最终实现左边私网和右边私网全部ping通

SW1

vlan batch 12 34

stp region-configuration //mstp配置
region-name test
instance 12 vlan 12
instance 34 vlan 34
active region-configuration

interface GigabitEthernet0/0/3
port link-type trunk
port trunk allow-pass vlan 12 34

interface GigabitEthernet0/0/4
port link-type trunk
port trunk allow-pass vlan 12 34

interface GigabitEthernet0/0/10
port link-type access
port default vlan 12

interface GigabitEthernet0/0/11
port link-type access
port default vlan 12

SW2

vlan batch 12 34
stp region-configuration
region-name test
instance 12 vlan 12
instance 34 vlan 34
active region-configuration

interface GigabitEthernet0/0/3
port link-type trunk
port trunk allow-pass vlan 12 34

interface GigabitEthernet0/0/4
port link-type trunk
port trunk allow-pass vlan 12 34

interface GigabitEthernet0/0/10
port link-type access
port default vlan 34

interface GigabitEthernet0/0/11
port link-type access
port default vlan 34

SW3

vlan batch 12 to 13 34

stp instance 12 root primary //设置为主根
stp instance 34 root secondary //设置为备根

stp region-configuration
region-name test
instance 12 vlan 12
instance 34 vlan 34
active region-configuration

interface Vlanif12
ip address 192.168.12.3 255.255.255.0
vrrp vrid 1 virtual-ip 192.168.12.254 //vrrp配置
vrrp vrid 1 priority 150

interface Vlanif13
ip address 10.0.13.3 255.255.255.0

interface Vlanif34
ip address 192.168.34.3 255.255.255.0
vrrp vrid 2 virtual-ip 192.168.34.254

interface MEth0/0/1

interface GigabitEthernet0/0/1
port link-type access
port default vlan 13

interface GigabitEthernet0/0/2

interface GigabitEthernet0/0/3
port link-type trunk
port trunk allow-pass vlan 12 34

interface GigabitEthernet0/0/4
port link-type trunk
port trunk allow-pass vlan 12 34

ip route-static 0.0.0.0 0.0.0.0 10.0.13.1

SW4

vlan batch 12 14 34

stp instance 12 root secondary
stp instance 34 root primary

stp region-configuration
region-name test
instance 12 vlan 12
instance 34 vlan 34
active region-configuration

interface Vlanif12
ip address 192.168.12.4 255.255.255.0
vrrp vrid 1 virtual-ip 192.168.12.254

interface Vlanif14
ip address 10.0.14.4 255.255.255.0

interface Vlanif34
ip address 192.168.34.4 255.255.255.0
vrrp vrid 2 virtual-ip 192.168.34.254
vrrp vrid 2 priority 150

interface MEth0/0/1

interface GigabitEthernet0/0/1

interface GigabitEthernet0/0/2
port link-type access
port default vlan 14

interface GigabitEthernet0/0/3
port link-type trunk
port trunk allow-pass vlan 12 34

interface GigabitEthernet0/0/4
port link-type trunk
port trunk allow-pass vlan 12 34

ip route-static 0.0.0.0 0.0.0.0 10.0.14.1

R1

interface GigabitEthernet0/0/0
ip address 10.0.12.1 255.255.255.0

interface GigabitEthernet0/0/1
ip address 10.0.13.1 255.255.255.0

interface GigabitEthernet0/0/2
ip address 10.0.14.1 255.255.255.0

interface LoopBack0
ip address 10.0.1.1 255.255.255.255

bgp 100
router-id 10.0.1.1
peer 10.0.2.2 as-number 100
peer 10.0.2.2 connect-interface LoopBack0

ipv4-family unicast
undo synchronization
import-route static //导入静态，刚好静态通过ip route-static查看只有12、34段
peer 10.0.2.2 enable
peer 10.0.2.2 next-hop-local

ospf 1 router-id 10.0.1.1
area 0.0.0.0
network 10.0.1.1 0.0.0.0
network 10.0.12.1 0.0.0.0

ip route-static 192.168.12.0 255.255.255.0 10.0.13.3
ip route-static 192.168.12.0 255.255.255.0 10.0.14.4 preference 70
ip route-static 192.168.34.0 255.255.255.0 10.0.13.3 preference 70
ip route-static 192.168.34.0 255.255.255.0 10.0.14.4
//让12和34段的回去的包走原来出去的路径回包，源进源出

R2

isis 1
cost-style wide
network-entity 49.0001.0000.0000.0002.00
import-route ospf 1 level-1 //右边和r3建立的是级别1，这里导入ospf必须选择级别1

interface GigabitEthernet0/0/0
ip address 10.0.12.2 255.255.255.0

interface GigabitEthernet0/0/1
ip address 10.0.23.2 255.255.255.0
isis enable 1
isis circuit-level level-1 //只和右边r3建立的是级别1，所以不让这个口发级别2的包出

interface LoopBack0
ip address 10.0.2.2 255.255.255.255
isis enable 1

bgp 100
router-id 10.0.2.2
peer 10.0.1.1 as-number 100
peer 10.0.1.1 connect-interface LoopBack0
peer 10.0.3.3 as-number 100
peer 10.0.3.3 connect-interface LoopBack0

ipv4-family unicast
undo synchronization
peer 10.0.1.1 enable
peer 10.0.1.1 reflect-client
peer 10.0.3.3 enable
peer 10.0.3.3 reflect-client

ospf 1 router-id 10.0.2.2
import-route isis 1
area 0.0.0.0
network 10.0.2.2 0.0.0.0
network 10.0.12.2 0.0.0.0

R3

dhcp enable

ip pool test
gateway-list 192.168.56.254
network 192.168.56.0 mask 255.255.255.0
excluded-ip-address 192.168.56.6
dns-list 192.168.1.1

isis 1
is-level level-1
cost-style wide
network-entity 49.0001.0000.0000.0003.00

firewall zone Local
priority 15

interface GigabitEthernet0/0/0

interface GigabitEthernet0/0/1
ip address 10.0.23.3 255.255.255.0
isis enable 1

interface GigabitEthernet0/0/2.35 //用子接口
dot1q termination vid 35
ip address 10.0.35.3 255.255.255.0
arp broadcast enable
dhcp select global

interface LoopBack0
ip address 10.0.3.3 255.255.255.255
isis enable 1

bgp 100
router-id 10.0.3.3
peer 10.0.2.2 as-number 100
peer 10.0.2.2 connect-interface LoopBack0

ipv4-family unicast
undo synchronization
import-route static //导入静态，刚好静态通过ip route-static查看只有56段
peer 10.0.2.2 enable
peer 10.0.2.2 next-hop-local

ip route-static 192.168.56.0 255.255.255.0 10.0.35.5

SW5

vlan batch 35 56

dhcp enable

interface Vlanif35
ip address 10.0.35.5 255.255.255.0

interface Vlanif56
ip address 192.168.56.254 255.255.255.0
dhcp select relay //中继R3上面的dhcp地址池
dhcp relay server-ip 10.0.35.3

interface GigabitEthernet0/0/2
port link-type trunk
port trunk allow-pass vlan 35

interface GigabitEthernet0/0/4
port link-type trunk
port trunk allow-pass vlan 56

ip route-static 0.0.0.0 0.0.0.0 10.0.35.3

SW6

vlan batch 56

interface GigabitEthernet0/0/4
port link-type trunk
port trunk allow-pass vlan 56

interface GigabitEthernet0/0/10
port link-type access
port default vlan 56

interface GigabitEthernet0/0/11
port link-type access
port default vlan 56