Difference between revisions of "Mikrotik: OSPF multi-area network - dengan MD5 Authentication"

From OnnoWiki
Jump to navigation Jump to search
(Created page with "center|900px|thumb ==Topology Jaringan== R1: eth1: -- R2: eth1 eth2: -- R3: eth1 R2: eth1: -- R1: eth1 eth2: -- R4: eth1 eth3: -- nat0: Internet...")
 
 
(3 intermediate revisions by the same user not shown)
Line 4: Line 4:
  
 
R1:
 
R1:
  eth1: -- R2: eth1
+
  eth0: -- R2: eth0
  eth2: -- R3: eth1
+
  eth1: -- R3: eth0
  
 
R2:
 
R2:
  eth1: -- R1: eth1
+
  eth0: -- R1: eth0
  eth2: -- R4: eth1
+
  eth1: -- R4: eth0
  eth3: -- nat0: Internet
+
  eth2: -- nat0: Internet
  
 
R3:
 
R3:
  eth1: -- R1: eth2
+
  eth0: -- R1: eth1
  eth2: -- LAN: 192.168.1.1/24
+
  eth1: -- LAN: 192.168.1.1/24
  
 
R4:
 
R4:
  eth1: -- R2: eth2
+
  eth0: -- R2: eth1
  eth2: -- LAN: 192.168.2.1/24
+
  eth1: -- LAN: 192.168.2.1/24
 
 
  
 
==Setup IP address==
 
==Setup IP address==
Line 25: Line 24:
 
R1:
 
R1:
  
  enable
+
  /ip address add address=10.0.1.1/30 interface=ether1
configure terminal
+
/ip address add address=10.1.1.1/30 interface=ether2
  interface ethernet1/1
 
    ip address 10.0.1.1 255.255.255.252
 
    ip ospf message-digest-key 1 md5 $AP7i1
 
    no shutdown
 
    exit
 
  interface ethernet1/2
 
    ip address 10.1.1.1 255.255.255.252
 
    ip ospf message-digest-key 1 md5 $AP7i1
 
    no shutdown
 
    exit
 
  end
 
  
 
R2:
 
R2:
  
enable
+
 
  configure terminal
+
  /ip address add address=10.0.1.2/30 interface=ether1
  interface ethernet1/1
+
/ip address add address=10.1.2.1/30 interface=ether2
    ip address 10.0.1.2 255.255.255.252
+
/ip address add address=192.168.122.100/24 interface=ether3
    ip ospf message-digest-key 1 md5 $AP7i1
+
/ip address add address=192.168.122.101/24 interface=ether3
    no shutdown
+
/ip address add address=192.168.122.102/24 interface=ether3
    exit
+
 
  interface ethernet1/2
+
/ip dhcp-client add interface=ether3 disabled=no       # kalau ether3 DHCP client
    ip address 10.1.2.1 255.255.255.252
+
/ip firewall nat add chain=srcnat out-interface=ether3 action=masquerade
    ip ospf message-digest-key 1 md5 $AP7i1
+
/ip firewall nat print
    no shutdown
+
 
    exit
+
/ip route add dst-address=0.0.0.0/0 gateway=192.168.122.1
  !
 
  ! NAT GNS3 gw 192.168.122.1
 
  interface ethernet1/3
 
    ip address 192.168.122.100 255.255.255.0
 
    ip address 192.168.122.101 255.255.255.0 secondary
 
    ip address 192.168.122.102 255.255.255.0 secondary
 
    no shutdown
 
    ip route 0.0.0.0 0.0.0.0 192.168.122.1
 
  end
 
  
 
R3:
 
R3:
  
  enable
+
  /ip address add address=10.1.1.2/30 interface=ether1
configure terminal
+
/ip address add address=192.168.1.1/24 interface=ether2
  interface ethernet1/1
 
    ip address 10.1.1.2 255.255.255.252
 
    ip ospf message-digest-key 1 md5 $AP7i1
 
    no shutdown
 
    exit
 
  interface ethernet1/2
 
    ip address 192.168.1.1 255.255.255.0
 
    no shutdown
 
    exit
 
  end
 
  
 
R4:
 
