H3C S Series three-layer switch load sharing, link backup implementation process

Experimental background:

As the size of the company continues to expand, the network department at the same time applied for two optical fiber, one of the 10M, the other one for 20M, due to bandwidth asymmetry, the requirements in the three-tier switch to do a strategic route to achieve 2:1 of the traffic allocation, followed by two lines to each other, so as to achieve a safe and reliable network transmission

Experiment Network topology diagram:

Configuration Description:

Since the S-series three-layer switch does not support the user-based load sharing feature, it is possible to use Policy routing, static routing, and NQA automatic detection to achieve load sharing and link backup capabilities.

Principle Explanation:

Principle:

NQA is a real-time network performance detection and statistical technology, can be the response time, network jitter, packet loss rate and other network information statistics. NQA also provides track and application module linkage functions, real-time monitoring network-like

State of the change.

IP unicast Policy Routing through NQA and track linkage, increased the flexibility of the application, enhanced the dynamic perception of the network environment by the Policy routing.

Policy routing can be associated with NQA through track when configuring the sending interface, default send interface, Next hop, and missing save jump. If the NQA probe succeeds, the policy is valid and can guide forwarding, and if the probe fails, the policy is invalid and the policy is ignored when forwarding.

Icmp-echo function is NQA most basic function, follow RFC 2925来 implementation, its realization principle is by sending ICMP message to judge Destination's accessibility, calculate network response time and packet loss rate. The prerequisite for successful Icmp-echo testing is that the target device should be able to respond correctly to the ICMP echo request message. The NQA client sends an ICMP Echo request message based on the set probe time and frequency to the destination IP address of the probe, and the destination address receives the ICMP Echo request message and replies to the ICMP Echo reply message. NQA client According to the receiving situation of ICMP echo reply message, such as receiving time and number of packets, calculating the response time and packet loss rate of the destination IP address, thus reflecting the current network performance and network situation. The results and history of the Icmp-echo test are recorded in the test group and can be viewed from the command line

Results and historical records.

1. Configure two automatic reconnaissance groups to detect the G1/0/23 and G1/0/24 connection states:

The NQA agent enable #开启NQA客户端功能 (open by default) # Nqa entry G23 1 #创建管理员为G23/operation labeled 1 NQA test Group and enter NAQ test Group view type Icmp-echo #配置测试例　Type Icmp-echo and enter test type view destination IP 192.168.111.129 #配置测试操作的目的IP地址 next-hop 192.168.111.129 Configure IP packet next hop IP address probe count
3 Configure the number of probes in the NQA test, the default is 1 probe timeout 1000 configuration Nqa probe Timeout, the default is 3000ms frequency 1000 #测试频率为1000ms既测试组连续两次测试开始时间的时间间隔为1秒 Reaction 1 checked-element probe-fail threshold-type consecutive 6 action-type trigger-only #建立联动项1, which triggers the related action Q if a continuous test fails 6 times Uit # NQA Entry G24 1 #创建管理员为G24/operation labeled 1 NQA test Group and enter NAQ test Group view type Icmp-echo destination IP 192.168.222.129 #配置测试操作的目的IP地址 NEX　T-hop 192.168.222.129 Configure IP packet next hop IP address probe Count 3 probe timeout 1000 frequency 1000 reaction 1 checked-element probe-fail Threshold-type consecutive 6 Action-type trigger-only quit # NQA Schedule G23 1 start-time now lifetime forever #启动探测组 N QA Schedule G24 1 Start-time now Lifetime forever #启动探测组 track 1 Nqa entry G23 1 reaction 1 #创建于NQA测试组中指定联动项关联的Track 1 T Rack 2 Nqa Entry G24 1 reactiOn 1 #创建于NQA测试组中指定联动项关联的Track 2 # 

2, configure the ACL, 2:1 division of Business Traffic (the premise is that the number of users in each VLAN is basically equal, if not to be divided according to the actual situation).

ACL number 3100 #定义ACL3100 Rule
0 Permit IP source 192.168.1.0 0.0.0.255 rule
1 permit IP Source 192.168.2.0 .255 Rule
2 permit IP source 192.168.3.0 0.0.0.255 rule
3 permit IP source 192.168.4.0 0.0.0.255 rule
1000 den Y IP
quit

More Wonderful content: http://www.bianceng.cnhttp://www.bianceng.cn/Network/jhjs/