Category Archives: 我的工作

用CISCO的console server 路由器连接F5console口实现远程console口登录

Posted on by
Reply

1.在CISCO路由器上配置反向telnet,连接好八爪鱼。

2.注意配置line中speed stopbits配置,speed 19200 ,stopbits 1. 其他按照标准配置即可

3.用CISCO的那种一头是DB9一头是水晶头的那种线连到F5 console口上

4.用网线扩展器和一个全反线把八爪鱼的头和F5 console口出来的那个水晶头连接起来即可

以后就可以远程到CISCO路由器上,然后telnet +ip +线路端口 就可以连接了。

一个DHCP问题的分析过程

Posted on by
Reply

由于历史原因,我司一个项目组一直以来手工静态设定自己的IP,没能统一到公司的DHCP服务器上。近日决定迁移。在作完配置修改后用户却总是不能获取IP,总是处于获取状态中,检查DHCP却发现这些IP已经正确的分配给了这些用户,这是什么原因?于是进行了抓包:

 

正常一个DHCP获取过程是广播discover——–>单播offer——–>广播request———–>单播ACK.而图上却在ACK前横插了一个NAK.而且这个DHCP服务器不是公司正常的DHCP服务器。根据DHCP原理,接到NAK后计算机应该放弃IP。所以这个计算机始终获取不到IP。

抓包还发现这个假冒DHCP服务器始终不做offer只作NAK,如此干坏事!于是查找到该接口,发现那接了一个TP-LINK的破SOHO路由器。

【原创】一个关于缺省AAA验证下,CONSOLE登录被拒绝的问题!

Posted on by
Reply

学过NP的都知道如果配置缺省AAA服务器的话,CISCO设备默认是施加到所有登录类型的不管是tty 还是vty。这个本没错,可我们如果真的这么做了,会出现一些意外情况。最近我就遇到了这样一个意外。

结构:

网络设备——————-基于域的IAS服务器

网络设备设置default的AAA,并在radius服务器IP后明确指定local。

在IAS上设置策略,指明NAS-Port-Type 这个属性要等于virtual(vpn),设置完毕后,telnet设备可以正常通过服务器认证,且服务器坏掉还能通过本地帐号认证。看上去没问题。

昨天因为特殊情况需要console到设备上,结果让人意外的是总是明确的拒绝我。既然是明确拒绝说明是radius返回的,可以说肯定是策略没匹配上。此时如果网络设备和radius服务器不通的话,肯定也是可以从console登录的,但我又不能让它不通。通过debug和在IAS服务器上查看日志及策略,发现通过console登录的,发送给IAS服务器的消息里:

NAS-Port-Type =Async

显然是这个属性没匹配上,因为之前设置的NAS-Port-Type是等于 vritual(vpn)的。

解决办法是,最好给console明确定义本地,不要使用什么花哨的验证功能,否则真有意外就太麻烦了。

很多东西不是我们想当然的那样,流程、测试、想到范围都要到位。。。工作才能做好。

F5 firepass所支持的防病毒软件检查

Posted on by
Reply

® 2000, Windows® XP, Windows Vista™ antivirus support chart for FirePass Controller, version 6.0.1

This release of the FirePass controller supports the following antivirus software. The plus sign (+) in the table indicates that the antivirus software is supported by the FirePass controller through the OPSWAT® antivirus integration SDK, 2.3.2 on Windows® 2000, Windows® XP, and Windows Vista™ operating systems. The asterisk ( * ) indicates that the antivirus software is supported on Windows® XP, SP2 or later versions of Windows®.

Important: If the antivirus inspectors are not available on your FirePass controller, reactivate your license to enable the antivirus inspectors.

Note: In the table, the message unknown product indicates that the controller detected only the computer associate’s antivirus software , but not the product name or version.

OPSWAT Antivirus Integration SDK 2.3.2

d align="center"> 

r>

Product Name Product Version Product ID Check Realtime Protection State (monitor) Enable Realtime Protection Perform Process Scan
AhnLab, Inc.
AhnLab Security Pack 2.x AhnLabAV      
AhnLab V3 Internet Security 2007 Platinum 7.x AhnLabAV      
V3 ウイルスブロック NA AhnLabAV      
V3Pro 2004 6.x AhnLabAV      
ALWIL Software
avast! Antivirus 4.x AlwilAV +    
avast! Antivirus (managed) 4.x AlwilAV +   +
avast! Antivirus Professional 4.x AlwilAV +   +
America Online, Inc.
Active Virus Shield 6.x AolAV +   +
AOL Safety and Security Center Virus Protection 1.x AolAV + +  
AOL Safety and Security Center Virus Protection 102.x AolAV +    
AOL Safety and Security Center Virus Protection 2.x AolAV +    
AOL Safety and Security Center Virus Protection 210.x AolAV +    
Authentium, Inc.
Command Anti-Virus Enterprise 4.x CommandAV     +
Command AntiVirus for Windows 4.x CommandAV     +
Command AntiVirus for Windows Enterprise 4.x CommandAV     +
Cox High Speed Internet Security Suite 3.x CommandAV + + +
Avira GmbH
Avira AntiVir Windows Workstation 7.x H+BEDV +    
Avira Premium Security Suite 7.x H+BEDV      
Beijing Rising Technology Corp. Ltd.
Rising Antivirus Software AV 17.x RisingAV *    
Rising Antivirus Software AV 18.x RisingAV *    
BellSouth
BellSouth Internet Security Anti-Virus 5.5.x RadialPointAV *    
BellSouth Internet Security Anti-Virus 5.x RadialPointAV *    
Sécurité Internet d’affaires Antivirus 5.x RadialPointAV *    
ClamWin
ClamWin Antivirus 0.x ClamAV ="center"
 +
ClamWin Free Antivirus 0.x ClamAV     +
Computer Associates International, Inc.
CA Anti-Virus 8.x eTrustAV     +
CA eTrust Antivirus 7.x eTrustAV + + +
CA eTrust Internet Security Suite AntiVirus 7.x eTrustAV +   +
CA eTrustITM Agent 8.x eTrustAV + + +
CA unknown product x eTrustAV      
eTrust EZ Antivirus 6.1.x eTrustAV     +
eTrust EZ Antivirus 6.2.x eTrustAV     +
eTrust EZ Antivirus 6.4.x eTrustAV     +
eTrust EZ Antivirus 7.x eTrustAV +   +
eTrust EZ Armor 6.1.x eTrustAV     +
eTrust EZ Armor 6.2.x eTrustAV     +
eTrust EZ Armor 7.x eTrustAV     +
Defender Pro LLC
Defender Pro Anti-Virus 5.x DefenderProAV *   +
EarthLink, Inc.
Aluria Security Center AntiVirus 1.x EarthLinkAV +    
EarthLink Protection Control Center AntiVirus 1.x EarthLinkAV +    
Eset Software
NOD32 antivirus system 2.x EsetAV +   +
NOD32 antivirus system NA EsetAV +   +
NOD32 Antivirus System NA EsetAV +   +
NOD32 antivirus System NA EsetAV +   +
NOD32防毒系统 2.x EsetAV +   +
NOD32防毒系統 2.x EsetAV +   +
F-Secure Corp.
F-Secure Anti-Virus 5.x F-SecureAV     +
F-Secure Anti-Virus 6.x F-SecureAV     +
F-Secure Anti-Virus 7.x F-SecureAV     +
F-Secure Anti-Virus 2005 5.x F-SecureAV     +
F-Secure Anti-Virus Client Security 6.x F-SecureAV     +
F-Secure AVCS ウィルス保護 5.x F-SecureAV     +
F-Secure Internet Security 6.x F-SecureAV     +
F-Secure Internet Security 7.x F-SecureAV     +
F-Secure Internet Security 2006 Beta 6.x F-SecureAV     +
Frisk Software International
F-Prot for W

