Cabletron Systems 9032578-02 manuel d'utilisation

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207

Aller à la page of

Un bon manuel d’utilisation

Les règles imposent au revendeur l'obligation de fournir à l'acheteur, avec des marchandises, le manuel d’utilisation Cabletron Systems 9032578-02. Le manque du manuel d’utilisation ou les informations incorrectes fournies au consommateur sont à la base d'une plainte pour non-conformité du dispositif avec le contrat. Conformément à la loi, l’inclusion du manuel d’utilisation sous une forme autre que le papier est autorisée, ce qui est souvent utilisé récemment, en incluant la forme graphique ou électronique du manuel Cabletron Systems 9032578-02 ou les vidéos d'instruction pour les utilisateurs. La condition est son caractère lisible et compréhensible.

Qu'est ce que le manuel d’utilisation?

Le mot vient du latin "Instructio", à savoir organiser. Ainsi, le manuel d’utilisation Cabletron Systems 9032578-02 décrit les étapes de la procédure. Le but du manuel d’utilisation est d’instruire, de faciliter le démarrage, l'utilisation de l'équipement ou l'exécution des actions spécifiques. Le manuel d’utilisation est une collection d'informations sur l'objet/service, une indice.

Malheureusement, peu d'utilisateurs prennent le temps de lire le manuel d’utilisation, et un bon manuel permet non seulement d’apprendre à connaître un certain nombre de fonctionnalités supplémentaires du dispositif acheté, mais aussi éviter la majorité des défaillances.

Donc, ce qui devrait contenir le manuel parfait?

Tout d'abord, le manuel d’utilisation Cabletron Systems 9032578-02 devrait contenir:
- informations sur les caractéristiques techniques du dispositif Cabletron Systems 9032578-02
- nom du fabricant et année de fabrication Cabletron Systems 9032578-02
- instructions d'utilisation, de réglage et d’entretien de l'équipement Cabletron Systems 9032578-02
- signes de sécurité et attestations confirmant la conformité avec les normes pertinentes

Pourquoi nous ne lisons pas les manuels d’utilisation?

Habituellement, cela est dû au manque de temps et de certitude quant à la fonctionnalité spécifique de l'équipement acheté. Malheureusement, la connexion et le démarrage Cabletron Systems 9032578-02 ne suffisent pas. Le manuel d’utilisation contient un certain nombre de lignes directrices concernant les fonctionnalités spécifiques, la sécurité, les méthodes d'entretien (même les moyens qui doivent être utilisés), les défauts possibles Cabletron Systems 9032578-02 et les moyens de résoudre des problèmes communs lors de l'utilisation. Enfin, le manuel contient les coordonnées du service Cabletron Systems en l'absence de l'efficacité des solutions proposées. Actuellement, les manuels d’utilisation sous la forme d'animations intéressantes et de vidéos pédagogiques qui sont meilleurs que la brochure, sont très populaires. Ce type de manuel permet à l'utilisateur de voir toute la vidéo d'instruction sans sauter les spécifications et les descriptions techniques compliquées Cabletron Systems 9032578-02, comme c’est le cas pour la version papier.

Pourquoi lire le manuel d’utilisation?

Tout d'abord, il contient la réponse sur la structure, les possibilités du dispositif Cabletron Systems 9032578-02, l'utilisation de divers accessoires et une gamme d'informations pour profiter pleinement de toutes les fonctionnalités et commodités.

Après un achat réussi de l’équipement/dispositif, prenez un moment pour vous familiariser avec toutes les parties du manuel d'utilisation Cabletron Systems 9032578-02. À l'heure actuelle, ils sont soigneusement préparés et traduits pour qu'ils soient non seulement compréhensibles pour les utilisateurs, mais pour qu’ils remplissent leur fonction de base de l'information et d’aide.

Table des matières du manuel d’utilisation

  • Page 1

    SmartSwitch Router User Reference Manual 90 3 25 7 8-0 2[...]

  • Page 2

    Notice 2 SSR User Refe rence Manu al[...]

  • Page 3

    SSR User Re f erence Manual 3 Notice Notice Cabletron Systems reserv es the right t o make changes in speci f i cations and other informatio n contained in this document without prior no tice . The reader should in all cases consult Cabletron Systems to determine whether a n y such changes h a v e bee n made. The hard w are, f irm w are, or softwar[...]

  • Page 4

    Notice 4 SSR User Refe rence Manu al VCCI Notice This is a Class A product based on the stand ard of the V oluntary Control Cou ncil for Interference b y In formation T echnology Equipment (VCCI). I f this equipment is used in a domestic en vironment, radio disturb ance may arise. When su ch trouble occurs, the user may be requir ed to take corr ec[...]

  • Page 5

    SSR User Reference Manual 5 Notice DECLARA TION OF CONFORMITY ADDENDUM Applicati on of Co uncil Di rective(s): 89/336/ EEC 73/23/EEC Manufact ur er ’s Name : Cabletron Systems, Inc. Manufactur er ’s Address: 35 Industrial Way PO Box 5 005 Rochester, NH 03867 European Representative Nam e: Mr . J. Solari European Repr esentat ive Addr ess: Cable[...]

  • Page 6

    Notice 6 SSR User Refe rence Manu al[...]

  • Page 7

    SmartSwi tch Router User Reference Manual 7 Contents Preface ........... ......... .............. .......... .............. ......... .............. ......... ........... 1 5 About This Manual ............... ........... ................. ........... ................. ........... ................. ........... .. 15 Who Should Read Th is Manual? ...[...]

  • Page 8

    Contents 8 SmartSwitch Route r User Referenc e Manual Port-based VLANs .................... ................. ........... ................. ........... ................. ..... 3 5 MAC-address-ba sed VLANs ......... ................. ........... ................. ........... ................ 35 Protocol-based VLANs................... ........... ...[...]

  • Page 9

    SmartSwi tch Router User Reference Manual 9 Contents Assigning IP/IPX Interfaces ..................... ................. ................. ........... ................. ....... 51 Chapter 4: RIP Configuration Guide ...... .............. .............. .............. ...... 53 RIP Overview ............. ................. ............ ...............[...]

  • Page 10

    Contents 10 SmartSwitch Router User Reference M anual Notes on Using Communities ............ ................. ............ ................ ............ .......... 9 7 Local_Pref Attribute Example ................... ................. ............ ................ ................. ..... 97 Notes on Using the Local_Pref Attribute ................[...]

  • Page 11

    SmartSwi tch Router User Reference Manual 11 Contents Creating an Aggre gate Destination ............... ................. ........... ................. ........... ..... 126 Creating an Aggre gate Source ............................ ............ ................ ............ ................126 Examples of Import Policies ............... .........[...]

  • Page 12

    Contents 12 SmartSwitch Router User Reference M anual IPX Addresses .................. ................. ................. ........... ................. ........... ................. ... 15 3 Configuring IPX Interfaces a nd Parameters .................... ................. ................. ........... ... 15 4 Configure IPX Addresses to Ports ....[...]

  • Page 13

    SmartSwi tch Router User Reference Manual 13 Contents Configure ACL .................... ................. ............ ................. ........... ................. ................176 Defining an IP ACL ...................... ............ ................. ................ ............ ................176 Defining an IPX ACL....................[...]

  • Page 14

    Contents 14 SmartSwitch Router User Reference M anual Configuration for Ro uter R2..................... ................. ........... ................. ........... ... 19 7 Symmetrical Configuration .................. ................. ........... ................. ................. ........ 197 Configuration of Ro uter R1 ................ ........[...]

  • Page 15

    SmartSwi tch Router User Reference Manual 15 Pr eface About Th is Manu al This manual pro vides detailed informat ion and procedur e s for configuring the SmartSwitch Router SSR softwa re. If you have n ot yet installed the SSR, use the instructions in the SmartSwitch Router Ge tting Started Guide to insta ll the ch assis and perform basic setup ta[...]

  • Page 16

    Prefa ce 16 SmartSwitch Router User Reference M anual How to Use This Manual Related Documenta tion The Cabletr on Systems documentation set includes the following items. Refer to these other documents to learn more about your product. If Y ou W ant T o See Read overview information Chapter 1 o n page 17 Configure bridgin g Chapter 2 o n page 33 Co[...]

  • Page 17

    SmartSwi tch Router User Reference Manual 17 Chapter 1 SmartSwitch Router Pr oduct Overview The SmartSwitch Router (S SR) pr ovides non-blocking, wire -speed Layer-2 (switching), Layer -3 (rou ting) and Layer-4 (application) switching. The har dwar e provides wir e-speed performance r egardless of the performance mon itoring, filtering, and Quality[...]

  • Page 18

    Chapter 1: SmartSwitch Router Product O verview 18 SmartSwitch Router User Reference M anual The fol lowin g tab le li sts the b asic har dware and so ftw ar e spe cif icat ions f or th e SSR : T able 1. SSR Hardware and software specifications Feature Specifi cation Throughput • 16-Gbps no n-blocking sw itching fabric • 15 million pa ckets-per[...]

  • Page 19

    SmartSwi tch Router User Reference Manual 19 Chapter 1: Sm artSwitch Ro uter Product Ove rview Suppo rted Medi a (Encaps ulati on T ype ) The SSR supports the following industry-standa rd networking med ia: • IP: IEEE 802 .3 SNAP and Ethernet T ype II • IPX: IEEE 80 2.3 SNAP , Ethernet T ype II, IPX 802.3, 802.2 • 802.1 Q VLAN Encapsulati on [...]

  • Page 20

    Chapter 1: SmartSwitch Router Product O verview 20 SmartSwitch Router User Reference M anual – Service Advert ising Pr otocol (SAP) Chapter 9: “IPX Routi ng Confi guration Guide” on page 151 describes these protocol s in detail. Configurin g the Cabletr on SmartSwitch Router The SSR pr ovides a comman d line interface (CLI) th at allows you t[...]