R4:
  
  enable
+
  /ip address add address=10.1.2.2/30 interface=ether1
configure terminal
+
/ip address add address=192.168.2.1/24 interface=ether2
  interface ethernet1/1
 
    ip address 10.1.2.2 255.255.255.252
 
    ip ospf message-digest-key 1 md5 $AP7i1
 
    no shutdown
 
    exit
 
  interface ethernet1/2
 
    ip address 192.168.2.1 255.255.255.0
 
    no shutdown
 
    exit
 
  end
 
  
 
==Setup OSPF==
 
==Setup OSPF==
Line 97: Line 56:
 
R1:
 
R1:
  
  enable
+
  /routing ospf instance enable default
  configure terminal
+
  /routing ospf area add name=area1 area-id=0.0.0.1
  !
+
/routing ospf network add network=10.0.1.0/24 area=backbone
  ! area 0.0.0.0 = backbone
+
/routing ospf network add network=10.1.1.0/30 area=area1
  router ospf 1
+
/routing ospf interface
  network 10.0.1.0 0.0.0.3 area 0.0.0.0
+
    add interface=ether1 authentication=md5 authentication-key=AP7i1 authentication-key-id=1
  network 10.1.1.0 0.0.0.3 area 0.0.0.1
+
/routing ospf interface
  area 0.0.0.0 authentication message-digest
+
    add interface=ether2 authentication=md5 authentication-key=AP7i1 authentication-key-id=1
  end
 
  
 
R2:
 
R2:
  
  enable
+
  /routing ospf instance enable default
  configure terminal
+
  /routing ospf area add name=area2 area-id=0.0.0.2
  !
+
/routing ospf network add network=10.0.1.0/24 area=backbone
  ! area 0.0.0.0 = backbone
+
/routing ospf network add network=10.1.2.0/30 area=area2
  router ospf 2
+
/routing ospf interface
  network 10.0.1.0 0.0.0.3 area 0.0.0.0
+
    add interface=ether1 authentication=md5 authentication-key=AP7i1 authentication-key-id=1
  network 10.1.2.0 0.0.0.3 area 0.0.0.2
+
/routing ospf interface
  area 0.0.0.0 authentication message-digest
+
    add interface=ether2 authentication=md5 authentication-key=AP7i1 authentication-key-id=1
  end
+
 
 +
/routing ospf instance set distribute-default=if-installed-as-type-1 numbers=0
 +
 
  
 
R3 configuration:
 
R3 configuration:
  
  enable
+
  /routing ospf instance enable default
  configure terminal
+
  /routing ospf area add name=area1 area-id=0.0.0.1
  !
+
/routing ospf network add network=10.1.1.0/30 area=area1
  ! area 0.0.0.0 = backbone
+
/routing ospf network add network=192.168.1.0/24 area=area1
  router ospf 3
+
/routing ospf interface
  network 10.1.1.0 0.0.0.3 area 0.0.0.1
+
    add interface=ether1 authentication=md5 authentication-key=AP7i1 authentication-key-id=1
  network 192.168.1.0 0.0.0.255 area 0.0.0.1
 
  end
 
  
 
R4 configuration:
 
R4 configuration:
  
  enable
+
  /routing ospf instance enable default
  configure terminal
+
  /routing ospf area add name=area2 area-id=0.0.0.2
  !
+
/routing ospf network add network=10.1.2.0/30 area=area2
  ! area 0.0.0.0 = backbone
+
/routing ospf network add network=192.168.2.0/24 area=area2
  router ospf 4
+
/routing ospf interface
  network 10.1.2.0 0.0.0.3 area 0.0.0.2
+
    add interface=ether1 authentication=md5 authentication-key=AP7i1 authentication-key-id=1
  network 192.168.2.0 0.0.0.255 area 0.0.0.2
 
  end
 
  
==Cek route==
+
==Redistribute Connected==
  
Cek R1, R2, R3, R4:
+
/routing ospf instance set 0 redistribute-connected=as-type-1
 +
/routing ospf instance print
  
show ip ospf neighbor
 
show ip ospf database
 
show ip route
 
  
Redistribute Connected
+
==Cek route==
  
R3:
+
Cek R1, R2, R3, R4:
 
 
enable
 
configure terminal
 
router ospf 3
 
  redistribute connected
 
  end
 
 
 
