AR2240c-s，多线，PPPOE线路拥塞求助...

只贴核心部分，其他都是没变

//负载均衡设置

ip load-balance hash src-ip

//dns代理解析

dns resolve
dns server 61.139.2.69
dns server 202.98.96.68
dns proxy enable

//设置ACL规则，按 ip段和用途划分了一下

acl name srvs 2101 
 rule 0 permit source 172.16.0.0 0.0.0.31
acl name nmt 2103                        
 rule 0 permit source 172.16.0.32 0.0.0.31
 rule 10 permit source 172.16.0.128 0.0.0.127
acl name fst 2104 
 rule 0 permit source 172.16.0.64 0.0.0.63
acl number 2106 
 rule 0 permit source 172.16.1.0 0.0.0.255
acl number 2107 
 rule 0 permit source 172.16.2.0 0.0.0.255
acl number 2108 
 rule 5 permit source 172.16.3.0 0.0.0.255

//这个是所有NAT设置，outbound应用到了所有线路上

acl name ALLNAT 3000 
 rule 0 permit ip source 172.16.0.0 0.0.3.255

//禁用外网ssh登陆的

acl name sshlist 3020 
 rule 0 permit tcp source 172.16.0.0 0.0.3.255 destination-port eq 22
 rule 10 deny tcp destination-port eq 22

//内网互通和内网访问路由器的

acl number 3888 
 rule 0 permit ip source 172.16.0.0 0.0.3.255 destination 172.16.0.1 0
 rule 5 permit ip source 172.16.0.0 0.0.3.255 destination 172.16.0.0 0.0.3.255

//2103 走链路1

traffic classifier lianlu1 operator or
 if-match acl 2103

//链路2是默认线路，所有没设定的走链路2

traffic classifier lianlu2 operator or

//2107，也就是 ip172.16.2.x 的走链路3

traffic classifier lianlu3 operator or
 if-match acl 2107

//2106和2018，也就是 ip172.16.1.x，3.x 的走链路4

traffic classifier lianlu4 operator or
 if-match acl 2108

 if-match acl 2106

//内网互通策略

traffic classifier lan2lan operator or
 if-match acl 3888

//各条线路的行为

traffic behavior lianlu1
 redirect ip-nexthop 118.112.xxx.1
traffic behavior lianlu2
 redirect ip-nexthop 182.148.xxx.1

traffic behavior lianlu3

 redirect interface Dialer1
traffic behavior lianlu4
 redirect interface Dialer2
traffic behavior lan2lan 

//选路规则

traffic policy xuanlu
 classifier lan2lan behavior lan2lan precedence 5
 classifier lianlu1 behavior lianlu1 precedence 10
 classifier lianlu3 behavior lianlu3 precedence 20

 classifier lianlu4 behavior lianlu4 precedence 30

//打开了这些，这样映射的vpn服务器才能用

nat alg rtsp enable
nat alg sip enable
nat alg pptp enable

//拨号设置，未设置MTU，如果设置MTU1492， 1460等等，仍然一样会掉包

interface Dialer1
 link-protocol ppp
 ppp chap user xxxxxxxxxxx           
 ppp chap password cipher %^%#I/<6G(vdZ5,mpzK.TOM0,[*e@,K*0$tawmC9")V%%^%#
 ppp pap local-user xxxxxxxxxxxx password cipher %^%#Z~@eY)7n\4ST1|.l\YN%hITZ0e<Q$S:gfk+&h=!C%^%#
 ppp ipcp dns admit-any
 ppp ipcp dns request
 description WAN3
 tcp adjust-mss 1200
 ip address ppp-negotiate
 dialer user arweb
 dialer bundle 1
 dialer number 1 autodial
 dialer-group 1
 nat outbound 3000

//dialer2类似，不贴了

//LAN口，做了流量限制

interface GigabitEthernet0/0/4
 description LAN
 tcp adjust-mss 1200
 ip address 172.16.0.1 255.255.252.0
 qos car inbound source-ip-address range 172.16.0.32 to 172.16.0.63 per-address cir 4800 cbs 902400 pbs 1502400 green pass yellow pass red discard
 qos car inbound source-ip-address range 172.16.0.64 to 172.16.0.127 per-address cir 6400 cbs 1203200 pbs 2003200 green pass yellow pass red discard
 qos car inbound source-ip-address range 172.16.0.128 to 172.16.0.254 per-address cir 4800 cbs 902400 pbs 1502400 green pass yellow pass red discard
 qos car inbound source-ip-address range 172.16.1.1 to 172.16.3.254 per-address cir 2400 cbs 451200 pbs 751200 green pass yellow pass red discard
 qos car outbound destination-ip-address range 172.16.1.1 to 172.16.3.254 per-address cir 4096 cbs 770048 pbs 1282048 green pass yellow pass red discard
 qos car outbound destination-ip-address range 172.16.0.32 to 172.16.0.63 per-address cir 4800 cbs 902400 pbs 1502400 green pass yellow pass red discard
 qos car outbound destination-ip-address range 172.16.0.64 to 172.16.0.127 per-address cir 6400 cbs 1203200 pbs 2003200 green pass yellow pass red discard
 qos car outbound destination-ip-address range 172.16.0.128 to 172.16.0.254 per-address cir 4800 cbs 902400 pbs 1502400 green pass yellow pass red discard
 traffic-policy xuanlu inbound

//WAN1

interface GigabitEthernet0/0/5
 description WAN1
 tcp adjust-mss 1200
 ip address 118.112.xxx.192 255.255.255.0
 nat outbound 3000
 traffic-filter inbound acl name sshlist

//WAN2， nat group 也不贴了

interface GigabitEthernet0/0/6
 description WAN2
 tcp adjust-mss 1200
 ip address 182.148.xxx.xxx 255.255.255.0    
 nat outbound 3000 address-group 3
 traffic-filter inbound acl name sshlist

#
interface GigabitEthernet0/0/7
 pppoe-client dial-bundle-number 1
 description WAN3

#
interface GigabitEthernet0/0/8
 pppoe-client dial-bundle-number 2
 description WAN4

//默认的

dialer-rule
 dialer-rule 1 ip permit
 dialer-rule 2 ip permit

//4条静态路由，其中 WAN2优先级高一些

ip route-static 0.0.0.0 0.0.0.0 GigabitEthernet0/0/5 118.112.xxx.1
ip route-static 0.0.0.0 0.0.0.0 GigabitEthernet0/0/6 182.148.xxx.1 preference 40
ip route-static 0.0.0.0 0.0.0.0 Dialer1
ip route-static 0.0.0.0 0.0.0.0 Dialer2

就这些配置，没其他额外的 配置