indows

 3.14e F-ProtAV      
F-Prot for Windows 3.15 F-ProtAV      
F-Prot for Windows 3.16c F-ProtAV * * +
F-Prot for Windows 3.16d F-ProtAV * * +
F-Prot for Windows 3.16x F-ProtAV * * +
GData Software AG
AntiVirusKit 2006 2006.x GDataAV +    
Grisoft, Inc.
Antivirussystem AVG 6.0 6.x GrisoftAV + + +
AVG 6.0 Anti-Virus – FREE Edition 6.x GrisoftAV + + +
AVG 6.0 Anti-Virus System 6.x GrisoftAV + + +
AVG 7.5 7.x GrisoftAV + + +
AVG Anti-Vírus 7.0 7.x GrisoftAV + + +
AVG Anti-Virus 7.0 7.x GrisoftAV + + +
AVG Anti-Virus 7.1 7.x GrisoftAV + + +
AVG Antivirensystem 7.0 7.x GrisoftAV + + +
AVG Free Edition 7.x GrisoftAV + + +
Grisoft unknown product x GrisoftAV +    
Système anti-virus AVG 7.0 7.x GrisoftAV + + +
H+BEDV Datentechnik GmbH
AntiVir PersonalEdition Classic Windows 7.x H+BEDV      
AntiVir/XP 6.x H+BEDV *    
Avira AntiVir PersonalEdition Premium 7.x H+BEDV      
HAURI, Inc.
ViRobot Desktop 5.0.x HauriAV + +  
Jiangmin, Inc.
江民防毒軟體KV2006 9.x JiangminAV      
江民杀毒软件KV2006 9.x JiangminAV      
Kaspersky Labs
卡巴斯基反病毒Personal 5.0.x KasperskyAV *   +
卡巴斯基防毒Personal 5.0.x KasperskyAV *   +
カスペルスキー アンチウイルス5 5.0.x KasperskyAV *   +
Kaspersky Anti-Virus 2006 Beta 6.0.x KasperskyAV      
Kaspersky Anti-Virus 6.0 6.x KasperskyAV +   +
Kaspersky Anti-Virus 6.0 Beta 6.x KasperskyAV +   +
Kaspersky Anti-Virus Personal 4.5.x KasperskyAV     +
Kaspersky Anti-Virus Personal 5.0.x KasperskyAV *   +
Kaspersky Anti-Virus Personal Pro 5.0.16.x KasperskyAV + &n

bsp;

