Optional) Configuring The Bsr Address Range - Huawei Quidway s3700 series Configuration Manual
Hide thumbs
Also See for Quidway s3700 series:
- Configuration manual (398 pages) ,
- Quick start manual (70 pages) ,
- Manual (69 pages)
Table of Contents
Advertisement
Quidway S3700 Series Ethernet Switches
Configuration Guide - Multicast
Procedure
Step 1 Run:
system-view
The system view is displayed.
Step 2 Run:
interface interface-type interface-number
The interface view is displayed.
The interface can be a VLANIF interface, or an Loopback interface.
Step 3 Run:
pim bsr-boundary
The BSR boundary is configured. Bootstrap messages cannot pass the BSR boundary.
By default, all the PIM-SM switchs on the network can receive Bootstrap messages.
----End
7.5.5 (Optional) Configuring the BSR Address Range
ACL-based policies can be set on all devices to filter C-BSR addresses. The devices then receive
only the Bootstrap messages with the source addresses being in the valid C-BSR address range.
Thus, BSR spoofing is avoided.
Context
Do as follows on all switches in the PIM-SM domain:
Procedure
Step 1 Run:
system-view
The system view is displayed.
Step 2 Run:
pim
The PIM view is displayed.
Step 3 Run:
bsr-policy basic-acl-number
The legal range of BSR addresses is set.
After receiving a BSR message, the switch checks the source address of the message. If the
source address is not within the range of legal addresses, the message is discarded. BSR spoofing
is thus prevented.
----End
Issue 01 (2011-10-26)
NOTE
By default, all BSR packets are received without the BSR source address check.
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
7 PIM-SM (IPv4) Configuration
151
Advertisement
Table of Contents
