H3C S9500 Series Operating instructions

H3C S9500 Series Routing Switches

Operation Manual

Hangzhou H3C Technologies Co., Ltd.

http://www.h3c.com

Manual Version: T2-08165E-20081225-C-1.24

Product Version: S9500-CMW310-R1648

No part of this manual may be reproduced or transmitted in any form or by any means

without prior written consent of Hangzhou H3C Technologies Co., Ltd.

Trademarks

H3C, , Aolynk, , H

3

Care,

, TOP G, , IRF, NetPilot,

Neocean, NeoVTL, SecPro, SecPoint, SecEngine, SecPath, Comware, Secware,

Storware, NQA, VVG, V

2

G, V

n

G, PSPT, XGbus, N-Bus, TiGem, InnoVision and

HUASAN are trademarks of Hangzhou H3C Technologies Co., Ltd.

All other trademarks that may be mentioned in this manual are the property of their

respective owners.

Notice

The information in this document is subject to change without notice. Every effort has

been made in the preparation of this document to ensure accuracy of the contents, but

all statements, information, and recommendations in this document do not constitute

the warranty of any kind, express or implied.

Technical Support

customer_service@h3c.com

http://www.h3c.com

About This Manual

Organization

H3C S9500 Series Routing Switches Configuration Manual is organized as follows:

Part Contents

00 Product Overview

includes Obtaining the Documentation, Product

Features, and Features.

01 Access Volume

includes Ethernet Port Configuration, POS Port

Configuration, Link Aggregation Configuration, Port

Isolation Configuration, VLAN Configuration, MAC

Address Table Management Configuration, GVRP

Configuration, QinQ Configuration, Ethernet Port

Loopback Detection Configuration, DLDP Configuration,

Ethernet OAM Configuration, Smart Link and Monitor

Link Configuration, MSTP Configuration, BPDU Tunnel

Configuration, HVRP Configuration, RRPP

Configuration and RPR Configuration.

02 IP Services Volume

includes ARP Configuration, IP Address Configuration,

VRRP Configuration, DHCP Configuration, DNS

Configuration, UDP Helper Configuration, NAT

Configuration, IP Performance Configuration and URPF

Configuration.

03 IP Routing Volume

includes IP Routing Protocol Overview, Static Route

Configuration, RIP Configuration, OSPF Configuration,

ISIS Configuration, BGP Configuration, IP Route Policy

Configuration, Route Capacity Configuration and

Recursive Routing Configuration.

04 IP Multicast Volume

includes Multicast Overview, Common Multicast

Configuration, IGMP Snooping Configuration, IGMP

Configuration, PIM Configuration, Multicast VLAN

Configuration, MSDP Configuration and MBGP

Configuration.

05 MPLS VPN Volume

includes MPLS Configuration, MPLS VLL Configuration,

MPLS VPLS Configuration, MPLS L3VPN Configuration,

MPLS OAM Configuration and MPLS Hybrid Insertion

Configuration.

06 QoS ACL Volume includes QoS Configuration and ACL Configuration.

07 Security Volume

includes Protocol Port Security Configuration, 802.1X

Configuration , AAA RADIUS HWTACACS

Configuration ,Password Control Configuration, SSH

Configuration, IDS Linkage Configuration, Portal

Configuration, VBAS Configuration and Traffic

Accounting Configuration.

Part Contents

08 System Volume

includes Command Line Interface Configuration, Login

and User Interface Configuration, FTP and TFTP

Configuration, HA Configuration, NQA Configuration,

NetStream Configuration, NTP Configuration, RMON

Configuration, SNMP Configuration, Packet Statistics

Accounting Configuration, Device Management

Configuration, Configuration File Management

Configuration, File System Management Configuration,

Cluster Management Configuration, System

Maintenance and Debugging Configuration, Information

Center Configuration, PoE Configuration, Clock Module

Configuration, ACSEI Server Configuration and OAP

Module Configuration.

09 Acronyms Offers the acronyms used in this manual.

Conventions

The manual uses the following conventions:

I. Command conventions

Convention Description

Boldface

The keywords of a command line are in Boldface.

italic

Command arguments are in italic.

