When a switch runs a routing protocol, it can perform the router functions. A router that is referred to in the following or its icon represents a generalized router or an S9500 series routing switch running routing protocols. To improve readability, this will not be described in the other parts of the manual.

For the configuration of VPN instance, refer to the MPLS module in H3C S9500 Series Routing Switches Operation Manual.

1.1 Display Commands of the Routing Table

1.1.1 display ip routing-table

Syntax

display ip routing-table

View

Any view

Parameter

None

Description

Use display ip routing-table command to view the routing table summary.

This command displays routing table information in summary form. Each line represents one route. The contents include destination address/mask length, protocol, preference, metric, next hop and output interface.

Only current used route, namely, best route, is displayed using display ip routing-table command.

Example

# View the summary of the routing table.

<H3C> display ip routing-table

Routing Table: public net

Destination/Mask Protocol Pre Cost Nexthop Interface

1.1.1.0/24 DIRECT 0 0 1.1.1.1 Vlan-interface1

1.1.1.1/32 DIRECT 0 0 127.0.0.1 InLoopBack0

2.2.2.0/24 DIRECT 0 0 2.2.2.1 Vlan-interface2

2.2.2.1/32 DIRECT 0 0 127.0.0.1 InLoopBack0

3.3.3.0/24 DIRECT 0 0 3.3.3.1 Vlan-interface3

3.3.3.1/32 DIRECT 0 0 127.0.0.1 InLoopBack0

4.4.4.0/24 DIRECT 0 0 4.4.4.1 Vlan-interface4

4.4.4.1/32 DIRECT 0 0 127.0.0.1 InLoopBack0

127.0.0.0/8 DIRECT 0 0 127.0.0.1 InLoopBack0

127.0.0.1/32 DIRECT 0 0 127.0.0.1 InLoopBack0

Table 1-1 Description of the fields of the display ip routing-table command

Field	Description
Destination/Mask	Destination address/Mask length
Protocol	Routing protocol
Pre	Routing preference
Cost	Cost
Nexthop	Next hop address
Interface	Output interface, through which the data packet destined for the destination network segment is sent

1.1.2 display ip routing-table acl

Syntax

display ip routing-table acl { acl-number | acl-name } [ verbose ]

View

Any view

Parameter

acl-number: The number of basic ACL, ranging from 2000 to 2999.

acl-name: The basic ACL name introduced via names.

verbose: With the parameter, this command displays the verbose information of both the Active and Inactive routes that passed filtering rules. Without the parameter, this command only displays the summary of the Active routes that passed filtering rules.

Description

Use the display ip routing-table acl command to view the route filtered through specified basic access control list (ACL).

This command is used in track display of route policy to display the route that passed the filtering rule according the input basic ACL number or name.

The command is only applicable to display the route that passed basic ACL filtering rules.

Example

# Display the summary of Active routes that are filtered through basic acl 2000.

[H3C] acl number 2000

[H3C-acl-basic-2000] rule permit source 10.1.1.1 0.0.0.255

[H3C-acl-basic-2000] rule deny source any

[H3C-acl-basic-2000] display ip routing-table acl 2000

Routes matched by access-list 2000:

Summary count: 4

Destination/Mask Protocol Pre Cost Nexthop Interface

10.1.1.0/24 DIRECT 0 0 10.1.1.2 Vlan-interface1

10.1.1.2/32 DIRECT 0 0 127.0.0.1 InLoopBack0

For detailed description of the output information, see Table 1-1.

# Display the verbose information of the Active and Inactive routes that are filtered through basic acl 2000.

<H3C> display ip routing-table acl 2000 verbose

Routes matched by access-list 2000:

+ = Active Route, - = Last Active, # = Both * = Next hop in use

Summary count: 2

**Destination: 10.1.1.0 Mask: 255.255.255.0

Protocol: #DIRECT Preference: 0

*NextHop: 10.1.1.2 Interface: 10.1.1.2(Vlan-interface1)

Vlinkindex: 0

State: <Int ActiveU Retain Unicast>

Age: 7:24 Cost: 0/0 Tag: 0

**Destination: 10.1.1.2 Mask: 255.255.255.255

Protocol: #DIRECT Preference: 0

*NextHop: 127.0.0.1 Interface: 127.0.0.1(InLoopBack0)

Vlinkindex: 0

State: <NoAdvise Int ActiveU Retain Gateway Unicast>

Age: 7:24 Cost: 0/0 Tag: 0

Table 1-2 Description of the fields of the display ip routing-table acl verbose command

Field	Description
Destination	Destination address
Mask	Mask
Protocol	Routing protocol
Preference	Routing preference
Nexthop	Next hop address
Interface	Output interface, through which the data packet destined for the destination network segment is sent
Vlinkindex	Virtual link index
State	Route state description:
	ActiveU	Valid unicast route. U stands for unicast.
	Blackhole	Blackhole route is similar to Reject route, but it will not send the ICMP unreachable message to the source end
	Delete	The route is deleted
	Gateway	Indicates that the route is not directly reachable
	Hidden	The route exists, but it is unavailable temporarily for some reasons (e.g., configured policy or interface is Down). Moreover, you do not wish to delete it. Therefore, you need to hide it, so as to restore it again later
	Holddown	Holddown is one kind of route redistribution policy adopted by some distance-vector (D-V) routing protocols (e.g., RIP), through which these routing protocols can avoid the flooding of error routes and deliver the routing unreachable message accurately. For example, the RIP imports a certain route every a period of time regardless of whether the actually found routes destined for the same destination change. For more details, refer to the specific routing protocols.
	Int	The route is discovered by interior gateway protocol (IGP).
	NoAdvise	The routing protocol does not import NoAdvise route when it imports routes based on the policy.
	NotInstall	The routing protocol generally selects the route with the highest precedence from its routing table, then places it in its core routing table and imports it. Although the NotInstall route cannot be placed in the core routing table, it is possibly that it is selected and imported.
	Reject	Unlike the normal routes, the Reject route will discard the packets that select it as their route, and the router will send ICMP unreachable message to the source end. Reject route is usually used for the network test
	Retain	When the routes from the core routing table are deleted, the routes with the Retain flag will not be deleted. Using this function you can set the Retain flag for some static routes, so that they can exist in the core routing table.
	Static	The route with Static flag will not be cleared from the routing table after you save it and reboot the router. Generally, the static route configured manually in the router belongs to a Static route.
	Unicast	Unicast route
Age	Lifetime of a route entry, in hh : mm : ss, where hh is hours, mm is minutes, and ss is seconds. The displayed time should be read from right to left. For example, 7:24 indicates that the lifetime of a route is seven hours and 24 minutes.
Cost	Value of the cost
Tag	Route tag

1.1.3 display ip routing-table ip-address

Syntax

display ip routing-table ip-address [ mask ] [ longer-match ] [ verbose ]

View

Any view

Parameter

ip-address: Destination IP address, in dotted decimal format.

mask: IP address mask, length in dotted decimal notation or integer. It ranges from 0 to 32 when it is expressed with integer.

longer-match: Address route matching the destination address in natural mask range.

verbose: With the verbose argument, this command displays the verbose information of both the Active and Inactive routes. Without the parameter, this command only displays the summary of Active routes.

Description

Use the display ip routing-table ip-address command to view the routing information of the specified destination address.

With different parameters, the output of command is different. The following is the output description for different forms of this command:

l display ip routing-table ip-address

If destination address, ip-address, has corresponding route in natural mask range, this command will display all subnet routes or only the route best matching the destination address, ip-address, is displayed. And only the Active matching route is displayed.

l display ip routing-table ip-address mask,

This command only displays the route fully matching with specified destination address and mask.

l display ip routing-table ip-address longer-match

This command displays all destination address route matching with destination address in natural mask range.

Example

# There is a corresponding route in natural mask range. Display the summary.

<H3C> display ip routing-table 169.0.0.0

Destination/Mask Protocol Pre Cost Nexthop Interface

169.0.0.0/16 STATIC 60 0 192.168.1.2 Vlan-interface10

169.0.0.0/8 STATIC 60 0 192.168.1.2 Vlan-interface10

For detailed description of the output information, see Table 1-1.

# There is no corresponding route (only the longest matching route is displayed) in natural mask range and summary is displayed.

< > display ip routing-table 192.168.1.2

Destination/Mask Protocol Pre Cost Nexthop Interface

192.168.1.0/24 DIRECT 0 0 192.168.1.1 Vlan-interface10

# There are corresponding routes in the natural mask range. Display the detailed information.

<H3C> display ip routing-table 169.0.0.0 verbose

Routing tables:

Generate Default: no

+ = Active Route, - = Last Active, # = Both * = Next hop in use

Summary count: 3

**Destination: 169.0.0.0 Mask: 255.255.0.0

Protocol: #STATIC Preference: 60

*NextHop: 192.168.1.2 Interface: 192.168.1.1(Vlan-interface10)

Vlinkindex: 0

State: <Int ActiveU Gateway Static Unicast>

Age: 10:20 Cost: 0/0 Tag: 0

**Destination: 169.0.0.0 Mask: 255.0.0.0

Protocol: #STATIC Preference: 60

*NextHop: 192.168.1.2 Interface: 192.168.1.1(Vlan-interface10)

Vlinkindex: 0

State: <Int ActiveU Gateway Static Unicast>

Age: 4:39 Cost: 0/0 Tag: 0

# There are no corresponding routes in the natural mask range (only displaying the longest matched route). Display the detailed information.

<H3C> display ip routing-table 169.168.1.2 verbose

Routing tables:

Generate Default: no

+ = Active Route, - = Last Active, # = Both * = Next hop in use

Summary count: 1

**Destination: 192.168.1.0 Mask: 255.255.255.0

Protocol: #DIRECT Preference: 0

*NextHop: 192.168.1.1 Interface: 192.168.1.1(Vlan-interface10)

Vlinkindex: 0

State: <Int ActiveU Retain Unicast>

Age: 12:51 Cost: 0/0 Tag: 0

For detailed description of the output information, see Table 1-2.

1.1.4 display ip routing-table ip-address1 ip-address2

Syntax

display ip routing-table ip-address1 mask1 ip-address2 mask2 [ verbose ]

View

Any view

Parameter

ip-address1, ip-address2: Destination IP address in dotted decimal notation. ip-address1, mask1, mask2 and ip-address2 determine one address range together. Anding ip-address1 with mask1 specifies the start of the range while anding ip-address2 with mask2 specifies the end. This command is used to display the routes in this address range.

mask1, mask2: IP address mask, length in dotted decimal notation or integer form. It ranges from 0 to 32 when it is presented in integer.

verbose: With the verbose keyword, this command displays the verbose information of both the active and inactive routes. Without the parameter, this command only displays the summary of Active routes.

Description

Use the display ip routing-table ip-address1 ip-address2 command to view the route information in the specified address range.

Example

# Display the routing information of destination addresses ranging from 1.1.1.0 to 2.2.2.0.

<H3C>display ip routing-table 1.1.1.0 24 2.2.2.0 24

Routing tables:

Summary count: 3

Destination/Mask Protocol Pre Cost Nexthop Interface

1.1.1.0/24 DIRECT 0 0 1.1.1.1 Vlan-interface1

1.1.1.1/32 DIRECT 0 0 127.0.0.1 InLoopBack0

2.2.2.0/24 DIRECT 0 0 2.2.2.1 Vlan-interface2

For detailed description of the output information, see Table 1-1.

1.1.5 display ip routing-table ip-prefix

Syntax

display ip routing-table ip-prefix ip-prefix-name [ verbose ]

View

Any view

Parameter

ip-prefix-name: ip prefix list name.

verbose: With the parameter, this command displays the verbose information of both the active and inactive routes that passed filtering rules. Without the parameter, this command displays the summary of the active routes that passed filtering rules.

Description

Use the display ip routing-table ip-prefix command to view the route information that passed the filtering rule according the input ip prefix list name.

This command is mainly used to trace the route-policy and display the corresponding route information.

If there is no specified address prefix list, this command will display the verbose information of all Active and Inactive routes with the verbose keyword and it will display the summary of all Active routes without the verbose keyword.

Example

# Configure the ip prefix list abc2, allowing the routes with the prefix as 10.1.1.0 and a mask length in the range 24 to 32 to pass.

[H3C] ip ip-prefix abc2 permit 10.1.1.0 24 less-equal 32

<H3C> dis ip routing-table protocol static

STATIC Routing tables:

Summary count: 3

STATIC Routing table status:<active>:

Summary count: 3

Destination/Mask Protocol Pre Cost Nexthop Interface

10.1.0.0/16 STATIC 60 0 48.48.48.2 Vlan-interface48

10.1.1.0/24 STATIC 60 0 48.48.48.2 Vlan-interface48

10.1.1.2/32 STATIC 60 0 48.48.48.2 Vlan-interface48

STATIC Routing table status:<inactive>:

Summary count: 0

<H3C> display ip routing-table ip-prefix abc2

Routes matched by ip-prefix abc2:

Summary count: 2

Destination/Mask Protocol Pre Cost Nexthop Interface

10.1.1.0/24 STATIC 60 0 48.48.48.2 Vlan-interface48

10.1.1.2/32 STATIC 60 0 48.48.48.2 Vlan-interface48

For detailed description of the output information, see Table 1-1.

# Display the details of the active and inactive routes filtered by the prefix list abc2.

<H3C> display ip routing-table ip-prefix abc2 verbose

Routes matched by ip-prefix abc2:

Generate Default: no

+ = Active Route, - = Last Active, # = Both * = Next hop in use

Summary count: 2

**Destination: 10.1.1.0 Mask: 255.255.255.0

Protocol: #STATIC Preference: 60

*NextHop: 48.48.48.2 Interface: 48.48.48.1(Vlan-interface48)

Vlinkindex: 0

State: <Int ActiveU Gateway Static Unicast>

Age: 12:42 Cost: 0/0 Tag: 0

**Destination: 10.1.1.2 Mask: 255.255.255.255

Protocol: #STATIC Preference: 60

*NextHop: 48.48.48.2 Interface: 48.48.48.1(Vlan-interface48)

Vlinkindex: 0

State: <Int ActiveU Gateway Static Unicast>

Age: 12:48 Cost: 0/0 Tag: 0

For explanations of the above information, see Table 1-2.

1.1.6 display ip routing-table protocol

Syntax

display ip routing-table protocol protocol [ inactive | verbose ] [ vpn-instance vpn-instance-name ]

View

Any view

Parameter

inactive: With the parameter, this command displays the inactive route information. Without the parameter, this command displays the active and inactive route information.

verbose: With the verbose keyword, this command displays the verbose route information. Without the parameter, this command displays the route summary.

protocol: The parameter has multiple selectable values:

l direct: Displays direct connection route information

l static: Displays the static route information.

l bgp: Displays BGP route information.

l isis: Displays IS-IS route information.

l ospf: Displays OSPF route information.

l ospf-ase: Displays OSPF ASE route information.

l ospf-nssa: Displays OSPF NSSA route information.

l rip: Displays RIP route information.

vpn-instance-name: Indicates a VPN instance name.

Description

Use the display ip routing-table protocol command to view the route information of specified protocol.

Example

# Display all direct connection routes summary.

<H3C> display ip routing-table protocol direct

DIRECT Routing tables:

Summary count: 4

DIRECT Routing tables status:<active>:

Summary count: 3

Destination/Mask Protocol Pre Cost Nexthop Interface

20.1.1.1/32 DIRECT 0 0 127.0.0.1 InLoopBack0

127.0.0.0/8 DIRECT 0 0 127.0.0.1 InLoopBack0

127.0.0.1/32 DIRECT 0 0 127.0.0.1 InLoopBack0

DIRECT Routing tables status:<inactive>:

Summary count: 1

Destination/Mask Protocol Pre Cost Nexthop Interface

210.0.0.1/32 DIRECT 0 0 127.0.0.1 InLoopBack0

# View the static routing table.

<H3C> display ip routing-table protocol static

STATIC Routing tables:

Summary count: 1

STATIC Routing tables status:<active>:

Summary count: 0

STATIC Routing tables status:<inactive>:

Summary count: 1

Destination/Mask Protocol Pre Cost Nexthop Interface

1.2.3.0/24 STATIC 60 0 1.2.4.5 Vlan-interface10

STATIC Routing tables status:<inactive>:

Summary count: 1

For detailed description of the output information, see Table 1-1.

1.1.7 display ip routing-table radix

Syntax

display ip routing-table radix

View

Any view

Parameter

None

Description

Use the display ip routing-table radix command to view route information in tree format.

Example

# Display route information in tree format.

<H3C> display ip routing-table radix

Radix tree for INET (2) inodes 7 routes 5:

+-32+--{210.0.0.1

+--0+

| | +--8+--{127.0.0.0

| | | +-32+--{127.0.0.1

| +--1+

| +--8+--{20.0.0.0

| +-32+--{20.1.1.1

Table 1-3 Description of the fields of the display ip routing-table radix command

Field	Description
INET	Address suite
inodes	Number of nodes
routes	Number of routes

1.1.8 display ip routing-table statistics

Syntax

display ip routing-table statistics

View

Any view

Parameter

None

Description

Use the display ip routing-table statistics command to view the integrated routing information.

The integrated routing information includes total route amount, the route amount added or deleted by protocol, amount of the routes that are labeled “Deleted” but not deleted, and the Active route amount.

Example

# Display the integrated route information.

<H3C> display ip routing-table statistics

Routing tables:

Proto route active added deleted

DIRECT 24 4 25 1

STATIC 4 1 4 0

BGP 0 0 0 0

RIP 0 0 0 0

IS-IS 0 0 0 0

OSPF 0 0 0 0

O_ASE 0 0 0 0

O_NSSA 0 0 0 0

AGGRE 0 0 0 0

Total 28 5 29 1

Table 1-4 Description of the fields of the display ip routing-table statistics command

Field	Description
Proto	Routing protocol. O_ASE indicates OSPF_ASE routes, O_NSSA indicates OSPF_NSSA routes and AGGRE indicates aggregated routes.
Route	Number of routes
Active	Number of active routes
Added	Number of added routes after the router is rebooted or the routing table is cleared last time
Deleted	Number of deleted routes (such routes will be freed in a period of time)
Total	Total number of the different kinds of routes

1.1.9 display ip routing-table vpn-instance

Syntax

display ip routing-table vpn-instance vpn-instance-name

View

Any view

Parameter

vpn-instance: Specifies VPN instance parameter.

vpn-instance-name: VPN instance name.

Description

Use the display ip routing-table vpn-instance command to view the routing information about the VPN instance.

Example

# View the routing information about the VPN instance.

<H3C> dis ip routing-table vpn-instance vpn49-1

vpn49-1 Route Information

Routing Table: vpn49-1 Route-Distinguisher: 49:1

Destination/Mask Protocol Pre Cost Nexthop Interface

77.77.77.77/32 STATIC 60 0 195.195.1.10 Vlan-interface1016

195.168.130.0/24 DIRECT 0 0 195.168.130.1 Vlan-interface1013

195.168.130.1/32 DIRECT 0 0 127.0.0.1 InLoopBack0

195.195.0.0/16 DIRECT 0 0 195.195.1.1 Vlan-interface1016

195.195.1.1/32 DIRECT 0 0 127.0.0.1 InLoopBack0

1.1.10 display ip routing-table verbose

Syntax

display ip routing-table verbose

View

Any view

Parameter

None

Description

Use the display ip routing-table verbose command to view the verbose routing table information.

With the verbose keyword, this command displays the verbose routing table information. The descriptor describing the route state will be displayed first, then the statistics of the entire routing table will be output and finally the verbose description of each route will be output.

All current routes, including inactive route and invalid route, can be displayed using the display ip routing-table verbose command.

Example

# Display the verbose routing table information.

<H3C> display ip routing-table verbose

Routing Tables:

Generate Default: no

+ = Active Route, - = Last Active, # = Both * = Next hop in use

Destinations: 3 Routes: 3

Holddown: 0 Delete: 62 Hidden: 0

**Destination: 1.1.1.0 Mask: 255.255.255.0

Protocol: #DIRECT Preference: 0

*NextHop: 1.1.1.1 Interface: 1.1.1.1(Vlan-interface1)

State: <Int ActiveU Retain Unicast>

Age: 20:17:41 Cost: 0/0

**Destination: 1.1.1.1 Mask: 255.255.255.255

Protocol: #DIRECT Preference: 0

*NextHop: 127.0.0.1 Interface: 127.0.0.1(InLoopBack0)

State: <NoAdvise Int ActiveU Retain Gateway Unicast>

Age: 20:17:42 Cost: 0/0

**Destination: 2.2.2.0 Mask: 255.255.255.0

Protocol: #DIRECT Preference: 0

*NextHop: 2.2.2.1 Interface: 2.2.2.1(Vlan-interface2)

State: <Int ActiveU Retain Unicast>

Age: 20:08:05 Cost: 0/0

First, display statistics of the whole routing table and then output detailed information of every route entry in turn. The meaning of route status is shown in Table 1-2, and the statistics of routing table is shown in the following table.

Table 1-5 Description of the fields of the display ip routing-table verbose command

Field	Description
Holddown	Number of held-down routes
Delete	Number of deleted routes
Hidden	Number of hidden routes

1.2 Static Route Configuration Commands

1.2.1 delete static-routes all

Syntax

delete static-routes all

View

System view

Parameter

None

Description

Use the delete static-routes all command to delete all the static routes.

The system will request your confirmation before it deletes all the configured static routes.

Related commands: ip route-static, display ip routing-table.

Example

# Delete all the static routes in the router.

[H3C] delete static-routes all

This will erase all unicast static routes and their configurations, you must reconfigure all static routes

Are you sure to delete all the static routes?[Y/N]

1.2.2 delete vpn-instance

Syntax

delete vpn-instance vpn-instance-name static-routes all

View

System view

Parameter

vpn-instance: Specifies VPN instance parameter.

vpn-instance-name: VPN instance name.

static-routes: VPN static route.

all: All static routes.

Description

Use the delete vpn-instance command to remove all the static routes of the VPN. When you use this command to remove the static routes, the system will prompt your acknowledgement. The system removes all configured static routes after the acknowledgement.

Related commands: ip route-static, display ip routing-table vpn-instance.

Example

# Remove all static routes of the VPN.

[H3C] delete vpn-instance vp1 static-routes all

Are you sure to delete all the VPN static routes?[Y/N]

1.2.3 ip route-static

Syntax

ip route-static [ vpn-instance vpn-instance-name-list ] ip-address { mask | mask-length } { interface-type interface-number | [ vpn-instance vpn-instance-name ] gateway-address } [ preference preference-value ] [ reject | blackhole ]

undo ip route-static [ vpn-instance vpn-instance-name-list ] ip-address { mask | mask-length } [ interface-type interface-number | [ vpn-instance vpn-instance-name ] gateway-address ] [ preference preference-value ]

View

System view

Parameter

vpn-instance: Specifies VPN instance parameter.

vpn-instance-name-list: VPN instance name list. vpn-instance-name-list= vpn-instance-name & <1-6>. &<1-6> in the command represents that the preceding parameter can be input repeatedly up to 6 times.

ip-address: Destination IP address in dotted decimal notation.

mask: Mask.

mask-length: Mask length. Since "1" s in the 32-bit mask are required to be consecutive, the mask in dotted decimal format can be replaced by mask-length, which is the number of the consecutive "1" s in the mask.

vpn-instance-name: Name of a VPN instance.

interface-type interface-number: Specifies the outgoing interface for the next hop. The null interface is a kind of virtual interface, where data packets are discarded directly to decrease the system load.gateway-address: Specifies the next hop IP address of the route, in dotted decimal format.

preference-value: Preference level of the route in the range from 1 to 255.

reject: Indicates an unreachable route. When a static route to a destination has the "reject" attribute, all the IP packets to this destination will be discarded, and the source host will be informed that the destination is unreachable.

blackhole: Indicates a blackhole route. If a static route to a destination has the “blackhole” attribute, the outgoing interface of this route is the Null 0 interface regardless of the next hop address, and any IP packets addressed to this destination are dropped without notifying the source host.

Description

Use the ip route-static command to configure a static route.

Use the undo ip route-static command to delete the configured static route.

By default, the system can obtain the sub-net route directly connected with the router. If it is not specified as reject or blackhole, the route will be reachable by default.

Precautions for static route configuration:

l When the destination IP address and the mask are both 0.0.0.0, it is the configured default route. If it is failed to detect the routing table, a packet will be forwarded along the default route.

l For different configuration of preference level, flexible routing management policy can be adopted.

Related commands: display ip routing-table, delete static-routes all.

Example

# Configure the next hop of the default route as 129.102.0.2.

[H3C] ip route-static 0.0.0.0 0.0.0.0 129.102.0.2

# Configure static route 129.102.0.2 255.255.255.0 in multiple VPNs.

[H3C] ip route-static vpn-instance vpn1 vpn2 vpn3 129.102.0.2 255.255.255.0 null 0

Chapter 2 RIP Configuration Commands

& Note:

For the configuration of VPN instance, refer to the MPLS module in H3C S9500 Series Routing Switches Operation Manual.

2.1 RIP Configuration Commands

2.1.1 checkzero

Syntax

checkzero

undo checkzero

View

RIP view

Parameter

None

Description

Use the checkzero command to check the zero field of RIP-1 packet.

Use the undo checkzero command to disable the checking of the zero fields.

By default, RIP-1 performs zero field check.

According to the protocol (RFC1058) specifications, some fields in RIP-1 packets must be zero, called zero fields. You can use the checkzero command to enable the zero field check operation on RIP-1 packet. During the zero field check operation, if the RIP-1 packet in which the zero fields are not zeros is received, it will be rejected.

This command is ineffective to RIP-2 since RIP-2 packets have no zero fields.

Example

# Configure not to perform zero check for RIP-1 packet.

[H3C-rip] undo checkzero

2.1.2 default cost

Syntax

default cost value

undo default cost

View

RIP view

Parameter

value: The default routing cost to be set, ranging from 1 to 16. The default value is 1.

Description

Use default cost command to set the default routing cost of an imported route.

Use the undo default cost command to restore the default value.

If no specific routing cost is specified when importing the route of another routing protocol with the import-route command, the redistribution will be performed with the default routing cost specified with the default cost command.

Related command: import-route.

Example

# Set the default routing cost of the imported route of another routing protocol to 3.

[H3C-rip] default cost 3

2.1.3 display rip

Syntax

display rip [ routing | vpn-instance ]

View

Any view

Parameter

routing: Displays RIP routing information.

vpn-instance: Displays VPN instance information.

Description

Use the display rip command to view the current RIP running state and its configuration information.

Example

# Display the current running state and configuration information of the RIP.

<H3C> display rip

RIP is running

public net VPN-Instance

Checkzero is on Default cost : 1

Summary is on Preference : 100

Traffic-share is off

Period update timer : 30

Timeout timer : 180

Garbage-collection timer : 120

No peer router

Network :

202.38.168.0

Table 2-1 Description of the fields of the display rip command

Field	Description
RIP is running	RIP is active
public net VPN-Instance	Public network in the VPN
Checkzero is on	Enable zero field checking
Default cost : 1	The default route cost is 1
Summary is on	Routes are summarized automatically
Preference : 100	The preference of RIP is 100
Traffic-share is off	Load balancing state for the interface
Period update timer : 30 Timeout timer : 180 Garbage-collection timer : 120	Three timers of RIP
No peer router	No destination address of a transmission is specified
Network :202.38.168.0	Enable RIP on network segment 202.38.168.0

2.1.4 filter-policy export

Syntax

filter-policy { acl-number | ip-prefix ip-prefix-name } export [ routing-protocol ]

undo filter-policy { acl-number | ip-prefix ip-prefix-name } export [ routing-protocol ]

View

RIP view

Parameter

acl-number: Access control list number used for filtering the destination addresses of the routing information.

ip-prefix-name: Name of address prefix list used for filtering the destination addresses of the routing information.

routing-protocol: Routing protocol whose routing information is to be filtered, including direct, isis, bgp, ospf, ospf-ase, ospf-nssa and static at present.

Description

Use the filter-policy export command to configure to filter the advertised routing information by RIP.

Use the undo filter-policy export command to configure not to filter the advertised routing information.

By default, RIP does not filter the advertised routing information.

Related commands: acl, filter-policy import, ip ip-prefix.

Example

# Filter the advertised route information according to ACL 2000.

[H3C-rip] filter-policy 2000 export

2.1.5 filter-policy import

Syntax

filter-policy gateway ip-prefix-name import

undo filter-policy gateway ip-prefix-name import

filter-policy { acl-number | ip-prefix ip-prefix-name [ gateway ip-prefix-name ] } import

undo filter-policy { acl-number | ip-prefix ip-prefix-name [ gateway ip-prefix-name ] } import

View

RIP view

Parameter

acl-number: Access control list number used for filtering the destination addresses of the routing information.

ip-prefix-name: Name of address prefix list used for filtering the destination addresses of the routing information.

gateway ip-prefix-name: Name of address prefix list used for filtering the addresses of the neighboring routers advertising the routing information.

Description

Use the filter-policy gateway import command to configure to filter the received routing information distributed from the specified address.

Use the undo filter-policy gateway import command to configure not to filter the received routing information distributed from the specified address.

Use the filter-policy import command to configure the filtering to the received global routing information.

Use the undo filter-policy import command to disable filtering to the received global routing information

By default, RIP does not filter the received routing information.

Related commands: acl, filter-policy export, ip ip-prefix.

Example

# Configure the filtering of the received global routing information according to ACL 2000.

[H3C-rip] filter-policy 2000 import

2.1.6 host-route

Syntax

host-route

undo host-route

View

RIP view

Parameter

None

Description

Use the host-route command to control the RIP to accept the host route.

Use the undo host-route command to reject the host route.

By default, RIP accepts the host route.

In some special cases, RIP receives a great number of host routes in the same network segment. These routes cannot help the path searching much but occupy a lot of resources. In this case, the undo host-route command can be used to reject a host route.

Example

# Configure RIP to reject a host route.

[H3C-rip] undo host-route

2.1.7 import-route

Syntax

import-route protocol [ cost value | route-policy route-policy-name ]*

undo import-route protocol

View

RIP view

Parameter

protocol: Specifies the source routing protocol to be imported by RIP. At present, RIP can import the following routes: direct, bgp, ospf, ospf-ase, ospf-nssa, isis and static.

value: Cost value of the route to be imported.

route-policy route-policy-name: Configures to import the route matching the condition of the specified Route-policy only.

Description

Use the import-route command to import the routes of other protocols into RIP.

Use the undo import-route command to cancel the routes imported from other protocols.

By default, RIP does not import any other route.

The import-route command is used to import the route of another protocol by using a certain cost value. RIP regards the imported route as its own route and transmits it with the specified cost value. This command can greatly enhance the RIP capability of obtaining routes, thus increasing the RIP performance.

If the cost value is not specified, routes will be imported according to the default cost ranging from 1 to 16. If the cost value of the imported route is 16, then RIP continues to advertise this cost to other routers running RIP, and marks this route “Hold Down”. However, this router can still forward packets until the Garbage Collection timer times out (defaults to 120 seconds).