  • Page 21

    SmartSwi tch Router User Reference Manual 21 Chapter 1: Sm artSwitch Ro uter Product Ove rview Access Modes The SSR CLI has four access mo des. • User – Allow s you to displa y basic inform ation and us e basic utiliti es such as pin g but does not allow you to display SNMP , filter and access control list inf ormation or ma ke other configurat[...]

  • Page 22

    Chapter 1: SmartSwitch Router Product O verview 22 SmartSwitch Router User Reference M anual User Mode After you log in to the SSR , you are automatically in User mode. The User commands available ar e a subset of tho se available in Enable mod e. In general, the User commands allow you to display bas ic information an d use basic utilities such as[...]

  • Page 23

    SmartSwi tch Router User Reference Manual 23 Chapter 1: Sm artSwitch Ro uter Product Ove rview T o list the Enable commands, enter : The Enable mode command prompt consist s of the SSR nam e followed by the pound sign(#): T o list the commands av ailable in Enable mode, e nter a questio n mark (?) as shown in the following example: List the Enable [...]

  • Page 24

    Chapter 1: SmartSwitch Router Product O verview 24 SmartSwitch Router User Reference M anual T o exit Enable mode and r eturn to Use r mode, use one of the fo llowing commands: Config ur e Mode Configure mode provides the ca pabilities to configure all feat ures and functions on the SSR. Y ou can configure features and functio ns within Configu re [...]

  • Page 25

    SmartSwi tch Router User Reference Manual 25 Chapter 1: Sm artSwitch Ro uter Product Ove rview T o exit Configur e mode and r eturn to Enable mode, use one of the following comma nds: Boot PROM Mode If your SSR does n ot find a valid system image on the external PCMCIA flash, the system might enter pr ogrammable r ead-only memo ry (PROM) mode. Y ou[...]

  • Page 26

    Chapter 1: SmartSwitch Router Product O verview 26 SmartSwitch Router User Reference M anual SSR boots, the boot im age is executed first, followed by the syst em image and finish ing with a config uration file. Boot and System Image Only one boot image exists on the intern al flash of the SSR Contro l Module. Multiple system images can be stor ed [...]

  • Page 27

    SmartSwi tch Router User Reference Manual 27 Chapter 1: Sm artSwitch Ro uter Product Ove rview Note: In this exampl e, the location “pc-flash” indicates th at the SSR is set to use the factory-installed softwar e on the flash car d. 2. Copy the softwar e upgrade you want to install on to a TF TP server that the SSR can access. (Use the ping com[...]

  • Page 28

    Chapter 1: SmartSwitch Router Product O verview 28 SmartSwitch Router User Reference M anual Here is an example: In this example, the locatio n “pc-flash” indicates that th e SSR is set to use the factory- installed software on the flash card. 2. Copy the softwar e upgrade you want to install onto a TF TP server that the SSR can access. (Use th[...]

  • Page 29

    SmartSwi tch Router User Reference Manual 29 Chapter 1: Sm artSwitch Ro uter Product Ove rview 4. T he C LI di spla ys t he f ollo win g mes sage : 5. Enter yes or y to activate the changes. Note: If you exit Configure mo de (by entering the exit command or pr essing Ctrl+Z), the CLI will ask yo u whether you want to make the changes in the scratch[...]

  • Page 30

    Chapter 1: SmartSwitch Router Product O verview 30 SmartSwitch Router User Reference M anual Set SSR Name The SSR name is set to ssr by default. Y ou may customize the name for the SSR by entering the follo wing command in Conf igure mo de:. Set SSR Date and Time The SSR system time can keep track of time as entered by th e user or via NTP . T o co[...]

  • Page 31

    SmartSwi tch Router User Reference Manual 31 Chapter 1: Sm artSwitch Ro uter Product Ove rview Configure SNMP Services The SSR accepts SNMP sets and gets fr om an SNMP manager . Y ou can configur e SSR SNMP parameters including com munity strings and trap server targ et addresses. T o configure the SSR SNMP community string, ente r the following co[...]

  • Page 32

    Chapter 1: SmartSwitch Router Product O verview 32 SmartSwitch Router User Reference M anual Show the SNMP communi ty strings. snmp show community Show SN MP related statist ics. snmp show statistics Show trap tar get r elated configuration. snmp show trap Show the active configuration of the system. system show active-config Show the contents o f [...]

  • Page 33

    SmartSwi tch Router User Reference Manual 33 Chapter 2 Bridging Configuration Guide Bridgi ng Overview The SmartSwitch Router pr ovides the following bridging functions: • Complies with the IEEE 802.1d stan dard • Complies with the IGMP mul ticast bridging stan dard • Provides wir e-speed addr ess-based bridging or flow-based bridging • Pro[...]

  • Page 34

    Chapter 2: Bridging Con figuration Guid e 34 SmartSwitch Router User Reference M anual Note: W AN interfaces on the SSR do n ot currently support Spanning T ree operation s. However , future implementat ions of W AN for the SSR fam ily of routers will support Spanning T ree. Bridging Modes (Flow-Based and Address-Based) The SSR pr ovides the follow[...]

  • Page 35

    SmartSwi tch Router User Reference Manual 35 Chapter 2: B ridging Configuratio n Guide • MAC addr ess based • Protocol based • Subnet based • Multicast ba sed • Policy based Detailed informatio n about these types of VLANs is beyond the scope of this m anual. Each type of VLAN is briefly explained in the following subsections. Port-based [...]

  • Page 36

    Chapter 2: Bridging Con figuration Guid e 36 SmartSwitch Router User Reference M anual Multicast-based VLANs Multicast-based VLANs a re cr eated dynamically for mu lticast groups. T ypi cally , each multicast group corr esponds to a differ ent VLAN. This ensur es that multicast frames ar e received o nly by those ports that are connected to members[...]

  • Page 37

    SmartSwi tch Router User Reference Manual 37 Chapter 2: B ridging Configuratio n Guide the SSR as a r esult of cr eating L3 interfaces for IP and/ or IPX. However , these implicit VLANs do not need to be cre ated or configur ed manually . The implicit VLANs created by the SSR ar e subnet-based VLANs. Most commonly , an SSR is used as a combined swi[...]

  • Page 38

    Chapter 2: Bridging Con figuration Guid e 38 SmartSwitch Router User Reference M anual For example, if port 1 belongs to VLAN IPX_VLAN for IPX, VLAN IP_VLAN for IP and VLAN OTHER_VLAN for any other pr otocol, then an IP frame r eceived by por t 1 is classified as belongi ng to VLAN IP_ VLAN . T runk ports (802.1Q) ar e usually used to connect one V[...]

  • Page 39

    SmartSwi tch Router User Reference Manual 39 Chapter 2: B ridging Configuratio n Guide The corr esponding bridge tables for addr ess-based and flow-based bridging ar e shown below . As shown, the bridge table conta ins mor e information on the traf fic patterns when flow-based bridging ena bled compar ed to addr ess-based bridgin g. W ith the SSR c[...]

  • Page 40

    Chapter 2: Bridging Con figuration Guid e 40 SmartSwitch Router User Reference M anual Note: If you ar e running spanni ng tree on one or mor e VLANs, you must enable spanning tr ee on all ports belonging to each VLAN. Adjust Spanning-T r ee Parameters Y ou may need to adjust certain spanning- tree parameters if the default values ar e not suitable[...]

  • Page 41

    SmartSwi tch Router User Reference Manual 41 Chapter 2: B ridging Configuratio n Guide T o set an interface priority , enter the following comma nd in Configur e mode: Assign Port Costs Each interface ha s a port cost associated with it. By co nvention, the port cost is 1 000/data rate of the a ttached LAN, in Mbps. Y o u can set dif fer ent port c[...]

  • Page 42

    Chapter 2: Bridging Con figuration Guid e 42 SmartSwitch Router User Reference M anual Defi ne th e Max imu m Age If a bridge does no t hear BPDUs from the r o ot bridge within a specified interva l, it assumes that the netw ork has changed and r ecomputes the spanning-tr ee topology . T o change the default interval setting, enter th e following c[...]

  • Page 43

    SmartSwi tch Router User Reference Manual 43 Chapter 2: B ridging Configuratio n Guide Config ur e Bridging for Non-IP/IPX Protocols By default, all non- routable pr otocols (AppleT alk and DECnet) ar e bridged within the SSR. All phys ical ports cont aining non- routable pr otocols s hould be assign ed to the same VLAN, thus allowing bridging betw[...]

  • Page 44

    Chapter 2: Bridging Con figuration Guid e 44 SmartSwitch Router User Reference M anual Configurati on Examples Cr eating an IP or IPX VLAN VLANs are used to associate physical ports on the SSR with co nnected hosts that may be physically separated but need to participate in th e same bro adcast domain. T o associate ports to a VLAN, you m ust first[...]

  • Page 45

    SmartSwi tch Router User Reference Manual 45 Chapter 3 IP Routing Configuration Guide This chapter describes how to configur e IP interfaces and general no n-proto col-specific routing para meters. IP Routi ng Overview Internet Pr otocol (IP) is a packet-based pr otocol used to e xchange data over com puter networ ks. IP ha ndles addressing , routi[...]

  • Page 46

    Chapter 3: IP Routing C onfiguration Gu ide 46 SmartSwitch Router User Reference M anual The SSR supports standar ds based TCP , UDP , and IP . IP Routing Protocols The SSR suppo rts standards based uni cast and mu lticast routing. Un icast routing protocol support include Interior Gateway Pr otocols and Exterior Gateway Pro tocols. Multicast routi[...]

  • Page 47

    SmartSwi tch Router User Reference Manual 47 Chapter 3: IP Routing Configuratio n Guide Configuring I P Interfaces and Parameters Thi s sec tion p rovid es an over view of c onfi guri ng v ario us IP para met ers and s ettin g up IP interfaces. Configure IP Addr esses to Ports Y ou can configure one IP interface directly to physical ports. Each por[...]