 +
Kaspersky Anti-Virus Personal Pro 5.0.20.x KasperskyAV +   +
Kaspersky Anti-Virus Personal Pro 5.0.x KasperskyAV *   +
Kaspersky Internet Security 6.x KasperskyAV +   +
Kaspersky(TM) Anti-Virus Personal 4.5 4.5.x KasperskyAV     +
Kaspersky(TM) Anti-Virus Personal Pro 4.5 4.5.x KasperskyAV     +
Kingsoft Corp.
金山毒霸 2006 杀毒套装 2006.x KingSoftAV     +
金山毒霸 2006 标准版 2006.x KingSoftAV     +
金山毒霸杀毒套装 7.x KingSoftAV     +
Kingsoft AntiVirus 2004 2004.x KingSoftAV     +
Kingsoft Internet Security 7.x KingSoftAV     +
Kingsoft Internet Security 2006 + 2006.x KingSoftAV     +
McAfee, Inc.
McAfee Internet Security 6.0 8.x McAfeeAV +    
McAfee Managed VirusScan 3.x McAfeeAV +    
McAfee Managed VirusScan 4.x McAfeeAV +    
McAfee unknown product x McAfeeAV      
McAfee VirusScan 10.x McAfeeAV + +  
McAfee VirusScan 11.x McAfeeAV +    
McAfee VirusScan 4.5.1.x McAfeeAV +   +
McAfee VirusScan 8.x McAfeeAV +    
McAfee VirusScan 8xxx McAfeeAV +    
McAfee VirusScan 9.x McAfeeAV +    
McAfee VirusScan 9xxx McAfeeAV +    
McAfee VirusScan Enterprise 7.0.0.x McAfeeAV + + +
McAfee VirusScan Enterprise 7.1.0.x McAfeeAV + + +
McAfee VirusScan Enterprise 7.5.0.x McAfeeAV + + +
McAfee VirusScan Enterprise 8.0.0.x McAfeeAV + + +
McAfee VirusScan Enterprise 8.x McAfeeAV + + +
McAfee VirusScan Professional 8.x McAfeeAV +    
McAfee VirusScan Professional 8xxx McAfeeAV +    
McAfee VirusScan Professional 9.x McAfeeAV +    
McAfee VirusScan Professional Edition 7.x McAfeeAV     +
Microsoft Corp.
Windows Live OneCare 1.5.x MicrosoftAV +    
Windows Live OneCare 1.x MicrosoftAV +    
Windows OneCare Live 0.8.x MicrosoftAV      
MicroWorld
eScan Anti-Virus (AV) for Windows 8.x MicroWorldAV +    
eScan Corporate for Windows 8.x MicroWorldAV +    
eScan Internet Security for Windows 8.x MicroWorldAV +    
eScan Professional for Windows 8.x MicroWorldAV +    
eScan Virus Control (VC) for Windows 8.x MicroWorldAV +    
Norman ASA
Norman ASA unknown product x NormanAV     +
Norman Virus Control 5.x NormanAV + + +
Panda Software
Panda Antivirus + Firewall 2007 6.x PandaAV      
Panda Antivirus 2007 2.x PandaAV      
Panda Antivirus 6.0 Platinum 6.0 PandaAV      
Panda Antivirus Lite 1.x PandaAV      
Panda Antivirus Lite 3.x PandaAV      
Panda Antivirus Platinum 7.04.x PandaAV      
Panda Antivirus Platinum 7.05.04.x PandaAV      
Panda Antivirus Platinum 7.06.01.x PandaAV      
Panda Client Shield 4.x PandaAV      
Panda Internet Security 2007 11.x PandaAV      
Panda Platinum 2005 Internet Security 9.x PandaAV      
Panda Platinum 2006 Internet Security 10.x PandaAV      
Panda Platinum Internet Security 8.03.00.x PandaAV      
Panda Titanium 2006 Antivirus + Antispyware 5.x PandaAV      
Panda Titanium Antivirus 2004 3.00.00 PandaAV      
Panda Titanium Antivirus 2004 3.01.01.x PandaAV      
Panda Titanium Antivirus 2004 3.02.02.x PandaAV      
Panda Titanium Antivirus 2005 4.x PandaAV      
Panda TruPrevent Personal 2005 2.x PandaAV +    
Panda TruPrevent Personal 2006 3.x PandaAV +    
WebAdmin Client Antivirus 3.x PandaAV +    
Radialpoint Inc.
Radialpoint Virus Protection 5.5.x RadialPointAV *    
Radialpoint Virus Protection 5.x RadialPointAV *    
SalD Ltd.
Dr.Web 4.32.x DrWebAV *   +
Dr.Web 4.33.x DrWebAV *   +
Dr.Web ® for Windows 95-XP 4.31.x DrWebAV *   +
Dr.Web ® for Windows 95-XP 4.32.x DrWebAV *   +
Sereniti, Inc.
Sereniti Antivirus 1.x SerenitiAV + +  
The River Home Network Security Suite 1.x SerenitiAV + +  
SOFTWIN
BitDefender 8 Free Edition 8.x SoftwinAV     +
BitDefender 8 Professional Plus 8.x SoftwinAV *   +
BitDefender 8 Standard 8.x SoftwinAV *   +
BitDefender 9 Internet Security AntiVirus 9.x SoftwinAV *   +
BitDefender 9 Professional Plus 9.x SoftwinAV *   +
BitDefender 9 Standard 9.x SoftwinAV *   +
BitDefender Antivirus Plus v10 10.x SoftwinAV *   +
BitDefender Antivirus v10 10.x SoftwinAV *   +
BitDefender Free Edition 7.x SoftwinAV     +
BitDefender Internet Security v10 10.x SoftwinAV *   +
BitDefender Professional Edition 7.x SoftwinAV +   +
BitDefender Standard Edition 7.x SoftwinAV +   +
Sophos Plc.
Sophos Anti-Virus 3.x SophosAV +   +
Sophos Anti-Virus 4.x SophosAV +   +
Sophos Anti-Virus 5.x SophosAV +   +
Sophos Anti-Virus 6.x SophosAV +   +
Sophos Anti-Virus version 3.80 3.80 SophosAV +   +
Sophos unknown product x SophosAV     +
Symantec Corp.
Norton AntiVirus 10.x NortonAV +   +
Norton AntiVirus 14.x NortonAV +   +
Norton AntiVirus 2002 8.00.58.x NortonAV +   +
Norton AntiVirus 2002 8.x NortonAV +   +
Norton AntiVirus 2002 Professional 8.x NortonAV +   +
Norton AntiVirus 2002 Professional Edition 8.x NortonAV +   +
Norton AntiVirus 2003 9.x NortonAV +   +
Norton A

ntiVirus 2003 Professional

 9.x NortonAV +   +
Norton AntiVirus 2003 Professional Edition 9.x NortonAV +   +
Norton AntiVirus 2004 10.x NortonAV +   +
Norton AntiVirus 2004 (Symantec Corporation) 10.x NortonAV +   +
Norton AntiVirus 2004 Professional 10.x NortonAV +   +
Norton AntiVirus 2004 Professional Edition 10.x NortonAV +   +
Norton AntiVirus 2005 11.0.x NortonAV + + +
Norton AntiVirus 2006 12.0.x NortonAV + + +
Norton AntiVirus 2006 12.2.x NortonAV + + +
Norton AntiVirus 2006 12.x NortonAV + + +
Norton AntiVirus Corporate Edition 7.x NortonAV + +  
Norton AntiVirus Corporate Edition 7.0 for Windows NT 7.x NortonAV + +  
Norton Internet Security 7.x NortonAV +   +
Norton Internet Security 8.0.x NortonAV +   +
Norton Internet Security 8.x NortonAV +   +
Norton Internet Security 9.x NortonAV +   +
Norton Internet Security (Symantec Corporation) 10.x NortonAV +   +
Norton SystemWorks 2003 6.x NortonAV +   +
Norton SystemWorks 2004 Professional 7.x NortonAV +   +
Norton SystemWorks 2005 8.x NortonAV +   +
Norton SystemWorks 2005 Premier 8.x NortonAV +   +
Norton SystemWorks 2006 Premier 12.0.x NortonAV + + +
Symantec AntiVirus 10.x NortonAV + +  
Symantec AntiVirus 9.x NortonAV + +  
Symantec AntiVirus Client 8.x NortonAV + +  
Symantec AntiVirus 用戶端 8.x NortonAV + +  
Symantec AntiVirus Server 8.x NortonAV + +  
Symantec Client Security 10.x NortonAV + + +
Symantec Client Security 9.x NortonAV + + +
Symantec unknown product x NortonAV      
Trend Micro, Inc.
ウイルスバスター ビジネスセキュリティ サーバ 7.x TrendMicroAV + +  
ウイルスバスター2004 11.x TrendMicroAV + +  
ウイルスバスター2005 12.x TrendMicroAV + +  
ウイルスバス]]

>

好久没写

Posted on by
Reply

昨天加班,把orion solarwinds NPM 配置的差不多了,总体来说还不错,但有些细节上还有些问题:

比如对有问题的NODE或者Interface还不能确认,这样直接导致有些设备就始终处于报警提示状态,

报警可选动作确实比较丰富,就是有些报警的变量取得不对,不过这个自己可以更换掉,算是一点遗憾吧.