[ ]

Items (keywords or arguments) in square brackets [ ] are

optional.

{ x | y | ... }

Alternative items are grouped in braces and separated by

vertical bars. One is selected.

[ x | y | ... ]

Optional alternative items are grouped in square brackets

and separated by vertical bars. One or none is selected.

{ x | y | ... } *

Alternative items are grouped in braces and separated by

vertical bars. A minimum of one or a maximum of all can be

selected.

[ x | y | ... ] *

Optional alternative items are grouped in square brackets

and separated by vertical bars. Many or none can be

selected.

&<1-n>

The argument(s) before the ampersand (&) sign can be

entered 1 to n times.

# A line starting with the # sign is comments.

II. GUI conventions

Convention Description

< >

Button names are inside angle brackets. For example, click

<OK>.

[ ]

Window names, menu items, data table and field names

are inside square brackets. For example, pop up the [New

User] window.

/

Multi-level menus are separated by forward slashes. For

example, [File/Create/Folder].

III. Symbols

Convention Description

Warning

Means reader be extremely careful. Improper operation

may cause bodily injury.

Caution

Means reader be careful. Improper operation may cause

data loss or damage to equipment.

 Note

Means a complementary description.

Related Documentation

In addition to this manual, each H3C S9500 Series Routing Switches documentation

set includes the following:

Manual Description

H3C S9500 Series Routing Switches

Installation Manual

It introduces the installation procedure,

commissioning, maintenance and

monitoring of the S9500 series routing

switches.

H3C S9500 Series Routing Switches

Command Manual

It includes Feature List and Command

Index, Access Volume, IP Service

Volume, IP Routing Volume, IP Multicast

Volume, MPLS VPN Volume, QoS ACL

Volume, Security Volume, and System

Volume.

Obtaining Documentation

You can access the most up-to-date H3C product documentation on the World Wide

Web at this URL: http://www.h3c.com.

The following are the columns from which you can obtain different categories of product

documentation:

[Products & Solutions]: Provides information about products and technologies.

[Technical Support & Document > Technical Documents]: Provides several categories

of product documentation, such as installation and operation.

[Technical Support & Document > Product Support > Software]: Provides the

documentation released with the software version.

Documentation Feedback

You can e-mail your comments about product documentation to [email protected].

We appreciate your comments.

Operation Manual

H3C S9500 Series Routing Switches IP Routing Volume Organization

Manual Version

T2-08165E-20081225-C-1.24

Product Version

S9500-CMW310-R1648

Organization

The IP Routing Volume is organized as follows:

Features

(operation

manual)

Description

IP Routing Protocol

Overview

The volume describes:

z Introduction to IP routing and routing table

z Routing management policy

Static Route

A static route is manually configured by the administrator.

The proper configuration and usage of static routes can

improve network performance and ensure bandwidth for

important network applications. The volume describes:

z Introduction to static route

z Static route configuration

RIP

Routing Information Protocol (RIP) is a simple Interior

Gateway Protocol (IGP), mainly used in small-sized

networks. The volume describes:

z Introduction to RIP

z RIP configuration

OSPF

Open Shortest Path First (OSPF) is an Interior Gateway

Protocol based on the link state developed by IETF. The

volume describes:

z Introduction to OSPF

z OSPF overview

z OSPF GR overview

z OSPF configuration

ISIS

Intermediate System-to-Intermediate System (IS-IS) is a link

state protocol, which uses the shortest path first (SPF)

algorithm. The volume describes:

z Introduction to integrated IS-IS

z IS-IS configuration

Operation Manual

H3C S9500 Series Routing Switches IP Routing Volume Organization

Features

(operation

manual)