Related command: default cost.

Example

# Import a static route with the cost value of 4.

[H3C-rip] import-route static cost 4

# Set the default cost and import an OSPF route with the default cost.

[H3C-rip] default cost 3

[H3C-rip] import-route ospf

2.1.8 network

Syntax

network network-address

undo network network-address

View

RIP view

Parameter

network-address: IP address of the RIP interface. It can be the IP network address of any interface.

Description

Use the network command to enable Routing Information Protocol (RIP) for the specified network connected to the router.

Use the undo network command to disable the RIP on the interface.

By default, all RIP interfaces are disabled.

RIP route processes are disabled on all interfaces by default. To enable a RIP route process on an interface, use the network command.

The undo network command is similar to the undo rip work command in terms of function. But they are not identical. Their similarity is that the interface using either command will not receive/transmit RIP routes. The difference between them is that, in the case of undo rip work, other interfaces will still forward the routes of the interface using the undo rip work command. In the case of undo network, other interfaces will not forward the routes of the interface using this command and it seems that the interface disappeared.

When the network command is used on an address, the effect is that the interface on the network segment at this address is enabled. For example, the results of viewing the network 129.102.1.1 with both the display current-configuration command and the display rip command are shown as the network 129.102.0.0.

Related command: rip work.

Example

# Enable the RIP on the interface with the network address as 129.102.0.0.

[H3C-rip] network 129.102.0.0

2.1.9 peer

Syntax

peer ip-address

undo peer ip-address

View

RIP view

Parameter

ip-address: The interface IP address of the peer router, in dotted decimal format.

Description

Use the peer command to configure the sending destination address of the peer device. Use the undo peer command to cancel the set destination address.

By default, do not send RIP packet to any destination.

RIP exchanges routing information with non-broadcasting networks in unicast view. This command specifies the sending destination address to fit some non-broadcast networks. Usually, it is not recommended to use this command.

Example

# Specify the sending destination address 202.38.165.1.

[H3C-rip] peer 202.38.165.1

2.1.10 preference

Syntax

preference value

undo preference

View

RIP view

Parameter

value: Preference level, ranging from 1 to 255. By default, the value is 100.

Description

Use the preference command to configure the route preference of RIP.

Use the undo preference command to restore the default preference.

Every routing protocol has its own preference. Its default value is determined by the specific routing policy. The preference will finally determine the routing algorithm to obtain the optimal route in the IP routing table. This command can be used to modify the RIP preference manually.

Example

# Specify the RIP preference as 20.

[H3C-rip] preference 20

2.1.11 reset

Syntax

reset

View

RIP view

Parameter

None

Description

Use the reset command to reset the system configuration parameters of RIP.

When you need to re-configure parameters of RIP, this command can be used to restore to the default setting.

Example

# Reset the RIP system.

[H3C-rip] reset

2.1.12 rip

Syntax

rip

undo rip

View

system view

Parameter

None

Description

Use the rip command to enable the RIP and enter the RIP view.

Use the undo rip command to disable RIP.

By default, the system does not run RIP.

To enter the RIP view to configure various RIP global parameters, RIP should be enabled first. Whereas the configuration of parameters related to the interfaces is not restricted by enabling/disabling RIP.

& Note:

Note that the interface parameters configured previously would be invalid when RIP is disabled.

Example

# Enable the RIP and enter the RIP view.

[H3C] rip

[H3C-rip]

2.1.13 rip authentication-mode

Syntax

rip authentication-mode { simple password | md5 { usual key-string | nonstandard key-string key-id } }

undo rip authentication-mode

View

Interface view

Parameter

simple: Simple text authentication mode.

password: Simple text authentication key. It is a character string of 1 to 16 characters.

md5: MD5 cipher text authentication mode.

usual: Specifies the MD5 cipher text authentication packet to use the general packet format (RFC1723 standard format).

key-string: MD5 cipher text authentication key. If it is input in a plain text form, MD5 key is a character string not exceeding 16 characters. And it will be displayed in a cipher text form in a length of 24 characters when the display current-configuration command is executed. Inputting the MD5 key in a cipher text form with 24 characters long is also supported.

nonstandard: Specifies the MD5 cipher text authentication packet to use a nonstandard packet format described in RFC2082.

key-id: MD5 cipher text authentication identifier, ranging from 1 to 255.

Description

Use the rip authentication-mode command to configure RIP-2 authentication mode and its parameters.

Use the undo rip authentication-mode command to cancel the RIP-2 authentication.

RIP-1 does not support authentication. There are two RIP authentication modes: simple authentication and MD5 cipher text authentication for RIP-2. When MD5 cipher text authentication mode is used, there are two types of packet formats. One of them is that described in RFC 1723, which was brought forward earlier. The other format is the one described specially in RFC 2082. The router supports both of the packet formats and the user can select either of them on demands.

Related command: rip version.

Example

# Specify Interface Vlan-interface 10 to use the simple authentication with the key as aaa.

[H3C] interface Vlan-interface 10

[H3C-Vlan-interface10] rip version 2

[H3C-Vlan-interface10] rip authentication-mode simple aaa

# Set MD5 authentication at Vlan-interface 10 with the key string as aaa and the packet type as usual.

[H3C] interface Vlan-interface 10

[H3C-Vlan-interface10] rip version 2

[H3C-Vlan-interface10] rip authentication-mode md5 usual aaa

2.1.14 rip input

Syntax

rip input

undo rip input

View

Interface view

Parameter

None

Description

Use the rip input command to allow an interface to receive RIP packets.

Use the undo rip input command to disable an interface to receive RIP packets.

By default, all interfaces except loopback interfaces are enabled to receive RIP packets.

This command is used in cooperation with the other two commands: rip output and rip work. Functionally, rip work is equivalent to rip input & rip output. The latter two control the receipt and the transmission of RIP packets respectively on an interface. The former command equals the functional combination of the latter two commands.

Related command: rip output, rip work.

Example

# Specify Vlan-interface 10 not to receive RIP packets.

[H3C-Vlan-interface10] undo rip input

2.1.15 rip metricin

Syntax

rip metricin value

undo rip metricin

View

Interface view

Parameter

value: Additional route metric added when an interface receives a packet, ranging from 0 to 16. By default, the value is 0.

Description

Use the rip metricin command to configure the additional route metric added to the route when an interface receives RIP packets.

Use the undo rip metricin command to restore the default value of this additional route metric.

Related command: rip metricout.

Example

# Specify the additional route metric to 2 when the interface Vlan-interface 10 receives RIP packets.

[H3C] interface Vlan-interface 10

[H3C-Vlan-interface10] rip metricin 2

2.1.16 rip metricout

Syntax

rip metricout value

undo rip metricout

View

Interface view

Parameter

value: Additional route metric added when an interface transmits a packet, ranging from 1 to 16. By default, the value is 1.

Description

Use the rip metricout command to configure the additional route metric to the route when an interface transmits RIP packets.

Use the undo rip metricout command to restore the default value of this additional route metric.

Related command: rip metricin.

Example

# Set the additional route metric to 2 when the interface Vlan-interface 10 transmits RIP packets.

[H3C] interface Vlan-interface 10

[H3C-Vlan-interface10] rip metricout 2

2.1.17 rip output

Syntax

rip output

undo rip output

View

Interface view

Parameter

None

Description

Use the rip output command to allow an interface to transmit RIP packets to the external.

Use the undo rip output command to disable an interface to transmit RIP packets to the external.

By default, all interfaces except loopback interfaces are enabled to transmit RIP packets to the external.

This command is used in cooperation with the other two commands: rip input and rip work. Functionally, rip work is equivalent to rip input & rip output. The latter two control the receipt and the transmission of RIP packets respectively on an interface. The former command equals the functional combination of the latter two commands.

Related command: rip input, rip work.

Example

# Disable the interface Vlan-interface 10 to transmit RIP packets.

[H3C] interface Vlan-interface 10

[H3C-Vlan-interface10] undo rip output

2.1.18 rip split-horizon

Syntax

rip split-horizon

undo rip split-horizon

View

Interface view

Parameter

None

Description

Use the rip split-horizon command to configure an interface to use split horizon when transmitting RIP packets.

Use undo rip split-horizon command to configure an interface not to use split horizon when transmitting RIP packets.

By default, an interface is enabled to use split horizon when transmitting RIP packets.

Normally, split horizon is necessary for reducing route loop. Only in some special cases, you need to disable split horizon to ensure the correct execution of protocols. When doing that, make sure that it is necessary.

Example

# Specify the interface Vlan-interface 10 not to use split horizon when processing RIP packets.

[H3C] interface Vlan-interface 10

[H3C-Vlan-interface10] undo rip split-horizon

2.1.19 rip version

Syntax

rip version 1

rip version 2 [ broadcast | multicast ]

undo rip version

View

Interface view

Parameter

1: Version of RIP packets on an interface is RIP-1.

2: Version of RIP packets on an interface is RIP-2.

broadcast: Transmission mode of RIP-2 packet is broadcast.

multicast: Transmission mode of RIP-2 packet is multicast.

Description

Use the rip version command to configure the version of RIP packets on an interface. Use the undo rip version command to restore the default value of RIP packet version on the interface.

By default, the interface RIP version is RIP-1. RIP-1 transmits packets in broadcast mode, while RIP-2 transmits packets in multicast mode by default.

When running RIP-1, the interface only receives and transmits RIP-1 broadcast packets, and receives RIP-2 broadcast packets, but does not receive RIP-2 multicast packets. When running RIP-2 in broadcast mode, the interface only receives and transmits RIP-2 broadcast packets, receives RIP-1 packets and RIP-2 multicast packets. When running RIP-2 in multicast mode, the interface only receives and transmits RIP-2 multicast packets, receives RIP-2 broadcast packets, but does not receive RIP-1 packets.

Example

# Configure the interface Vlan-interface 10 as RIP-2 broadcast mode.

[H3C] interface Vlan-interface 10

[H3C-Vlan-interface10] rip version 2 broadcast

2.1.20 rip work

Syntax

rip work

undo rip work

View

Interface view

Parameter

None

Description

Use the rip work command to enable the running of RIP on an interface.

Use the undo rip work command to disable the running of RIP on an interface.

By default, RIP is running on an interface.

This command is used in cooperation with rip input, rip output and network commands. Refer to the usage guideline of the related commands.

Related command: network, rip input, rip output.

Example

# Disable the interface Vlan-interface 10 to run the RIP.

[H3C] interface Vlan-interface 10

[H3C-Vlan-interface10] undo rip work

2.1.21 summary

Syntax

summary

undo summary

View

RIP view

Parameter

None

Description

Use the summary command to configure to activate RIP-2 automatic route summarization.

Use the undo summary command to disable RIP-2 automatic route summarization.

By default, RIP-2 route summarization is used.

Automatic route summarization can be performed to reduce the routing traffic on the network as well as to reduce the size of the routing table. If RIP-2 is used, route summarization function can be disabled with the undo summary command, when it is necessary to broadcast the subnet route.

RIP-1 does not support subnet mask. Forwarding subnet route may cause ambiguity. Therefore, RIP-1 uses route summarization all the time. Thus, the undo summary command does not take effect on RIP-1.

Related command: rip version.

Example

# Set RIP version on the interface Vlan-interface 10 to RIP-2 and disable the route summarization function.

[H3C] interface Vlan-interface 10

[H3C-Vlan-interface10] rip version 2

[H3C-Vlan-interface10] quit

[H3C] rip

[H3C-rip] undo summary

2.1.22 timers

Syntax

timers { update update-timer-length | timeout timeout-timer-length } *

undo timers { update | timeout } *

View

RIP view

Parameter

update-timer-length: Value of the Period Update timer, ranging from 1 to 3600 seconds. By default, it is 30 seconds.

timeout-timer-length: Value of the Timeout timer, ranging from 1 to 3600 seconds. By default, it is 180 seconds.

Description

Use the timers command to modify the values of the three RIP timers: Period Update, Timeout, and Garbage-collection.

Use the undo timers command to restore the default settings.

By default, the values of Period Update, Timeout, and Garbage-collection timers are 30 seconds, 180 seconds, and 120 seconds respectively.

Generally, it is regarded that the value of Garbage-collection timer is fixed to four times of that of Period Update timer. Adjusting Period Update timer will affect Garbage-collection timer.

The modification of RIP timers is validated immediately.

Related command: display rip.

Example

# Set the values of Period Update timer and Timeout timer of RIP to 10 seconds and 30 seconds respectively.

[H3C] rip

[H3C-rip] timers update 10 timeout 30

Chapter 3 OSPF Configuration Commands

& Note:

3.1 OSPF Configuration Commands

3.1.1 abr-summary

Syntax

abr-summary ip-address mask [ advertise | not-advertise ]

undo abr-summary ip-address mask

View

OSPF Area view

Parameter

ip-address: Network segment address.

mask: Network mask.

advertise: Advertises only the summarized route that matches the specified IP address and mask.

not-advertise : Not advertises routes matching the specified IP address and mask.

Description

Use the abr-summary command to configure automatic route summarization on the area border router.

Use the undo abr-summary command to disable the function of route summarization on the area border router.

By default, the area border router does not summarize routes.

This command is applicable only to the area border router (ABR) and is used for the route summarization in an area. The ABR only transmits asummarized route to other areas. Route summarization refers to that the routing information is processed in the ABR and for each network segment configured with route summarization, there is only one route transmitted to other areas.

You can summarize multiple network segments in one OSPF area.

Example

# Summarize two network segments, 36.42.10.0 and 36.42.110.0, in OSPF area 1 into one summarized route 36.42.0.0 and transmit it to other areas.

[H3C-ospf-1] area 1

[H3C-ospf-1-area-0.0.0.1] network 36.42.10.0 0.0.0.255

[H3C-ospf-1-area-0.0.0.1] network 36.42.110.0 0.0.0.255

[H3C-ospf-1-area-0.0.0.1] abr-summary 36.42.0.0 255.255.0.0

3.1.2 area

Syntax

area area-id

undo area area-id

View

OSPF view

Parameter

area-id: ID of the OSPF area, which can be a decimal integer (ranging from 0 to 4,294,967,295) or in IP address format.

Description

Use the area command to enter OSPF Area view.

Use the undo area command to remove the specified area.

Example

# Enter OSPF Area 0 view.

[H3C-ospf-1] area 0

[H3C-ospf-1-area-0.0.0.0]

3.1.3 asbr-summary

Syntax

asbr-summary ip-address mask [ not-advertise | tag value ]

undo asbr-summary ip-address mask

View

OSPF view

Parameter

ip-address: Matched IP address in dotted decimal format.

mask: IP address mask in dotted decimal format.

not-advertise: Do not advertise routes matching the specified IP address and mask. tag value: Tag value, which is mainly used to control advertisement of routes via route-policy. It is in the range from 0 to 4,294,967,295. The default tag value is 1.

Description

Use the asbr-summary command to configure summarization of imported routes by OSPF.

Use the undo asbr-summary command to cancel the summarization.

By default, summarization of imported routes is disabled.

After the summarization of imported routes is configured, if the local router is an autonomous system border router (ASBR), this command summarizes the imported Type-5 LSAs in the summary address range. When NSSA is configured, this command will also summarize the imported Type-7 LSAs in the summary address range.

If the local router acts as both an ABR and a router in the NSSA, this command summarizes Type-5 LSAs transformed from Type-7 LSAs. If the router is not the router in the NSSA, the summarization is disabled.

Related command: display ospf asbr-summary.

Example

# Set summarization of H3C imported routes.

[H3C] ospf

[H3C-ospf-1] asbr-summary 10.2.0.0 255.255.0.0 not-advertise

3.1.4 authentication-mode

Syntax

authentication-mode { simple | md5 }

undo authentication-mode

View

OSPF area view

Parameter

simple: Uses simple text authentication mode.

md5: Uses MD5 cipher text authentication mode.

Description

Use the authentication-mode command to configure one area of OSPF to support the authentication attribute.

Use the undo authentication-mode command to cancel the authentication attribute of this area.

By default, an area does not support authentication attribute.

All the routers in one area must use the same authentication mode (no authentication, simple text authentication or MD5 cipher text authentication). If the mode of supporting authentication is configured, all routers on the same segment must use the same authentication key. To configure a simple text authentication key, use the ospf authentication-mode simple command. Use the ospf authentication-mode md5 command to configure the MD5 cipher text authentication key if the area is configured to support MD5 cipher text authentication mode.

Related command: ospf authentication-mode.

Example

# Enter area 0 view.

[H3C-ospf-1] area 0

# Specify the OSPF area 0 to support MD5 cipher text authentication:

[H3C-ospf-1-area-0.0.0.0] authentication-mode md5

3.1.5 debugging ospf

Syntax

debugging ospf [ process-id ] { event | packet [ ack | dd | hello | interface interface-type interface-number | request | update ] | lsa-originate | spf }

undo debugging ospf [ process-id ] { event | packet [ ack | dd | hello | interface interface-type interface-number | request | update ] | lsa-originate | spf }

View

User view

Parameter

process-id: Process ID of OSPF. The command enables/disables all process debugging if you do not specify a process ID.

event: Enables/Disables OSPF event debugging.

packet: Enables/Disables OSPF packet debugging. OSPF packets include:

ack: LSAck packet.

dd: Database Description packet.

hello: Hello packet.

request: Link State Request packet.

update: Link State Update packet.

interface interface-type interface-number: Interface type and number, which indicates to enable/disable debugging for the OSPF packets obtained on the specified interface.

lsa-originate: Enables/Disables OSPF LSA packet debugging.

spf: Enables/Disables OSPF minimum tree calculation debugging.

Description

Use the debugging ospf command to enable OSPF process debugging.

Use the undo debugging ospf command to disable OSPF process debugging.

If you do not specify a process ID, the command is applied to all processes. While the router is operating, the debugging state always remains regardless of the existing OSPF process. If you specify a process ID, the command is only applied to the specified process.

Related command: display debugging ospf.

Example

# Enable OSPF packet debugging.

<H3C> debugging ospf packet

3.1.6 default cost

Syntax

default cost value

undo default cost

View

OSPF view

Parameter

value: Default routing cost of an external route imported by OSPF, ranging from 0 to 16,777,214. By default, its value is 1.

Description

Use the default cost command to configure the default cost for OSPF to import external routes.

Use the undo default cost command to restore the default value of the default routing cost configured for OSPF to import external routes.

Since OSPF can import external routing information, whose routing cost can influence routing selection and calculation, and propagate it to the entire autonomous system, it is necessary to specify the default routing cost for the protocol to import external routes.

Example

# Specify the default routing cost for OSPF to import external routes as 10.

[H3C-ospf-1] default cost 10

3.1.7 default interval

Syntax

default interval seconds

undo default interval

View

OSPF view

Parameter

seconds: Default interval in seconds for importing external routes. It ranges from 1 to 2,147,483,647 and defaults to 1.

Description

Use the default interval command to configure the default interval for OSPF to import external routes.

Use the undo default interval command to restore the default value of the default interval for importing external routes.

Because OSPF can import the external routing information and broadcast it to the entire autonomous system, and importing routes too often will greatly affect the performances of the device, it is necessary to specify the default interval for the protocol to import external routes.

Example

# Specify the default interval for OSPF to import external routes as 10 seconds.

[H3C-ospf-1] default interval 10

3.1.8 default limit

Syntax

default limit routes

undo default limit

View

OSPF view

Parameter

routes: Default value to the imported external routes in a unit time, ranging from 200 to 2,147,483,647. By default, the value is 1000.

Description

Use the default limit command to configure the default value of maximum number of imported routes.

Use the undo default limit command to restore the default value.

OSPF can import external routing information and advertise them to the whole AS. Importing too much external routes once will greatly affect the performances of the device.

Related command: default interval.

Example

# Specify the default value of OSPF imported external routes as 200.

[H3C-ospf-1] default limit 200

3.1.9 default tag

Syntax

default tag tag

undo default tag

View

OSPF view

Parameter

tag: Default tag, ranging from 0 to 4,294,967,295. The default value is 1.

Description

Use the default tag command to configure the default tag that OSPF assigns to imported routes.

Use the undo default tag command to restore the default of the default tag that OSPF assigns to imported routes.

When OSPF imports a route found by other routing protocols in the router and uses it as the external routing information of its own autonomous system, some additional parameters are required, including the default cost and the default tag of the route.

Related command: default type.

Example

# Set the default tag that OSPF assigns to imported routes to 10.

[H3C-ospf-1] default tag 10

3.1.10 default type

Syntax

default type { 1 | 2 }

undo default type

View

OSPF view

Parameter

type 1: External routes of type 1.

type 2: External routes of type 2.

Description

Use the default type command to configure the default type when OSPF imports external routes.

Use the undo default type command to restore the default type when OSPF imports external routes.

By default, the external routes of type 2 are imported.

OSPF specifies the two types of external routing information. The command described in this section can be used to specify the default type when external routes are imported.

Related command: default tag.

Example

# Specify the default type as type 1 when OSPF imports an external route.

[H3C-ospf-1] default type 1

3.1.11 default-cost

Syntax

default-cost value

undo default-cost

View

OSPF Area view

Parameter

value: Specifies the cost value of the default route transmitted by OSPF to the Stub or NSSA area, ranging from 0 to 16,777,214. The default value is 1.

Description

Use the default-cost command to configure the cost of the default route transmitted by OSPF to the Stub or NSSA area.

Use the undo default-cost command to restore the cost of the default route transmitted by OSPF to the Stub or NSSA area to the default value.

This command only applies to the border routers connected to the Stub or NSSA areas.

To configure a Stub area, you need to use two commands: stub and default-cost. The stub command is used to configure the Stub attribute for this area.

Related command: stub, nssa.

Example

# Set the area 1 as the Stub area and the cost of the default route transmitted to this Stub area to 60.

[H3C-ospf-1] area 1

[H3C-ospf-1-area-0.0.0.1] network 20.0.0.0 0.255.255.255

[H3C-ospf-1-area-0.0.0.1] stub

[H3C-ospf-1-area-0.0.0.1] default-cost 60

3.1.12 default-route-advertise

Syntax

default-route-advertise [ always | cost value | type type-value | route-policy route-policy-name ]*

undo default-route-advertise [ always | cost | type | route-policy ]*

View

OSPF view

Parameter

always: The parameter will generate an ASE LSA which describes the default route and will advertise it if the local router is not configured with the default route. If this parameter is not set, the local router cannot import the ASE LSA, which generates the default route only when it is configured with the default route.

cost value: The cost value of this ASE LSA. The metric-value ranges from 0 to 16,777,214. If the parameter is not configured, the default value is 1.

type type-value: Cost type of this ASE LSA. It ranges from 1 to 2. If the parameter is not configured, the default value is 2.

route-policy route-policy-name: If the default route match the route-policy specified by route-policy-name, route-policy will affect the value in ASE LSA. The length of route-policy-name argument is a character string of 1 to 19 characters.

Description

Use the default-route-advertise command to import default route to OSPF route area. Use the undo default-route-advertise command to cancel the redistribution of default route.

By default, OSPF does not import default route.

The import-route command cannot import the default route. To import the default route to the route area, this command must be used. When local router is not configured with default route, the keyword always should be used by ASE LSA to generate default route.

Related command: import-route.

Example

# If local route has no default route, the ASE LSA of default route will be generated. Otherwise, it will not be generated.

[H3C-ospf-1] default-route-advertise

# The ASE LSA of default route will be generated and advertised to OSPF route area even the local router has no default route.

[H3C-ospf-1] default-route-advertise always

3.1.13 display debugging ospf

Syntax

display debugging ospf

View

Any view

Description

Use the display debugging ospf command to view the debugging states of global OSPF and all processes.

Related command: debugging ospf.

Example

# Display the debugging states of global OSPF and all processes.

<H3C> display debugging ospf

OSPF global debugging state:

OSPF SPF debugging is on

OSPF LSA debugging is on

OSPF process 100 debugging state:

OSPF SPF debugging is on

OSPF process 200 debugging state:

OSPF SPF debugging is on

OSPF LSA debugging is on

3.1.14 display ospf abr-asbr

Syntax

display ospf [ process-id ] abr-asbr

View

Any view

Parameter

process-id: Process ID of OSPF. The command is applied to all current OSPF processes if you do not specify a process ID.

Description

Use the display ospf abr-asbr command to view the information about the ABR and ASBR of OSPF.

Example

# Display the information of the OSPF area border routers and autonomous system border routers.

<H3C> display ospf abr-asbr

OSPF Process 1 with Router ID 10.110.98.138

Routing Table to ABR and ASBR

I = Intra i = Inter A = ASBR B = ABR S = SumASBR

Destination Area Cost Nexthop Interface

IA 2.2.2.2 0.0.0.0 10 10.153.17.89 Vlan-interface1

Table 3-1 Description of the fields of the display ospf abr-asbr command

Field	Description
Destination	Router ID of the ABR or ASBR
Area	Area where the router is connected with ASBR
Cost	The routing overhead value of the route
Nexthop	Nexthop address
Interface	The local output interface

3.1.15 display ospf asbr-summary

Syntax

display ospf [ process-id ] asbr-summary [ ip-address mask ]

View

Any view

Parameter

process-id: Process ID of OSPF. The command is applied to all current OSPF processes if you do not specify a process ID.

ip-address: Matched IP address in dotted decimal format.

mask: IP address mask in dotted decimal format.

Description

Use the display ospf asbr-summary command to view the summary information of OSPF imported route.

If the parameters are not set, the summary information of all OSPF imported routes will be displayed.

Related command: asbr-summary.

Example

# Display the summary information of all OSPF imported routes.

<H3C> display ospf asbr-summary

OSPF Process 1 with Router ID 1.1.1.1

Summary Addresses

Total summary address count: 2

Summary Address

net : 168.10.0.0

mask : 255.254.0.0

tag : 1

status : Advertise

The Count of Route is 0

Summary Address

net : 1.1.0.0

mask : 255.255.0.0

tag : 100

status : DoNotAdvertise

The Count of Route is 0

Table 3-2 Description of the fields of the display ospf asbr-summary command

Field	Description
net	Destination network segment
mask	Mask
tag	Tag
status	Status information, including two values:
	DoNotAdvertise	The summary routing information to the network segment will not be advertised
	Advertise	The summary routing information to the network segment will be advertised

3.1.16 display ospf brief

Syntax

display ospf [ process-id ] brief

View

Any view

Parameter

process-id: Process ID of OSPF. The command is applied to all current OSPF processes if you do not specify a process ID.

Description

Use the display ospf brief command to view the main summary of OSPF.

Example

# Display the OSPF summary.

<H3C> display ospf brief

OSPF Process 1 with Router ID 10.110.95.189

OSPF Protocol Information

RouterID: 10.110.95.189 Border Router: Area AS

spf-schedule-interval: 5

Routing preference: Inter/Intra: 10 External: 150

Default ASE parameters: Metric: 1 Tag: 0.0.0.1 Type: 2

SPF computation count: 16

Area Count: 1 Nssa Area Count: 0

Area 0.0.0.0:

Authtype: none Flags: <>

SPF scheduled: <>

Interface: 201.1.1.4 (Vlan-interface1)

Cost: 1 State: DR Type: Broadcast

Priority: 1

Designated Router: 201.1.1.4

Backup Designated Router: 201.1.1.3

Timers: Hello 10, Dead 40, Poll 0, Retransmit 5, Transmit Delay 1

Table 3-3 Description of the fields of the display ospf brief command

Field	Description
RouterID	Router ID of the router
Border Router	Border routers for connection to the area, including autonomous system border router (ASBR) and area border router (ABR)
spf-schedule-interval	Interval of SPF schedule in seconds
Authtype	Authentication type of OSPF
Routing preference	Routing preference of OSPF. The internal route of OSPF includes intra/inter area route, and its default routing preference is 10. While that of the external route of OSPF is 150 by default
Default ASE parameters	Default ASE parameters of OSPF, including metric, type and tag
SPF computation count	SPF computation count since OSPF is enabled
Area Count	Areas for connection to this router
Nssa Area Count	Number of NSSA areas
SPF scheduled	SPF scheduled (flag)
Interface	Interface name belonging to this area
Cost	Cost of routes
State	State information
Type	Network type of OSPF interface
Priority	Priority
Designated Router	IP address of designated router (DR)
Backup Designated Router	IP address of backup designated router (BDR)
Timers	OSPF timers, defining as follows:
	Hello	Interval of hello packet
	Dead	Interval of dead neighbors
	Poll	Interval of poll
	Retransmit	Interval of retransmitting LSA
Transmit Delay	Delay time of transmitting LSA

3.1.17 display ospf cumulative

Syntax

display ospf [ process-id ] cumulative

View

Any view

Parameter

process-id: Process ID of OSPF. The command is applied to all current OSPF processes if you do not specify a process ID.

Description

Use the display ospf cumulative command to view the OSPF cumulative information.

Example

# Display the OSPF cumulative information.

<H3C> display ospf cumulative

OSPF Process 1 with Router ID 1.1.1.1

Cumulations

IO Statistics

Type Input Output

Hello 225 437

DB Description 78 86

Link-State Req 18 18

Link-State Update 48 53

Link-State Ack 25 21

ASE: 1 Checksum Sum: FCAF

LSAs originated by this router

Router: 50 SumNet: 40 SumASB: 2

LSAs Originated: 92 LSAs Received: 33

Area 0.0.0.0:

Neighbors: 1 Interfaces: 1

Spf: 54 Checksum Sum F020

rtr: 2 net: 0 sumasb: 0 sumnet: 1

Area 0.0.0.1:

Neighbors: 0 Interfaces: 1

Spf: 19 Checksum Sum 14EAD

rtr: 1 net: 0 sumasb: 1 sumnet: 1

Routing Table:

Intra Area: 2 Inter Area: 0 ASE: 1

Table 3-4 Description of the fields of the display ospf cumulative command

Field		Description
IO Statistics	Type	Type of input/output OSPF packet
	Input	Number of received packets
	Output	Number of transmitted packets
ASE		Number of all ASE LSAs
checksum sum		Checksum of ASE LSA
LSAs	originated	Number of originated LSAs
LSAs	received	Number of received LSAs generated by other routers
Router		Number of all Router LSAs
SumNet		Number of all Sumnet LSAs
SumASB		Number of all SumASB LSAs
Area	Neighbors	Number of neighbors in this area
	Interfaces	Number of interfaces in this area
	Spf	Number of SPF computation count in this area
	rtr, net, sumasb, sumnet	Number of all LSAs in this area
Routing Table	Intra Area	Number of intra-area routes
	Inter Area	Number of inter-area routes
	ASE	Number of external routes

3.1.18 display ospf error

Syntax

display ospf [ process-id ] error

View

Any view

Parameter

process-id: Process ID of OSPF. The command is applied to all current OSPF processes if you do not specify a process ID.

Description

Use the display ospf error command to view the OSPF error information.