R4:
 
 
 
enable
 
configure terminal
 
router ospf 4
 
  redistribute connected
 
  end
 
 
 
 
 
Cek
 
  
  show ip ospf neighbor
+
  /routing ospf interface print
  show ip ospf database
+
  /routing ospf neighbor print
  show ip route
+
  /ip route print
  
 
==Pranala Menarik==
 
==Pranala Menarik==

Latest revision as of 05:00, 9 January 2019

Image6006.gif

Topology Jaringan

R1: 

eth0: -- R2: eth0
eth1: -- R3: eth0

R2: 

eth0: -- R1: eth0
eth1: -- R4: eth0
eth2: -- nat0: Internet

R3: 

eth0: -- R1: eth1
eth1: -- LAN: 192.168.1.1/24

R4: 

eth0: -- R2: eth1
eth1: -- LAN: 192.168.2.1/24

Setup IP address

R1: 

/ip address add address=10.0.1.1/30 interface=ether1
/ip address add address=10.1.1.1/30 interface=ether2

R2: 


/ip address add address=10.0.1.2/30 interface=ether1
/ip address add address=10.1.2.1/30 interface=ether2
/ip address add address=192.168.122.100/24 interface=ether3
/ip address add address=192.168.122.101/24 interface=ether3
/ip address add address=192.168.122.102/24 interface=ether3

/ip dhcp-client add interface=ether3 disabled=no        # kalau ether3 DHCP client
/ip firewall nat add chain=srcnat out-interface=ether3 action=masquerade 
/ip firewall nat print

/ip route add dst-address=0.0.0.0/0 gateway=192.168.122.1

R3: 

/ip address add address=10.1.1.2/30 interface=ether1
/ip address add address=192.168.1.1/24 interface=ether2

R4: 

/ip address add address=10.1.2.2/30 interface=ether1
/ip address add address=192.168.2.1/24 interface=ether2

Setup OSPF

R1: 

/routing ospf instance enable default
/routing ospf area add name=area1 area-id=0.0.0.1
/routing ospf network add network=10.0.1.0/24 area=backbone
/routing ospf network add network=10.1.1.0/30 area=area1
/routing ospf interface 
   add interface=ether1 authentication=md5 authentication-key=AP7i1 authentication-key-id=1
/routing ospf interface 
   add interface=ether2 authentication=md5 authentication-key=AP7i1 authentication-key-id=1

R2: 

/routing ospf instance enable default
/routing ospf area add name=area2 area-id=0.0.0.2
/routing ospf network add network=10.0.1.0/24 area=backbone
/routing ospf network add network=10.1.2.0/30 area=area2
/routing ospf interface 
   add interface=ether1 authentication=md5 authentication-key=AP7i1 authentication-key-id=1
/routing ospf interface 
   add interface=ether2 authentication=md5 authentication-key=AP7i1 authentication-key-id=1

/routing ospf instance set distribute-default=if-installed-as-type-1 numbers=0


R3 configuration: 

/routing ospf instance enable default
/routing ospf area add name=area1 area-id=0.0.0.1
/routing ospf network add network=10.1.1.0/30 area=area1
/routing ospf network add network=192.168.1.0/24 area=area1
/routing ospf interface 
   add interface=ether1 authentication=md5 authentication-key=AP7i1 authentication-key-id=1

R4 configuration: 

/routing ospf instance enable default
/routing ospf area add name=area2 area-id=0.0.0.2
/routing ospf network add network=10.1.2.0/30 area=area2
/routing ospf network add network=192.168.2.0/24 area=area2
/routing ospf interface 
   add interface=ether1 authentication=md5 authentication-key=AP7i1 authentication-key-id=1

Redistribute Connected

/routing ospf instance set 0 redistribute-connected=as-type-1 
/routing ospf instance print


Cek route

Cek R1, R2, R3, R4: 

/routing ospf interface print
/routing ospf neighbor print
/ip route print

Pranala Menarik

Retrieved from "https://onnocenter.or.id/wiki/index.php?title=Mikrotik:_OSPF_multi-area_network_-_dengan_MD5_Authentication&oldid=54160"