  • Page 48

    Chapter 3: IP Routing C onfiguration Gu ide 48 SmartSwitch Router User Reference M anual • 802.3 SNAP: S NAP IEEE 802.3 encapsulation, in which th e type code becomes the frame le ngth for the IEEE 802 .2 LLC encapsulation (destina tion and source S ervice Access Points, an d a control byte) T o configure IP encapsulation, enter o ne of the follo[...]

  • Page 49

    SmartSwi tch Router User Reference Manual 49 Chapter 3: IP Routing Configuratio n Guide Configure DNS Parameters The SSR can be conf igured to specify D NS servers which supply name services for DNS requests. Y ou can specify up to three DNS servers. T o configure DNS servers, enter the following command in Configur e mode: Y ou can also specify a [...]

  • Page 50

    Chapter 3: IP Routing C onfiguration Gu ide 50 SmartSwitch Router User Reference M anual • NetBIOS Datagram Server (port 138) • T AC ACS S erv er ( port 4 9) • T ime Service (port 37) T o configure a destination to w hich UDP packets will be forwar ded, enter the following command in Co nfigur e mode: Configure Dir ect Broadcast Y ou can conf[...]

  • Page 51

    SmartSwi tch Router User Reference Manual 51 Chapter 3: IP Routing Configuratio n Guide Configurati on Examples Assigning IP/IPX I nterfaces T o enable routing on the SSR, you must ass ign an IP or IPX interfa ce to a VLAN. T o assign an IP or IPX interface n amed ‘RED’ to the ‘BLUE ’ VLAN, enter the f ollowing command: Y ou can also assign[...]

  • Page 52

    Chapter 3: IP Routing C onfiguration Gu ide 52 SmartSwitch Router User Reference M anual[...]

  • Page 53

    SmartSwi tch Router User Reference Manual 53 Chapter 4 RIP Configuration Guide RIP Overview This chapter describes how to conf igure Ro uting Information Pr otocol (RIP) in the SmartSwitch Router . RIP is a dista nce-vector routing pr otocol for use in sm all networks. RIP is described in RFC 1723. A router r unning RIP broadcasts upda tes at set i[...]

  • Page 54

    Chapter 4: R IP Configuration Gu ide 54 SmartSwitch Router User Reference M anual Enabling and Disabling RIP T o enable or disable RIP , enter one of the following comman ds in Configure mode. Configuring R IP Interfaces T o configure RIP in the S SR, you must first add interfaces to inform RIP about attached interfaces. T o add RIP interfaces, ent[...]

  • Page 55

    SmartSwi tch Router User Reference Manual 55 Chapter 4: RIP Configuration Guid e T o change RIP parameters, enter the fo llowing commands in Conf igure mode. Configure RIP Route Prefer ence Y ou can set the prefer ence of routes learned fr om RIP . T o configure RIP r oute prefer ence, enter the following command in Configure mode . Authenticatio n[...]

  • Page 56

    Chapter 4: R IP Configuration Gu ide 56 SmartSwitch Router User Reference M anual Config ur e RIP Route Default-Metric Y ou can define the metric used when advertising r outes via RIP that wer e learned fr om other pr otocols. The defa ult value for this parameter is 16 (unr eachable). T o export routes fro m other pr otocols into RIP , you must ex[...]

  • Page 57

    SmartSwi tch Router User Reference Manual 57 Chapter 4: RIP Configuration Guid e Configurati on Example Show detailed info rmation of r esponse packets sent by the router . rip trace response send Show detailed informa tion of request packets sent by the router . rip trace send request Show RIP time r informatio n. rip show timers ! Example conf ig[...]

  • Page 58

    Chapter 4: R IP Configuration Gu ide 58 SmartSwitch Router User Reference M anual[...]

  • Page 59

    SmartSwi tch Router User Reference Manual 59 Chapter 5 OSPF Configuration Guide OSPF Ov erview Open Shortest Path First (OSPF) is a link-sta te r outing protocol tha t supports IP subnetting and authentication. Th e SSR supports OSPF V ersion 2 .0 as defined in RFC 1583. Each link-state m essage contains all the links conn ected to the r outer with[...]

  • Page 60

    Chapter 5: OSPF Config uration Guide 60 SmartSwitch Router User Reference M anual OSPF Multipath The SSR also suppo rts OSPF an d static Multi- path. If multiple equ al-cost OSPF or sta tic routes ha ve been defined for an y destination, then the SSR “d iscovers” and uses all of them. The SSR wil l automat ically learn up to four equal-cost OS [...]

  • Page 61

    SmartSwi tch Router User Reference Manual 61 Chapter 5: OSPF Configuratio n Guide Configure OSPF Interface Paramete rs Y ou can configure the OSPF interface parameters shown in the table below . T o configure OSPF inte rface parameters, ente r one of the fo llowing commands in Config ure mo de: T able 3. OSPF Interf ace Paramete rs OSPF Paramet er [...]

  • Page 62

    Chapter 5: OSPF Config uration Guide 62 SmartSwitch Router User Reference M anual Configure an OSPF Ar ea OSPF areas are a collection of subnet s that are gr ouped in a logica l fashion. These areas communicate with o ther area s via the backbone ar ea. Once OSPF areas are cr eated, you can add interf aces, stub hosts, and summary ra nges to the ar[...]

  • Page 63

    SmartSwi tch Router User Reference Manual 63 Chapter 5: OSPF Configuratio n Guide Configure OSPF Ar ea Parameters The SSR al lows configu ration of various O SPF area parameters, includin g stub areas, stub cost and authen tication method. St ub areas ar e ar eas into which information on external routes is no t sent. Instead, ther e is a default e[...]

  • Page 64

    Chapter 5: OSPF Config uration Guide 64 SmartSwitch Router User Reference M anual T o configure virtual links, enter the following comm ands in the Configur e mode. Configure Autonomous System Exter nal (ASE) Link Advertisements These parameters specify the def aults used when importing OSPF AS External (ASE) routes into the routing table and expor[...]

  • Page 65

    SmartSwi tch Router User Reference Manual 65 Chapter 5: OSPF Configuratio n Guide Monito ring OSPF The SSR provides display of OS PF statisti cs and config urations conta ined in the routing table. Informa tion displayed pr ovides routing an d performance informa tion. T o display OSP F infor mation, enter the following commands in En able mode. Sh[...]

  • Page 66

    Chapter 5: OSPF Config uration Guide 66 SmartSwitch Router User Reference M anual OSPF Configurati on Examples For all examples in th is section, ref er to the configura tion shown in Figu re 1 on page 70 . The following configura tion commands for router R1: • Determine the IP address for ea ch interface • Specify the static routes configured [...]

  • Page 67

    SmartSwi tch Router User Reference Manual 67 Chapter 5: OSPF Configuratio n Guide Exporting All Interface & S tatic Routes to OSPF Router R1 has several static routes. W e would export these static routes as type-2 OSPF routes. The interfa ce routes would be r edistributed as type-1 OSPF routes. 1. Cr eate a OSPF export destination for type-1 r[...]

  • Page 68

    Chapter 5: OSPF Config uration Guide 68 SmartSwitch Router User Reference M anual Router R1 would like to redistribute its OSPF , OSPF-ASE, RIP , Static and Interface/Dir ect routes into RIP . 1. Enable RIP on in terface 12 0.190.1. 1/16. 2. Cr eate a OSPF export destination for type-1 routes. 3. Cr eate a OSPF export destination for type-2 routes.[...]

  • Page 69

    SmartSwi tch Router User Reference Manual 69 Chapter 5: OSPF Configuratio n Guide 9. Cr eate a RIP export destination. 10. Create OSPF export sour ce. 1 1. Create O SPF-ASE export sour ce. 12. Create the Expo rt-Policy for redistributing all interface, RIP , static, OSPF and OSPF- ASE routes into RIP . ip-router policy create rip-export-des tinatio[...]

  • Page 70

    Chapter 5: OSPF Config uration Guide 70 SmartSwitch Router User Reference M anual Figure 1. Exporting to OSPF BGP R1 R2 R3 R41 R42 R6 R11 A r e a B a c k b o n e A r e a 1 40.1. 0.0 (RIP V2) 140.1.1 .1/24 140. 1.2.1/ 24 140. 1.5/ 24 140. 1.4/2 4 190. 1.1.1/ 16 120.190 .1.1/ 16 160.1.5 .2/24 R10 R5 R7 20 2.1.2 .2/1 6 140. 1.3.1/ 24 130. 1.1. 1/16 R8[...]

  • Page 71

    SmartSwi tch Router User Reference Manual 71 Chapter 6 BGP Configuration Guide BGP Ov ervie w The Border Gateway Proto col (B GP) is an ext erior gatewa y protocol tha t allows IP r outers to exchange network rea chability information. BGP beca me an internet standar d in 198 9 (RFC 1 105) and the curren t version, BGP-4, was published in 1994 (RFC[...]

  • Page 72

    Chapter 6: B GP Configuration Guid e 72 SmartSwitch Router User Reference M anual The SSR BGP Implementation The SSR r outing prot ocol implementation is based on GateD 4.0.3 code ( http://www .gated.or g ). GateD is a modula r software pr ogram consisting of core services, a r outing database, and pr otocol modules supporting multiple r outing pro[...]

  • Page 73

    SmartSwi tch Router User Reference Manual 73 Chapter 6: B GP Configuration Guid e Setting the Autonomous System Number An autonomous system number identifies your a utonomous system to other r outers. T o set the SSR’s auton omous system nu mber , enter the following command in Configure mode. The a utonomous-system <num1> parameter sets th[...]

  • Page 74

    Chapter 6: B GP Configuration Guid e 74 SmartSwitch Router User Reference M anual wher e: peer -group <numb er-or -str ing > Is a gr oup ID, which can be a number or a character string. type Specifies the type of BGP gr oup you ar e adding. Y ou can specify one of the followi ng: exter nal In the clas sic external BGP group, full policy check[...]

