1. Static Route Reject and Discard Configuration 구성도
1) Static Route Reject and Discard Configuration 구성도
- Reject Option
- 패킷을 Discard하고 S-IP에게 'ICMP Destination Unreachable'을 생성하여 전송
- Discard Option
- 패킷을 Discard만 하며 'ICMP Destination Unreachable'을 생성하지 않음
2) 테스트 장비
- Emulator : EVE-NG
- OS : Juniper vMX 18.2R1.9
2. Static Route Reject and Discard Configuration
1) Interface IP Address Configuration
더보기
< R1 : Interface IP 설정 >
set interfaces ge-0/0/1 unit 0 family inet address 1.1.2.1/24
set interfaces lo0 unit 0 family inet address 1.1.1.1/32더보기
< R2 : Interface IP 설정 >
set interfaces ge-0/0/0 unit 0 family inet address 1.1.2.2/24
set interfaces ge-0/0/1 unit 0 family inet address 1.2.3.2/24
set interfaces lo0 unit 0 family inet address 2.2.2.2/32더보기
< R3 : Interface IP 설정 >
set interfaces ge-0/0/0 unit 0 family inet address 1.2.3.3/24
set interfaces lo0 unit 0 family inet address 3.3.3.3/32
2) Static Route Configuration
< R1 : Static Route 설정 >
set routing-options static route 3.3.3.3/32 next-hop 1.1.2.2root@R1> show route protocol static table inet.0
inet.0: 4 destinations, 4 routes (4 active, 0 holddown, 0 hidden)
+ = Active Route, - = Last Active, * = Both
3.3.3.3/32 *[Static/5] 00:20:07
> to 1.1.2.2 via ge-0/0/1.0
3) Static Route Reject Configuration
< R2 : Static Route Reject Option 설정 >
set routing-options static route 3.3.3.3/32 rejectroot@R2> show route protocol static table inet.0
inet.0: 6 destinations, 6 routes (6 active, 0 holddown, 0 hidden)
+ = Active Route, - = Last Active, * = Both
3.3.3.3/32 *[Static/5] 00:13:37
Reject- Routing Table의 Next Hop이 'Reject'인 것을 확인
root@R2> show route forwarding-table matching 3.3.3.3 family inet table default
Routing table: default.inet
Internet:
Enabled protocols: Bridging,
Destination Type RtRef Next hop Type Index NhRef Netif
3.3.3.3/32 user 0 rjct 36 2- Forwarding Table의 Type이 'rjct'(Reject)인 것을 확인
root@R1> ping 3.3.3.3 count 2
PING 3.3.3.3 (3.3.3.3): 56 data bytes
36 bytes from 1.1.2.2: Destination Net Unreachable
Vr HL TOS Len ID Flg off TTL Pro cks Src Dst
4 5 00 0054 5e37 0 0000 40 01 136b 1.1.2.1 3.3.3.3
36 bytes from 1.1.2.2: Destination Net Unreachable
Vr HL TOS Len ID Flg off TTL Pro cks Src Dst
4 5 00 0054 5e50 0 0000 40 01 1352 1.1.2.1 3.3.3.3
--- 3.3.3.3 ping statistics ---
2 packets transmitted, 0 packets received, 100% packet loss
- ICMP Request 패킷이 R2의 Next-Hop이 Reject인 Entry와 Longest Match되어 해당 패킷을 Discard하며 S-IP로 ICMP Unreachable Message를 전송
4) Static Route Discard Configuration
< R2 : Static Route Discard Option 설정 >
set routing-options static route 3.3.3.3/32 discardroot@R2> show route protocol static table inet.0
inet.0: 6 destinations, 6 routes (6 active, 0 holddown, 0 hidden)
+ = Active Route, - = Last Active, * = Both
3.3.3.3/32 *[Static/5] 00:00:19
Discard- Routing Table의 Next Hop이 'Discard'인 것을 확인
root@R2> show route forwarding-table matching 3.3.3.3/32 family inet table default
Routing table: default.inet
Internet:
Enabled protocols: Bridging,
Destination Type RtRef Next hop Type Index NhRef Netif
3.3.3.3/32 user 0 dscd 34 2- Forwarding Table의 Type이 'dscd'(Discard)인 것을 확인
root@R1> ping 3.3.3.3 count 2
PING 3.3.3.3 (3.3.3.3): 56 data bytes
--- 3.3.3.3 ping statistics ---
2 packets transmitted, 0 packets received, 100% packet loss
- ICMP Request 패킷이 R2의 Next-Hop이 Discard인 Entry와 Longest Match되어 해당 패킷을 Discard
'Network > Switching, Routing Basic' 카테고리의 다른 글
| Table 생성 과정 (0) | 2025.02.22 |
|---|---|
| Static Route with RPM and Event-option Configuration(Juniper vMX) (0) | 2025.02.20 |
| Static Route Resolve Configuration(Juniper vMX) (0) | 2025.02.18 |
| Static Route no-install Configuration(Juniper vMX) (0) | 2025.02.16 |
| Static Route Metric and 'qualified-next-hop' Configuration(Juniper vMX) (0) | 2025.02.12 |
| Static Route Preference and 'qualified-next-hop' Configuration(Juniper vMX) (0) | 2025.02.10 |
| Static Route Basic Configuration(Juniper vMX) (0) | 2025.02.08 |
| Static Route Next-Hop IP address vs Outgoing interface (0) | 2025.02.06 |