Brocade Communications Systems Layer 3 Routing Configuration ICX 6650 Manual de usuario Pagina 344
- Pagina / 494
- Tabla de contenidos
- MARCADORES
Valorado. / 5. Basado en revisión del cliente
326 Brocade ICX 6650 Layer 3 Routing Configuration Guide
53-1002603-01
BGP null0 routing
Figure 28 shows a topology for a null0 routing application example.
FIGURE 28 Example of a null0 routing application
The following steps configure a null0 routing application for stopping denial of service attacks from
remote hosts on the internet.
Configuration steps for BGP null0 routing
1. Select one switch, S6, to distribute null0 routes throughout the BGP network.
2. Configure a route-map to match a particular tag (50) and set the next-hop address to an
unused network address (199.199.1.1).
3. Set the local-preference to a value higher than any possible internal or external
local-preference (50).
4. Complete the route map by setting origin to IGP.
5. On S6, redistribute the static routes into BGP, using route-map route-map-name (redistribute
static route-map block user).
6. On S1, the router facing the internet, configure a null0 route matching the next-hop address in
the route-map (ip route 199.199.1.1/32 null0).
7. Repeat step 3 for all switches interfacing with the internet (edge corporate routers). In this
case, S2 has the same null0 route as S1.
8. On S6, configure the network prefixes associated with the traffic you want to drop. The static
route IP address references a destination address. You are required to point the static route to
the egress port, for example, Ethernet 1/1/2, and specify the tag 50, matching the route-map
configuration.
R1
AS 100
R2
R3
R6 R7R5
R4
Internet
- Brocade ICX 6650 1
- Document History 2
- Contents 3
- Chapter 3 RIP (IPv4) 5
- Chapter 4 RIP (IPv6) 5
- Chapter 7 BGP (IPv4) 8
- Chapter 8 IPv6 10
- Chapter 9 VRRP and VRRP-E 10
- About This Document 13
- Slot 2 Slot 3 14
- Document conventions 15
- Notice to the reader 16
- Related publications 16
- Additional information 17
- Getting technical help 17
- Document feedback 18
- IP Configuration 19
- Basic IP configuration 20
- IP configuration overview 20
- IP interfaces 21
- Layer 2 Switches 22
- IP route table 25
- IP forwarding cache 26
- IP route exchange protocols 27
- IP multicast protocols 28
- ACLs and IP access policies 28
- • Ethernet II 33
- Configuring IP addresses 37
- Deleting an IP address 41
- Configuration example 42
- Configuring DNS resolver 43
- Defining a domain name 44
- Defining DNS server addresses 44
- Defining a domain list 45
- Configuring packet parameters 46
- Telnet packets 50
- TACACS/TACACS+ packets 51
- RADIUS packets 51
- TFTP packets 51
- Syslog packets 52
- SNTP packets 52
- SSH packets 52
- ARP parameter configuration 53
- Rate limiting ARP packets 54
- Changing the ARP aging period 55
- Enabling proxy ARP 56
- Enabling local proxy ARP 57
- Creating static ARP entries 57
- Brocade(config)# write memory 58
- Brocade(config)# end 58
- Brocade# reload 58
- Disabling ICMP messages 61
- Static routes configuration 63
- Static IP route parameters 64
- Configuring a static IP route 65
- Configuring a “Null” route 67
- Configuring IP load sharing 73
- How IP load sharing works 75
- IRDP parameters 77
- Disabling RARP 79
- Creating static RARP entries 80
- DHCP Server 85
- DHCP option 82 support 86
- DHCP Server options 86
- Default DHCP Server settings 89
- DHCP Server CLI commands 89
- Command Description 91
- Removing DHCP leases 92
- Enabling DHCP Server 92
- Creating an address pool 93
- Configuring the boot image 93
- Configuring the TFTP server 95
- 53-1002603-01 100
- DHCP Log messages 105
- Defining a DNS entry 107
- Changing the TTL threshold 108
- DHCP Assist configuration 109
- How DHCP Assist works 110
- Configuring DHCP Assist 112
- IPv4 GRE tunnel overview 113
- FIGURE 15 GRE header format 114
- - ACL logging 116
- - MAC address filters 116
- - IPv6 filters 116
- Required tasks 118
- Optional tasks 118
- Creating a tunnel interface 119
- Device A 125
- Field Definition 127
- Field Description 128
- Clearing GRE statistics 130
- Global settings 132
- Static routes 132
- Policies 133
- Displaying ARP entries 136
- Brocade# show ip static-arp 138
- Displaying the IP route table 140
- Clearing IP routes 142
- IP statistics 144
- ICMP statistics 144
- UDP statistics 144
- TCP statistics 145
- RIP statistics 145
- IP configuration 146
- Most recent TFTP access 146
- Syntax: show ip traffic 148
- Adding a static IP route 151
- Adding a static ARP entry 152
- Configuring RIP 154
- 255.255.0.0 155
- 255.255.0.0 match-metric 5 155
- Enabling redistribution 156
- Other Layer 3 protocols 157
- Layer 2 switching 158
- RIP (IPv4) 159
- RIP parameters and defaults 160
- RIP interface parameters 161
- RIP parameter configuration 162
- Configuring a RIP offset list 163
- Configuring redistribution 164