  • Page 75

    SmartSwi tch Router User Reference Manual 75 Chapter 6: B GP Configuration Guid e Adding a BGP Peer There are two w ays to add BGP peers to peer gr oups. Y o u can explicitly add a peer host, or you can add a network. Adding a network allows for peer connections fr om any addresses in the ran ge of network a nd mask pairs specified in the bgp add n[...]

  • Page 76

    Chapter 6: B GP Configuration Guid e 76 SmartSwitch Router User Reference M anual aspath_term {m} A regular expr ession followed by {m } (where m is a positive integer) means exactly m repet itio ns. aspath_term {m,} A regular expr ession followed by {m ,} (where m is a positive integer) means m or mo re re p et i t io n s . aspath_term * An AS pat[...]

  • Page 77

    SmartSwi tch Router User Reference Manual 77 Chapter 6: B GP Configuration Guid e T o import all routes (.* matches all AS paths) w ith the default preference: T o export all ac tive r outes fr om 284 or 813 o r 814 or 8 15 or 816 or 3369 or 3561 to autonom ous system 6 4800. Using the AS Path Pr epend Feature When BGP compares two advertisements o[...]

  • Page 78

    Chapter 6: B GP Configuration Guid e 78 SmartSwitch Router User Reference M anual Notes on Using the AS Pa th Pr epend Feature • Use the as-coun t option for external peer-hosts only . •I f t h e as-count option is enter ed for an active BGP session, r outes will not be res ent to reflect the n ew setting. T o have r outes reflect the new setti[...]

  • Page 79

    SmartSwi tch Router User Reference Manual 79 Chapter 6: B GP Configuration Guid e a BGP neighbo r relationship is the establis hment of a TCP connection (using TCP port 179) between peers. A BGP Open message can then be sent between peers acr oss the TCP connection to establish various BGP variables (BGP V ersion, AS number (ASN), hold time, BGP id[...]

  • Page 80

    Chapter 6: B GP Configuration Guid e 80 SmartSwitch Router User Reference M anual The CLI configuration fo r router SS R1 is as follows: The gated.conf file for r outer SSR1 is as f ollows: The CLI configuration fo r router SS R2 is as follows: interface create ip et.1.1 address-net mask 10.0.0.1/16 port et.1.1 # # Set the AS of the router # ip-rou[...]

  • Page 81

    SmartSwi tch Router User Reference Manual 81 Chapter 6: B GP Configuration Guid e The gated.conf file for r outer SSR2 is as f ollows: IBGP Config uration Example Connections between BGP speakers within the same AS are referr ed to as internal links. A peer in the sa me AS is an internal peer . Internal BGP is common ly abbreviated IBGP; external B[...]

  • Page 82

    Chapter 6: B GP Configuration Guid e 82 SmartSwitch Router User Reference M anual Note that for running IBGP usi ng group-type Routing you must run an IGP such as OS PF to resolve the next hops that com e with external routes. Y ou could also use protocol any so that all pr otocols ar e eligible to resolve th e BGP forwar ding address. Figure 3 sho[...]

  • Page 83

    SmartSwi tch Router User Reference Manual 83 Chapter 6: B GP Configuration Guid e In this example, OSPF is configur ed as the IGP in the autonomous system. The following lines in the router SSR6 conf iguration file co nfigure OSPF: The following lines in the Cisco router co nfigure OSPF: The following lines in the SSR6 set up peering with the Cisco[...]

  • Page 84

    Chapter 6: B GP Configuration Guid e 84 SmartSwitch Router User Reference M anual The following lines on the Cisco r outer set up IBGP peering with r outer SSR6. IBGP Intern al Group Example The IBGP Internal gr oup expects all peers to be dir ectly attached to a shar ed subnet so that, like external peers, the next hops r eceived in BGP advertisem[...]

  • Page 85

    SmartSwi tch Router User Reference Manual 85 Chapter 6: B GP Configuration Guid e Figure 4 illustrates a sa mple IBGP Internal group conf iguration . Figure 4. Sample IBGP Configuration (Internal Group T ype) The CLI configuration fo r router SS R1 is as follows: AS-1 SSR2 SSR1 17.122.128.2/24 17.122.128.1/24 16.122.128.1/24 16.122.128.1/24 16.122.[...]

  • Page 86

    Chapter 6: B GP Configuration Guid e 86 SmartSwitch Router User Reference M anual The gated.conf file for r outer SSR1 is as f ollows: The CLI configuration fo r router SS R2 is as follows: The gated.conf file for r outer SSR2 is as f ollows: autonomoussystem 1 ; routerid 16.122.128.1 ; bgp yes { traceoptions aspath detail pa ckets detail open deta[...]

  • Page 87

    SmartSwi tch Router User Reference Manual 87 Chapter 6: B GP Configuration Guid e The configuration for r outer C1 (a Cisco r outer) is as follows: The configuration for r outer C2 (a Cisco r outer) is as follows: EBGP Multihop Configurat ion Example EBGP Multihop refers to a configuration wher e external BGP neighbors ar e not connected to the sam[...]

  • Page 88

    Chapter 6: B GP Configuration Guid e 88 SmartSwitch Router User Reference M anual This sample con figuration shows External BGP peers, S SR1 and SS R4, which ar e not connected to the same subnet. The CLI configuration fo r router SS R1 is as follows: Physical Link Legend: Peering Relationship SSR1 16.122.128.1/16 SSR3 AS-64800 AS-64801 SSR4 SSR2 1[...]

  • Page 89

    SmartSwi tch Router User Reference Manual 89 Chapter 6: B GP Configuration Guid e The gated.conf file for r outer SSR1 is as f ollows: The CLI configuration fo r router SS R2 is as follows: The gated.conf file for r outer SSR2 is as f ollows: The CLI configuration fo r router SS R3 is as follows: autonomoussystem 64800 ; routerid 0.0.0.1 ; bgp yes [...]

  • Page 90

    Chapter 6: B GP Configuration Guid e 90 SmartSwitch Router User Reference M anual The gated.conf file for r outer SSR3 is as f ollows: The CLI configuration fo r router SS R4 is as follows: The gated.conf file for r outer SSR4 is as f ollows: Community Attribut e Example The following configura tion illustrates the BG P community attribute. Communi[...]

  • Page 91

    SmartSwi tch Router User Reference Manual 91 Chapter 6: B GP Configuration Guid e Figure 5. Sample BGP Conf iguration (Specific Community) AS-64902 R11 172.26.1. 2/16 172.25.1. 2/16 192.168. 20.2/16 172.25.1. 1/16 1.1 R13 1.6 R10 192.169.20. 1/16 1 92.169.20.2 /16 100.200.1 3.1/24 1 0.200.15.1/ 24 1.6 R14 AS-649 01 AS-649 00 AS-64899 1.6 1.1 1.1 1.[...]

  • Page 92

    Chapter 6: B GP Configuration Guid e 92 SmartSwitch Router User Reference M anual Figur e 6. Sample BGP Configuration (Well-Known Community) The Communi ty attribute can be used in three ways: 1. In a BGP Group statement: Any packets s ent to this group of BGP peers will have the communities at tribute in the BGP packet modified to b e this communi[...]

  • Page 93

    SmartSwi tch Router User Reference Manual 93 Chapter 6: B GP Configuration Guid e In Figure 6 , router SSR11 has the follow ing configuration : # # Create an optional attribute lis t with identifier color1 for a co mmunity # attribute (community-id 160 AS 6 4901) # ip-router policy create optional-a ttributes-list color1 community-i d 160 autonomou[...]

  • Page 94

    Chapter 6: B GP Configuration Guid e 94 SmartSwitch Router User Reference M anual In Figure 6 , router SSR13 has the follow ing configuration : 3. In an Expor t Statement: The optio nal-attr ibutes-list option of the ip-route r policy create bgp-e xport-des tination command may be used to send the BGP community attribute. Any communiti es specified[...]

  • Page 95

    SmartSwi tch Router User Reference Manual 95 Chapter 6: B GP Configuration Guid e In Figure 6 , router SSR10 has the follow ing configuration : In Figure 6 , router SSR14 has the follow ing configuration: Any communi ties specified with the optional-at tributes-lis t option are sent in addition to any r eceived with the route or a ssociated with a [...]

  • Page 96

    Chapter 6: B GP Configuration Guid e 96 SmartSwitch Router User Reference M anual The communi ty attribute may be a sin gle communit y or a set of communities . A maximum of 10 commun ities may be specified. The communi ty attribute can take an y of the followin g forms: • Specific community The specific community consists of the combination of t[...]

  • Page 97

    SmartSwi tch Router User Reference Manual 97 Chapter 6: B GP Configuration Guid e Notes on Using Communities When origina ting BGP com munities, the set of com munities that is actually sent is the union of the comm unities received with the r oute (if any), those specified in group po licy (if any), an d those specified in export policy (if any). [...]

  • Page 98

    Chapter 6: B GP Configuration Guid e 98 SmartSwitch Router User Reference M anual In the sample network in Figure 7 , all the traffic exits Autonomous System 64901 through the link between r outer SSR13 and r outer SSR1 1. This is accomplished by setting the Local_Pr ef attribute. Figure 7. Sam ple BGP Configuration (Local_Pref Attribute) AS-649 00[...]

  • Page 99

    SmartSwi tch Router User Reference Manual 99 Chapter 6: B GP Configuration Guid e In router SS R12’s CLI configuration file, the impo rt prefer ence is set to 160: Using the formula for lo cal prefer ence [Local_Pref = 254 - (globa l pro tocol pr eferen ce for this route) + metric], the Local_Pref value put out by router SSR12 is 254 - 160+100 = [...]