Example

# Display the OSPF error information.

<H3C> display ospf error

OSPF Process 1 with Router ID 1.1.1.1

OSPF packet error statistics:

0: IP: received my own packet 0: OSPF: wrong packet type

0: OSPF: wrong version 0: OSPF: wrong checksum

0: OSPF: wrong area id 0: OSPF: area mismatch

0: OSPF: wrong virtual link 0: OSPF: wrong authentication type

0: OSPF: wrong authentication key 0: OSPF: too small packet

0: OSPF: packet size > ip length 0: OSPF: transmit error

0: OSPF: interface down 0: OSPF: unknown neighbor

0: HELLO: netmask mismatch 0: HELLO: hello timer mismatch

0: HELLO: dead timer mismatch 0: HELLO: extern option mismatch

0: HELLO: router id confusion 0: HELLO: virtual neighbor unknown

0: HELLO: NBMA neighbor unknown 0: DD: neighbor state low

0: DD: router id confusion 0: DD: extern option mismatch

0: DD: unknown LSA type 0: LS ACK: neighbor state low

0: LS ACK: wrong ack 0: LS ACK: duplicate ack

0: LS ACK: unknown LSA type 0: LS REQ: neighbor state low

0: LS REQ: empty request 0: LS REQ: wrong request

0: LS UPD: neighbor state low 0: LS UPD: newer self-generate LSA

0: LS UPD: LSA checksum wrong 0: LS UPD: received less recent LSA

0: LS UPD: unknown LSA type 0: OSPF routing: next hop not exist

0: DD: MTU option mismatch 0: ROUTETYPE: wrong type value

Table 3-5 Description of the fields of the display ospf error command

Field	Description
IP: received my own packet	Received my own packet
OSPF: wrong packet type	OSPF packet type error
OSPF: wrong version	OSPF version error
OSPF: wrong checksum	OSPF checksum error
OSPF: wrong area id	OSPF area ID error
OSPF: area mismatch	OSPF area mismatch
OSPF: wrong virtual link	OSPF virtual link error
OSPF: wrong authentication type	OSPF authentication type error
OSPF: wrong authentication key	OSPF authentication key error
OSPF: too small packet	OSPF packet too small
OSPF: packet size > ip length	OSPF packet size exceeds IP packet length
OSPF: transmit error	OSPF transmission error
OSPF: interface down	OSPF interface is down, unavailable
OSPF: unknown neighbor	OSPF neighbors are unknown
HELLO: netmask mismatch	Network mask mismatch
HELLO: hello timer mismatch	Interval of HELLO packet is mismatched
HELLO: dead timer mismatch	Interval of dead neighbor packet is mismatched
HELLO: extern option mismatch	Extern option of Hello packet is mismatched
HELLO: router id confusion	Hello packet: Router ID confusion
HELLO: virtual neighbor unknown	Hello packet: unknown virtual neighbor
HELLO: NBMA neighbor unknown	Hello packet: unknown NBMA neighbor
DD: neighbor state low	Database description (DD) packet: asynchronous neighbor state
DD: unknown LSA type	DD packet: unknown LSA type
LS ACK: neighbor state low	Link state acknowledgment (LS ACK) packet: states of neighbors are not synchronized.
LS ACK: wrong ack	Link state acknowledgment packet: ack error
LS ACK: duplicate ack	Link state acknowledgment packet: ack duplication
LS ACK: unknown LSA type	Link state acknowledgment packet: unknown LSA type
LS REQ: neighbor state low	Link state request (LS REQ) packet: The states of neighbors are not synchronized
LS REQ: empty request	Link state request packet: empty request
LS REQ: wrong request	Link state request packet: erroneous request
LS UPD: neighbor state low	Link state update packet: The states of neighbors are synchronized.
LS UPD: newer self-generate LSA	Link state update packet: newer LSA generated by itself
LS UPD: LSA checksum wrong	Link state update packet: LSA checksum error
LS UPD: received less recent LSA	Link state update packet: received less recent LSA
LS UPD: unknown LSA type	Link state update packet: unknown LSA type
OSPF routing: next hop not exist	Next hop of OSPF routing does not exist
DD: MTU option mismatch	MTU option of DD packet is mismatched
ROUTETYPE: wrong type value	Route type: the value of the type is wrong

3.1.19 display ospf interface

Syntax

display ospf [ process-id ] interface [ interface-type interface-number ]

View

Any view

Parameter

process-id: Process ID of OSPF. The command is applied to all current OSPF processes if you do not specify a process ID.

interface-type interface-number: Specifies an interface.

Description

Use the display ospf interface command to view the OSPF interface information.

Example

# Display the OSPF interface information of Vlan-interface1.

<H3C> display ospf interface vlan-interface 1

OSPF Process 1 with Router ID 1.1.1.1

Interfaces

Interface: 10.110.10.2 (Vlan-interface1)

Cost: 1 State: BackupDR Type: Broadcast

Priority: 1

Designated Router: 10.110.10.1

Backup Designated Router: 10.110.10.2

Timers: Hello 10, Dead 40, Poll 0, Retransmit 5, Transmit Delay 1

Table 3-6 Description of the fields of the display ospf interface command

Field	Description
Cost	Cost of the interface
State	State of the interface state machine
Type	Network type of OSPF on the interface
Priority	Priority of the interface for DR election in its network
Designated Router	DR on the network in which the interface resides
Backup Designated Router	BDR on the network in which the interface resides
Timers	OSPF timers, defining as follows:
	Hello	Interval of Hello packet
	Dead	Interval of dead neighbors
	Poll	Interval of poll
	Retransmit	Interval of retransmitting LSA
Transmit Delay	Delay time of transmitting LSA

3.1.20 display ospf lsdb

Syntax

View

Any view

Parameter

process-id: Process ID of OSPF. The command is applied to all current OSPF processes if you do not specify a process ID.

area-id: ID of the OSPF area, which can be a decimal integer in the range 0 to 4,294,967,295 or in IP address format.

brief: Views brief database information.

asbr: Views the database information of Type-4 LSA (summary-Asbr-LSA).

ase: Views the database information of Type-5 LSA (AS-external-LSA).

network: Views the database information of Type-2 LSA (Network-LSA).

nssa: Views the database information of Type-7 LSA (NSSA-external-LSA).

router: Views the database information of Type-1 LSA (Router-LSA).

summary: Views the database information of Type-3 LSA (Summary-Net-LSA).

ip-address: Link state ID in IP address format.

originate-router ip-address: Views the IP address of the LSA generator.

self-originate: Views the database information of self-originated LSA.

Description

Use the display ospf lsdb command to view the link-state database (LSDB) of OSPF.

Example

# Display the LSDB of OSPF.

<H3C> display ospf lsdb verbose

OSPF Process 1 with Router ID 1.1.1.1

Link State Database

Area: 0.0.0.0

Type LinkState ID AdvRouter Age Len Sequence Metric Where

Rtr 2.2.2.2 2.2.2.2 465 36 8000000c 0 SpfTree

Rtr 1.1.1.1 1.1.1.1 449 36 80000004 0 SpfTree

Net 10.153.17.89 2.2.2.2 465 32 80000004 0 SpfTree

SNet 10.153.18.0 1.1.1.1 355 28 80000003 10 Inter List

Area: 0.0.0.1

Type LinkState ID AdvRouter Age Len Sequence Metric Where

Rtr 1.1.1.1 1.1.1.1 449 36 80000004 0 SpfTree

Rtr 3.3.3.3 3.3.3.3 429 36 8000000a 0 Clist

Net 10.153.18.89 3.3.3.3 429 32 80000003 0 SpfTree

SNet 10.153.17.0 1.1.1.1 355 28 80000003 10 Inter List

ASB 2.2.2.2 1.1.1.1 355 28 80000003 10 SumAsb List

AS External Database:

Type LinkState ID AdvRouter Age Len Sequence Metric Where

ASE 10.153.18.0 1.1.1.1 1006 36 80000002 1 Ase List

ASE 10.153.16.0 2.2.2.2 798 36 80000002 1 Uninitialized

ASE 10.153.17.0 2.2.2.2 623 36 80000003 1 Uninitialized

ASE 10.153.17.0 1.1.1.1 1188 36 80000002 1 Ase List

Table 3-7 Description of the fields of the display ospf lsdb command

Field	Description
Type	Type of the LSA
LinkStateID	Link state ID of the LSA
AdvRouter	Router ID of the router originating the LSA
Age	Age of the LSA, in seconds
Len	Length of the LSA
Sequence	Sequence number of the LSA
Metric	Cost from the router originating the LSA to the LSA destination
Where	Location of the LSA

<H3C> display ospf lsdb ase

OSPF Process 1 with Router ID 1.1.1.1

Link State Data Base

type : ASE

ls id : 2.2.0.0

adv rtr: 1.1.1.1

ls age: 349

len: 36

seq#: 80000001

chksum: 0xfcaf

Options: (DC)

Net mask:255.255.0.0

Tos 0 metric: 1

E type : 2

Forwarding Address: 0.0.0.0

Tag: 1

Table 3-8 Description of the fields of the display ospf lsdb ase command

Field	Description
type	Type of the LSA
ls id	Link state ID of the LSA
adv rtr	Router ID of the router originating the LSA
ls age	Age of the LSA in seconds
len	Length of the LSA
seq#	Sequence number of the LSA
chksum	Checksum of the LSA
Options	Options of the LSA
Net mask	Network mask
E type	Type of external route
Forwarding Address	Forwarding address
Tag	Tag

3.1.21 display ospf nexthop

Syntax

display ospf [ process-id ] nexthop

View

Any view

Parameter

process-id: Process ID of OSPF. The command is applied to all current OSPF processes if you do not specify a process ID.

Description

Use the display ospf nexthop command to view the information about the next-hop.

Example

# Display the OSPF next-hop information.

<H3C> display ospf nexthop

OSPF Process 1 with Router ID 1.1.1.1

Address Type Refcount Intf Addr Intf Name

---------------------------------------------------------------------

202.38.160.1 Direct 3 202.38.160.1 Vlan-interface2

202.38.160.2 Neighbor 1 202.38.160.1 Vlan-interface2

Table 3-9 Description of the fields of the display ospf nexthop command

Field	Description
Address	Address of next hop
Type	Type of next hop
Refcount	Reference count of the next hop, i.e., number of routes using this address as the next hop
Intf Addr	IP address of the outgoing interface to the next hop
Intf Name	The outgoing interface to the next hop

3.1.22 display ospf peer

Syntax

display ospf [ process-id ] peer [ brief ]

View

Any view

Parameter

process-id: Process ID of OSPF. The command is applied to all current OSPF processes if you do not specify a process ID.

Description

Use the display ospf peer command to view information about OSPF peers.

Use the display ospf peer brief command to view the brief information of every peer in OSPF, mainly the numbers of peers at all states in every area.

Example

# View the neighbor brief information of OSPF.

<H3C> display ospf peer brief

OSPF Process 1 with Router ID 85.1.1.1

Neighbor Brief Information

Virtual Link:

Router ID Address Pri Interface State

85.1.1.2 63.56.1.1 0 Vlan-interface561 Down

Table 3-10 Description of the fields of the display ospf peer brief command

Field	Description
Router ID	Router ID of neighbor router
Address	Address of the interface through which the neighbor router communicates with the local router
Pri	Priority
Interface	Interface address of the network segment
State	State information

3.1.23 display ospf request-queue

Syntax

display ospf [ process-id ] request-queue

View

Any view

Parameter

process-id: ID of an OSPF process. The command is applied to all current OSPF processes if you do not specify a process ID.

Description

Use the display ospf request-queue command to view the information about the OSPF request-queue.

Example

# Display the information of OSPF request-queue.

<H3C> display ospf request-queue

The Router's Neighbors is

RouterID: 1.1.1.1 Address: 1.1.1.1

Interface: 1.1.1.3 Area: 0.0.0.0

LSID:1.1.1.3 AdvRouter:1.1.1.3 Sequence:80000017 Age:35

Table 3-11 Description of the fields of the display ospf request-queue command

Field	Description
RouterID	Router ID of neighbor router
Address	Address of the interface, through which neighbor routers communicate with the router
Interface	Address of the interface on the network segment
Area	Number of an OSPF area
LSID:1.1.1.3	Link State ID of the LSA
AdvRouter	Router ID of the router originating the LSA
Sequence	Sequence number of the LSA, used to discover old and repeated LSAs
Age	Age in seconds of the LSA

3.1.24 display ospf retrans-queue

Syntax

display ospf [ process-id ] retrans-queue

View

Any view

Parameter

process-id: ID of an OSPF process. The command is applied to all current OSPF processes if you do not specify a process ID.

Description

Use the display ospf retrans-queue command to view information about the OSPF retransmission queue.

Example

# Display information about the OSPF retransmission queue.

<H3C> display ospf retrans-queue

OSPF Process 200 with Router ID 103.160.1.1

Retransmit List

The Router's Neighbors is

RouterID: 162.162.162.162 Address: 103.169.2.2

Interface: 103.169.2.5 Area: 0.0.0.1

Retrans list:

Type: ASE LSID:129.11.77.0 AdvRouter:103.160.1.1

Type: ASE LSID:129.11.108.0 AdvRouter:103.160.1.1

Table 3-12 Description of the fields of the display ospf retrans-queue command

Field	Description
RouterID	Router ID of neighbor router
Address	Address of the interface, through which neighbor routers communicate with the router
Interface	Address of the interface on the network segment
Area	Number of an OSPF area
Type	Type of the LSA
LSID	Link State ID of the LSA
AdvRouter	Router ID of the router originating the LSA

3.1.25 display ospf routing

Syntax

display ospf [ process-id ] routing

View

Any view

Parameter

process-id: ID of an OSPF process. The command is applied to all current OSPF processes if you do not specify a process ID.

Description

Use the display ospf routing command to view information about the OSPF routing table.

Example

# View the OSPF routing table.

<H3C> display ospf routing

OSPF Process 1 with Router ID 1.1.1.1

Routing Tables

Routing for Network

Destination Cost Type NextHop AdvRouter Area

10.110.0.0/16 1 Net 10.110.10.1 1.1.1.1 0

10.10.0.0/16 1 Stub 10.10.0.1 3.3.3.3 0

Total Nets: 2

Intra Area: 2 Inter Area: 0 ASE: 0 NSSA: 0

Table 3-13 Description of the fields of the display ospf routing command

Field	Description
Destination	Destination network segment
Cost	Cost of route
Type	Type of route
NextHop	Next hop of route
AdvRouter	Router ID of the router advertising the route
Area	Area ID
Intra Area	Number of intra-area routes
Inter Area	Number of inter-area routes
ASE	Number of external routes
NSSA	Number of NSSA routes

3.1.26 display ospf abr-summary

Syntax

display ospf [ process-id ] abr-summary

View

Any view

Parameter

process-id: OSPF process number. If no process number is specified, the command functions on all the currently active OSPF processes.

Description

Use the display ospf abr-summary command to view the inter-area route summarization information of OSPF.

Related command: abr-summary.

Example

# View all the imported route summarization information of OSPF.

<H3C> display ospf abr-summary

OSPF Process 1 with Router ID 1.1.1.1

ABR summary in area 0.0.0.1, total 2:

Network Mask Cost Status Used

------------- --------------- -------- ------------- --------

1.2.0.0 255.255.0.0 1 advertise Yes

2.3.0.0 255.255.0.0 16777215 advertise No

Table 3-14 Description of the fields of the display ospf abr-summary command

Fields	Description
Network	Destination network segment
Mask	Mask
Cost	Cost of summary route
Status	Status information. Which can be:
	not-Advertise	Summary route information to this network segment will not be advertised
	advertise	Summary route information to this network segment will be advertised
Used	Status information. Which can be:
	Yes	The configuration of summary route to this network segment includes match route
	No	The configuration of summary route to this network segment does not include match route

3.1.27 display ospf vlink

Syntax

display ospf [ process-id ] vlink

View

Any view

Parameter

process-id: ID of an OSPF process. The command is applied to all current OSPF processes if you do not specify a process ID.

Description

Use the display ospf vlink command to view the information about OSPF virtual links.

Example

# View OSPF virtual links information.

<H3C> display ospf vlink

OSPF Process 1 with Router ID 1.1.1.1

Virtual Links

Virtual-link Neighbor-id -> 2.2.2.2, State: Full

Cost: 0 State: Full Type: Virtual

Transit Area: 0.0.0.2

Timers: Hello 10, Dead 40, Poll 0, Retransmit 5, Transmit Delay 1

Table 3-15 Description of the fields of the display ospf vlink command

Field	Description
Virtual-link Neighbor-id	Router ID of virtual-link neighbor router
State	State
Interface	IP address the interface on the virtual link
Cost	Route cost of the interface
Type	Type: virtual link
Transit Area	ID of transit area that the virtual link passes, and it cannot be backbone area, Stub area and NSSA area
Timers	OSPF timers, defining as follows:
	Hello	Interval of Hello packet
	Dead	Interval of dead neighbors
	Poll	Interval of poll
	Retransmit	Interval for retransmitting LSA on the interface
Transmit Delay	Delay time of transmitting LSA on the interface

3.1.28 filter-policy export

Syntax

filter-policy { acl-number | ip-prefix ip-prefix-name } export [ routing-protocol ]

undo filter-policy { acl-number | ip-prefix ip-prefix-name} export [ routing-protocol ]

View

OSPF view

Parameter

acl-number: Number of a basic or advanced access control list.

ip-prefix-name: Name of the address prefix list used for filtering the destination addresses in routing information.

routing-protocol: Protocol advertising the routing information, including direct, isis, bgp, rip and static at present.

Description

Use the filter-policy export command to configure the rule used by OSPF to filter advertised routing information.

Use the undo filter-policy export command to cancel the filtering rules that have been set.

By default, no filtering of the advertised routing information is performed.

In some cases, it may be required that only the routing information meeting some conditions can be advertised. Then, the filter-policy command can be used to set the filtering conditions for the routing information to be advertised. Only the routing information passing the filtration can be advertised.

This command takes effect on the routes imported by OSPF using the import-route command. If the routing-protocol argument is specified, only the routes imported from this specified protocol are filtered. If the routing-protocol argument is not specified, all imported routes are filtered.

Related command: acl, ip ip-prefix.

Example

# Configure OSPF to advertise only the routing information permitted by acl 2000.

[H3C] acl number 2000

[H3C-acl-basic-2000] rule permit source 11.0.0.0 0.255.255.255

[H3C-acl-basic-2000] rule deny source any

[H3C-ospf-1] filter-policy 2000 export

3.1.29 filter-policy export

Syntax

filter-policy { acl-number | ip-prefix ip-prefix-name } export

undo filter-policy { acl-number | ip-prefix ip-prefix-name} export

View

OSPF area view

Parameter

acl-number: Specifies the number of the basic or advanced ACL used for filtering Type-3 LSAs.

ip-prefix-name: Specifies the name of the address prefix list used for filtering Type-3 LSAs.

Description

Use the filter-policy export command to set the filter condition for the Type-3 LSAs advertised from an OSPF area.

Use the undo filter-policy export command to cancel the set filter condition.

By default, no advertised Type-3 LSA is filtered.

In some situations, it may be required that only some Type-3 LSAs meeting a certain condition be advertised. In this case, you can define a Filter-policy to set the filter condition for advertised Type-3 LSAs so that only the Type-3 LSAs having passed the filtration can be advertised.

Use the filter-policy export command to filter the Type-3 LSAs generated locally in an OSPF area so that only those Type-3 LSAs having passed the filtration can be added into the link state database of the other areas. The filtration is implemented according to the link state ID of the Type-3 LSAs.

Related command: acl, ip ip-prefix.

Example

# Configure the filter condition so that the OSPF backbone area advertises only those Type-3 LSAs having passed ACL 2000.

[H3C] acl number 2000

[H3C-acl-basic-2000] rule permit source 11.0.0.0 0.255.255.255

[H3C-acl-basic-2000] rule deny source any

[H3C-ospf-1-area-0.0.0.1] filter-policy 2000 export

3.1.30 filter-policy import

Syntax

filter-policy { acl-number | ip-prefix ip-prefix-name | gateway ip-prefix-name } import

undo filter-policy { acl-number | ip-prefix ip-prefix-name | gateway ip-prefix-name } import

View

OSPF view

Parameter

acl-number: Number of a basic or advanced access control list used for filtering the destination addresses of the routing information.

ip-prefix-name: Name of the address prefix list used for filtering the destination addresses of the routing information.

gateway ip-prefix-name: Name of the address prefix list used for filtering the addresses of the neighboring routers advertising the routing information.

Description

Use the filter-policy import command to configure the OSPF rules of filtering the routing information received.

Use the undo filter-policy import command to cancel the filtering of the routing information received.

By default, no filtering of the received routing information is performed.

In some cases, it may be required that only the routing information meeting some conditions can be received. Then, the filter-policy command can be used to set the filtering conditions for the routing information to be received. Only the routing information passing the filtration can be received.

The filter-policy import command is used to filter the routes calculated by OSPF. Only the routes that pass the filter are added into the routing table. The command can filter the routes by next hop or by destination address.

Because OSPF is a link state-based dynamic routing protocol, its routing information is hidden in LSAs. OSPF, however, cannot filter advertised and received LSAs. Compared with the case with vector-based routing protocols, the use of this command is rather limited with OSPF.

Example

# Filter the received routing information according to the rule defined by the access control list 2000.

[H3C] acl number 2000

[H3C-acl-basic-2000] rule permit source 20.0.0.0 0.255.255.255

[H3C-acl-basic-2000] rule deny source any

[H3C-ospf-1] filter-policy 2000 import

3.1.31 filter-policy import

Syntax

filter-policy { acl-number | ip-prefix ip-prefix-name } import

undo filter-policy { acl-number | ip-prefix ip-prefix-name } import

View

OSPF area view

Parameter

acl-number: Specifies the number of the basic or advanced ACL used for filtering Type-3 LSAs.

ip-prefix-name: Specifies the name of the address prefix list used for filtering Type-3 LSAs.

Description

Use the filter-policy import command to set the filter condition for the Type-3 LSAs received by an OSPF area.

Use the undo filter-policy import command to cancel the set filter condition.

By default, no received Type-3 LSA is filtered.

In some situations, it may be required that only some Type-3 LSAs meeting a certain condition be received. In this case, you can define a Filter-policy to set the filter condition for received Type-3 LSAs so that only the Type-3 LSAs having passed the filtration can be received.

Use the filter-policy import command to filter the Type-3 LSAs generated locally in an OSPF area so that only those Type-3 LSAs having passed the filtration can be added into the link state database of the other areas. The filtration is implemented according to the link state ID of the Type-3 LSAs.

Related command: acl, ip ip-prefix.

Example

# Filter the received routing information as per the condition defined in ACL 2000.

[H3C] acl number 2000

[H3C-acl-basic-2000] rule permit source 20.0.0.0 0.255.255.255

[H3C-acl-basic-2000] rule deny source any

[H3C-acl-basic-2000] quit

[H3C] ospf 1

[H3C-ospf-1]area 1

[H3C-ospf-1-area-0.0.0.1] filter-policy 2000 import

3.1.32 import-route

Syntax

import-route protocol [ cost value | type value | tag value | route-policy route-policy-name ]*

undo import-route protocol

View

OSPF view

Parameter

protocol: Specifies the source routing protocol that can be imported. At present, it includes direct, rip, isis, bgp, ospf-ase, ospf-nssa and static.

cost value: Specifies the cost of imported route.

type value: Specifies the cost type of imported external routes. The value ranges from 1 to 2.

tag value: Specifies the value of tag for imported external routes.

route-policy route-policy-name: Configures only to import the routes matching the specified Route-policy.

Description

Use the import-route command to import routes from another routing protocol. Use the undo import-route command to disable OSPF to import routes from the specified routing protocol.

By default, the routing information of other protocols is not imported.

& Note:

You are recommended to configure the route type, cost and tag together in one command. Otherwise, the new configuration overwrites the old one.

Example

# Specify an imported RIP route as the route of type 2, with the route tag as 33 and the route cost as 50.

[H3C-ospf-1] import-route rip type 2 tag 33 cost 50

3.1.33 import-route-limit

Syntax

import-route-limit num

undo import-route-limit

View

OSPF view

Parameter

num: Specifies the maximum number of exterior routes allowed to be imported.

Description

Use the import-route-limit command to set the maximum number of exterior routes allowed to be imported.

Use the undo import-route command to restore the default value of the maximum of exterior routes allowed to be imported.

By default, a maximum of 20K exterior routes are allowed to be imported.

Example

# Set the maximum number of exterior routes allowed to be imported to 50K.

[H3C-ospf-1] import-route-limit 50000

3.1.34 network

Syntax

network ip-address ip-mask

undo network ip-address ip-mask

View

OSPF Area view

Parameter

ip-address: Address of the network segment where the interface resides.

ip-mask: IP address wildcard (similar to the complement of the IP address mask), which also supports IP address mask input.

Description

Use the network command to configure the interfaces running OSPF.

Use the undo network command to cancel the interfaces running OSPF.

By default, interfaces do not belong to any OSPF area.

With the two parameters, ip-address and ip-mask, one or more interfaces can be configured as an area. To run the OSPF protocol on one interface, the main IP address of this interface must belong to the network segment specified by this command. If only the secondary IP address of the interface is in the range of the network segment specified by this command, this interface will not run OSPF.

Related command: ospf.

Example

# Specify the interfaces whose main IP addresses are in the segment range of 10.110.36.0 to run OSPF and specify the number of the OSPF area (where these interfaces are located) as 6.

[H3C-ospf-1] area 6

[H3C-ospf-1-area-0.0.0.6] network 10.110.36.0.0 0.0.0.255

3.1.35 nssa

Syntax

nssa [ default-route-advertise ] [ no-import-route ] [ no-summary ]*

undo nssa

View

OSPF area view

Parameter

default-route-advertise: Imports default route to NSSA area.

no-import-route: Configures not to import route to NSSA area.

no-summary: ABR is disabled to transmit Summary_net LSAs to the NSSA area.

Description

Use the nssa command to configure the type of an OSPF area as a NSSA area.

Use the undo nssa command to cancel the function.

By default, NSSA area is not configured.

For all the routers connected to the NSSA area, the command nssa must be used to configure the area as the NSSA attribute.

The default-route-advertise keyword is used to generate default type-7 LSA. No matter whether there is route 0.0.0.0 in routing table on ABR, type-7 LSA default route will be generated always. Only when there is route 0.0.0.0 in routing table on ASBR, will type-7 LSA default route be generated.

On ASBR, the no-import-route keyword enables the external route imported by OSPF through import-route command not to be advertised to NSSA area.

Example

# Configure area 1 as a NSSA area.

[H3C-ospf-1] area 1

[H3C-ospf-1-area-0.0.0.1] network 36.0.0.0 0.255.255.255

[H3C-ospf-1-area-0.0.0.1] nssa

3.1.36 ospf

Syntax

ospf [ process-id [ router-id router-id | vpn-instance vpn-instance-name] ]

undo ospf [ process-id ]

View

System view

Parameter

process-id: ID of an OSPF process, in the range 1 to 65,535. By default, the process ID is 1. process-id is locally significant.

router-id: Router ID in dotted decimal format for the specified OSPF process.

vpn-instance: Specifies VPN instance parameter.

vpn-instance-name: VPN instance name.

Description

Use the ospf command to enable the OSPF protocol.

Use the undo ospf command to disable the OSPF protocol.

After starting OSPF protocol, the user can make the corresponding configuration in the OSPF protocol view.

By default, the system does not run the OSPF protocol.

Related command: network.

Example

# Enable the running of the OSPF protocol.

[H3C] router id 10.110.1.8

[H3C] ospf

[H3C-ospf-1]

# Enable the running of the OSPF protocol with process ID specified as 120.

[H3C] router id 10.110.1.8

[H3C] ospf 120

[H3C-ospf-120]

# Enable the OSPF process 120, bind the VPN instance and run the OSPF protocol.

[H3C] ospf 120 router id 9.9.9.9 vpn-instance vpn9

[H3C-ospf-120]

3.1.37 ospf authentication-mode

Syntax

ospf authentication-mode { simple password | md5 key-id key }

undo ospf authentication-mode { simple | md5 }

View

Interface view

Parameter

simple password: Enables plain text authentication and specifies a password not exceeding 8 characters.

key-id: ID of the authentication key in MD5 authentication mode in the range from 1 to 255.

key: MD5 authentication key. If it is input in a plain text form, MD5 key is a character string in the range 1 to 16 characters. It will be displayed in a cipher text form in a length of 24 characters when the display current-configuration command is executed. Inputting the MD5 key in a cipher text form with 24 characters is also supported.

Description

Use the ospf authentication-mode command to configure the authentication mode and key between adjacent routers.

Use the undo ospf authentication-mode command to cancel the authentication key that has been set.

By default, the interface does not authenticate OSPF packets.

The passwords for authentication keys of the routers on the same network segment must be identical. In addition, using the authentication-mode command, you can set the authentication type of the area so as to validate the configuration.

Related command: authentication-mode.

Example

# Set the area 1 where the network segment 131.119.0.0 of Interface Vlan-interface 1 is located to support MD5 cipher text authentication. The authentication key identifier is set to 15 and the authentication key is test.

[H3C-ospf-1] area 1

[H3C-ospf-1-area-0.0.0.1] network 131.119.0.0 0.0.255.255

[H3C-ospf-1-area-0.0.0.1] authentication-mode md5

[H3C-Vlan-interface1] ospf authentication-mode md5 15 test

3.1.38 ospf cost

Syntax

ospf cost value

undo ospf cost

View

Interface view

Parameter

value: Cost for running OSPF protocol, ranging from 1 to 65,535.

Description

Use the ospf cost command to configure different message sending costs so as to send messages from different interfaces.

Use the undo ospf cost command to restore the default cost.

For H3C S9500 Series Routing Switches, the default cost for running OSPF protocol on the VLAN interface is 10.

Example

# Specify the cost spent when an interface runs OSPF as 33.

[H3C] interface Vlan-interface 10

[H3C-Vlan-interface10] ospf cost 33

3.1.39 ospf dr-priority

Syntax

ospf dr-priority value

undo ospf dr-priority

View

Interface view

Parameter

value: Interface priority for electing the "designated router", ranging from 0 to 255. The default value is 1.

Description

Use the ospf dr-priority command to configure the priority for electing the "designated router" on an interface.

Use the undo ospf dr-priority command to restore the default value.

The priority of the interface determines the qualification of the interface when the "designated router" is elected. The interface with higher priority will be considered first when vote collision occurs.

Example

# Set the priority of the interface Vlan-interface 10 to 8, when electing the DR.

[H3C] interface Vlan-interface 10

[H3C-Vlan-interface10] ospf dr-priority 8

3.1.40 ospf mib-binding

Syntax

ospf mib-binding process-id

undo ospf mib-binding

View

System view

Parameter

process-id: ID of an OSPF process, in the range 1 to 65,535. If no OSPF process is specified, the default process ID 1 applies.

