llaann

Люди помогите!!!! Имеем 2 провайдера, свою AS и пул адресов. Надо разделить пользователей по каналам. Конфиг zebra.conf ! ! Zebra configuration saved from vty ! 2010/08/19 21:29:23 ! hostname Какое-то имя password password enable password password log file /var/log/quagga/zebra.log ! !debug zebra events !debug zebra packet ! interface eth8 ip address xxx.xxx.x40.110/30 ipv6 nd suppress-ra ! interface eth6 ip address yyy.yyy.yy1.47/31 ipv6 nd suppress-ra ! interface br0 ip address 192.168.1.201/24 ip address 172.16.0.3/16 ip address 172.24.0.3/16 ip address 172.25.0.3/24 ipv6 nd suppress-ra ! interface lo interface lo:1 ip address xxx.xxx.xxx.1/24 ipv6 nd suppress-ra ! ip route 0.0.0.0/0 xxx.xxx.xxx.109 15 ip route 0.0.0.0/0 yyy.yyy.yyy.46 25 ip route 10.0.0.0/8 Null0 254 ip route 172.16.0.0/16 Null0 254 ip route 172.24.0.0/16 Null0 254 ip route 172.25.0.0/16 Null0 254 ip route 192.168.0.0/16 Null0 254 ip route xxx.xxx.xxx.0/24 Null0 254 ip route xxx.xxx.xxx.0/25 xxx.xxx.xxx.72 ip route xxx.xxx.xxx.128/25 yyy.yyy.yyy.46 ! ip forwarding ! ! line vty exec-timeout 0 0 конфиг bgpd.conf hostname OURAS password pass enable password pass !debug bgp events !debug bgp filters !debug bgp fsm !debug bgp keepalives !debug bgp updates ! bgp multiple-instance bgp config-type cisco ! log file /var/log/quagga/bgpd.log log stdout ! router bgp OURAS no synchronization bgp router-id xxx.xxx.xxx.1 bgp log-neighbor-changes network xxx.xxx.xxx.0/24 neighbor xxx.xxx.xxx.72 remote-as ASISP1 neighbor xxx.xxx.xxx.72 description ISP1 neighbor xxx.xxx.xxx.72 update-source xxx.xxx.xxx.110 neighbor xxx.xxx.xxx.72 ebgp-multihop 255 neighbor xxx.xxx.xxx.72 weight 4000 neighbor xxx.xxx.xxx.72 soft-reconfiguration inbound neighbor xxx.xxx.xxx.72 route-map ISP1-in in neighbor xxx.xxx.xxx.72 route-map ISP1-out out ! neighbor yyy.yyy.yyy.46 remote-as ASISP2 neighbor yyy.yyy.yyy.46 description ISP2 neighbor yyy.yyy.yyy.46 update-source yyy.yyy.yyy.47 neighbor yyy.yyy.yyy.46 ebgp-multihop 255 neighbor yyy.yyy.yyy.46 weight 1000 neighbor yyy.yyy.yyy.46 soft-reconfiguration inbound neighbor yyy.yyy.yyy.46 route-map ISP2-in in neighbor yyy.yyy.yyy.46 route-map ISP2-out out ! ip prefix-list bogons description bogus nets ip prefix-list bogons description seq 15 permit 0.0.0.0/8 le 32 ip prefix-list bogons seq 20 permit 127.0.0.0/8 le 32 ip prefix-list bogons seq 30 permit 10.0.0.0/8 le 32 ip prefix-list bogons seq 35 permit 172.16.0.0/12 le 32 ip prefix-list bogons seq 40 permit 192.168.0.0/16 le 32 ip prefix-list bogons seq 45 permit 169.254.0.0/16 le 32 ip prefix-list bogons seq 50 permit 224.0.0.0/4 le 32 ip prefix-list bogons seq 55 permit 240.0.0.0/4 le 32 ip prefix-list default description default route ip prefix-list default seq 10 permit 0.0.0.0/0 ip prefix-list our-CIDR-blocks seq 5 permit xxx.xxx.xxx.0/24 le 32 ip prefix-list upstream-out seq 10 permit xxx.xxx.xxx.0/24 ! ip as-path access-list 1 permit _6451[2-9]_ ip as-path access-list 1 permit _645[2-9][0-9]_ ip as-path access-list 1 permit _64[6-9][0-9][0-9]_ ip as-path access-list 1 permit _65[0-9][0-9][0-9]_ ! route-map ISP1-in deny 100 match as-path 1 ! route-map ISP1-in deny 110 match ip address prefix-list bogons ! route-map ISP1-in deny 120 match ip address prefix-list our-CIDR-blocks ! route-map ISP1-in permit 200 set local-preference 200 ! route-map ISP1-out permit 100 match ip address prefix-list upstream-out ! route-map ISP1-out deny 200 route-map ISP2-in deny 100 match as-path 1 ! route-map ISP2-in deny 110 match ip address prefix-list bogons ! route-map ISP2-in deny 120 match ip address prefix-list our-CIDR-blocks ! route-map ISP2-in permit 200 set local-preference 100 ! route-map ISP2-out permit 100 match ip address prefix-list upstream-out set as-path prepend OURAS OURAS OURAS OURAS OURAS ! !route-map ISP2-out deny 200 ! line vty У меня получается вообще непонятно что, вобщем я совсем запутался, хотелось бы чтоб 80% узеров ходило через ISP1, а 20% - через ISP2. Похоже что у меня трафик разделился на два интерфейса, входящий по одному каналу идёт, исходящий по другому.