  • Page 100

    Chapter 6: B GP Configuration Guid e 100 SmartSwi tch Router User Reference Manu al Figur e 8. Sample BGP Configuration (MED Attribute) Routers SSR4 and S SR6 inform rout er C1 abou t network 172.16.2 00.0/24 t hro ugh Extern al BGP (EBGP). Ro uter SSR6 announce d the ro ute with a MED of 10, wher eas r outer SSR4 announ ces the ro ute with a MED o[...]

  • Page 101

    SmartSwi tch Router User Reference Manual 101 Chapter 6: B GP Configuration Guid e EBGP Aggregati on Example Figure 9 shows a simple EBGP conf iguration in wh ich one peer is exporting an aggregated route to its upstrea m peer and restricting the advertisement of contributing r outes to the same peer . The a ggregated r oute is 212.19 .192.0/19. Fi[...]

  • Page 102

    Chapter 6: B GP Configuration Guid e 102 SmartSwi tch Router User Reference Manu al Router SSR9 ha s the following CLI configurat ion: Route Reflection Example In some ISP networks, the internal BGP mesh bec omes quite lar ge and the IBGP full mesh does not scale well. For such situations, r oute reflection provides a way to alleviate the need for [...]

  • Page 103

    SmartSwi tch Router User Reference Manual 103 Chapter 6: B GP Configuration Guid e Figure 10 shows a sample co nfiguration that uses r oute reflection . Figure 10. Sample BG P Configuration (Route Reflection) In this example, ther e ar e two clusters. Router SSR10 is the route r eflector for the first cluster and ro uter SSR1 1 is the route r eflec[...]

  • Page 104

    Chapter 6: B GP Configuration Guid e 104 SmartSwi tch Router User Reference Manu al Router SSR1 1 has r outer SSR12 and r outer SSR13 a s client peers and r outer SSR10 as n on- client peer . The follow ing line in router SSR1 1’s configura tion file specifies i t to be a route ref l e c to r Even though the IBGP Peers are not fully meshed in AS [...]

  • Page 105

    SmartSwi tch Router User Reference Manual 105 Chapter 6: B GP Configuration Guid e Notes on Using Route Reflection • T wo types of route reflection are supported: – By default, all routes received by the route r eflector fr om a client are sen t to all internal peers (including th e client’s group, but not the client itself ). –I f t h e no[...]

  • Page 106

    Chapter 6: B GP Configuration Guid e 106 SmartSwi tch Router User Reference Manu al[...]

  • Page 107

    SmartSwi tch Router User Reference Manual 107 Chapter 7 Routing Policy Configuration Guide Route Import and Export Policy Overview The SSR family of routers supports extr emely flexible routing policies. The SSR allows the network administrator to con trol import an d export of r outing information based on criteria including : • Individual proto[...]

  • Page 108

    Chapter 7: R outing Poli cy Configuration Gui de 108 SmartSwi tch Router User Reference Manu al Pr efer ence Prefer ence is the value the SSR routing process uses to or der prefer ence of r outes from one proto col or peer over another . Prefer ence can be set using several dif fer ent configuration commands. Prefer ence can be set based on one n e[...]

  • Page 109

    SmartSwi tch Router User Reference Manual 109 Chapter 7: Ro uting Policy Con figuration Guide Impor t Polici es Import policies contr ol the importation of r outes fr om r outing protocol s and their installatio n in the r outing dat abases (Routing Information Base and Forwa r ding Information Base) . Import Policies determine which r outes receiv[...]

  • Page 110

    Chapter 7: R outing Poli cy Configuration Gui de 110 SmartSwi tch Router User Reference Manu al It is only poss ible to restrict the importation of OSPF ASE routes when fun ctioning as an AS bor der r outer . Like the other interior pr otocols, pr efer ence cannot be used to cho ose between OSPF ASE routes. That is done by the OSPF costs. Route-Fil[...]

  • Page 111

    SmartSwi tch Router User Reference Manual 111 Chapter 7: Ro uting Policy Con figuration Guide The r outes to be exported can be id entified by their associated attributes: • Their pro tocol type (RIP , OSPF , BGP , Static, Dir ect, Aggregate). • Interface or the gateway from which the route was received. • Autonomous sys tem from which the r [...]

  • Page 112

    Chapter 7: R outing Poli cy Configuration Gui de 112 SmartSwi tch Router User Reference Manu al A route will match the most specific filter that a pplies. Specifying m or e than on e filter with the same d estination, ma sk and modifiers generates an err or . There are thr ee possible forma ts for a route filter . Not all of these formats ar e avai[...]

  • Page 113

    SmartSwi tch Router User Reference Manual 113 Chapter 7: Ro uting Policy Con figuration Guide Route aggregation is also used by regiona l and nationa l network s to reduce the amount of routing information pa ssed around. W ith careful allo cation of netw ork addresses to clients, regional netwo rks can ju st announce one route to regional netwo rk[...]

  • Page 114

    Chapter 7: R outing Poli cy Configuration Gui de 114 SmartSwi tch Router User Reference Manu al Route-Filter This component specifies the individual r outes that ar e to be aggr egated or summarized. The pr eference to be associated with these ro utes can also be explicitly specified using this component. The contributing r outes are or der ed acco[...]

  • Page 115

    SmartSwi tch Router User Reference Manual 115 Chapter 7: Ro uting Policy Con figuration Guide Many protocols allow the specifica tion of two au thentication keys per interface. Packets are always sent using th e primary keys, but received packets are checked with both the primary and secondary keys befor e being discar ded. Authentication Keys and [...]

  • Page 116

    Chapter 7: R outing Poli cy Configuration Gui de 116 SmartSwi tch Router User Reference Manu al The fr om-pr oto parameter specifies the pr otocol of the sour ce ro utes. The values for the fro m-proto para meter are rip, ospf, bgp, dir ect, static, aggregate an d ospf-ase. The to- proto parameter specifies the destination pr otocol wher e the r ou[...]

  • Page 117

    SmartSwi tch Router User Reference Manual 117 Chapter 7: Ro uting Policy Con figuration Guide Redistributing RIP into RIP The SSR r outing process req uires RIP r edistribution into RIP if a pr otocol is redistributed into RIP . T o redistribute RIP into RIP , enter the following command in Configur e mode: Redistributing RIP into OSPF RIP routes m[...]

  • Page 118

    Chapter 7: R outing Poli cy Configuration Gui de 118 SmartSwi tch Router User Reference Manu al T o redistribute aggregate r outes, enter on e of the following co mmands in Configur e mode: Simple Route Redistribution Exam ples Example 1: Redistribution into RIP For all examples given in th is section, refer to the configurations show n in Figure 1[...]

  • Page 119

    SmartSwi tch Router User Reference Manual 119 Chapter 7: Ro uting Policy Con figuration Guide Exporting a Given Static Route to All RIP Int erfaces Router R1 has several static routes of which one is t he default route. W e w ould export this default ro ute over all RIP interfa ces. Exporting All Static Routes to A ll RIP Interfaces Router R1 has s[...]

  • Page 120

    Chapter 7: R outing Poli cy Configuration Gui de 120 SmartSwi tch Router User Reference Manu al • Specify the static routes configured on the router • Determine its OSPF co nfigurati on Exporting All Interface & S tatic Routes to OSPF Router R1 has several static routes. W e would like to export all these static routes and direct-r outes (r[...]

  • Page 121

    SmartSwi tch Router User Reference Manual 121 Chapter 7: Ro uting Policy Con figuration Guide In the configurat ion shown in F igure 12 on page 131, suppose if we decide to run RIP V ersion 2 on networ k 120.190.0.0 /16, connecting r o uters R1 and R2 . Router R1 would like to export all RIP , interface, and static r outes to OSPF . Router R1 would[...]

  • Page 122

    Chapter 7: R outing Poli cy Configuration Gui de 122 SmartSwi tch Router User Reference Manu al routes to be exported can be identified by their associated attributes, such as proto col type, interface or the gateway from which the r oute was received, and so on. • Route Filter - This compon ent provides the m eans to define a filter for the rout[...]

  • Page 123

    SmartSwi tch Router User Reference Manual 123 Chapter 7: Ro uting Policy Con figuration Guide Cr eating an Export Destination T o create an export d estination, enter one the follo wing commands in Configur e mode: Cr eating an Export Source T o create an export so urce, enter one of the f ollowing commands in Configure mo de: Impor t Polici es Imp[...]

  • Page 124

    Chapter 7: R outing Poli cy Configuration Gui de 124 SmartSwi tch Router User Reference Manu al T o create ro ute import policies, enter the following comman d in Configur e mode: The <imp-sr c-id> is the identif ier of the import-so urce that determines the source of the imported r outes. If no routes f rom a particular sour ce ar e to be im[...]

  • Page 125

    SmartSwi tch Router User Reference Manual 125 Chapter 7: Ro uting Policy Con figuration Guide • Aggregate-Destin ation - This component s pecifies the ag gregate/summarized route. It also specifies the attributes associated with the aggregate r oute. The pr eference to be associated with an aggr egate r oute can be specified using this compo nent[...]

  • Page 126

    Chapter 7: R outing Poli cy Configuration Gui de 126 SmartSwi tch Router User Reference Manu al Cr eating an Aggregate Destination T o create an aggr egate destinat ion, enter the f ollowing command in Configur e mode: Cr eating an Aggregate S ource T o create an aggr egate source, e nter the following command in Con figure mode: Examples of I mpor[...]

  • Page 127

    SmartSwi tch Router User Reference Manual 127 Chapter 7: Ro uting Policy Con figuration Guide The f oll owing conf igur ati on com man ds fo r rout er R1 • Determine the IP address for ea ch interface. • Specify the static routes configured on the router . • Determine its RIP configuration . Figure 11. Exporti ng to RIP Internet R6 R42 R41 R1[...]

