[Juniper] Junos虛擬路由冗餘協定(VRRP)備援架構

KerKer

4 年前

&NewLine;éåéå¸ï¼é ä¾¿çåçè¨ï¼è¥æé¯èª¤è«ä¸åææã &NewLine;&NewLine;&NewLine;&NewLine; Junosåºæ¬æä½årootå¯ç¢¼è¨å®å¯åèæä¹åçæç« ï¼<a href="https&colon;//kerker&period;website/juniper-junos&percnt;E5&percnt;9F&percnt;BA&percnt;E6&percnt;9C&percnt;AC&percnt;E6&percnt;93&percnt;8D&percnt;E4&percnt;BD&percnt;9C&percnt;E3&percnt;80&percnt;81root&percnt;E5&percnt;AF&percnt;86&percnt;E7&percnt;A2&percnt;BC&percnt;E8&percnt;A8&percnt;AD&percnt;E5&percnt;AE&percnt;9A/">Juniper Junosåºæ¬æä½ãrootå¯ç¢¼è¨å®</a>&NewLine;&NewLine;&NewLine;&NewLine;ææJuniperç¸éæç« åè¡¨ï¼<a href="https&colon;//kerker&period;website/juniper-junos-&percnt;E7&percnt;B3&percnt;BB&percnt;E5&percnt;88&percnt;97-&percnt;E6&percnt;96&percnt;87&percnt;E7&percnt;AB&percnt;A0&percnt;E5&percnt;88&percnt;97&percnt;E8&percnt;A1&percnt;A8/">Juniper JunOS ç³»åæç« åè¡¨</a> &NewLine;&NewLine;&NewLine;&NewLine;<&excl;--more-->&NewLine;&NewLine;&NewLine;&NewLine;çºäºè¿½æ±æ´é«çå¯ç¨æ§ï¼åæ´æ©å¶ä¹ç¸å°è¶ä¾è¶éè¦ï¼èæ¬è·¯ç±åé¤åå®(VRRP)ææçæä¾äºç¬¬ä¸è·³çåæ´æ©å¶ï¼é¿åä½çºéé(Gateway)çè¨åæéé æç¶²è·¯æåä¸æ·ã&NewLine;&NewLine;&NewLine;&NewLine;ç±æ¼VRRPæ¯æ¨æºåå®ï¼æä»¥å¯ä»¥å¨ä¸åå» ççè¨åä¹éå»ºç«VRRPçåæ´æ©å¶ï¼ä»¥ä¸ä½¿ç¨ä¸åç°¡å®çVRRPåæ´æ¶æ§ä¾èªªæJuniperäº¤æå¨è¨åVRRPçè¨å®æ¹å¼ã&NewLine;&NewLine;&NewLine;&NewLine;é¦åæåå¨å©å°L3äº¤æå¨ä¸å»ºç«åæ¨£çvlanï¼éè£¡æåä½¿ç¨vlan 100ï¼ä¸¦çºè©²vlan æå®L3 ä»é¢(interface)ï¼vlanç¸éçè¨å®èªªæå¯ä»¥åè <a href="https&colon;//kerker&period;website/juniper-junos&percnt;E5&percnt;9F&percnt;BA&percnt;E6&percnt;9C&percnt;ACvlan&percnt;E8&percnt;A8&percnt;AD&percnt;E5&percnt;AE&percnt;9A/">Juniper Junosåºæ¬vlanè¨å®</a> ï¼&NewLine;&NewLine;&NewLine;&NewLine;<pre class="wp-block-code"><code> KerKer&commat;sw1&num; set vlans v100 vlan-id 100&NewLine; KerKer&commat;sw1&num; set vlans v100 l3-interface irb&period;100&NewLine;&NewLine; KerKer&commat;sw2&num; set vlans v100 vlan-id 100&NewLine; KerKer&commat;sw2&num; set vlans v100 l3-interface irb&period;100</code></pre>&NewLine;&NewLine;&NewLine;&NewLine;éè¦ç¹å¥æ³¨æçæ¯éå©å°switchçvlan 100è¦æ¥å¨åä¸åååç¶²è·¯æ¶æ§ä¸(LAN)ï¼æ¯è¼ç°¡å®çæ¹å¼æ¯ç´æ¥åå¥è¨å®ä¸åå¯¦é«ä»é¢access vlan 100ä¹å¾å°æ¥å³å¯ï¼&NewLine;&NewLine;&NewLine;&NewLine;<pre class="wp-block-code"><code> KerKer&commat;sw1&num; set interfaces ge-0/0/0 unit 0 family ethernet-switching interface-mode access&NewLine; KerKer&commat;sw1&num; set interfaces ge-0/0/0 