Network application
Figure 96 Network diagram
Configure strict uRPF check between an ISP network and a customer network, and loose uRPF check
•
between ISPs.
Configure ACLs for special packets or users.
•
Configuring uRPF
You can configure uRPF globally or on a specific interface. Global uRPF configuration takes effect on all
interfaces. uRPF configured on an interface takes effect on the interface only.
When you configure uRPF, follow these guidelines:
uRPF checks only incoming packets on an interface.
•
•
You can use the display ip interface command to display statistics about packets discarded by uRPF
(displayed as "Drops" and "Suppressed drops"). The display ip interface command does not
provide statistics about packets discarded by uRPF (displayed as "Drops" and "Suppressed
drops").
Do not configure the allow-default-route keyword for loose uRPF check. Otherwise, uRPF might fail
•
to work.
To enable uRPF globally:
Step
1.
Enter system view.
ISP A
ISP B
User
Command
system-view
326
uRPF (loose)
ISP C
uRPF (strict)
Remarks
N/A