  • Page 128

    Chapter 7: R outing Poli cy Configuration Gui de 128 SmartSwi tch Router User Reference Manu al Importing a Selected Subset of Routes from One RIP T rusted Gateway Router R1 has several RIP peers. Router R41 has an interface on the network 10.51.0.0 . By default, r outer R41 advertises n etwork 10.51.0.0/ 16 in its RIP updates. Router R1 would like[...]

  • Page 129

    SmartSwi tch Router User Reference Manual 129 Chapter 7: Ro uting Policy Con figuration Guide 1. Add the peer 140.1.1.41 to the list of trusted and source gateways. 2. Cr eate a RIP import source with the gateway as 140.1.1.4 since we would like to import al l r outes except t he 10.51.0 .0/16 r oute fr om this ga teway . 3. Cr eate the Import-Poli[...]

  • Page 130

    Chapter 7: R outing Poli cy Configuration Gui de 130 SmartSwi tch Router User Reference Manu al It is only poss ible to restrict the importation of OSPF ASE routes when fun ctioning as an AS bor der r outer . Like the other interior pr otocols, pr efer ence cannot be used to cho ose between OSPF ASE routes. That is done by the OSPF costs. Routes th[...]

  • Page 131

    SmartSwi tch Router User Reference Manual 131 Chapter 7: Ro uting Policy Con figuration Guide Figure 12: Exporting to OSPF BGP R1 R2 R3 R41 R42 R6 R11 A r e a B a c k b o n e A r e a 140.1.0 .0 (RIP V2) 14 0.1.1 .1/2 4 140. 1.2.1 /24 140. 1.5/ 24 140. 1.4/ 24 190. 1.1.1/ 16 120. 190.1. 1/16 16 0.1.5 .2/2 4 R10 R5 R7 202. 1.2.2/ 16 140. 1.3.1 /24 13[...]

  • Page 132

    Chapter 7: R outing Poli cy Configuration Gui de 132 SmartSwi tch Router User Reference Manu al The following configura tion commands for router R1: • Determine the IP address for ea ch interface • Specify the static routes configured on the router • Determine its OSPF co nfigurati on Importing a Selected Subset of OSPF-ASE Routes 1. Cr eate [...]

  • Page 133

    SmartSwi tch Router User Reference Manual 133 Chapter 7: Ro uting Policy Con figuration Guide Examples of E xport Policies Example 1: Ex porting to RIP Exporting to RIP is con trolled by any of protocol, interface or gateway . If more than one is specified, they ar e processed fr om most general (protocol) to m ost specific (gateway). It is not pos[...]

  • Page 134

    Chapter 7: R outing Poli cy Configuration Gui de 134 SmartSwi tch Router User Reference Manu al Exporting a Given Static Route to All RIP Int erfaces Router R1 has several static ro utes, of which one is the default route. W e would export this default ro ute over all RIP interfa ces. 1. Create a RIP export destination since we would like to export[...]

  • Page 135

    SmartSwi tch Router User Reference Manual 135 Chapter 7: Ro uting Policy Con figuration Guide 4. Create a Dir ect export source since we would like to export direct/interface r outes. 5. Cr eate the export-policy redistributing the statically cr eated default r o ute, and all (RIP , Direc t) routes int o RIP . Exporting a Given Static Route to a Sp[...]

  • Page 136

    Chapter 7: R outing Poli cy Configuration Gui de 136 SmartSwi tch Router User Reference Manu al Exporting All Static Route s Reachable Over a Given Interface to a Specific RIP- Interfa ce In this case, router R1 would export/redistribute all static routes accessible through it s inter face 130 .1.1.1 to its RI P-int erface 14 0.1.1.1 on ly . 1. Cr [...]

  • Page 137

    SmartSwi tch Router User Reference Manual 137 Chapter 7: Ro uting Policy Con figuration Guide 1. Cr eate an Aggregat e-Destination which r epresents the aggr egate/summarized r oute. 2. Cr eate an Aggregat e-Source which qualifies the source of the r outes contributing to the aggregate. Since in this case, we do not car e about the sour ce of the c[...]

  • Page 138

    Chapter 7: R outing Poli cy Configuration Gui de 138 SmartSwi tch Router User Reference Manu al 8. Create th e Export-Policy redistributing all (RIP , Dir ect) routes and the aggr egate route 140.1. 0.0/16 i nto RI P . Example 2: Expor ting to OS PF It is not possible to create OSPF intra- or inter-area routes by exporting routes from the SSR r out[...]

  • Page 139

    SmartSwi tch Router User Reference Manual 139 Chapter 7: Ro uting Policy Con figuration Guide Exporting All Interface & S tatic Routes to OSPF Router R1 has several static routes. W e would export these static routes as type-2 OSPF routes. The interfa ce routes would redistributed as type 1 OSPF routes. 1. Cr eate a OSPF export destination for [...]

  • Page 140

    Chapter 7: R outing Poli cy Configuration Gui de 140 SmartSwi tch Router User Reference Manu al 4. Create a Direct export source since we would like to export int erface/direct ro utes. 5. Create th e Export-Policy for redistributing all interface r outes and static routes into OSPF . Exporting All RIP , Interface & Static Routes t o OSPF Note:[...]

  • Page 141

    SmartSwi tch Router User Reference Manual 141 Chapter 7: Ro uting Policy Con figuration Guide 5. Cr eate a RIP export source. 6. Cr eate a Static export source . 7. Cr eate a Direct expor t source. 8. Create th e Export-Policy for redistributing all interface, RIP and static r outes into OSPF . 9. Cr eate a RIP export destination. 10. Create OSPF e[...]

  • Page 142

    Chapter 7: R outing Poli cy Configuration Gui de 142 SmartSwi tch Router User Reference Manu al 12. Create the Expo rt-Policy for redistributing all interface, RIP , static, OSPF and OSPF- ASE r outes into RIP . ip-router policy export destination ri pExpDst source statExpSrc network all ip-router policy export destination ri pExpDst source ripExpS[...]

  • Page 143

    SmartSwi tch Router User Reference Manual 143 Chapter 8 Multicast Routing Configuration Guide IP M ultic ast Overv iew Multicast routing on th e SSR is supported through DV MRP and IG MP . IGMP is used to determine host membership on directly attach ed subnets. DVMRP is used to determine forwar ding of multica st traffic between SS Rs. This chapter[...]

  • Page 144

    Chapter 8: M ulticast Routing C onfiguration Guide 144 SmartSwi tch Router User Reference Manu al The SSR allows per-interfa ce contr ol of the host que ry interval and r esponse time. Q uery interval defines the time between IGMP que ries. Response time defin es the time the SSR will wait for host r esponses to IGMP queries. The SSR can be configu[...]

  • Page 145

    SmartSwi tch Router User Reference Manual 145 Chapter 8: Mul ticast Routin g Configuration Guid e Configur e IGMP Y ou configure IGMP on the SSR by perfor ming the follow ing configura tion tasks. • Creating IP interfaces • Setting global parameters that will be used for all the interface s on which DVMRP is enabled • Configuring IGMP on indi[...]

  • Page 146

    Chapter 8: M ulticast Routing C onfiguration Guide 146 SmartSwi tch Router User Reference Manu al T o configure the host respon se wait time, en ter the following comma nd in Configure mode: Configure Per -Interface Contr ol of IGMP Me mbership Y ou can configure the SSR to control IGMP membership on a per-interface basis. An interface can be confi[...]

  • Page 147

    SmartSwi tch Router User Reference Manual 147 Chapter 8: Mul ticast Routin g Configuration Guid e T o start or stop DVMRP , enter one of the following commands in Configur e mode: Config ur e DVMRP on an Interface DVMRP can be contr olled/configur ed on per-in terface basis. An interface does n ot have to run both DVMRP and IGM P together . DVMRP c[...]

  • Page 148

    Chapter 8: M ulticast Routing C onfiguration Guide 148 SmartSwi tch Router User Reference Manu al Configure DVMRP TTL & Scope For contr ol over internet traffic, per -interface co ntrol is allowed thr ough Sco pes and TTL thresholds. The TTL value contr ols whether packets ar e forwa rded fr om an interface. Conventional guidelines for ass igni[...]

  • Page 149

    SmartSwi tch Router User Reference Manual 149 Chapter 8: Mul ticast Routin g Configuration Guid e DVMRP tunnels need to be cr eated befor e being enabled. T unnels ar e r ecognized by the tunnel name. Once a DVMRP tunnel is cr eated, you can enable DVMRP on the inter face. The SSR supports a maximum of eight tunnels. T o configure a DVMRP tunn el, [...]

  • Page 150

    Chapter 8: M ulticast Routing C onfiguration Guide 150 SmartSwi tch Router User Reference Manu al Configurati on Examples The following is a sample SSR con figuration f or DVMRP and IGMP . Seven subnet s are created. IGMP is enabled on 4 IP interfaces. The IGMP query interval is set to 30 seconds. DVMRP is enabled on 5 IP interfaces. IGMP is not ru[...]

  • Page 151

    SmartSwi tch Router User Reference Manual 151 Chapter 9 IPX Routing Configuration Guide IPX Routi ng Overview The Internetwork Packet Exchange ( IPX) is a datagram connectionless pr otocol for the Novell NetW ar e envir onment. Y ou can configure the SSR for IPX r outing and SAP . Routers intercon nect differ ent netw ork segments and by definition[...]

  • Page 152

    Chapter 9: IP X Routing Configu ration Guide 152 SmartSwi tch Router User Reference Manu al this informa tion is imme diately broadcast to any neig hboring routers. Routers a lso send periodic RIP broadcast pack ets containin g all routing informatio n known to the router . The SSR uses IPX RIP to cr eate an d maintain a database o f internetwork r[...]

  • Page 153

    SmartSwi tch Router User Reference Manual 153 Chapter 9: IPX Routing Configuratio n Guide Configuring I PX RIP & SAP This section prov ides an overview of configuring various IPX pa rameters and setting up IPX interfaces. IPX RI P On the SSR, RIP automatically runs on all IPX interfa ces. The SSR will keep multiple routes to the sam e network h[...]