Description

Use the ospf mib-binding command to bind the MIB operation to the specified OSPF process.

Use the undo ospf mib-binding command to restore the default.

When OSPF protocol enables the first process, it always binds MIB operation to this process. You can use this command to bind MIB operation to another OSPF process. Execute the undo ospf mib-binding command if you want to cancel the setting. OSPF will automatically re-bind MIB operation to the first process that it enables.

By default, MIB operation is bound to the first enabled OSPF process.

Example

# Bind MIB operation to OSPF process 100.

[H3C] ospf mib-binding 100

# Restore the default MIB binding.

[H3C] undo ospf mib-binding

3.1.41 ospf mtu-enable

Syntax

ospf mtu-enable

undo ospf mtu-enable

View

Interface view

Parameter

None

Description

Use the ospf mtu-enable command to enable the interface to write MTU value when sending DD packets.

Use the undo ospf mtu-enable command to restore the default settings.

By default, The MTU value is 0 when the interface sends DD packets, i.e. the actual MTU value of the interface is not written.

Database Description (DD) packets are used to describe its own LSDB when the router running OSPF protocol is synchronizing the database.

The default MTU value of DD packet is 0. With this command, the specified interface can be set manually to write the MTU value area in DD packets when sending DD packets, namely, the actual MTU value of the interface is written in.

Example

# Set interface Vlan-interface 3 to write MTU value field when sending DD packets.

[H3C] interface Vlan-interface 3

[H3C-Vlan-interface3] ospf mtu-enable

3.1.42 ospf network-type

Syntax

ospf network-type { broadcast | nbma | p2mp | p2p }

undo ospf network-type

View

Interface view

Parameter

broadcast: Changes the interface network type to broadcast.

nbma: Changes the interface network type to NBMA.

p2mp: Changes the interface network type to p2mp.

p2p: Changes the interface network type to point-to-point.

Description

Use the ospf network-type command to configure the network type of OSPF interface. Use the undo ospf network-type command to restore the default network type of the OSPF interface.

OSPF divides networks into four types by link layer protocol:

l Broadcast: If Ethernet or FDDI is adopted, OSPF defaults the network type to broadcast.

l Non-Broadcast Muli-access (nbma): If Frame Relay, ATM, HDLC or X.25 is adopted, OSPF defaults the network type to NBMA.

l Point-to-Multipoint (p2mp): OSPF will not default the network type of any link layer protocol to p2mp. The general undertaking is to change a partially connected NBMA network to p2mp network if the NBMA network is not fully-meshed.

l Point-to-point (p2p): If PPP, LAPB or POS is adopted, OSPF defaults the network type to p2p.

Change the interface type to NBMA if the router does not support multicast addresses on the broadcast network. You can also change the interface type NBMA to broadcast.

A non-broadcast network with the multi-access capability is considered an NBMA network only when it is fully meshed, meaning any two routers on it have a direct virtual circuit between them. If the network is not fully meshed, you must change the network type of the interface connected to it to p2mp. This allows two routers that are not directly reachable to exchange routing information through a router that is directly reachable for both of them.

Change the interface type to p2p if the router has only one peer on the NBMA network.

Note: When the network type of an interface is NBMA or it is changed to NBMA manually, the peer command must be used to configure the neighboring point.

Related command: ospf dr-priority.

Example

# Set the interface Vlan-interface 10 to NBMA type.

[H3C] interface Vlan-interface 10

[H3C-Vlan-interface10] ospf network-type nbma

3.1.43 ospf timer dead

Syntax

ospf timer dead { seconds | minimal multi-hello packets }

undo ospf timer dead [ minimal multi-hello ]

View

Interface view

Parameter

seconds: Dead interval of the OSPF neighbor. It is in seconds and ranges from 1 to 65,535.

minimal: Specifies the port to run Fast Hello function.

multi-hello: Sends multiple hello packets.

packets: Number of Hello packets sent within one second.

Description

Use the ospf timer dead command to configure the dead interval of the OSPF peer. Use the undo ospf timer dead command to restore the default value of the dead interval of the peer.

By default, the dead interval for the OSPF peers of p2p and broadcast interfaces are 40 seconds, and that for those of p2mp and nbma interfaces is 120 seconds.

The dead of OSPF peers means that within this interval, if no Hello packet is received from the peer, the peer will be considered to be invalid. The value of dead seconds should be at least four times that of the Hello seconds. The dead seconds for the routers on the same network segment must be identical.

Related command: ospf timer hello.

Use the ospf timer dead minimal multi-hello packets command to set Fast Hello function on the port. The fixed dead interval is 1. The packets argument is the specified number of sent Hello packets.

Example

# Set the peer dead timer on the interface Vlan-interface 10 to 80 seconds.

[H3C] interface Vlan-interface 10

[H3C-Vlan-interface10] ospf timer dead 80

# Configure the number of Hello packets sent on the port Vlan-interface 10 within three seconds.

[H3C] interface Vlan-interface 10

[H3C-Vlan-interface10] ospf timer dead minimal multi-hello 3

3.1.44 ospf timer hello

Syntax

ospf timer hello seconds

undo ospf timer hello

View

Interface view

Parameter

seconds: Interval in seconds for an interface to transmit hello packet. It ranges from 1 to 255.

Description

Use the ospf timer hello command to configure the interval for transmitting Hello packets on an interface.

Use the undo ospf timer hello command to restore the interval to the default value.

By default, the interval is 10 seconds for an interface of p2p or broadcast type to transmit Hello packets, and 30 seconds for an interface of nbma or p2mp type.

Related command: ospf timer dead.

Example

# Configure the interval for transmitting Hello packets on the interface Vlan-interface 10 to 20 seconds.

[H3C] interface Vlan-interface 10

[H3C-Vlan-interface10] ospf timer hello 20

3.1.45 ospf timer poll

Syntax

ospf timer poll seconds

undo ospf timer poll

View

Interface view

Parameter

seconds: Specifies the poll Hello interval, ranging from 1 to 65,535 and measured in seconds. The default value is 120 seconds.

Description

Use the ospf timer poll command to configure the poll Hello packet interval on an NBMA or p2mp network.

Use the undo ospf timer poll command to restore the default poll interval.

On an NBMA or p2mp network, if a neighbor is invalid, the Hello packet will be transmitted regularly according to the poll seconds. You can configure the poll seconds to specify how often the interface transmits Hello packet before it establishes adjacency with the adjacent router. Poll seconds should be no less than three times of Hello.

Example

# Configure to transmit poll Hello packets from interface Vlan-interface 20 every 130 seconds.

[H3C-Vlan-interface20] ospf timer poll 130

3.1.46 ospf timer retransmit

Syntax

ospf timer retransmit interval

undo ospf timer retransmit

View

Interface view

Parameter

interval: Interval in seconds for re-transmitting LSA on an interface. It ranges from 1 to 65,535. The default value is 5 seconds.

Description

Use the ospf timer retransmit command to configure the interval for LSA re-transmitting on an interface.

Use the undo ospf timer retransmit command to restore the default interval value for LSA re-transmitting on the interface.

If a router running OSPF transmits a "link state advertisement" (LSA) to the peer, it needs to wait for the acknowledgement packet from the peer. If no acknowledgement is received from the peer within the LSA retransmit, this LSA will be re-transmitted. This command can change the interval of re-transmitting LSA. However, according to RFC2328, the LSA retransmit between adjacent routers should not be set too short. Otherwise, unexpected re-transmission will be caused.

Example

# Specify the retransmit for LSA transmitting between the interface Vlan-interface 10 and the adjacent routers to 12 seconds.

[H3C] interface Vlan-interface 10

[H3C-Vlan-interface10] ospf timer retransmit 12

3.1.47 ospf trans-delay

Syntax

ospf trans-delay seconds

undo ospf trans-delay

View

Interface view

Parameter

seconds: Transmitting delay of LSA on an interface. It ranges from 1 to 3600. By default, the value is 1 second.

Description

Use the ospf trans-delay command to configure the LSA transmitting delay on an interface.

Use the undo ospf trans-delay command to restore the default value of the LSA transmitting delay on an interface.

LSA will age in the "link state database" (LSDB) of the router as time goes by (add 1 for every second), but it will not age during network transmission. Therefore, it is necessary to add a period of time set by this command to the aging time of LSA before transmitting it.

Example

# Specify the trans-delay of transmitting LSA on the interface Vlan-interface 10 as 3 seconds.

[H3C] interface Vlan-interface 10

[H3C-Vlan-interface10] ospf trans-delay 3

3.1.48 preference

Syntax

preference [ ase ] value

undo preference [ ase ]

View

OSPF view

Parameter

value: OSPF protocol route preference, ranging from 1 to 255.

ase: Indicates the preference of an imported external route of the AS.

Description

Use the preference command to configure the preference of an OSPF protocol route. Use the undo preference command to restore the default value of the OSPF protocol route.

By default, the preference of an OSPF protocol internal route is 10 and the preference of an external route is 150.

Because multiple dynamic routing protocols could be running on a router, there is the problem of routing information sharing among routing protocols and selection. Therefore, a default preference is specified for each routing protocol. When a route is identified by different protocols, the protocol with a high preference will play a decisive role.

Example

# Specify the preference of an imported external route of the AS as 160.

[H3C-ospf-1] preference ase 160

3.1.49 reset ospf

Syntax

reset ospf [ statistics ] { all | process-id }

View

User view

Parameter

statistics: Resets OSPF statistics.

all: Resets all OSPF processes.

process-id: ID of an OSPF process. If no OSPF process is specified, all OSPF processes are reset.

Description

Use the reset ospf all command to reset all OSPF processes.

Use the reset ospf process-id command to reset the corresponding OSPF process.

The following are the benefits of the reset ospf all command:

l Clear invalid LSA immediately without waiting for LSA timeout.

l If the Router ID changes, a new Router ID will take effect by executing the command.

l Re-elect DR and BDR conveniently.

l OSPF configuration before the restart will not lose.

The system will require the user to confirm whether to re-enable the OSPF protocol after execution of the command.

Example

# Reset all the OSPF processes.

<H3C> reset ospf all

# Reset OSPF process 200.

<H3C> reset ospf 200

3.1.50 router id

Syntax

router id router-id

undo router id

View

System view

Parameter

router-id: Router ID that is a 32-bit unsigned integer.

Description

Use the router id command to configure the ID of a router running the OSPF protocol. Use the undo router id command to cancel the router ID that has been set.

By default, if LoopBack interface addresses exist, the system chooses the LoopBack address with the greatest IP address value as the router ID; if no LoopBack interface is configured, then the address of the physical interface with the greatest IP address value will be the router ID.

Router ID is a 32-bit unsigned integer that uniquely identifies a router in an OSPF autonomous system. The user can specify the ID for a router. If the user doesn’t specify router ID, the router will automatically select one from configured IP address as the ID of this router. If no IP address is configured for any interface of the router, the router ID must be configured in OSPF view. Otherwise, OSPF protocol cannot be enabled.

When the router ID is configured manually, the IDs of any two routers cannot be same in the autonomous system. So, the IP address of certain interface might as well be selected as the ID of this router.

& Note:

The modified router ID will not be valid unless OSPF is re-enabled.

Related command: ospf.

Example

# Set the router ID to 10.1.1.3.

[H3C] router id 10.1.1.3

3.1.51 silent-interface

Syntax

silent-interface { default | Vlan-interface Vlan-interface-number }

undo silent-interface { default | Vlan-interface Vlan-interface-number }

View

OSPF view

Parameter

Vlan-interface: Specifies the VLAN interface

Vlan-interface-number: Specifies the VALAN interface number.

default: All interfaces.

Description

Use the silent-interface command to disable an interface to transmit OSPF packets. Use the undo silent-interface command to restore the default setting.

By default, the interface is enabled to transmit OSPF packets.

You can use this command to disable an interface to transmit OSPF packets, so as to prevent the router on some network from receiving the OSPF routing information. On a switch, this command can disable/enable a VLAN interface to send OSPF packets.

Example

# Disable interface Vlan-interface 20 to transmit OSPF packets.

[H3C-ospf-1] silent-interface Vlan-interface 20

# Disable all ports form sending OSPF packets.

[H3C-ospf-1] silent-interface default

3.1.52 sham-link

Syntax

sham-link source-ip destination-ip dead minimal multi-hello packets

undo sham-link source-ip destination-ip

View

OSPF area view

Parameter

sham-link: Sham-link link.

source-ip: Source IP address.

destination-ip: Destination IP address.

dead: Dead interval time.

minimal: Sends multiple Hello packets within 1 second. The fixed dead interval is 1 second.

multi-hello: Sends multiple Hello packets.

packets: Number of sent Hello packets, in the range of 3 to 10.

Description

Use the sham-link command to run Fast Hello function on the sham-link link, that is, to specify multiple Fast Hello packets to be sent within one second. The default dead interval time is one second.

Example

# Specify the sham-link link 1.1.1.1 2.2.2.2 to run Fast Hello Function. The dead interval time is one second. Five Hello packets are sent within one second.

[H3C-ospf-1] area 0.0.0.0

[H3C-ospf-1-area-0.0.0.0] sham-link 1.1.1.1 2.2.2.2 dead minimal multi-hello 5

3.1.53 snmp-agent trap enable ospf

Syntax

View

System view

Parameter

process-id: ID of an OSPF process. The command is applied to all current OSPF processes if you do not specify a process ID.

ifstatechange, virifstatechange, nbrstatechange, virnbrstatechange, ifcfgerror, virifcfgerror, ifauthfail, virifauthfail, ifrxbadpkt, virifrxbadpkt, iftxretransmit, viriftxretransmit, originatelsa, maxagelsa, lsdboverflow, lsdbapproachoverflow: Types of TRAP packets that the switch produces in case of OSPF anomalies.

Description

Use the snmp-agent trap enable ospf command to enable the OSPF TRAP function. Use the undo snmp-agent trap enable ospf command to disable the OSPF TRAP function.

This command cannot be applied to the OSPF processes that are started after the command is executed.

By default, the switch does not send TRAP packets in case of OSPF anomalies.

For detailed configuration of SNMP TRAP, refer to the module “System Management" in this manual.

Example

# Enable the TRAP function for OSPF process 100.

[H3C] snmp-agent trap enable ospf 100

3.1.54 spf-schedule-interval

Syntax

spf-schedule-interval interval

undo spf-schedule-interval

View

OSPF view

Parameter

interval: SPF calculation interval of OSPF, which is in the range of 1 to 10 and is measured in seconds. The default value is five seconds.

Description

Use the spf-schedule-interval command to configure the route calculation interval of OSPF.

Use the undo spf-schedule-interval command to restore the default setting.

According to the Link State Database (LSDB), the router running OSPF can calculate the shortest path tree taking itself as the root and determine the next hop to the destination network according to the shortest path tree. By adjusting SPF calculation interval, frequent network change can be restrained, which may lead to excessive bandwidth and router resource consumption.

Example

# Set the OSPF route calculation interval of H3C to six seconds.

[H3C-ospf-1] spf-schedule-interval 6

3.1.55 stub

Syntax

stub [ no-summary ]

undo stub

View

OSPF area view

Parameter

no-summary: ABR is disabled to transmit Summary LSAs to the Stub area.

Description

Use the stub command to configure an OSPF area as Stub area.

Use the undo stub command to cancel the settings.

By default, no area is set to be a Stub area.

If the router is an ABR, it will send a default route to the connected Stub area. Using the default-cost command, you can configure the default route cost value.

In addition, on an ABR, you can configure the no-summary argument in the stub command to prevent type-3 LSAs from entering the Stub area connected to this ABR.

Related command: default-cost.

Example

# Set the type of OSPF area 1 to the Stub area.

[H3C-ospf-1] area 1

[H3C-ospf-1-area-0.0.0.1] stub

3.1.56 vlink-peer

Syntax

vlink-peer router-id [ dead { seconds | minimal multi-hello packets } | retransmit seconds | trans-delay seconds | hello seconds | simple password | md5 keyid key ]*

undo vlink-peer router-id

View

OSPF area view

Parameter

route-id: Router ID of virtual link peer.

dead seconds: Specifies the interval of dead timer. It ranges from 1 to 8192 seconds. This value must equal the dead seconds of the router virtually linked to it and must be at least four times of hello seconds. The default value is 40 seconds.

dead minimal multi-hello packets: Specifies the virtual link to run Fast Hello function. The default dead is 1 second. The packets argument refers to the number of Hello packets sent within 1 second, in the range of 3 to 10.

retransmit seconds: Specifies the interval for re-transmitting the LSA packets on an interface. It ranges from 1 to 8192 seconds. The default value is 5 seconds.

trans-delay seconds: Specifies the interval for delaying transmitting LSA packets on an interface. It ranges from 1 to 8192 seconds. By default, the value is 1 second.

hello seconds: Specifies the interval for sending Hello packets on an interface. It ranges from 1 to 8,192 (in seconds). This value must equal the hello seconds value of the router virtually linked to the interface. By default, the value is 10 seconds.

simple password: Specifies the simple text authentication password, not exceeding 8 characters, of the interface. This value must equal the authentication key of the virtually linked peer.

keyid: Specifies the MD5 authentication key ID. Its value ranges from 1 to 255. It must be equal to the authentication key ID of the virtually linked peer.

key: Specifies the MD5 authentication key. If it is input in a plain text form, MD5 key is a character string in the range 1 to 16 characters. It will be displayed in a cipher text form in a length of 24 characters when the display current-configuration command is executed. Inputting the MD5 key in a cipher text form with 24 characters is also supported.

Description

Use the vlink-peer command to create and configure a virtual link.

Use the undo vlink-peer command to cancel an existing virtual link.

According to RFC2328, the OSPF area should be connected with the backbone network. You can use the vlink-peer command to keep the connectivity. Virtual link can be regarded as a common OSPF-enabled interface so that you can easily understand why to configure the parameters such as Hello, retransmit, and trans-delay on it.

One thing should be mentioned. When configuring virtual link authentication, the authentication-mode command is used to set the authentication mode as MD5 cipher text or simple text on the backbone network.

Related command: authentication-mode, display ospf.

Example

# Create a virtual link to 10.110.0.3 and use the MD5 cipher authentication mode.

[H3C-ospf-1] area 10.0.0.0

[H3C-ospf-1-area-10.0.0.0] vlink-peer 10.110.0.3 md5 3 345

# Specify this virtual link to run Fast Hello function and send five Hello packets.

[H3C-ospf-1-area-10.0.0.0] vlink-peer 10.110.0.3 dead minimal multi-hello 5

Chapter 4 Integrated IS-IS Configuration Commands

& Note:

For the configuration of VPN instance, refer to the MPLS module in H3C S9500 Series Routing Switches Operation Manual.

4.1 Integrated IS-IS Configuration Commands

4.1.1 area-authentication-mode

Syntax

area-authentication-mode { simple | md5 } password [ ip | osi ]

undo area-authentication-mode { simple | md5 } [ ip | osi ]

View

IS-IS view

Parameter

simple: Configures to transmit the password in simple text.

md5: Configures to transmit the password encrypted with MD5 algorithm.

password: Configures a password. If simple authentication is used, the password must be a simple-text password. If MD5 authentication is used, the password can be a simple-text or a cipher-text password. A simple-text password can be a character string with no more than 16 characters, for example,H3C918. Note that the simple-text password defined for MD5 authentication is displayed in cipher text. A cipher-text password must have 24 characters in cipher text, for example, (TT8F]Y\5SQ=^Q`MAF4<1!!.

ip: If this argument is configured, the system checks the corresponding IP field in LSP.

osi: If this argument is configured, the system checks the corresponding OSI field in LSP.

The configuration of ip or osi authentication password is independent of the real network environment.

Description

Use the area-authentication-mode command to configure ISIS to authenticate the received Level-1 routing information packets (LSP, CSNP and PSNP), according to the pre-defined mode and password.

Use the undo area-authentication-mode command to configure ISIS not to authenticate the said packets.

In default configuration, the system will not authenticate the received Level-1 routing packets, and there is no password. As the result of this command, no Level-1 routing packets whose area authentication passwords are not consistent with the one set via this command will be received. At the same time, this command will let ISIS insert the area authentication password into all the level-1 routing packets sent by this node, in a certain mode.

Related command: reset isis all, domain-authentication-mode, isis authentication-mode.

Example

# Set the area authentication password as “hello” and the authentication type as simple.

[H3C] isis

[H3C-isis] area-authentication-mode simple hello

4.1.2 cost-style

Syntax

cost-style { narrow | wide | wide-compatible | { compatible | narrow-compatible } [ relax-spf-limit ] }

undo cost-style

View

IS-IS view

Parameter

narrow: Only receives/sends packets whose cost type is narrow

wide: Only receives/sends packets whose cost type is wide.

compatible: Receives/sends packets whose cost type is narrow or wide.

narrow-compatible: Receives packets whose cost type is narrow or wide, but only sends packets whose cost type is narrow

wide-compatible: Receives packets whose cost type is narrow or wide, but only sends packets whose cost type is wide.

relax-spf-metric: Permits to receive routes whose cost value is larger than 1024. If it is not set, routes whose metrics values are larger than 1024 will be discarded. This setting is only valid for compatible, narrow-compatible and wide-compatible.

Description

Use the cost-style command to set the cost type of an IS-IS packet received/sent by the router.

Use the undo cost-style command to restore the default settings.

By default, IS-IS only receives/sends packets whose cost type is narrow.

Related command: isis cost.

Example

# Set IS-IS to receive packets whose cost type is narrow or wide, but only send packets whose cost type is narrow.

[H3C] isis

[H3C-isis] cost-style narrow-compatible

4.1.3 debugging isis

Syntax

debugging isis { adjacency | all | authentication-error | checksum-error | circuit-information | configuration-error | datalink-receiving-packet | datalink-sending-packet | general-error | interface-information | memory-allocating | receiving-packet-content | restart-events | self-originate-update | sending-packet-content | snp-packet | spf-event | spf-summary | spf-timer | task-error | timer | update-packet }

undo debugging isis { adjacency | all | authentication-error | checksum-error | circuit-information | configuration-error | datalink-receiving-packet | datalink-sending-packet | general-error | interface-information | memory-allocating | receiving-packet-content | restart-events | self-originate-update | sending-packet-content | snp-packet | spf-event | spf-summary | spf-timer | task-error | timer | update-packet }

View

User view

Parameter

adjacency: IS-IS adjacency related packets.

all: All IS-IS related debugging information.

authentication-error: IS-IS authentication errors.

checksum-error: IS-IS checksum errors.

circuit-information: Information about IS-IS enabled interface.

configuration-error: IS-IS configuration errors.

datalink-receiving-packet: Data link layer's packets-receiving status.

datalink-sending-packet: Data link layer's packets-sending status.

general-error: IS-IS error information.

interface-information: Information about IS-IS enabled data link layer.

memory-allocating: IS-IS memory allocating status.

receiving-packet-content: Packets received through IS-IS protocol.

restart-events: IS-IS restart evetns.

self-originate-update: Packets locally updated through IS-IS protocol.

sending-packet-content: Packets sent through IS-IS protocol.

snp-packet: CSNP/PSNP packet of IS-IS.

spf-event: IS-IS SPF events.

spf-summary: Statistics about IS-IS performing SPF calculation.

spf-timer: IS-IS SPF trigger events.

task-error: IS-IS events status.

timer: IS-IS timer.

update-packet: Updated packets through IS-IS protocol.

Description

Use the debugging isis command to enable IS-IS debugging.

Use the undo debugging isis command to disable the function.

Example

# Enable all the information debugging of IS-IS.

<H3C> debugging isis all

4.1.4 default-route-advertise

Syntax

default-route-advertise [ route-policy route-policy-name ]

undo default-route-advertise [ route-policy route-policy-name ]

View

IS-IS view

Parameter

route-policy-name: Name of a route-policy.

Description

Use the default-route-advertise command to create the default route of L1, L2 router. Use the undo default-route-advertise command to cancel this configuration.

By default, this command uses the L2 router to create the default route. There is another mechanism for L1 routers. Namely, the system discovers the default route by searching the nearest L1/L2 router. The nearest L1/L2 router can be found by searching the ATT bit in the L1 LSP.

This command can be set on L1 router or L2 router. By default, the route is generated on L2 LSP. If the apply isis level-1 command is executed in route-policy view, the default route will be generated on L1 LSP. If the apply isis level-2 command is executed in Route-policy view, the default route will be generated on L2 LSP. If the apply isis level-1-2 command is executed in route-policy view, the default route will be generated on both L1 LSP and L2 LSP.

Example

# Set the router to create the default route in the LSP of correspond level.

[H3C-isis] default-route-advertise

4.1.5 display isis interface

Syntax

display isis interface [ verbose ]

View

Any view

Parameter

verbose: If this parameter is used, the details of the interface will be displayed.

Description

Use the display isis interface command to view the information of the enabled IS-IS interface.

This command displays the information of the enabled IS-IS interface, including interface name, IP address of the interface, link state of the interface and so on. Besides displaying all the information shown by the display isis interface command, the display isis interface verbose command displays such information about the IS-IS parameters of the interface as CSNP packet broadcast interval, Hello packet broadcast interval and invalid number of Hello packet.

Example

# Display the information about the enabled IS-IS interface.

<H3C> display isis interface

Interface IP Address Id Link.Sta IP.Sta MTU Type DIS

Vlan-interface1 172.16.1.2 001 Up Up 1497 L1 Yes

# Display the details of the IS-IS enabled interface.

<H3C> display isis interface verbose

Interface IP Address Id Link.Sta IP.Sta MTU Type DIS

Vlan-interface1 172.16.1.2 001 Up Up 1497 L1 Yes

Secondary IP Address :

SNPA Address : 00e0.fc44.5f71

Csnp Interval : L1 10 L2 10

Hello Interval : L1 10 L2 10

Hold Time : L1 30 L2 30

Lsp Interval : 33

Cost : L1 10 L2 10

Priority : L1 64 L2 64

Retransmission interval : 5

4.1.6 display isis lsdb

Syntax

View

Any view

Parameter

l1 and Level-1: Both refer to the link state database of Level-1.

l2 and level-2: Both refer to the link state database of Level-2.

LSPID: Specifies the LSPID of the Network-entity-title.

local: Displays the LSP information generated locally.

verbose: Configures to display the verbose information of the link state database.

Description

Use the display isis lsdb command to view the link state database of the IS-IS.

Example

# Display the information of an LSP.

<H3C> display isis lsdb 0050.0500.5005.00-00

IS-IS Level-1 Link State Database

Lsp ID Sequence Holdtime A_P_O Checksum

>0050.0500.5005.00-00 0x00000328 780 0_0_0 0xf211

4.1.7 display isis mesh-group

Syntax

display isis mesh-group

View

Any view

Parameter

None

Description

Use the display isis mesh-group command to view the IS-IS mesh group.

This command is used for displaying the configurations of the mesh-group of the current router interface.

Example

# Add Interface Vlan-interface 10 and Interface Vlan-interface 20 running IS-IS into mesh group 100.

[H3C-Vlan-interface10] isis mesh-group 100

[H3C] interface Vlan-interface 20

[H3C-Vlan-interface20] isis mesh-group 100

# Display the information of IS-IS mesh-group.

[H3C-Vlan-interface20] display isis mesh-group

Interface Mesh-group/Blocked

Vlan-interface 10 100

Vlan-interface 20 100

4.1.8 display isis peer

Syntax

display isis peer [ verbose ]

View

Any view

Parameter

verbose: When this parameter is configured, the area address carried in the Hello packet from the neighbor will be displayed. Otherwise, only the universal information will be displayed.

Description

Use the display isis peer command to view IS-IS peer information.

The display isis peer verbose command yields not only all the outputs of the display isis peer command, but also the area address, Uptime and IP address of the directly connected interface of the peer.

Example

# Display detailed information about IS-IS neighbors.

<H3C> display isis peer verbose

System ID Interface Circuit ID State HoldTime Type Pri

0002.0000.0000 Vlan-interface251 0002.0000.0000.0a Up 6s L1 64

Area Address: 00.0001

IP Address: 192.3.1.3 192.4.1.3 192.5.1.3 192.6.1.3 192.7.1.3 192.8.1.3

192.9.1.3 192.10.1.3 192.11.1.3

Period: 22:27:42

System ID Interface Circuit ID State HoldTime Type Pri

0003.0000.0000 Vlan-interface251 0002.0000.0000.0a Up 22s L1 64

Area Address: 00.0001

IP Address: 192.3.1.2

Period: 22:31:18

# View IS-IS peer Information.

<H3C> display isis peer

System ID Interface Circuit ID State HoldTime Type Pri

0002.0000.0000 Vlan-interface251 0002.0000.0000.0a Up 6s L1 64

0003.0000.0000 Vlan-interface251 0002.0000.0000.0a Up 22s L1 64

4.1.9 display isis route

Syntax

display isis route

View

Any view

Parameter

None

Description

Use the display isis route command to view IS-IS routing information. .

Example

# View IS-IS routing information.

<H3C> display isis route

ISIS Level - 1 Forwarding Table :

Type - D -Direct, C -Connected, I -ISIS, S -Static, O -OSPF

B -BGP, R -RIP

Flags: R-Added to RM, L-Advertised in LSPs, U-Up/Down Bit Set

Destination/Mask In.Met Ex.Met NextHop Interface Flags

--------------------------------------------------------------------------

I 3.3.3.0/24 20 7.7.7.7 Vlan-interface1000 R/-/-

6.6.6.6 Vlan-interface1001

I 0.0.0.0/0 10 7.7.7.7 Vlan-interface1000 R/-/-

6.6.6.6 Vlan-interface1001

D 7.7.7.0/25 10 Direct Vlan-interface1000 R/L/-

D 6.6.6.0/24 10 Direct Vlan-interface1001 R/L/-

I 10.1.1.0/24 10 7.7.7.7 Vlan-interface1000 R/-/-

6.6.6.6 Vlan-interface1001

4.1.10 display isis spf-log

Syntax

display isis spf-log

View

Any view

Parameter

None

Description

Use the display isis spf-log command to view the SPF calculation log information of the IS-IS. .

