Table of Contents
Advertisement
When both IS-IS PIC and IS-IS FRR are configured, IS-IS FRR takes effect.
IS-IS PIC applies only to LSPs sent by neighbors.
Enabling IS-IS PIC
Step
1.
Enter system view.
2.
Enter IS-IS view.
3.
Enable PIC for IS-IS.
Enabling BFD for IS-IS PIC
By default, IS-IS PIC does not use BFD to detect primary link failures. To speed up IS-IS
convergence, enable BFD for IS-IS PIC to detect primary link failures.
To enable BFD control packet mode for IS-IS PIC:
Step
1.
Enter system view.
2.
Enter interface view.
3.
Enable BFD control packet
mode for IS-IS PIC.
To configure BFD echo packet mode for IS-IS PIC:
Step
1.
Enter system view.
2.
Configure the source IP
address of BFD echo packets.
3.
Enter interface view.
4.
Enable BFD echo packet
mode for IS-IS PIC.
Enhancing IS-IS network security
To enhance the security of an IS-IS network, you can configure IS-IS authentication. IS-IS
authentication involves neighbor relationship authentication, area authentication, and routing
domain authentication.
Command
system-view
isis [ process-id ] [ vpn-instance
vpn-instance-name ]
pic [ additional-path-always ]
Command
system-view
interface interface-type
interface-number
isis primary-path-detect bfd ctrl
Command
system-view
bfd echo-source-ip ip-address
interface interface-type
interface-number
isis primary-path-detect bfd
echo
161
Remarks
N/A
N/A
By default, IS-IS PIC is
enabled.
Remarks
N/A
N/A
By default, BFD control packet
mode is disabled for IS-IS PIC.
Remarks
N/A
By default, the source IP
address of BFD echo packets is
not configured.
The source IP address cannot
be on the same network
segment as any local interface's
IP address.
For more information, see High
Availability Command
Reference.
N/A
By default, BFD echo packet
mode is disabled for IS-IS PIC.
Advertisement
Table of Contents
Troubleshooting
