Manuel d'utilisation / d'entretien du produit 9308M du fabricant HP (Hewlett-Packard)
Aller à la page of 710
advanced configuration and management guide www .hp.com/go/ hp procur ve hp procur ve routing switches 9304m, 9308m, and 6308m-sx and the hp procur ve switch 6208m-sx (software release 6.
Boo k 2: Adv a nced Con f iguration an d Manag e ment G u ide for the HP ProCur ve Routing Sw itches 9304M, 9308M, 6308M-S X a nd the HP ProCurv e S witch 6208M-SX (So ftware R eleas es 6.
Cop y right 200 0 Hewlett-Packard Company All right s rese rve d . R e production , adap tation or tra nsl ation wi thout pri o r w ri tten per mission is pr ohibit ed, ex cept a s a llo w ed und er the c opy right la ws.
Organization of Product D o cum en t ati on Read Me First Th e “ Re ad Me Firs t ” docum ent inc lu des so ftw a r e relea se informati on, a b r ief “ Ge tting Starte d ” sect ion, an access .
iv.
Conte n ts G ETTING S TAR T ED ... ..... ....... ....... ........ ....... ....... ..... ....... ....... ....... ........ .... ... . 1-1 I NTRODUCTI ON . ............ ............. .................... ................... ................... ..........
Advanced C onfigu r ation and Management G u id e U SA GE G UIDELINE S FOR A CC ESS C ONTROL L ISTS (A CL S ) ................... .................... ................... ............. ... 3- 2 AC L S UP P ORT ON TH E HP P RODUCT S ................. .
C ONFIGURING A D VAN CED F E A TURE S ................... .................... ............ .................... ................... ............. . 5 -13 F AS T P ORT S PA N ................ ............. .................... ................... ....
Advanced C onfigu r ation and Management G u id e C ONFIGURING D OMAI N N AM E S ER VER (DNS) R ESOL VER ... ................... ................... ............. ............. . 6 -74 C HANGI NG THE TTL T HRE SH OLD ................... ..............
E N ABL E R OUTE R ED ISTRIBUTI ON ............. ................... ................... .................... ............. ................... . 8-28 D I SABLE OR R E - ENABLE L OAD S HA RING ............... ............. ................... ........
Advanced C onfigu r ation and Management G u id e C ONFIGURING G LOBAL P AR AMETER S ....... ................... ................... ............. .................... ................... . 9-14 C ONFIGURING PIM I NTE RFA CE P A R AMETER S . .........
C HANGI NG THE K EE P A LIVE T IM E AN D H OL D T IM E ............. ................... ............. ................... ............ 10 -23 E N ABLIN G F AS T E XTE RNA L F ALLO V ER ........... .................... ................... ............
Advanced C onfigu r ation and Management G u id e D YN AMIC AL LY R EQU E STIN G A R OUT E R EF RESH FR O M A BGP 4 N E IGHB OR ......... ................... .......... 10-11 4 C LOSING OR R ESETTIN G A N EIGHBOR S ESSI ON ................. ..........
C ONFIGURATION E XAMPL ES . ............. ................... ............. ................... .................... ................... ............ 12 -30 VR RP E XA MPLE ........... ................... .................... ................... .....
Advanced C onfigu r ation and Management G u id e D I SPLAYI N G THE I PX F ORW A RDING C AC HE .... .................... ................... ................... .................... ..... 14 -19 D I SPLAYI N G THE I PX R OUTE T AB L E ......... .....
802.1 P T A GGI NG ... .................... ................... .................... ................... ............. ................... ............. .1 6-5 S PA NNING T RE E P ROT O COL (STP) ...................... ................... ............
Advanced C onfigu r ation and Management G u id e D I SPLAYI N G S YST E M -W IDE VLA N I NFORM A TIO N ................ ............ .................... ................... ............ 16 -57 D I SPLAYI N G VLAN I NFORM AT ION FOR S PE CI FI C P ORTS .
Q UALITY - OF -S ER VICE P OLICI ES ............... ................... ............. ................... .................... ................... .. C- 5 L AYER 3 P OL IC IE S ............................ ............. .................... ..........
Advanced C onfigu r ation and Management G u id e xvii i.
Chap ter 1 Getting Started Introductio n This gu ide describe s how to inst all , c onfi gur e, and monitor th e follo wi ng devi ces : • HP Pro C urv e Ro uting Sw it ch 9308M • HP Pro C urv e Ro.
Ins t allat i on and G e tting Started Guide T ermi nology The f o llowin g table de fin es basic pro du c t t e rms u sed in this gui de . Product T e rms T e rm De finit i on chassi s or Ch assis dev i ce A sw it ch or rout ing sw it ch tha t acc ept s o p ti onal modu les o r po we r supp lies.
Ge tting Starte d me thod for e l ectro n ically searc h ing e i the r indi vid ual c hap ters or an enti r e m an ual for sp ecific topic s. Fo r a br ief des cr iption of the CD con t ents and ho w to u se the CD to sa ve tim e, do t he f o llowing: 1.
Ins t allat i on and G e tting Started Guide • BGP4 re-ad ver tis es BGP rou t es even w hen O SPF or RI P rou t es to the sa me desti nation have a l owe r c ost • Re dist ri bu tion ch ange s ta.
Ge tting Starte d • Super Aggregat ed VLAN s • Support fo r simultaneous T e lne t c onf igu r ati on by multi p le users • New CLI comma nd for disp la ying dyn amic me mo ry utilizati on • S.
Ins t allat i on and G e tting Started Guide 1 - 6.
Chap ter 2 Qu ality o f Servi c e (QoS) Software release 0 6 .6 . X pro vi des the followin g enhance m en ts to QoS on the HP 9 304 M, H P 9308M , and H P 6 208M-SX rout ing sw it ches. • Y o u can c hoose be twee n a strict qu euing method an d a we ighte d q ueuing metho d.
Advanced C onfigu r ation and Management G u id e • Y o u can c lassi fy pa ckets a nd a ssign them to spe cif ic queue s based on the fol l ow i ng crit eria : • Incomi ng port (so met imes calle.
Quali ty of Servi ce (Q oS) Qu eu ing Met hod s In softw are rel ease 06.6. X a nd hig her , you c an confi gure the device to u se one of the fol lowing que uin g met hods: • Wei ghte d – A w ei ght ed fair queui ng a l gorith m is used t o rotate servi ce among th e four queues .
Advanced C onfigu r ation and Management G u id e Configuring the Q u eues Each of t he four queues ha s the fol l ow i ng c onf igurab le para met ers : • The queu e n ame • The m inim um percentag e of a port ’ s outbound ban dwidth guarant eed to the que ue.
Quali ty of Servi ce (Q oS) Changing the Mi nimum Bandwidth P ercen tage s of the Que ues If yo u a r e u s in g the w e igh t ed fai r queui ng mechani sm inste ad of t he s t ri ct mec ha n is m, y .
Advanced C onfigu r ation and Management G u id e The f o llowin g table s how s one fu ll queue cycl e using the d e fa ult bandwidth p e rcen tages. qosp3 bandwidth % = 80 we igh t = 4 qosp2 bandwidth % = 15 we igh t = 3 qosp1 ba ndwid th % = 3. 3 we ight = 2 qosp0 ba ndwidt h % = 1.
Quali ty of Servi ce (Q oS) Figure 2. 1 illustrates a cy cle through the q u e ues . q3 q3 q3 q3 q3 q3 q3 q3 q3 q3 q3 q3 q3 q3 q3 q3 q3 q3 q3 q3 q2 q3 q3 q3 q3 q3 q3 q3 q3 q3 q3 q3 q3 q3 q3 q3 q3 q3 q.
Advanced C onfigu r ation and Management G u id e USING THE CL I T o cha nge the minimum guara n teed bandwid th p e rcent ages o f the q ueues, en ter c omm and s s uch as t he follo win g. No te that thi s exampl e u ses t he d e fault queue names .
Quali ty of Servi ce (Q oS) USING THE WEB MANAG EME NT INTERF ACE 1. L og on to t he dev ic e usi ng a val id us er n ame and pass wo rd for read -write ac cess . The Syste m con f igurat ion di alog is dis play ed. 2. Cl ick on th e plus si gn next t o Conf igure in the tree view to expan d the l ist of confi gura t ion optio ns .
Advanced C onfigu r ation and Management G u id e 7. Select th e Sa ve link at t he b o tto m of the d ial og, the n select Y es when promp t ed to sa ve the confi gura t io n c hange to the sta r tup - co nfig file o n the d e vice ’ s f l ash m emo ry .
Quali ty of Servi ce (Q oS) Assign i ng QoS Prior iti es to T ra ffic By defau l t, traf fic of the fol l ow i ng cat egories is forwarded u si ng the best-e f fort queue (qo sp0 ): • Incomi ng port.
Advanced C onfigu r ation and Management G u id e USING THE WEB MANAG EME NT INTERF ACE 1. L og on to t he dev ic e usi ng a val id us er n ame and pass wo rd for read -write ac cess . The Syste m con f igurat ion di alog is dis play ed. 2. Clic k on the Port link to d isp la y the Port tabl e.
Quali ty of Servi ce (Q oS) USING THE WEB MANAG EME NT INTERF ACE 1. L og on to t he dev ic e usi ng a val id us er n ame and pass wo rd for read -write ac cess . The Syste m con f igurat ion di alog is dis play ed. 2. Cl ick on th e plus si gn next t o Conf igure in the tree view to expan d the l ist of confi gura t ion optio ns .
Advanced C onfigu r ation and Management G u id e Reassi gning 80 2.1p Pr iori ties to Differ en t Queue s T agged pri o ri ty appli e s to tagge d packets that come in fr om tagge d p o rts . The se pa cket s hav e a tag in th e header that specif ies the packet ’ s VLAN ID an d i t s 8 02.
Quali ty of Servi ce (Q oS) 4. Clic k on the Bind link to disp lay the Q o S 8 02. 1p to Q oS Profi le Binding co nfiguration pane l, a s sho w n i n th e followin g figure .
Advanced C onfigu r ation and Management G u id e USING THE WEB MANAG EME NT INTERF ACE 1. L og on to t he dev ic e usi ng a val id us er n ame and pass wo rd for read -write ac cess .
Quali ty of Servi ce (Q oS) 4. Enter o r ed it the M AC a ddre ss, if ne eded. Specify the addre ss in the follo w i ng format : xx-x x-xx -x x- xx -x x. 5. Change the VL AN numbe r if needed by editing the value in the VLAN I D fie l d. 6. Selec t th e p o rt n um ber from th e Slot (for C hassis devi ces) and Port p u ll do wn lists .
Advanced C onfigu r ation and Management G u id e The <ope rator> param e ter ap pli es on ly if y ou us e th e tc p or udp para met er above . Us e the <oper ator> pa ram e ter to specify the co mp ari son c ond ition for th e s pecif ic TCP o r UDP po rts.
Quali ty of Servi ce (Q oS) Figure 2. 2 and F i gure 2 . 3 s how the CLI synta x fo r confi gu r ing a L ay e r 4 Qo S policy on an H P rou t ing switch.
Advanced C onfigu r ation and Management G u id e co ntinue d fr o m pr e v iou s pa ge udp eq gt bootpc | bo otps | lt dns | tftp | neq ntp | rad i us | ra dius -o ld | rip | sn mp | snmp-t rap | <.
Quali ty of Servi ce (Q oS) Figure 2. 4 show s the C LI sy nta x for c onf igu r in g a Qo S polic y on an H P sw i t ch . The v al ue “ <CR> ” m ean s “ ca rriage ret u rn ” , als o kno w n a s t he Enter key .
Advanced C onfigu r ation and Management G u id e Rout in g S w itc h T o assig n a p r iority of 4 to a ll H TTP traf fic on port 3/12 on an HP 9304M or HP 930 8M routin g switch, p e rfo rm the follo w ing st eps : 1. L og on to t he dev ic e usi ng a val id us er n ame and pass wo rd for read-w rite acce ss .
Quali ty of Servi ce (Q oS) • os pf • tc p • ud p In thi s exa m ple, en ter t c p. 1 1. If you e n tere d t cp or u dp, you al so can s elect on e o f the fol l ow ing comparis on operators from the O pe r ato r field . • Equal – Th e p olicy applies t o the TCP or UDP po rt name or n umber you e nter in th e T CP/UDP po rt fi el d .
Advanced C onfigu r ation and Management G u id e 17. Cli ck the chec k box ne xt to I n Filte r , O ut Fil t er , or n e xt to both optio ns to indica te the traf fic direc t ion to whic h y ou are applying the polic y . • The I n Filte r op tion appli es the polic y to p acket s r e ceived in the port .
Quali ty of Servi ce (Q oS) Assigning Appl eT alk Sock ets to P r ior i ty Queue s By defau l t, all App l eT alk s ockets are in the b est ef fort queue (qo sp0 ). T o assig n an Ap ple T alk socket t o a hig her pr iority queue, use e i th er of the fol lowing me tho ds.
Advanced C onfigu r ation and Management G u id e Configuring a Utilizat i on List fo r an Upl i nk Port Y o u can c onf ig ure u p li nk utiliz ation lists tha t display the pe rce n tage o f a giv en uplink po rt ’ s band wi dt h that is used by a specif ic l ist of do wn link port s .
Quali ty of Servi ce (Q oS) 4. Cl ic k o n th e Re la tive Uti lization link at the to p o f the panel to d i sp lay th e Port U pl i nk Rela tive Ut ilizatio n panel , as sh own i n th e f ollowing exampl e: 5. Enter the I D for the link u t ilizati on l ist in the ID fi eld.
Advanced C onfigu r ation and Management G u id e Displaying Uti liz ation Percentages for an Uplink Aft e r you configure an upl ink ut ilizatio n lis t, you c an di splay the list to o bse rve the p.
Quali ty of Servi ce (Q oS) USING THE WEB MANAG EME NT INTERF ACE 1. L og on to t he dev ic e usi ng a val id us er n ame and pass wo rd for read -write ac cess . The Syste m con f igurat ion di alog is dis play ed. 2. Cl ick on th e plus si gn next t o Conf igure in the tree view to expan d the l ist of confi gura t ion optio ns .
Advanced C onfigu r ation and Management G u id e 2 - 30.
Chap ter 3 Us ing Access Co ntrol Lis t s (ACLs) Ac cess control li st s ( ACLs) enab le you to permi t or den y p ackets bas ed on source an d d est ina t ion IP addres s, IP prot oco l in forma t ion, o r TCP o r UDP pro t ocol inf o rmation.
Ins t allat i on and G e tting Started Guide • “ Di spl ayi ng the Lo g Entrie s ” o n p age 3-2 3 • “ Polic y- Bas ed R o uti ng (PBR ) ” on pag e 3 -24 Usage Guidel in es for Access Contr ol L i sts (ACLs) This se ction pro vi des s o me guide li nes fo r imple men ti ng ACLs to e nsu re wi re-spe ed AC L perform a nce.
Us ing A c ce ss Control Li sts (ACLs) • AC L ent ry – An AC L en try is a f ilte r comma nd a ssoci ated wi th an A CL ID . The ma ximu m n um ber of AC L en tri es yo u can con f igure is a s yst em -wide p a ram et e r and depe nds o n the d evi ce y ou a r e c onf igurin g.
Ins t allat i on and G e tting Started Guide NOTE: The f o llowin g s ect ions descri be how to c onf igu r e AC L s usi ng the H P devic e ’ s CL I. Y ou als o can create a nd mo dify AC L s usi ng a tex t ed ito r on a fil e se rver , then copy the m to t he devic e ’ s run n ing-c onfig file .
Us ing A c ce ss Control Li sts (ACLs) 7. Select the Sa ve link a t the b o ttom o f the di alog. Sele ct Y es w hen pro mpt ed to s ave th e c onf igu r ation ch ang e to the s t artup-conf ig file on the devic e ’ s f l ash m emory .
Ins t allat i on and G e tting Started Guide The c ommand s in this ex ample c onfi gure an ACL t o d eny pack ets fro m th ree sourc e I P addres ses fr om being forward ed on port 1/1. The la st ACL ent ry in thi s AC L pe rmits a ll packe ts tha t ar e not expli cit ly d enied by th e fi rs t thre e A CL en tr ie s.
Us ing A c ce ss Control Li sts (ACLs) NOTE: Y ou c an e nab le logging on AC Ls and fil t ers tha t s upport log g ing e ven when the AC Ls a nd fil t ers are al rea dy in use. T o do so, re -enter th e ACL o r fi lte r comman d and add t he log para met er to the en d of the AC L or filte r .
Ins t allat i on and G e tting Started Guide NOTE: If the AC L is a forw ar di ng ACL, the a cti on forwar ds o r dro p s the tr af f i c. If the ACL is a m an agement access AC L, th e action p e rmits or denies man ageme nt a ccess. 7. Enter the s our ce in formation.
Us ing A c ce ss Control Li sts (ACLs) Configuring Extend ed AC Ls This se ction desc ribe s how to c onfi gu r e e x tende d AC Ls. • For confi gur ation i n forma t ion o n na med AC Ls , s ee “ Conf igurin g N a med ACLs ” on page 3-18 .
Ins t allat i on and G e tting Started Guide The fourth entry denies a ll I P traffic fr om host 2 09.157.21 . 100to h o st 209.1 57.22.1 and gene rates Sy sl og entries for pack ets that a r e denied by thi s en try . The f i fth entry d eni es all O SPF traf fic and generate s Syslog entries for de nie d tra f fic.
Us ing A c ce ss Control Li sts (ACLs) The s ec ond en try denie s all F T P traf fic fro m the 209 .15 7 .21 . x net wo rk to t he 2 09. 157.22 .x netw o rk, if t he traf fic ha s th e I P prec eden ce va lue “ 6 ” (eq u iv alent to “ in ternet ” ).
Ins t allat i on and G e tting Started Guide 2 09.1 57. 22. 26 0 . 0.0.255, then sa ve the c hanges to the startu p-confi g fi le, the v a lue appe ars as 209.157.2 2 .0/24 (if you h ave e nabled disp lay of su b-net lengths ) or 2 09. 157.22 . 0 0 . 0.
Us ing A c ce ss Control Li sts (ACLs) • p op2 • p op3 • smtp • ss l • telne t • UDP po rt n ames rec ognized by the software : • b ootp s • b ootp c • dn s • nt p • radiu s • .
Ins t allat i on and G e tting Started Guide Y o u can s pecify one of the fol l ow i ng: • m ax-reliab ility or 2 – T he A CL ma tches packets that h ave the m aximum rel i ab ility T O S. The deci mal va lu e for this option is 2. • m ax-through put or 4 – The AC L mat c hes packe ts tha t have the maximum t h rou gh put TO S.
Us ing A c ce ss Control Li sts (ACLs) 5. Change the AC L number in the ACL N u mber fi eld or us e the AC L number di splay ed in the fie l d. NOTE: Y ou c annot s pecif y a name . 6. Selec t th e AC L actio n . Y o u c an selec t Permi t or D eny : • Permit – Forwar ds traf fic that m a tche s the A CL.
Ins t allat i on and G e tting Started Guide must ha ve ne tw or k ac cess to a DNS serv er an d th e se rv er must ha ve an Addr ess r ecord fo r th e host. In a dditio n, the de vice mu st be c onf igu r ed wi th a DNS domai n name and th e I P ad dre ss of the D NS serve r .
Us ing A c ce ss Control Li sts (ACLs) • Gr eaterT han – The ACL applies to TCP or U DP port s whose num bers are grea ter than the number of t he po rt you s pecif y i n th e f o ll o w in g st ep . NOTE: The c ompa r ison o pe r ators a pply o n ly wh en y ou are fil t ering on i ndi vidu al s our ce and de stina t io n TC P or U DP po rts .
Ins t allat i on and G e tting Started Guide NOTE: Y ou also c an acces s the dialo g fo r s avin g c onfigu r ation ch anges by c licki ng on Comma nd in the tree vi ew , the n clicki ng on Sav e t o Flas h . Configuring Nam ed ACL s W hen yo u conf igu r e a n IP ACL, y ou can refer t o the AC L by a n um e ric ID or by a name.
Us ing A c ce ss Control Li sts (ACLs) NOTE: For conv enien ce, the softw are allow s y ou t o c onfi g ur e nu mbere d AC Ls usin g the s yn t ax for nam ed ACLs .
Ins t allat i on and G e tting Started Guide NOTE: The only v ali d c ommands tha t are v ali d i n the AC L list ar e the acce ss-list a nd en d comm ands . T he H P de vice ignore s other c omm an ds in the fil e. T o modi fy an ACL b y conf igurin g a n ACL list o n a fil e se rver: 1.
Us ing A c ce ss Control Li sts (ACLs) NOTE: Do not pla ce oth e r c omm ands i n the fi le . The H P dev ice reads on ly the AC L i n forma t ion in the file and i gnores oth e r c omma nds, i ncl ud ing ip acc ess-group co mmands . T o assi gn ACLs to int e rfa c es, u se the CLI.
Ins t allat i on and G e tting Started Guide En abling S tri ct TCP Mode By defau l t, wh en you us e ACLs to f ilte r TCP t r affic , the H P de vice does not compare all TC P p ack ets a gains t th e AC Ls. Ins t ea d, the d evice com pare s TC P co ntrol p ack ets agai nst the AC Ls, b u t n o t d a ta packets .
Us ing A c ce ss Control Li sts (ACLs) NOTE: If the de vic e ’ s configura t ion c u rrently h as ACLs as soc iat ed wi th interfa ces, rem o ve th e ACLs fro m t he in ter f ac es before cha ngi ng the ACL m od e.
Ins t allat i on and G e tting Started Guide T o disp lay S ysl og en trie s, us e o ne of th e f o llow ing m eth od s. USING THE CL I Enter the f o llowing c omma nd from an y C L I pr ompt: HP9300(.
Us ing A c ce ss Control Li sts (ACLs) • Specify the de fault n e xt -hop IP addre ss if the r e i s no exp licit next-ho p s elect ion for the packet. • Send the packet to the nu ll inte rface ( null0). HP ’ s PBR routing is based o n st an dard a nd ex tended AC Ls a nd route-maps .
Ins t allat i on and G e tting Started Guide If you p r efe r to s pecify the w ild card (mask v al ue) in CIDR form at, yo u c an ent er a forw a r d s l as h afte r the IP a ddre ss, th en ent er the n um ber of signi ficant bi ts in the mask . For example, y ou c an ente r the C IDR e quivalen t of “ 2 09.
Us ing A c ce ss Control Li sts (ACLs) The < AC L -nu m> par ame t er sp eci f ies a st and ard or e x te nded AC L number or name. Syntax : se t i p [defau lt] next hop <ip - addr> This co mman d s e ts th e n e xt -hop IP addre s s for traf fic that mat ches a m a tch s t at ement in the rout e map.
Ins t allat i on and G e tting Started Guide AC Ls to be further evalu a ted by th e route ma p. If you s pecify deny , the rou t ing s witch denies the traffic fro m further e v al uation a nd in stead dro ps the p a cket s. N o tic e tha t these AC Ls sp ecify an y for the dest inat i on ad dr ess.
Us ing A c ce ss Control Li sts (ACLs) HP9300(config-routemap test-route-if-n o-gateway)# exit The f o ll owing c omma nd ena ble s PB R by glo ba lly apply i ng the ro ute ma p to al l i n terfac es .
Ins t allat i on and G e tting Started Guide 3 - 30.
Chap ter 4 Rate Limiting HP ’ s rate limit i ng en ables yo u to c ontro l the a mo unt of bandwid th s pecif ic Etherne t traffi c u ses on s pecific in ter f ac es, by li mitin g the a mo unt of d a ta the interfa c e rec e iv es or forwa r ds for t r affic .
Advanced C onfigu r ation and Management G u id e in ter v al s, the port rec ei ves less than 500 000 bi ts in eac h i n terva l. However , t he port rec e ives m o re than 50 000 0 bi ts du ring the thi r d a nd fou r th one- sec ond in ter v als, and c ons equently dro ps the exce ss traf fic.
Rat e Limi tin g Displaying Fixed Rate Limiting Informat i on T o disp lay c onf igurat ion in formation and sta t istics for Fix ed Ra te Lim i ting , enter the f o llowing c ommand at a ny le vel o f the CLI : HP9300(config)# show rate-limiting fix ed Total rate-limited interface count: 6.
Advanced C onfigu r ation and Management G u id e Adaptiv e Rat e Lim i ting The Adapt ive R a te Limi tin g enab les y ou t o c onfi gur e ra te p o lici es tha t enforce b and wi dt h limits for Ethern e t t r af fic.
Rat e Limi tin g Examples of Adaptive Rate Limiting Applications The fol l ow i ng s ect ion s s how some e xampl es of how y ou ca n use Adaptiv e Ra te Limi ting. The CL I comm ands for impl emen tin g each appli cat ion are s how n in “ Com p lete CL I Example s ” on p age 4-1 8 .
Advanced C onfigu r ation and Management G u id e The rate p oli cy ru les are fo r three T C P/ UDP app licat i ons: H TTP (w eb ), F TP , and DNS. T he f ourt h rule i s for all ot her Eth e rne t traf fic (traf fic that is not for one of t he thr ee app licat i on s).
Rat e Limi tin g Adap ti ve Rat e Po licy for a S p ecif ic MAC Ad d ress Figure 4. 3 show s an exam ple o f a ra te policy c ons is ting o f o ne rule app lied t o a virtual ro uting i n terface ( “ vi rtual in te rf ace ” or “ VE ” ). A virtua l i n terfac e enables ports in a VLAN to route to oth e r VLANs.
Advanced C onfigu r ation and Management G u id e Adap ti ve Rat e Po licy for a P o rt -B ased VL AN Figure 4. 4 show s a rate polic y applie d to a V L AN . W hen yo u appl y a rat e po li cy to a VL AN, the polic y app lies to a ll the port s in the VLAN .
Rat e Limi tin g Adaptive Ra te Li mitin g uses th e follo w i ng param e ters: • Ave r age Ra te • No rmal Bu rs t Size • Ex cess Burst Si ze • Com mi tted T i me Int e rval W hen yo u appl y Adapt ive R at e Limitin g po lici es to a n in terface, y ou spec ify the fi rst thre e of the se param eters .