Example

# View the SPF calculation log of IS-IS.

<H3C> display isis spf-log

Details of Level 1 SPF Run:

-------------------------------------------------------------------------

Trig.Event No.Of Nodes Duration(ms) StartTime

IS_SPFTRIG_LSPCHANGE 2 19 1:12:1

IS_SPFTRIG_LSPCHANGE 2 19 1:11:58

IS_SPFTRIG_LSPCHANGE 2 18 1:11:53

IS_SPFTRIG_CIRC_DOWN 2 19 1:11:46

IS_SPFTRIG_NEWADJ 2 20 1:11:39

IS_SPFTRIG_LSPCHANGE 2 19 1:11:35

IS_SPFTRIG_PERIODIC 3 18 1:3:25

IS_SPFTRIG_LSPCHANGE 2 22 0:55:51

IS_SPFTRIG_LSPCHANGE 2 18 0:55:46

IS_SPFTRIG_ADJDOWN 2 19 0:55:23

IS_SPFTRIG_NEWADJ 2 18 0:54:16

IS_SPFTRIG_LSPCHANGE 2 20 0:54:12

IS_SPFTRIG_LSPCHANGE 3 19 0:54:7

IS_SPFTRIG_PERIODIC 3 21 0:48:25

IS_SPFTRIG_LSPEXPIRED 3 19 0:34:10

IS_SPFTRIG_PERIODIC 3 19 0:33:25

IS_SPFTRIG_PERIODIC 3 18 0:18:25

IS_SPFTRIG_LSPCHANGE 3 19 0:13:26

IS_SPFTRIG_PERIODIC 3 19 0:3:25

IS_SPFTRIG_LSPCHANGE 2 19 1:12:7

4.1.11 domain-authentication-mode

Syntax

domain-authentication-mode { simple | md5 } password [ ip | osi ]

undo domain-authentication-mode { simple | md5 } [ ip | osi ]

View

IS-IS view

Parameter

simple: Configures to transmit the password in plain text.

md5: Configures to transmit the password encrypted with MD5 algorithm.

password: Configures a password. If simple authentication is used, the password must be a simple-text password. If MD5 authentication is used, the password can be a simple-text or a cipher-text password. A simple-text password can be a character string with no more than 16 characters, for example, test918. Note that the simple-text password defined for MD5 authentication is displayed in cipher text. A cipher-text password must have 24 characters in cipher text, for example, (TT8F]Y\5SQ=^Q`MAF4<1!!.

password: Specifies the authentication password which can be a character string with 1 to 16 characters. If md5 is specified, the password will be displayed in a cipher text form with 24 characters when the display current-configuration command is executed. Inputting password in a cipher text form with 24 characters is also supported.

ip: If this item is configured, the system checks the configuration of the corresponded field of the IP in LSP.

osi: If this item is configured, the system checks the configuration of the corresponded field of the OSI in LSP.

The configuration of ip or osi is independent of the real network environment.

Description

Use the domain-authentication-mode command to configure the IS-IS routing domain to authenticate the received Level-2 routing packets (LSP, CSNP, PSNP), according to the pre-defined mode and password.

Use the undo domain-authentication-mode command to configure IS-IS not to authenticate the said packets.

By default, the system will not authenticate the received level-2 routing packets, and there is no password. By using this command, all the level-2 routing packets, whose domain authentication passwords do not consist with the one set via this command will not be received. At the same time, this command will let IS-IS insert the domain authentication password into all the level-2 routing packets sent by this node, in a certain mode.

Related command: area-authentication-mode, isis authentication-mode.

Example

# When you need to authenticate the level-2 routing packets, you can select the simple mode, and the password is “test”.

[H3C] isis

[H3C-isis] domain-authentication-mode simple test

4.1.12 filter-policy export

Syntax

filter-policy acl-number export [ routing-protocol ]

undo filter-policy acl-number export [ routing-protocol ]

View

IS-IS view

Parameter

acl-number: Specifies the number of the access control list, ranging from 2000 to 3999.

routing-protocol: Specifies the protocols that distribute routing information, including direct, static, rip, bgp, ospf, ospf-nssa and ospf-ase. If it does not specify any protocol, the distributed routes of all the protocols will be filtered.

Description

Use the filter-policy export command to configure to filter the routes distributed by IS-IS.

Use the undo filter-policy export command to cancel the filtering for the exporting routes.

By default, IS-IS does not filter any distributed routing information.

In some cases, only the routing information meeting the specified conditions will be distributed. You can configure the filter-policy to specify the filter conditions so as to distribute the desired routing information only.

Related command: filter-policy import.

Example

# Use ACL 2000 to filter all the routes advertised by IS-IS.

[H3C-isis] filter-policy 2000 export

4.1.13 filter-policy import

Syntax

filter-policy acl-number import

undo filter-policy acl-number import

View

IS-IS view

Parameter

acl-number: Specifies the number of the access control list, ranging from 2000 to 3999.

Description

Use the filter-policy import command to configure to filter the routes received by IS-IS. Use the undo filter-policy import command to configure not to filter the received routes.

By default, IS-IS does not filter the received routing information.

In some cases, only the routing information meeting the specified conditions will be accepted. You can configure the filter-policy to specify the filter conditions so as to accept the desired routing information only.

Related command: filter-policy export.

Example

# Filter the received routes by using ACL 2000.

[H3C-isis] filter-policy 2000 import

4.1.14 ignore-lsp-checksum-error

Syntax

ignore-lsp-checksum-error

undo ignore-lsp-checksum-error

View

IS-IS view

Parameter

None

Description

Use the ignore-lsp-checksum-error command to configure the IS-IS to discard LSPs with checksum errors.

Use the undo ignore-lsp-checksum-error command to configure the IS-IS to ignore the checksum error of LSP.

By default, the checksum error of LSP is ignored.

After receiving an LSP packet, the local IS-IS will calculate its checksum and compares the result with the checksum in the LSP packet. This process is the checksum authentication over the received LSP. By default, even if the checksum in the packet is found not in consistent with the calculated result, the LSP is processed as normal. However, after not ignoring LSP checksum error is set with the ignore-lsp-checksum-error command, the LSP packet will be discarded silently if the checksum error is found.

Example

# Discard the LSPs with checksum errors.

[H3C-isis] ignore-lsp-checksum-error

4.1.15 import-route

Syntax

import-route protocol [ cost value | type { external | internal } | [ level-1 | level-1-2 | level-2 ] | route-policy route-policy-name ]*

undo import-route protocol [ cost value | type { external | internal } | [ level-1 | level-1-2 | level-2 ] | route-policy route-policy-name ]*

View

IS-IS view

Parameter

protocol: Specifies the source protocol for importing the routing information, which can be direct, static, rip, bgp, ospf, ospf-ase, and ospf-nssa.

value: Specifies the metric of the imported route, ranging from 0 to 63.

type: Type of routing cost: internal indicates the routing cost in the same area; external indicates the routing cost among areas. By default, the routing cost is internal.

level-1: Configures to import the route into Level-1 routing table.

level-2: Configures to import the route into Level-2 routing table. If the level is not specified, it defaults to importing the routes into level-2.

level-1-2: Configures to import the route into Level-1 and Level-2 routing table.

route-policy route-policy-name: Configures to import the routes matching the conditions defined in the specified route-policy only.

Description

Use the import-route command to configure IS-IS to import the routing information of other protocols.

Using the undo import-route command to disable IS-IS to import routing information from other protocols.

By default, IS-IS does not import the routing information of other protocols.

IS-IS regards all the routes imported into the routing domain as the external routes, which describe the way of routing outside the routing domain.

Related command: import-route isis level-2 into level-1.

Example

# Import the static route. The cost value is 15.

[H3C-isis] import-route static ip cost 15

4.1.16 import-route isis level-2 into level-1

Syntax

import-route isis level-2 into level-1 [ acl acl-number ]

undo import-route isis level-2 into level-1 [ acl acl-number ]

View

IS-IS view

Parameter

acl-number: ACL number. It is in the range of 2000 to 3999, which means basic ACLs and advanced ACLs can be used.

Description

Use the import-route isis level-2 into level-1 command to enable routing information in a Level-2 area to be imported to a Level-1 area.

Use the undo import-route isis level-2 into level-1 command to remove the function.

During routing leak configuration from Level-2 to Level-1, only the routes that are permitted by ACL can be imported to Level-1 area if an ACL has been specified.

By default, routing information in a Level-2 area is not imported to a Level-1 area.

Related command: import-route.

Example

# Import routing information of a router from a Level-2 area to a Level-1 area through the ACL.

[H3C] isis

[H3C-isis] import-route isis level2 into level1 acl 2100

4.1.17 isis

Syntax

isis [ tag ]

undo isis [ tag ]

View

System view

Parameter

tag: The name given to the ISIS process. The name length should be no longer than 128 characters, and it can be 0, which means null.

Description

Use the isis command to start the corresponding IS-IS routing process and enter the ISIS view.

Use the undo isis command to delete the specified IS-IS routing process.

By default, IS-IS routing process is not started

For the normal operation of the IS-IS protocol, the isis command must be used to enable the IS-IS process. Then the network-entity command is used to set a Network Entity Title (NET) for the router. And, at last, the isis enable command is used to enable each interface which needs to run an IS-IS process. The IS-IS protocol is actually enabled upon the completion of these configurations.

& Note:

Only one IS-IS routing process can be started on one router.

Related command: isis enable, network-entity.

Example

# Start an IS-IS routing process, in which the system ID is 0000.0000.0002 and the area ID is 01.0001.

[H3C] isis

[H3C-isis] network-entity 01.0001.0000.0000.0002.00

4.1.18 isis authentication-mode

Syntax

isis authentication-mode { simple | md5 } password [ { level-1 | level-2 } [ ip | osi ] ]

undo isis authentication-mode { simple | md5 } password [ { level-1 | level-2 } [ ip | osi ] ]

View

VLAN interface view

Parameter

simple: Configures to transmit the password in plain text.

md5: Configures to transmit the password encrypted with MD5 algorithm.

password: Configures a password. If simple authentication is used, the password must be a simple-text password. If MD5 authentication is used, the password can be a simple-text or a cipher-text password. A simple-text password can be a character string with no more than 16 characters, for example, test918. Note that the simple-text password defined for MD5 authentication is displayed in cipher text. A cipher-text password must have 24 characters in cipher text, for example, (TT8F]Y\5SQ=^Q`MAF4<1!!.

level-1: Configures authentication password for L1.

level-2: Configures authentication password for L2.

ip: If this item is configured, the system checks the configuration of the corresponded field of the IP in LSP.

osi: If this item is configured, the system checks the configuration of the corresponded field of the OSI in LSP.

The configuration of ip or osi is independent of the real network environment.

Description

Use the isis authentication-mode command to configure the IS-IS to authenticate the Hello packets of the corresponding level, in the specified mode and with the specified password on the IS-IS interface.

Use the undo isis authentication-mode command to cancel the authentication and delete the password at the same time.

By default, the password is not set and no authentication is executed.

If the password is set, but no parameter is specified, the default settings are Level-1, plaintext and osi.

Related command: area-authentication-mode, domain-authentication-mode.

Example

# Set the authentication password “tangshi” in plain text for the Level-1 neighboring relationship on Interface Vlan-interface 10.

[H3C] interface Vlan-interface 10

[H3C-Vlan-interface10] isis authentication-mode simple tangshi level-1

4.1.19 isis circuit-level

Syntax

isis circuit-level [ level-1 | level-1-2 | level-2 ]

undo isis circuit-level

View

Interface view

Parameter

level-1: Configures Level-1, instead of Level-2, adjacency on the current interface only.

level-1-2: Configures Level-1-2 adjacency on the current interface.

level-2: Configures Level-2 adjacency on the current interface only.

Description

Use the isis circuit-level command to have the Level-1-2 router set up link adjacency with the peer router.

Use the undo isis circuit-level command to restore the default setting of the link adjacency on the Level-1-2 router.

By default, the value is level-1-2.

This command is only applicable to Level-1-2 routers. If the local router is a Level-1-2 router and it is required to establish a correlation with the peer router on a certain level (Level-1 or Level-2), this command can specify the interface to send and receive Hello packets of this level. Certainly, only one type of Hello packet is sent and received on the point-to-point link. In this way, excessive processing is avoided, and the bandwidth is saved.

Related command: is-level.

Example

# When interface Vlan-interface 10 is connected with a non-backbone router in the same area, you can set this interface as level-1, prohibiting the sending and receiving of Level-2 Hello packets.

[H3C] interface Vlan-interface 10

[H3C-Vlan-interface10] isis enable

[H3C-Vlan-interface10] isis circuit-level level-1

4.1.20 isis cost

Syntax

isis cost value [ level-1 | level-2 ]

undo isis cost [ level-1 | level-2 ]

View

Interface view

Parameter

value: Specifies the link cost used in the SPF calculation of corresponding level. Its range is 1 to 63. By default, the value is 10.

level-1: Indicates that the link cost corresponds to Level-1.

level-2: Indicates that the link cost corresponds to Level-2

Description

Use the isis cost command to configure the link cost of this interface when performing SPF calculation.

Use the undo isis cost command to restore the default link cost.

If neither Level 1 nor Level 2 is specified in the configuration, Level-1 will be the default value.

The user is recommended to configure the appropriate link cost for all the interfaces. Otherwise, the link cost in the calculation of IS-IS routes cannot reflect the link cost.

Example

# Set the link cost of the Level-2 link on Interface Vlan-interface 10 to 5.

[H3C] interface Vlan-interface 10

[H3C-Vlan-interface10] isis cost 5 level-2

4.1.21 isis dis-priority

Syntax

isis dis-priority value [ level-1 | level-2 ]

undo isis dis-priority [ level-1 | level-2 ]

View

Interface view

Parameter

value: The priority when selecting DIS. Its value ranges 0 to 127, and the default priority is 64.

level-1: Specifies the priority when selecting Level-1 DIS.

level-2: Specifies the priority when selecting Level-2 DIS.

If the level is not specified, the default priority level is Level-1.

Description

Use the isis dis-priority command to configure the priority of an interface for the DIS election.

Use the undo isis dis-priority command to restore the default priority.

The IS-IS protocol does not concern the concept of backup DIS. The router with the priority 0 can also run for the DIS, which is different from the DR election of OSPF.

Related command: area-authentication-mode, domain-authentication-mode.

Example

# Set the priority of Interface Vlan-interface 10 to 127.

[H3C] interface Vlan-interface 10

[H3C-Vlan-interface10] isis dis-priority 127 level-2

4.1.22 isis enable

Syntax

isis enable [ tag ]

undo isis enable [ tag ]

View

Interface view

Parameter

tag: The name given to an IS-IS routing process, when executing the isis command in the system view. If not specified, it is null.

Description

Use the isis enable command to configure the interface to activate the corresponding IS-IS routing process.

Use the undo isis enable command to cancel this designation.

By default, the IS-IS routing process is not enabled on an interface.

For the normal operation of the IS-IS protocol, the isis command must be used to enable the IS-IS process. Then the network-entity command is used to set a Network Entity Title (NET) for the router. And, at last, the isis enable command is used to enable each interface which needs to run the IS-IS process. The IS-IS protocol is actually enabled upon the completion of these configurations.

Related command: isis, network-entity.

Example

# Create an IS-IS routing process named “test”, and activate this routing process on interface Vlan-interface 10.

[H3C] isis test

[H3C-isis] network-entity 10.0001.1010.1020.1030.00

[H3C] interface Vlan-interface 10

[H3C-Vlan-interface10] isis enable test

4.1.23 isis mesh-group

Syntax

isis mesh-group { mesh-group-number | mesh-blocked }

undo isis mesh-group

View

Interface view

Parameter

mesh-group-number: Specifies the mesh group number, ranging from 1 to 4,294,967,295.

mesh-blocked: Configures to block a specified interface, so that it will not flood the received LSP to other interfaces.

Description

Use the isis mesh-group command to add an interface to a specified mesh group.

Use the undo isis mesh-group command to delete this interface from the mesh group.

By default, the interface does not belong to any mesh group and floods LSP normally.

The interface beyond the mesh group floods the received LSP to other interfaces, following the normal procedure. This processing method applied to an NBMA network with higher connectivity and several point-to-point links will cause repeated LSP flooding and waste bandwidth.

The interface joining a mesh group only floods the received LSP to the interfaces beyond the local mesh group.

Make sure to provide some redundancy when adding an interface to a mesh group or blocking it, avoiding the affect to the normal flooding of the LSP due to link failure.

Example

# Add Vlan-interface 20 running IS-IS to mesh group 3.

[H3C-Vlan-interface20] isis mesh-group 3

4.1.24 isis timer csnp

Syntax

isis timer csnp seconds [ level-1 | level-2 ]

undo isis timer csnp [ level-1 | level-2 ]

View

Interface view

Parameter

seconds: Specifies the CSNP packet interval on the broadcast network, ranging from 1 to 65535 and measured in seconds. By default, the value is 10 seconds.

level-1: Specifies the Level-1 CSNP packet interval.

level-2: Specifies the Level-2 CSNP packet interval.

Description

Use the isis timer csnp command to configure the interval of sending CSNP packets on the broadcast network.

Use the undo isis timer csnp command to restore the default value, that is, 10 seconds.

Only DIS can periodically send CSNP packets, therefore, this command is valid only for the router that is selected as the DIS. Furthermore, DIS is divided into level-1 and level-2, and their intervals of sending CSNP packets must be set respectively.

Example

# Set the CSNP packet of Level-2 to be transmitted every 15 seconds on the interface Vlan-interface 10.

[H3C] interface Vlan-interface 10

[H3C-Vlan-interface10] isis timer csnp 15 level-2

4.1.25 isis timer hello

Syntax

isis timer hello seconds [ level-1 | level-2 ]

undo isis timer hello [ level-1 | level-2 ]

View

Interface view

Parameter

seconds: Specifies the Hello interval, ranging from 3 to 255 and measured in seconds. The default value is 10 seconds.

level-1: Specifies the Level-1 Hello interval.

level-2: Specifies the Level-2 Hello interval.

If no level is not specified, the Hello interval is set to Level-1-2, that is, both Level-1 and Level-2 take effect.

Description

Use the isis timer hello command to configure the interval of sending Hello packet of the corresponding level.

Use the undo isis timer hello command to restore the default value.

On a broadcast link, level-1 and level-2 Hello packets will be sent respectively and their intervals should also be set respectively. Such settings are unnecessary on point-to-point links. The shorter the sending interval is, the more system resources are occupied to send Hello packets. Therefore, the interval should not be too short and should be set according to actual conditions.

Related command: isis timer holding-multiplier.

Example

# Set the Hello packet of Level-2 to be transmitted every 20 seconds on Interface Vlan-interface 10.

[H3C] interface Vlan-interface 10

[H3C-Vlan-interface10] isis timer hello 20 level-2

4.1.26 isis timer hello minimal

Syntax

isis timer hello minimal [ level-1 | level-2 ]

undo isis timer hello minimal [ level-1 | level-2 ]

View

Interface view

Parameter

minimal: Sets the sending interval to the minimum value. In this case, the hold time is 1 second.

level-1: Specifies that the sending interval resulting from this command is for level-1 Hello packets.

level-2: Specifies that the sending interval resulting from this command is for level-2 Hello packets.

If neither level-1 nor level-2 is specified, the sending interval is set for both Level-1 and Level-2 Hello packets by default, that is, this command takes effect on both Level-1 and Level-2 Hello packets.

Description

Use the isis timer hello minimal command to configure the IS-IS system to send the Hello packets at the corresponding level(s) in Fast Hello Mode. If the number of consecutively sent Hello packets is not specified, the system sends three Hello packets per second.

Use the undo isis timer hello minimal command to restore the default setting, that is, 10 seconds.

Related command: isis timer holding-multiplier.

Example

# Specify to enable the Fast Hello function on interface pos1/0/0 so that the system sends level-2 Hello packets in Fast Hello mode.

[H3C] interface pos1/0/0

[H3C-Pos1/0/0] isis timer hello minimal level-2

4.1.27 isis timer holding-multiplier

Syntax

isis timer holding-multiplier value [ level-1 | level-2 ]

undo isis timer holding-multiplier [ level-1 | level-2 ]

View

Interface view

Parameter

value: Number of consecutive Hello packets that haven't been received from the IS-IS neighbor for it to be considered dead. It ranges from 3 to 1000.

level-1: Level-1 IS-IS neighbor.

level-2: Level-2 IS-IS neighbor.

If you do not specify Level-1 or Level-2, the command applies to both Level-1 and Level-2 IS-IS neighbors.

Description

Use the isis timer holding-multiplier command to set the number of consecutive Hello packets that haven’t been received from the IS-IS neighbor for it to be considered dead.

Use the undo isis timer holding-multiplier command to restore the default setting.

By default, an IS-IS neighbor is considered dead if three consecutive Hello packets haven’t been received from it.

Given a broadcast network, you may configure this command specific to Level-1 or Level-2 neighbors by specifying the keyword level-1 or level-2.

Given a PPP link, you do not need to specify Level-1 or Level-2, because only one kind of Hello packet is available.

This command virtually specifies a hold-down time. If the local router does not receive any Hello packet from the peer within this time, the peer is considered dead.

The hold-down time is configured on a per-interface basis. Within one area, routers may have different holddown time settings.

To tune the hold-down time on a router, change the Hello timer setting of IS-IS or change the number of consecutive Hello packets that haven’t been received from an IS-IS neighbor for it to be considered dead.

Related command: isis timer hello.

Example

# On Vlan-interface 10, configure that the IS-IS neighbor is considered dead if five consecutive Hello packets haven’t been received from it.

[H3C] interface Vlan-interface 10

[H3C-Vlan-interface10] isis timer holding-multiplier 5

4.1.28 isis timer lsp

Syntax

isis timer lsp time

undo isis timer lsp

View

Interface view

Parameter

time: Specifies the LSP interval, ranging from 1 to 1000 and measured in milliseconds. The default value is 33 milliseconds.

Description

Use the isis timer lsp command to configure the interval at which IS-IS sends link-state packets on the interface.

Use the undo isis timer lsp command to restore the default setting.

Related command: isis timer retransmit.

Example

# Set the LSP interval on Interface Vlan-interface 10 to 500 milliseconds.

[H3C] interface Vlan-interface 10

[H3C-Vlan-interface10] isis timer lsp 500

4.1.29 timer lsp-generation

Syntax

timer lsp-generation x y z [ level-1 | level-2 ]

undo timer lsp-generation [ level-1 | level-2 ]

View

IS-IS view

Parameter

x: Maximum interval (in seconds) for generating LSP. It ranges from 1 to 120 and defaults to 5.

y: Interval (in milliseconds) between each trigger operation and each LSP generation operation. It ranges from 1 to 120,000 and defaults to 5,000.

z: Interval (in milliseconds) between two successive LSP generation operations. It ranges from 1 to 120,000 and defaults to 5,000.

level-1: Sets interval for Level-1 LSP only.

level-2: Sets interval for Level-2 LSP only.

If neither level-1 nor level-2 is specified in this command, this command takes effect on both levels by default.

Description

Use the timer lsp-generaion command to set the time interval to generate LSPs (link state packets).

Use the undo timer lsp-generation command to restore the default setting.

When an event occurs, a new LSP needs to be generated for the IS-IS protocol. But the frequent generation of LSPs will result in the occupancy of huge resources and thus decrease the performance of the routing switch. To avoid the great decrease of the performance, an exponent decrement method is adopted for the generation of LSPs. You can set the intervals to generate LSPs as required.

Example

# Set the intervals to generate LSPs to 10 500 2500.

[H3C-isis] timer lsp-generation 10 500 2500

4.1.30 isis timer retransmit

Syntax

isis timer retransmit seconds

undo isis timer retransmit

View

Interface view

Parameter

seconds: Specifies the retransmission interval of LSP packets, in the unit of second, in the range from 1 to 300 and the default value is five seconds.

Description

Use the isis timer retransmit command to configure the LSP retransmission interval over the point-to-point link.

Use the undo isis timer retransmit command to restore the default setting.

Use caution when setting this parameter to avoid unnecessary retransmission.

The response is required when sending LSP packets on the point-to-point link, not the broadcast link, and therefore this command is unnecessary for the broadcast link.

Related command: isis timer lsp.

Example

# Set the LSP retransmission interval to 10 seconds on Interface Vlan-interface 10.

[H3C] interface Vlan-interface 10

[H3C-Vlan-interface10] isis timer retransmit 10

4.1.31 is-level

Syntax

is-level { level-1 | level-1-2 | level-2 }

undo is-level

View

IS-IS view

Parameter

level-1: Configures the router to operate at Level-1, only calculate the intra-area routes and maintain the LSDB of L1.

level-1-2: Configures the router to operate at Level-2, calculate both the L1 and L2 routes and maintain the LSDB of L1 and L2.

level-2: Configures the router to operate at Level-2, only switch L2 LSP and calculate the L2 routes and maintain the LSDB of L2.

Description

Use the is-level command to configure the level of the IS-IS router.

Use the undo is-level command to restore the default value.

By default, the value is level-1-2.

We recommend setting the system Level, when you configure IS-IS.

If there is only one area, you are recommended to set the level of all the routers as Level-1 or Level-2, because it is not necessary for all the routers to maintain two identical databases. You are recommended to set all the routers to Level-2 for convenient future extension, when applying them to IP network.

Related command: isis circuit-level.

Example

# Set the current router to operate at Level-1.

[H3C] isis

[H3C-isis] is-level level-1

4.1.32 log-peer-change

Syntax

log-peer-change

undo log-peer-change

View

IS-IS view

Parameter

None

Description

Use the log-peer-change command to log the peer changes.

Use the undo log-peer-change command to configure not to log the peer changes.

By default, peer changes log disabled.

After peer changes log is enabled, the IS-IS peer changes will be output on the configuration terminal until the log is disabled.

Example

# Configure to output the IS-IS peer changes on the current router.

[H3C-isis] log-peer-change

4.1.33 md5-compatible

Syntax

md5-compatible

undo md5-compatible

View

IS-IS view

Parameter

None

Description

Use the md5-compatible command to set the IS-IS to use the MD5 algorithm which is compatible with that of the other vendors.

Use the undo md5-compatible command to return to the defaults.

By default, the system uses the H3C MD5 algorithm.

To authenticate the devices of the vendors other than using H3C MD5 algorithm in IS-IS, configure this command.

Example

# Set the IS-IS to use the MD5 algorithm compatible with that of the other vendors.

[H3C] isis

[H3C-isis] md5-compatible

4.1.34 network-entity

Syntax

network-entity network-entity-title

undo network-entity network-entity-title

View

IS-IS view

Parameter

network-entity-title: Specify the network entity title in the X…X.XXXX....XXXX.00 format, in which the first “X…X” is the area address, the twelve Xs in the middle is the System ID of the router, and the 00 in the end is SEL.

Description

Use the network-entity command to configure the name of Network Entity Title (NET) of the IS-IS routing process.

Use the undo network-entity command to delete a NET.

By default, no NET is defined.

NET means the Network Service Access Point (NSAP). An IS-IS NET is 8 to 20 bytes long.

It consists of three parts. Part one is area ID, which is variable (1 to 13 bytes), and the area IDs of the routers in the same area are identical. Part two is system ID (6 bytes) of this router, which must be unique in the whole area and backbone area. Part three, the last byte “SEL”, whose value must be “00”. Usually, one router can be configured with one NET. When the area is redesigned by combination or separation, after reconfiguration, the correctness and continuity of the routes must be ensured.

Related command: isis, isis enable.

Example

# Specify NET as “10.0001.1010.1020.1030.00”, in which the system ID is “1010.1020.1030”, area ID is “10.0001”.

[H3C] isis

[H3C-isis] network-entity 10.0001.1010.1020.1030.00

4.1.35 preference

Syntax

preference value

undo preference

View

IS-IS view

Parameter

value: Specifies the preference, ranging from1 to 255. By default, the value is 15.

Description

Use the preference command to configure the preference of IS-IS protocol.

Use the undo preference command to restore the default value.

Several dynamic routing protocols could run simultaneously on a router. In this case, there is an issue of sharing and selecting the routing information among all the routing protocols. The system sets a preference for each routing protocol. When various routing protocols find the route to the same destination, the protocol with the higher preference will take effect.

Example

# Configure the preference of IS-IS as 25.

[H3C-isis] preference 25

4.1.36 reset isis all

Syntax

reset isis all

View

User view

Parameter

None

Description

Use the reset isis all command to reset all the IS-IS data structures.

By default, IS-IS data structure will not be cleared.

This command is used when LSPs need refreshing immediately. For example, after the area-authentication-mode and domain-authentication-mode commands are executed, the old LSP still remain on the router. This command can be used to clear them.

Related command: area-authentication-mode, domain-authentication-mode.

Example

# Reset all the IS-IS data structures.

<H3C> reset isis all

4.1.37 reset isis peer

Syntax

reset isis peer system-id

View

User view

Parameter

system-id: Specifies the system ID of IS-IS neighbor.

Description

Use the reset isis peer command to reset the specified IS-IS peer.

By default, the IS-IS neighbor will not be cleared.

This command is used when you want to reconfigure a certain neighbor.

Example

# Clear the IS-IS neighbor whose system ID is 0000.0c11.1111.

<H3C> reset isis peer 0000.0c11.1111

4.1.38 set-overload

Syntax

set-overload

undo set-overload

View

IS-IS view

Parameter

None

Description

Use the set-overload command to set overload flag for the current router.

Use the undo set-overload command to cancel the overload flag.

By default, no overload flag is set.

If a router is configured with the overload flag, the routes it calculates will be ignored by other routers in SPF calculation. (However the directly connected routes will not be ignored.) And other routers should not send this router the packets which should be forwarded by it.

Example

# Set overload flag on the current router.

[H3C-isis] set-overload

4.1.39 silent-interface

Syntax

silent-interface silent-interface-type silent-interface-number

undo silent-interface silent-interface-type silent-interface-number

View

IS-IS view

Parameter

silent-interface-type: Specifies the interface type.

silent-interface-number: Specifies the interface number.

Description

Use the silent-interface command to disable a specified interface to transmit IS-IS packet.

Use the undo silent-interface command to enable the interface to transmit IS-IS packet.

By default, all the interface are allowed to transmit/receive IS-IS packets.

The silent-interface command is only used to suppress the packets to be transmitted on the interface, but the routes of this interface will still be transmitted from other interfaces.

Example

# Prohibit the IS-IS packets to be transmitted via Interface Vlan-interface 3.

[H3C-isis] silent-interface Vlan-interface 3

4.1.40 spf-delay-interval

Syntax

spf-delay-interval number

undo spf-delay-interval

View

IS-IS view

Parameter

number: Specifies number of routes to process before releasing CPU. It is in unit of piece with the range from 1000 to 50000. By default, the value is 2500 pieces.

Description

Use the spf-delay-interval command to configure the number of routes to process before releasing CPU in the SPF calculation.

Use the undo spf-delay-interval command to restore the default setting.

When there are a large number of routes in the routing table, this command can be used to set that CPU resources are released automatically after a certain number of routes are processed. The unprocessed routes will be processed in one second. In this way, SPF calculation will not occupy the system resources for a long time, which has impact on the responding speed of the console.

The value of the number argument can be adjusted according to the capacity of the routing table. If the spf-slice-size command is also configured, the SPF calculation will be paused when any setting item is met.

By default, CPU is released once when every 2500 pieces of routes are processed.

Related command: spf-slice-size.

Example

# Set IS-IS to release CPU once after processing every 3000 pieces of routes.

[H3C-isis] spf-delay-interval 3000

4.1.41 spf-slice-size

Syntax

spf-slice-size seconds

undo spf-slice-size

View

IS-IS view

Parameter

seconds: Duration of one cycle in seconds of SPF calculation in the range from 0 to 120. When the calculation duration time reaches or exceeds the set value, the calculation of this time ends. If seconds is set to 0, it indicates that SPF calculation is not divided into slices and it will operate until the end. By default, the value is 0.

