1. Manuals
  2. Brands
  3. Huawei Manuals
  4. Switch
  5. S9700 Series
  6. Configuration manual

Huawei S9700 Series Configuration Manual page 143

Terabit routing switches spu
Hide thumbs Also See for S9700 Series:
Table of Contents

Advertisement

S9700 Core Routing Switch
Configuration Guide - SPU
Configuration Roadmap
The configuration roadmap is as follows:
1.
2.
3.
4.
5.
6.
Procedure
Step 1 Import flows from SwitchA and SwitchB to the SPUs.
1.
2.
3.
Issue 01 (2012-03-15)
Import flows from the Switches to the SPUs.
Configure ACLs to define the data flows to be protected.
Configure static routes between the SPUs of SwitchA and SwitchB.
Configure an IPSec proposal.
Configure IPSec policies and apply the ACLs and IPSec proposal to the IPSec policies.
Apply the IPSec policies to interfaces of the SPUs.
Configure SwitchA.
<Quidway> system-view
[Quidway] sysname SwitchA
[SwitchA] vlan 10
[SwitchA-vlan10] quit
[SwitchA] interface gigabitethernet 1/0/11
[SwitchA-GigabitEthernet1/0/11] port link-type access
[SwitchA-GigabitEthernet1/0/11] port default vlan 10
[SwitchA-GigabitEthernet1/0/11] quit
[SwitchA] vlan 20
[SwitchA-vlan20] quit
[SwitchA] interface gigabitethernet 1/0/12
[SwitchA-GigabitEthernet1/0/12] port link-type trunk
[SwitchA-GigabitEthernet1/0/12] port trunk allow-pass vlan 20
[SwitchA-GigabitEthernet1/0/12] undo port trunk allow-pass vlan 1
[SwitchA-GigabitEthernet1/0/12] quit
[SwitchA] interface XGigabitEthernet5/0/0
[SwitchA-XGigabitEthernet5/0/0] port link-type trunk
[SwitchA-XGigabitEthernet5/0/0] port trunk allow-pass vlan 10 20
[SwitchA-XGigabitEthernet5/0/0] undo port trunk allow-pass vlan 1
[SwitchA-XGigabitEthernet5/0/0] quit
Configure the SPU on SwitchA.
<Quidway> system-view
[Quidway] sysname SPU
[SPU] interface XGigabitEthernet 0/0/1.1
[SPU-XGigabitEthernet0/0/1.1] control-vid 20 dot1q-termination
[SPU-XGigabitEthernet0/0/1.1] dot1q termination vid 20
[SPU-XGigabitEthernet0/0/1.1] ip address 202.38.163.1 255.255.255.0
[SPU-XGigabitEthernet0/0/1.1] arp broadcast enable
[SPU-XGigabitEthernet0/0/1.1] quit
[SPU] interface XGigabitEthernet 0/0/1.2
[SPU-XGigabitEthernet0/0/1.2] control-vid 10 dot1q-termination
[SPU-XGigabitEthernet0/0/1.2] dot1q termination vid 10
[SPU-XGigabitEthernet0/0/1.2] ip address 202.38.168.2 255.255.255.0
[SPU-XGigabitEthernet0/0/1.2] arp broadcast enable
[SPU-XGigabitEthernet0/0/1.2] quit
Configure SwitchB.
<Quidway> system-view
[Quidway] sysname SwitchB
[SwitchB] vlan 30
[SwitchB-vlan30] quit
[SwitchB] interface gigabitethernet 1/0/11
[SwitchB-GigabitEthernet1/0/11] port link-type access
[SwitchB-GigabitEthernet1/0/11] port default vlan 30
[SwitchB-GigabitEthernet1/0/11] quit
[SwitchB] vlan 20
[SwitchB-vlan20] quit
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
4 IPSec Configuration
132

Advertisement

Table of Contents
loading

Related Manuals for Huawei S9700 Series

Related Products for Huawei S9700 Series

Table of Contents