  • Page 154

    Chapter 9: IP X Routing Configu ration Guide 154 SmartSwi tch Router User Reference Manu al Configuring I PX Interfaces and Parameters This section prov ides an overview of configuring various IPX pa rameters and setting up IPX interfaces. Configure IPX Addres ses to Ports Y ou can configure one IPX interface dir ectl y to a physical port. T o conf[...]

  • Page 155

    SmartSwi tch Router User Reference Manual 155 Chapter 9: IPX Routing Configuratio n Guide • 802.2: 80 2.2 encapsulation m ethod used within Novell IPX envir onments Configur e IPX Routing By default, IPX r outing is enabled on the S SR. Enable IPX RIP IPX RIP is enabled by def ault on the S SR. Y ou must first create an IPX interface or assign an[...]

  • Page 156

    Chapter 9: IP X Routing Configu ration Guide 156 SmartSwi tch Router User Reference Manu al Configure Stati c SAP T able Entries Servers in an IPX network use SAP to advertise services via bro adcast packets. Services fro m servers are stor ed in the Server Information T able. If you want to have a service explicitly advertised with dif ferent hops[...]

  • Page 157

    SmartSwi tch Router User Reference Manual 157 Chapter 9: IPX Routing Configuratio n Guide Create an IPX T ype 20 Access Control List IPX typ e 20 acce ss c ontrol lis ts co ntrol the forw ardi ng of I PX type 20 p acke ts . T o creat e an IPX type 20 access contr ol list, enter the following com mand in Configur e mode: Create an IPX SAP Access Con[...]

  • Page 158

    Chapter 9: IP X Routing Configu ration Guide 158 SmartSwi tch Router User Reference Manu al Create an IPX RIP Access Contro l List IPX R IP ac cess con tro l li sts contr ol which RIP updat es a re allo wed . T o cr eate an IP X RI P access contr ol list, perform the following task in the Conf igure mo de: Once an IPX RIP access co ntrol list has b[...]

  • Page 159

    SmartSwi tch Router User Reference Manual 159 Chapter 9: IPX Routing Configuratio n Guide • Adds a SAP access list • Adds a G NS access list ! Create interface ipx1 with ipx addre ss AAAAAAAA interface create ipx ipx1 address AAAA AAAA port et.1.1 output-mac- encapsulation ethernet_802.2_IPX ! ! Create interface ipx2 with ipx addre ss BBBBBBBB [...]

  • Page 160

    Chapter 9: IP X Routing Configu ration Guide 160 SmartSwi tch Router User Reference Manu al[...]

  • Page 161

    SmartSwi tch Router User Reference Manual 161 Chapter 10 Security Configuration Guide Security Overview The SSR pr ovides security featur es that help contr ol access to the SSR and filter traf fic going thr ough the SSR. Access to the SSR can be con trolled by: • Enabling R ADIUS • Enabling T A CACS • Enabling T A CACS Plus • Login auth en[...]

  • Page 162

    Chapter 10: Security Co nfiguration Guide 162 SmartSwi tch Router User Reference Manu al Configurin g SSR Access Sec urity Config ur e RADIU S Y ou can secure login or Enable mode access to th e SSR by enabling a R emote Authentication Dial- In Service (RADIUS ) client. A RADIUS server responds to the SSR RADIUS client to provide authentication. Y [...]

  • Page 163

    SmartSwi tch Router User Reference Manual 163 Chapter 10: Sec urity Configuration Guid e T o configure T ACACS security , enter the fo llowing commands in the Configur e mode: Monitor T ACACS Y ou can monitor T ACACS config uration and statisti cs within the SSR. T o monitor T ACACS, enter the fo llowing commands in Enable m ode: Config ur e T ACAC[...]

  • Page 164

    Chapter 10: Security Co nfiguration Guide 164 SmartSwi tch Router User Reference Manu al T o monitor T ACACS Plus, enter the fo llowing commands in Enable m ode: Configure Passwords The SSR pr ovides password au thentication for accessing the User and Enable modes. If T ACACS is not ena bled on the SSR , only local passwor d authentication is perfo[...]

  • Page 165

    SmartSwi tch Router User Reference Manual 165 Chapter 10: Sec urity Configuration Guid e Configuring Layer -2 Address Filters If you want to control access to a source or destinatio n on a per-MAC address basis, you can conf igure an address filter . Address filters a re always co nfigured an d applied to the input port. Y ou can set addr ess filte[...]

  • Page 166

    Chapter 10: Security Co nfiguration Guide 166 SmartSwi tch Router User Reference Manu al Configuring Layer -2 Static Entry Fil ters Static entry filters allow or force tra ffic to go to a set of destination ports based on a frame's sour ce MAC addr ess, destina tion MAC addr ess, or both sour ce and destination MAC addr esses in flow bridging [...]

  • Page 167

    SmartSwi tch Router User Reference Manual 167 Chapter 10: Sec urity Configuration Guid e • Combine a destination secur e port filter with a flow static entry to dro p all received traffic but allow any frame coming from specific source MAC address that is destined to sp ecif ic d esti natio n MAC addr e ss to go thr ough T o configure Layer -2 se[...]

  • Page 168

    Chapter 10: Security Co nfiguration Guide 168 SmartSwi tch Router User Reference Manu al Layer -2 Filter Ex amples Figure 13. Source Filter Example Example 1: Address Filters Source filt er: The consultant is not allowed to access any file servers. The consultant is only allowed to interact with th e engineers on the same E thernet segment – port[...]

  • Page 169

    SmartSwi tch Router User Reference Manual 169 Chapter 10: Sec urity Configuration Guid e Destinati on stat ic entry: Restrict "login multi casts" origina ting from the engineering segment (port et.1.1 ) from reach ing the finance servers. or Flow static entry: Restrict "login m ulticasts" orig inating from the consulta nt from r[...]

  • Page 170

    Chapter 10: Security Co nfiguration Guide 170 SmartSwi tch Router User Reference Manu al Destination secure port: T o block access to all file servers on all ports fr om port et.1.1 use the foll owin g comm and: T o allow all engineers access to the engineering servers, you must "punch" a hole through the secure-port wall. A "dest st[...]

  • Page 171

    SmartSwi tch Router User Reference Manual 171 Chapter 10: Sec urity Configuration Guid e • T ype of Service (T OS) For IPX ACLs, the following fie lds can be specified: • Source network addr ess • Destination network addr es s • Source IP X socket • Destination IPX socket When defining an ACL rule, each field in the r ule is position sens[...]

  • Page 172

    Chapter 10: Security Co nfiguration Guide 172 SmartSwi tch Router User Reference Manu al ahead of r ules that ar e less specific. For example, the following ACL permits all TCP traf fic except t hose fro m subnet 10.2.0.0/1 6: When a TCP packet comes from subnet 10.2.0. 0/16, it f inds a m atch with t he first r ule. This causes the packet to be dr[...]

  • Page 173

    SmartSwi tch Router User Reference Manual 173 Chapter 10: Sec urity Configuration Guid e If a packet comes in and doesn't match the first two rules, the packet will be dropped. This is because the third rule (implicit deny) will match al l packets. Although the implicit deny r ule seems obvious in the above exa mple, this is not always the cas[...]

  • Page 174

    Chapter 10: Security Co nfiguration Guide 174 SmartSwi tch Router User Reference Manu al When a packet comes into a router a t an interface wher e an inbo und ACL is applied, the router compa res the packet with the r ules specified by that ACL. If it is permitted, th e packet is allowed into the r outer . If not, the packet is dro pped. If that pa[...]

  • Page 175

    SmartSwi tch Router User Reference Manual 175 Chapter 10: Sec urity Configuration Guid e creating a dditional delay . Therefor e, one should consider th e potential performa nce impact before turn ing on ACL Logging. Maintaining ACLs Offline Using TF TP or RCP The SSR pr ovides two mechanisms to m aintain and manipulate ACLs. The traditional method[...]

  • Page 176

    Chapter 10: Security Co nfiguration Guide 176 SmartSwi tch Router User Reference Manu al Maintaining ACLs Using the ACL Editor In addition to the tra ditional method of maintain ing ACLs using TF TP or RCP , the SSR provides a simpler and more user-frien dly mechanism to m aintain ACL: the ACL Editor . The ACL Editor can o nly be accessed within Co[...]

  • Page 177

    SmartSwi tch Router User Reference Manual 177 Chapter 10: Sec urity Configuration Guid e Defining an IPX ACL T o define an IPX ACL, pe rform the following in the Co nfigur e mode: Applying an ACL to an Interface T o apply an ACL to an interface, perform the following in the Configur e mode: Applying an ACL to a Service T o apply an ACL to a service[...]

  • Page 178

    Chapter 10: Security Co nfiguration Guide 178 SmartSwi tch Router User Reference Manu al Show ACLs on all IPX interfa ces. acl show interface all- ipx Show static entry filters. acl show service[...]

  • Page 179

    SmartSwi tch Router User Reference Manual 179 Chapter 11 QoS Configuration Guide QoS & Layer -2/Layer -3/Layer -4 Flow Overview The SSR allows netw ork managers to identify traf fic and set Quality of Service (QoS ) policies without co mpromising wire speed performance. The SSR can guarantee bandwidth on an applicat ion by applica tion basis, t[...]

  • Page 180

    Chapter 11: QoS Configura tion Guide 180 SmartSwi tch Router User Reference Manu al For Layer -3 (IP and IPX) traf fic, you can defin e “flows”, blueprints or templates of IP and IPX packet hea ders. • The IP fields ar e source IP addr ess, destination IP addr ess, UDP/TCP source port, UDP/TCP destination port, TO S (T ype of Service), transp[...]