系统对CISCO设备支持很好,但监控的项目还是感觉少了点,对路由收敛,风扇,温度都还不能监控,对发来的trap我还没发现它是否能主动响应.

我用的是7.8版本,对最新版F5系统支持不够好…

地图制作功能还是蛮不错的~~

下面准备把短信报警搞起来

——————————–

最近有2个朋友考了R&S CCIE,一个过了,一个挂了,………………..

思科全球峰会隆重闭幕 神州数码荣获“TOP INNOVATOR”

Posted on by
Reply

2007年4月4日,在美国拉斯维加斯举办的思科2007全球峰会上神州数码荣获“TOP INNOVATOR”(全球创新大奖),此次全球分销峰会共设四个专项奖和一个综合大奖,TOP INNOVATOR(全球创新大奖)是四专项奖之一,每个奖有五个大区报的四名候选人,神州数码作为亚太地区唯一候选人参选并最终独家胜出,是对我们以UC为代表的创新策略的肯定,神州数码控股有限公司常务副总裁林杨、神州数码系统科技公司副总裁叶海强等出席了此次峰会。

        

     获得“TOP INNOVATOR”全球大奖高度肯定了神州数码在理解厂家渠道政策、快速渠道响应和突出UC技术体验创新上所做出的努力。2006年9月,思科(中国)开始在中国区大力推广UC理念及其产品,随后神州数码迅速捕捉到了思科业务模式的转变,并以行动积极响应。2006年9月26日思科流动展示中心——NOW VAN大篷车在北京上地神州数码大厦开始了独具创意的全国之旅,2007年3月27日神州数码成为思科统一通信(UC)中国区战略合作伙伴,同时第一个“UC 体验中心”在上地神州数码大厦的创新中心建成,揭幕仪式受到了多家媒体和各方合作伙伴的关注。

        
    在拿到这个颇具惊喜的奖项后,神州数码系统科技公司副总裁兼基础网络事业部总经理叶海强感言:“我们以十年的积累终于获得全球大奖的突破,这标志着我们在业务管理与战略规划上逐步成熟,对厂家和渠道的价值逐渐被深刻认同,证明我们坚持紧跟厂家技术与产品创新的思路是正确的。回首十年,我们无愧于英雄之师的称号;展望未来,持续创新仍旧是我们不变的诺言。”

失落的F5-BIGIP-LC上线

Posted on by
Reply

从从未接触到开始看文档研究

F5-BIGIP-LC花去了我不少时间,最终在上周5上线,然而,没有想到的是,上线后速度不稳定,具体表现在代理服务器DNS解析会变的很慢,一个晚上,没查出问题原因,最终实施了回退。

不知道是什么原因,下面是我的疑问

通过F5后,内部代理服务器的DNS解析速度有时候变的很慢,执行b conn all delete后 能快一会 但很快又不行,当时是晚上,访问量很小.

我的结构是这样的
2条ISP线连终结于F5 ,F5下联一个PIX

PIX上执行一次翻译,将内部对外发布的服务器地址都NAT成PIX–outside口所在网段(192.168.254.0/24),这样F5 也就不用再单独配路由条目了,所有内部服务器都通过PIX影射到这个网段的某IP上.

PIX的DMZ放了邮件服务器,邮件只发布在电信线路上,因为牵涉到反解,所以,我用irules检查
出去包的源地址,如果是192.168.254.253(邮件服务器在PIX上被翻译后的地址),就强制选择电信线路出去,并在snat管理界面下配置了SNAT ,让邮件服务器出去的地址强制转成MX解析的IP.

DNS服务器也是我们的代理服务器,这个服务器在PIX上是做的PAT(不在DMZ区),被PAT成PIX的outside口地址,通过F5时,走缺省VS,automap成F5上的self ip(电信在先222.222.222.2,网通在后111.111.111.1) .

VPN:L2L方式的VPN,如果用VS的话,发现会出现一些问题,所以我在F5的NAT界面将F5的self ip地址(222.222.222.2)直接NAT成PIX的outside口地址(192.168.254.2)

这些就是我的基本配置,不知道问题能出在哪,功能基本都实现了,可就是会变慢,我PING本城市一个服务器,正常的快的话是小于10MS,可是慢的时候就变成了120多MS.

请各位有经验的朋友能点拨点拨,是不是我的设计思想本身就有问题,例如都是通过2次NAT出去的,其中代理服务器还是PAT.

下面是我的irules :
when CLIENT_ACCEPTED {
#如果源地址是ct_only_class里的,就强行只走CT线路,同时通过SNAT配置界面配置了SNAT
强制将这个地址转成MX解析对应的IP
if { [matchclass [IP::client_addr] equals $::ct_only_class] }{
pool ct_only
}
elseif { [matchclass [IP::local_addr] equals $::cnc_class]}{
#如果目标地址是网通的,走网通优先线路
pool cnc_first
} else {
#其他的一律走电信优先
pool ct_first
}
}

版本会不会是问题?