Description

BGP

Border gateway protocol (BGP) is an inter-autonomous

system (inter-AS) dynamic route discovery protocol. The

volume describes:

z Introduction to BGP and MBGP

z BGP configuration

IP Route Policy

For implementing the route policy, you need to define a set of

matching rules by specifying the characteristics of the routing

information to be filtered. The volume describes:

z Filters overview

z Route policy configuration

Route Capacity

When the size of the routing table increases to some degree,

you can set the specifications of routing tables and VRFs

(VPN routing and forwarding instances) in the current system

to maintain performance. The volume describes:

z Route capacity overview

z Route capacity configuration

Recursive Routing

Recursive routing can make route entries flexible,

independent of a specific interface. The volume describes:

z Recursive routing overview

z Recursive routing configuration

Operation Manual – IP Routing Protocol Overview

H3C S9500 Series Routing Switches Table of Contents

i

Table of Contents

Chapter 1 IP Routing Protocol Overview....................................................................................1-1

1.1 Introduction to IP Route and Routing Table ......................................................................1-1

1.1.1 IP Route and Route Segment.................................................................................1-1

1.1.2 Route Selection through the Routing Table............................................................1-2

1.2 Routing Management Policy..............................................................................................1-4

1.2.1 Routing Protocols and the Preferences of the Corresponding Routes...................1-4

1.2.2 Supporting Load Sharing and Route Backup..........................................................1-5

1.2.3 Routes Shared Between Routing Protocols............................................................1-6

Operation Manual – IP Routing Protocol Overview

H3C S9500 Series Routing Switches Chapter 1 IP Routing Protocol Overview

1-1

Chapter 1 IP Routing Protocol Overview

Go to these sections for information you are interested in:

z Introduction to IP Route and Routing Table

z Routing Management Policy

 Note:

The term “router” or the router icon in this document refers to a router in a generic

sense or an S9500 switch running routing protocols.

1.1 Introduction to IP Route and Routing Table

1.1.1 IP Route and Route Segment

Routers are used for route selection in the Internet. A router works in the following way:

The router selects an appropriate path (through a network) according to the destination

address of the packet it receives and forwards the packet to the next router. The last

router in the path is responsible for submitting the packet to the destination host.

In

Figure 1-1, R stands for a router. A packet sent from Host A to Host C should go

through two routers and the packet is transmitted through two hops. Therefore, when a

node (router) is connected to another node through a network, they are in the same

route segment and are deemed as adjacent in the Internet. That is, the adjacent routers

refer to two routers connected to the same network. The number of route segments

between a router and hosts in the same network counted as zero. In

Figure 1-1, the

bold arrows represent these route segments. Which physical links comprise which

route segment is not a concern of a router.

Operation Manual – IP Routing Protocol Overview

H3C S9500 Series Routing Switches Chapter 1 IP Routing Protocol Overview

1-2

Figure 1-1 The concept of route segment

As the networks may have different sizes, the segment lengths connected between two

different pairs of routers are also different. The number of route segments multiplies a

weighted coefficient can serve as a weighted measurement for the actual length of the

signal transmission path.

If a router in a network is regarded as a node and a route segment in the Internet is

regarded as a link, message routing in the Internet works in a similar way as the

message routing in a conventional network. Message routed through the shortest route

may not always be the optimal route. For example, routing through three high-speed

LAN route segments may be much faster than that through two low-speed WAN route

segments.

1.1.2 Route Selection through the Routing Table

The key for a router to forward packets is the routing table. Each router saves a routing

table in its memory, and each entry of this table specifies the physical port of the router

through which the packet is sent to a subnet or a host. Therefore, it can reach the next

router via a particular path or reach a destination host via a directly connected network.

A routing table has the following key entries:

z Destination address: It is used to identify the destination IP address or the

destination network of an IP packet.

z Network mask: Combined with the destination address, it is used to identify the

network address of the destination host or router. If the destination address is

ANDed with the network mask, you will get the address of the network segment

where the destination host or router is located. For example, if the destination

address is 129.102.8.10, the address of the network where the host or the router

with the mask 255.255.0.0 is located will be 129.102.0.0. It is made up of several

consecutive "1"s, which can also be expressed in the dotted decimal format.

Operation Manual – IP Routing Protocol Overview

H3C S9500 Series Routing Switches Chapter 1 IP Routing Protocol Overview

1-3

z Output interface: It indicates an interface through which an IP packet should be

forwarded.

z Next hop address: It indicates the IP address of the next router that an IP packet

will pass through.

z Priority added to the IP routing table for a route: There may be different next hops

to the same destination. These routes may be discovered by different routing

protocols, or they can just be the static routes configured manually. The one with

the highest priority (the smallest numerical value) will be selected as the current

optimal route.

z Path cost: Cost to forward data over the route.