Advanced C onfigu r ation and Management G u id e Thus, th e C ommi tte d T i me Int e rva l is 100 0000 b i ts / 1000 0000 b i ts = 0 . 1 s ec onds. This means that the Ad aptiv e Rat e Limi tin g p a ram ete rs apply to tim e slices of ba ndwi d th 0.
Rat e Limi tin g Figure 4. 5 show s an exa mple of the N orm al Burst Size and Exc ess Burst Siz e c ounters . This example show s tw o Com mi tted T i me Int e rvals .
Advanced C onfigu r ation and Management G u id e Figure 4. 6 show s an exam ple o f tw o Co mmit ted T ime Intervals. In t h is exam ple, the p o licy rule m atc he s the maximum numb er of confo r ming byt es (Norm al Burst Siz e byt es) in each i n terva l.
Rat e Limi tin g Figure 4. 7 show s an exam ple o f ei ght Commi tted T ime Intervals. The software dro ps tra f fi c i n the s ec ond an d ei ghth i n tervals b e c ause t he i n terface rece ive s t.
Advanced C onfigu r ation and Management G u id e NOTE: T o char acteriz e the traf fic , c onfigu r e AC Ls. Y ou can use AC Ls for rate p o licy rules ap pli ed to I P in ter f ac es or to virtual i n terfac es, b ut not for rate po licy ru les a pplied di rec t ly to po rt-bas ed VLAN s .
Rat e Limi tin g NOTE: Th e de ny option is no t appli cab le to rate limiting . Alway s specify pe rm it w hen confi guring an ACL fo r use in a ra te l im i ting rule .
Advanced C onfigu r ation and Management G u id e NOTE: The b i ts appea r in thi s orde r in the IP p r ecede nce field and the s o ft wa re re ads them fro m ri ght to left . The leas t s ign if ica nt dig i t i s the rightmost digit (bit posit i on 1) and the m o st signi fic ant digit is th e leftm ost digi t (bi t po siti on 8) .
Rat e Limi tin g CLI Synta x Syntax : [no ] rate-li mit i nput | out put [ac cess- group <num >] <av e rage-rate> <no r mal-b u rst-si ze> <e xcess-b u rst- size > co nf or m- .
Advanced C onfigu r ation and Management G u id e • 4 – flash o ve rride pre ce dence • 5 – cr iti cal pr ecede nc e • 6 – in ternetw o rk con t rol pre ce den ce • 7 – ne twork c ont .
Rat e Limi tin g 187500 conform-action set-prec-transmi t 5 exceed-action drop The follo wi ng rule a pplies to tra ffi c that m a tche s ACL 103. Like t he pre vi ous rul e , thi s rule dr ops packets rece ived a fter the maxim um num ber of c onform i ng pack ets ha ve been re ceived.
Advanced C onfigu r ation and Management G u id e Disabling Ra te Limi ti ng Exemption for Control Packets By defau l t, the device d oes not apply Ad aptiv e R ate Li mitin g po licies to c e rtain types of contro l pack ets , but in stead always fo rward s these p a ck ets, r egardless of the rate limitin g po licie s in e ff e ct .
Chap ter 5 Confi gurin g Sp ann i ng T ree Pro t ocol (ST P) The Spann ing T ree Protoc ol ( S TP) el iminates La yer 2 loo ps in net wo rks , b y select ively bl oc king some port s a nd a llo wi ng oth e r p o rts to forw ar d tra ff i c, based on global (bridg e) and loc al (po r t) pa ram e ters y ou can c onf igu r e.
Ins t allat i on and G e tting Started Guide STP Parameters and De fa ults T able 5 . 1 l ists the defaul t STP bridge para met ers . T he bridge para met ers affec t the e n tire VLAN (or the e n ti re de vice , if the on ly port-based VLAN i s the def ault on e, VLAN 1).
Co nfiguri ng Span nin g T ree Pro t ocol (STP) En abling or Di sab l ing the S p anning T r ee Protocol (S TP) Y o u can e na b le or d is abl e STP on the fol l ow i ng lev els: • Glo bally – Af fe cts a ll po rt s o n th e d evice. • Port-ba sed VL AN – Affe ct s all ports wi thin the s pecifi ed port-ba sed VLAN .
Ins t allat i on and G e tting Started Guide Changing STP Bri d ge and Port Paramet e rs T able 5 . 1 o n p age 5-2 and T able 5 . 2 o n p age 5-2 list t he defa ul t STP p a ramet e rs . If you need to c h a nge th e de fau lt val ue for a n ST P param e te r, us e the followin g p r ocedu res .
Co nfiguri ng Span nin g T ree Pro t ocol (STP) 5. Mo di fy th e b r id ge STP pa rameters to the valu es desi re d. 6. Cl ick Ap ply to sa ve the chang es to the devic e ’ s runn ing - confi g file . 7. Select the Sa ve link a t the b o ttom o f the di alog.
Ins t allat i on and G e tting Started Guide 2. Cl ick on th e plus si gn next t o Conf igure in the tree view to di spl ay the co nfiguration o p tions .
Co nfiguri ng Span nin g T ree Pro t ocol (STP) Displaying STP Information Y o u can d isp la y the fol l ow i ng S T P informati o n: • All the g l obal and interfa c e STP s e tt ing s • STP sta.
Ins t allat i on and G e tting Started Guide Th e s how sp an comm and show s the fol l ow i ng inf o rmation. T a ble 5. 3: C LI Di splay o f STP I n for mat ion Th is Field... Displays. .. Glo b al STP Parameters VLAN ID T he port - based VLAN that con t ains thi s spa nning tree (in s tance of STP).
Co nfiguri ng Span nin g T ree Pro t ocol (STP) T a ble 5 . 3: CLI Dis p lay of ST P Info rm atio n ( Con t inued) State T he port ’ s S TP stat e. T h e s t at e ca n b e one of th e f o llow ing: • BLOC KI NG – STP has bl ocked Layer 2 t r af fic on thi s po rt to pr event a loop .
Ins t allat i on and G e tting Started Guide T a bl e 5. 4: We b M ana ge ment Di sp la y o f STP Informat io n Th is Field... Displays. .. STP Bridge Para meters (global parameters) VLAN ID T he port - based VLAN that con t ains thi s spa nning tree (in s tance of STP).
Co nfiguri ng Span nin g T ree Pro t ocol (STP) T a ble 5.4 : We b M ana gemen t Display of STP Informa t ion ( Continued ) State T he port ’ s S TP stat e. T h e s t at e ca n b e one of th e f o llow ing: • BLOC KI NG – STP has bl ocked Layer 2 t r af fic on thi s po rt to pr event a loop .
Ins t allat i on and G e tting Started Guide STP configured to ON , priority is level0, flow contr ol enabled mirror disabled, monitor disabled Not member of any active trunks Not member of any configured trunks No port name MTU 1500 bytes, encapsulation ethern et 5 minute input rate: 352 bits/sec, 0 packets/sec, 0.
Co nfiguri ng Span nin g T ree Pro t ocol (STP) Maximum PORT-VLAN entries: 16 legend: [S=Slot] PORT-VLAN 1, Name DEFAULT-VLAN, Priori ty level0, Spanning tree On Untagged Ports: (S3) 1 2 3 4 5 6 7 8 9.
Ins t allat i on and G e tting Started Guide In addit i on, Fast P o rt Sp an enhanc es overall net wo rk perf o rmance i n the f o llowin g w ays: • Fast Port Span red u ce s the number of STP topology c hange notifi c ation s on t he n e tw o r k.
Co nfiguri ng Span nin g T ree Pro t ocol (STP) 4. Selec t t he Sav e li nk at the b o tto m of the panel. Selec t Y es wh en pro mpt ed to sav e the confi gura t ion c h a nge to the s t artup-conf ig file on the devic e ’ s f l ash m emory .
Ins t allat i on and G e tting Started Guide Fast Up li nk Spa n group on the dev ice. All Fas t Up link Span port s ar e m embe r s o f th e s ame Fa st Up link Spa n gr oup .
Co nfiguri ng Span nin g T ree Pro t ocol (STP) T o remo ve a F ast Upli nk Span group o r to rem ove i ndi vidual p o rts fro m a group, us e “ no ” in fr ont of the approp r iate fast uplink - spa n comma nd.
Ins t allat i on and G e tting Started Guide • Maximu m A ge – Th e i n terva l a bri dg e wi ll wa it for rec ei p t o f a h e llo p acket be fore initi a ting a topolo gy change.
Co nfiguri ng Span nin g T ree Pro t ocol (STP) T o ve rify that singl e STP is in ef fect, e n ter the fol lowing comm and at any l ev e l o f the CLI: HP9300(config) show span Syntax : sh ow s pan [v lan <vla n-id>] Here is an exam ple of the informat ion disp laye d by thi s comm and.
Ins t allat i on and G e tting Started Guide Untagged Ports: (S4) 17 18 19 20 21 2 2 23 24 Untagged Ports: (S6) 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 Untagged Ports: (S6) 17 18 19 20 21 2 2 23 24 Tagged Ports: None This ex ample s how s inform ati on for p o rt-based VLAN 1, which is the defaul t VLAN .
Co nfiguri ng Span nin g T ree Pro t ocol (STP) W hen PVST i s e nabled on an HP port, that port se nds BPDUs in PVST form at in st ead of HP ’ s sp annin g tre e forma t. PV ST+ HP devices and Cis co devic es s upport s ep a rate spanning t r ees on an indiv id ual port-ba sed VLAN basis .
Ins t allat i on and G e tting Started Guide Dis p lay i ng P VST Information T o disp lay PVS T information, us e the f o llowin g C LI me tho d. USING THE CL I T o disp lay PVS T information for p o.
Chap ter 6 Configu ri ng IP This ch apter d esc ribes th e Internet Pro t ocol (IP) p a ram et e rs on HP ProCurv e rout ing sw it ches an d s w itches an d how to co nfigure the m .
Ins t allat i on and G e tting Started Guide O verv i ew The H P P r ocurve HP 6 208 M-SX switch and HP 9304M, H P 9308M , and H P 6 308M-SX rout ing sw it ches su pport Internet Pr otocol (IP) v e rsion 4 . IP s up port on the HP 62 08M-SX c onsis ts of basic se rvice s to s up port man ageme nt a ccess a nd acces s to a defau l t g a te way .
Conf igur in g I P The HP 6208M- S X S w itch Y o u can c onf ig ure an I P addres s on the H P 620 8M-SX for m anagemen t access to the sw it ch . IP addre ss is required for T el net acce ss, W eb management acces s, and SN MP ac cess . Y o u also ca n s pec ify t he d e fault ga tew ay for forw a r din g tr af fic to o t her s ub-n e ts .
Ins t allat i on and G e tting Started Guide a ddre ss an d TC P or U DP p o rt l ist ed in the se ssion ta ble entry a nd se nding the pac ke t to a q ue ue o n t he ou tgo ing po rt(s) liste d in the s essi on tabl e.
Conf igur in g I P Here is an ex ample o f a s tat ic ARP entry : Index IP Address MAC Address Port 1 207.95.6.111 0800.093b.d210 1/1 Each ent ry l ists the inf o rm ation y ou specifi ed w h en you c r eat ed the entry .
Ins t allat i on and G e tting Started Guide T o disp lay t he I P rou t e tabl e, s ee the fol l ow i ng: • “ Di spl ayi ng the IP R o ute T a ble ” on page 6-90 – routi ng switch onl y T o c.
Conf igur in g I P The sw it ch o r routing s w itc h sel ect s th e session t able ins t ead of the IP forward i ng table fo r fas t -pa t h forw a r ding for the foll owing featu r es : • Policy- .
Ins t allat i on and G e tting Started Guide For confi gur ation i n forma t ion, s ee the fol l ow ing: • Vi rtu a l R o ute r Red undanc y Proto c ol Extended (VR R PE) – see “ Co nfiguring VRRP a nd VRRPE ” on p age 12 -1.
Conf igur in g I P Basic IP Par ame ter s and Default s – Routin g Sw itc hes IP is ena bled b y de fault . Th e following IP-b ased prot oco ls are all disa ble d by de fault : • Rout e exc ha ng.
Ins t allat i on and G e tting Started Guide IP Global Pa ram e ters – R outing S witches T able 6 . 1 l ists the IP glob al p a ra meters for routing sw it ch es . T a ble 6.1: IP G l obal Pa ra me ter s – routing s w itc h es Param e te r Descrip tion Default See pa ge.
Conf igur in g I P T a ble 6. 1: IP Global Par am e te rs – ro uting switch es (Con tinued) Directe d broadcas t forw ar di ng A dir e ct ed broa dcast is a p acket c onta ini ng all ones (or in some ca ses, al l ze ros) in the host po rt io n of the destin a ti on IP addr ess.
Ins t allat i on and G e tting Started Guide T a ble 6. 1: IP Global Par am e te rs – ro uting switch es (Con tinued) Doma in name for D o main Name Serv er (DNS) res olver A domai n nam e (examp le: am aynes.
Conf igur in g I P T a ble 6. 1: IP Global Par am e te rs – ro uting switch es (Con tinued) Origi nation of default rou t es Y ou can enab le a ro ut er to or ig inate de fa ul t ro ut es for the fo.
Ins t allat i on and G e tting Started Guide IP Interface Parameters – Routing Switches T able 6 . 2 l ists the int e rfa c e-lev el IP p a ram e ters for ro uting switche s. T a ble 6. 2: IP Inter fa ce Par am e ter s – rout ing switches Param e te r Descrip tion Default See pa ge.
Conf igur in g I P T a ble 6.2 : IP Inter f ac e Pa ra meter s – routing sw itc h es (Conti nued ) UDP broadcas t forw ar di ng The rout er can forw a r d U DP br oadcast p acke ts for UDP applicati ons such as BootP .
Ins t allat i on and G e tting Started Guide Basic IP Par ame ter s and Default s – HP 6208M-S X IP i s e nable d by de fault. The fo llo wi ng tab l es li st the s w itc h IP p a ra meters, the i r d e fau l t v al ues, an d w her e to fin d c onfigu r ation inf o rmation.
Conf igur in g I P T a ble 6. 3: IP Glo b al Par am e ter s – swit ch (C o n tinued) Doma in name for D o main Name Serv er (DNS) res olver A domai n nam e (examp le: am aynes.
Ins t allat i on and G e tting Started Guide Configuring IP Param e te rs – R outing Switches The f o ll owing s ect ions descri be how to c onf igu r e I P param e ters . Som e pa ram e ters can be confi gure d gl obal ly while oth e rs can b e c onfigu r ed on ind ivi dual interfac es .
Conf igur in g I P USING THE WEB MANAG EME NT INTERF ACE T o assi gn an IP addre ss an d m ask to a rou t er i n te rface: 1. L og on to t he dev ic e usi ng a val id us er n ame and pass wo rd for read -write ac cess . The Syste m con f igurat ion di alog is dis play ed.
Ins t allat i on and G e tting Started Guide HP9300(config-lbif-1)# ip address 10.0 .0.1/24 Syntax : in terfa ce lo opback < num > The <num > v al ue can be from 1 – 8.
Conf igur in g I P For m o re inf o rm ation abou t VLAN s a nd h ow to c onfi gur e them, s ee “ Co nfiguri ng VLAN s ” on pag e 1 6-1. USING THE CL I T o a dd a v i rtu al inte rface t o a VLAN a nd c onf ig ure an IP addres s on the int e rface, enter c omma nds such as th e follo w ing: HP9300(config)# vlan 2 name IP-Subnet_ 1.
Ins t allat i on and G e tting Started Guide HP9300(config)# ip dns domain-name new york.com HP9300(config)# ip dns server-address 209.157.22.199 205.96.
Conf igur in g I P USING THE WEB MANAG EME NT INTERF ACE 1. L og o n to th e devi ce using a val id us er n am e and p asswor d for rea d -on ly or read -write ac ces s. Th e Syst em c onfigu r ation pan el is dis play ed. 2. Cl ick on th e plus si gn next t o Comm and in the tree view to list the command op tio ns.
Ins t allat i on and G e tting Started Guide USING THE WEB MANAG EME NT INTERF ACE 1. L og on to t he dev ic e usi ng a val id us er n ame and pass wo rd for read -write ac cess . The Syste m con f igurat ion p anel i s disp laye d. 2. Cl ick on th e plus si gn next t o Conf igure in the tree view to expan d the l ist of confi gura t ion optio ns .
Conf igur in g I P Changing th e Router ID In most conf igurat ions , a rou t ing sw it ch has mu ltip le IP ad dr esse s, usua lly co nf ig ur ed on differ en t interf aces . As a result, a rou t ing s w itc h ’ s ide n tity t o ot her devices va rie s d epe nding on the int e rfa ce to w h ich th e o t her device i s a ttac hed.
Ins t allat i on and G e tting Started Guide Spec if ying a Sing le Source Inte rf ac e for T e lne t , T A CACS/ T ACACS+ , or RADIUS P acket s W hen the rou t in g s w itc h or igi nates a T e lnet,.
Conf igur in g I P HP9300(config)# ip tacacs source-interface ve 1 The c ommand s in this ex ample c onfi gure v i rtu al inte rface 1 , assi gn IP addre ss 10.0.0.3/ 24 t o the i n ter f ace, then de sign ate the int e rfa ce as the sourc e for all T ACACS /T ACACS+ p acket s f r om the rou t in g s w itc h.
Ins t allat i on and G e tting Started Guide a ddre ss fo r the IP addres s. The ARP c a ch e maps IP ad dre sses to MAC addres s es . T he cache als o lists the po rt attac he d to the d ev i ce and, if the entry is dynamic, th e age o f the e n try .
Conf igur in g I P 5. Enter a v alue fr om 0 – 240 into the ARP A ge f i eld. 6. Cl ick th e Apply bu tton to save the chang e t o the devi ce ’ s ru nning-c onf ig fil e.
Ins t allat i on and G e tting Started Guide T o disp lay t he A RP ca che an d s t atic ARP tab l e, see th e foll owing: • T o disp lay t he A RP tab l e, se e “ Displa yi ng th e A RP Cach e ” on page 6- 85 . • T o disp lay t he s tat ic ARP table , s ee “ Di sp lay ing th e Static ARP T able ” on page 6- 87 .
Conf igur in g I P 10 . S el ect the Save link a t the b o ttom o f th e dialog. Select Y es w hen pro mpt ed to s av e the c onf igu r ati on chang e to the s t artup-conf ig file on the devic e ’ s f l ash m emory . Chan ging th e Ma ximum N u mb e r of Entr ies t he Static ARP T abl e Ca n Hold T able 6 .
Ins t allat i on and G e tting Started Guide 4. Enter the n e w val ue f o r the c ac he size. The v a lue y ou enter s pecif ies the m aximum numbe r of ent ries th e cac he can hold. 5. Cl ick Ap ply to sa ve the chang es to the devic e ’ s runn ing - confi g .
Conf igur in g I P NOTE: A l ess comm on t ype , the a ll-s ub- nets b r oadca st, goes to a l l dire ctly- a ttached s ub- nets. Forw ar din g for this bro adcast ty pe al so is su pported, but m ost ne twork s use IP m ult icastin g instead of a ll - sub-net bro a dc asti ng.
Ins t allat i on and G e tting Started Guide USING THE CL I T o dis able fo rwarding of I P so urc e -routed pack ets , en ter the fol l ow i ng co mmand : HP9300(config)# no ip source-route Syntax : .
Conf igur in g I P Y o u can s elect iv ely d is able the fo llo wi ng types of Int e rne t Cont rol M e ssage Pro t ocol (IC M P) me ssages: • Echo me ssage s (ping m es sa ges ) – The rou t ing s w itc h repli es to I P pi ngs fro m ot he r IP d evi ce s.
Ins t allat i on and G e tting Started Guide Syntax : [no ] ip ic m p unrea c ha ble [netw ork | host | p r oto c ol | admin istrati on | f r agm entation -needed | port | s ource- r oute - fai l] If .
Conf igur in g I P s ources to the s a me desti nat ion , th e routi ng s w itc h pla ces the route in the IP ro ute tab l e. • OSPF – See RIP , but subs titute “ OSPF ” fo r “ RIP ” . • BGP4 – See RIP , bu t s ubs ti tute “ BGP4 ” fo r “ RIP ” .
Ins t allat i on and G e tting Started Guide • Path redun dancy – Whe n you add mu lti ple st ati c IP rou t es for the same desti nati on, bu t give the rou t es diffe ren t me tri cs or adminis .
Conf igur in g I P HP9300(config)# ip route 192.128.2.69 255.255.255.0 ethernet 4/1 The c ommand in the example above c onfi gur es a s t ati c IP rou t e f o r d e stina t ion n e twork 1 92.
Ins t allat i on and G e tting Started Guide 4. Clic k on the Ge ne ral link to d i sp la y the IP confi gur ation p anel. 5. Clic k t he St at i c Ro ut e link . • If the de vic e does n o t h ave any IP s t ati c route s, the Stati c Ro ute configura t ion panel i s disp la yed.
Conf igur in g I P T o disp lay th e m aximum va lue fo r your de vice, en ter the s how default values command . The m aximum nu mber of stati c IP rout es the system can h o ld is li ste d in th e i p -stati c-route row i n the Sy stem Parameters sect ion of t he di spla y .
Ins t allat i on and G e tting Started Guide The f o ll owing c omma nds c onf igu r e s t ati c IP rou t es to the same de stinat ion , bu t w ith di f fe ren t me tri cs. The ro ute wi th the lo wes t metr ic is use d by de fau l t. The oth e r route s are back ups in case the first rou t e be comes unavaila ble .
Conf igur in g I P NOTE: If yo u specif y 1 6 , R IP consi de r s the m et r ic to b e i n finit e an d thus also co nside r s the r oute to be un re ac ha ble. 10. O pti ona ll y c ha nge the admi nis t rativ e di stanc e b y edi tin g the v a lue i n the D i sta nce field .
Ins t allat i on and G e tting Started Guide T wo static routes to 192.168.7.0/24: --Standard static route through gatewa y 192.168.6.157, with metr ic 1 --Null route, with metric 2 Router A Router B 192.168.6.157/24 192.168.7.7/24 192.168.6.188/24 When standard static route is good, Router A uses that route.
Conf igur in g I P T wo static routes to 192.168.7.0/24: --Interface-based route through port 1/1, with metr ic 1. --Standard static route through gatewa y 192.168.8.11, with metr ic 3. Router A 192.168.6.69/24 If route through interface 1/1 becomes unav ailable, 192.
Ins t allat i on and G e tting Started Guide USING THE WEB MANAG EME NT INTERF ACE 1. L og on to t he dev ic e usi ng a val id us er n ame and pass wo rd for read -write ac cess . The Syste m con f igurat ion p anel i s disp laye d. 2. Cl ick on th e plus si gn next t o Conf igure in the tree view to expan d the l ist of confi gura t ion optio ns .
Conf igur in g I P W hen th e s o ft wa re uses the d e fault ne twork route, it also uses t he default n e twor k route ’ s next ho p gatewa y as the ga teway of la st re so rt. This fe atu r e i s especia lly usef ul in en vironmen ts w here n e twor k topolog y ch anges c an make the n ext ho p gate w ay un rea ch abl e.
Ins t allat i on and G e tting Started Guide USING THE WEB MANAG EME NT INTERF ACE Y o u cannot c on f igure a d e fau lt netw o rk route using th e W eb m anagem ent in terfa ce. In ad dition, th e IP route tabl e di spla y i n the W e b mana gemen t interface does n o t indica te route s that ar e cand ida t e d e fau l t n e twork rou t es .
Conf igur in g I P Here are th e defau l t a dmi nist rative dis t ance s o n t he H P routing sw it ch : • Dire ctly conne cte d – 0 (t his va lue i s no t c onf ig urable) • Sta t ic IP r oute.
Ins t allat i on and G e tting Started Guide The load s haring sta t e f o r all t he route s ourc es is ba sed o n the s t ate of IP lo ad sh aring. Sinc e I P load s har in g is e nabled by defau l .
Conf igur in g I P Res ponse t o Path State Ch anges If one of the lo ad-b a lanced path s to a cached d es t ination b e comes una vailabl e, o r the IP route tab l e rec e iv es a new equal -co st pat h to a c ached de stina t ion, the s o ft wa re r e move s the unavaila ble path from the IP route tab l e.
Ins t allat i on and G e tting Started Guide H6 192.168.2.155 H5 192.168.2.193 H4 192.168.2.175 H9 H3 192.168.1.218 H2 192.168.1.170 H1 192.168.7.1 H8 H7 IP Forwarding Cache Host-Based Load Sharing Destination Host 192.168.1.170 (H1) 192.168.1.234 (H2) 192.
Conf igur in g I P H6 192.168.2.155 H5 192.168.2.193 H4 192.168.2.175 H9 H3 192.168.1.218 H2 192.168.1.170 H1 192.168.7.1 H8 H7 IP Forwarding Cache Host-Based Load Sharing Destination Host 192.168.2.175 (H4) 192.168.1.170 (H1) 192.168.1.218 (H3) 192.168.
Ins t allat i on and G e tting Started Guide Figure 6.7 sho w s an example o f IP load shari ng cache en tri es fo r network - bas ed IP loa d sharing.
Conf igur in g I P M = A num ber fro m 1 to the maximum num ber of load -sh a rin g pa ths. Thi s val ue inc r ease s b y 1 until it reaches the m axim um, the n reve rts to 1 .
Ins t allat i on and G e tting Started Guide T a ble 6. 7: Path Sel ection fo r Ne tw ork-Bas ed IP Loa d Sha r ing ( Continu e d) 5 3 3 2 4 2 5 2 6 2 7 2 8 2 6 3 3 2 4 2 5 2 6 2 7 2 8 2 7 3 3 2 4 2 5.
Con figur ing I P 6 - 57 As shown in T able 6.7, the re sults of the netw ork-b ased IP load sha ring algorith m provide evenly-distrib uted load sharing . Figure 6.8 s hows a network where a ro uting switch has ei ght equal -cost paths to d estina tion netw orks N1 – N8.