  • Page 181

    SmartSwi tch Router User Reference Manual 181 Chapter 11: QoS Configuration Guid e Configur e Layer -2 QoS QoS polici es applied to layer-2 flows all ow you to as sign priorities based on source and destination MA C addresses. A QoS policy set for a layer-2 flow all ows you to class ify the priority of traffic f rom: • A specific source MAC addre[...]

  • Page 182

    Chapter 11: QoS Configura tion Guide 182 SmartSwi tch Router User Reference Manu al • Layer -3 source -destination flows • Layer -4 source -destination flows • Layer-4 application flo ws Configuring IP QoS Policies T o configure an IP QoS policy , perfo rm the following tasks: 1. Identify the Layer -3 or 4 f low and set the IP QoS policy . 2.[...]

  • Page 183

    SmartSwi tch Router User Reference Manual 183 Chapter 11: QoS Configuration Guid e Setting an IPX QoS Policy T o set a QoS policy on an IPX traf fic flow , enter the following co mmand in Conf igure mode: Specifying Precedence for an IPX QoS Policy T o specify the precedence for an IPX QoS policy , enter the f ollowing command in Config ure mo de: [...]

  • Page 184

    Chapter 11: QoS Configura tion Guide 184 SmartSwi tch Router User Reference Manu al Monito ring Qo S The SSR pr ovides display of QoS statistics and configurations contained in the S SR. T o display QoS information, enter the fo llowing command in Enable mode: Show al l IP QoS flo ws qos show ip Show al l IPX QoS f lows. qos show ipx Show all Lay e[...]

  • Page 185

    SmartSwi tch Router User Reference Manual 185 Chapter 12 Performance Monitoring Guide Performanc e Monitoring Overview The SSR is a full wir e-speed layer -2, 3 and 4 switching r outer . As packets enter the S SR, layer-2, 3, and 4 flow tables ar e populated on each line card. Th e flow tables contain information o n performance statistics and traf[...]

  • Page 186

    Chapter 12: Perform ance Monitori ng Guide 186 SmartSwi tch Router User Reference Manu al Show all L2 flows (for po rts in flow- bridging mode. l2-tables show all-flows Show information abo ut the master MAC table. l2-tables show mac-table-stats Show inf ormatio n about a particular MA C address. l2-tables show mac Show info about mu lticasts regis[...]

  • Page 187

    SmartSwi tch Router User Reference Manual 187 Chapter 12: Perform ance Monitoring Guid e Config uring the SSR for Port Mirroring The SSR allows yo u to monitor port activity with Port Mirroring. Port Mirroring allows you to monitor the pe rformance a nd activities of one or more ports on the SSR through just a single, separate port. While in Conf i[...]

  • Page 188

    Chapter 12: Perform ance Monitori ng Guide 188 SmartSwi tch Router User Reference Manu al[...]

  • Page 189

    SmartSwi tch Router User Reference Manual 189 Chapter 13 Hot Swapping Line Car ds and Contr ol Modules Hot Swapping Overview This chapter describes the ho t swapping functionality of the SSR. Hot swapping is the ability to replace a li ne card or Control Module while the SSR is op erating. Hot swappin g allows yo u to remove or instal l line cards [...]

  • Page 190

    Chapter 13: Hot Swapping Line Cards and Control Mod ules 190 SmartSwi tch Router User Reference Manu al Deactivating the Line Car d T o deactiv ate the lin e card, do one of the fol lowing: • Press the Hot Swap button on the line card. The Hot Swap butto n is recessed in the line card' s fr ont panel. Use a pe n or similar object to reach it[...]

  • Page 191

    SmartSwi tch Router User Reference Manual 191 Chapter 13: Ho t Swapping L ine Cards and Control Modu les W arning : Do not r emove the line card unless the Of fline LED is lit. Doing so can cause the SSR to crash. 2. Loosen the c aptive screw s on each side of the line car d. 3. Carefully remove the line card from its slot in the SSR chassis. Insta[...]

  • Page 192

    Chapter 13: Hot Swapping Line Cards and Control Mod ules 192 SmartSwi tch Router User Reference Manu al The procedur e for hot swapping a co ntrol module is similar to the pr ocedur e for hot swapping a line car d. Y ou must deactivate the Control Mo dule, remove it from the SS R, and insert ano ther Contr ol Module or line ca rd in the slot. Deact[...]

  • Page 193

    SmartSwi tch Router User Reference Manual 193 Chapter 13: Ho t Swapping L ine Cards and Control Modu les Installing the C ontrol Module T o install a new Control Module or line card in to the slot: Note: Y ou can install eit her a line card or a Control Module in sl ot CM/1, but you ca n install only a Control Module in slot CM. 1. Slide the Contro[...]

  • Page 194

    Chapter 13: Hot Swapping Line Cards and Control Mod ules 194 SmartSwi tch Router User Reference Manu al The Online LED goes out and the Offline LED lights. Figu re 16 show s the loc ation of the Offline LED and Hot Swap button on a Switching Fabric Module. Figur e 16. Location of Off line LED an d Hot Swap button on a Switching Fabric Module T o re[...]

  • Page 195

    SmartSwi tch Router User Reference Manual 195 Chapter 14 VRRP Configuration Guide VRRP Overview This chapter explains how to set up and monitor the V irtual Router Redundancy Pr otocol (VRRP) on the SSR. VR RP is defined in RFC 2 338. End host systems on a LAN a r e often co nfigured to send packets to a statically co nfigured default ro uter . If [...]

  • Page 196

    Chapter 14: VRRP Configuration Guide 196 SmartSwi tch Router User Reference Manu al Basic VRRP Config uration Figure 17 shows a basic VRRP co nfiguration with a single virtual router . Routers R1 and R2 ar e both configur ed with one virtual r outer ( VRID=1 ). Router R1 serves as the Master and Router R2 serves as the Backup. Th e four end ho sts [...]

  • Page 197

    SmartSwi tch Router User Reference Manual 197 Chapter 14 : VRRP Con figuration Guide In VRRP , the router that ow ns the IP addr ess associated with the virtual r outer is the Master . Any oth er routers that pa rticipate in this virtual router ar e Backups. In this configuration, Router R1 is the Master for virtual r outer VRID=1 because it owns 1[...]

  • Page 198

    Chapter 14: VRRP Configuration Guide 198 SmartSwi tch Router User Reference Manu al Figur e 18. Symmetrical VRRP Configuration In this configuration, half the hosts use 10.0.0.1/ 16 as their default r oute, and half use 10.0.0.2/16 . IP addre ss 10.0.0.1/16 is associated with virtual ro uter VRID=1 , and IP address 10.0.0.2/16 is associated with vi[...]

  • Page 199

    SmartSwi tch Router User Reference Manual 199 Chapter 14 : VRRP Con figuration Guide On line 5, Router R1 associates IP addr ess 10.0.0.2/ 16 with virtual r outer VRID=2 . However , since Router R1 does not own IP address 10.0.0. 2/16, it is not the default Mast er for virtual r outer VRID=2 . Configuration of Router R2 The following is the configu[...]

  • Page 200

    Chapter 14: VRRP Configuration Guide 200 SmartSwi tch Router User Reference Manu al Figur e 19. Multi-Backup VRRP Configuration In this configuration, Router R1 is the Master for virtual r outer VRID=1 and the primary Backup for virtual routers VRID=2 and VRID=3 . If Router R2 or R3 wer e to go down, Router R1 would assume the IP addr esses associa[...]

  • Page 201

    SmartSwi tch Router User Reference Manual 201 Chapter 14 : VRRP Con figuration Guide Configuration of Router R1 The following is the configu ration file for Router R1 in Figure 19 . Router R1’s IP addr ess on interface test is 10.0.0 .1. Ther e ar e three virtual routers on this interface: • VRID=1 – IP addr ess=10.0.0.1/16 • VRID=2 – IP [...]

  • Page 202

    Chapter 14: VRRP Configuration Guide 202 SmartSwi tch Router User Reference Manu al The following table shows the priorities for ea ch virtual router conf igured on Router R1. Configuration of Router R2 The following is the configu ration file for Router R2 in Figure 19 . Line 8 sets the backup priority for virtual r outer VRID=1 to 200. Since this[...]

  • Page 203

    SmartSwi tch Router User Reference Manual 203 Chapter 14 : VRRP Con figuration Guide Note: Since 100 is the default priority , line 9, which sets the priority to 100, is actually unnecessary . It is in cluded for illustration purpos es only . Configuration of Router R3 The following is the configu ration file for Router R3 in Figure 19 . Lines 8 an[...]

  • Page 204

    Chapter 14: VRRP Configuration Guide 204 SmartSwi tch Router User Reference Manu al Setting the Back up Priority As described in “Multi-Backup Co nfigurati on” on pag e 199 , you can specify w hich Backup ro uter takes over when the Master r outer goes down by setting the priority f or the Backup routers. T o set the priority for a Backup route[...]

  • Page 205

    SmartSwi tch Router User Reference Manual 205 Chapter 14 : VRRP Con figuration Guide Setting an Authen tication Key By default, no authentic ation of VRRP packets is performed on the SSR. Y ou can specify a clear-text password to be used to authenticate VRRP exchang es. T o enable a uthentication, enter the follo wing command in Conf igure mo de: w[...]

  • Page 206

    Chapter 14: VRRP Configuration Guide 206 SmartSwi tch Router User Reference Manu al ip-redundancy show The ip-redundancy show command r eports informa tion about a VRRP co nfiguration. T o display VRRP information, en ter the following co mmands in Enable mo de. VRRP Config uration Notes • The Master ro uter sends keep-alive advertisements. The f[...]

  • Page 207

    SmartSwi tch Router User Reference Manual 207 Chapter 14 : VRRP Con figuration Guide • A virtual router will respond to ARP r equests with a virtual MAC address. This vi rtual MAC depends on the virtual r outer ID: virtual MAC address = 00005E: 0001 XX where XX is the virtual router ID This virtual MAC address is also used as the source MAC addre[...]