Foundry Networks Switch and Router Installation And Configuration Manual page 698

Foundry Switch and Router Installation and Configuration Guide
NOTE: By default, if an AS-path does not match any of the filters or ACLs, the Layer 3 Switch denies the route.
To change the default behavior, configure the last filter or ACL as "permit any any".
NOTE: The AS-path filter or ACL must already be configured. See "Filtering AS-Paths" on page 19-50.
maximum-prefix <num> specifies the maximum number of IP network prefixes (routes) that can be learned from
the specified neighbor. The default and maximum configurable values depend on the product type:
• NetIron Internet Backbone router – You can configure a value from 0 – 4294967295. The default is 0
(unlimited).
• BigIron Layer 3 Switch – Same as for the NetIron Internet Backbone router.
• TurboIron/8 Layer 3 Switch – Same as for the NetIron Internet Backbone router.
• NetIron Stackable Layer 3 Switch – You can configure a value from 100 to the maximum number of BGP4
routes allowed on the Layer 3 Switch. The default is 5000. The maximum value depends on the type of
Layer 3 Switch you have and also on whether you have changed the maximum number of routes for the
device. See "Changing the Maximum Number of Routes" on page 19-85.
next-hop-self specifies that the router should list itself as the next hop in updates sent to the specified neighbor.
This option is disabled by default.
password [0 | 1] <string> specifies an MD5 password for securing sessions between the Layer 3 Switch and the
neighbor. You can enter a string up to 80 characters long. The string can contain any alphanumeric characters,
but the first character cannot be a number. If the password contains a number, do not enter a space following the
number.
The 0 | 1 parameter is the encryption option, which you can omit (the default) or which can be one of the following.
• 0 – Disables encryption for the authentication string you specify with the command. The password or string is
shown as clear text in the output of commands that display neighbor or peer group configuration information.
• 1 – Assumes that the authentication string you enter is the encrypted form, and decrypts the value before
using it.
For more information, see "Encryption of BGP4 MD5 Authentication Keys" on page 19-20.
NOTE: If you want the software to assume that the value you enter is the clear-text form, and to encrypt display
of that form, do not enter 0 or 1. Instead, omit the encryption option and allow the software to use the default
behavior.
If you specify encryption option 1, the software assumes that you are entering the encrypted form of the password
or authentication string. In this case, the software decrypts the password or string you enter before using the
value for authentication. If you accidentally enter option 1 followed by the clear-text version of the password or
string, authentication will fail because the value used by the software will not match the value you intended to use.
prefix-list <string> specifies an IP prefix list. You can use IP prefix lists to control routes to and from the neighbor.
IP prefix lists are an alternative method to AS-path filters. You can configure up to 1000 prefix list filters. The
filters can use the same prefix list or different prefix lists. To configure an IP prefix list, see "Defining IP Prefix
Lists" on page 19-58.
remote-as <as-number> specifies the AS the remote neighbor is in. The <as-number> can be a number from
1 – 65535. There is no default.
remove-private-as configures the router to remove private AS numbers from UPDATE messages the router
sends to this neighbor. The router will remove AS numbers 64512 – 65535 (the well-known BGP4 private AS
numbers) from the AS-path attribute in UPDATE messages the Layer 3 Switch sends to the neighbor. This option
is disabled by default.
route-map in | out <map-name> specifies a route map the Layer 3 Switch will apply to updates sent to or
received from the specified neighbor. The in | out keyword specifies whether the list is applied on updates
received from the neighbor or sent to the neighbor.
19 - 16 December 2000