Ins t allat i on and G e tting Started Guide USING THE WEB MANAG EME NT INTERF ACE 1. L og on to t he dev ic e usi ng a val id us er n ame and pass wo rd for read -write ac cess . The Syste m con f igurat ion p anel i s disp laye d. 2. Cl ick on th e plus si gn next t o Conf igure in the tree view to expan d the l ist of confi gura t ion optio ns .
Conf igur in g I P NOTE: The h os t -ba s ed lo ad sh aring fo r the desti n at ion ta kes ef fect only i f th e IP route table conta i ns an en try that e xa c tl y match es the destinati on net wo rk you s pecif y . For exampl e, i f y ou c onf igure host-base d load sharing for desti nat ion ne twork 20 7.
Ins t allat i on and G e tting Started Guide NOTE: If the se ttin g fo r the m aximum nu mber of paths is lo we r than the actual numb er o f eq ual-co st pat hs, the so ftw ar e do es no t us e al l t h e p ath s f or lo ad shar i n g. T o cha nge the number o f paths , use e i th er o f the following me tho ds.
Conf igur in g I P NOTE: T o pl ace a c hange to the h i gh -pe r formanc e mode i n to ef fect, y ou must reload the so ftware aft e r s avi ng the c ha nge to the sta r tup - config fi le.
Ins t allat i on and G e tting Started Guide HP9300(config)# show ip dr-aggregate Syntax : sh ow ip dr-agg regate [<ip-addr>] If yo u specif y a n IP addres s, onl y the e n tri es for that de stinat ion are dis p lay ed. Here is an ex ample o f the in formati on dis play ed by thi s comma nd.
Conf igur in g I P NOTE: Y ou can config ure IRDP pa ram e te rs o n ly an i ndivi dual por t basis. T o do so, IRDP must be d i sabl ed gl oball y and e nab led on ly on i ndividua l p o rts . Y ou cannot c o nf igure IR DP pa ram e ters if the fe ature i s global ly e nabled .
Ins t allat i on and G e tting Started Guide 7. Select the Sa ve link a t the b o ttom o f the di alog. Sele ct Y es w hen pro mpt ed to s ave th e c onf igu r ation ch ang e to the s t artup-conf ig file on the devic e ’ s f l ash m emory .
Conf igur in g I P • The e n try numb er – the en try ’ s seque nce n um ber in t he RARP tab l e. • The M AC ad dre ss of the boot c lient. • The I P addres s you want the rou t ing s w itc h to give to the clien t.
Ins t allat i on and G e tting Started Guide 6. Cl ick th e Apply bu tton to save the chang e t o the devi ce ’ s ru nning-c onf ig fil e. 7. Select the Sa ve link a t the b o ttom o f the di alog. Sele ct Y es w hen pro mpt ed to s ave th e c onf igu r ation ch ang e to the s t artup-conf ig file on the devic e ’ s f l ash m emory .
Conf igur in g I P 7. Enter the I P address. 8. Click th e Add b u tton to sa ve the change t o the d e vice ’ s runni ng-c onf ig fil e. 9. Select the Sa ve link a t the b o ttom o f the di alog. Sele ct Y es w hen pro mpt ed to s ave th e c onf igu r ation ch ang e to the s t artup-conf ig file on the devic e ’ s f l ash m emory .
Ins t allat i on and G e tting Started Guide NOTE: If you d i sable forwardi ng for a UDP ap pli cat ion, f o rward i ng of clien t req uests rec eived as br oad casts to he lper a ddre sses is di sable d. Di sabling forw ar di ng o f an appli cat io n does not disa ble oth e r s up port for the a pplic ation.
Conf igur in g I P USING THE WEB MANAG EME NT INTERF ACE 1. L og on to t he dev ic e usi ng a val id us er n ame and pass wo rd for read -write ac cess . The Syste m con f igurat ion p anel i s disp laye d. 2. Cl ick on th e plus si gn next t o Conf igure in the tree view to expan d the l ist of confi gura t ion optio ns .
Ins t allat i on and G e tting Started Guide 5. Selec t th e p o rt ( and sl ot i f appl ica bl e ) o n behal f o f which the UDP helpe r pa ckets will be forwarde d. 6. Enter the I P addres s of the re mote s e rv er for w h ich th e routing s w itc h wi ll be rela ying the packets .
Conf igur in g I P BootP/DHC P Forwa rd ing P ara me te rs The f o ll owing p a ram e te rs con t rol the rou t ing s w itc h ’ s forwa rding of Bo ot P/DHCP re ques ts: • Helper addres s – Th e Bo ot P/DHCP serve r ’ s IP addr ess .
Ins t allat i on and G e tting Started Guide Changing the Maxi mum N u mbe r of Hops to a BootP Re lay Se rver Ea ch Bo ot P/DHCP re ques t i n cl udes a fi eld Ho p Co un t fi eld. Th e Ho p Co un t fi eld indicates how ma ny ro uter s th e re quest has passed thro ugh.
Conf igur in g I P Configuring IP Param e te rs – H P 6208M-SX The f o ll owing s ect ions descri be how to c onf igu r e I P pa ram e ters o n the H P 6 208 M-SX . NOTE: This se ction des cr ibe s how to confi gure IP p a rameters for the HP 6208M-SX s w itc h.
Ins t allat i on and G e tting Started Guide 5. Enter the I P addres s in the IP addres s fie l d. 6. Enter the s ub- net ma sk in the Sub ne t Ma sk field . 7. Enter the d e fault gatew ay ’ s IP add res s in t he De fau l t G at e way field . 8. Cl ick th e Apply bu tton to save the chang e t o the devi ce ’ s ru nning-c onf ig fil e.
Conf igur in g I P 5. Cl ick th e Apply bu tton to save the chang e t o the devi ce ’ s ru nning-c onf ig fil e. 6. Select the Sa ve link a t the b o ttom o f the di alog. Sele ct Y es w hen pro mpt ed to s ave th e c onf igu r ation ch ang e to the s t artup-conf ig file on the devic e ’ s f l ash m emory .
Ins t allat i on and G e tting Started Guide 2. Cl ick on th e plus si gn next t o Comm and in the tree view to list the command op tio ns. 3. Sele ct the T r ace R oute li nk to dis play the T r ace R o ute panel . 4. Enter the h o st name or IP addres s in the T a rget Address fi eld .
Conf igur in g I P Step 3: DHCP Server generates IP addresses for Hosts 1,2,3 and 4. All IP address are assigned Server DHCP Server 207.95.7.6 Router 192.95.5.1 200.95.6.1 202.95.1.1 202.95.5.1 192.95.5.35 192.95.5.5 192.95.5.30 192.95.5.10 IP addresses configured on the router interface Host 1 200.
Ins t allat i on and G e tting Started Guide DHCP Server 207.95.7.6 Server Step 3: Router Host 1 200.95.6.x Host 2 192.95.5.x Sub-net 1 Sub-net 2 Hub HP Switch 4000 Interface Interface Interface Step 2: The HP 6208M-SX stamps each DHCP request with the gatewa y address of the corresponding sub-net of the receiving por t.
Conf igur in g I P Step 4: DHCP Server extracts the gate way address from each pack et and assigns IP addresses for each host within the appropriate range.
Ins t allat i on and G e tting Started Guide Syntax : dh cp-gate w ay-list < num> < i p-addr > USING THE WEB MANAG EME NT INTERF ACE 1. L og on to t he dev ic e usi ng a val id us er n ame and pass wo rd for read -write ac cess . The Syste m con f igurat ion p anel i s disp laye d.
Conf igur in g I P In addit i on to the inf o rmation d esc ribed be low , you c an dis play the fol l ow i ng IP informati on. Th is inf o rmation i s de scrib ed in oth e r parts of t h is guide. • RI P informa t io n – se e “ Di splay ing RI P Filt ers ” on pag e 7 -16.
Ins t allat i on and G e tting Started Guide This di splay s how s the follo wi ng inform ation. T a ble 6.8 : CLI Di splay o f Gl obal IP Con f igura t ion Inform ation – rou t ing switch Th is Field... Displays. .. Glob al settings ttl T he T ime -T o-Live (TTL) for IP packets .
Conf igur in g I P T abl e 6 . 8: C L I Dis p lay of G l obal I P Config uration Inf o rmation – routin g switc h (Continued) Th is Field... Displays. .. Polici es I nde x T he policy num be r . This is th e num ber you ass ig ned the polic y wh en you confi gure d i t.
Ins t allat i on and G e tting Started Guide Loopback 1 1.2.3.4 YES NVRAM down down Syntax : sh ow ip in terfac e [ethe r net <po r tnu m >] | [ l oopba ck <num >] | [ve < num>] This di splay s how s the follo wi ng inform ation. T a ble 6.
Conf igur in g I P This di splay s how s the follo wi ng inform ation. T a ble 6.1 0 : W eb Di splay of IP In ter fa ce In for mat ion Th is Field... Displays.
Ins t allat i on and G e tting Started Guide The < ma sk> param e te r lets you spec ify a ma sk for the ma c-address <xxxx. xxxx.xx xx> par a met er , to d isp la y en tr ie s for mu lt iple MA C ad dr esse s. Specif y t h e MAC a ddre ss ma sk a s “ f ” s an d “ 0 ” s, wher e “ f ” s are signific ant bi ts .
Conf igur in g I P T a ble 6. 12: W e b D i splay of A RP Ca che – rou t ing sw itch Th is Field... Displays. .. No de T he IP ad dres s of the devic e.
Ins t allat i on and G e tting Started Guide NOTE: The < i p-m ask> param e ter and <mask> param eter perf o rm di f fer ent ope rations . The <ip - ma sk > pa ram e ter s pecifi es .
Conf igur in g I P Th e s how ip cache com m and display s the fol l ow i ng in forma t io n. T a ble 6.1 4 : C L I D i splay of IP Forwar ding Cach e – ro uting switch Th is Field... Displays. .. IP Add r es s T he IP ad dres s of the destin a tion.
Ins t allat i on and G e tting Started Guide This di splay s how s the follo wi ng inform ation. T a ble 6. 15: W e b Display of IP Forw a rding Cac h e I n forma t ion – rout ing s wit ch Th is Field... Displays. .. IP Add r es s T he IP ad dres s of the destin a tion.
Conf igur in g I P Start index: 1 B:BGP D:Connected R:R IP S:Static O:OSPF *:Candidate default Destination NetMask Gateway Port Cost Type 1.1.0.0 255.255.0.0 99.1.1.2 1/1 2 R 1.2.0.0 255.255.0.0 99.1.1.2 1/1 2 R 1.3.0.0 255.255.0.0 99.1.1.2 1/1 2 R 1.
Ins t allat i on and G e tting Started Guide 53 209.159.39.0 255.255.255.0 207.95.6 .101 1/1 1 S 54 209.159.40.0 255.255.255.0 207.95.6 .101 1/1 1 S 55 209.159.41.0 255.255.255.0 207.95.6 .101 1/1 1 S 56 209.159.42.0 255.255.255.0 207.95.6 .101 1/1 1 S 57 209.
Conf igur in g I P Cle ari ng IP Route s If neede d, y ou can c l ear th e entire rou t e t able o r sp ecifi c i ndividua l route s. pr ocedu res . USING THE CL I T o clea r al l ro ut es fr om th e I P rout e t a bl e : HP9300# clear ip route T o clea r route 209.
Ins t allat i on and G e tting Started Guide TCP Statistics 0 active opens, 0 passive opens, 0 f ailed attempts 0 active resets, 0 passive resets, 0 input errors 138 in segments, 141 out segments, 4 r.
Conf igur in g I P T a ble 6.1 7 : C LI Di splay of IP T r affic Statistics – ro uting switch (Continued ) pa rame ter T he num ber of Param ete r Pro b lem m ess ages s ent or rec e iv ed by the device . sour ce qu enc h T he number of Sourc e Qu enc h m essa ges s ent or re ceived by the device .
Ins t allat i on and G e tting Started Guide T a ble 6.1 7 : C LI Di splay of IP T r affic Statistics – ro uting switch (Continued ) out seg men ts T he num ber of TCP segm ents s en t by the d e vice .
Conf igur in g I P This di splay s how s the follo wi ng inform ation. T abl e 6 . 18: W e b D isp lay of I P Tr aff i c Sta t istics – routing s w itch Th is Field... Displays. .. IP st at isti cs Packets Received T he num ber of IP packets rec eived by th e d evice.
Ins t allat i on and G e tting Started Guide T a ble 6.1 8 : W eb Di splay o f IP T r affic Statis tics – routing switch (Continued ) Re ceiv ed R e dir e ct T he num ber of Re direc t me ssag es rec e iv ed by the devi ce . Sent Re di rec t T he number of R e direc t messag es sent b y t he dev ice.
Conf igur in g I P T a ble 6.1 8 : W eb Di splay o f IP T r affic Statis tics – routing switch (Continued ) Active Rese ts T he num ber of TCP conn ect i on s t h is de vice res e t b y sen d i ng a TC P RESET mess age to the de vice at the other end o f the c onn ection .
Ins t allat i on and G e tting Started Guide Dis p lay i ng IP Information – HP 6208M- SX Y o u can d isp la y the fol l ow i ng I P configura t ion i n forma t ion st ati s ti cs on the HP 6208 M-SX: • Glo bal IP s e tting s – se e “ Di splay ing Glo bal IP C o nfigura t ion In formati on ” on pag e 6 -100 .
Conf igur in g I P USING THE WEB MANAG EME NT INTERF ACE T o disp lay t he m an age ment IP addres s and de fau l t g a te wa y: 1. L og on to t he dev ic e usi ng a val id us er n ame and pass wo rd for read -write ac cess . The Syste m con f igurat ion p anel i s disp laye d.
Ins t allat i on and G e tting Started Guide USING THE WEB MANAG EME NT INTERF ACE T o disp lay t he A RP cache : 1. L og o n to th e devi ce using a val id us er n am e and p asswor d for rea d -on ly or read -write ac ces s. Th e Syst em c onfigu r ation pan el is dis play ed.
Conf igur in g I P 1 current active tcbs, 4 tcbs alloca ted, 0 tcbs freed 0 tcbs protected 0 active opens, 0 passive opens, 0 f ailed attempts 0 active resets, 0 passive resets, 0 input errors 27 in segments, 24 out segments, 0 re transmission Syntax : sh ow i p tra f fi c Th e s how ip traffic comman d d i splays the fol lowing inf o rmati on.
Ins t allat i on and G e tting Started Guide T abl e 6 . 22: CLI D is p lay of IP T ra ffic St atist i cs – switc h (Con tinued) echo T he number of Ech o mess ages sent or recei ved by t he d evice. echo reply T he num ber of Ech o Reply mess ages sent o r rec eiv ed by the d e vi ce .
Conf igur in g I P T abl e 6 . 22: CLI D is p lay of IP T ra ffic St atist i cs – switc h (Con tinued) out seg men ts T he num ber of TCP segm ents s en t by the d e vice .
Ins t allat i on and G e tting Started Guide T abl e 6 . 23: W e b D isp lay of IP T ra ffic Sta t isti cs – sw itc h (Continue d) Sent Errors Th is in formation is used by HP cu st omer supp ort. Re ceiv ed Un rea c ha ble T he num be r of D e stina t io n Un reachable me ssages rec e ived by the device .
Conf igur in g I P T abl e 6 . 23: W e b D isp lay of IP T ra ffic Sta t isti cs – sw itc h (Continue d) Th is Field... Displays. .. UDP stati s tics Re ceiv ed T he numbe r of UDP packe ts rec e ived by the device . Sent T he num ber of UDP packets sent b y t he d evice.
Ins t allat i on and G e tting Started Guide 6 - 108.
Chap ter 7 Confi g uri n g RI P Rou t ing Informa t ion Protoc ol (RIP) is an IP rou t e e x cha nge pro t ocol tha t us es a di sta n ce vector (a numbe r represen tin g dis t ance ) to measure the cost of a giv en ro ute.
Ins t allat i on and G e tting Started Guide T abl e 7 . 1: R I P G l obal Par a mete rs Param e te r Descrip tion Default See pa ge... RI P s t ate Rou ti ng Info rma t ion Pro t ocol ver s ion 2 No te : Y ou c an chan ge the R I P versi on on i nd i vidual interfaces .
C onfigu r ing RIP RIP Interface P a rameter s T able 7. 2 li st s th e i n te rf ac e-le vel R IP para me ters and t h ei r de fa ul t va lues , and i n dica tes where yo u ca n fi nd c onfigu r ation inf o rmation. . T a ble 7.2: RIP I n terfa ce Para me ters Param e te r Descrip tion Default See pa ge.
Ins t allat i on and G e tting Started Guide HP9300(config)# write memory Syntax : [no ] router rip USING THE WEB MANAG EME NT INTERF ACE 1. L og on to t he dev ic e usi ng a val id us er n ame and pass wo rd for read -write ac cess . The Syste m con f igurat ion di alog is dis play ed.
C onfigu r ing RIP Configuring Metric Parameters By defau l t, a rou t ing s w itc h po rt i ncr ea ses the c ost of a R IP route that i s lear ned on the port by one. Y ou c an c onfigu r e indi vidual p o rts to add mo re than one to a l ear ned rou te ’ s cost.
Ins t allat i on and G e tting Started Guide The s o ftw a r e adds the of fse t va lu e to the rout ing metric (co st) of th e route s that m a tc h the AC L . If a rout e m a tches bo th a g l obal of fs et list and an int e rfa c e-b as ed of fse t list, the interfa ce- based offse t li st tak e s pre ce dence .
C onfigu r ing RIP Configuring Redistribution Y o u can c onf ig ure the rout ing sw it ch to redi stribu te route s lear ned thro ugh O pe n Sho r tes t Pa th F i rst (OSPF) o r Border Ga tew a y Pro t ocol ve rsion 4 (BG P 4) i n to RIP .
Ins t allat i on and G e tting Started Guide 3. Cl ick on th e plus si gn next t o RI P i n th e t r ee vie w to expand th e l i st of RI P op tio n link s.
C onfigu r ing RIP HP9300(config-rip-router)# default-met ric 10 This co mmand a ssi gn s a R I P m etr ic of 1 0 to each rou t e that is redist ributed int o RIP . Syntax : [no ] defau l t-m e tric <1-15> USING THE WEB MANAG EME NT INTERF ACE 1.
Ins t allat i on and G e tting Started Guide Changing the Update Int erval for Route Adv ert is emen ts The upda te i n terva l spec ifies ho w oft en the routing sw it ch se nds route advert i se ments to its RI P n e i ghbors . Y ou c an sp eci fy an int e rv al f r om 1 – 10 00 s econds.
C onfigu r ing RIP USING THE WEB MANAG EME NT INTERF ACE T o e nable lea r ni ng o f defau l t R I P rou t es : 1. L og on to t he dev ic e usi ng a val id us er n ame and pass wo rd for read -write ac cess . The Syste m con f igurat ion p anel i s disp laye d.
Ins t allat i on and G e tting Started Guide • If a R IP nei ghbor filte r is a l rea dy confi gure d a nd y ou are ad din g a new filter , cli ck on the Add Nei ghbor Filte r li nk to dis play the RI P N ei ghbor F ilte r c onfigu r ati on p an e l, as sh own i n th e f o llowing e x ample.
C onfigu r ing RIP USING THE CL I T o e nable poiso n rever se on an i n terface, ente r comma nds su ch as the follo wi ng : HP9300(config)# interface ethernet 1/1 HP9300(config-if-1/1)# ip rip poison-r everse Syntax : [no ] ip rip po ison-re ve rs e USING THE WEB MANAG EME NT INTERF ACE T o en able RIP ro ut ing on indivi dual interfac es : 1.
Ins t allat i on and G e tting Started Guide NOTE: A route is defin ed by the destin a tion ’ s IP addre s s and n e tw or k m ask. NOTE: Once you define a RI P rou t e fi lte r , the d e fault actio n c han ges fro m lea r nin g a nd adverti sing all rou t es to d enyin g all route s except the ones yo u e xp lic itl y pe rmit.
C onfigu r ing RIP 5. Enter the f ilter ID . 6. Selec t ei th er Permi t or De ny as the actio n. 7. Enter a n IP addres s and mask or the w ild card v a lu e, 0 . 0.0.0, to all ow all ro ute s. 8. Click th e Add b u tton to sa ve the change t o the d e vice ’ s runni ng-c onf ig fil e.
Ins t allat i on and G e tting Started Guide 2. Cl ick on th e plus si gn next t o Conf igure in the tree view to expan d the l ist of confi gura t ion optio ns . 3. Cl ick on th e plus si gn next t o RI P i n th e t r ee vie w to expand th e l i st of RI P op tio n link s.
C onfigu r ing RIP This di splay s how s the follo wi ng inform ation. T a ble 7.3: CLI Dis p lay of RIP Filte r Info rm atio n Th is Field... Displays. .. Ro ute f ilter s T he row s und erneath “ RIP Ro ute Fi l ter T able ” list t he R I P rou t e filte r s.
Ins t allat i on and G e tting Started Guide USING THE WEB MANAG EME NT INTERF ACE T o disp lay RI P fil t er i n forma t io n: 1. L og o n to th e devi ce using a val id us er n am e and p asswor d for rea d -on ly or read -write ac ces s. Th e Syst em c onfigu r ation pan el is dis play ed.
Chap ter 8 Configurin g OSPF This ch apter d esc ribes ho w to con f igure OSPF on HP rou t ing s w itches us in g the C L I and W e b ma nagemen t in ter f ac e. T o disp lay O SPF config ura t ion informati on and st ati s tics, see “ Dis p layi ng OSPF Info rma t io n ” on p age 8-3 9 .
Advanced C onfigu r ation and Management G u id e Y o u can f u rth e r l imi t th e b r oadcast area of flooding by defining an a r ea range. The are a ra nge allow s y ou t o assi gn an aggregate value to a range of IP addres se s.
C onfigu r ing O SPF Designated Router Election In a n e tw or k w i th n o desi gnate d router and no bac k up d esi gn ate d ro ute r , the n e ig hboring rou t er wi th the hig hes t pr iority is el ected as the D R, and the route r wi th the ne xt l a rge s t p r iority is el ected as the BD R, as sho w n in Figu re 8.
Advanced C onfigu r ation and Management G u id e W hen on ly on e rou t er on the n e twork cl aim s t he D R rol e despi t e n e ighbo rin g routers wi th high er pri o rit i es or rou t er IDs , this rou t er rema ins th e DR. Thi s is also tr ue f o r BDRs .
Configu ring OSPF 8 - 5 Figure 8.4 AS External LSA reduction Notice th at both Router D a nd Route r E have a route to the other routing d omain th rough Ro uter F .
Advanced C onfigu r ation and Management G u id e Algorithm for AS Exte rnal LSA Reduction Figure 8. 4 show s an exampl e i n which the norma l AS Ex ternal LSA redu ction fea t ure is in ef fect.
C onfigu r ing O SPF Since dy nami c m emo ry allocat i on is autom a ti c and req u ire s no conf igu r ati on, the fol low ing CL I c omm and s and e quiva len t W eb management option s ar e n o t s up ported i n so ft wa re r e le ase 07.
Advanced C onfigu r ation and Management G u id e • Di sab le or re-enabl e load sharing. • Enable o r disab le defaul t-informati on-orig ina t e. • Modi fy Sho r tes t Pat h Fi rst (SPF) t ime rs • Defi ne extern al route s ummar izati o n • Def i ne red i st rib u ti on m etr ic typ e.
C onfigu r ing O SPF Note Rega rd ing Dis a bling OSPF If yo u d is able O SPF , the routing sw it ch rem oves a ll the co nfigura t io n i n for mat ion fo r the disa bled proto col fr om the running-c onf ig .
Advanced C onfigu r ation and Management G u id e The <num > | <i p-addr> para m et er spe c if ies t he a r ea numbe r , wh ich c an be a numb er o r in IP ad dre ss form at . If y ou sp eci fy an numbe r , the n u m ber can be from 0 – 2,147,483, 647 .
C onfigu r ing O SPF As si gn a T ota lly Stubby Ar ea By defau l t, the routing sw it ch se nds s ummary LSAs (LSA t y pe 3) into st ub areas. Y ou can fu rther red uc e th e num ber o f li nk st ate.
Advanced C onfigu r ation and Management G u id e The H P imple men tat i on of N S SA is ba sed on RFC 1 587 . Figure 8. 5 shows an exampl e o f an OS PF network co nta i ning an NSSA. OSPF ABR RIP Domain NSSA Area 1.1.1.1 OSPF Area 0 Backbone Internal ASBR Fi gure 8.
C onfigu r ing O SPF Con f iguring an NSSA T o conf igu r e a n NSSA, us e one o f th e following me thods . USING THE CL I T o conf igu r e OSPF area 1.1 . 1.1 as an NSSA, e n ter the fo llowing comm ands . HP9300(config)# router ospf HP9300(config-ospf-router)# area 1.
Advanced C onfigu r ation and Management G u id e 6. Enter the a r ea ID in the Area ID field. T he ID can b e a numbe r or an I P address. 7. Selec t NSSA b y clicking on the ra dio button ne xt to NSSA i n th e T ype field . 8. Enter a co st in the Stu b Cost fi eld.
C onfigu r ing O SPF NOTE: If the devic e alre ady ha s an OSPF area range, a table l i st ing the ran ges is disp layed. Cl ic k the Modi fy bu tton to the right of the row des c ribin g a ran ge t o c han ge its co nfiguration, o r c lic k the Add Area Ra nge lin k to d is p lay the O SPF Area R ange conf igu r ation pan el.
Advanced C onfigu r ation and Management G u id e USING THE WEB MANAG EME NT INTERF ACE 1. L og o n to th e devi ce using a val id us er n am e and p asswor d for rea d -w rit e ac c e ss .
C onfigu r ing O SPF 5. Click on th e Interfa ce link . • If the d ev ice does n o t h a ve any O SPF interfa ce s , the OSPF Interface configura t ion pa nel is disp layed, a s sh ow n i n th e f o llowin g e xampl e.
Advanced C onfigu r ation and Management G u id e Modify Int e rfa ce Defa ult s O SPF h as in terfa ce pa ram e ter s that you can c onf igure. For simplicity , each of t hese p a ram ete rs has a defaul t va lue. No cha nge to the s e defa ult va lues is req u ire d exc ept as neede d for spec ifi c ne tw or k c onf igu r ati ons.