Description

Use the spf-slice-size command to enable IS-IS to calculate SPF routes in slices and configure the duration of each calculation.

Use the undo spf-slice-size command to restore the default setting.

When there are a large number of routes in the routing table, this command can be used to enable the SPF calculation in slices to prevent it from occupying the system resources for a long time.

The user is recommended to use the command when the number of routes reaches 150,000 or 200,000 and the value of seconds is recommended as 1. In other cases, the default setting should be used, that is, SPF runs to the end with no slice.

If the spf-delay-interval command is also configured, when SPF calculation is run, the SPF calculation will be paused if any setting item is met.

Related command: spf-delay-interval.

Example

# Set the SPF duration time to one second.

[H3C-isis] spf-slice-size 1

4.1.42 summary

Syntax

summary ip-address mask [ level-1 | level-1-2 | level-2 ]

undo summary ip-address mask [ level-1 | level-1-2 | level-2 ]

View

IS-IS view

Parameter

ip-address: Summarized network segment address.

mask: Summarized network mask.

level-1: Summarizes the routes imported into Level-1.

level-1-2: Summarizes the routes imported into Level-1 and backbone area.

level-2: Summarizes the routes imported into backbone area.

Description

Use the summary command to configure to summarize IS-IS routes.

Use the undo summary command to cancel the summarization.

By default, no routes will be summarized.

Similarly, the routes with the same next hops can be summarized into one route. In this way, the sizes of the routing table, LSP packets and LSDB are reduced. Among them, the summarized route can be either a route found by IS-IS protocol, or an imported route. Furthermore, the cost value of the summarized route adopts the smallest cost among all the routes summarized.

Example

# Set a summarized route of 202.0.0.0/8.

[H3C-isis] summary 202.0.0.0 255.0.0.0

4.1.43 timer lsp-max-age

Syntax

timer lsp-max-age seconds

undo timer lsp-max-age

View

IS-IS view

Parameter

seconds: Specifies the maximum lifetime of LSP, measured in seconds. The range is 1 to 65535. The default value is 1200 seconds.

Description

Use the timer lsp-max-age command to configure the maximum lifetime of an LSP generated by the current router.

Use the undo timer lsp-max-age command to restore the default value.

When the router generates an LSP for the system, it adds the maximum lifetime to it. When other routers receive this LSP, the lifetime of the LSP decreases continuously as time goes by. When this value reaches zero, the LSP times out. If no update is received before that, the timeout LSP will be deleted from the LSDB.

Related command: timer lsp-refresh.

Example

# Set the lifetime of an LSP generated by the current system to 25 minutes, i.e., 1500 seconds.

[H3C-isis] timer lsp-max-age 1500

4.1.44 timer lsp-refresh

Syntax

timer lsp-refresh seconds

undo timer lsp-refresh

View

IS-IS view

Parameter

seconds: Specifies the LSP refreshment interval, measured in seconds. The range is 1 to 65535. The default value is 900 seconds.

Description

Use the timer lsp-refresh command to configure the refreshment interval of LSP.

Use the undo timer lsp-refresh command to restore the default value, that is, 900 seconds.

By this mechanism, the latest synchronization of the LSP within the entire area can be maintained.

Related command: timer lsp-max-age.

Example

# Set the LSP refresh interval of the current system to 1500 seconds.

[H3C-isis] timer lsp-refresh 1500

4.1.45 timer spf

Syntax

timer spf x y z [ level-1 | level-2 ]

undo timer [ level-1 | level-2 ]

View

IS-IS view

Parameter

x: Maximum interval (in seconds) for SPF calculation. It ranges from 1 to 120 and defaults to 10.

y: Interval (in milliseconds) between a trigger operation and an SPF calculation operation. It ranges from 1 to 120,000 and defaults to 5,500.

z: Interval (in milliseconds) between two successive SPF calcaulation operations. It ranges from 1 to 120,000 and defaults to 5,500.

level-1: Sets Level-1 SPF calculation interval only.

level-2: Sets Level-2 SPF calculation interval only.

If the level is not specified, it defaults to setting Level-1 SPF calculation interval.

Description

Use the timer spf command to configure the interval for the SPF calculation of corresponding level.

Use the undo timer spf command to restore the system default value.

In IS-IS, when the LSDB of the corresponding level is changed, SPF calculation is required. However, if the SPF calculation is performed too frequently, the system efficiency will be lowered. By setting a proper interval for performing SPF calculation, you can avoid the above situation. This setting can be made according to actual conditions.

Example

# Set the SPF calculation interval of the router to 3, 100 and 500 seconds.

[H3C-isis] timer spf 3 100 500

Chapter 5 BGP Configuration Commands

& Note:

For the configuration of VPN instance, refer to the MPLS module in H3C S9500 Series Routing Switches Operation Manual.

5.1 BGP Configuration Commands

5.1.1 aggregate

Syntax

aggregate address mask [ as-set | attribute-policy route-policy-name | detail-suppressed | origin-policy route-policy-name | suppress-policy route-policy-name ]*

undo aggregate address mask [ as-set | attribute-policy route-policy-name | detail-suppressed | origin-policy route-policy-name | suppress-policy route-policy-name ]*

View

BGP view

Parameter

address: Address of the aggregated route in dotted decimal format.

mask: Network mask of the aggregated route in dotted decimal format.

as-set: Creates a route with segment of AS_SET.

detail-suppressed: Only advertises the aggregated route.

suppress-policy route-policy-name: Suppresses the specific route selected and does not advertise part of the specific routes.

origin-policy route-policy-name: Selects the originate routes used for aggregation.

attribute-policy route-policy-name: Sets the attributes of the aggregated route.

Description

Use the aggregate command to establish an aggregated record in the BGP routing table.

Use the undo aggregate command to disable the function.

By default, there is no route aggregation.

The keywords are explained as follows:

Table 5-1 The use of the keywords

Keyword	Use
as-set	Used to produce an aggregated route, whose AS path information includes detailed routes. Use this keyword carefully when many AS paths need to be aggregated, for the frequent change of routes may lead to route vibration.
detail-suppressed	This keyword does not suppress any aggregated route, but it restrains the advertisement of all the specific routes. If only some specific routes are to be restrained, use the peer filter-policy command carefully.
suppress-policy	Create an aggregated route with this keyword. At the same time, the advertisement of the specified route is restrained. If you want to restrain some specific routes selectively and leaves other routes still being advertised, use the if-match sub-statement of the route-policy command.
origin-policy	Selects only the specific routes that are in accordance with route-policy to create an aggregated route.
attribute-policy	Sets aggregated route attributes. The same work can be done by using the peer route-policy command, etc.

Example

# Create an aggregated record in BGP routing table.

[H3C-bgp] aggregate 168.328.0.0 255.255.0.0

5.1.2 Balance

Syntax

balance balance-number

undo balance

View

BGP view

Parameter

balance-number: Specifies the number of BGP equivalent routes.

Description

Use the balance command to set the number of BGP equivalent routes currently supported by the system.

Use the undo balance command to restore the default number of BGP equivalent routes.

By default, the system supports one BGP equivalent route.

Example

# Set the number of supported BGP equivalent routes to 3.

[H3C-bgp] balance 3

5.1.3 bgp

Syntax

bgp as-number

undo bgp [as-number ]

View

System view

Parameter

as-number: The specified local AS number, in the range of 1 to 65535.

Description

Use the bgp command to enable BGP and enter the BGP view.

Use the undo bgp command to disable BGP.

By default, the system does not run BGP.

This command is used to enable and disable BGP as well as to specify the local AS number of BGP.

Example

# Enable BGP.

[H3C] bgp 100

[H3C-bgp]

5.1.4 compare-different-as-med

Syntax

compare-different-as-med

undo compare-different-as-med

View

BGP view

Parameter

None

Description

Use the compare-different-as-med command to enable comparison of MED values from different AS neighboring routes.

Use the undo compare-different-as-med command to disable the comparison.

By default, it is disabled to compare the MED attribute values from the routing paths of different AS peers.

If there are several routes available to one destination address, the route with smaller MED parameter can be selected as the final route item.

Do not use this command unless it is determined that the same IGP and routing selection mode are adopted by different autonomous systems.

Example

[H3C-bgp] compare-different-as-med

5.1.5 confederation id

Syntax

confederation id as-number

undo confederation id

View

BGP view

Parameter

as-number: The ID of BGP AS confederation. It is equal to the AS number which contains the AS numbers of multiple sub-ASs. The range is 1 to 65535.

Description

Use the confederation id command to configure confederation identifier.

Use the undo confederation id command to cancel the BGP confederation specified by as-number argument.

By default, the confederation ID is not configured.

Confederation can be adopted to solve the problem of too many IBGP full connections in a large AS domain. The solution is, first dividing the AS domain into several smaller sub-ASs, and each sub-ASs remains full-connected. These sub-ASs form a confederation. Key BGP attributes of the route, such as next hop, MED, local preference, are not discarded across each sub-ASs. The sub-ASs still look like a whole from the point of view of a confederation although these sub-ASs have EBGP relations. This can assure the integrality of the former AS domain, and ease the problem of too many connections in the domain

Related command: confederation nonstandard, confederation peer-as.

Example

# Confederation 9 consists of four sub-ASs, namely, 38, 39, 40 and 41. Here, the peer 10.1.1.1 is an internal member of the AS confederation while the peer 200.1.1.1 is an external member of the AS confederation. For external members, Confederation 9 is a unified AS domain.

[H3C] bgp 41

[H3C-bgp] confederation id 9

[H3C-bgp] confederation peer-as 38 39 40

[H3C-bgp] group Confed38 external

[H3C-bgp] peer Confed38 as-number 38

[H3C-bgp] peer 10.1.1.1 group Confed38

[H3C-bgp] group Remote98 external

[H3C-bgp] peer Remote98 as-number 98

[H3C-bgp] peer 200.1.1.1 group Remote98

5.1.6 confederation nonstandard

Syntax

confederation nonstandard

undo confederation nonstandard

View

BGP view.

Parameter

None

Description

Use the confederation nonstandard command to configure the router to be compatible with routers not following RFC1965.

Use the undo confederation nonstandard command to disable this function.

By default, it is in accordance with RFC1965.

Related command: confederation id, confederation peer-as.

Example

# AS100 contains routers following nonstandard, which is composed of two sub-ASs, 64000 and 65000.

[H3C] bgp 64000

[H3C-bgp] confederation id 100

[H3C-bgp] confederation peer-as 65000

[H3C-bgp] confederation nonstandard

5.1.7 confederation peer-as

Syntax

confederation peer-as as-number-1 [... as-number-n ]

undo confederation peer-as [ as-number-1 ] [... as-number-n ]

View

BGP view

Parameter

as-number-1...as-number-n: Sub-AS number. The range is 1 to 65535. This command can configure a maximum of 32 Sub-ASs belonging to a confederation.

Description

Use the confederation peer-as command to configure a confederation consisting of which Sub-ASs.

Use the undo confederation peer-as command to delete the specified Sub-AS in the confederation.

By default, no autonomous system is configured as a member of the confederation.

Before this command is performed, the confederation ID should be configured by the confederation id command. Otherwise this configuration is invalid. The configured ASs in this command are inside the confederation and each AS uses fully meshed network. The confederation appears as a single AS to the routers outside it.

Related command: confederation nonstandard, confederation id.

Example

# Configure the confederation contains AS 2001 and 2002.

[H3C-bgp]confederation peer-as 2000 2001

5.1.8 dampening

Syntax

dampening [ half-life-reachable half-life-unreachable reuse suppress ceiling ] [ route-policy policy-name ]

undo dampening

View

BGP view

Parameter

half-life-reachable: Specifies the semi-dampening when the route is reachable. The range is 1 to 45 minutes. By default, the value is 15 minutes.

half-life-unreachable: Specifies the semi-dampening when the route is unreachable. The range is 1 to 45 minutes. By default, the value is 15 minutes.

reuse: When the penalty is reduced under this value, the route is reused. The range is 1 to 20000. By default, the value is 750.

suppress: When the penalty exceeds this value, the route is suppressed. The range is 1 to 20000. By default, the value is 2000.

ceiling: The upper threshold of the penalty. The range is 1001 to 20000. By default, the value is 16000.

policy-name: Configures route policy name.

If these parameters are not set, their default values will be used.

The parameters are mutually dependent. Once one of these parameters is configured, all other parameters should also be specified.

Description

Use the dampening command to make BGP route attenuation valid or modify various BGP route attenuation parameters.

Use the undo dampening command to make the characteristics invalid.

By default, no route attenuation is configured.

Related command: reset dampening, reset bgp flap-info, display bgp routing-table dampened, display bgp routing-table flap-info.

Example

# Modify the BGP route dampening parameters.

[H3C-bgp] dampening 15 15 1000 2000 10000

5.1.9 debugging bgp

Syntax

debugging bgp { all | event | normal | { keepalive | mp-update | open | packet | route-refresh | update } [ receive | send ] [ verbose ] }

undo debugging bgp { all | event | normal | keepalive | mp-update | open | packet | route-refresh | update }

View

User view

Parameter

all: Indicates to enable all BGP information debugging.

event: Indicates to enable BGP event information debugging.

normal: Indicates to enable information debugging of BGP normal functions.

keepalive: Indicates to enable BGP Keepalive packet information debugging.

mp-update: Indicates to enable MBGP Update packet information debugging.

open: Indicates to enable BGP Open packet information debugging.

packet: Indicates to enable BGP packet information debugging.

route-refresh: Indicates to enable BGP route-refresh packet information debugging.

update: Indicates to enable BGP Update packet information debugging.

receive: Information of received packets.

send: Information of sent packets.

verbose: Detailed information.

Description

Use the debugging bgp all command to enable all the information debugging of BGP packet and events.

Use the debugging bgp event command to enable the information debugging of BGP events

Use the debugging bgp keepalive command to enable the information debugging of BGP Keepalive packets.

Use the debugging bgp packet command to enable the information debugging of BGP packets.

Use the undo debugging bgp command to disable the debugging functions.

Example

# Enable the information debugging of BGP packets.

<H3C> debugging bgp packet

5.1.10 default local-preference

Syntax

default local-preference value

undo default local-preference

View

BGP view

Parameter

value: Default local preference to be configured. The range is 0 to 4294967295. By default, its value is 100.

Description

Use the default local-preference command to configure the local preference.

Use the undo default local-preference command to restore the default value.

Configuring different local preferences will affect BGP routing selection.

Example

# The two routers RTA and RTB in the same autonomous area connect with external autonomous areas. The command can be used to configure the default local preference of RTB as 180 so that the route via RTB is selected first when the same route goes through RTA and RTB at the same time.

[H3C-bgp]default local-preference 180

5.1.11 default med

Syntax

default med med-value

undo default med

View

BGP view

Parameter

med-value: MED value to be specified. The range is 0 to 4294967295. By default, the med-value is 0.

Description

Use the default med command to configure the default system metric.

Use the undo default med command to restore the default metric of the system.

Multi-Exit Discriminators (MED) attribute is the external metric of a route. Different from local preference, MED is exchanged between ASs. However, this attribute is non-transitive. When a router running BGP gets routes with the same destination address but different next hops from different external peers, it selects the route with the smallest MED as the optimum route, provided that all other conditions are the same.

Example

# Routers RTA and RTB belong to AS100 and router RTC belongs to AS200. RTC is the peer of RTA and RTB. So the MED of RTA can be configured as 25 to allow RTC to select the route transmitted by RTB first.

[H3C-bgp] default med 25

5.1.12 display bgp group

Syntax

display bgp group [ group-name ]

View

Any view

Parameter

group-name: Specified a peer group.

Description

Use the display bgp group command to view the information of peer groups.

Example

# View the information of the peer group aaa.

<H3C> display bgp group aaa

Group : aaa type : external

as-number : 200

members in this group :

10.1.1.1 11.1.1.1

configuration within the group :

no export policy route-policy

no export policy filter-policy

no export policy acl

no export policy ip-prefix

route-policy specified in import policy : aaa

no import policy filter-policy

no import policy acl

no import policy ip-prefix

no default route produce

Table 5-2 Description of the fields of the display bgp group command

Field	Description
Group	Name of peer group
type	Type of peer group: IBGP or EBGP
as-number	AS number of peer group
members in this group	Members in this peer group
route-policy	Name of configured route policy
filter-policy	Configured export and import route filter for BGP
acl	Configured access control list
ip-prefix	Configured IP address prefix list

5.1.13 display bgp network

Syntax

display bgp network

View

Any view

Parameter

None

Description

Use the display bgp network command to view the routing information that has been configured.

Example

# Display the routing information that has been configured.

<H3C> display bgp network

Network Mask Route-policy

133.1.1.0 255.255.255.0 None

112.1.0.0 255.255.0.0 None

Table 5-3 Description of the fields of the display bgp network command

Field	Description
Network	Network address
Mask	Mask
Route-policy	Configured route policy

5.1.14 display bgp paths

Syntax

display bgp paths as-regular-expression

View

Any view

Parameter

as-regular-expression: Matched AS path regular expression.

Description

Use the display bgp paths command to view the information about AS paths

Example

# Display the information about the AS paths.

<H3C> display bgp paths ^600$

Flags: # - valid, ^ - best,

D - damped, H - history,

I - internal, S – aggregate suppressed

Id Hash-Index References Aggregator Origin As-Path

--------------------------------------------------------------------

6 90 15 <null> IGP 600

Table 5-4 Description of the fields of the display bgp paths command

Field	Description
Flags	State flags: # - valid (valid) ^ - best (selected) D – damped (discarded) H – history (history) I – internal (interior gateway protocol) S - aggregate suppressed (suppressed)
Id	Value of sequence number
Hash-Index	Value of Hash-index
References	Count of times that the route is referenced
Aggregator	Mask length of aggregate route
Origin	Origin attribute of route, which indicates that the route updates its origin relative to the route originating it from AS. It has three optional values:
	IGP	The route belongs to inside of AS. BGP treats aggregate route and the route defined by the command network as inside of AS, and origin type as IGP.
	EGP	The route is learned from exterior gateway protocol (EGP).
	INC	Short for INCOMPLETE: indicates that the original source of the route information is unknown (learned by other methods). BGP sets the origin of the route imported through other IGP protocols as INCOMPLETE
As-path	AS-path attribute of route, which records all AS areas that the route passes. With it, route loop can be avoided

5.1.15 display bgp peer

Syntax

display bgp peer peer-address [ verbose ]

display bgp peer [ verbose ]

View

Any view

Parameter

peer-address: Specifies the peer to be displayed.

verbose: Displays the detailed information of the peer.

Description

Use the display bgp peer command to view the information about BGP peers.

Example

# Display the detail information of the peer 201.1.1.2.

<H3C> display bgp peer 201.1.1.2 verbose

Peer: 201.1.1.2+179 Local: 200.1.1.1+1195

Type: External

State: Established Flags: <>

Expiring Time: 00:02:19

Last State: OpenConfirm Last Event: RecvKeepAlive

Last Error: None

Options: <KeepAll Ttl>

Peer Version: 4 Peer ID: 201.1.1.2 Local ID: 200.1.1.1

Active Holdtime: 180s, Keepalive: 60s

Last traffic (seconds): Received 41 Sent 41 Checked 41

Input messages: Total 4 Updates 1 Octets 125

Output messages: Total 4 Updates 1 Octets 148

Route Queue Timer: unset

Peer capabilities:

Route refresh: advertised and received

Ipv4-family Unicast: advertised and received

Configuration within the peer :

no export policy route-policy

no export policy ip-prefix

no export policy filter-policy

no export policy acl

no import policy route-policy

no import policy ip-prefix

no import policy filter-policy

no import policy acl

no default route produce

Table 5-5 Description of the fields of the display bgp peer verbose command

Field	Description
Peer	IP address of peer and port number used by the peer to establish TCP connection
Local	IP address and port number used to establish TCP connection of local end
Type	Type of peer: Internal for IBGP, and External for EBGP
State	State of peer
Flags	Flags of peer
Last State	Last state before entering the current state
Last Event	Last event of neighbor state machine
Last Error	Last error of neighbor state machine
Options	Options

5.1.16 display bgp routing-table

Syntax

display bgp routing-table [ ip-address [ mask ] ]

View

Any view

Parameter

ip-address: Destination of the network.

mask: Mask of the network.

Description

Use the display bgp routing-table command to view all the BGP routing information.

Example

# Display all the BGP routing information.

<H3C> display bgp routing-table

Flags: # - valid ^ - active I - internal

D - damped H - history S - aggregate suppressed

B – balance

Dest/Mask Next-hop Med Local-pref Origin As-path

-----------------------------------------------------------------------

#^ 129.1.1.0/24 5.5.5.5 IGP 600

#^ 129.1.2.0/24 5.5.5.5 IGP 600

#^ 129.1.3.0/24 5.5.5.5 IGP 600

#^ 129.1.4.0/24 5.5.5.5 IGP 600

#^ 129.1.5.0/24 5.5.5.5 IGP 600

#^ 129.1.6.0/24 5.5.5.5 IGP 600

#^ 129.1.7.0/24 5.5.5.5 IGP 600

#^ 129.1.8.0/24 5.5.5.5 IGP 600

#^ 129.1.9.0/24 5.5.5.5 IGP 600

#^ 129.1.10.0/24 5.5.5.5 IGP 600

Table 5-6 Description of the fields of the display bgp routing-table command

Field	Description
Flags	State flags: # - valid (valid) ^ - best (selected) D – damped (discarded) H – history (history) I – internal (interior gateway protocol) S - aggregate suppressed (suppressed) B – balance (equivelant route)
Dest/Mask	Destination address/Mask
Next Hop	IP address of next hop
Med	MULTI_EXIT_DISC attribute value, which ranges from 0 to 4294967295
Local-Pref	Local preference, which ranges from 0 to 4294967295
Origin	Origin attribute of route, which indicates that the route updates its origin relative to the route originating it from AS. It has three optional values:
	IGP	The route belongs to inside of AS. BGP treats aggregate route and the route defined by the command network as inside of AS, and origin type as IGP.
	EGP	The route is learned from exterior gateway protocol (EGP).
	INC	Short for INCOMPLETE: indicates that the original source of the route information is unknown (learned by other methods). BGP sets the origin of the route imported through other IGP protocols as INCOMPLETE
As-path	AS-path attribute of route, which records all AS areas that the route passes. With it, route loop can be avoided

5.1.17 display bgp routing-table as-path-acl

Syntax

display bgp routing-table as-path-acl acl-number

View

Any view

Parameter

acl-number: Specifies matched AS path list number ranging from 1 to 199.

Description

Use the display bgp routing-table as-path-acl command to view routes that match an as-path acl.

Example

# Display routes that match the as-path-acl 1.

<H3C> display bgp routing-table as-path-acl 1

Flags: # - valid, ^ - best,

D - damped, H - history,

I - internal, S – aggregate suppressed

B - balance

Dest/Mask Pref Next-Hop Med Local-pref Origin As-path

--------------------------------------------------------------------

#^ 1.1.1.0/24 256 10.10.10.1 0 IGP 200

#^ 1.1.2.0/24 256 10.10.10.1 0 IGP 200

#^ 1.1.3.0/24 256 10.10.10.1 0 IGP 200

#^ 2.2.3.0/24 256 10.10.10.1 0 INC 200

#^ 4.4.4.0/24 256 10.10.10.1 0 INC 200

#^ 9.9.9.0/24 256 10.10.10.1 0 INC 200

#^ 10.10.10.0/24 256 10.10.10.1 0 IGP 200

#^ 22.1.0.0/16 256 200.1.7.2 100 INC 200

# 88.1.0.0/16 60 0.0.0.0 IGP

Table 5-7 Description of the fields of the display bgp routing-table as-path-acl command

Field	Description
Dest/Mask	Destination address/Mask
Pref	Preference
Nexthop	IP address of next hop
Med	MULTI_EXIT_DISC attribute value
Local-pref	Local preference
Origin	Origin attribute of route, which indicates that the route updates its origin relative to the route originating it from AS. It has three optional values:
	IGP	The route belongs to inside of AS. BGP treats aggregate route and the route defined by the command network as inside of AS, and origin type as IGP.
	EGP	The route is learned from exterior gateway protocol (EGP).
	INC	Short for INCOMPLETE: indicates that the original source of the route information is unknown (learned by other methods). BGP sets the origin of the route imported through other IGP protocols as INCOMPLETE
As-path	AS-path attribute of route, which records all AS areas that the route passes. With it, route loop can be avoided

5.1.18 display bgp routing-table cidr

Syntax

display bgp routing-table cidr

View

Any view

Parameter

None

Description

Use the display bgp routing-table cidr command to view the routing information about the non-natural mask (namely Classless Interdomain Routing, CIDR).

Example

<H3C> display bgp routing-table cidr

Flags: # - valid, ^ - best,

D - damped, H - history,

I - internal, S – aggregate suppressed

B – balance

Dest/Mask Pref Next-Hop Med Local-pref Origin As-path

--------------------------------------------------------------------

#^ 22.1.0.0/16 256 200.1.7.2 100 INC 200

# 88.1.0.0/16 60 0.0.0.0 IGP

For detailed description of the output information, see Table 5-6.

5.1.19 display bgp routing-table community

Syntax

display bgp routing-table community [ aa:nn | no-export-subconfed | no-advertise | no-export ]* [ whole-match ]

View

Any view

Parameter

aa:nn: Specifies a community number.

no-export-subconfed: Does not send matched route outside AS.

no-advertise: Sends matched route to no peers.

no-export: Does not advertise the route to outside the AS or the confederation, but can advertise the route to other sub-Ass in the confederation.

whole-match: Configures to display the exactly matched routes.

Description

Use the display bgp routing-table community command to view the routing information related to the specified BGP community number in the routing table.

Example

# Display the routing information matching BGP community number 11:22.

<H3C> display bgp routing-table community 11:22

Flags: # - valid, ^ - best,

D - damped, H - history,

I - internal, S – aggregate suppressed

B – balance

Dest/Mask Pref Next-Hop Med Local-pref Origin As-path

--------------------------------------------------------------------

#^ 1.0.0.0/8 256 172.10.0.2 100 IGP

#^ 2.0.0.0/8 256 172.10.0.2 100 IGP

For detailed description of the output information, see Table 5-6.

5.1.20 display bgp routing-table community-list

Syntax

display bgp routing-table community-list community-list-number [ whole-match ]

View

Any view

Parameter

community-list-number: Specifies a community-list.

whole-match: Configures to display the exactly matched routes.

Description

Use the display bgp routing-table community-list command to view the routing information matching the specified BGP community list.

Example

# Display the routing information matching BGP community list 1.

[H3C] display bgp routing-table community-list 1

Flags: # - valid, ^ - best,

D - damped, H - history,

I - internal, S – aggregate suppressed

B – balance

Destination/Mask Pref Next-hop Med Local-Pref Origin As-Path

-------------------------------------------------------------------

1.1.1.0/24 256 10.10.10.1 0 IGP 200

1.1.2.0/24 256 10.10.10.1 0 IGP 200

1.1.3.0/24 256 10.10.10.1 0 IGP 200

2.2.3.0/24 256 10.10.10.1 0 INC 200

4.4.4.0/24 256 10.10.10.1 0 INC 200

9.9.9.0/24 256 10.10.10.1 0 INC 200

10.10.10.0/24 0 10.10.10.2 0 IGP

10.10.10.0/24 256 10.10.10.1 0 IGP 200

For detailed description of the output information, see Table 5-6.

5.1.21 display bgp routing-table dampened

Syntax

display bgp routing-table dampened

View

Any view

Parameter

None

Description

Use the display bgp routing-table dampened command to view BGP dampened routes.

Example

# View BGP dampened information.

<H3C> display bgp routing-table dampened

Flags: # - valid, ^ - best,

D - damped, H - history,

I - internal, S – aggregate suppressed

B – balance

Dest/Mask Source Damping-limit Origin As-path

-----------------------------------------------------------------

#D 11.1.0.0/16 133.1.1.2 1:20:00 IGP 200

Table 5-8 Description of the fields of the display bgp routing-table dampened command

Field	Description
Flags	State flags: # - valid (valid) ^ - best (selected) D – damped (discarded) H – history (history) I – internal (interior gateway protocol) S - aggregate suppressed (suppressed)
#D	The valid and damped route
Dest/Mask	The dampened route to the destination network 11.1.0.0
Source	The nexthop of the route
Damping-limit	The time before dampening turns invalid and the route can be reused.
Origin	Origin attribute of route, which indicates that the route updates its origin relative to the route originating it from AS. It has three optional values:
	IGP	The route belongs to inside of AS. BGP treats aggregate route and the route defined by the command network as inside of AS, and origin type as IGP.
	EGP	The route is learned from exterior gateway protocol (EGP).
	INC	Short for INCOMPLETE: indicates that the original source of the route information is unknown (learned by other methods). BGP sets the origin of the route imported through other IGP protocols as INCOMPLETE
As-path	AS-path attribute of route, which records all AS areas that the route passes. With it, route loop can be avoided

5.1.22 display bgp routing-table different-origin-as

Syntax

display bgp routing-table different-origin-as

View

Any view

Parameter

None

Description

Use the display bgp routing-table different-origin-as command to view routes that have different source autonomous systems

Example

# View the routes that have different source ASs.

<H3C> display bgp routing-table different-origin-as

Flags: # - valid, ^ - best,

D - damped, H - history,

I - internal, S – aggregate suppressed

B – balance

Destination/Mask Pref Next-hop Med Local-Pref Origin As-Path

------------------------------------------------------------------

10.10.10.0/24 0 10.10.10.2 0 IGP

10.10.10.0/24 256 10.10.10.1 0 IGP 200

For detailed description of the output information, see Table 5-6.

5.1.23 display bgp routing-table flap-info

Syntax

display bgp routing-table flap-info [ { regular-expression as-regular-expression } | { as-path-acl acl-number } | { network-address [ mask [ longer-match ] ] } ]

View

Any view

Parameter

as-regular-expression: The route flap-info matching AS path regular expression.

acl-number: Number of the specified AS path to be matched, ranging from 1 to 199.

network-address: Displays the flap information of this IP address.

mask: Network mask.

longer-match: Shows the route flap-info that is more specific than address, mask.

Description

Use the display bgp routing-table flap-info command to view BGP flap-info. If the network-address mask arguments are set to 0.0.0.0 0.0.0.0, this command displays the flap statistics of all BGP routes.

