Huawei Quidway NetEngine80E Configuration Manual page 778
Universal service router, ip routing
Hide thumbs
Also See for Quidway NetEngine80E:
- Configuration manual - reliability (1432 pages) ,
- Configuration manual (341 pages) ,
- Installation manual (169 pages)
Advertisement
HUAWEI NetEngine80E/40E Router
Configuration Guide - IP Routing
Solution
Generalized
TTL security
mechanism
(GTSM)
Limiting the
number of
routes received
from peers
AS_Path
length
protection
Multi-Protocol Extensions for BGP-4 (MP-BGP)
Conventional BGP-4 manages only IPv4 routing information. The inter-AS transmission of
packets using other network layer protocols (such as IPv6) is limited.
To support multiple network layer protocols, the Internet Engineering Task Force (IETF) extends
BGP-4 to MP-BGP. RFC 2858 defines the MP-BGP standard.
The devices can communicate with each other, irrespective of whether they support MP-BGP.
BGP uses address families to distinguish different network layer protocols. For the values of
address families, refer to RFC 1700 (Assigned Numbers). Multiple MP-BGP extension
applications, such as VPN extensionIPv6 extension, can be configured in their respective address
family views.
Issue 02 (2014-09-30)
Main Objectives
To protect services
above the IP Layer and
improve system
security.
To prevent system
resources from being
exhausted by excessive
routes received from
peers.
To discard routes
carrying an AS_Path
with its length
exceeding the preset
upper limit.
NOTE
This chapter does not detail commands for specified applications in the MP-BGP address family view.
For configuration details in the BGP IPv6 address family view, see "BGP4+ configuration". For MP-BGP
applications in multicast, see "MP-BGP configuration" in HUAWEI NetEngine80E/40E Router
Configuration Guide-IP Multicast.
For configuration details in the BGP VPNv4 address family, BGP VPN instance address family, and BGP
Layer 2 Virtual Private Network (L2VPN) address family views, see HUAWEI NetEngine80E/40E Router
Configuration Guide-VPN.
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
Main Features
The GTSM checks
TTL values to defend
against attacks. The
GTSM checks whether
the TTL value in the IP
packet header is within
a pre-defined range. If
the TTL value is
beyond the range, the
IP packet is discarded.
You can limit the
number of routes
received from a
specified peer or peer
group.
You can specify upper
limits for the incoming
and outgoing AS_Path
routes. A route is
discarded if the
AS_Path length
exceeds the preset
upper limit.
8 BGP Configuration
Note
-
-
If the upper limit is set
too small, routes are
lost.
753
Hide quick links:
Advertisement