C onfigu r ing O SPF 1 1. M odify the de fault v a lues of the fol l ow i ng interface p a rame ters as ne eded: hello int e rv al, retra nsmi t interval, tra nsmit delay , dead interva l, priority , and co st .
Advanced C onfigu r ation and Management G u id e Block Flooding of Out bound LSAs on Specific OSP F Interfaces By defau l t, the routing sw it ch flo o ds a ll outbound L SAs on a ll the O SPF in terface s wi thi n an ar ea. Y ou ca n c onfigu r e a filte r to block ou tbound L SAs o n an O SPF i n terface.
C onfigu r ing O SPF OSPF Area 2 HP9308C Router ID 209.157.22.1 HP9308A Router ID 10.0.0.1 OSPF Area 0 OSPF Area 1 “transit area” HP9308B Fi gure 8.
Advanced C onfigu r ation and Management G u id e USING THE WEB MANAG EME NT INTERF ACE T o conf ig ur e a vi rtual li n k: 1. L og o n to th e devi ce using a val id us er n am e and p asswor d for rea d -w rit e ac c e ss .
C onfigu r ing O SPF 8. Enter the r oute r ID of the neig hbor rou t er . 9. Modi fy the default s e tting s o f the fo llowing param e te rs i f needed: hel lo int e rval, tran sit delay , retra nsmit in ter v al and, d ead interv al .
Advanced C onfigu r ation and Management G u id e Th e MD 5 m et hod of authentic ation e ncr ypts the auth en t ication k ey y ou defi ne. The a u the n tication is in clud ed i n ea ch O SPF p ack et transm itted.
C onfigu r ing O SPF ASBR (Autonomous System Border Router) RIP Domain OSPF Domain Figu re 8. 7 R ed is tri butin g OSPF an d stati c ro u t es to RIP ro ut es USING THE CL I EXAM P LE: T o c onfigu r e the HP 9 308 M routi ng sw it ch ac ti ng as an ASBR in Figu re 8 .
Advanced C onfigu r ation and Management G u id e Syntax : de ny | p e rmit redi stribute <filt er-nu m> al l | bgp | conne cte d | rip | sta t ic [addr ess <ip-a ddr> <ip - mask> [ .
C onfigu r ing O SPF 6. Op tionall y , enter the IP addre ss and m ask if y ou w a nt t o filte r the red ist rib u ted rou t es for a s pecif ic network range . 7. Op tionall y , enter the fil t er I D or a cc ept the ID v a lue i n th e Filte r ID field.
Advanced C onfigu r ation and Management G u id e Syntax : de fault-m e tri c <val ue > The < va l ue> can b e fr om 1 – 16,777 ,21 5. The default is 10 . USING THE WEB MANAG EME NT INTERF ACE T o modi fy the c o st tha t is as si gned to redis t ribute d ro ute s: 1.
C onfigu r ing O SPF 5. Selec t th e Enabl e radio bu tton ne xt to R e dis t rib u ti on. 6. Cl ick th e Apply bu tton to apply the c hange to the d evi ce ’ s running -config fil e.
Advanced C onfigu r ation and Management G u id e Disable or Re-enable Load S h aring HP routing switches can lo ad sh are amo ng up to e i ght equa l-c o st IP route s to a d est ination. By defa ul t, IP loa d s haring is enabled. Th e defau l t i s 4 equal -co st paths but you can speci fy from 2 – 8 pat hs .
C onfigu r ing O SPF Configure E x ter n al Route S u mmarization W hen the rou t ing s w itc h is an OSPF Auton om ous Sy stem Boundary Rou t er (ASBR), you c an c onfi gu r e it to ad vertis e one ex ternal route as an aggregate for all red ist rib u ted rou t es that a r e c ove re d by a sp eci f ie d addre ss range .
Advanced C onfigu r ation and Management G u id e USING THE WEB MANAG EME NT INTERF ACE Y o u cannot c on f igure OSPF rou t e s ummar ization u s i ng the We b m an ageme nt i n terface.
C onfigu r ing O SPF Modify S P F T i mers The routi ng switch us es the fol l ow i ng tim e rs when ca lc ulating t he s hor tes t pa th for OSPF routes : • SPF delay - When the rou t ing switch rec eive s a top ol ogy c hange, the software wait s b e fo re i t st arts a Shortest P a th First (SPF) calc ula t ion.
Advanced C onfigu r ation and Management G u id e 6. Cl ick th e Apply bu tton to save the chang e t o the devi ce ’ s ru nning-c onf ig fil e. 7. Select the Sa ve link a t the b o ttom o f the di alog. Sele ct Y es w hen pro mpt ed to s ave th e c onf igu r ation ch ang e to the s t artup-conf ig file on the devic e ’ s f l ash m emory .
C onfigu r ing O SPF The p ac i ng interv al, wh ic h is the int e rval at w h ich th e rou t in g s w itc h re freshes a n accumu lated group of LSAs, is c onfigu r able t o a range f r om 10 – 1 800 seco nds (30 mi nutes ). T he d e fault is 240 s ec onds (f our minute s ).
Advanced C onfigu r ation and Management G u id e • vi rtual-interfa ce-receiv e -b ad-packet-trap • interface-retra n smit-packe t-trap • vi rtual-interfa ce-retransmit-pa cket-trap • origina.
C onfigu r ing O SPF 5. Sele ct Disa bl e n ext to RFC 15 83. 6. Cl ick th e Apply bu tton to save the chang e t o the devi ce ’ s ru nning-c onf ig fil e.
Advanced C onfigu r ation and Management G u id e The <num > indi cates th e number o f O SPF route s a llo w ed and ca n b e fro m 400 0 – 320 00.
C onfigu r ing O SPF 7. Select the Sa ve link a t the b o ttom o f the di alog. Sele ct Y es w hen pro mpt ed to s ave th e c onf igu r ation ch ang e to the s t artup-conf ig file on the devic e ’ s f l ash m emory .
Advanced C onfigu r ation and Management G u id e Link State Database Approaching Overfl ow Trap: Enabled OSPF Area currently defined: Area-ID Area-Type Cost 0 normal 0 OSPF Interfaces currently defin.
C onfigu r ing O SPF T abl e 8 . 2: C L I D i sp lay of OSPF A rea Inf orm ati on (Co ntinued) T ype T he area type, w h ich c an be one of the fol l ow i ng: • nssa • no rmal • stub Co st T he area ’ s cost . SPFR T he SPFR va lue. AB R T he ABR numbe r .
Advanced C onfigu r ation and Management G u id e T abl e 8 . 3: C L I Display of O SPF Neighbor Info rmati on ( Con t inued) Pri T he O SPF pri o ri ty of th e n e ighbo r . The priority is used durin g electio n of the Desig nate d R outer (D R) a nd Backup desi gnated R oute r (BD R).
C onfigu r ing O SPF 3. Cl ick on th e plus si gn next t o O SPF i n th e tree v iew to exp and th e list of OSPF opt ion li nks. 4. Cl ick on th e N ei ghb or link . Dis p lay i ng OS PF Interface Info rm ation T o disp lay O SPF int e rfac e information for th e routing s w itc h, us e one o f the follo wi ng me tho ds.
Advanced C onfigu r ation and Management G u id e T a ble 8. 4: C LI Di splay of OSPF R ou t e Infor mat ion ( C o ntinu e d) Mask T he netw o rk mas k for the route. Path_ C os t T he cos t of th is rou t e p a th. (A route can h a ve mu ltipl e pa ths .
C onfigu r ing O SPF USING THE WEB MANAG EME NT INTERF ACE Y o u cannot d isp lay the OSPF rou t e tabl e using th e W eb mana gemen t interfa ce. Displaying OSPF External Link State I nfo rmation T o disp lay e x terna l li nk st ate in formation for the routing sw itch , use one of the f o llowin g m e thods .
Advanced C onfigu r ation and Management G u id e USING THE WEB MANAG EME NT INTERF ACE 1. L og o n to th e devi ce using a val id us er n am e and p asswor d for rea d -on ly or read -write ac ces s. Th e Syst em c onfigu r ation pan el is dis play ed.
C onfigu r ing O SPF For exam ple, t o de termine a n ex ternal LSA ’ s index number , ente r the fo llo wi ng comman d: HP9300> show ip ospf external-link-sta te Index Aging LS ID Router Seq(hex) Chksum 1 1332 130.132.81.208 130.130.130.241 80000002 000085ae 2 1325 130.
Advanced C onfigu r ation and Management G u id e Displaying OSPF ABR and ASBR I n formation T o disp la y OSPF ABR and ASBR i n fo rm at ion fo r the rou t ing s w itc h , u se one of the fol l owing me tho ds.
Chap ter 9 Configurin g I P Mul t icast Pro t ocols This ch apter d esc ribes ho w to con f igure HP rou t ing switc hes for Proto co l Indepen dent M u lt ica st (PIM) an d Di sta nce V e cto r Multi cast R outing Proto c ol (DVM RP ). H P r outing sw it ch es suppo rt R FC 1 075 for DV MRP a nd PIM De nse (PIM-DM).
Advanced C onfigu r ation and Management G u id e Upstr eam : Re presen ts the di rec t ion f r om which a rou t er rece ives mu lticast data pac ke ts . An up str e am r outer is a node t hat sends mu lti cast pac kets . Downstr eam : R epr esent s the directi on to wh ich a rou t er forw ar ds multi cast data packets .
Conf igu r in g IP Multic ast Pro t ocol s USING THE WEB MANAG EME NT INTERF ACE T o modi fy the defau l t v al ue f o r th e I GMP qu ery interv al : 1. L og on to t he dev ic e usi ng a val id us er n ame and pass wo rd for read -write ac cess . The Syste m con f igurat ion p anel i s disp laye d.
Advanced C onfigu r ation and Management G u id e Enab ling Hardware Forwa rding for all Fra g ments of IP Multica s t Pack ets By def ault , an HP ro ut ing switch forwar ds th e f i rst fragment of a fr agment ed IP mu lticast pack et thro ug h ha rd ware, bu t forward s the re maini ng fragments through the s o ftw ar e.
Conf igu r in g IP Multic ast Pro t ocol s For exam ple, i n Fi gure 9 . 1 th e s en der wi th add res s 2 07.95.5 . 1 is sending mul t icast p a ck ets to the gro up 2 29.2 25. 0.1 . If a PIM route r rec e iv es any g r oups o t her than tha t group, the route r discards the gro up a nd sen ds a pr une me ssag e to the up stream PIM rou t er .
Advanced C onfigu r ation and Management G u id e Group Member Group Member Leaf Node (No Group Members) R5 R3 R4 R6 R1 R2 Leaf Node Leaf Node Video Conferencing Server (207.95.5.1, 229.225.0.1) (Source, Group) ... Group Member Group Member Group Member .
Conf igu r in g IP Multic ast Pro t ocol s Configuring PIM NOTE: This se ction describe s h ow to c onfi gur e th e “ d ense ” mode of PI M, de sc ri be d i n RFC 1075. See “ Co nfiguri ng PIM Spars e ” o n p age 9-1 3 fo r information abo ut con f iguring PI M Spars e.
Advanced C onfigu r ation and Management G u id e 8. If you a r e configu r ing an IP T u nnel, e n te r the IP addr ess of the destinat ion interfa ce, th e end p o in t o f the IP T u nnel, i n t he Rem o te Address fiel d. IP tunne ling mus t also be e nab led a nd defi ne d on the d es t ination ro ute r in ter f ac e a s we ll.
Conf igu r in g IP Multic ast Pro t ocol s 5. Enter a v alue fr om 10 – 3600 into the Nei ghbor R o ute r Tim eout fi eld . 6. Cl ick th e Apply bu tton to save the chang e t o the devi ce ’ s ru nning-c onf ig fil e. 7. Select the Sa ve link a t the b o ttom o f the di alog.
Advanced C onfigu r ation and Management G u id e A p r une s t ate is m a intained until the prune t i me r e x pi res or a gra ft m essage is rec e ived for the forw ar din g en try .
Conf igu r in g IP Multic ast Pro t ocol s M odifying Ina c tiv i ty Ti me r The rou t ing s w itc h de let e s a forw a r ding entry if th e entry is no t used to send mult ic as t packet s. The PIM ina c ti vity timer de fin es how long a forw ar din g en try can re main unused be fore the rou t ing s w itc h de letes it .
Advanced C onfigu r ation and Management G u id e 8. Select the Sa ve link a t the b o ttom o f the di alog. Sele ct Y es w hen pro mpt ed to s ave th e c onf igu r ation ch ang e to the s t artup-conf ig file on the devic e ’ s f l ash m emory . PIM S par se Ov erv i ew Software release 0 6 .
Conf igu r in g IP Multic ast Pro t ocol s • BSR – The Boo tst rap Route r (BSR) d ist rib u te s RP i n forma t ion to the oth e r PI M Spars e route r s wi thi n th e doma in . Ea ch PIM Spars e doma in ha s one ac tive BSR . For redu ndanc y , you c an con f ig ure ports on mu lti p le route r s as c and idate BSR s.
Advanced C onfigu r ation and Management G u id e • Conf igure the fol l ow i ng int e rfac e para met ers : • Conf igure an IP addres s on the int e rfa ce • Enable PIM Spars e. • Identify the interfa ce as a PIM Spars e bo rder , i f a pplicabl e.
Conf igu r in g IP Multic ast Pro t ocol s Syntax : [no ] ip pim-s p ar se The c ommand s in this ex ample ad d a n IP i n te rface t o po rt 2 / 2, then enabl e PIM Spars e on the i n terface.
Advanced C onfigu r ation and Management G u id e By defau l t, this c omma nd con f igures th e routing s w itc h as a cand idate RP for all group n um ber s begi nning wi th 2 24. As a resul t, the ro uting sw itch is a c an d idate R P for all v a lid PIM Sp ars e gr oup numbe rs.
Conf igu r in g IP Multic ast Pro t ocol s Changing th e Shortest Path T r ee (SPT) Threshold In a t yp i cal PIM Sp ars e doma in , there ma y b e tw o or m o re pa ths from a D R (de si gna ted router) fo r a multicas t s ource to a PIM group rec e iver .
Advanced C onfigu r ation and Management G u id e USING THE WEB MANAG EME NT INTERF ACE Y o u cannot c on f igure P IM Spars e pa rame ters using the W eb managem ent int e rfa c e.
Conf igu r in g IP Multic ast Pro t ocol s This di splay s how s the follo wi ng inform ation. Th is Field... Displays. .. Glob al PIM Sparse mo de se ttin gs He llo in terval How frequently the ro uting s w itc h sen ds PIM Spa r se hello me ssages to it s PIM Sp ars e ne ighbors.
Advanced C onfigu r ation and Management G u id e TT L Th re shol d Fol lo wi ng the TT L th re shol d va lu e, th e i nterf ac e s tat e i s list ed . The in terfac e s t ate c an be one of t he follow ing: • Di sabled • Enabled Local Addre ss I ndicates the IP a ddre ss c onf igu r ed on t he port or v i rtu al int e rfa c e.
Conf igu r in g IP Multic ast Pro t ocol s Next bootstrap message in 00:00:20 Next Candidate-RP-advertisement in 00: 00:10 RP: 207.95.7.1 group prefixes: 224.0.0.0 / 4 Candidate-RP-advertisement period: 60 This ex ample s how in forma t ion d i spla yed on a ro uting switch tha t ha s been el ected as the BSR .
Advanced C onfigu r ation and Management G u id e RP I ndica tes the IP addre ss of the Ren dezvous Poi n t (RP). Note : Thi s fi eld appea rs only i f this rou t ing s witch is the BSR . gr oup pr efixes I ndica tes the m u lti cast groups for wh ich the R P lis ted by the pr evi ous fi eld i s a cand ida t e R P .
------------------------------- Conf igu r in g IP Multic ast Pro t ocol s Ca ndida te-RP-a d vertisemen t period I ndi cates h ow fr equent ly the BSR se nds can d idate RP advert i sement mess age s. Note : Thi s fi eld ap pears onl y i f this rou t ing switch is a candi date R P .
Advanced C onfigu r ation and Management G u id e This di splay s how s the follo wi ng inform ation. Th is Field... Displays. .. RP I ndica tes the IP addre ss of the Rendez vous Poi n t (RP) for th e specif ied PIM Spa r se group.
Conf igu r in g IP Multic ast Pro t ocol s Dis p la yi ng M ult ic ast Neighbo r Infor mat ion T o disp lay in form at ion about th e r o ut ing sw it ch ’ s IP M u lti ca st neighb ors , use eit her o f the fo llowing m e thods .
Advanced C onfigu r ation and Management G u id e HP9300(config-pim-router)# show ip pim flowcache Source Group Parent CamFlags C amIndex Fid Flags 1 209.157.24.162 239.255.162.1 v2 00000700 2023 00004411 F 2 209.157.24.162 239.255.162.1 v2 00000700 201b 00004411 F 3 209.
Conf igu r in g IP Multic ast Pro t ocol s This di splay s how s the follo wi ng inform ation. Th is Field... Displays. .. ( <so u rce> , <group> ) T he com ma -sepa rated v a lues in parent heses is a s our ce -group p ai r . T he <so u rc e> is the PIM sourc e for the mu lti cast <group> .
Advanced C onfigu r ation and Management G u id e pr un e ports I ndica tes the p hysic al port s on wh ich the rou t ing sw it ch has rec e ived a pr une no tif i ca tio n (i n a Join/ P rune me ssage) to rem ove t he rec e iver fr om the list of recipie n ts for the group.
Conf igu r in g IP Multic ast Pro t ocol s Re gSto p T he num ber of Re gi ste r Stop m ess ages se nt o r rec ei ved on th e in terface. As se rt T he num ber of Ass e rt m ess ages s ent or rec e ived on the int e rfa c e. T otal Re cv/Xm it T he total nu mber o f IG MP mess ages sent and re ceived by the routing swi t ch .
Advanced Configu ration and Ma nagemen t Guide 9 - 30 Figure 9 .4 PIM Sparse doma ins jo ined by MSDP rou ters In this example , the s ource for PIM Sparse m ultica st group 2 32.0.1.95 is in PIM Sparse domai n 1. The s ource sends a pack et for t he grou p to its di rectly at tached DR.
Conf igu r in g IP Multic ast Pro t ocol s PIM Spars e RPF tree to sen d t he m essage to its peers with in the tree . In Fig u re 9.4 , the M S DP rou t er floods th e Sourc e Ac tiv e messa ge it receiv es from its peer in domain 1 to i ts oth e r p eers , in do main s 3 and 4.
Advanced C onfigu r ation and Management G u id e Conf ig uring M S DP Peers Us e the fo llowin g C LI metho d to co nfigure an MS DP pee r . USING THE CL I T o conf igu r e a n MSDP peer , enter a co mmand s uch as the fo llowin g at the MS DP co nfigura t ion leve l.
Conf igu r in g IP Multic ast Pro t ocol s M S DP Sum m ary Inform atio n ( Cont inued) KA In The numbe r of MSD P Keepali ve messag es the MSD P router h a s rec e ived from the p eer KA Out T he num.
Advanced C onfigu r ation and Management G u id e MSDP Peer Informat ion This Fie l d... Displ ays... T o tal numbe r of MSD P peers T he nu mbe r of MSD P pee rs c onf ig ured on the rou t ing s w it.
1 2 3 4 5 6 7 Conf igu r in g IP Multic ast Pro t ocol s MS DP Pee r Information ( Conti nued ) Notific a ti on M essage Error Co de Rece ived If the M SDP rou t er rec e ives a N O TI FIC A TION message s from the neighbor , the mess age c ontain s an e rror c o de co rres po ndi ng to o ne of the f o llowing e rrors .
Advanced C onfigu r ation and Management G u id e MS DP Pee r Information ( Conti nued ) This Fie l d... Displ ays... TCP Sta t istic s TCP conn ection st ate T he state of th e c on nectio n wi th t he n ei ghb or . The conne cti on ca n have o ne of the f o llowin g s t at es: • LISTE N – W a iting f o r a connection requ est.
Conf igu r in g IP Multic ast Pro t ocol s MS DP Pee r Information ( Conti nued ) ReT r an s T he numbe r of se quence n u m bers th at the M SDP router retr ansm it te d b eca use t h ey were no t acknow le dg ed. IRcvSeq T he initia l rece ive sequ enc e num ber for the sess ion .
Advanced C onfigu r ation and Management G u id e MS DP Sourc e Activ e Ca che ( Co ntinu e d) RP The RP through wh ic h recei ver s c an acc ess t he g r oup traffic fro m th e sour ce Age T he nu mbe r of seco nds the en try has b een in the cach e This Fie l d.
Conf igu r in g IP Multic ast Pro t ocol s DVMRP Overview HP routing switches provid e m ult ic ast rou t in g w ith th e Dis t anc e V ect or M u lticast Routing Protocol (DVM RP) rout in g pr ot oc ol . DVMRP uses Interne t Gro up M emb ership Prot ocol (IG M P) to m an age the IP m ult icas t gr oups.
Advanced C onfigu r ation and Management G u id e Figu re 9. 5 D owns tream b road cast o f IP mu lti cast p ackets fro m so ur ce h o st 9 - 40 Group Member Group Member Leaf Node (No Group Members) R5 R3 R4 R6 R1 R2 Leaf Node Leaf Node Video Conferencing Server (207.
Conf igu r in g IP Multic ast Pro t ocol s Figu re 9. 6 P ru ning l eaf n od es fro m a m ultic ast t re e Grafts to a Multicas t T ree A D VMR P router res t ore s pr uned b r anc hes t o a multi ca s t t r ee by se nding graft mess ages tow a rds the upstre am route r .
Advanced C onfigu r ation and Management G u id e Configuring DVMRP En abling DV MRP on t h e Rout i ng Swi t ch and I n terface Suppose you wan t to initi a te the use o f de sktop vi deo for fel l ow u ser s o n a sp rawling ca mpus network .
Conf igu r in g IP Multic ast Pro t ocol s 1 1. Cli ck Enable o r Dis able n ext to Encaps ulation to enabl e o r di sable the fea t ure . 12. Cli ck the Ad d b u tton to save the ch ange t o th e d e vice ’ s running-c onf ig fil e. 13 . S el ect the Save link a t the b o ttom o f th e dialog.
Advanced C onfigu r ation and Management G u id e 5. Enter a v alue fr om 40 – 8000 into the Nei ghbor R o ute r Tim eout fi eld . 6. Cl ick th e Apply bu tton to save the chang e t o the devi ce ’ s ru nning-c onf ig fil e. 7. Select the Sa ve link a t the b o ttom o f the di alog.
Conf igu r in g IP Multic ast Pro t ocol s HP9300(config-dvmrp-router)# route-dis card-timeout 150 Syntax : rou t e-d isc ard - tim eou t < 40-8000> USING THE WEB MANAG EME NT INTERF ACE 1. L og o n to th e devi ce using a val id us er n am e and p asswor d for rea d -w rit e ac c e ss .
Advanced C onfigu r ation and Management G u id e 3. Cl ick on th e plus si gn next t o DVMR P in the tree vi ew to expand the list o f DVMRP option li nks . 4. Clic k on the Ge ne ral link to d i sp la y the DV MRP c onf igu r ati on panel . 5. Enter a v alue fr om 5 – 3600 i n the G r aft Re tra nsmit T ime fi eld.
Conf igu r in g IP Multic ast Pro t ocol s M odifying T r igge r Inte rval The T rigge r Interval define s how o ften trig ger upd ate s, wh ich re fle ct cha nges in the netw o rk topolo gy , a r e s en t. Exampl e changes in a netw o rk topolog y inc lu de route r up or dow n or c ha nge s i n th e m e tr ic.
Advanced C onfigu r ation and Management G u id e M odifying the TTL The TTL de fi nes the minimum val ue req uir ed in a packe t in order fo r t he packet to be forw a r ded ou t the int e rfa c e.
Conf igu r in g IP Multic ast Pro t ocol s 8. Select the Sa ve link a t the b o ttom o f the di alog. Sele ct Y es w hen pro mpt ed to s ave th e c onf igu r ation ch ang e to the s t artup-conf ig file on the devic e ’ s f l ash m emory .
Advanced C onfigu r ation and Management G u id e 6. Selec t En able n ext to Encaps ulation. 7. Click th e Add b u tton to sa ve the changes to the devic e ’ s run n ing-confi g f ile .
Conf igu r in g IP Multic ast Pro t ocol s 4. Cl ick on th e V i rtual I n ter f ac e li nk to dis play the DV MR P Interfac e c onf igu r ati on pan el. NOTE: If the de vic e already ha s DV MRP i n te rfaces, a table l ist ing th e interfac es is dis play ed.
Advanced C onfigu r ation and Management G u id e NOTE: In IP m ult ic astin g , a rou t e i s h andled in terms of its so urc e, rathe r th an i ts destinati on . Y ou ca n us e t he eth ern et <p or tn um > par amet e r to sp ecif y a p h ysi cal po rt or t he ve <num> pa ram e ter to s pecify a vi rtu a l int e rfa c e.
Conf igu r in g IP Multic ast Pro t ocol s PIM router D Server e3/19 Client e1/4 207.95.7.1 e1/5 207.95.8.10 e4/1 1 207.95.6.1 e3/1 1 PIM router C PIM router A e1/8 207.95.8.1 PIM router B e2/3 207.95.7.2 e1/2 207.95.6.2 Client 9.9.9.101 Multicast group 239.
Advanced C onfigu r ation and Management G u id e Tracing the route for tree 209.157.23. 188 0 207.95.7.2 0 207.95.7.2 Thresh 0 1 207.95.7.1 Thresh 0 2 207.
Conf igu r in g IP Multic ast Pro t ocol s Displaying Ano the r Mu lti cast Rou t er ’ s M ulti cast Confi gur ati on The H P im pl ementati on o f Mr info is bas ed on t he D VMR P Int e rne t draft by T . Pus a te ri, but ap pli es to PIM an d n ot to DVMRP .
Advanced C onfigu r ation and Management G u id e 9 - 56.
Chapter 10 Configurin g BGP4 This chapter pr ovid es de tails on h ow to co nf igure Bord er Gat ew ay P rot oco l ve rs ion 4 (B GP 4) on HP products us ing t he C L I an d the W eb m anagement in terface .