网通地址段 这个更全些

Posted on by
Reply

最近在配F5 ,需要这些,记录一下

58.17.128.0 255.255.128.0       
58.17.160.0 255.255.252.0       
58.18.0.0 255.255.0.0         
58.19.0.0 255.255.128.0         
58.21.0.0 255.255.0.0         
58.240.0.0 255.254.0.0        
58.240.63.0 255.255.255.0       
58.240.166.0 255.255.255.0      
58.241.73.0 255.255.255.0       
58.244.0.0 255.254.0.0        
60.0.0.0 255.248.0.0          
60.8.0.0 255.252.0.0          
60.10.128.0 255.255.252.0       
60.12.0.0 255.255.0.0         
60.12.7.0 255.255.255.0         
60.13.0.0 255.255.192.0         
60.13.128.0 255.255.128.0       
60.14.0.0 255.254.0.0         
60.16.0.0 255.248.0.0         
60.24.0.0 255.252.0.0         
60.28.0.0 255.254.0.0         
60.28.3.0 255.255.255.0         
60.28.4.0 255.255.252.0         
60.28.8.0 255.255.255.0         
60.28.64.0 255.255.248.0        
60.28.72.0 255.255.254.0        
60.28.80.0 255.255.240.0        
60.28.96.0 255.255.254.0        
60.30.0.0 255.255.0.0         
60.30.0.0 255.255.254.0         
60.30.2.0 255.255.255.0         
60.30.4.0 255.255.254.0         
60.31.0.0 255.255.0.0         
60.208.0.0 255.240.0.0        
60.217.0.0 255.255.240.0        
60.255.0.0 255.255.0.0        
61.52.0.0 255.252.0.0         
61.133.0.0 255.255.128.0        
61.134.96.0 255.255.224.0       
61.134.128.0 255.255.128.0      
61.136.0.0 255.255.128.0        
61.137.128.0 255.255.128.0      
61.138.0.0 255.255.192.0        
61.138.64.0 255.255.192.0       
61.138.128.0 255.255.192.0      
61.139.128.0 255.255.192.0      
61.156.0.0 255.255.0.0        
61.158.0.0 255.255.0.0        
61.159.0.0 255.255.192.0        
61.161.0.0 255.255.192.0        
61.161.128.0 255.255.128.0      
61.162.0.0 255.254.0.0        
61.167.0.0 255.255.0.0        
61.168.0.0 255.255.0.0        
61.176.0.0 255.255.0.0        
61.179.0.0 255.255.0.0        
61.179.119.0 255.255.255.0      
61.180.128.0 255.255.128.0      
61.181.0.0 255.255.0.0        
61.181.26.0 255.255.255.0       
61.181.244.0 255.255.255.0      
61.181.248.0 255.255.255.0      
61.182.0.0 255.255.0.0        
61.189.0.0 255.255.128.0        
124.88.0.0 255.255.0.0        
124.89.0.0 255.255.128.0        
125.32.0.0 255.255.0.0        
125.40.0.0 255.248.0.0        
202.38.164.0 255.255.252.0      
202.75.208.0 255.255.248.0      
202.96.64.0 255.255.224.0       
202.97.128.0 255.255.224.0      
202.97.160.0 255.255.224.0      
202.97.192.0 255.255.192.0      
202.97.224.0 255.255.255.0      
202.97.226.0 255.255.255.0      
202.97.234.0 255.255.255.0      
202.98.0.0 255.255.224.0        
202.99.64.0 255.255.192.0       
202.99.128.0 255.255.192.0      
202.99.192.0 255.255.224.0      
202.99.224.0 255.255.224.0      
202.102.128.0 255.255.192.0     
202.102.136.0 255.255.255.0     
202.102.224.0 255.255.224.0     
202.106.133.0 255.255.255.0     
202.106.143.0 255.255.255.0     
202.107.0.0 255.255.128.0       
202.108.146.0 255.255.254.0     
202.108.181.0 255.255.255.0     
202.110.0.0 255.255.192.0       
202.110.64.0 255.255.192.0      
202.110.192.0 255.255.192.0     
202.110.210.0 255.255.255.0     
202.110.224.0 255.255.255.0     
202.111.128.0 255.255.192.0     
202.122.128.0 255.255.255.0     
202.127.209.0 255.255.255.0     
210.75.144.0 255.255.240.0      
210.76.32.0 255.255.224.0       
210.76.160.0 255.255.224.0      
211.155.232.0 255.255.252.0     
211.162.16.0 255.255.240.0      
218.7.0.0 255.255.0.0 &nbs

p;    
   
218.8.0.0 255.252.0.0         
218.10.53.0 255.255.255.0       
218.12.0.0 255.255.0.0        
218.21.128.0 255.255.128.0      
218.24.0.0 255.254.0.0        
218.26.0.0 255.254.0.0        
218.28.0.0 255.254.0.0        
218.28.68.0 255.255.255.0       
218.56.0.0 255.252.0.0        
218.56.32.0 255.255.255.0       
218.56.48.0 255.255.255.0       
218.56.111.0 255.255.255.0      
218.57.131.0 255.255.255.0      
218.57.136.0 255.255.255.0      
218.57.139.0 255.255.255.0      
218.57.185.0 255.255.255.0      
218.57.212.0 255.255.255.0      
218.58.54.0 255.255.255.0       
218.58.59.0 255.255.255.0       
218.58.76.0 255.255.255.0       
218.60.0.0 255.254.0.0        
218.62.0.0 255.255.128.0        
218.62.33.0 255.255.255.0       
218.67.128.0 255.255.128.0      
218.67.240.0 255.255.252.0      
218.68.0.0 255.254.0.0        
218.68.212.0 255.255.255.0      
218.69.89.0 255.255.255.0       
218.69.93.0 255.255.255.0       
218.69.95.0 255.255.255.0       
218.69.96.0 255.255.255.0       
218.69.102.0 255.255.255.0      
218.69.250.0 255.255.255.0      
218.104.96.0 255.255.240.0      
218.106.96.0 255.255.252.0      
218.246.224.0 255.255.240.0     
219.154.0.0 255.254.0.0       
219.156.0.0 255.254.0.0       
219.158.0.0 255.255.224.0       
219.158.26.0 255.255.255.0      
219.158.32.0 255.255.224.0      
219.159.0.0 255.255.192.0       
219.232.64.0 255.255.224.0      
220.114.96.0 255.255.224.0      
220.248.128.0 255.255.224.0     
221.0.0.0 255.252.0.0         
221.5.128.0 255.255.128.0       
221.5.152.0 255.255.255.0       
221.6.0.0 255.254.0.0         
221.8.0.0 255.254.0.0         
221.8.12.0 255.255.255.0        
221.10.0.0 255.255.0.0        
221.11.0.0 255.255.128.0        
221.11.128.0 255.255.192.0      
221.11.192.0 255.255.224.0      
221.11.224.0 255.255.224.0      
221.12.0.0 255.255.128.0        
221.12.128.0 255.255.192.0      
221.13.0.0 255.255.0.0  

国内各ISP及教育科研网段.F5必备!