Example

# Display BGP flap-info.

<H3C> display bgp routing-table flap-info

Flags: # - valid, ^ - best,

D - damped, H - history,

I - internal, S – aggregate suppressed

B – balance

Dest/Mask Source Keepup-time Damping-limit Flap-times Origin As-path

--------------------------------------------------------------------

#D 11.1.0.0/16 133.1.1.2 48 1:20:30 4 IGP 200

Table 5-9 Description of the fields of the display bgp routing-table flap-info command

Item	Description
Flags	State flags: # - valid (valid) ^ - best (selected) D – damped (discarded) H – history (history) I – internal (interior gateway protocol) S - aggregate suppressed (suppressed)
#D	The valid and damped route
Dest/Mask	The dampened route to the destination network 11.1.0.0
Source	The nexthop of the route
Keepup-time	The time that route damping has continued
Damping-limit	The time before dampening turns invalid and the route can be reused.
Flap-times	The times of the route flap
Origin	Origin attribute of route, which indicates that the route updates its origin relative to the route originating it from AS. It has three optional values:
	IGP	The route belongs to inside of AS. BGP treats aggregate route and the route defined by the command network as inside of AS, and origin type as IGP.
	EGP	The route is learned from exterior gateway protocol (EGP).
	INC	Short for INCOMPLETE: indicates that the original source of the route information is unknown (learned by other methods). BGP sets the origin of the route imported through other IGP protocols as INCOMPLETE
As-path	AS-path attribute of route, which records all AS areas that the route passes. With it, route loop can be avoided

5.1.24 display bgp routing-table peer

Syntax

display bgp routing-table peer peer-address { advertised | received } [ network-address [ mask ] | statistic ]

View

Any view

Parameter

peer-address: Specifies the peer to be displayed.

advertised: Routing information advertised by the specified peer.

received: Routing information the specified peer received.

network-address mask : IP address and address mask of destination network.

statistic: Statistic routing information of peer.

Description

Use the display bgp routing-table peer command to view the routing information the specified BGP peer advertised or received.

Related command: display bgp peer.

Example

# Display the routing information advertised by BGP peer 10.10.10.1.

[H3C] display bgp routing table peer 10.10.10.1 advertised

Flags: # - valid, ^ - best,

D - damped, H - history,

I - internal, S – aggregate suppressed

B – balance

Dest/mask Next -Hop Med Local-pref Origin As-path

*> 10.10.10.0/24 0.0.0.0 INC

For detailed description of the output information, see Table 5-6.

5.1.25 display bgp routing-table regular-expression

Syntax

display bgp routing-table regular-expression as-regular-expression

View

Any view

Parameter

as-regular-expression: Matched AS regular expression.

Description

Use the display bgp routing-table regular-expression command to view the routing information matching the specified AS regular expression

Example

# Display the routing information matched with ^600$.

<H3C> display bgp routing-table regular-expression ^600$

Flags: # - valid, ^ - best,

D - damped, H - history,

I - internal, S – aggregate suppressed

B - balance

Destination/Mask Pref Next-hop Med Local-Pref Origin Path

--------------------------------------------------------------------

1.1.1.0/24 256 10.10.10.1 0 IGP 200

1.1.2.0/24 256 10.10.10.1 0 IGP 200

1.1.3.0/24 256 10.10.10.1 0 IGP 200

2.2.3.0/24 256 10.10.10.1 0 INC 200

4.4.4.0/24 256 10.10.10.1 0 IGP 200

9.9.9.0/24 256 10.10.10.1 0 INC 200

10.10.10.0/24 256 10.10.10.1 0 IGP 200

For detailed description of the output information, see Table 5-6.

5.1.26 display bgp routing-table statistic

Syntax

display bgp routing-table { advertised | received } statistic

View

Any view

Parameter

advertised: Routing information advertised by the peers.

received: Routing information received by the peers.

statistic: The total number of routes advertised or received by the peer.

Description

Use the display bgp routing-table statistic command to display the total number of routes advertised or received by all BGP peers.

Related command: display bgp peer.

Example

# Display the routing information advertised by all BGP peers.

<H3C> display bgp routing-table advertised statistic

Peer: 200.1.7.2+1062

Advertised routes total: 516

Peer: 150.1.1.2+179

Advertised routes total: 346

Peer: 2 133.1.1.2+179

Advertised routes total: 116

# Display the routing information received by all BGP peers.

<H3C> display bgp routing-table received statistic

Peer: 200.1.7.2+1062

Received routes total: 213

Peer: 150.1.1.2+179

Received routes total: 423

Peer: 2 133.1.1.2+179

Received routes total: 123

5.1.27 filter-policy export

Syntax

filter-policy { acl-number | ip-prefix ip-prefix-name } export [routing-protocol ]

undo filter-policy { acl-number | ip-prefix ip-prefix-name } export [routing-protocol ]

View

BGP view

Parameter

acl-number: Number of IP access control list, in the range of 2000 to 3999.

ip-prefix-name: Name of ip prefix list. Its length ranges from 1 to 19.

routing-protocol: Specified protocols advertising routing information which include direct, ospf, ospf-ase, ospf-nssa, rip, isis and static.

Description

Use the filter-policy export command to filter the advertised routes and only the routes passing the filter can be advertised by BGP.

Use the undo filter-policy export command to cancel the filtration to the advertised routes.

By default, the advertised routes are not filtered.

If the protocol argument is specified, only the imported route generated by the specified protocol is filtered and the imported routes generated by other protocols are not affected. If the protocol argument is not specified, the imported route generated by any protocol will be filtered.

Example

# Use ACL 2000 to filter the routing information advertised by BGP.

[H3C-bgp] filter-policy 2000 export

5.1.28 filter-policy import

Syntax

filter-policy gateway ip-prefix-name import

undo filter-policy gateway ip-prefix-name import

filter-policy { acl-number | ip-prefix ip-prefix-name } import

undo filter-policy { acl-number | ip-prefix ip-prefix-name } import

View

BGP view

Parameter

acl-number: Number of IP access control list, in the range of 2000 to 3999.

ip-prefix-name: Name of an address prefix list. It is used for filtering routing information by destination address. Its length ranges from 1 to 19.

gateway ip-prefix-name: Name of a peer-router address prefix list. It is used for filtering routing information by peer-router address. Its length ranges from 1 to 19.

Description

Use the filter-policy gateway import command to filter the learned routing information advertised by the peer with the specified address.

Use the undo filter-policy gateway import command to cancel the filtration to the routing information advertised by the peer with specified address.

Use the filter-policy import command to filter the received global routing information. Use the undo filter-policy import command to remove the filtration to the received global routing information.

By default, filtration to the received routing information is not configured.

This command can be used to filter the routes received by BGP and determines whether to add the routes to the BGP routing table.

Example

# Use ACL 2000 to filter the routing information received by BGP.

[H3C-bgp] filter-policy 2000 import

5.1.29 group

Syntax

group group-name [ internal | external ]

undo group group-name

View

BGP view

Parameter

group-name: Specifies the name of the peer group. It can consist of numbers or letters with a length ranging from 1 to 47. group-name is locally significant.

internal: Specifies the type of the peer group as IBGP.

external: Specifies the type of the peer group as EBGP, including other groups of other sub-ASs in the confederation.

Description

Use the group group-name command to establish a peer group.

Use the undo group group-name command to cancel the configured peer group.

The default type of BGP peer group is internal.

Rather than existing alone, a BGP peer must belong to a peer group. Therefore, when creating a BGP peer, you must create a BGP peer group first and then add the peer into the group.

All member peers must use the same update policy as the peer group, but they may use different ingress policies.

Example

# Create an IBGP group named test.

[H3C-bgp] group test

5.1.30 import-route

Syntax

import-route protocol [ med med-value | route-policy route-policy-name ]

undo import-route protocol

View

BGP view

Parameter

protocol: Specifies source routing protocols which can be imported, which include direct, ospf, ospf-nssa , ospf-ase, rip, isis and static at present.

med med-value: Specifies the MED value loaded by an imported route, ranging from 0 to 4294967295.

route-policy route-policy-name: Specifies a route-policy used for filtering imported routes of other protocols. It can consist of numbers and letters with a length ranging from 1 to 19.

Description

Use the import-route command to import routes of other protocols.

Use the undo import-route command to cancel importing routes of other protocols.

By default, BGP does not import routes of other protocols.

Example

# Import routes of RIP.

[H3C-bgp] import-route rip

5.1.31 network

Syntax

network ip-address [ address-mask ] [ route-policy route-policy-name ]

undo network ip-address [ address-mask ] [ route-policy route-policy-name ]

View

BGP view

Parameter

ip-address: Network address that BGP advertises.

address-mask: Mask of the network address.

route-policy-name: Route-policy applied to advertised routes.

Description

Use the network command to configure the network routes advertised by the local BGP.

Use the undo network command to cancel the existing configuration.

By default, the local BGP does not advertise any routes.

Example

# Advertise routes to the network segment 10.0.0.0/16.

[H3C-bgp] network 10.0.0.1 255.255.0.0

5.1.32 peer advertise-community

Syntax

peer group-name advertise-community

undo peer group-name advertise-community

View

BGP view

Parameter

group-name: Name of a peer group.

Description

Use the peer advertise-community command to enable the transmission of the community attribute to a peer group.

Use the undo peer advertise-community command to cancel the existing configuration.

By default, the community attribute is not transmitted to any peer group.

Related command: if-match community-list, apply community.

Example

# Transmit community attribute to the peer group named test.

[H3C-bgp] peer test advertise-community

5.1.33 peer allow-as-loop

Syntax

peer { group-name | peer-address } allow-as-loop [ number ]

undo peer { group-name | peer-address } allow-as-loop

View

BGP view

Parameter

group-name: Specifies name of the peer group.

peer-address: Specifies IP address of the peer.

number: Specifies the repeating times of local AS, ranging from 1 to 10.

Description

Use the peer allow-as-loop command to configure the repeating time of local AS.

Use the undo peer allow-as-loop command to remove the repeating time of local AS.

Related command: display current-configuration, display bgp routing-table peer, display bgp routing-table group.

Example

# Specify to configure the repeating times of local AS to 2.

[H3C-bgp] peer 1.1.1.1 allow-as-loop 2

5.1.34 peer as-number

Syntax

peer group-name as-number as-number

undo peer group-name as-number

View

BGP view

Parameter

group-name: Name of peer group.

as-number: Peer AS number of the peer group, the range is 1 to 65535.

Description

Use the peer as-number command to configure the peer AS number of the specified peer group.

Use the undo peer as-number command to delete the peer AS number of the specified peer group.

By default, no peer AS number of the specified peer group is configured.

Example

# Specify the peer AS number for the peer group test as 100.

[H3C-bgp] peer test as-number 100

5.1.35 peer as-path-acl export

Syntax

peer group-name as-path-acl acl-number export

undo peer group-name as-path-acl acl-number export

View

BGP view

Parameter

group-name: Specifies name of the peer group.

acl-number: Number of an AS path list, in the range of 1 to 199.

export: Applies the AS path list to advertised routes.

Description

Use the peer as-path-acl export command to configure filtering Policy of BGP advertised routes based on AS path list.

Use the undo peer as-path-acl command to cancel the existing configuration.

By default, the peer group has no AS path list.

This command can only be configured on the peer group. The acl-number specifies the number of the AS path list. It is configured by the ip as-path-acl command rather than the acl command.

Related command: peer as-path-acl import, ip as-path-acl.

Example

# Configure to filter the routes advertised by the peer group test using the AS path-list 1.

[H3C-bgp] peer test as-path-acl 1 export

5.1.36 peer as-path-acl import

Syntax

peer { group-name | peer-address } as-path-acl acl-number import

undo peer { group-name | peer-address } as-path-acl acl-number import

View

BGP view

Parameter

group-name: Specifies the name of the peer group.

peer-address: Specifies IP address of the peer, in dotted decimal format.

acl-number: Specifies the filter list number of an AS regular expression. The range is 1 to 199.

import: Applies the AS path list to received routes.

Description

Use the peer as-path-acl import command to configure filtering policy of BGP received routes based on AS path list.

Use the undo peer as-path-acl import command to cancel the existing configuration.

By default, the peer/peer group has no AS path list.

The priority of the inbound filter policy configured for the peer is higher than that configured for the peer group.

Related command: peer as-path-acl export.

Example

# Set the AS path ACL of the peer group test to filter BGP received routes.

[H3C-bgp] peer test as-path-acl 1 import

5.1.37 peer connect-interface

Syntax

peer { group-name | peer-address } connect-interface interface-name

undo peer { group-name | peer-address } connect-interface interface-name

View

BGP view

Parameter

group-name: Specified peer group.

peer-address: IP address of the peer.

interface-name: Interface name.

Description

Use the peer connect-interface command to specify the source interface of a route update packet.

Use the undo peer connect-interface command to restore the best source interface.

By default, BGP uses the best source interface.

Usually, BGP uses the optimal route to update the source interface of the packets. However, you can set the mode of the interface to Loopback in order to send route updates even if the interface is not work normally.

Example

# Specify loopback0 as the source interface of a route update packet.

[H3C-bgp] peer test connect-interface loopback 0

5.1.38 peer default-route-advertise

Syntax

peer group-name default-route-advertise

undo peer group-name default-route-advertise

View

BGP view

Parameter

group-name: Specifies name of the peer group.

Description

Use the peer default-route-advertise command to configure a peer group to generate a default route for a peer.

Use the undo peer default-route-advertise command to cancel the existing configuration.

By default, a peer group does not import the default route.

For this command, no default route needs to exist in the routing table. A default route is sent unconditionally to a peer with the next hop as itself.

Example

# Configure a peer group named test to generate a default route.

[H3C-bgp] peer test default-route-advertise

5.1.39 peer description

Syntax

peer { group-name | peer-address } description description-line

undo peer { group-name | peer-address } description

View

BGP view

Parameter

group-name: Group name.

peer-address: Address of the peer.

description-line: Description information configured, which can be letters or numbers with the maximum length of 79.

Description

Use the peer description command to configure the description information of the peer/peer group.

Use the undo peer description command to cancel the description information of the peer/peer group.

By default, description information of peers/peer group is not configured.

Related command: display current-configuration, display bgp routing-table peer, display bgp routing-table group.

Example

# Configure the description information of the peer whose name is group1 as beijing1.

[H3C-bgp] peer group1 description beijing1

5.1.40 peer ebgp-max-hop

Syntax

peer group-name ebgp-max-hop [ ttl ]

undo peer group-name ebgp-max-hop

View

BGP view

Parameter

group-name: Specifies the name of the peer group.

ttl: Maximum hop value. The range is 1 to 255. By default, the value is 64.

Description

Use the peer ebgp-max-hop command to allow the router to establish EBGP connection with the peer on indirectly connected network.

Use the undo peer ebgp-max-hop command to cancel the existing configuration.

By default, this feature is disabled.

Example

# Allow the router to establish EBGP connection with the peer group named test indirectly connected.

[H3C-bgp] peer test ebgp-max-hop

5.1.41 peer enable

Syntax

peer { group-name | peer-address } enable

undo peer { group-name | peer-address } enable

View

BGP view

Parameter

group-name: Specifies the name of the peer group which specifies the entire peer group.

peer-address: IP address of a peer, which specifies a certain peer.

Description

Use the peer enable command to enable the specified peer/peer group.

Use the undo peer enable command to disable the specified peer/peer group.

By default, BGP peer/peer group is enabled.

If the specified peer/peer group is disabled, the router will not exchange routing information with the specified peer/peer group.

Example

# Disable the specified peer. After the configuration, the local router does not exchange BGP routing information with the specified peer.

[H3C-bgp] peer 18.10.0.9 group group1

[H3C-bgp] undo peer 18.10.0.9 enable

5.1.42 peer filter-policy export

Syntax

peer group-name filter-policy acl-number export

undo peer group-name filter-policy acl-number export

View

BGP view

Parameter

group-name: Specifies the name of the peer group.

acl-number: Specifies an IP acl number, ranging from 2000 to 3999.

export: Egress filter policy. It is only applicable to peer groups.

Description

Use the peer filter-policy export command to configure the filter-policy list of routes advertised by a peer group.

Use the undo peer filter-policy export command to cancel the existing configuration.

By default, a peer/peer group has no access control list (acl).

The peer filter-policy export command can only be configured on peer groups.

Related command: peer filter-policy export, ip as-path-acl, peer as-path-acl.

Example

# Configure to use acl 2000 to filter the routes advertised by the peer group test.

[H3C-bgp] peer test filter-policy 2000 export

5.1.43 peer filter-policy import

Syntax

peer { group-name | peer-address } filter-policy acl-number import

undo peer { group-name | peer-address } filter-policy acl-number import

View

BGP view

Parameter

group-name: Specifies the name of the peer group.

peer-address: Specifies the IP address of the peer.

acl-number: Specifies an IP acl number, ranging from 2000 to 3999. That is, you can use basic ACLs or advanced ACLs.

import: Ingress filter policy. It is only applicable to peer groups.

Description

Use the peer filter-policy import command to configure the filter-policy list of the routes received by a peer/peer group.

Use the undo peer filter-policy import command to cancel the existing configuration.

By default, a peer/peer group has no access control list (acl).

Related command: ip as-path-acl, peer as-path-acl export, peer as-path-acl import.

The priority of the inbound filter policy configured for the peer is higher than that configured for the peer group.

Example

# Configure to use acl 2000 to filter the routes received by the peer group test..

[H3C-bgp] peer test filter-policy 2000 import

5.1.44 peer graceful-restart

Syntax

peer { peer-address | group-name } graceful-restart

undo peer { peer-address | group-name } graceful-restart

View

BGP view

Parameter

group-name: Name of the peer group, which can consist of 1 to 47 alphabetic letters and numerals.

peer-address: IP address of the peer.

Description

Use the peer graceful-restart command to enable the Graceful-restart ability of the specified peer or peer group.

Use the undo peer graceful-restart command to disable the Graceful-restart ability of the specified peer or peer group.

If the Graceful-restart ability is enabled for a peer group first, peers added into this group afterwards also inherits the Graceful-restart ability of this group.

It is allowed that peers in a peer group have a different Graceful-restart ability than that configured for this peer group. For example, after configuring Graceful-restart for the whole peer group, you can disable the Graceful-restart ability of a specific peer. To do so, you must configure Graceful-restart for the peer group first, and then use the undo graceful-restart command on the peer.

Example

# Enable Graceful-restart on a peer whose IP address is 10.2.2.2.

[H3C-bgp] peer 10.2.2.2 graceful-restart

# Enable Graceful-restart on an EBGP peer group named “TEST”, and disable Graceful-restart on Peer 10.1.1.1 in this group.

<H3C>system-view

[H3C-bgp] group TEST external

[H3C-bgp] peer 10.1.1.1 group TEST as-number 200

[H3C-bgp] peer TEST graceful-restart

[H3C-bgp] undo peer 10.1.1.1 graceful-restart

5.1.45 peer group

Syntax

peer peer-address group group-name [ as-number as-number ]

undo peer peer-address

View

BGP view

Parameter

group-name: Specifies the name of the peer group, which can consist of letters and numbers with a length ranging from 1 to 47.

peer-address: Specifies the IP address of the peer.

as-number: Peer AS number of the peer/peer group, in the range of 1 to 65535.

Description

Use the peer group command to add a peer to the existing peer group.

Use the undo peer group command to delete the specified peer.

When you add a peer to an IBGP peer group, the as-number as-number argument is not available.

When a peer is added to an EBGP peer group that has been assigned an AS number, the peer inherits the configuration of the group. You cannot assign an AS number to the peer separately. If the peer group is not assigned an AS number, you need to assign an AS number to each peer when adding it to the group. The peers in the same peer group may use different AS numbers.

Example

# Add a peer to the peer group TEST.

[H3C-bgp] group TEST

[H3C-bgp] peer TEST as-number 2004

[H3C-bgp] peer 10.1.1.1 group TEST

5.1.46 peer ip-prefix export

Syntax

peer { group-name | peer-addess } ip-prefix prefixname export

undo peer { group-name | peer-addess } ip-prefix prefixname export

View

BGP view

Parameter

group-name: Name of peer group.

prefixname: Name of the specified ip-prefix. It is a character string of 1 to 19 characters.

peer-address: IP address of the peer, in dotted decimnal notation.

export: Applies the filtering policy on the route transmitted to the specified peer/peer group.

Description

Use the peer ip-prefix export command to configure the route filtering policy of routes advertised by the peer group based on the ip-prefix.

Use the undo peer ip-prefix export command to cancel the route filtering policy of the peer/peer group based on the ip-prefix.

By default, the route filtering policy of the peer group is not specified.

The peer ip-prefix export command can only be configured on peer groups.

Related command: peer ip-prefix import.

Example

# Configure the route filtering policy of the peer group based on the ip-prefix 1.

[H3C-bgp] peer group1 ip-prefix list1 export

5.1.47 peer ip-prefix import

Syntax

peer { group-name | peer-address } ip-prefix prefixname import

undo peer { group-name | peer-address } ip-prefix prefixname import

View

BGP view

Parameter

group-name: Name of peer group.

peer-address: IP address of the peer.

prefixname: Name of the specified ip-prefix.

import: Applies the filtering policy on the route received by the specified peer/peer group.

Description

Use the peer ip-prefix import command to configure the route filtering policy of routes received by the peer/peer group based on the ip-prefix.

Use the undo peer ip-prefix import command to cancel the route filtering policy of the peer/peer group based on the ip-prefix.

By default, the route filtering policy of the peer/peer group is not specified.

The priority of the inbound filter policy configured for the peer is higher than that configured for the peer group.

Related command: peer ip-prefix export.

Example

# Configure the route filtering policy of the peer group based on the ip-prefix 1.

[H3C-bgp] peer group1 ip-prefix list1 import

5.1.48 peer next-hop-local

Syntax

peer group-name next-hop-local

undo peer group-name next-hop-local

View

BGP view

Parameter

group-name: Specifies the name of the peer group.

Description

Use the peer next-hop-local command to configure to perform the process of the next hop in the route to be advertised to the peer/peer group and take the address of itself as the next hop.

Use the undo peer next-hop-local command to cancel the existing configuration.

Example

# When BGP distributes the routes to the peer group “test”, it will take its own address as the next hop.

[H3C-bgp] peer test next-hop-local

5.1.49 peer password

Syntax

peer { group-name | peer-address } password { cipher | simple } password

undo peer { group-name | peer-address } password

View

BGP view

Parameter

group-name: Name of the peer group.

peer-address: IP address of the peer, in dotted decimal format.

cipher: Displays the configured password in cipher text mode.

simple: Displays the configured password in simple text mode.

password: Password in character string form with 1 to 16 characters when parameter simple is configured in the command or in the event of inputting the password in simple text mode but parameter cipher is configured in the command; with 24 characters in the event of inputting the password in cipher text mode when parameter cipher is configured in the command.

Description

Use the peer password command to configure MD5 authentication for BGP during TCP connection setup.

Use the undo peer password command to cancel the configuration.

By default, BGP does not perform MD5 authentication when TCP connection is set up.

Once MD5 authentication is enabled, both parties involved in the authentication must be configured with identical authentication modes and passwords. Otherwise, TCP connection will not be set up because of the failed authentication.

This command is used to configure MD5 authentication for the specific peer only when the peer group to which the peer belongs is not configured with MD5 authentication. Otherwise, the peer should be consistent with the peer group.

Example

# Adopt MD5 authentication on the TCP connection set up between the local router at 10.1.100.1 and the peer router at 10.1.100.2.

[H3C-bgp] peer 10.1.100.2 password simple test

# Perform the similar configuration on the peer.

[H3C-bgp] peer 10.1.100.1 password simple test

5.1.50 peer public-as-only

Syntax

peer group-name public-as-only

undo peer group-name public-as-only

View

BGP view

Parameter

group-name: Name of a peer group.

Description

Use the peer public-as-only command to configure not to carry the AS number when transmitting BGP update packets.

Use the undo peer public-as-only command to configure to carry the AS number when transmitting BGP update packets.

By default, private AS number is carried when transmitting BGP update packets.

Generally, BGP transmits BGP update packets with the AS number (either public AS number or private AS number). To enable some outbound routers to ignore the AS number when transmitting update packets, you can configure not to carry the AS number when transmitting BGP update packets.

Example

# Configure not to carry the private AS number when transmitting BGP update packets to the peer named test.

[H3C-bgp] peer test public-as-only

5.1.51 peer restart-timer

Syntax

peer group-name restart-timer time-value

undo peer group-name restart-timer

View

BGP view

Parameter

group-name: Name of the peer group, which can consist of 1 to 47 alphabetic letters and numerals.

time-value: Restart-time value of the peer, in seconds.

Description

Use the peer restart-timer command to configure the Graceful-restart Restart-time of a peer or peer group.

Use the undo peer restart-timer command to restore the default value of the Graceful-restart Restart-time of a peer or peer group.

The setting of the Restart-time value is not directly related to the configuration of Graceful-restart. That is, Restart-time can be configured before the configuration of the Graceful-restart ability.

The default value of Restart-time is 180 seconds.

Example

# Set the Restart-time of peer group “TEST” to 100 seconds.

<H3C>system-view

[H3C-bgp] group TEST external

[H3C-bgp] peer TEST restart-timer 100

5.1.52 peer reflect-client

Syntax

peer group-name reflect-client

undo peer group-name reflect-client

View

BGP view

Parameter

group-name: Name of peer group.

Description

Use the peer reflect-client command to configure a peer group as the route reflector client.

Use the undo peer reflect-client command to cancel the existing configuration.

By default, there is no route reflector in an AS.

This command only applies to IBGP peer groups.

Related command: reflect between-clients, reflector cluster-id.

Example

# Configure the peer group “test” as the route reflector client.

[H3C-bgp] peer test reflect-client

5.1.53 peer route-policy export

Syntax

peer group-name route-policy route-policy-name export

undo peer group-name route-policy route-policy-name export

View

BGP view

Parameter

group-name: Name of peer group.

route-policy-name: The specified Route-policy.

Description

Use the peer route-policy export command to assign the Route-policy to the routes advertised to the peer group.

Use the undo peer route-policy export command to delete the specified Route-policy.

By default, the peer/peer group has no Route-policy association.

The peer route-policy export command only applies to peer groups.

Related command: peer route-policy import.

Example

# Apply the Route-policy named test-policy to the route going out of the peer group test.

[H3C-bgp] peer test route-policy test-policy export

5.1.54 peer route-policy import

Syntax

peer { group-name | peer-address } route-policy route-policy-name import

undo peer { group-name | peer-address } route-policy route-policy-name import

View

BGP view

Parameter

group-name: Name of peer group.

peer-address: IP address of the peer.

route-policy-name: The specified Route-policy.

Description

Use the peer route-policy import command to assign the Route-policy to the route coming from the peer/peer group.

Use the undo peer route-policy import command to delete the specified Route-policy.

By default, the peer/peer group has no Route-policy association.

The priority of the inbound filter policy configured for the peer is higher than that configured for the peer group.

Related command: peer route-policy export.

Example

# Apply the Route-policy named test-policy to the route coming from the peer group test.

[H3C-bgp] peer test route-policy test-policy import

5.1.55 peer route-update-interval

Syntax

peer group-name route-update-interval seconds

undo peer group-name route-update-interval

View

BGP view

Parameter

group-name: Specifies the name of the configured peer group.

seconds: The minimum interval of sending route update message. The range is from 0 to 600 seconds. By default, the advertisement interval is 5 seconds for internal peer/peer group, and 30 seconds for external peer/peer group.

Description

Use the peer route-update-interval command to configure the interval for the transmission route of a peer group.

Use the undo peer route-update-interval command to restore the interval to the default value.

Example

# Configure the interval of sending the route update packet of the BGP peer group “test” as 10 seconds.

[H3C-bgp] peer test as-number 100

[H3C-bgp] peer test route-update-interval 10

5.1.56 peer shutdown

Syntax

peer { peer-address | group-name } shutdown

undo peer { peer-address | group-name } shutdown

View

BGP view, BGP multicast view, BGP L2VPN view and BGP VRF view

Parameter

group-name: Peer group names, which contain letters and numbers. The name length ranges from 1 to 47.

peer-address: Peer IP address.

Description

Use the peer shutdown command to disconnect and not to reconnect BGP connections, without deleting BGP configurations.

Example

# Disconnect without reconnecting Peer 1.1.1.1 in the BGP unicast view.

[H3C-bgp] peer 1.1.1.1 shutdown

# Disconnect without reconnecting the Group Out in the BGP unicast view.

[H3C-bgp] peer out shutdown

# Disconnect without reconnecting Peer 1.1.1.1 in the BGP vrf view.

[H3C-bgp-af-vpn-instance] peer 1.1.1.1 shutdown

# Disconnect but not reconnect the out group in the BGP vrf view.

[H3C-bgp-af-vpn-instance] peer out shutdown

5.1.57 peer timer

Syntax

peer { group-name | peer-address } timer keep-alive keepalive-interval hold holdtime-interval }

undo peer { group-name | peer-address } timer

View

BGP view

Parameter

group-name: Name of peer group.

peer-address: IP address of the peer.

keepalive-interval: Keepalive interval to be specified. The range is 1 to 4294967295. By default, its value is 60 seconds.

holdtime-interval: Holdtime interval to be specified. The range is 3 to 4294967295. By default, its value is 180 seconds.

Description

Use the peer timer command to configure the Keepalive and Holdtime intervals for the specified peer/peer group.

Use the undo peer timer command to restore the default timer settings.

The timer configured by using this command has a higher priority than the one configured by using the timer command.

Example

# Configure Keepalive and Holdtime intervals of the peer group “test”.

[H3C-bgp] peer test timer keep-alive 60 hold 180

5.1.58 preference

Syntax

preference ebgp-value ibgp-value local-value

undo preference

View

BGP view

Parameter

ebgp-value: Sets preference value for routes learned from external peers.

ibgp-value: Sets preference value for routes learned from internal peers.

local-value: Sets preference value for local-originated routes.

The ebgp-value, ibgp-value and local-value arguments are in the range of 1 to 256. By default, the first two is 256 and the last one is 130.

Description

Use the preference command to configure BGP preference.

Use the undo preference command to restore the default preference.

Three types of routes may be involved in BGP: routes learned from external peers, routes learned from internal peers and local-originated routes. You can set preference values for the three types of route.

Example

# Set the preference of EBGP routes, IBGP routes and local-originated routes all to 170.

[H3C-bgp] preference 170 170 170

5.1.59 reflect between-clients

Syntax

reflect between-clients

undo reflect between-clients

View

BGP view

Parameter

None

Description

Use the reflect between-clients command to configure the between-client reflection of a route.

Use the undo reflect between-clients command to disable this function.

After the route reflector is configured, the route reflector reflects the routes of one client to other clients by default.

By default, the clients of a route reflector need not be fully connected. If the clients are fully connected, a route reflector is not required.

Related command: reflector cluster-id, peer reflect-client.

Example

# Disable the reflection between clients.

[H3C-bgp] undo reflect between-clients

5.1.60 reflector cluster-id

Syntax

reflector cluster-id { cluster-id | address }

undo reflector cluster-id

View

BGP view

Parameter

cluster-id: Specifies the cluster ID of the route reflector with the range from 1 to 4294967295. It is an integer.

address: Used as the interface address of the route reflector’s cluster ID.

Description

Use the reflector cluster-id command to configure the cluster ID of the route reflector.

Use the undo reflector cluster-id command to delete the cluster ID of the route reflector.