Advanced C onfigu r ation and Management G u id e ne twork s tha t s hare the same rou t ing a nd a dmi nistration c har acteri sti cs. Fo r e x am ple, a c o rpo r ate intran et c onsisti ng of sev e ral netw ork s u nder co mmon administ r ati ve cont rol mi ght b e c onsidered an AS.
Conf igur in g B GP4 “ AS_ P A TH ” .) • Addit i on al path att r ibu t es – A list o f a dditional param e ters that d esc ribe the route. T he route ori g in and n ext h op a r e e xampl es of the se ad ditional p a th att r ibu t es .
Advanced C onfigu r ation and Management G u id e • IN COMP LETE i s highes t 7. If the rou t es have the sa me ori g in type, prefer th e route with the lo we st MED. NOTE: If the pa th does not have the ME D attri bu t e, HP ’ s BGP4 u ses ze ro as the ME D value for the com pariso n.
Conf igur in g B GP4 routing s w itc h doe s n o t h ave a loo pb a ck in terf ace, the d e fault router ID is the low e st num bered IP addres s c onfigu r ed on the devic e. For more in formation or t o c han ge the rou t er ID , se e “ Changin g t h e R o ut er ID ” on p age 6-2 5.
Advanced C onfigu r ation and Management G u id e Basic Confi gur ati on and Activati on for BGP 4 BGP4 is dis abl ed by defau l t. T o enabl e BGP4 a nd pla ce your H P routi ng sw it ch in to s e rvice a s a BGP4 ro ute r , y ou mu st perfo rm at leas t the f o llowin g s t ep s: 1.
Conf igur in g B GP4 HP9300(config-bgp-router)# no router b gp router bgp mode now disabled. All bgp config data will be lost when writing to flash! The W eb managemen t interfa ce does not dis play a w a rning m essa ge.
Advanced C onfigu r ation and Management G u id e • Op tional – Define IP prefix l i sts. • Op tional – De fine nei ghbor d ist rib u te li sts . • Op tional – De fine BGP 4 rou te maps for f ilte r in g routes re dis t ribute d in to RI P an d OSPF .
Conf igur in g B GP4 Wh en P a ra met er Ch anges T a ke Effect Some par ameter changes tak e ef fect im media t ely w h ile oth e rs do not tak e fu ll ef fec t un til the router ’ s sessio n s wi th i ts nei ghbors are clos ed, the n resta r ted .
Advanced C onfigu r ation and Management G u id e T abl e 1 0.1: Maxi mum Memo ry Us ag e Platform M aximum Memor y BGP4 Ca n Us e Man ageme nt m odule with 32 MB Note : This amo unt als o app lies t o HP 6 308 M-SX rout ing sw i t ches wi th 32 MB.
Conf igur in g B GP4 12. O pti ona ll y enable automatic summar iz ation o f s ubn ets at the clas sica l IP b ou nda ries (clas ses A, B, a nd C). 13. O pti ona ll y aggr egate route s in the BGP4 route ta ble in to C IDR blo cks. 14. O pti ona ll y c onf igure the routing sw i t ch as a BGP4 rou t e refle c to r .
Advanced C onfigu r ation and Management G u id e • L oopbac k int e rfac e 1, 9. 9.9 . 9/2 4 • L oopbac k int e rfac e 2, 4. 4.4 . 4/2 4 • L oopbac k int e rfac e 3, 1.
Conf igur in g B GP4 USING THE WEB MANAG EME NT INTERF ACE 1. L og on to t he dev ic e usi ng a val id us er n ame and pass wo rd for read -write ac cess . The Syste m con f igurat ion p anel i s disp laye d. 2. Selec t th e Enable ra dio button next to BG P .
Advanced C onfigu r ation and Management G u id e 7. Cl ick on Conf ig ure in t he tree view to dis play the confi gura t ion o p tions . 8. Cl ick on IP t o di spla y the I P configura t ion optio ns. 9. Selec t th e Add IP Addre s s link to dis pl ay the R out er IP Addre ss pa nel .
Conf igur in g B GP4 ad ve rti sem ent-inter v al <num> s pec ifies th e m i nimu m del ay (in se conds ) betwee n m essa ges to the sp ecified ne ighbo r . T he defa ult is 30 for EBGP neighbors (ne ig hbors i n ot he r ASs). The defau l t i s 5 for IBG P neigh bo rs (neighbo rs in the sam e AS).
Advanced C onfigu r ation and Management G u id e pre f ix-list < s tri ng> s pecif ies an IP pre f ix li st . Y o u c an us e IP p r efix l ists to co ntrol ro ute s to a nd from th e neighbor . IP pref ix lists are an alt e rna t ive m et hod to A S -pat h filte r s.
Conf igur in g B GP4 1. Enter the n e i ghbor ’ s IP ad dre ss in the IP Addres s fie l d. 2. Enter a de scrip t ion in the Desc ription field. 3. Selec t En able n ext to De fau lt Ori g inate if you wan t to enable this fea t ure for t he neighbor .
Advanced C onfigu r ation and Management G u id e 10. Sel ect Enable next t o Cl ien t T o Cl ien t Re flection if t h is ne ighbor i s a route-r e fle cto r c li ent of the rou t in g s w itc h. Us e the pa ram e ter on ly if this rou t ing sw it ch is going to b e a rout e ref l ec tor .
Conf igur in g B GP4 Adding a BGP4 Peer G r oup A p eer gr oup i s a s e t o f BG P4 n e ig hbors tha t share common param e ter s . Peer grou ps pro v ide the f o llowin g b enefits : • Simplif ied neighbor con f igurat ion – Y o u c an configure a s et of n e ighbor pa ram e ters and the n a pply t hem to mult ipl e ne ig hbors.
Advanced C onfigu r ation and Management G u id e Conf ig ur at ion Rule s The f o llowin g rules ap ply to peer g r oup configura t ion: • Y o u m ust confi gure a pee r group befo r e y ou can add nei ghbors to the pee r group.
Conf igur in g B GP4 • If you a dd a param e ter to a peer g r oup that a l rea dy co nta i ns n e ighbors, the para met er val ue is appli ed to ne ighbo rs that do not already h ave the p a ram et e r e x pl icitl y set.
Advanced C onfigu r ation and Management G u id e Apply i ng a Peer Group to a Neighbor Aft e r you co nfigure a p eer group , you can a dd neighbo rs to the group. Whe n you add a nei ghbor to a peer gro up, y ou are applying all the n e ighbo r attribu t es s pecifi e d in the peer gro up to the n ei ghb or .
Conf igur in g B GP4 The < i p-a ddr> param e ter sp ecifi es the IP addre s s of the neighb or . USING THE WEB MANAG EME NT INTERF ACE 1. L og on to t he dev ic e usi ng a val id us er n ame and pass wo rd for read -write ac cess . The Syste m con f igurat ion p anel i s disp laye d.
Advanced C onfigu r ation and Management G u id e 3. Click on th e plus si gn next t o BGP in the tre e vi ew to e xp and the list of BGP o p tio n li nk s. 4. Clic k on the Ge ne ral link to d i sp la y the BGP con f igura t ion panel, show n in Fig u re 10.
Conf igur in g B GP4 Changing t he Maximum Number of Paths f o r B G P4 Load Sharing L oad sh aring e nable s the routi ng switch to b a lanc e traf fic to a rou t e a c ro ss mu ltipl e e qual-c o st paths of the same type (EBGP or IBGP) for the rout e.
Advanced C onfigu r ation and Management G u id e NOTE: The m aximum number o f BGP4 load sharing path s cannot be greater tha n the m aximum numbe r of IP l oad sh aring p a ths.
Conf igur in g B GP4 USING THE WEB MANAG EME NT INTERF ACE 1. L og on to t he dev ic e usi ng a val id us er n ame and pass wo rd for read -write ac cess . The Syste m con f igurat ion p anel i s disp laye d. 2. Cl ick on th e plus si gn next t o Conf igure in the tree view to expan d the l ist of confi gura t ion optio ns .
Advanced C onfigu r ation and Management G u id e HP9300(config)# router bgp HP9300(config-bgp-router)# network 100 .100.1.0/24 route-map set_net The first tw o com m and s i n thi s exampl e cre a te a rou t e map n a me d “ se t_net ” t hat s e ts the com m unity a ttri bute for rout es that us e t h e r o ut e ma p t o “ NO _ EXPOR T ” .
Conf igur in g B GP4 7. Select the Sa ve link a t the b o ttom o f the di alog. Sele ct Y es w hen pro mpt ed to s ave th e c onf igu r ation ch ang e to the s t artup-conf ig file on the devic e ’ s f l ash m emory .
Advanced C onfigu r ation and Management G u id e 5. Change the n u mber i n t he D e fau l t M e tric fie l d. Y ou can enter a number f r om 0 – 42 949672 95. 6. Cl ick th e Apply bu tton to apply the c hanges to the de vic e ’ s run n in g-config file .
Conf igur in g B GP4 USING THE CL I T o cha nge the default a dmi nistra tiv e dist an ces for EBG P , IBG P , and Local BG P , en ter a c omma nd suc h as the follo w ing: HP9300(config-bgp-router)# .
Advanced C onfigu r ation and Management G u id e USING THE WEB MANAG EME NT INTERF ACE 1. L og on to t he dev ic e usi ng a val id us er n ame and pass wo rd for read -write ac cess .
Conf igur in g B GP4 NOTE: The a u to summary featur e s ummar iz es only t he route s that are redist ributed from IGP i n to BGP4. NOTE: The a u to summary featur e does not summ ari ze ne twork s t hat use C IDR n um bers inst ead of c lass A, B, or C num bers.
Advanced C onfigu r ation and Management G u id e NOTE: Route reflect i on appli es onl y among IBG P rou t ers wit h in the sa me AS. Y o u c an not co nfigure a c lus te r that spans m ult ip le ASs. Figure 10 .3 sho w s a n example of a rou t e re fle c tor co nfigura t ion.
Conf igur in g B GP4 Software release 0 7 .1.10 and highe r handles the at tribu t es as follo ws: • The routi ng switch add s the attribut es onl y i f it is a rout e ref l ector , and o n ly when ad vertis ing IBG P r oute in for mat ion to oth e r IBG P ne ighbo rs.
Advanced C onfigu r ation and Management G u id e USING THE WEB MANAG EME NT INTERF ACE 1. L og on to t he dev ic e usi ng a val id us er n ame and pass wo rd for read -write ac cess .
Conf igur in g B GP4 Figure 10 .4 sho w s a n example of a BGP4 conf ederation. IBGP Sub-AS 64513 Router D AS 20 Router C This BGP4 router sees all traffic from Confeder ation 10 as traffic from AS 10. Routers outside the confederation do not know or care that the routers are subdivided into sub-ASs within a confederation.
Advanced C onfigu r ation and Management G u id e USING THE CL I T o conf igu r e f our routing sw i t ches to be a mem ber o f c onfede ration 10, consi s ti ng of t w o sub-A S s (6451 2 and 6 4513), e n ter co mmands such as the fo llowing .
Conf igur in g B GP4 5. Enter the c onf ederation ID in the Co nfed era t ion ID field . Th e conf ederat ion ID must be diff eren t from the sub- AS n umber s. Y ou c an sp ecify a number from 1 – 6 5535. 6. Enter the AS numbers of the p eers (sub -ASs) w i thi n the c onf ede ration in the C onfeder ation Peers fie ld.
Advanced C onfigu r ation and Management G u id e 3. Click on th e plus si gn next t o BGP in the tre e vi ew to e xp and the list of BGP o p tio n li nk s. 4. Cl ick on th e Aggreg ate Addr ess li nk to dis play the BGP Agg r ega te Addre ss confi guratio n panel.
Conf igur in g B GP4 Modifying Redistribution P a rameters By defau l t, the router does not red ist rib u te rout e i n for m ation be tween BGP4 and the IP IGPs (RIP an d OSPF). Y o u can c onf ig ure the rout er to red ist rib u te OSPF rou t es, R I P route s, dire ctly connecte d route s , o r st ati c ro ute s in to BGP4 .
Advanced C onfigu r ation and Management G u id e 5. Selec t th e s our ce of the route s you wan t to redistribute i n to BGP4. Y ou c an selec t RIP , O SPF , Sta t ic , o r Connec ted (d irectly a ttac hed ) ro utes . 6. Op tionall y en ter a m et r ic for the redistributed rout es in the Metric field .
Conf igur in g B GP4 Th e ma tch inte rn al | ex ter n al1 | e x ter n al2 par amet e r appl ies on ly to OS PF . Th is par amet er sp ecif ie s t he types of O SPF routes to be red i stribu ted into BG P4 . USING THE WEB MANAG EME NT INTERF ACE Us e the p r ocedure i n “ Re dis t rib u ting R IP Rout es ” on pag e 1 0-41 .
Advanced C onfigu r ation and Management G u id e Syntax : [no ] bgp-redis t ribute - internal T o dis able re dis t ribution of I B GP rout es into RI P a nd OSPF , e n ter the fol lowing co mmand: H.
Conf igur in g B GP4 2 09.1 57. 22. 26 0 . 0.0.255, then sa ve the c hanges to the startu p-confi g fi le, the v a lue appe ars as 209.157.2 2 .0/24 (if you h ave e nabled disp lay of su b-net lengths ) or 2 09. 157.22 . 0 0 . 0.0 . 255 i n th e s t artup-c onf ig fil e .
Advanced C onfigu r ation and Management G u id e 12 . S el ect the Save link a t the b o ttom o f th e dialog. Select Y es w hen pro mpt ed to s av e the c onf igu r ati on chang e to the s t artup-conf ig file on the devic e ’ s f l ash m emory .
Conf igur in g B GP4 • If BGP AS-pa th filte rs are alre ady c onf igu r ed and you a r e adding a ne w on e, c lick on the Add AS Pat h Filte r li nk to dis play the BGP AS Pat h Filte r co nfigura t ion pane l, a s show n i n the fo llo wi ng ex ample.
Advanced C onfigu r ation and Management G u id e The < as -regular- exp r essi on> pa ram e ter sp ecifie s the AS pa th i n forma t ion you w a nt t o p e rmit o r de ny to route s that m at ch any of the ma tch s t ate m en ts wi thin the ACL.
Conf igur in g B GP4 NOTE: Y ou c annot appl y the AS pa th AC Ls to a nei ghbor u si ng the W e b managemen t in ter f ace. Y o u m ust use the C L I.
Advanced C onfigu r ation and Management G u id e T a ble 10 .2: BGP4 Spec ial Characters fo r Regular Exp ressi ons (Continued ) ^ A ca ret (when no t used wi th in brac k e ts) matches on the begin n in g o f an input s t rin g.
Conf igur in g B GP4 T a ble 10 .2: BGP4 Spec ial Characters fo r Regular Exp ressi ons (Continued ) ( ) P are n thes es all ow y ou to c r ea te c omplex expression s.
Advanced C onfigu r ation and Management G u id e NOTE: If the fil t er is referred to b y a rou t e m ap ’ s ma tc h s t atem ent, the fil t er is appli ed i n t he o r der in wh ic h the filte r is liste d in the m atch sta t ement. Th e pe rmit | de ny pa ram e ter indicat e s the ac tio n th e route r tak es if the fil t er m at ch is true .
Conf igur in g B GP4 s hould not be advert i sed o u ts ide th e sub-A S. This comm unity type app lies t o c onfede rations . • No Adverti se – Filt er s for ro ut es with th e well- know n co mmun ity “ NO_ADVER TISE ” . A rou te in t h is commun ity s hou ld not be ad vertised t o any BGP4 neigh bor s.
Advanced C onfigu r ation and Management G u id e USING THE WEB MANAG EME NT INTERF ACE 1. L og on to t he dev ic e usi ng a val id us er n ame and pass wo rd for read -write ac cess .
Conf igur in g B GP4 Defini ng IP P r efix Lists An IP p r efi x list spec ifi es a l ist of net wo rks . When y ou a pp ly an IP pre f ix list to a ne ighbor , the rou t ing s w itc h s end s or re cei ves only a rou t e w h os e desti na t ion is in the IP prefi x lis t.
Advanced C onfigu r ation and Management G u id e • If a prefix l i st ACL is al re ady config ure d an d you are adding a n ew one, cl ick on the Ad d IP Prefix Lis t lin k to disp lay the IP P r efix L ist panel, as s how n in the fol l ow i ng ex amp le.
Conf igur in g B GP4 T o a pply t he IP Prefix Lis t to a neighb or , use the fo llo wi ng pro ce dure : 1. In the tre e vi ew , clic k o n th e p l us si gn next to BGP unde r C onf igure t o di spla y the l ist of BGP configura t io n op ti on s. 2.
Advanced C onfigu r ation and Management G u id e NOTE: The c omma nd synta x sho w n above i s new b eginni ng wi th software release 0 6 .6 . X . Ho wever , the neighbor <i p-addr> distrib u t.
Conf igur in g B GP4 12 . S el ect the Save link a t the b o ttom o f th e dialog. Select Y es w hen pro mpt ed to s av e the c onf igu r ati on chang e to the s t artup-conf ig file on the devic e ’ s f l ash m emory .
Advanced C onfigu r ation and Management G u id e For exam ple, w h en you c onfigu r e p a ram et e rs for redistribu ting rou t es in to RIP , one of the op tional pa ram e ters i s a route ma p.
Conf igur in g B GP4 5. Enter the n a me of the ro ute map in the R out e M ap Name fi el d. 6. Enter the s eq uence (in s tance) n um ber in the Sequenc e f i eld.
Advanced C onfigu r ation and Management G u id e NOTE: The f ilte rs mu st a l ready be configur ed. Th e co mmunity <num> param e te r specifi e s a c ommun it y AC L.
Conf igur in g B GP4 12. O pti ona ll y e n ter an IP addre ss again st wh ic h y ou w ant to com pa r e the ro ute updat es ’ ne xt-hop attri but e. Enter the a d dr ess i n the Nex t Ho p L i st fie l d. Als o sel ect the checkb ox in front o f the fie ld.
Advanced C onfigu r ation and Management G u id e 5. Enter the n a me of the ro ute map in the R out e M ap Name fi el d. 6. Enter the s eq uence (in s tance) n um ber in the Sequenc e f i eld. The routing sw itch appli e s the insta nces in asc ending nume ric al orde r .
Conf igur in g B GP4 10. Sel ec t the type of ACL o r fil t er y ou are ad din g as a match c onditi on. Y ou ca n s e lect more than one AC L o r filte r ty pe. In thi s ex ample, sel ect AS Path A ccess List. NOTE: IP pref ix lists and ne ighbor di stribute l i sts p r ovide s eparate me ans for the sa me ty pe of f ilte r in g.
Advanced C onfigu r ation and Management G u id e USING THE CL I T o cons tru ct a ro ute ma p that m at c he s based on the next-hop ro ute r , e n ter comm ands su ch as the fol l ow i ng: HP9300(co.
Conf igur in g B GP4 Th e metric [+ | - ]<num > | n one param e te r s e ts the M ED (m etr i c) value fo r the route . The default M ED val ue is 0. Y o u can s et the pre f ere n ce to a v a l ue f r om 0 – 42949 67295. • se t m e tric <nu m> – Sets the route ’ s m e tri c to the n um ber you s pecify .
Advanced C onfigu r ation and Management G u id e 16. O pti ona ll y e n ter a l o cal pref erence in the Local Preferen ce and also se lec t t he c heckbox in fro n t o f the fiel d. The d e fa ult loc al pre f ere n ce is 100. Y ou can se t th e p r efe r ence t o a va lue fro m 0 – 4 29496 7295.
Conf igur in g B GP4 8. Select the Sa ve link a t the b o ttom o f the di alog. Sele ct Y es w hen pro mpt ed to s ave th e c onf igu r ation ch ang e to the s t artup-conf ig file on the devic e ’ s f l ash m emory .
Advanced C onfigu r ation and Management G u id e The <ha l f-l i fe > pa rame ter specifi e s the numbe r of minu tes afte r wh ich the route ’ s pe nalt y become s h alf its v alu e.
Conf igur in g B GP4 1 – 2 000 0 m inu tes . T he defa u lt is fou r ti mes the h a lf-lif e s e tting . Thus, if you us e the defa ult half-life of 1 5 minu te s, th e maxi mum su ppre ss io n time is 60 mi nute s. 10. Cli ck the Ap ply butto n to app ly the c han ges to the devic e ’ s run n in g-config f ile .
Advanced C onfigu r ation and Management G u id e • If you a r e modifying an existing BGP addres s fil t er , click o n the M odi fy button to the righ t of the row de scrib ing the filte r to dis play the BGP Address Filte r configur ation panel, a s sho w n i n the foll owin g ex ample.
Conf igur in g B GP4 14. Ent er t he n ame of the route ma p in the R out e M ap Name f i eld. 15. Ent er t he s eq uence (in s tance) n um ber in t he Sequence f i eld.
Advanced C onfigu r ation and Management G u id e 19. Cli ck on the chec kbox next to Ad dres s Fil t er t o i ndi cate th at you are using an addres s fil t er a s a m a tc h c onditi on. 20. Ent er t he a ddr ess filte r nu mber i n the Addres s Fil t er f i eld.
Conf igur in g B GP4 23. Sel ec t the c he ck box in th e D ampen ing s ect io n to specify th at this rou t e m ap is se tting dam penin g pa ram e ters . 24. Edi t t he v al ue in the Ha lf Life field to spe cify the half l i fe you w ant this route map to s et for route s t hat match the ma tc h con di t ion s you spec ified above .
Advanced C onfigu r ation and Management G u id e Using a Route Map T o Configure R oute Flap Dampening for a Specific Neighbor Y o u can u se a r oute m ap t o c onfigu r e route fla p dam pening for a specific neighbor b y pe rfo r mi ng the fol l ow i ng tasks: • Conf igure an empty rou t e m ap wi th no ma tch or set st atements.
Conf igur in g B GP4 NOTE: If the de vic e already ha s route m aps, a tab le listin g t he route m aps is di splay ed. Cl ick the M odi fy bu tton to th e rig h t of t he row de scrib in g the route map to chan ge i t s confi gur ation, o r click the Add R out e M ap Filte r li nk to dis pla y the BGP R oute M ap Fil t er p anel.
Advanced C onfigu r ation and Management G u id e 22 . S el ect the ne ighbor IP addr ess fr om th e I P Ad dr ess field ’ s pulldo wn menu. 23. Sel ec t the tr af f ic dir e ct ion to wh ich y ou want to a pply the route m ap. Y ou can s ele ct In or O u t.
Conf igur in g B GP4 6. Cl ick th e Apply bu tton to imple ment the cha nge. Displaying and Clearing Route Flap Da mpeni ng Statistics The s o ft wa re p r ovides ma ny opt ion s fo r d i splayin g a nd cl earing route flap s tat is tic s. T o disp lay th e s t ati s ti cs, u se ei the r of the fol l owi ng me tho d s.
Advanced C onfigu r ation and Management G u id e T a ble 1 0 .3: Route Flap Dam p eni ng Sta t istic s Ne twork T he destin a tion netw o rk o f th e route . Fr om T he neighb or that sen t the route to the routi ng sw it ch . Fl ap s T he numbe r of flaps (state cha nge s) the rout e has exp e ri enced .
Conf igur in g B GP4 NOTE: If you h a ve a lot of IBGP n ei ghbors , y ou c an co nfigure s o me IBG P ro ute r s a s ro ute reflectors . By do in g so , y ou ca n reduc e the numbe r of neighbors yo u need to confi gure on eac h route r .
Advanced C onfigu r ation and Management G u id e USING THE WEB MANAG EME NT INTERF ACE 1. L og on to t he dev ic e usi ng a val id us er n ame and pass wo rd for read -write ac cess .
Conf igur in g B GP4 The <num > indi cates th e number o f rou t e-a ttribute entries a llow ed on the rout er . See “ Me mory C o nside r ations ” on page 10-9 for the maximu m for y our device. The c hange tak es ef fec t after the ro ute r is reb oot ed.
Advanced C onfigu r ation and Management G u id e Displaying BGP4 In fo rmat ion Y o u can d isp la y the fol l ow i ng c on f iguration information and statis tics for the BGP 4 pro t ocol on the rou.
Conf igur in g B GP4 T a bl e 10 .4: BGP4 Su mmary I nformat io n (Co nt inued) Maximu m Number of Paths Supporte d for Lo ad Shari ng T he ma xim um num ber o f route paths acros s wh ich the device ca n bal ance tr af fic to the sam e des tin a tion.
Advanced C onfigu r ation and Management G u id e T a bl e 10 .4: BGP4 Su mmary I nformat io n (Co nt inued) State T he sta t e o f this rout er ’ s neigh bor ses s i on wi th ea ch neighb or . The stat es are from this rou t er ’ s perspe ctive of the sess ion, n o t t he nei ghbor ’ s pers pec tive .
Conf igur in g B GP4 T a bl e 10 .4: BGP4 Su mmary I nformat io n (Co nt inued) Rt Sent T he num ber of BGP4 rou t es tha t th e routing s w itc h has s ent to t he nei ghbor . RtT oS end T he number of routes the routing sw i t ch has q ueued to s end to this nei ghbor .
Advanced C onfigu r ation and Management G u id e Displaying Summary Neighbor Informat i on T o disp lay i n forma t ion for a n e i ghbor , u se the following CLI m et hod .
Conf igur in g B GP4 T a ble 1 0 .5: BGP4 Route Sum m ary Inform ation for a Neig hbor (Co n tinued) NLRIs Re ce ived in U p date M essage T he number of routes rec e ived in Ne twork La yer R each ability (N LR I) fo rmat i n UPDA TE m essa ges . • Wi thdraw s – The numbe r of wi thdraw n rou t es the rou t ing s w itc h has r e ce iv ed.
Advanced C onfigu r ation and Management G u id e T a ble 1 0 .5: BGP4 Route Sum m ary Inform ation for a Neig hbor (Co n tinued) Peer Out of Memory Co unt for Sta tisti cs for the time s the rout ing sw i t ch ha s run out of BGP4 mem o ry fo r the n e ighbor du rin g the c u rrent BGP4 ses si on .