According to different destinations, the routes can be divided into:

z Subnet route: The destination is a subnet.

z Host route: The destination is a host

In addition, according to whether the network of the destination host is directly

connected to the router, there are the following types of routes:

z Direct route: The router is directly connected to the network where the destination

resides.

z Indirect route: The router is not directly connected to the network where the

destination resides.

In order to limit the size of the routing table, an option is available to set a default route.

All the packets that fail to find the suitable entry will be forwarded through this default

route.

In a complicated Internet as shown in

Figure 1-2, the number in each network is the

network address, and R stands for a router. The router R8 is directly connected with

three networks, so it has three IP addresses and three physical ports, and its routing

table is shown in the diagram below:

Figure 1-2 The routing table

Operation Manual – IP Routing Protocol Overview

H3C S9500 Series Routing Switches Chapter 1 IP Routing Protocol Overview

1-4

The H3C S9500 Series Routing Switches (hereinafter referred to as S9500 series)

support the configuration of a series of dynamic routing protocols such as RIP, OSPF,

IS-IS and BGP, as well as the static routes. In addition, the running switch will

automatically obtain some direct routes according to the port state and user

configuration.

1.2 Routing Management Policy

For S9500 series, you can configure manually the static route to a specific destination,

and configure dynamic routing protocol to interact with other routers on the network.

The routing algorithm can also be used to discover routes. For the configured static

routes and dynamic routes discovered by the routing protocol, the S9500 series

implement unified management. That is, the static routes configured by the user are

managed together with the dynamic routes discovered by the routing protocol. The

static routes and the routes learned or configured by different routing protocols can also

be shared with each other.

1.2.1 Routing Protocols and the Preferences of the Corresponding Routes

Different routing protocols (as well as the static configuration) may generate different

routes to the same destination, but not all these routes are optimal. In fact, at a certain

moment, only one routing protocol can determine a current route to a specific

destination. Thus, each of these routing protocols (including the static configuration) is

set with a preference, and when there are multiple routing information sources, the

route discovered by the routing protocol with the highest preference will become the

current route. Routing protocols and the default preferences (the smaller the value is,

the higher the preference is) of the routes learned by them are shown in

Table 1-1.

In the table, 0 indicates a direct route. 255 indicates any route from unreliable sources.

Table 1-1 Routing protocols and the default preferences for the routes learned by them

Routing protocol or route type The preference of the corresponding route

DIRECT 0

OSPF 10

IS-IS 15

STATIC 60

RIP 100

OSPF ASE 150

OSPF NSSA 150

IBGP 256

Operation Manual – IP Routing Protocol Overview

H3C S9500 Series Routing Switches Chapter 1 IP Routing Protocol Overview

1-5

Routing protocol or route type The preference of the corresponding route

EBGP 256

UNKNOWN 255

Apart from direct routing, IBGP and EBGP, the preferences of various dynamic routing

protocols can be manually configured to meet the user requirements. In addition, the

preferences for individual static routes can be different.

1.2.2 Supporting Load Sharing and Route Backup

I. Load sharing

The S9500 series support static equivalent route, permitting to configure multiple

routes that reach the same destination and use the same precedence. After you

configured static equivalent routes, a packet can reach the same destination through

multiple different paths, whose precedence levels are equal. When there is no route

that can reach the same destination with a higher precedence, the multiple routes will

be adopted. Thus, the router will forward the packets to the destination through these

paths according to a certain algorithm so as to implement load sharing.

For the same destination, a specified routing protocol may find multiple different routes

with the same precedence and different next hops. If the routing protocol has the

highest precedence among all active routing protocols, these multiple routes will be

regarded as currently valid routes. Thus, load sharing of IP traffic is ensured in terms of

routing protocols.

By far, the S9500 series support eight routes to implement load sharing.