Posted on by
Reply

教育网IP段
ip route 162.105.0.0 255.255.0.0 *.*.*.*
ip route 166.111.0.0 255.255.0.0 *.*.*.*
ip route 202.4.128.0 255.255.224.0 *.*.*.*
ip route 202.38.96.0 255.255.224.0 *.*.*.*
ip route 202.112.0.0 255.254.0.0 *.*.*.*
ip route 202.204.0.0 255.252.0.0 *.*.*.*

ip route 210.31.0.0 255.255.0.0 *.*.*.*
ip route 211.68.0.0 255.255.0.0 *.*.*.*
ip route 211.71.0.0 255.255.0.0 *.*.*.*
ip route 211.81.0.0 255.255.0.0 *.*.*.*
ip route 211.82.0.0 255.255.0.0 *.*.*.*
ip route 219.242.0.0 255.254.0.0 *.*.*.*
ip route 219.224.0.0 255.254.0.0 *.*.*.*
ip route 219.226.0.0 255.255.0.0 *.*.*.*
ip route 222.28.0.0 255.252.0.0 *.*.*.*

西安:
ip route 202.117.0.0 255.255.0.0 *.*.*.*
ip route 202.200.0.0 255.254.0.0 *.*.*.*
ip route 210.26.0.0 255.254.0.0 *.*.*.*
ip route 218.195.0.0 255.255.0.0 *.*.*.*
ip route 219.244.0.0 255.252.0.0 *.*.*.*
ip route 222.23.0.0 255.255.0.0 *.*.*.*
ip route 222.24.0.0 255.254.0.0 *.*.*.*

成都:
ip route 202.115.0.0 255.255.0.0 *.*.*.*
ip route 210.40.0.0 255.254.0.0 *.*.*.*
ip route 211.83.0.0 255.255.0.0 *.*.*.*
ip route 218.194.0.0 255.255.0.0 *.*.*.*
ip route 219.221.0.0 255.255.0.0 *.*.*.*
ip route 222.18.0.0 255.254.0.0 *.*.*.*

广州:
ip route 202.38.192.0 255.255.192.0 *.*.*.*
ip route 202.116.0.0 255.255.0.0 *.*.*.*
ip route 202.192.0.0 255.254.0.0 *.*.*.*
ip route 210.36.0.0 255.254.0.0 *.*.*.*
ip route 211.66.0.0 255.255.0.0 *.*.*.*
ip route 218.192.0.0 255.255.0.0 *.*.*.*
ip route 219.222.0.0 255.254.0.0 *.*.*.*
ip route 219.227.0.0 255.255.0.0 *.*.*.*
ip route 222.16.0.0 255.254.0.0 *.*.*.*

武汉:
ip route 202.114.0.0 255.255.0.0 *.*.*.*
ip route 202.196.0.0 255.254.0.0 *.*.*.*
ip route 210.42.0.0 255.254.0.0 *.*.*.*
ip route 211.69.0.0 255.255.0.0 *.*.*.*
ip route 211.67.0.0 255.255.0.0 *.*.*.*
ip route 211.84.0.0 255.254.0.0 *.*.*.*
ip route 218.196.0.0 255.254.0.0 *.*.*.*
ip route 222.20.0.0 255.254.0.0 *.*.*.*
ip route 222.22.0.0 255.255.0.0 *.*.*.*

南京:
ip route 202.38.64.0 255.255.224.0 *.*.*.*
ip route 202.119.0.0 255.255.0.0 *.*.*.*
ip route 202.194.0.0 255.254.0.0 *.*.*.*
ip route 210.44.0.0 255.254.0.0 *.*.*.*
ip route 210.28.0.0 255.254.0.0 *.*.*.*
ip route 211.64.0.0 255.254.0.0 *.*.*.*
ip route 211.70.0.0 255.255.0.0 *.*.*.*
ip route 211.86.0.0 255.254.0.0 *.*.*.*
ip route 219.218.0.0 255.254.0.0 *.*.*.*
ip route 219.230.0.0 255.254.0.0 *.*.*.*

上海:
ip route 202.120.0.0 255.254.0.0 *.*.*.*
ip route 210.32.0.0 255.252.0.0 *.*.*.*
ip route 211.80.0.0 255.255.0.0 *.*.*.*
ip route 218.193.0.0 255.255.0.0 *.*.*.*
ip route 219.220.0.0 255.255.0.0 *.*.*.*
ip route 219.228.0.0 255.254.0.0 *.*.*.*

沈阳:
ip route 202.118.0.0 255.255.0.0 *.*.*.*
ip route 202.198.0.0 255.254.0.0 *.*.*.*
ip route 210.46.0.0 255.254.0.0 *.*.*.*
ip route 210.30.0.0 255.255.0.0 *.*.*.*
ip route 219.216.0.0 255.254.0.0 *.*.*.*