- Disabling poison reverse 168
- VRRP-E backup interface 169
- Configuring RIP route filters 169
- Displaying RIP filters 171
- RIP (IPv6) 175
- RIPng configuration 176
- RIPng timers 177
- • IPv6 static routes 179
- • OSPF V3 179
- Brocade# clear ipv6 rip route 181
- Syntax: show ipv6 rip 182
- RIPng configuration fields 182
- OSPF version 2 (IPv4) 185
- OSPF overview 186
- OSPF point-to-point links 187
- OSPF graceful restart 194
- Configuring OSPF 195
- Enabling OSPF on the router 196
- Assigning OSPF areas 197
- Example 198
- Brocade(config)#router ospf 200
- Modifying interface defaults 202
- OSPF interfaces 205
- Assigning virtual links 207
- Enabling route redistribution 218
- Example using a route map 219
- • Brocade Switch->R3 221
- • Brocade Switch->R4 221
- • Brocade Switch->R5 221
- • Brocade Switch->R6 221
- Modifying SPF timers 224
- Administrative distance 225
- Clearing OSPF information 230
- Brocade#clear ip ospf 231
- Displaying OSPF information 232
- Syntax: show ip ospf config 233
- • normal 235
- Displaying the data in an LSA 242
- Displaying OSPF trap status 243
- • UK – Unknown 244
- • RS – Software restart 244
- OSPF version 3 (IPv6) 245
- OSPF V3 configuration 247
- Assigning OSPF V3 areas 248
- Configuring virtual links 249
- OSPF V3 interfaces 252
- • match metric number 254
- External route summarization 256
- Filtering OSPF V3 routes 257
- Default route origination 260
- Shortest path first timers 261
- IPsec for OSPF V3 265
- Configuring IPsec for an area 270
- Clearing IPsec statistics 272
- • Virtual links 273
- • Virtual neighbors 273
- Syntax: show ipv6 ospf memory 282
- • RIP – RIPng 286
- TABLE 54 OSPF V3 SPF table 290
- • DOWN – The link is down 291
- IPsec examples 292
- Brocade#show ipsec policy 293
- Showing IPsec statistics 294
- Area configuration of IPsec 297
- BGP (IPv4) 299
- BGP4 overview 300
- BGP4 message types 303
- BGP4 graceful restart 305
- BGP4 parameters 306
- BGP4 parameter changes 307
- Enabling BGP4 on the router 309
- Changing the router ID 309
- Setting the local AS number 310
- Adding a loopback interface 310
- Adding BGP4 neighbors 310
- • show configuration 315
- • show ip bgp config 315
- Adding a BGP4 peer group 317
- Configuring a peer group 319
- Brocade(config)#router bgp 322
- BGP4 load sharing 323
- How load sharing works 324
- Customizing BGP4 load sharing 325
- Advertising the default route 328
- Enabling next-hop recursion 328
- AS-Path length 333
- Multi-Exit Discriminators 334
- • Restart timer 342
- • Stale routes timer 342
- • Purge timer 342
- BGP null0 routing 343
- Internet 344
- S1 and S2 347
- Redistributing RIP routes 349
- Redistributing static routes 350
- Filtering 351
- AS-path filtering 352
- Defining an AS-path filter 353
- Defining an AS-path ACL 353
- Character Operation 354
- BGP4 filtering communities 356
- Defining a community ACL 357
- Defining IP prefix lists 358
- Defining route maps 360
- Match examples using ACLs 363
- • Configure the filter 369
- Sending and receiving ORFs 370
- Generating traps for BGP 378
- Displaying BGP4 information 379
- BGP4 summary information 380
- Displaying route details 402
- BGP4 route information 403
- Using soft reconfiguration 409
- Dynamically refreshing routes 412
- Clearing traffic counters 415
- Removing route flap dampening 416
- Clearing diagnostic buffers 417
- Feature Brocade ICX 6650 419
- IPv6 over IPv4 tunnels 421
- ECMP load sharing for IPv6 426
- VRRP and VRRP-E 429
- VRRP and VRRP-E overview 430
- Virtual router ID 432
- Virtual router MAC address 432
- Virtual router IP address 432
- Master negotiation 433
- Hello messages 433
- Authentication 434
- VRRP-E overview 435
- Comparison of VRRP and VRRP-E 438
- Management protocol 439
- Master and Backup routers 439
- VRRP and VRRP-E parameters 440
- Configuration rules for VRRP 443
- Configuring IPv4 VRRP-E 448
- Configuring IPv6 VRRP-E 449
- VRRP router type 453
- Hello interval configuration 455
- Dead interval configuration 456
- Track port configuration 457
- Track priority configuration 457
- Backup preempt configuration 458
- Changing the timer scale 458
- VRRP-E slow start timer 459
- • show run 462
- • show ip vrrp-e brief 462
- • show ip vrrp-e vrid vrid 462
- • VRRP and VRRP-E statistics 464
- • CPU utilization statistics 464
- Interface parameters 468
- VRID parameters 468
- Displaying statistics 472
- Interface statistics 473
- VRID statistics 473
- IPv6 VRRP-E v3 476
- Configuration examples 478
- VRRP-E example 479
- Configuring Switch 2 480
- Syntax: ip-address ip-addr 481
- Syntax: activate 481
- Numerics 483
Relacionado con productos y manuales para Software Brocade Communications Systems Layer 3 Routing Configuration ICX 6650
(230 paginas)© 2020, manymanuals.es. Todos los derechos reservados | 0.128 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentarios a estos manuales