II. Route backup

The S9500 series support route backup. When the main route fails, the system will

automatically switch to a backup route to improve the network reliability.

In order to achieve static route backup, the user can configure multiple routes to the

same destination according to actual situations. One of the routes has the highest

precedence and is called as main route. The other routes have descending precedence

levels and are called as backup routes. Normally, the router sends data via main route.

When the line fails, the main route will hide itself and the router will choose one from the

left routes as a backup route whose precedence is higher than others’ to send data. In

this way, the switchover from the main route to the backup route is implemented. When

the main route recovers, the router will restore it and re-select route. As the main route

has the highest precedence, the router still chooses the main route to send data. This

process is the automatic switchover from the backup route to the main route.

Operation Manual – IP Routing Protocol Overview

H3C S9500 Series Routing Switches Chapter 1 IP Routing Protocol Overview

1-6

1.2.3 Routes Shared Between Routing Protocols

As the algorithms of various routing protocols are different, different protocols may

generate different routes, thus bringing about the problem of how to resolve the

differences when different routes are generated by different routing protocols. The

S9500 series support the import of routes discovered by one routing protocol into

another. Each protocol has its own route importing mechanism. For details, refer to the

description about importing an external route in the operation manual of the

corresponding routing protocol.

Operation Manual – Static Route

H3C S9500 Series Routing Switches Table of Contents

i

Table of Contents

Chapter 1 Static Route Configuration.........................................................................................1-1

1.1 Introduction to Static Route ...............................................................................................1-1

1.1.1 Static Route.............................................................................................................1-1

1.1.2 Default Route ..........................................................................................................1-2

1.2 Configuring Static Route....................................................................................................1-2

1.2.1 Configuring a Static Route......................................................................................1-2

1.2.2 Configuring a Default Route....................................................................................1-3

1.2.3 Deleting All the Static Routes..................................................................................1-4

1.3 Displaying and Debugging Static Route............................................................................1-5

1.4 Static Route Configuration Example..................................................................................1-5

1.5 Troubleshooting Static Route ............................................................................................1-6

Operation Manual – Static Route

H3C S9500 Series Routing Switches Chapter 1 Static Route Configuration

1-1

Chapter 1 Static Route Configuration

When configuring static route, go to these sections for information you are interested in:

z Introduction to Static Route

z Configuring Static Route

z Displaying and Debugging Static Route

z Static Route Configuration Example

z Troubleshooting Static Route

 Note:

z The term “router” or the router icon in this document refers to a router in a generic

sense or an S9500 switch running routing protocols.

z For details about VPN instance, refer to the MPLS VPN Volume.

1.1 Introduction to Static Route

1.1.1 Static Route

A static route is a special route configured manually by an administrator. You can set up

an interconnecting network with the static route configuration. The problem for such

configuration is when a fault occurs to the network, the static route cannot change

automatically to steer away from the node causing the fault, if without the help of an

administrator.

In a relatively simple network, you only need to configure the static routes to make the

router work normally. The proper configuration and usage of the static route can

improve the network performance and ensure the bandwidth of the important

applications.

All the following routes are static routes:

z Reachable route: A normal route is of this type. That is, the IP packet is sent to the

next hop via the route marked by the destination. It is a common type of static

routes.

z Unreachable route: When a static route to a destination has the reject attribute, all

the IP packets to this destination will be discarded, and the source host will be

informed that the destination is unreachable.

z Blackhole route: If a static route to a destination has the blackhole attribute, the

outgoing interface of this route is the Null 0 interface regardless of the next hop

Operation Manual – Static Route

H3C S9500 Series Routing Switches Chapter 1 Static Route Configuration

1-2

address, and any IP packets addressed to this destination are dropped without

notifying the source host.

The attributes reject and blackhole are usually used to control the range of reachable

destinations of this router, and help troubleshoot the network.

1.1.2 Default Route

A default route is a special route. You can configure a default route using a static route.

Some dynamic routing protocols can also generate default routes, such as OSPF and

IS-IS.

In brief, a default route is used only when no suitable routing table entry is matched.

That is, when no proper route is found, the default route is used. In a routing table, the

default route is in the form of the route to the network 0.0.0.0 (with the mask 0.0.0.0).