MISC:
ip route 210.25.128.0 255.255.192.0 *.*.*.*

一体配置:
ip route 162.105.0.0 255.255.0.0 *.*.*.*
ip route 166.111.0.0 255.255.0.0 *.*.*.*
ip route 202.4.128.0 255.255.224.0 *.*.*.*
ip route 202.38.64.0 255.255.224.0 *.*.*.*
ip route 202.38.96.0 255.255.224.0 *.*.*.*
ip route 202.38.192.0 255.255.192.0 *.*.*.*
ip route 202.112.0.0 255.254.0.0 *.*.*.*
ip route 202.114.0.0 255.255.0.0 *.*.*.*
ip route 202.115.0.0 255.255.0.0 *.*.*.*
ip route 202.116.0.0 255.255.0.0 *.*.*.*
ip route 202.117.0.0 255.255.0.0 *.*.*.*
ip route 202.118.0.0 255.255.0.0 *.*.*.*
ip route 202.119.0.0 255.255.0.0 *.*.*.*
ip route 202.120.0.0 255.254.0.0 *.*.*.*
ip route 202.192.0.0 255.254.0.0 *.*.*.*
ip route 202.194.0.0 255.254.0.0 *.*.*.*
ip route 202.196.0.0 255.254.0.0 *.*.*.*
ip route 202.198.0.0 255.254.0.0 *.*.*.*
ip route 202.200.0.0 255.254.0.0 *.*.*.*
ip route 202.204.0.0 255.252.0.0 *.*.*.*
ip route 210.25.128.0 255.255.192.0 *.*.*.*
ip route 210.26.0.0 255.254.0.0 *.*.*.*
ip route 210.28.0.0 255.254.0.0 *.*.*.*
ip route 210.30.0.0 255.255.0.0 *.*.*.*
ip route 210.31.0.0 255.255.0.0 *.*.*.*
ip route 210.32.0.0 255.252.0.0 *.*.*.*
ip route 210.36.0.0 255.254.0.0 *.*.*.*
ip route 210.40.0.0 255.254.0.0 *.*.*.*
ip route 210.42.0.0 255.254.0.0 *.*.*.*
ip route 210.44.0.0 255.254.0.0 *.*.*.*
ip route 210.46.0.0 255.254.0.0 *.*.*.*
ip route 211.64.0.0 255.254.0.0 *.*.*.*
ip route 211.66.0.0 255.255.0.0 *.*.*.*
ip route 211.67.0.0 255.255.0.0 *.*.*.*
ip route 211.68.0.0 255.255.0.0 *.*.*.*
ip route 211.69.0.0 255.255.0.0 *.*.*.*
ip route 211.70.0.0 255.255.0.0 *.*.*.*
ip route 211.71.0.0 255.255.0.0 *.*.*.*
ip route 211.80.0.0 255.255.0.0 *.*.*.*
ip route 211.81.0.0 255.255.0.0 *.*.*.*
ip route 211.82.0.0 255.255.0.0 *.*.*.*
ip route 211.83.0.0 255.255.0.0 *.*.*.*
ip route 211.84.0.0 255.254.0.0 *.*.*.*
ip route 211.86.0.0 255.254.0.0 *.*.*.*
ip route 218.192.0.0 255.255.0.0 *.*.*.*
ip route 218.193.0.0 255.255.0.0 *.*.*.*
ip route 218.194.0.0 255.255.0.0 *.*.*.*
ip route 218.195.0.0 255.255.0.0 *.*.*.*
ip route 218.196.0.0 255.254.0.0 *.*.*.*
ip route 219.216.0.0 255.254.0.0 *.*.*.*
ip route 219.218.0.0 255.254.0.0 *.*.*.*
ip route 219.220.0.0 255.255.0.0 *.*.*.*
ip route 219.221.0.0 255.255.0.0 *.*.*.*
ip route 219.222.0.0 255.254.0.0 *.*.*.*
ip route 219.224.0.0 255.254.0.0 *.*.*.*
ip route 219.226.0.0 255.255.0.0 *.*.*.*
ip route 219.227.0.0 255.255.0.0 *.*.*.*
ip route 219.228.0.0 255.254.0.0 *.*.*.*
ip route 219.230.0.0 255.254.0.0 *.*.*.*
ip route 219.242.0.0 255.254.0.0 *.*.*.*
ip route 219.244.0.0 255.252.0.0 *.*.*.*
ip route 222.16.0.0 255.254.0.0 *.*.*.*
ip route 222.18.0.0 255.254.0.0 *.*.*.*
ip route 222.20.0.0 255.254.0.0 *.*.*.*
ip route 222.22.0.0 255.255.0.0 *.*.*.*
ip route 222.23.0.0 255.255.0.0 *.*.*.*
ip route 222.24.0.0 255.254.0.0 *.*.*.*
ip route 222.28.0.0 255.252.0.0 *.*.*.*

##############################################################

中国电信

58.32.0.0/13
202.97.32.0/19
58.40.0.0/15
202.97.64.0/19
58.42.0.0/16
202.97.96.0/20
58.43.0.0/16
202.97.112.0/20
58.44.0.0/14
202.98.32.0/21
58.48.0.0/13
202.98.48.0/20
58.59.128.0/17
202.98.64.0/19
58.60.0.0/14
202.98.96.0/21
58.208.0.0/12
202.98.128.0/19
59.32.0.0/13
202.98.160.0/21
59.40.0.0/15
202.98.168.0/21
59.42.0.0/16
202.98.192.0/21
59.44.0.0/14
202.98.200.0/21
59.48.0.0/16
202.98.208.0/20
59.49.0.0/17
202.98.224.0/21
59.49.128.0/17
202.98.232.0/21
59.50.0.0/16
202.98.240.0/20
59.51.0.0/17
202.99.192.0/21
59.51.128.0/17
202.100.96.0/21
59.52.0.0/14
202.100.104.0/21
59.56.0.0/14
202.100.112.0/20
59.60.0.0/15
202.100.136.0/21
59.62.0.0/15
202.100.160.0/21
60.160.0.0/15
202.100.168.0/21
60.162.0.0/15
202.100.176.0/20
60.164.0.0/15
202.100.192.0/21
60.166.0.0/15
202.100.208.0/20
60.168.0.0/13
202.100.224.0/19
60.176.0.0/12
202.101.0.0/18
61.133.128.0/17
202.101.64.0/19
61.134.0.0/18
202.101.96.0/19
61.134.64.0/19
202.101.128.0/18
61.136.128.0/17
202.101.224.0/21
61.137.0.0/17
202.102.0.0/19
61.138.192.0/18
202.102.32.0/19
61.139.0.0/17
202.102.64.0/18
61.139.192.0/18
202.103.0.0/21
61.140.0.0/14
202.103.8.0/21
61.144.0.0/14
202.103.16.0

