Encryption Of Bgp4 Md5 Authentication Keys - Dell PowerConnect B-RX Configuration Manual

Bigiron rx series configuration guide v02.7.02
Hide thumbs Also See for PowerConnect B-RX:
Table of Contents

Advertisement

26
Configuring BGP4 neighbors
In the example above, the aggregate-address command configures an aggregate address of
209.1.0.0 255.255.0.0. and the summary-only parameter prevents the device from advertising
more specific routes contained within the aggregate route.
Entering a show ip bgp route command for the aggregate address 209.1.0.0/16 shows that the
more specific routes aggregated into 209.1.0.0/16 have been suppressed. In this case, the route
to 209.1.44.0/24 has been suppressed. If you enter the command below, the display shows that
the route is not being advertised to the BigIron RX's BGP4 neighbors.
BigIron RX(config-bgp)# show ip bgp route 209.1.44.0/24
Number of BGP Routes matching display condition : 1
Status A:AGGREGATE B:BEST b:NOT-INSTALLED-BEST C:CONFED_EBGP D:DAMPED
1
If you want to override the summary-only parameter and allow a specific route to be advertised to a
neighbor, enter commands such as the following.
BigIron RX(config)# ip prefix-list Unsuppress1 permit 209.1.44.0/24
BigIron RX(config)# route-map RouteMap1 permit 1
BigIron RX(config-routemap RouteMap1)# match prefix-list Unsuppress1
BigIron RX(config-routemap RouteMap1)# exit
BigIron RX(config)# router bgp
BigIron RX(config-bgp)# neighbor 10.1.0.2 unsuppress-map RouteMap1
BigIron RX(config-bgp)# clear ip bgp neighbor 10.1.0.2 soft-out
The ip prefix-list command configures an IP prefix list for network 209.1.44.0/24, which is the
route you want to unsuppress. The next two commands configure a route map that uses the prefix
list as input. The neighbor command enables the device to advertise the routes specified in the
route map to neighbor 10.1.0.2. The clear command performs a soft reset of the session with the
neighbor so that the device can advertise the unsuppressed route.
Syntax: [no] neighbor <ip-addr> | <peer-group-name> unsuppress-map <map-name>
The following command verifies that the route has been unsuppressed.
BigIron RX(config-bgp)# show ip bgp route 209.1.44.0/24
Number of BGP Routes matching display condition : 1
Status A:AGGREGATE B:BEST b:NOT-INSTALLED-BEST C:CONFED_EBGP D:DAMPED
1

Encryption of BGP4 MD5 authentication keys

When you configure a BGP4 neighbor or neighbor peer group, you can specify an MD5
authentication string for authenticating packets exchanged with the neighbor or peer group of
neighbors.
For added security, the software encrypts display of the authentication string by default. The
software also provides an optional parameter to disable encryption of the authentication string, on
an individual neighbor or peer group basis. By default, the MD5 authentication strings are
displayed in encrypted format in the output of the following commands:
774
E:EBGP H:HISTORY I:IBGP L:LOCAL M:MULTIPATH S:SUPPRESSED F:FILTERED
Prefix
Next Hop
209.1.44.0/24
10.2.0.1
AS_PATH:
Route is not advertised to any peers
E:EBGP H:HISTORY I:IBGP L:LOCAL M:MULTIPATH S:SUPPRESSED F:FILTERED
Prefix
Next Hop
209.1.44.0/24
10.2.0.1
AS_PATH:
Route is advertised to 1 peers:
10.1.0.2(4)
Metric
LocPrf
1
101
Metric
LocPrf
1
101
BigIron RX Series Configuration Guide
Weight Status
32768
BLS
Weight Status
32768
BLS
53-1001810-01

Advertisement

Table of Contents
loading

This manual is also suitable for:

Brocade dcx-4sBrocade dcx

Table of Contents