故障描述
在我們ar2200上配置了nat和路由,但是在本設(shè)備上帶內(nèi)網(wǎng)源地址無法ping通外網(wǎng),由于是遠(yuǎn)程到設(shè)備上調(diào)試,內(nèi)網(wǎng)也沒辦法測試配置的nat是否生效,內(nèi)網(wǎng)是否能正常上網(wǎng)
[RT-AR1220S]ping -a 192.168.11.1 202.96.134.134
PING 202.96.134.134: 56 data bytes, press CTRL_C to break
Request time out
Request time out
--- 202.96.134.134 ping statistics ---
2 packet(s) transmitted
0 packet(s) received
100.00% packet loss
故障分析
經(jīng)確認(rèn),這個(gè)版本默認(rèn)是對(duì)本地產(chǎn)生的報(bào)文不會(huì)匹配nat轉(zhuǎn)換策略,直接轉(zhuǎn)發(fā)。
只有升級(jí)到V200R002之后能支持開啟本地報(bào)文也和非本地報(bào)文匹配方式一樣轉(zhuǎn)發(fā),即可實(shí)現(xiàn)在本設(shè)備上帶內(nèi)網(wǎng)源地址nat轉(zhuǎn)換后在轉(zhuǎn)發(fā)。
開啟這個(gè)功能的命令是:
[RT-AR1220S]ip soft-forward enhance enable
[RT-AR1220S]ping -a 192.168.11.1 202.96.134.134
PING 202.96.134.134: 56 data bytes, press CTRL_C to break
Reply from 202.96.134.134: bytes=56 Sequence=1 ttl=249 time=30 ms
Reply from 202.96.134.134: bytes=56 Sequence=2 ttl=249 time=30 ms
Reply from 202.96.134.134: bytes=56 Sequence=3 ttl=249 time=30 ms
Reply from 202.96.134.134: bytes=56 Sequence=4 ttl=249 time=30 ms
Reply from 202.96.134.134: bytes=56 Sequence=5 ttl=249 time=30 ms
--- 202.96.134.134 ping statistics ---
5 packet(s) transmitted
5 packet(s) received
0.00% packet loss
處理過程
缺省情況下,AR G3本機(jī)產(chǎn)生的IP單播協(xié)議報(bào)文不受流量監(jiān)管、流策略等QoS功能的影響,在出接口按高優(yōu)先級(jí)進(jìn)行轉(zhuǎn)發(fā)。當(dāng)需要本機(jī)產(chǎn)生的某些IP單播協(xié)議報(bào)文與本機(jī)轉(zhuǎn)發(fā)的報(bào)文使用同一轉(zhuǎn)發(fā)策略時(shí),用戶可以執(zhí)行本命令
建議/總結(jié)
無