3 routes using 2068 bytes of memory
2 groups, 0.50 average sources per group
Forwarding Counts: Pkt Count/Pkts per second/Avg Pkt Size/Kilobits per second
Other counts: Total/RPF failed/Other drops(OIF-null, rate-limit etc)
Group: 239.1.1.1, Source count: 1, Packets forwarded: 4, Packets received: 4
Source: 192.168.1.100/32, Forwarding: 4/0/60/0, Other: 4/0/0 <- パケットがフォワードされた事を確認
R3#
添付ファイル