Conf igur in g B GP4 Th e TCP s t ati sti cs a t th e end of th e d isp la y sho w st atu s for the TC P ses s i on with th e neighbor . Mos t of the f i elds s how info rmation s t ore d in th e routing switch ’ s T ran smis si on C ont rol Bloc k (TC B ) for the TCP s essi on bet we en the routi ng switch and its neig hbo r .
Advanced C onfigu r ation and Management G u id e T a ble 1 0 .6 : BGP4 Neighb or Info rm atio n ( Con t inued) EBGP/I BGP W hether the nei ghbor s ession is an IBG P sess ion, a n EBG P s essi on, or a con f ed eration EBGP s e ss ion. • EB GP – The ne ighbor is in an other AS.
Conf igur in g B GP4 T a ble 1 0 .6 : BGP4 Neighb or Info rm atio n ( Con t inued) T i me T he amount of tim e th is se ssion h as been i n its current sta t e. KeepAliv e T he k eep a live t i me, w hich sp ecifi es how o ften thi s route r sends k eep alive mess ages t o the n e ighbo r .
Advanced C onfigu r ation and Management G u id e T a ble 1 0 .6 : BGP4 Neighb or Info rm atio n ( Con t inued) Last Con necti on R e se t R eason T he reason the pre vi ous se ssio n w i th th is neigh bor ended.
Conf igur in g B GP4 T a ble 1 0 .6 : BGP4 Neighb or Info rm atio n ( Con t inued) Last Co nn ection Re set Re ason (c ont.) • Re asons s pecifi c to the H P imple m entat i on : • Re se t All Pee.
Advanced C onfigu r ation and Management G u id e T a ble 1 0 .6 : BGP4 Neighb or Info rm atio n ( Con t inued) No tifica tio n Se nt If the rou t er rec e iv es a N O TI FIC A TION message fro m t he n ei ghbor , t he mes s age co nta i ns an error c ode corres ponding t o o ne o f th e fo llowin g errors .
Conf igur in g B GP4 T a ble 1 0 .6 : BGP4 Neighb or Info rm atio n ( Con t inued) TC P Conn ectio n st ate T he sta t e o f the c onnec tio n with the n e ighbo r . T he con nec ti on can have o ne o f th e following s t ate s: • LI STEN – W ait ing for a c on nec tion request .
Advanced C onfigu r ation and Management G u id e T a ble 1 0 .6 : BGP4 Neighb or Info rm atio n ( Con t inued) Un Ack S eq T he cur r ent ackno w led ged s equenc e numbe r . IR cvSeq T he ini t ia l recei ve sequ ence n um ber for the s ession. Rc vN ext T he next sequ ence number ex pecte d fro m t he nei ghbor .
Conf igur in g B GP4 Peer Out of Memory Count for: Receiving Update Messages:0, Accept ing Routes(NLRI):0 Attributes:0, Outbound Routes(RIB-o ut):0 This di splay s how s the follo wi ng inform ation. T a ble 10. 7: BG P4 R o ute Summ ary Infor mat ion for a N e ighbor Th is Field.
Advanced C onfigu r ation and Management G u id e T a ble 1 0 .7: BGP4 Route Sum m ary Inform ation for a Neig hbor (Co n tinued) Ro ute s Ad vertised T he number of routes the rout ing sw it ch has a dve rti sed to thi s nei ghbor . • T o be Se nt – T he n um ber o f rou t es the routi ng swit ch h as que ue d to s end to thi s ne ighbo r .
Conf igur in g B GP4 Disp lay i ng the B e st R e ceived R outes T o disp lay t he route s receiv ed from a spe cif ic ne igh bor tha t are th e “ best ” rou t es to their desti nat ion s, ent er a comma nd such as the fol l ow i ng at any lev el of the CL I: HP9300(config-bgp-router)# show ip bgp neighbor 192.
Advanced C onfigu r ation and Management G u id e Displ a ying S ummar y Rou t e I n for ma tion T o disp lay s umma ry rout e i n format ion , us e the foll ow i ng C L I m e thod.
Conf igur in g B GP4 USING THE CL I T o view the BG P4 route table, ente r the follo wi ng co mmand: T o disp lay a ll the BGP4 ro utes in the routing s w itc h ’ s BGP 4 rou te table t hat are the .
Advanced C onfigu r ation and Management G u id e Displayin g t h e Best BGP4 Ro utes T o disp lay a ll the BGP4 ro utes in the routing s w itc h ’ s BGP 4 rou te table t hat are the best ro ute s t.
Conf igur in g B GP4 For inform ation about the fie l ds in thi s dis play , see T a ble 10.9 o n p age 10-105 . T he f i elds in thi s disp la y a lso a ppear i n th e s how ip bgp di sp lay .
Advanced C onfigu r ation and Management G u id e T abl e 1 0 .9: BGP4 Net w ork Info rm atio n ( Con t inued) Wei ght T he val ue tha t this rout er associ ate s wi th route s from a specif ic nei ghbor .
Conf igur in g B GP4 Dis p la yi ng Route De ta ils Here is an example of the i n forma t ion d is p layed w h en yo u use th e detail op tion. I n th is e x ample, the information for one ro ute is shown.
Advanced C onfigu r ation and Management G u id e T abl e 1 0 .10: B G P4 N e two r k Inf o rm ati on (Co ntinue d) Atomic W het her netw o rk informa t ion i n this rou t e h as bee n aggre gat ed and th is ag gregati on has resul t ed in informati on los s.
Conf igur in g B GP4 T abl e 1 0 .10: B G P4 N e two r k Inf o rm ati on (Co ntinue d) RI B_ou t T he number of neighb ors to wh ic h the ro ute has b een or w i ll be adve rti sed. h is is the n um ber of ti me s the route ha s been s e lect ed as the best rou t e and placed in the Ad j-R I B-O ut (outb ound queue ) for a BGP4 n e ig hbo r .
Advanced C onfigu r ation and Management G u id e T abl e 1 0 .1 1: BGP4 Route-Att ri bute Entries Info rm atio n ( Con t inued) Ne xt Hop T he IP ad dres s of t he nex t hop route r for rout es tha t have thi s set of a ttribute s. Metr ic T he cos t of the ro utes that h ave this set o f att r ibu t es .
Conf igur in g B GP4 Displaying the Routes BGP4 Has Placed in the I P Route T a ble Th e IP ro ute table indicat es th e route s it has received from BGP4 by list in g “ BGP ” as the ro ute type . Y ou can v iew the IP route ta ble usin g e i the r of the fol l ow i ng methods.
Advanced C onfigu r ation and Management G u id e Syntax : sh ow ip bgp f l ap-sta tis t ic s [regular-ex p ress ion <regul ar-expression> | <addr ess > <mask> [longer-p refixe s] | ne ighbo r <ip-addr> | filte r-li s t < num>.
Conf igur in g B GP4 Displaying the Act i ve R oute Ma p Conf ig uration T o view the dev ic e ’ s activ e route ma p c onf igu r ation (co n taine d in the runni ng-c onf ig ) w i thout dis playi ng the entire running-c onf ig, us e the followin g C L I m e tho d .
Advanced C onfigu r ation and Management G u id e p eer group . T he <as-n um> para met er s pecifi es a ll n e ighbo rs w ith in t he spec ifi ed AS. Th e all pa ram e ter s p ec if ie s a ll n ei ghb ors . USING THE WEB MANAG EME NT INTERF ACE 1.
Conf igur in g B GP4 • RFC 2842. Th is RFC specif ies the C a pability Adv e rti s ement, w h ich a BGP4 rou t er use s to d y nami cally n egotia t e a ca pabil ity wi th a n e ighbo r .
Advanced C onfigu r ation and Management G u id e This co mman d applies it s filt ers for o u tgoin g ro ute s to th e routing s w itc h ’ s BGP4 route table (A dj-RIB-O ut ), c hange s o r excl ude s route s acc o rd ingly , the n s ends t he resu lting Adj-R I B-Ou t to the ne ighbor .
Conf igur in g B GP4 • If yo u c l os e a ne ighbor sessio n, the routing sw itch and the ne igh bor clear all the rou t es they lea r ned fro m ea ch ot her . When the routing sw it ch an d n e ighbor estab lis h a ne w BGP4 s essi on, the y exc hange rou te table s again.
Advanced C onfigu r ation and Management G u id e T o un -supp res s a spec ifi c route , enter a c omma nd s uch a s the fol l ow i ng: HP9300# clear ip bgp damping 209.157.2 2.0 255.255.255.0 This co mman d u n -supp res ses on ly th e route( s) f o r ne twork 20 9.
Conf igur in g B GP4 3. Clic k on the Cl ea r li nk to display the C lea r panel. 4. Selec t o ne of the f o llowin g: • BGP N eigh bor Last Pack et w i th Err or – Cl ears the buffer con t ai nin g the f i rst 40 0 b y te s o f the la st BGP4 pa cket th at co n t aine d an er ror .
Advanced C onfigu r ation and Management G u id e 10 - 12 0.
Chap ter 1 1 Ne twork Address T r anslation Y o u can co nfigure an HP rou t ing s w itc h to p e rfo rm standa rd Netw or k Ad dress Tr an sl at io n (NA T) . NA T enables pr ivate IP network s that us e nonre g is tered I P addresse s to c on nect to the Int e rne t.
Advanced C onfigu r ation and Management G u id e 10.10.10.3 P or t 1/2 209.157.1.1 Outside NA T interface Internet 10.10.10.2 The device perf or ms NA T for tr affic between the outside NA T interface and the inside NA T interface . NA T P ool = 209.
Ne tw or k Addres s T r ansla t io n Por t A ddress T ransl ati on Norma lly , NA T maps eac h p r ivate addres s tha t ne eds to be routed to the o u tside ne twork to a u n ique IP addres s fro m the pool. Howev er , it i s possib le for the globa l addre ss pool to h a ve fe we r addre sses tha n the n um ber of pr ivate add res ses.
Advanced C onfigu r ation and Management G u id e Max i mum Numbe r of Addresses If the rou t ing s w itc h c ann ot a llo cate an a ddr ess be caus e i t has r un o u t o f a ddre sses, th e routin g s w itc h dr op s th e pa cket and s end s a n IC MP Hos t Un reacha ble pack et.
Ne tw or k Addres s T r ansla t io n NOTE: Y ou must configure inside N A T o n o ne int e rfac e and ou tside NA T o n a nother interface. The device pe rfo r ms NA T for traf fic be tween th e i n terfac es.
Advanced C onfigu r ation and Management G u id e These co mman ds configu r e a standard ACL for the private s ub- ne t 10 .10.10 .x/24, then en able inside N A T for the s ub-net. M a ke su re you s pecify permit in th e AC L, rather than deny . If you s pecif y de ny , the H P dev ice w i ll not pr ovide NA T for the addres ses.
Ne tw or k Addres s T r ansla t io n En abling NA T The N A T c onf igu r ati on does n o t tak e ef fect u n til y ou ena ble it on sp eci f ic in terf aces.
Advanced C onfigu r ation and Management G u id e • Dy namic timeout – This age time r appli es to all en tries (stat ic and dy namic) that do n o t use Port Add r ess T ransl ati on. The d e fau l t is 120 seconds . • UDP timeou t – Th is ag e t ime r ap plies to entries that u se Port Addre ss T ran slation based on UDP port num bers .
Ne tw or k Addres s T r ansla t io n --- 209.157.1.72 10.10.10.2 207.195.4.69 207.195.4.69 Syntax : sh ow i p nat tra n sl ation Th e s how ip nat tr an slation comman d show s th e follo wi ng inform ati on. T a ble 1 1.1 : C LI Di splay o f Ac tiv e NA T T ran sla t ion s Th is Field.
Advanced C onfigu r ation and Management G u id e T a ble 1 1.2: CLI Di splay o f NA T Statistics Th is Field... Displays. .. T ota l t r ans latio ns T he num ber of transla t io ns tha t are cu rren t ly activ e. Thi s numbe r cha nges w h en tran slations are ad ded or a ge out .
Ne tw or k Addres s T r ansla t io n T a ble 1 1 .2: CLI Dis p lay of NA T Sta t istics (Con tinu ed) Sess L ists sess ion st ati s ti cs . NA T uses the s ess ion t able f o r m a n agi ng the tr ansla tio n s. • To tal – The total number of both used and a v ailable interna l sessio n r e so ur ce s.
Advanced C onfigu r ation and Management G u id e This co mmand c l ea rs the insid e NA T e n try tha t maps pr ivate addres s 10 .10.1 0 .5 to I n tern et addres s 2 09.
Ne tw or k Addres s T r ansla t io n NAT: tcp data src 10.10.100.18:1144 => trans 192.168.2.78:8012 dst 192.168.3.11:53 NAT: 192.168.2.78:8012 192.168.3.11:53 flags A ID 65302 len 40 txfid 13 NAT: tcp data src 10.10.100.18:1144 => trans 192.168.
Advanced C onfigu r ation and Management G u id e Configur ati on Exam ples This se ction show s two c om ple te co nfigura t ion exam ples for N A T . The e xam ples are ba sed on di ffer ent network topolog ies . • NA T clients c onnec ted to t he routi ng swit ch by a s w itc h.
Ne tw or k Addres s T r ansla t io n HP9300> en HP9300# configure terminal HP9300(config)# The fol l ow i ng comm and con f igures an ACL to ide n tify the ra nge of pr ivate addres se s for which y ou want to pr ovi d e NA T s e rvices. Th is ACL iden tifies the pri vat e a ddre ss ra nge as 10 .
Advanced C onfigu r ation and Management G u id e The f o llowin g c omma nd sav es all t he c onf iguration chang es abov e to the rou t in g s w itc h ’ s st ar tup-co nf ig fi le on flash m emo ry . The rou t ing s w itc h a pplies NA T configu r ation i n forma t ion a s soon as y ou ent er it in to the C L I.
Ne tw or k Addres s T r ansla t io n • A Pool of p ub lic (In t ern e t) addre s s to us e for tra nsl ati on of t he p r ivate addresse s • An asso ciatio n o f the AC L for the p r ivate address.
Advanced C onfigu r ation and Management G u id e The f o ll owing c omm and co nfigure s a s t atic default route to the Inte rne t ac ce ss route r . T he routing switch uses th is route for t r affic tha t is a ddre ssed to a desti nation for wh ich t he IP rou t e table d oes not have an expli ci t rou t e.
Chapter 12 Confi g uri ng VRR P and VRRPE This ch apter d esc ribes ho w to con f igure H P rou t ing s witc hes to co nfigure the fol lowing rou t er redun dancy pr ot oc ols: • V i rtual Route r Redundancy Prot ocol (VRRP) – The s t an dard rou t er re dundancy pro t oc ol des c r ibe d in RFC 2 338 .
Advanced C onfigu r ation and Management G u id e O verv i ew The f o ll owing s ect ions descri be VR RP and VR R PE. The pro t ocols both provide re dundan t paths fo r IP a ddre sses. Howe ve r, th e p r oto cols dif f er in a fe w important ways. For c la r ity , ea ch prot oco l is desc ribed s eparate ly .
Co nfiguri ng VR RP and VR RPE Figure 12 .2 s how s the s ame ex ample n e twork s how n in F i gu re 1 2 .1 , but wi th a VR R P vi rtu a l route r configure d on Rout er1 an d R o uter2 .
Advanced C onfigu r ation and Management G u id e W hen yo u configure a VRID , the sof twa re auto mat ic ally ass igns its MA C addres s. W hen a VRID bec ome s a cti ve , the M ast er router br oad.
Co nfiguri ng VR RP and VR RPE If t he O w ne r becomes u navailab le, but t hen com es bac k on line , the O w ne r again b e co mes the M a ster rou t er . T he Ow ner be com es th e M ast er route r again becaus e it ha s the h i ghest pri o rity .
Advanced C onfigu r ation and Management G u id e NOTE: The M D 5 a u thent ica t io n type is not supp orted for VR RP . Independent Ope rat ion of VRRP a l ongs ide RIP , OSP F , a n d B G P4 VR RP o pera t io n is independen t of the R I P , OSPF , and BGP4 protoco ls .
Co nfiguri ng VR RP and VR RPE The m ost imp o rta n t d iff e ren ce is that all VR R PE rout ers are Bac kup s. Th ere is no Ow ne r router . VR R PE ov ercom es the l imi tat i on s i n st andard VR RP by re moving the Ow ner . Figure 12 .3 sho w s a n example of a VR R PE confi gura t ion.
Advanced C onfigu r ation and Management G u id e Com p arison o f VRRP , VR RPE , and SRP This se ction comp ares HP ’ s router redundan cy pro t oc ols. VRRP VR RP is a st andard s -base d pr oto col , d esc rib ed in RFC 23 38. The HP im plemen tation of VR RP cont ai ns the featu r es in RFC 23 38.
Co nfiguri ng VR RP and VR RPE Mas t er a n d Back ups • VRRP – The “ Ow ner ” of the I P addres s of the VR I D is the default M ast er a nd has the h i gh est pri o rity (255 ). The p r ec edence o f the Bac kups is determ ined by the i r prioritie s .
Advanced C onfigu r ation and Management G u id e T a ble 12 .1: VRRP and VRRPE Param e ters (Continued ) Virt ual Ro ute r IP addres s This is the a ddress y ou are backing up. No defau l t. • VRRP – The v i rtu al router IP addres s must b e a real IP addre ss confi gure d on the VRID in terfac e on on e of the VR RP r oute r s.
Co nfiguri ng VR RP and VR RPE T a ble 12 .1: VRRP and VRRPE Param e ters (Continued ) Bac kup priori ty A numeri c val ue tha t de termines a Backup ’ s prefe r abili ty for b ecomi ng the M a ster for th e VRID. Du rin g neg oti a tio n, the route r with the hi ghes t p r iority becomes the Ma st er .
Advanced C onfigu r ation and Management G u id e T a ble 12 .1: VRRP and VRRPE Param e ters (Continued ) T r ack p r iority A VR RP or VR R PE prio rity va lue a ssi gned to the tracked port ( s). ked port ’ s link goes do wn , the VR ID por t ’ s VRRP o r VRRPE p rio rity changes.
Co nfiguri ng VR RP and VR RPE Configuring Basic VRR P E Par ame ters T o impl emen t a simpl e VR R PE con f igurat ion us ing all t he d e fault va lue s, ent er c omma nds s uch as the fo llowin g on each ro ut ing sw it ch . Router2(config)# router vrrp-extended Router2(config)# inter e 1/5 Router2(config-if-1/5)# ip address 192 .
Advanced C onfigu r ation and Management G u id e NOTE: For VR RP , change t he router type onl y if y ou hav e mov ed the rea l IP addres s fr om one ro uter to a noth e r o r y ou a ccid ent all y conf igured the IP a ddre ss Ow ner as a Back up . For VR R PE, t he route r type is alw a ys Bac k up.
Co nfiguri ng VR RP and VR RPE VRRPE Syntax Syntax : ip vrrp-ex t en ded auth-ty pe no-auth | simp le-text - auth <a uth - dat a> The p a ram ete r v a lues are the sa me as for VR RP . Rout er T y pe A VR RP inte rface i s eit her a n Ow ner or a Bac k up f o r a gi ven VRID .
Advanced C onfigu r ation and Management G u id e NOTE: Y o u ca nnot se t th e p riority of a VRRP Ow ne r . Th e O w ne r ’ s p r io ri ty is alwa ys 2 55.
Co nfiguri ng VR RP and VR RPE Router2(config-if-1/5)# ip vrrp vrid 1 Router2(config-if-1/5-vrid-1)# dead-in terval 30 Syntax : de ad-i n terva l <value> The s ynt ax is the s ame for VR R P a nd VR R PE.
Advanced C onfigu r ation and Management G u id e go es down, th e soft ware ch ange s th e V RRPE interf ac e ’ s pri o rity to 4 0. If an oth e r tra cked interfa ce goe s do wn, the software red u ces the VRID ’ s pr iority aga in, by the amou nt o f th e tra cked int e rfa ce ’ s t ra ck p r io ri ty .
Co nfiguri ng VR RP and VR RPE Syntax : [no ] own e r p r ior i ty | track-p r iority <nu m> The <num > p a ram ete r spec ifies the ne w pri o rity and can be a numbe r from 1 – 2 54. W hen yo u p r es s Enter , the so ftware changes th e pri o rity of the M ast er to t he s pecif ied pri o rity .
Advanced C onfigu r ation and Management G u id e This ex ample is for VR RP . He re is an exampl e for VR R PE: HP9300(config-if-e1000-1/6-vrid-1)# sh ow ip vrrp-extended brief Total number of VRRP-Extended routers defined: 1 Interface VRID CurPri P State Master addr Backup addr VIP 1/6 1 255 P Init 192.
Co nfiguri ng VR RP and VR RPE T a ble 12 .2: CLI Display of VRRP or V R RPE Summary I n forma t ion ( Contin ued) Master add r T he IP addres s of the route r interf ace that i s cu rrentl y t he M ast er for t he VR ID. Backup addr T he IP addres ses of the route r interfa ces t hat are current ly Bac kups fo r the VRID.
Advanced C onfigu r ation and Management G u id e Here is an ex ample fo r a VR RPE Bac kup. HP9300(config)# show ip vrrp-extended Total number of VRRP-Extended routers defined: 1 Interface ethernet 1.
Co nfiguri ng VR RP and VR RPE T a ble 12 .3: CLI Display of VRRP or V R RPE Detai l ed I n forma t ion ( Contin ued) stat e Thi s r outing swi t ch ’ s VRRP or VRRPE sta t e f o r the VRID. The st ate can be one of the fol l ow i ng: • init ia lize – The VRID is no t enab led (ac tiv ated).
Advanced C onfigu r ation and Management G u id e T a ble 12 .3: CLI Display of VRRP or V R RPE Detai l ed I n forma t ion ( Contin ued) dead -in t erv al T he con f igure d va lue for th e dead int e rval.
Co nfiguri ng VR RP and VR RPE T a ble 12 .3: CLI Display of VRRP or V R RPE Detai l ed I n forma t ion ( Contin ued) tr ack p o rt T he interfac es that th e VR ID ’ s interfa ce is tra cki ng .
Advanced C onfigu r ation and Management G u id e T a ble 12. 4: W eb Di splay o f VR RP De tailed Infor m atio n (C ontinued ) Mode I ndicates whet her the routing sw it ch is the O w ner or a Bac kup fo r th e VRI D. Note : The mo de app lies o nl y to VR RP .
Co nfiguri ng VR RP and VR RPE rxed vrrp port mismatch count = 0 rxed vrrp ip address mismatch count = 0 rxed vrrp hello interval mismatch cou nt = 0 rxed vrrp priority zero from master c ount = 0 rxe.
Advanced C onfigu r ation and Management G u id e T abl e 1 2 .5: CLI Dis p la y of VRR P or VRRPE Sta t istic s (Continue d) rx ed v rrp h e llo i n terval mi sm atch coun t T he num ber of packets rec e ived tha t di d n o t m a tc h the co nfigure d He llo in terval .
Co nfiguri ng VR RP and VR RPE T a ble 12 .6: W e b D i splay of VR RP Sta t isti cs (Con tinued) Authe n Pa ss wo rd Mismatc h Er ror T he num ber of VR RP packets rec e ived by the in terface that had a passwo rd v a lu e that does n o t m atch the pas sw or d u se d by th e in terface f o r a u the n tication .
Advanced C onfigu r ation and Management G u id e Clearing VRRP or VRR P E Stat is tic s Us e the fo llowin g m e thods to cl ear VR RP or VR R PE sta t is tic s.
Co nfiguri ng VR RP and VR RPE Conf ig uring Route r2 Using the CLI T o conf igu r e R o ute r 2 i n Figure 12.2 o n p age 12-3 after enabli ng VR RP , ente r th e follo wi ng comm ands : Router2(config)# router vrrp Router2(config)# inter e 1/5 Router2(config-if-1/5)# ip address 192 .
Advanced C onfigu r ation and Management G u id e • If the de vice does n o t have a VR RP vi rtu a l rou t er conf igu r ed, th e VR RP con f ig uration p anel is dis pla ye d, as sh own i n th e f ollowing exampl e.
Co nfiguri ng VR RP and VR RPE 12. Ent er o r se lect the trac k i n terfac e o r po rt: • If you w ant to us e a virtua l i n terface a s a trac k port, en ter the virtual in terface name . • If you w ant to us e a phys ical interface a s a tra ck po rt, s el e ct the po rt.
Advanced C onfigu r ation and Management G u id e 17 . S el ect the Sa ve link at t he b o tto m of the d ial og , the n select Y es when promp t ed to sa ve the configura t io n c hange to the sta r tup - co nfig file o n the d e vice ’ s f l ash m emo ry .
Co nfiguri ng VR RP and VR RPE Syntax : activ a te USING THE WEB MANAG EME NT INTERF ACE Y o u cannot c on f igure V RR PE using the W eb m an age ment inte rface.
Advanced C onfigu r ation and Management G u id e 12 - 36.
Chapter 13 Configurin g SRP This ch apter d esc ribes ho w to con f igure the HP 9304M , H P 9 308 M, and H P 6 308M-SX routi ng sw it ch es to u se the Stand by R oute r Pro t ocol ( SRP ), a propriet ary pro t ocol that pro v id es redund ant pa ths betw een tw o routi n g swi t ches .
Advanced C onfigu r ation and Management G u id e Over vi ew of Standby Router Protocol (SRP) SRP a llows alte rna t e p a ths to be pro vi ded to a host. T o provi de path re dundancy betw een give n h o sts, a vi rt ual router wi th it s o w n un ique I P ad dresse s is cre a ted .
C onfigu r ing SR P SRP Support on V irt ual Inter f aces SRP i s sup ported on both physic al and virtual i n terfaces . Support on a v i rt ual interfa ce allow s you t o as si gn a si ngle vi rtual i n ter f ace to serve as a redund ant link f o r m ult ipl e po rts with in a VLAN .
Advanced C onfigu r ation and Management G u id e If a c ha nge in sta te (up o r do wn ) i s de tecte d by t he t r ack p o rt, the prio rity of the SRP G r oup Interfa ce wil l au tom atica ll y b e incr eas ed or d ec r eased . NOTE: Vi rtua l route r interfa ces can not be assig ne d as tra ck po rts .