You can see whether the default route has been set by executing the display ip

routing-table command. If the destination address of a packet fails in matching any

entry of the routing table, the router will select the default route to forward this packet. If

there is no default route and the destination address of the packet fails in matching any

entry in the routing table, this packet will be discarded, and an Internet Control

Message Protocol (ICMP) packet will be sent to the originating host to inform that the

destination host or network is unreachable.

1.2 Configuring Static Route

Static route configuration includes:

z Configuring a Static Route

z Configuring a Default Route

z Deleting All the Static Routes

1.2.1 Configuring a Static Route

Perform the following configurations in system view to add/delete a static route:

To do... Use the command...

Add a static route

ip route-static ip-address { mask | mask-length }

{ interface-type interface-number } [ nexthop-ip-address ]

[ preference preference-value | tag tag-value ] * [ reject |

blackhole ] [ description text ]

ip route-static [ vpn-instance vpn-instance-name-list ]

ip-address { mask | mask-length } { interface-type

interface-number | vpn-instance vpn-instance-name

nexthop-ip-address } [ public ] [ preference preference-value |

tag tag-value | public ] * [ reject | blackhole ] [ description

text ]

Operation Manual – Static Route

H3C S9500 Series Routing Switches Chapter 1 Static Route Configuration

1-3

To do... Use the command...

Delete a static

route

undo ip route-static ip-address { mask | mask-length }

{ interface-type interface-number } [ nexthop-ip-address ]

[ preference preference-value ]

undo ip route-static vpn-instance vpn-instance-name-list

destination-ip-address { mask | mask-length } [ interface-name |

vpn-instance vpn-nexthop-name ] nexthop-ip-address

[ public ] [ preference preference-value ]

The parameters are explained as follows:

z IP address and mask

The IP address and mask are in a dotted decimal format. As 1s in the 32-bit mask are

required to be consecutive, the dotted decimal mask can also be replaced by the

mask-length (which refers to the digits of the consecutive 1s in the mask).

z Next hop address and NULL interface

When configuring a static route, you can specify the nexthop-ip-address to decide the

next hop address, depending on the actual conditions.

In fact, for all the routing entries, the next hop address must be specified. When IP layer

transmits an IP packet, it will first search the matching route in the routing table

according to the destination address of the packet. Only when the next hop address of

the route is specified can the link layer find the corresponding link layer address, and

then forward the packet according to this address.

The packets sent to NULL interface, a kind of virtual interface, will be discarded at once.

This can decrease the system load.

z Preference

Depending on the configuration of preference, you can achieve different route

management policies. For example, to implement load sharing, you can specify the

same preference for multiple routes to the same destination network. To implement

route backup, you can specify different preferences for them.

z Other parameters

tag tag-value: Specifies a tag value for the static route. The default tag value is 0.

The attributes reject and blackhole respectively indicate the unreachable route and

the blackhole route.

description: Specifies a description for the configuration.

1.2.2 Configuring a Default Route

Perform the following configurations in system view to configure/delete a default route:

Operation Manual – Static Route

H3C S9500 Series Routing Switches Chapter 1 Static Route Configuration

1-4

To do... Use the command...

Configure a default route

ip route-static 0.0.0.0 { 0.0.0.0 | 0 } { interface-type

interface-number | gateway-address } [ preference

value ] [ reject | blackhole ]

Delete a default route

undo ip route-static 0.0.0.0 { 0.0.0.0 | 0 }

[ interface-type interface-number | gateway-address ]

[ preference value ]

The meanings of parameters in the command are the same as those of the static route.

1.2.3 Deleting All the Static Routes

You can use the undo ip route-static command to delete one static route. The S9500

series also provide the following commands for you to delete all static routes at one

time, including the default routes.

Perform the following configuration in system view to delete all static routes:

To do... Use the command...

Delete all static routes

delete static-routes all

Delete all static routes of the VPN

delete vpn-instance

vpn-instance-name static-routes all

Page is loading ...

H3C S9500 Series Operating instructions

H3C S9500 Series Operating instructions

Related papers

Other documents