Люди помогите!!!!
Имеем 2 провайдера, свою AS и пул адресов.
Надо разделить пользователей по каналам.
Конфиг zebra.conf
!
! Zebra configuration saved from vty
! 2010/08/19 21:29:23
!
hostname Какое-то имя
password password
enable password password
log file /var/log/quagga/zebra.log
!
!debug zebra events
!debug zebra packet
!
interface eth8
ip address xxx.xxx.x40.110/30
ipv6 nd suppress-ra
!
interface eth6
ip address yyy.yyy.yy1.47/31
ipv6 nd suppress-ra
!
interface br0
ip address 192.168.1.201/24
ip address 172.16.0.3/16
ip address 172.24.0.3/16
ip address 172.25.0.3/24
ipv6 nd suppress-ra
!
interface lo
interface lo:1
ip address xxx.xxx.xxx.1/24
ipv6 nd suppress-ra
!
ip route 0.0.0.0/0 xxx.xxx.xxx.109 15
ip route 0.0.0.0/0 yyy.yyy.yyy.46 25
ip route 10.0.0.0/8 Null0 254
ip route 172.16.0.0/16 Null0 254
ip route 172.24.0.0/16 Null0 254
ip route 172.25.0.0/16 Null0 254
ip route 192.168.0.0/16 Null0 254
ip route xxx.xxx.xxx.0/24 Null0 254
ip route xxx.xxx.xxx.0/25 xxx.xxx.xxx.72
ip route xxx.xxx.xxx.128/25 yyy.yyy.yyy.46
!
ip forwarding
!
!
line vty
exec-timeout 0 0
конфиг bgpd.conf
hostname OURAS
password pass
enable password pass
!debug bgp events
!debug bgp filters
!debug bgp fsm
!debug bgp keepalives
!debug bgp updates
!
bgp multiple-instance
bgp config-type cisco
!
log file /var/log/quagga/bgpd.log
log stdout
!
router bgp OURAS
no synchronization
bgp router-id xxx.xxx.xxx.1
bgp log-neighbor-changes
network xxx.xxx.xxx.0/24
neighbor xxx.xxx.xxx.72 remote-as ASISP1
neighbor xxx.xxx.xxx.72 description ISP1
neighbor xxx.xxx.xxx.72 update-source xxx.xxx.xxx.110
neighbor xxx.xxx.xxx.72 ebgp-multihop 255
neighbor xxx.xxx.xxx.72 weight 4000
neighbor xxx.xxx.xxx.72 soft-reconfiguration inbound
neighbor xxx.xxx.xxx.72 route-map ISP1-in in
neighbor xxx.xxx.xxx.72 route-map ISP1-out out
!
neighbor yyy.yyy.yyy.46 remote-as ASISP2
neighbor yyy.yyy.yyy.46 description ISP2
neighbor yyy.yyy.yyy.46 update-source yyy.yyy.yyy.47
neighbor yyy.yyy.yyy.46 ebgp-multihop 255
neighbor yyy.yyy.yyy.46 weight 1000
neighbor yyy.yyy.yyy.46 soft-reconfiguration inbound
neighbor yyy.yyy.yyy.46 route-map ISP2-in in
neighbor yyy.yyy.yyy.46 route-map ISP2-out out
!
ip prefix-list bogons description bogus nets
ip prefix-list bogons description seq 15 permit 0.0.0.0/8 le 32
ip prefix-list bogons seq 20 permit 127.0.0.0/8 le 32
ip prefix-list bogons seq 30 permit 10.0.0.0/8 le 32
ip prefix-list bogons seq 35 permit 172.16.0.0/12 le 32
ip prefix-list bogons seq 40 permit 192.168.0.0/16 le 32
ip prefix-list bogons seq 45 permit 169.254.0.0/16 le 32
ip prefix-list bogons seq 50 permit 224.0.0.0/4 le 32
ip prefix-list bogons seq 55 permit 240.0.0.0/4 le 32
ip prefix-list default description default route
ip prefix-list default seq 10 permit 0.0.0.0/0
ip prefix-list our-CIDR-blocks seq 5 permit xxx.xxx.xxx.0/24 le 32
ip prefix-list upstream-out seq 10 permit xxx.xxx.xxx.0/24
!
ip as-path access-list 1 permit _6451[2-9]_
ip as-path access-list 1 permit _645[2-9][0-9]_
ip as-path access-list 1 permit _64[6-9][0-9][0-9]_
ip as-path access-list 1 permit _65[0-9][0-9][0-9]_
!
route-map ISP1-in deny 100
match as-path 1
!
route-map ISP1-in deny 110
match ip address prefix-list bogons
!
route-map ISP1-in deny 120
match ip address prefix-list our-CIDR-blocks
!
route-map ISP1-in permit 200
set local-preference 200
!
route-map ISP1-out permit 100
match ip address prefix-list upstream-out
!
route-map ISP1-out deny 200
route-map ISP2-in deny 100
match as-path 1
!
route-map ISP2-in deny 110
match ip address prefix-list bogons
!
route-map ISP2-in deny 120
match ip address prefix-list our-CIDR-blocks
!
route-map ISP2-in permit 200
set local-preference 100
!
route-map ISP2-out permit 100
match ip address prefix-list upstream-out
set as-path prepend OURAS OURAS OURAS OURAS OURAS
!
!route-map ISP2-out deny 200
!
line vty
У меня получается вообще непонятно что, вобщем я совсем запутался, хотелось бы чтоб 80% узеров ходило через ISP1, а 20% - через ISP2.
Похоже что у меня трафик разделился на два интерфейса, входящий по одному каналу идёт, исходящий по другому.