C onfigu r ing SR P Fi gu re 13 .3 Fai lu re of e1 an d e 3 link s resu lts in mixed ac tive an d sta ndby link s on router1 without the use of mu lt ipl e track p o rts 13 - 5 Router2 Router1 PC 4 PC.
Advanced C onfigu r ation and Management G u id e Figu re 13. 4 Router2 b ecomes active ro ut er after l in ks e1 an d e3 fail wi th mu ltiple track p o rts d e fi ned Independent Operation of RIP and OSPF SR P operati on is indepen dent o f the R IP an d OSPF prot ocols .
C onfigu r ing SR P Differ e nces Betwee n SRP and VRRP The V i rtu al R oute r Red undanc y Proto col (VR R P ) i s a s t and ard s -base d pr oto col th at p r ovide s redundancy t o route r s w i thi n a LAN .
Advanced C onfigu r ation and Management G u id e Configuration Rules for S RP • Vi rtu a l i n te rfaces c ann ot b e assi gn ed as trac k port s. • The keep -a li ve -t im e va lue mu st be set to the same va lue on bo th the a c tive an d s t andby rou t er w hen bot h route r s a r e c on nected to the same sub-ne t.
C onfigu r ing SR P Assign V i rtual Router I P Addresses In the ex ampl es in thi s sect ion, SR P is used t o provi de a redun dant p a th betw e en Ho st 1 and Ho st 3 t o ensure a gains t fai lur e o f the pri mar y p a th . See Figure 13.5. Host 1 Host 2 Vir tual Router Router 1 Router 2 Default Router 192.
Advanced C onfigu r ation and Management G u id e T o es tabli sh the vi rtu a l I P addres s 192.55 . 4.1 for inte rfac e C define d by IP addres s 1 92.55.4.2 and Etherne t port 2/ 1, e n te r the fo llowing co mmands : Router1(config)# inter e 2/1 Router1(config-if-2/1)# ip srp address 192.
C onfigu r ing SR P EXAM P LE: T o make Ro ute r 1 th e a c tive rou t er , as sign a pre f ere nce va lu e t o in terface s A and C that i s hig her than the pr efe r enc e v al ue of i n terfac es B and D on Ro uter 2.
Advanced C onfigu r ation and Management G u id e EXAM P LE: T o defi ne and a ssig n t he vi rtual route r IP addres ses for R outer 1 , shown in Fi gure 13.
C onfigu r ing SR P 10 . S el ect the tr ack p or t b y select ing a box n ext to the desi re d i nterf ace. Fo r pu rpos es of th is exam pl e, yo u w ould se lect int e rfa ce 1 a s the t r ack p o rt f o r i n terf ace A o n ro ute r 1.
Advanced C onfigu r ation and Management G u id e Configuring SRP on V i rtual Interfaces A virtua l in terfac e will by de fault re mai n activ e un til all underly i ng links go do wn. If you w a nt the vi rtu a l link to go to SRP s t an dby s t at e w hen a subset o f th e ports goe s dow n, you need to co nfigure trac k port s.
C onfigu r ing SR P USING THE CLI T o conf igu r e t he I P sub-n e t VLAN wi th port m em bers hip of 1, 2, and 3, you w ould e n ter the fol l ow i ng comm ands: HP9300(config)# vlan 1 HP9300(config-vlan-1)# ip-subnet 192.
Advanced C onfigu r ation and Management G u id e 13 - 16.
Chapter 14 Configu ri ng IPX This ch apter d esc ribes ho w to con f igure the Interne t Pac ket Exch ange (IP X ) pro t ocol on the H P 9304M, H P 9 308M, and HP 63 08M-SX routi ng swit ches using the CL I a nd We b m an ageme nt i n te rface.
Ins t allat i on and G e tting Started Guide 6. Assign RIP , SAP , and Forward fil t er g r oups (opt ion a l). 7. Modi fy the maxi mum number of SAP and RIP Route entries s upporte d (optiona l). 8. Modi fy the ho p count in cremen t f o r RIP and SAP br oad cast packets (opti ona l).
C onfigur ing IPX 4. Select the Sa ve link a t the b o ttom o f the di alog. Sele ct Y es w hen pro mpt ed to s ave th e c onf igu r ation ch ang e to the s t artup-conf ig file on the devic e ’ s f l ash m emory . 5. Cl ick on th e plus si gn next t o Comm and in the tree view to list the command op tio ns.
Ins t allat i on and G e tting Started Guide NOTE: Once y ou con f igure an interfac e w i th a ne twork number a nd frame ty pe, you can defin e filte r s and assig n them to the int e rfa c e.
C onfigur ing IPX 6. Enter th e ne tw or k numb er . 7. Selec t th e fram e type from the pu ll dow n m enu . 8. Enable N e tBIOS if des ire d. 9. Cl ick th e Add b u tton to ap ply the changes to the de vice ’ s run n in g-config file . 10 . S el ect the Save link a t the b o ttom o f th e dialog.
Ins t allat i on and G e tting Started Guide 5. Enter a fil t er ID va lue fro m 1 – 32. 6. Selec t ei th er Permi t or De ny . 7. Enter the a p pr opri a te numbe r for the destinat ion socket of th e appl ication running in the Soc k et field . If yo u en ter all ze ros in thi s field, the fil t er w i ll acc ept an y soc ke t.
C onfigur ing IPX 14. Sel ec t the p o rt o r sl ot/port comb ina t ion to which you ar e as si gning the fil t er( s ). 15. C he ck eithe r or both of the In Filter and Ou t Filter boxes . If yo u c heck the In Fil t er b o x, all i ncomi ng traf fic i s filte r ed as define d.
Ins t allat i on and G e tting Started Guide • If you a r e m odi fying an ex istin g IPX RI P filte r , clic k on the Modif y bu tton t o th e right of the row de scrib i ng the filte r to dis play the IPX R IP Fil t er c onf ig urati on panel, as s how n in the fol l ow i ng exa mpl e.
C onfigur ing IPX Configuring IPX S AP Access Control Lists (AC L s) Y o u c a n configu r e Ac cess Co ntrol Li sts (ACL s) for fil t eri ng Serv ice Adve rtisem ent Proto col (SAP) repli es se nt on a routing sw it ch ’ s IPX interfaces .
Ins t allat i on and G e tting Started Guide The [ < net wo rk-ma sk> .<node-ma sk>] para met er l e ts y ou spe cify a c om pari son mask fo r th e n e twor k and node. The m ask consi s ts of ze ros (0) an d ones (f). Ones ind ica te signific ant bits.
C onfigur ing IPX The < se r vic e -typ e> [ < server-name> ] param e ter lets you s pec ify a se rvi ce typ e a nd, option a ll y , a specific se rver . Us e thes e p a ram e te rs w hen you a r e configu r ing an ACL f o r fi lte r ing Ge t N e arest Se rve r (G NS ) rep lies.
Ins t allat i on and G e tting Started Guide 4. Enter the new val ue fo r the tab l e size . The value you enter s pecifi es the ma ximu m numbe r of entr i es t he tab le c an hold. 5. Cl ick Ap ply to sa ve the chang es to the devic e ’ s runn ing - confi g file .
C onfigur ing IPX M odif y the RI P A d ve rtise m ent P acket S i ze The defau l t IPX R IP packet size is 4 32 b y te s, wh ich al low s 50 r oute s pl us 32 byt e s o f heade r in a n IPX R I P u pdate pa cket . Each rout e req uir es eig ht byt es.
Ins t allat i on and G e tting Started Guide Modify the RIP Adv e rtiseme n t Interval The IPX R I P advertis ement interval sp ecifie s how o ften the rou t in g s w itc h sends IPX R I P u pd a tes to neighbori ng IPX routers .
C onfigur ing IPX USING THE WEB MAN A GEMENT INTE RF ACE Y o u cannot m od i fy the SAP a dve rti s em ent i n terv al us ing the W eb ma nagement in terfa ce.
Ins t allat i on and G e tting Started Guide Displaying IPX Co nfi gur ati on In for m ation and S t ati s tics Y o u can u se CLI com m ands a nd We b m an ageme nt o p ti ons to dis play the fol l o.
C onfigur ing IPX T a ble 14 .1: CLI Display of G l obal IPX Configuration Info rm atio n ( Con t inued) Maximum I PX SAP filte rs H ow m any IPX s e rv ice filte rs yo u c an c onfigu r e i n the rou t ing sw itc h. On som e dev i ces, you can cha nge thi s valu e by cha nging t he amou nt of m emo ry allocat ed for the filte r s.
Ins t allat i on and G e tting Started Guide Syntax : sh ow ipx int e rfa ce [etherne t <portnum> | ve <num>] Th e et hern et <portn um> param e ter lets you s pec ify a routing sw i t ch port. Th e ve <num> p a ram et e r lets you spec ify a virtual i n terface (VE).
C onfigur ing IPX T a ble 14.2 : CLI Di splay o f IPX In terface Informa t ion (Co ntinu e d) sa p-interval The SAP ad ve rtisem ent interval . The IP X SAP advert isem ent interv al sp ec if ie s ho w often the rou t ing s w itc h sends IPX SAP upda tes to neighbori ng IPX rou t ers .
Ins t allat i on and G e tting Started Guide This di splay s how s the follo wi ng inform ation. T abl e 1 4 .3: CLI Dis p la y of IPX Forw a rdi ng Cache This F i eld ... Dis p lay s ... T o tal numbe r of IPX c ac he e n tri es T he nu mbe r of entries i n the forwardi ng cache.
C onfigur ing IPX Syntax : sh ow ipx rout e [<num(he x )> ] The <num (he x )> parame t er let s you specify an IPX network numb er . This di splay s how s the follo wi ng inform ation. T a ble 14 .4: CLI Dis p lay of IPX Route T a ble This F i eld .
Ins t allat i on and G e tting Started Guide This di splay s how s the follo wi ng inform ation. T a ble 14. 5: C LI Di spla y o f IPX Se r ver T able This F i eld ... Dis p lay s ... Ind ex T he index number o f the table entry . Ne twork T he network in wh ich the s e rver is loc a te d.
C onfigur ing IPX This di splay s how s the follo wi ng inform ation. T a ble 14 .6: C L I D i sp lay of IPX T r affic Stati s tic s This F i eld ... Dis p lay s ... Port The port for wh ic h the s tat istic s apply . Only the po rts that hav e IPX int e rfa c es c onfigu r ed on them ar e l i sted.
Ins t allat i on and G e tting Started Guide T abl e 1 4 .7: W e b Dis p lay of IPX T ra ffic Statist i cs (Continued) Rcv Fil t er Pac k et s T he nu mbe r of pac ke ts rec eiv ed by th e routing s w itc h t hat matched an inboun d IPX fil t er .
Chapter 15 Configurin g AppleT alk This c hap ter des cr ibe s how to confi gure App leT alk on H P 9 304M, H P 9 308M, an d HP 6308M -SX routing sw i t ches us ing t he C L I an d the W eb m anagement in terface . T he routi ng sw i t ches suppo rt Pha se II o f Apple T alk routing .
Advanced C onfigu r ation and Management G u id e Zon es Apple T alk zones are logic al grouping s o f App l eT alk n odes defi ned with in and ac ros s mu lti p le ne twork s as shown in Figur e 15.1. For example , th e Finance zone compr i se s tw o separate network s, 500 an d 600.
Co nfiguri ng App l eT al k Addit i onall y , this fea t ure helps elimina te unautho riz ed ac cess to devices wi thin rest ric t ed zones . As n ew device s ar e adde d to se cured zones, i n format ion on tho s e devic es is protecte d autom a ti cally .
Advanced C onfigu r ation and Management G u id e Network Layer Support Datagr am Deliv ery Protocol (DDP) DDP pr ovide s con necti onless se rv ice b e tw een a pplicati on s ockets on an AppleT alk network an d a dmi niste rs Appl eT alk a ddre sses .
Co nfiguri ng App l eT al k USING THE WEB MAN A GEMENT INTE RF ACE 1. L og on to t he dev ic e usi ng a val id us er n ame and pass wo rd for read -write ac cess . The Syste m con f igurat ion di alog is dis play ed. 2. Selec t th e Enable ra dio button next to Apple T alk.
Advanced C onfigu r ation and Management G u id e Savi ng Configur at ion Cha n ge s to th e Inte rface Once you ha ve conf igu r ed th e cabl e range, ne twork addr ess , zo ne(s), and App l eT alk rou t ing for an i n terface, y ou c an pres erv e t he con f igurat ion changes by savi ng the m to flash.
Co nfiguri ng App l eT al k 8. Begin n in g i n so ftw a r e release 06.x, the App l eT alk AR P age is a g l obal par ame t er ins t ead o f an in terfa ce pa ram e te r .
Advanced C onfigu r ation and Management G u id e En able AppleT alk R outing on an Interface T o e nable AppleT alk on in terface 1/ 5, u se one of the fol l ow i ng methods.
Co nfiguri ng App l eT al k 8. Begin n in g i n so ftw a r e release 06.x, the App l eT alk AR P age is a g l obal par ame t er ins t ead o f an in terfa ce pa ram e te r .
Advanced C onfigu r ation and Management G u id e Filter in g AppleT alk Zones and Netw or ks Defini ng Zone Filters Zone fil t ering a llows you to define access for a n e twork a nd its nodes by enteri ng singl e p e rmit o r deny CLI comma nds, i nst ead of defini ng an acc ess list fo r each node i nd epende ntl y .
Co nfiguri ng App l eT al k USING THE CLI HP9300(config)# interface e1/1 HP9300(config-if-1/1)# appletalk deny zone finance HP9300(config-if-1/1)# int e1/3 HP9300(config-if-1/3)# appletalk deny zone f.
Advanced C onfigu r ation and Management G u id e Define Additional Zone Filters W hen def ining AppleT alk z one fil t ers , you must define both deny and p e rmit rela tionships for an interfa ce.
Co nfiguri ng App l eT al k 5. Selec t th e i n terfac e for whi ch the zone fil t er i s to be defined from the port or sl ot/port p ul l down m en u (s). In this ex ample, you a re defini ng a perm it z one filte r fo r H R for inte rfaces 10 and 14, w h ich h ave member ship in the F i na nce zone .
Advanced C onfigu r ation and Management G u id e 3. Co nf igur e a phys ical interf ace o n th e r o ut in g switch that pr ovid es ac cess to remote ne tw or ks to support routing b e tw e en l ocal and rem o te App leT al k VLANs.
Co nfiguri ng App l eT al k T o conf igu r e t he d e fined App l eT al k VLAN vi rtu a l i n terfac e v e3, enter the foll ow i ng c omm ands: HP9300(config-if-1/8)# int ve 3 HP9300(config-vif-3)# appletalk cable-range 100 - 100 HP9300(config-vif-3)# appletalk address 100.
Advanced C onfigu r ation and Management G u id e USNG THE CL I HP9300(config)# vlan 2 by port HP9300(config-vlan-2)# untag e1/3 to 1/4 HP9300(config-vlan-2)# atalk-proto HP9300(config-vlan-atalk-prot.
Co nfiguri ng App l eT al k • Apple T alk RTMP updat e i n ter v al • Apple T alk ZIP query in ter v al The f o llowin g s ect ions descri be the se par ame t ers a nd s how how to c ha nge the m. AppleT alk ARP Age T o cha nge the App l eT alk AR P age in so ftware rel ease 0 6.
Advanced C onfigu r ation and Management G u id e USING THE WEB MAN A GEMENT INTE RF ACE 1. L og o n to th e devi ce using a val id us er n am e and p asswor d for rea d -w rit e ac c e ss . 2. Cl ick on th e plus si gn next t o Conf igure in the tree view to expan d the l ist of confi gura t ion optio ns .
Co nfiguri ng App l eT al k USING THE WEB MAN A GEMENT INTE RF ACE 1. L og o n to th e devi ce using a val id us er n am e and p asswor d for rea d -w rit e ac c e ss . 2. Cl ick on th e plus si gn next t o Conf igure in the tree view to expan d the l ist of confi gura t ion optio ns .
Advanced C onfigu r ation and Management G u id e USING THE WEB MAN A GEMENT INTE RF ACE 1. L og o n to th e devi ce using a val id us er n am e and p asswor d for rea d -w rit e ac c e ss . 2. Cl ick on th e plus si gn next t o Conf igure in the tree view to expan d the l ist of confi gura t ion optio ns .
Co nfiguri ng App l eT al k Clearing AppleT alk In fo rmat ion USING THE CLI W hen us ing the CL I, you c an clear AppleT alk data b y ente r in g the fo llowin g C LI co mmands: • cl ear a pple t alk arp c ach e : Erase s all data in the App l eT alk ARP table, a s disp layed by th e show appletal k ar p comman d.
Advanced C onfigu r ation and Management G u id e 15 - 22.
Chapter 16 Configurin g VLANs This ch apter d esc ribes ho w to con f ig ure Vi rtual LAN s (VLAN s ) o n the H P 9 304 M, HP 93 08M, and H P 6308M -SX routing s w itc hes and the HP 6208M-SX s w itc h. Th e “ Overv iew ” section p r ov ide s ba sic in formation a bout the VL AN op tions .
Advanced Configu ration and Ma nagemen t Guide 16 - 2 When a dev ice receiv es a pack et on a port th at is a memb er of a VLAN, the d evice forwards th e packet ba sed on the foll owing VL AN hierarc.
Conf igur ing V LANs 16 - 3 Layer 2 traffic is br idged within a port-ba sed VLAN a nd Layer 2 broadcasts are sent to all the ports within th e VLAN. Layer 3 Protocol-B ased VLANs If you w ant som e o.
Advanced C onfigu r ation and Management G u id e For exam ple, i f y ou con f ig ure two IP sub-ne t VLA Ns on a routing sw i t ch, you can c onfi gur e a vi rtual in terface on ea ch VLAN, the n c onf igu r e IP rout ing param e ters fo r the sub-n e ts .
Conf igur ing V LANs 16 - 5 Default VLAN By defau lt, all the ports on a devic e are in a s ingle port-based VLAN. his VLAN is cal l ed DE F AUL T -VLAN an d is VLAN numbe r 1. The routin g switche s and the swit ch do not contai n any protocol VLANs or IP sub-ne t, IPX network, o r AppleT alk cab le VLANs by defaul t.
Advanced C onfigu r ation and Management G u id e Untagged P acket Format 6 bytes Destination Address 6 bytes Source Address 2 bytes T ype Field Up to 1500 bytes Data Field 4 bytes CRC Ether net II 802.1q T ag ged Pac ket Format IEEE 802.3 Ethernet II with 802.
Conf igur ing V LANs 16 - 7 Figure 16.5 VLANs configured across multiple devi ces Spanning T ree Protocol (STP) The defa ult state of STP depend s on t he devic e type: • STP is di sabled by defau lt on t he HP 930 4M, HP 93 08M, and HP 63 08M-SX routi ng switches.
Advanced Configu ration and Ma nagemen t Guide 16 - 8 blocke d, the virtual interface can s till ro ute so long as at least one port in the virtual i nterface ’ s protoc ol VLA N is not bl ock ed by S TP .
Conf igur ing V LANs 16 - 9 Dynamic, Static, and Excluded Port Membership When y ou add ports to a pr otocol VL AN, IP su b-net VLAN , IPX n etwork VLAN , or Appl eT alk cable VLAN, you can add t hem dyna mica lly or static ally: • Dynamic ports • Static po rts Y ou also can exp licitly exclu de port s.
Advanced Configu ration and Ma nagemen t Guide 16 - 10 Static Ports Static po rts are perm a nen t memb ers of the protocol V LAN. he ports re main a ctive m embers of the VLAN regardles s of wheth er the ports receive traffic for the VLAN ’ s protoc ol.
Co nf ig ur ing VLANs Su per Aggregated VLANs Y o u can a ggr ega te m ult ip le VLAN s wi thi n a nother VLAN . Th is fe atu r e allo ws you to c on s truct Lay er 2 p a ths a nd c hanne ls.
Advanced C onfigu r ation and Management G u id e Routing Bet w een VLANs (Routing Swi tch es Only) The routi ng switche s can loca lly route IP , IPX, a nd Appl eta lk be tween VLAN s defined w i thi n a si ngle ro uting sw itc h.
Co nf ig ur ing VLANs There is a s ep a rat e STP dom ain fo r each po rt-ba s ed VLAN . Rout ing oc curs independe ntl y ac ross port-ba se d VLANs or STP doma ins. Y o u ca n de fine ea ch end of each ba ckbon e link as a sepa rate tagge d port-based VLAN .
Advanced C onfigu r ation and Management G u id e Po r t 2 IP sub-net 2 IPX network 2 AppleT alk cable range 200 AppleT alk zone “ CTP ” 6208M-SX P or ts 5 - 8 IP sub-net 2 IPX network 2 AppleT al.
Co nf ig ur ing VLANs VLAN “ BR OWN ” VLAN “ GREEN ” 6208M-SX C IP sub-net 2 IPX network 2 Atalk 200.1 Zone “ B ” port 5 IP sub-net 1 IPX network 1 Atalk 100.
Advanced C onfigu r ation and Management G u id e HP6208-A(config-vlan-3)# tag ethernet 7 to 8 HP6208-A(config-vlan-3)# spanning-tree HP6208-A(config-vlan-3)# write memory Conf ig uring 6 208M -SX B E.
Co nf ig ur ing VLANs Modifying a Por t -Based V L AN Y o u can m ake the fol l ow i ng m odi fica tion s to a port-ba s ed VLAN : • Add o r del ete a VLAN port. • Ch ange its pr iority . • Enable o r disab le STP . Removi ng a P ort-Ba sed VL AN Suppose you w ant to rem ove VL AN 5 f r om the exam ple in Figure 16 .
Advanced C onfigu r ation and Management G u id e 4. Enter the f o llowing c omma nds to exit the VLAN CO NF IG m ode an d s ave th e configu r ation to the s ys tem- c onfig file on fla sh me mo ry: .
Co nf ig ur ing VLANs Enable Sp a nning T ree on a VL AN The s pa nning tree bridge and port pa ram e te rs are c on f igurable using one C LI co mmand s e t a t th e G lo bal Conf igura t ion Leve l o f each Port-bas ed VLAN . Supp ose y ou w a nte d to en able the IEEE 802.
Advanced C onfigu r ation and Management G u id e • Pri o rit y – a p a rame ter u sed to id enti fy the roo t bri dge in a n e tw or k. The bridge wi th the lo west va lue has t he hi ghest pri o rit y a nd is the roo t. Pos sib le value s : 1 – 65,53 5 .
Co nf ig ur ing VLANs T o conf igu r e t he V L AN s sho w n i n Figure 16 .1 1, use the fo llo wi ng pro ce dure . USING THE CLI 1. T o pe rmanentl y assign ports 1 – 3 and port 8 to IP s ub- net VLAN 1. 1.1 . 0, enter th e follow ing c omma nds HP6208> en No password has been assigned yet.
Advanced C onfigu r ation and Management G u id e the flat IP and IPX segment with co nnecti vity to the rest of the n e two r k. Wit h in VLAN 4 IP and IPX wil l follo w the STP top o logy . All oth e r IP sub - nets a nd IPX n e twork s w ill be ful ly rou t ed and have us e of all paths at all time s du rin g no rmal operation.
Co nf ig ur ing VLANs T o conf igu r e t he L aye r 3 VLAN s an d v i rtu al int e rfa c es on the ro uting s w itc hes in Figu re 1 6 .12 , us e the fol l ow i ng pr ocedu re. USING THE CLI Conf ig uring 9 304 A Enter the f o llowing c omma nds to co nfigure 93 04 A.
Advanced C onfigu r ation and Management G u id e Do the sa me thing for VLAN 8. HP9300-A(config-vif-1)# vlan 8 name IPX_Network2 HP9300-A(config-vlan-8)# untag ethernet 1/5 to 1/8 HP9300-A(config-vla.
Co nf ig ur ing VLANs HP9300-A(config-vlan-4)# tag ethernet 4/1 to 4/2 HP9300-A(config-vlan-4)# spanning-tree HP9300-A(config-vlan-4)# spanning-tree priority 500 HP9300-A(config-vlan-4)# router-interface ve5 HP9300-A(config-vlan-4)# int ve5 HP9300-A(config-vif-5)# ip address 1.
Advanced C onfigu r ation and Management G u id e • There is no nee d t o in clude a virt ual interfa ce wi thin VLAN 4. • Th e bac kbone VL AN between 9304 B and 9 304 C must be the same at b o th ends an d requ ires a new VL AN ID. The VLAN ID for this po rt-base d VL AN is VLAN 7.
Co nf ig ur ing VLANs HP9300-B(config-vlan-ipx-network)# static e2/5 to 2/8 HP9300-B(config-vlan-ipx-network)# router-interface ve 4 HP9300-B(config-vlan-ipx-network)# other-proto name bl ock-other-pr.
Advanced C onfigu r ation and Management G u id e HP9300-C(config-ospf-router)# area 0.0.0.0 normal HP9300-C(config-ospf-router)# router ipx HP9300-C(config-ospf-router)# vlan 2 name IP-Subnet_1.
Co nf ig ur ing VLANs HP9300-C(config-vif-4)# vlan 4 name Bridged_ALL_Protoc ols HP9300-C(config-vlan-4)# untag ethernet 3/1 to 3/8 HP9300-C(config-vlan-4)# tag ethernet 4/1 to 4/2 HP9300-C(config-vlan-4)# spanning-tree HP9300-C(config-vlan-4)# vlan 7 name Rtr_BB_to_Bldg.
Advanced C onfigu r ation and Management G u id e • Y o u can not have an Apple T alk cabl e VLAN and an Apple T alk pr oto col VLAN in the same p o rt-based VLAN .
Co nf ig ur ing VLANs The f o llowin g c omma nds ad d four AppleT alk c able VL ANs, i n gr oup s of three comm ands eac h. The ap pleta l k- ca bl e- v l an comm an d adds a c abl e V L AN and, with th e o pti on al nam e pa rame ter , names th e VLA N.