/20
61.152.0.0/14 r />202.103.32.0/19
61.157.0.0/16
202.103.96.0/21
61.159.64.0/18
202.103.192.0/19
61.159.128.0/17
202.103.224.0/21
61.160.0.0/16
202.104.0.0/15
61.161.64.0/18
202.107.128.0/17
61.164.0.0/15
202.109.0.0/16
61.166.0.0/16
202.110.128.0/18
61.169.0.0/16
202.111.0.0/17
61.170.0.0/15
218.4.0.0/15
61.172.0.0/14
218.6.0.0/16
61.177.0.0/16
218.13.0.0/16
61.178.0.0/16
218.14.0.0/15
61.180.0.0/17
218.16.0.0/14
61.183.0.0/16
218.20.0.0/16
61.184.0.0/14
218.21.0.0/17
61.188.0.0/16
218.22.0.0/15
61.189.128.0/17
218.62.128.0/17
61.190.0.0/15
218.63.0.0/16
125.64.0.0/13
218.64.0.0/15
125.72.0.0/16
218.66.0.0/16
125.73.0.0/16
218.67.0.0/17
125.74.0.0/15
218.70.0.0/15
125.76.0.0/17
218.72.0.0/13
125.80.0.0/13
218.80.0.0/12
125.88.0.0/13
219.128.0.0/12
125.104.0.0/13
219.144.0.0/13
125.112.0.0/12
219.152.0.0/15
202.96.96.0/21
219.159.64.0/18
202.96.104.0/21
219.159.128.0/17
202.96.112.0/20
220.160.0.0/11
202.96.128.0/21
221.224.0.0/13
202.96.136.0/21
221.232.0.0/14
202.96.144.0/20
221.236.0.0/15
202.96.160.0/21
221.239.128.0/17
202.96.168.0/21
222.72.0.0/15
202.96.176.0/20
222.75.0.0/16
202.96.200.0/21
222.76.0.0/14
202.96.208.0/20
222.80.0.0/15
202.96.224.0/21
222.82.0.0/16
202.97.0.0/21
222.83.0.0/17
202.97.8.0/21
222.83.128.0/17
202.97.16.0/20
222.84.0.0/16
222.219.0.0/16
222.85.128.0/17
222.220.0.0/15
222.86.0.0/15
222.240.0.0/13
222.90.0.0/15
58.56.0.0/15
222.92.0.0/14
58.58.0.0/16
222.172.128.0/17
58.59.0.0/17
222.176.0.0/13
221.238.0.0/16
222.184.0.0/13
221.239.0.0/17
222.208.0.0/13
222.74.0.0/16
222.216.0.0/15
222.85.0.0/17
222.218.0.0/16
222.88.0.0/15
222.172.0.0/17
222.168.0.0/15
222.173.0.0/16
222.174.0.0/15
222.222.0.0/15

#############################################################

中国网通

58.16.0.0/16
202.99.208.0/20
58.17.0.0/17
202.99.224.0/21
58.17.128.0/17
202.99.232.0/21
58.18.0.0/16
202.99.240.0/20
58.19.0.0/16
202.102.128.0/21
58.20.0.0/16
202.102.224.0/21
58.21.0.0/16
202.102.232.0/21
58.22.0.0/15
202.106.0.0/16
58.240.0.0/15
202.107.0.0/17
58.242.0.0/15
202.108.0.0/16
58.244.0.0/15
202.110.0.0/17
58.246.0.0/15
202.111.128.0/18
58.248.0.0/13
203.93.8.0/24
60.0.0.0/13
203.93.192.0/18
60.8.0.0/15
210.13.128.0/17
60.10.0.0/16
210.14.160.0/19
60.11.0.0/16
210.14.192.0/19
60.12.0.0/16
210.15.32.0/19
60.13.0.0/18
210.15.96.0/19
60.13.128.0/17
210.15.128.0/18
60.14.0.0/15
210.21.0.0/16
60.16.0.0/13
210.52.128.0/17
60.24.0.0/14
210.53.0.0/17
60.30.0.0/16
210.53.128.0/17
60.31.0.0/16
210.74.96.0/19
60.208.0.0/13
210.74.128.0/19
60.216.0.0/15
210.82.0.0/15
60.218.0.0/15
218.8.0.0/14
60.220.0.0/14
218.12.0.0/16
61.48.0.0/13
218.21.128.0/17
61.133.0.0/17
218.24.0.0/14
61.134.96.0/19
218.56.0.0/14
61.134.128.0/17
218.60.0.0/15
61.135.0.0/16
218.67.128.0/17
61.137.128.0/17
218.68.0.0/15
61.138.0.0/17
218.104.0.0/14
61.138.128.0/18
219.154.0.0/15
61.139.128.0/18
219.156.0.0/15
61.148.0.0/15
219.158.0.0/17
61.156.0.0/16
219.158.128.0/17
61.159.0.0/18
219.159.0.0/18
61.161.0.0/18
220.252.0.0/16
61.161.128.0/17
221.0.0.0/15
61.162.0.0/16
221.2.0.0/16
61.163.0.0/16
221.3.0.0/17
61.167.0.0/16
221.3.128.0/17
61.168.0.0/16
221.4.0.0/16
61.176.0.0/16
221.5.0.0/17
61.179.0.0/16
221.5.128.0/17
61.181.0.0/16
221.6.0.0/16
61.182.0.0/16
221.7.0.0/19
61.189.0.0/17
221.7.32.0/19
125.32.0.0/16
221.7.64.0/19
125.35.128.0/17
221.7.96.0/19
125.36.0.0/14
221.10.0.0/16
125.40.0.0/13
221.11.0.0/17
202.96.0.0/18
221.11.128.0/18
202.96.64.0/21
221.11.192.0/19
202.96.72.0/21
221.12.0.0/17
202.97.128.0/18
221.12.128.0/18
202.97.224.0/21
221.13.0.0/18
202.97.240.0/20
221.13.64.0/19
202.98.0.0/21
221.13.96.0/19
202.98.8.0/21
221.13.128.0/17
202.99.64.0/19
221.14.0.0/15
202.99.96.0/21
221.192.0.0/15
202.99.128.0/19
221.194.0.0/16
202.99.160.0/21
221.195.0.0/16
202.99.168.0/21
221.196.0.0/15
202.99.176.0/20
221.198.0.0/16
221.208.0.0/14
221.199.0.0/19
221.212.0.0/16
221.199.32.0/20
221.213.0.0/16
221.199.128.0/18
221.216.0.0/13
221.199.192.0/20
222.128.0.0/14
221.200.0.0/14
222.132.0.0/14
221.204.0.0/15
222.136.0.0/13
221.206.0.0/16
222.160.0.0/15
221.207.0.0/18
222.162.0.0/16
221.207.64.0/18
222.163.0.0/19
221.207.128.0/17
222.163.32.0/19
222.163.64.0/18
222.163.128.0/17