By default, each route reflector uses its Router ID as the cluster ID.

Usually, there is only one route reflector in a cluster. In this case, the cluster is identified by the router ID of the route reflector. You can configure multiple route reflectors to improve network stability. If there are multiple route reflectors, you can use this command to configure the same cluster ID for all these route reflectors.

Related command: reflect between-clients, peer reflect-client.

Example

# Set the cluster ID of the route reflector as 80.

[H3C-bgp] reflector cluster-id 80

[H3C-bgp] peer 172.38.160.10 reflect-client

5.1.61 refresh bgp

Syntax

refresh bgp { all | peer-address | group group-name } { import | export | multicast | vpn-instance | vpnv4 }

View

User view

Parameter

all: Resets all the connections with BGP.

peer-address: Resets the connection with a specified BGP peer.

group-name: Resets the connection with a specified BGP peer group.

import: Requests the peer for all its routes by sending Route-refresh packets to the peer.

export: Refreshes routes advertised to the peers.

multicast: Refreshes multicast routes.

vpn-instance: VPN instance route.

vpnv4: VPNv4 route.

Description

Use the refresh bgp command to request the peers to refresh the routes.

After the BGP connection is established, only incremental routes are sent. However, some special cases exist. For example, when the routing policy changes, the routes advertised to the peer or the advertised routes from the peer need refreshing so that they can be filtered according to the new policy.

Example

# Request all peers to re-send the routes.

<H3C>refresh bgp all import

5.1.62 reset bgp

Syntax

reset bgp { all | peer-address [ flap-info ] }

View

User view

Parameter

peer-address: Resets the connection with a specified BGP peer.

all: Resets all the connections with BGP.

flap-info: Resets the flap-info of a record at this peer address.

Description

Use the reset bgp peer-address command to reset the connection of BGP with a specified BGP peer.

Use the reset bgp all command to reset all the connections with BGP.

If the BGP policy or the protocol configuration changes, resetting the BGP connection can make the newly configured policy take effect immediately.

Example

# Reset all the BGP connections to enable the new configuration (after configuring the new Keepalive interval and Holdtime interval using the timer command).

<H3C> reset bgp all

5.1.63 reset bgp flap-info

Syntax

reset bgp flap-info [ regular-expression as-regular-expression | as-path-acl acl-number } | network-address [ mask ] ]

View

User view

Parameter

regular-expression as-regular-expression: Resets the flap-info matching the AS path regular expression.

as-path-acl acl-number: Resets the flap-info in consistency with a specified filter list. The range of the acl-number argument is 1 to 199.

network-address: Resets the flap-info of a record at this IP address.

mask: Network mask.

Description

Use the reset bgp flap-info command to reset the flap-info of a route.

Related command: dampening.

Example

# Reset the flap-info of all the routes that go through filter list 1.

<H3C> reset bgp flap-info as-path-acl 1

5.1.64 reset bgp group

Syntax

reset bgp group group-name

View

User view

Parameter

group-name: Specifies the name of the peer group. It is a character string of 1 to 47 characters.

Description

Use the reset bgp group command to reset the connections between the BGP and all the members of a group.

Related command: peer group.

Example

# Reset BGP connections of all members from group1.

<H3C> reset bgp group group1

5.1.65 reset dampening

Syntax

reset bgp dampening [ network-address [ mask ] ]

View

User view

Parameter

network-address: Network IP address related to the clearing attenuation information.

mask: Network mask.

Description

Use the reset dampening command to reset route attenuation information and release suppressed routes.

Related command: dampening, display bgp routing-table dampened.

Example

# Reset the route attenuation information of the specified route 20.1.0.0, and release the suppression of a suppressed route.

<H3C> reset dampening 20.1.0.0 255.255.0.0

5.1.66 summary

Syntax

summary

undo summary

View

BGP view

Parameter

None

Description

Use the summary command to configure auto aggregation of sub-network routes.

Use the undo summary command to disable auto aggregation of sub-network routes.

By default, no auto aggregation of sub-network routes is executed.

After the summary is configured, BGP cannot receive the sub-network routes imported from the IGP, so the amount of the routing information can be reduced.

Example

# Make the auto aggregation of the sub-network routes.

[H3C-bgp] summary

5.1.67 timer

Syntax

timer keep-alive keepalive-interval hold holdtime-interval

undo timer

View

BGP view

Parameter

keepalive-interval: Sets the interval time value for keepalive time which ranges from 1 to 65535. By default, its value is 60 seconds.

holdtime-interval: Sets the interval time value for hold time which ranges from 3 to 65535. By default, its value is 180 seconds.

Description

Use the timer command to configure the Keep-alive and Hold-time timer of BGP.

Use the undo timer command to restore the default value of the Keep-alive and Hold-time of the timer.

Example

# Configure the Keep-alive timer as 120 seconds and Hold-time timer as 360 seconds.

[H3C-bgp] timer keep-alive 120 hold 360

5.1.68 undo synchronization

Syntax

undo synchronization

View

BGP view

Parameter

None

Description

Use the undo synchronization command to cancel the synchronization of BGP and IGP.

By default, BGP does not synchronize with IGP.

This command set asynchronization between BGP IGP. You need not configure it in operations. The system does not support synchronization of BGP and IGP at present.

Example

# Cancel the synchronization of BGP and IGP.

[H3C-bgp] undo synchronization

Chapter 6 IP Routing Policy Configuration Commands

& Note:

In this chapter, a router refers to a general router or an Ethernet switch. To improve readability, such a description of a router will not be given in the other parts of the manual.

6.1 IP Routing Policy Configuration Commands

In some situations, it may be required that only some routing information meeting a certain condition be received. In this case, you can define a Filter-policy to filter advertised routing information so that only the routing information having passed the filtration can be received.

& Note:

For the details about the apply mpls-label, if-match mpls-label and if-match vpn-target commands, refer to the 08-MPLS command module in the H3C S9500 Series Routing Switches Command Manual.

6.1.1 apply as-path

Syntax

apply as-path as-number [ as-number [ as-number ... ] ]

undo apply as-path

View

Route policy view

Parameter

as-number-1... as-number-n: AS number to be added.

Description

Use the apply as-path command to configure AS number to be added in front of the original AS path in Route-policy.

Use the undo apply as-path command to cancel the AS sequence number added in front of the original AS path.

By default, no AS number is set.

If the match condition of Route-policy is met, the AS attribute of the transmitting route will be changed. You can add up to 10 AS numbers.

Example

# Configure AS 200 to be added in front of the original AS path in Route-policy.

[H3C-route-policy] apply as-path 200

6.1.2 apply community

Syntax

undo apply community

View

Route policy view

Parameter

none: Deltes the community attribute of the route.

aa:nn: Community number.

no-export-subconfed: Does not send matched route outside the sub-AS.

no-advertise: Does not send matched route to any peer.

no-export: Does not advertise the route to outside the AS or the confederation, but can advertises to other sub-Ass in the confederation.

additive: Community attribute of the additive route.

Description

Use the apply community command to configure the set BGP community attribute of Route-policy.

Use the undo apply community command to cancel the set BGP community attribute.

By default, BGP community attribute is not set.

If the matching conditions defined in the Route-policy are satisfied, the BGP community attribute is set.

Related command: ip community-list, if-match community-list, route-policy, display bgp routing-table community.

Example

# Configure one Route-policy setcommunity, whose node serial number is 16 and match mode is permit, and enter Route policy view to set match conditions and attribute modification actions to be executed.

[H3C] route-policy permit node 16

[H3C-route-policy] if-match as-path 8

[H3C-route-policy] apply community no-export

6.1.3 apply cost

Syntax

apply cost value

undo apply cost

View

Route policy view

Parameter

value: Specifies the route cost value of route information.

Description

Use the apply cost command to configure the route cost value of route information. Use the undo apply cost command to cancel the Apply sub-statement.

By default, no Apply sub-statement is defined.

This command is one Apply sub-statement of Route-policy. It configures the route cost value of the routing information that passes the filtration.

Related command: if-match interface, if-match acl, if-match ip-prefix, if-match ip next-hop, if-match cost, if-match tag, route-policy, apply ip next-hop, apply local-preference, apply origin, apply tag.

Example

# Define one Apply sub-statement. When it is used for setting route information attribute, it sets the route metric value of route information as 120.

[H3C-route-policy] apply cost 120

6.1.4 apply cost-type

Syntax

apply cost-type [ internal | external ]

undo apply cost-type

View

Route policy View

Parameter

internal: For BGP, it indicates when a BGP peer advertises routes to its EBGP peer, the peer uses the cost value of IGP as the MED value of BGP. For IS-IS, it indicates the internal cost. For other protocols, it is invalid.

external: It is only valid for IS-IS and it indicates external cost type of IS-IS.

Description

Use the apply cost-type command to configure the route cost type of route information. Use the undo apply cost-type command to cancel the Apply sub-statement.

By default, route cost type is not set.

Example

# Set the cost type of IGP as MED value of BGP.

[H3C-route-policy] apply cost-type internal

6.1.5 apply ip next-hop

Syntax

apply ip next-hop ip-address

undo apply ip next-hop

View

Route policy view

Parameter

ip-address: The next-hop address.

Description

Use the apply ip next-hop command to configure the next hop address in the route information.

Use the undo apply ip next-hop command to cancel the Apply sub-statement.

By default, no Apply sub-statement is defined.

This command is one of the Apply sub-statements of Route-policy. When it is used for setting route information attribute, it sets the next hop address area of route information passing filtration.

Related command: if-match interface, if-match acl, if-match ip-prefix, if-match ip next-hop, if-match cost, if-match tag, route-policy, apply local-preference, apply cost, apply origin, apply tag.

Example

# Define an Apply sub-statement. Set the next hop address of route information as 193.1.1.8 when it is used for setting route information attribute.

[H3C-route-policy] apply ip next-hop 193.1.1.8

6.1.6 apply isis

Syntax

apply isis [ level-1 | level-2 | level-1-2 ]

undo apply isis

View

Route policy view

Parameter

level-1: Sets to import the matched route to Level-1 area.

level-2: Sets to import the matched route to Level-2 area.

level-1-2: Sets to import the matched route to both Level-1 and Levle-2 area.

Description

Use the apply isis command to configure to apply the level of a matched route to be imported to Level-1, Level-2 or Level-1-2.

Use the undo apply isis command to cancel the Apply sub-statement.

By default, no apply clause is defined.

Example

# Define an apply clause, setting to import the route to a level-2 area.

[H3C-route-policy] apply isis level-2

6.1.7 apply local-preference

Syntax

apply local-preference local-preference

undo apply local-preference

View

Route policy view

Parameter

local-preference: Newly set local preference.

Description

Use the apply local-preference command to configure to apply the local preference of route information.

Use the undo apply local-preference command to cancel the Apply sub-statement.

Example

# Define an Apply sub-statement. Apply the local preference level of route information as 130 when this Apply sub-statement is used for setting route information attribute. .

[H3C-route-policy] apply local-preference 130

6.1.8 apply origin

Syntax

apply origin { igp | egp as-number | incomplete }

undo apply origin

View

Route policy view

Parameter

igp: Sets the BGP route information source as internal route.

egp: Sets the BGP route information source as external route

as-number: Specifies AS number of external route.

incomplete: Sets the BGP route information source as unknown source.

Description

Use the apply origin command to configure to apply the route source.

Use the undo apply origin command to cancel the Apply sub-statement.

Example

# Define an Apply sub-statement. When it is used for setting route information attribute, it sets the route source of BGP route information as IGP.

[H3C-route-policy] apply origin igp

6.1.9 apply tag

Syntax

apply tag value

undo apply tag

View

Route policy view

Parameter

value: Specifies the tag value of route information.

Description

Use the apply tag command to configure to set the tag area of OSPF route information. Use the undo apply tag command to cancel the Apply sub-statement.

Example

# Define one Apply sub-statement. When it is used for setting route information attribute, it sets the tag area of route information as 100.

[H3C-route-policy] apply tag 100

6.1.10 display ip ip-prefix

Syntax

display ip ip-prefix [ ip-prefix-name ]

View

Any view

Parameter

ip-prefix-name: Specifies displayed address prefix list name.

Description

Use the display ip ip-prefix command to view the address prefix list.

If no ip-prefix-name is specified, all configured address prefix lists are displayed.

Related command: ip ip-prefix.

Example

# Display the information of the address prefix list named as p1.

<H3C> display ip ip-prefix p1

name index conditions ip-prefix / mask GE LE

p1 10 permit 10.1.0.0/16 17 18

Table 6-1 Description of the fields of the display ip ip-prefix command

Field	Description
name	Name of ip-prefix
index	Internal sequence number of ip-prefix
conditions	Mode: permit or deny
ip-prefix / mask	Address and network segment length of ip-prefix
GE	Greater-equal value of ip-prefix network segment length
LE	Less-equal value of ip-prefix network segment length

6.1.11 display route-policy

Syntax

display route-policy [ route-policy-name ]

View

Any view

Parameter

route-policy-name: Specifies displayed Route-policy name.

Description

Use the display route-policy command to view the configured Route-policy.

If the route-policy-name argument is not specified, all configured Route-policies are displayed.

Related command: route-policy.

Example

# Display the information of Route-policy named as policy1.

<H3C> display route-policy policy1

Route-policy : policy1

Permit 10 : if-match (prefixlist) p1

apply cost 100

matched : 0 denied : 0

Table 6-2 Description of the fields of the display route-policy command

Field	Description
Route-policy	Name of ip-prefix
Permit 10	Information of the route-policy with mode configured as permit and node as 10:
	if-match (prefixlist) p1	The configured if-match clause
	apply cost 100	Apply routing cost 100 to the routes matching the conditions defined by if-match clause
	matched	Number of routes matching the conditions set by if-match clause
	denied	Number of routes not matching the conditions set by if-match clause

6.1.12 filter-policy export

Syntax

filter-policy { acl-number | ip-prefix ip-prefix-name } export [ routing-protocol ]

undo filter-policy { acl-number | ip-prefix ip-prefix-name } export [routing-protocol ]

View

Routing protocol view

Parameter

acl-number: Number of the access control list used for matching the destination address field of the routing information.

ip-prefix-name: Address prefix list used for matching the routing information destination address field.

routing-protocol: The routing information of which kind of route protocol to be filtered.

Description

Use the filter-policy export command to configure to set the filtering conditions of the routing information advertised by a certain type of routing protocols.

Use the undo filter-policy export command to cancel the filtering conditions set.

By default, the advertised routing information is not filtered.

Related command: filter-policy import.

Example

# Define the filtering rules for advertising the routing information of RIP. Only the routing information passing the filtering of address prefix list p1 will be advertised by RIP.

[H3C-rip] filter-policy ip-prefix p1 export

6.1.13 filter-policy import

Syntax

filter-policy gateway ip-prefix-name import

undo filter-policy gateway ip-prefix-name import

filter-policy { acl-number | ip-prefix ip-prefix-name } import

undo filter-policy { acl-number | ip-prefix ip-prefix-name } import

View

Routing protocol view

Parameter

acl-number: The access control list number used for matching the destination address field of the routing information.

ip-prefix ip-prefix-name: The prefix address list name. Its matching object is the destination address field of the routing information.

gateway ip-prefix-name: The prefix address list name of the neighbor router address. Its matching object is the routing information advertised by the specified neighbor router.

Description

Use the filter-policy gateway import command to filter the received routing information advertised by a specified router.

Use the undo filter-policy gateway import command to cancel the setting of the filtering condition.

Use the filter-policy import command to set the condition for filtering the routing information.

Use the undo filter-policy import command to cancel the setting of filter condition.

By default, the received routing information is not filtered. To ignore some routing information received, you can use the filter-policy command to set the filter condition.

Related command: filter-policy export.

Example

# Define the filtering rule for receiving routing information of RIP. Only the routing information filtered through the address prefix list p1 can be received by RIP.

[H3C-rip] filter-policy ip-prefix p1 import

6.1.14 if-match { acl | ip-prefix }

Syntax

if-match { acl acl-number | ip-prefix ip-prefix-name }

undo if-match { acl | ip-prefix }

View

Route policy view

Parameter

acl-number: Specifies the number of the access control list used for filtration.

ip-prefix-name: Specifies the name of the prefix address list used for filtration.

Description

Use the if-match { acl | ip-prefix } command to specify one matching rule for the route-policy and configure the IP address range to match the Route-policy.

Use the undo if-match { acl | ip-prefix } command to cancel the setting of the match rule.

Filtration is performed by quoting an ACL or a prefix address list.

Related commands: if-match interface, if-match ip next-hop, if-match cost, if-match tag, route-policy, apply ip next-hop, apply cost, apply local-preference, apply origin, apply tag.

Example

# Define an if-match sub-statement. When the sub-statement is used for filtering route information, the route information filtered by route destination address through address prefix list p1 can pass the if-match sub-statement.

[H3C-route-policy] if-match ip-prefix p1

6.1.15 if-match as-path

Syntax

if-match as-path acl-number

undo if-match as-path

View

Route policy view

Parameter

acl-number: AS path list number, ranging from 1 to 199.

Description

Use the if-match as-path command to match the AS path domain of the BGP routing information.

Use the undo if-match as-path command to cancel the match of AS path domain.

By default, AS path list number is not matched.

This command is an if-match sub-statement of route-policy, used to filter BGP routing information and specify the match condition according to the AS path attribute of the routing information.

Example

# First define an as-path numbered 2, allowing it to contain the routing information of AS 200 and AS 300. Then define a route-policy named “test”. An if-match sub-statement is defined for Node 10 of this route-policy, which quotes the definition of as-path.

[H3C] ip as-path-acl 2 permit 200:300

[H3C] route-policy test permit node 10

[H3C-route-policy] if-match as-path 2

6.1.16 if-match community

Syntax

if-match community { basic-community-number [ whole-match ] | adv-community-number }

undo if-match community

View

Route policy view

Parameter

basic-community-list-number: Basic community list number, ranging from 1 to 99.

adv-community-list-number: Advanced community list number, ranging from 100 to 199.

whole-match: Exact match. That is, all specified communities must be present and only these communities are present.

Description

Use the if-match community command to match the community attribute of the BGP information.

Use the undo if-match community command to cancel the match of the community attribute.

By default, no match operation is done on the community attribute of BGP routes.

This if-match sub-statement of route-policy is used to filter BGP routing information and specify the match condition according to the community attributes of the routing information.

Related command: route-policy, ip community-list.

Example

# First define a community-list numbered 1, allowing it to contain the routing information of AS 100 and AS 200. Then, define a route-policy named “test”. An if-match sub-statement is defined for Node 10 of the route-policy, which quotes the definition of the community-list.

[H3C] ip community-list 1 permit 100:200

[H3C] route-policy test permit node 10

[H3C-route-policy] if-match community 1

6.1.17 if-match cost

Syntax

if-match cost value

undo if-match cost

View

Route policy view

Parameter

value: Specifies the required route metric value, ranging from 0 to 4294967295.

Description

Use the if-match cost command to configure one of the match rules of the route-policy to match the cost of the routing information.

Use the undo if-match cost command to cancel the configuration of the match rule.

By default, no if-match sub-statement is defined.

This is an if-match sub-statement of Route-policy, used to specify the cost of a route matches the specified condition.

Related command: if-match interface, if-match acl, if-match ip-prefix, if-match ip next-hop, if-match tag, route-policy, apply ip next-hop, apply local-preference, apply cost, apply origin, apply tag.

Example

# Define an if-match sub-statement, allowing the routing information with routing cost of 8 to pass this if-match sub-statement.

[H3C-route-policy] if-match cost 8

6.1.18 if-match interface

Syntax

if-match interface interface-type interface-number

undo if-match interface

View

Route policy view

Parameter

interface-type: Specifies interface type.

interface-number: Specifies interface number.

Description

Use the if-match interface command to configure to match the route whose next hop is designated interface.

Use the undo if-match interface command to cancel the setting of matching condition.

By default, no if-match sub-statement is defined.

This command is an if-match sub-statement of route-policy, used to match the interface corresponding to the route next hop in route filtering.

Related commands: if-match acl, if-match ip-prefix, if-match ip next-hop, if-match cost, if-match tag, route-policy, apply ip next-hop, apply cost, apply local-preference, apply origin, apply tag.

Example

# Define an if-match sub-statement to match the route whose next hop interface is Vlan-interface 1

[H3C-route-policy] if-match interface Vlan-interface 1

6.1.19 if-match ip next-hop

Syntax

if-match ip next-hop { acl acl-number | ip-prefix ip-prefix-name }

undo if-match ip next-hop [ ip-prefix ]

View

Route policy view

Parameter

acl-number: Specifies the number of the access control list used for filtration. The range is 2000 to 2999.

ip-prefix-name: Specifies the name of the prefix address list used for filtration. Its length ranges from 1 to 19.

Description

Use the if-match ip next-hop command to configure one match rule on next hop address of routing information for the route-policy.

Use the undo if-match ip next-hop command to cancel the setting of ACL matching condition.

Use the undo if-match ip next-hop ip-prefix command to cancel the setting of address prefix list matching condition.

Filtration is performed by quoting an ACL or an address prefix list.

By default, no if-match sub-statement is defined.

This command is an if-match sub-statement of route-policy used to filter the routing information based on next hop address by referencing an ACL or an address prefix list.

Related command: if-match interface, if-match acl, if-match ip-prefix, if-match cost, if-match tag, route-policy, apply ip next-hop, apply cost, apply local-preference, apply origin, apply tag.

Example

# Define an if-match sub-statement, allowing the routing information whose route next hop address passes the filtration of the prefix address list p1 to pass this if-match sub-statement.

[H3C-route-policy] if-match ip next-hop ip-prefix p1

6.1.20 if-match tag

Syntax

if-match tag value

undo if-match tag

View

Route policy view

Parameter

value: Specifies the value in tag field of OSPF route information.

Description

Use the if-match tag command to configure to match the tag field of OSPF route information.

Use the undo if-match tag command to cancel the existing matching rules.

Related command: if-match interface, if-match acl, if-match ip-prefix, if-match ip next-hop, if-match cost, route-policy, apply ip next-hop, apply cost, apply local-preference, apply origin, apply tag.

Example

# Define an if-match sub-statement, allowing the OSPF routing information whose tag is 8 to pass the if-match sub-statement.

[H3C-route-policy] if-match tag 8

6.1.21 ip as-path-acl

Syntax

ip as-path-acl acl-number { permit | deny } as-regular-expression

undo ip as-path-acl acl-number

View

System view

Parameter

acl-number: Number of AS path list, ranging from 1 to 199.

as-regular-expression: AS regular expression.

Description

Use the ip as-path-acl command to configure an AS path regular express.

Use the undo ip as-path-acl command to disable the defined regular expression.

The configured AS path list can be used on BGP policy.

Related command: peer as-path-acl, display bgp routing-table as-path-acl.

Example

# Configure an AS path list.

[H3C] ip as-path-acl 10 permit 200,300

6.1.22 ip community-list

Syntax

ip community-list basic-comm-list-number { permit | deny } [ aa:nn | internet | no-export-subconfed | no-advertise | no-export ]*

ip community-list adv-comm-list-number { permit | deny } comm-regular-expression

undo ip community-list { basic-comm-list-number | adv-comm-list-number }

View

System view

Parameter

basic-comm-list-number: Number of the basic community list, ranging from 1 to 99.

adv-comm-list-number: Number of the advanced community list, ranging from 100 to 199.

permit: Permits those that match conditions to access.

deny: Denies those that match conditions to access.

aa:nn: Community number.

internet: Advertises all routes.

no-export-subconfed: Used not to advertise the matched route beyond the sub-ASs.

no-advertise: Used not to send the matched route to any peer.

no-export: Does not advertise routes beyond the AS or the confederation, but can advertise routes to other sub-ASs within the confederation.

comm-regular-expression: Community attribute in regular expression format.

Description

Use the ip community-list command to configure a BGP community list.

Use the undo ip community-list command to cancel the configured BGP community list.

The configured community list can be used in BGP policy.

Related command: apply community, display bgp routing-table community-list.

Example

# Define a community attribute list, not allowing to advertise routes with the community attribute beyond the local AS.

[H3C] ip community-list 6 permit no-export-subconfed

6.1.23 ip ip-prefix

Syntax

ip ip-prefix ip-prefix-name [ index index-number ] { permit | deny } network len [ greater-equal greater-equal | less-equal less-equal ]

undo ip ip-prefix ip-prefix-name [ index index-number | permit | deny ]

View

System view

Parameter

ip-prefix-name: The specified address prefix list name. It identifies one address prefix list uniquely.

index-number: Identifies an item in the prefix address list. The item with a smaller index-number will be tested first.

permit: Specifies the match mode of the defined address prefix list items as permit mode. In this case, if the IP address of the route to be filtered matches an entry in the address prefix list, the route passes the filtering and no further check is performed. If not, it is check against the next entry.

deny: Specifies the match mode of the defined address prefix list items as deny mode. In this case, if the IP address of the route to be filtered matches an entry in the address prefix list, the route is denied without further check. If otherwise, the IP address is checked against the next address prefix entry.

network: The IP address prefix range (IP address). If it is 0.0.0.0 0, all the IP addresses are matched.

len: The IP address prefix range (mask length). If it is 0.0.0.0 0, all the IP addresses are matched.

greater-equal, less-equal: The address prefix range [greater-equal, less-equal] to be matched after the address prefix network len has been matched. The meaning of greater-equal is "larger than or equal to", and the meaning of less-equal is "less than or equal to". The range is len <= greater-equal <= less-equal <= 32. When only greater-equal is used, it denotes the prefix range [greater-equal, 32]. When only less-equal is used, it denotes the prefix range [len, less-equal].

Description

Use the ip ip-prefix command to configure an address prefix list or one of its items.

Use the undo ip ip-prefix command to delete an address prefix list or one of its items.

The address prefix list is used for IP address filtering. An address prefix list may contain several items, and each item specifies one address prefix range. The inter-item filtering relation is "OR", i.e. passing an item means passing the filtering of this address prefix list. Not passing the filtering of any item means not passing the filtration of this prefix address list.

The address prefix range may contain two parts, which are determined by len and [greater-equal, less-equal] respectively. If the prefix ranges of these two parts are both specified, the IP to be filtered must match the prefix ranges of these two parts.

If you specify network len as 0.0.0.0 0, it only matches the default route.

If you specify network len as 0.0.0.0 0 less-equal 32, it matches all routes.

Example

# Define an address prefix list named “p1”, permitting the routes of the network segment 10.0.192.0 8 with a mask length of 17 or 18 to pass.

[H3C] ip ip-prefix p1 permit 10.0.192.0 8 greater-equal 17 less-equal 18

6.1.24 route-policy

Syntax

route-policy route-policy-name { permit | deny } node node-number

undo route-policy route-policy-name [ permit | deny | node node-number ]

View

System view

Parameter

route-policy-name: Specifies the Route-policy name to identify one Route-policy uniquely.

permit: Specifies the match mode of the defined Route-policy node as permit mode. When a route satisfy all if-match sub-statements of this node and pass the filtration, the Apply sub-statement of this node will be executed on the route. Otherwise, the route will be tested by the next node.

deny: Specifies the match mode of the defined Route-policy node as deny mode. When a route satisfy all if-match sub-statements of this node and fails to pass the filtration, it will not tested by the next node.

node: Node of the route policy.

node-number: Index of the node in the route-policy. When this route-policy is used for routing information filtration, the node with a smaller node-number will be tested first.

Description

Use the route-policy command to create a route-policy and enter its view.

Use the undo route-policy command to delete the established Route-policy.

By default, no Route-policy is defined.

Route-policy is used for route information filtration or policy routing. One Route-policy comprises of some nodes and each node comprises of some match and Apply sub-statements. The if-match sub-statement defines the match rules of this node and the Apply sub-statement defines the actions after passing the filtration of this node. The filtering relationship between the if-match sub-statements of the node is “and”, i.e., all if-match sub-statements that meet the node. The filtering relation between Route-policy nodes is "OR", i.e. passing the filtering of one node means passing the filtering of this Route-policy. If the information does not pass the filtration of any nodes, it cannot pass the filtration of this Route-policy.

Related command: if-match interface, if-match acl, if-match ip-prefix, if-match ip next-hop, if-match cost, if-match tag, apply ip next-hop, apply local-preference, apply cost, apply origin, apply tag.

Example

# Configure a Route-policy named policy1, whose node number is 10 and match mode mode is permit, and enter Route policy view.

[H3C] route-policy policy1 permit node 10

[H3C-route-policy]

Chapter 7 Route Capacity Configuration Commands

7.1 Route Capacity Configuration Commands

7.1.1 router route-limit

Syntax

router route-limit { 128K | 256K | 512K }

View

System view

Parameter

128K: Sets the maximum number of route entries supported by current system to 128 K.

256K: Sets the maximum number of route entries supported by current system to 256 K.

512K: Sets the maximum number of route entries supported by current system to 512 K.

Description

Use the router route-limit command to set the maximum number of route entries supported by the current system. If the maximum number of route entries supported by a card is less than this number, the system will inhibit the card from working.

By default, the maximum number of route entries is 128 K.

Example

# Set the maximum number of route entries supported by the current system to 256 K.

[H3C] router route-limit 256K

7.1.2 router VRF-limit

Syntax

router VRF-limit { 256 | 512 | 1024 }

View

System view

Parameter

256: Sets the maximum number of VPN routing & forwarding instances (VRFs) supported by current system to 256.

512: Sets the maximum number of VRFs supported by current system to 512.

1024: Sets the maximum number of VRFs supported by current system to 1024.

Description

Use the router VRF-limit command to set the maximum number of VPN routing and forwarding instances (VRFs) supported by current system. If the number of VRFs supported by a card is less than this number, the system will inhibit the card from working. This number is 256 by default.

Example

# Set the maximum number of VRFs supported by current system to 512.

<H3C>system-view

System View: return to User View with Ctrl+Z.

[H3C]router VRF-limit 512

Chapter 8 Recursive Routing Configuration

8.1 Recursive Routing Configuration Commands

8.1.1 route-rely

Syntax

route-rely [ bgp | static ]

undo route-rely [ bgp | static ]

View

System view

Parameter

bgp: Specifies routes learned by the BGP as the type of routes to be controlled.

static: Specifies static routes as the type of routes to be controlled.

Description

Use the route-rely command to enable recursive routing.

Use the undo route-rely command to disable the recursive routing.

By default, both routes learned by the BGP and static routes support recursive routing.

Example

# Disable recursive routing for static routes.

<H3C>system-view

[H3C] undo route-rely static

# Restore the default recursive routing function.

[H3C] route-rely

H3C S9500 Series Routing Switches Command Manual-(V1.01)

1.1.3 display ip routing-table ip-address

1.1.7 display ip routing-table radix

1.2 Static Route Configuration Commands

Chapter 3 OSPF Configuration Commands

3.1.28 filter-policy export

4.1.16 import-route isis level-2 into level-1

4.1.35 preference

5.1.1 aggregate