Advanced C onfigu r ation and Management G u id e HP9300(config-vif-2)# appletalk zone-name BB HP9300(config-vif-2)# appletalk routing HP9300(config-vif-2)# interface ve 3 HP9300(config-vif-3)# appletalk cable-range 30 - 39 HP9300(config-vif-3)# appletalk address 30.
Co nf ig ur ing VLANs Configuration G uid elines • Y o u cannot d ynamica lly add a port to a proto col VLAN if the port has a ny routing configura t ion p a ram ete rs. For exa mple , t he port canno t have a v i rtu a l interfa ce, IP sub - ne t addr ess, IPX ne twork a ddress , or App le T al k ne twork a ddre s s confi gured o n it.
Advanced C onfigu r ation and Management G u id e HP9300(config-vlan-10)# dynamic HP9300(config)# write memory These c omma nds cr ea te a por t-based VLAN o n chassis ports 1 / 1 – 1/ 6 n a me d .
Co nf ig ur ing VLANs Configuring Uplink P orts Within a Port-Based VLA N Y o u can conf igu r e a sub set of the p o rts in a p o rt-base d VLAN as uplink ports.
Advanced C onfigu r ation and Management G u id e VLAN 2 VLAN 3 VLAN 4 HP 9304M or 9308M Routing Switch VLAN 2 VE 1 -IP 10.0.0.1/24 VLAN 3 VE 2 -IP 10.
Co nf ig ur ing VLANs VLAN 2 VLAN 3 VLAN 4 HP 9304M or 9308M Routing Switch VLAN 2 VE 1 -IP 10.0.0.1/24 VLAN 3 VE 2 -Follo w VE 1 VLAN 4 VE 3 -Follo w VE 1 Figu re 16.15 Mu l tiple po rt-b a sed VLANs w i th th e same p rot ocol ad dr es s Each VLAN s t ill requi res a s epa rat e vi rtu al int e rface.
Advanced C onfigu r ation and Management G u id e NOTE: If the d evi ce ’ s AR P table d oes not contain the req uested ho st, the devi ce forw ar ds the ARP reques t on Laye r 2 t o the s ame VLAN as the on e that received the ARP request.
Co nf ig ur ing VLANs HP9300(config-vif-3)# ip follow ve 1 NOTE: Sin ce vi rtual i n terfaces 2 and 3 do not ha ve the i r o w n IP sub - net ad dres ses but ins t ea d a re “ fo ll owin g ” vi rtu a l int e rfa c e 1 ’ s I P ad dress, you s t il l can configure an IPX or AppleT alk in ter f ac e on vi rtu a l i n terfaces 2 a nd 3.
Advanced C onfigu r ation and Management G u id e NOTE: The device ’ s m emo ry m ust be confi gure d to c onta in at l eas t the n um ber of V L AN s you s pec ify for the hi gher e nd of the ra nge .
Co nf ig ur ing VLANs vi rtu a l i n te rface group that h as t he s ame ID as the VL AN group. Y ou can enter thi s comma nd w h en you c onf igu re the VLAN group f o r th e f i rst tim e or l a ter , aft e r y ou have a dd ed tagged port s to the VLAN and so on .
Advanced C onfigu r ation and Management G u id e NOTE: If many of your VLANs w il l have an identi cal co nfigura t io n, you m i gh t want to con f igure VL AN gr oups a nd vi rtu al in terfa ce gr oup s afte r you incre a se th e syste m ca pacity f o r V L AN s an d v i rtu al interfa ce s.
Co nf ig ur ing VLANs HP9300# reload Syntax : sy st em-ma x vi rt ual-int erface <nu m > The <num > para met er ind ica tes th e max imum num ber of v i rt ual interface s. The range of va lid v al ues depe nds on the d ev i ce y ou a r e c onf igurin g.
Advanced C onfigu r ation and Management G u id e Client 1 ... Client 3 ... Client 5 Channel = a client VLAN nested inside a P ath sub-net P ath = a single VLAN into which client VLANs are aggregated Client 1 192.168.1.69/24 192.168.1.0/24 Figu re 16.
Conf igur ing V LANs 16 - 45 Figure 16.17 Exam ple Super Aggregated VL AN Application In this examp le, a col location servi c e pro vides pri v ate c hanne ls for mul tiple clien ts.
Advanced C onfigu r ation and Management G u id e • Add the p o rt c on nected to the clien t as an untag ged port. • Add the p o rt c on nected to the core d e vice (th e device tha t wil l a ggregat e the VLANs) a s a tagge d p o rt.
Co nf ig ur ing VLANs USING THE WEB MAN A GEMENT INTE RF ACE Y o u cannot e nable VLAN a ggregation usin g the W eb managem ent int e rfa ce. Th e o t her opt ion s you need f or c onfigu r ing Agg r egated VLAN s are pre sen t i n ea rlier s oftwa re rele ases and are s upported in th e Web man ageme nt i n terface.
Advanced C onfigu r ation and Management G u id e HP9300A(config-vlan-102)# untagged eth ernet 1/2 HP9300A(config-vlan-102)# exit HP9300A(config)# vlan 103 by port HP9300A(config-vlan-103)# tagged eth.
Co nf ig ur ing VLANs Comman ds for Device D Device D is at the ot he r e nd o f path and sepa rat e s the chann els back in to indi vidu al VLAN s. The t ag type m ust be the s ame as t ag typ e c onf igu r ed on the oth e r c o re device ( Device C).
Advanced C onfigu r ation and Management G u id e HP9300F(config-vlan-103)# exit HP9300F(config)# vlan 104 by port HP9300F(config-vlan-104)# tagged ether net 2/1 HP9300F(config-vlan-104)# untagged eth.
Co nf ig ur ing VLANs 10. Cli ck the Selec t Port M em bers bu tton to displ ay the follo wing panel . 1 1. Sel ect the por ts you a r e p laci ng in the VLAN . T o selec t a ro w , click on th e c heckbox next to th e row num ber , then cl ick on the Selec t Row butt on.
Advanced C onfigu r ation and Management G u id e 5. Enter the VL AN ID that w i ll co nta i n t he proto col VL AN in the VLAN ID fie l d. 6. Enter a na me for the VLAN in th e Pro t ocol_ V LAN _Na me fie ld.
Co nf ig ur ing VLANs Configuring an IP Sub-Net VLAN 1. L og o n to th e devi ce using a val id us er n am e and p asswor d for rea d -w rit e ac c e ss . 2. Cl ick on th e plus si gn next t o Conf igure in the tree view to expan d the l ist of confi gura t ion optio ns .
Advanced C onfigu r ation and Management G u id e NOTE: All the por ts m ust be mem ber s o f the port-ba sed VL AN tha t c onta ins this IP s ub- net VLAN.
Co nf ig ur ing VLANs 7. Selec t th e v i rtu al int e rfa ce from the R out er_ I nte r fac e pull do wn li st if y ou confi gured a virtual i n terfac e fo r routing i n to an d out o f the VLAN . 8. Selec t th e e nc aps ulation t y pe fro m t he F r ame_T ype fiel d ’ s pu lldow n l ist.
Advanced C onfigu r ation and Management G u id e 5. Enter the VL AN ID that wi ll conta i n the AppleT alk c able VLAN in the VLAN ID field. 6. Enter a na me for the VLAN in th e Pro t ocol_ V LAN _Na me fie ld.
Co nf ig ur ing VLANs Displaying VLAN I n form ation Af te r yo u configur e t h e V LAN s, yo u ca n ve ri fy the conf ig ur at ion u sin g t h e f o ll ow in g m eth od s. Disp lay i ng System- W ide VLA N Inf orm ation Us e one o f the fo llowin g m e thods to dis pl ay VLAN in forma t ion fo r all the VL ANs c onf igu r ed on the devic e.
Advanced C onfigu r ation and Management G u id e Dis p lay i ng VLAN Informati on for Specific Ports Us e one o f the fo llowin g m e thods to dis pl ay VLAN in forma t ion fo r specifi c po rts .
Chapter 17 Route Hea l th Injection Y o u can c onf ig ure an H P 9304M, H P 9 308M, and HP 6308M -SX routi ng swit ch to c heck the he alt h of the H TTP a pplic ation a nd “ injec t ” a host route i n to the net wo rk to force a pre f erred ro ute to an act ive ly respo ndi ng w eb host.
Advanced C onfigu r ation and Management G u id e HP9308M R2 Real Server R5 Real Server R1 HP6308-SX R1 Real Server R2 209.157.22.249 (VIP) ISP Paris Internet Web client in Los Angeles requests www .net.com When Los Angeles site is av ailable , client ’ s gatew ay router (at ISP) has path to the www .
Rou t e Health Injec t io n W hen the web brows er sen ds it s TCP SYN reques t (to in iti a te the HTTP ses si on with the web host), the ga teway rout er us ed by the cl ient ’ s com put er lo oks in it s rou t ing tabl e for the route to the re queste d IP addres s.
Advanced C onfigu r ation and Management G u id e Configur ati on Consid eration s • The routi ng switch and the SLB or real serv er mu st be i n th e s ame IP sub-n e t.
Rou t e Health Injec t io n In ter f ace Le ve l The fol lo wing comma nds confi gure an IP sub-ne t addres s tha t is in the same s ub-n e t as the w eb sit e ’ s IP address. Enter thes e c ommands on th e i n terfac e that c on nects the rou t in g s w itc h to the rea l se rv er o r to the SLB that is l oad ba lan ci ng f o r the IP addres s.
Advanced C onfigu r ation and Management G u id e Th e se rv er real comm and in thi s exa mple config ure s t he H P 6308M-SX to send a n HTTP healt h c hec k to t he HTTP port on IP addre ss 209.157. 22.249. When you pre ss Ent e r after this comma nd, the CL I c ha nge s t o th e Real Serve r lev el of the C L I.
Rou t e Health Injec t io n CLI Commands for 6308M-SX R3 The f o ll owing c omma nds c onf igu r e 6 308M-SX R 3 for the co nfigura t ion s ho wn in Figure 17.1. Thi s example in clud es the co mmands for m od i fying th e H TTP he alth c hec k interva l a nd retry va lues.
Advanced C onfigu r ation and Management G u id e T a ble 17. 1: R eal Se rv er Infor m at ion (Co ntinu e d) IP The IP a ddre ss of the rea l se rver . If y ou configure d a hos t range of VIPs on the se rver , th e number fol l ow i ng t he I P addres s (after the c ol on) is the number of h ost s o n th e se rver .
Append ix A Network Monitorin g This ch apter p r ovide s a ge nera l over view of mo nit o rin g t ools s up ported o n HP Pr oCurv e sw itc h es a nd routing sw itc hes . C o nfigura t io n e x amples are pro vi ded using the CLI and W eb m an agement i n terfaces .
Advanced C onfigu r ation and Management G u id e 2. Cl ick on th e plus si gn next t o M onitor in the tree view to expan d the l ist of monit o rin g op tions . 3. Cl ick on th e plus si gn next t o Por t in the tree vi ew to expa nd the list o f Por t option links.
Netw ork Mo nito rin g Syntax : rmon a l ar m < entry-n umber> <M IB-ob j ect.i nterfac e -nu m> <s ampling-t ime > < sampl e-type > <thresho ld-type> < t hre s ho ld-.
Advanced C onfigu r ation and Management G u id e NOTE: For a com ple te summary of all a v ailable sho w ... CL I c omm and s and the i r displays, s ee the Co mman d Li ne Int e rfa ce Re ferenc e .
Netw ork Mo nito rin g Clearing St ati s tic s Y o u can c lea r s t at istic s fo r many pa ram e te rs wi th the clear opti on. USING THE CL I T o de termi ne the ava il abl e cl ear comm and s f o .
Advanced C onfigu r ation and Management G u id e A - 6.
Append ix B Protect i ng Against Denial of Service Attacks In a D e nia l of Ser v ic e (DoS) attac k, a route r is flo od ed w i th u sel es s pac k e ts, hinde rin g norma l o pera t io n. HP de vice s i nclu de m easur es for defe ndi ng against t w o types o f Do S atta cks: Smu r f attac ks and TC P SYN attacks.
Advanced C onfigu r ation and Management G u id e For each IC MP echo reques t p a cket sent b y t he atta cker , a n um ber of I CMP re pli es equal to the numbe r of hosts on the in terme d iary n e twork are sent to the victi m.
Pro t ectin g Again st De nial o f Se rvi ce Attac k s • If the nu mbe r of ICM P pac k e ts exceeds th e bu rs t-ma x val ue, all IC MP pa ckets are droppe d for the nu mber of seco nds s pec ified by the loc k up value . W hen the lo ckup period ex pires, the packe t counter is res e t and meas ureme n t is res t arted.
--------------- -------------- ----- ---- ------ -------- -- ------------ -------- ------- Advanced C onfigu r ation and Management G u id e Displaying Statistic s about Packet s Dropped Bec a use of .
Append ix C Policies and Filters The H P 930 4 M, HP 9308M , and HP 6308M-SX ro uting s w itc hes a nd the HP 6208M -SX s w itc h pr ov ide a r obust a rray of p olici es an d filte r s.
Advanced C onfigu r ation and Management G u id e Scope Some pol icies and filt ers are config ure d a nd appl y globally , w h ile ot hers ar e configu r ed glo bally bu t apply to i ndivi dual p o rts . The f o llowing table lists th e s co pe for e ach ty pe of policy a nd filter .
Policies and Fi lter s Defa ul t F ilt er Action s By de fault , no policies or filt ers ar e defi ne d on the routing sw it ch es a nd s witch. The fol l ow i ng table list s the d e fault ac tion wh en no pol icy o r filter is confi gure d a nd t he defa ul t actio n a fter you c onfi gur e a pol icy o r fi lter .
Advanced C onfigu r ation and Management G u id e Pol icy and F i lter Pr ecedence QoS Y o u can a pply Qo S policies t o i ndi vidual po rts , VLAN s, st atic MAC a ddr ess , Laye r 4 session s , and App l eT al k sock et s. If a port is a member of two or mo re of these it em s an d ha s diffe re nt priorities, the pr ioriti es are me rged.
Policies and Fi lter s Pol ici es A polic y is a set of rules tha t define s ho w t he de vice h and les pa ckets . T abl e C .3 list s the ty pes of po licies y ou can c onfigu r e o n th e routi ng swit che s and the sw i t ch . T a ble C.3: Policies Policy T y pe Supported on.
Advanced C onfigu r ation and Management G u id e Sy ntax Us e the fo llowin g C LI commands or W eb manag ement in terfa ce panels t o c onfigu r e Q o S p olic i es .
Policies and Fi lter s IP sub-ne t and IPX net wo rk VLAN s are si milar , except f o r these VL AN typ es the device exam ine s t he I P sub-ne t or IPX ne twor k ad dr ess. • If the IP s ub- net or I PX network addres s ma tch es the addre ss of the IP s ub-n et VLAN o r IPX n e twork VLAN, the d ev i ce forwards the pa cket.
-------------------------------------------------------------------------------- Advanced C onfigu r ation and Management G u id e Inbound IP Access P olicy Group for P ort 1/1 P olicyID Action Source Destination 3 Deny 209.157.22.26/32 any 17 Deny 209.
Policies and Fi lter s Sy ntax Us e the fo llowin g C LI commands or W eb manag emen t interfa ce panels t o c onfigu r e IP acc ess polic ies . T abl e C .
Advanced C onfigu r ation and Management G u id e Figu re D. 2 T CP/UDP Access Po li cies Act i ons TCP/ UD P a ccess po li cies fo rward (perm it) or dro p (de ny) IP pac ke ts based o n the Layer 4 appli cat i on inf o rmatio n in the p a ckets.
Policies and Fi lter s Syntax Us e the fo llowin g C LI commands or W eb manag ement in terfa ce panels t o c onfigu r e TCP/ UDP ac ces s pol icies . T a ble C.
Advanced C onfigu r ation and Management G u id e T a ble C.8: Filte r s (Continued) Ap pl eT alk zone filt er s X 21 Ap pl eT alk ne tw or k filt er s X 22 BGP addres s fil t ers X 22 BGP AS-path fil.
Policies and Fi lter s Syntax Us e the fo llowin g C LI commands or W eb manag emen t interfa ce panels t o c onfigu r e M AC fil t ers . T a ble C. 9: M AC Fil t er s CLI syntax W eb ma nagement lin ks HP 9300(conf ig)# mac fil t er < f ilt er-num> permi t | den y any | <H.
Advanced C onfigu r ation and Management G u id e Multica st Filter s Mult icas t fil t ers a r e outbound filters that a pply to p acket s t hat have a Layer 2 m ult icas t addre ss in the de stination MAC addres s fie l d. Y ou can c onfigu r e m ult icas t filter s to fi lter on all multi cast addres s es or a s pe cif ic multi cast a ddre ss.
Policies and Fi lter s Figu re D. 3 Add ress- lo ck filt er Act i ons Forward (pe r mit) on ly tho se pac ke ts wi th a M AC a ddre ss tha t the p o rt h as learne d. De ny all o t her packets . Scope Y o u confi gur e a loc k add res s f ilt er g l oball y , b u t you als o specify the port as part of the fil t er .
Advanced C onfigu r ation and Management G u id e Layer 3 Fi lte rs La yer 3 fil t ers co ntrol a devic e ’ s transmissi on and rec eip t o f packets base d o n ro uting p r oto c ol inform ation in the pa cket s.
Policies and Fi lter s Fi gure D.4 IP / RIP rou t e fil t ers Act i ons • An IP/RIP route filter applied t o ou tbound tra f fic o n a port pe rmi ts or d enies adv ert i sement of ro ute s. • An IP/RIP route filter applied t o in bound traf fic on a port per mits o r denie s lea r nin g of th e route.
Advanced C onfigu r ation and Management G u id e Act i ons • An IP/RIP neighbor fi lte r applied to o u tboun d tra ff i c on a po rt p e rmits or d eni es advertis ement of r oute s. • An IP/RIP neighbor fi lte r applied to i nboun d tra f fi c o n a po rt permi ts or denies learning of the ro ute s ad vertised by the neigh bo r .
Policies and Fi lter s IPX Filter s IPX fil t ers contro l transmi ssion and rece ipt of IPX packets , IPX RI P rou t es, and I PX Service Ad vertisemen t Pro t ocol (SAP) m essa ges . IPX forwa r din g filte rs filter o n s ourc e and de sti nation IPX addre ss an d s ocket in for mat ion .
Advanced C onfigu r ation and Management G u id e I PX SAP F il t er s IPX Servic e Ad ve rtisem ent Proto col (SAP) filters co ntrol clie nt ac cess to IPX s e rv ers. Act i ons • An IPX SAP filt er applied to inb ound p ackets lear ns or d r ops ad ve rtis ements f o r the s pecif ic se rv ices.
Policies and Fi lter s Fi gu re D.6 A pple T alk z one filte r Appletalk Zone Filt er s Apple T alk zone filt ers let you s ec u re ac cess to an AppleT alk zone . The filte r contro ls w hether the rout ing sw i t ch in clud es the zone in r eplies to a M AC c hoose r ’ s ZI P Ge tZ oneL ist request.
Advanced C onfigu r ation and Management G u id e NOTE: If yo u u se the rtmp-fi ltering | no-r tm p-fil t ering parame t er , you a r e c onf igu r ing an App l eT al k netw o rk filte r .
Policies and Fi lter s Act i ons • A BGP4 add res s filt er applied to inbound p acke t s p e rmits (learn s ) o r denie s (drop s) the speci f ie d n e twork ad dr es s i n BGP4 up date s r e ceiv ed fr om a B GP4 ne ighbor .
Advanced C onfigu r ation and Management G u id e Scope Y o u define BGP4 AS-path fi lters globa ll y , the n apply the m as pa rt of a BG P4 nei ghbor ’ s d ist rib u te l ist or as part of a m atc h st a t emen t in a r oute map.
Policies and Fi lter s Syntax Us e the fo llowin g C LI commands or W eb manag ement in terfa ce panels t o c onfigu r e BGP4 com m unity fil t ers . T able C.
Advanced C onfigu r ation and Management G u id e Fi gure D. 7 O SPF r e di stri bu ti on filters IP /RI P Redistr i butio n Filters IP/ R IP red ist ributio n fi lte r s c ont rol redistri bution of route s f r om oth e r pro t ocols i n to RIP .
Policies and Fi lter s Syntax Us e the fo llowin g C LI co mmands or W eb manag ement in terfa ce panels t o c onfigu r e IP/ R IP red ist rib u tio n f ilte r s.
Advanced C onfigu r ation and Management G u id e Syntax Us e the fo llowin g C LI co mmands or W eb manag emen t interfa ce panels t o c onfigu r e BGP4 redistribu tion fi lters.
Ind ex Numer i cs 8 02.1 p QoS priority 2-1 4 , 1 6 -5 A AARP 1 5 -4 Abdic a ti on VRRP 1 2 -1 8 ABR 8 -2 di spla ying i n forma t io n 8-48 OSPF 8 -2 Access Cont rol Li st.
Advanced C onfigu r ation and Management G u id e VLAN 15- 13, 16-3 , 16 -20 ZIP query int e rval 1 5 -1 9 z one 15 -5 filte r 15 -2, C-2 0 z one fi lter 15-1 0 Apple T al k C a ble VLAN dy nami c por.
un -suppres si ng a rou t e 1 0 -1 17 BootP h ops 6-7 2 IP addres s st amp 6-71 Broadcas t di rec t ed 6-3 2 filte r C-13 l eaks 16-1 0 BSR 9 - 13 di spla ying 9 - 20 Ca ble Apple T al k rang e 15-5 A.
Advanced C onfigu r ation and Management G u id e STP 5-3 Encaps ulat i on DVMRP 9 -49 Even t RM ON Gro up 9 A-3 Exclude d p o rt VLAN 16- 10 Exit ove r flo w interval OSPF 8 - 37 Extended IP ACL 3-9 .
I IG MP c onfigu r ing 9-2 maximu m r e spon s e ti me 9-3 member sh ip ti me 9-3 q uery in terval 9-2 Inactiv i ty time r PIM - DM 9-1 1 Injec ti on 1 7 -1 Interface Apple T al k 1 5 -5 e nablin g 1 .
Advanced C onfigu r ation and Management G u id e a ge t imer l earned rout es 14-1 5 l earned SAP entrie s 1 4 -15 c onfigu r ing 14 -1 in ter f ac e 1 4 -3 di spla ying i n forma t io n 14-16 forwar.
VRRP 1 2 -4, 12 -16 ho ld BGP4 10-2 3 jo in PIM - SM 9-1 7 k eepal ive BGP4 10-2 3 SRP 1 3 -1 1 pr obe DVMRP 9 -46 pr une DVMRP 9 -45 PIM - DM 9-9 PIM - SM 9-1 7 Me tr ic BGP4 10- 29, 10 -31 DVMRP 9 -.
Advanced C onfigu r ation and Management G u id e l oad sh aring 8 - 30 LS DB maximu m 8 - 38 modi fying port param e ters 8- 36 ne ighbo r 8-2 0 Not So Stubb y Area c onfigu r ing 8-1 1 NSSA c onfigu.
excl uded 16-1 0 st ati c 16-1 0 types 1 6 -9 Port-ba sed VLA N c onfigu r ing 16 -50 de fau l t 16-5 , 16-13 Preempt VRRP backup 1 2-18 Pr ef ix 6- 80 Pri o rit y 8 02.
Advanced C onfigu r ation and Management G u id e l oad ba lan ci ng 6 - 41 VLAN 16- 3, 1 6 -12 , 16 -21 Apple T al k 1 5 -1 3 Ro ute dampe nin g st at is tics 10 -7 9, 10-1 11 Ro ute dis card time DV.
Fast Up li nk Spa n 5-15 si ngle 5-1 7 st at is tics A-4 VLAN 16- 7, 1 6 -19 Str ict Qo S method 2-3 Sy st em di spla ying in fo rma t ion A-3 T Table m ap 10-6 8 Tagged p o rt 2-14 , 16-5 TCP/ UDP ac.
Advanced C onfigu r ation and Management G u id e au the n ti catio n 12 -5, 12-1 4 ba ckup 12-15 pr iority 12- 15 ba ckup pr eemp t 12 -18 c onfigu r ing 12 -1, 12-1 2 d ead in terval 12-1 6 di ffere.
T echnical information in this document is subject to change without notice. ©Copyright Hewlett-Packard Company 2000. All rights reser ved. Reproduction, adaptation, or translation without prior written permission is prohibited except as allowed under the copyright laws.
Un point important après l'achat de l'appareil (ou même avant l'achat) est de lire le manuel d'utilisation. Nous devons le faire pour quelques raisons simples:
Si vous n'avez pas encore acheté HP (Hewlett-Packard) 9308M c'est un bon moment pour vous familiariser avec les données de base sur le produit. Consulter d'abord les pages initiales du manuel d'utilisation, que vous trouverez ci-dessus. Vous devriez y trouver les données techniques les plus importants du HP (Hewlett-Packard) 9308M - de cette manière, vous pouvez vérifier si l'équipement répond à vos besoins. Explorant les pages suivantes du manuel d'utilisation HP (Hewlett-Packard) 9308M, vous apprendrez toutes les caractéristiques du produit et des informations sur son fonctionnement. Les informations sur le HP (Hewlett-Packard) 9308M va certainement vous aider à prendre une décision concernant l'achat.
Dans une situation où vous avez déjà le HP (Hewlett-Packard) 9308M, mais vous avez pas encore lu le manuel d'utilisation, vous devez le faire pour les raisons décrites ci-dessus,. Vous saurez alors si vous avez correctement utilisé les fonctions disponibles, et si vous avez commis des erreurs qui peuvent réduire la durée de vie du HP (Hewlett-Packard) 9308M.
Cependant, l'un des rôles les plus importants pour l'utilisateur joués par les manuels d'utilisateur est d'aider à résoudre les problèmes concernant le HP (Hewlett-Packard) 9308M. Presque toujours, vous y trouverez Troubleshooting, soit les pannes et les défaillances les plus fréquentes de l'apparei HP (Hewlett-Packard) 9308M ainsi que les instructions sur la façon de les résoudre. Même si vous ne parvenez pas à résoudre le problème, le manuel d‘utilisation va vous montrer le chemin d'une nouvelle procédure – le contact avec le centre de service à la clientèle ou le service le plus proche.