unit 0 family ethernet-switching vlan members 100&NewLine;&NewLine; KerKer&commat;sw2&num; set interfaces ge-0/0/0 unit 0 family ethernet-switching interface-mode access&NewLine; KerKer&commat;sw2&num; set interfaces ge-0/0/0 unit 0 family ethernet-switching vlan members 100</code></pre>&NewLine;&NewLine;&NewLine;&NewLine;æ¥ä¸ä¾æåè¦å¨éå©åL3ä»é¢ä¸åå¥çµ¦å®ä¸åIPï¼ä¸¦å å¥åä¸åvrrp-groupï¼ä¸æå®åä¸åvirtual-addressä¾ä½çºvlan 100çééï¼&NewLine;&NewLine;&NewLine;&NewLine;<pre class="wp-block-code"><code> KerKer&commat;sw1&num; set interfaces irb unit 100 family inet address 192&period;168&period;100&period;252/24 vrrp-group 1 virtual-address 192&period;168&period;100&period;254&NewLine;&NewLine; KerKer&commat;sw2&num; set interfaces irb unit 100 family inet address 192&period;168&period;100&period;253/24 vrrp-group 1 virtual-address 192&period;168&period;100&period;254</code></pre>&NewLine;&NewLine;&NewLine;&NewLine;éå¸¸ä¾èªªæåææåçµ¦å®priorityï¼ä¸¦è¨å®æpreemptä¾ä¿èä¸»è¦çééååæ´ééçè§è²ï¼éè£¡æåè®sw1ä½çºæåçä¸»è¦ééï¼&NewLine;&NewLine;&NewLine;&NewLine;<pre class="wp-block-code"><code> KerKer&commat;sw1&num; set interfaces irb unit 100 family inet address 192&period;168&period;100&period;252/24 vrrp-group 1 priority 254&NewLine; KerKer&commat;sw1&num; set interfaces irb unit 100 family inet address 192&period;168&period;100&period;252/24 vrrp-group 1 preempt&NewLine;&NewLine; KerKer&commat;sw2&num; set interfaces irb unit 100 family inet address 192&period;168&period;100&period;253/24 vrrp-group 1 priority 253&NewLine; KerKer&commat;sw2&num; set interfaces irb unit 100 family inet address 192&period;168&period;100&period;253/24 vrrp-group 1 preempt</code></pre>&NewLine;&NewLine;&NewLine;&NewLine;å¦å¤VRRPçvirtual-addressé è¨æ¯ä¸æ¥åä»»ä½é¤äºarpä»¥å¤çå°åï¼çºäºæ¹ä¾¿ééicmp pingæ¸¬è©¦æ¯å¦ææ£ç¢ºé£éï¼å¯ä»¥è¨å®accept-dataä¾åè¨±arpä»¥å¤çå°åï¼&NewLine;&NewLine;&NewLine;&NewLine;<pre class="wp-block-code"><code> KerKer&commat;sw1&num; set interfaces irb unit 100 family inet address 192&period;168&period;100&period;252/24 vrrp-group 1 accept-data&NewLine;&NewLine; KerKer&commat;sw2&num; set interfaces irb unit 100 family inet address 192&period;168&period;100&period;253/24 vrrp-group 1 accept-data</code></pre>&NewLine;&NewLine;&NewLine;&NewLine;éæ¨£ä¸ä¾åªè¦å°å¨vlan 100çè¨åé½è¨å®æä»¥ virtual-address ä½çºéé(Gateway)ï¼å°±å¯ä»¥ææçé¿åå®å°è¨åæéé æç¬¬ä¸è·³å¤±æçåé¡äºã&NewLine;