No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade
MENU
Support Documentation

CLI-based Configuration Guide - IP Unicast Routing

AR100, AR120, AR150, AR160, AR200, AR1200, AR2200, AR3200, and AR3600 V200R009

Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Summary of OSPFv3 Configuration Tasks

Summary of OSPFv3 Configuration Tasks

After basic OSPFv3 functions are configured, you can build a basic OSPFv3 network. If other OSPFv3 functions are required, configure them according to reference sections.

Table 6-6 describes the OSPFv3 configuration tasks.

Table 6-6 OSPFv3 configuration tasks

Scenario

Description

Task

Constructing a basic OSPFv3 network

Before configuring OSPFv3, you must enable the OSPFv3 process and specify the router ID. Other OSPFv3 functions then can be configured or take effect.

In practical applications, establishing or maintaining OSPFv3 neighbor relationships is an important precondition for the construction of OSPFv3 networks. By implementing the configuration tasks in this section, you can:

  • Change the OSPFv3 packet timer to adjust the OSPFv3 network convergence rate and network load brought by protocol packets.

  • Configure the limit for OSPFv3 retransmission times. When retransmitting packets, OSPFv3 disconnects from its neighbor if the retransmission times exceed the limit. This prevents neighbors from dead loops caused by consecutive retransmission when the neighbor does not receive the packet.

  • Increase the OSPFv3 network convergence rate by adjusting the LSA updating and receiving intervals.

Configuring OSPFv3 special area attributes

After the basic OSPFv3 network is constructed, OSPFv3 special area attributes can be flexibly used to deploy the OSPFv3 network according to actual needs.

  • OSPFv3 stub area: A stub area is a special area where ABRs do not advertise the received external routes. In a stub area, the device routing table size and routing information in transmission are greatly reduced. To ensure the reachability of a destination outside the AS, the ABR in the stub area generates a default route and advertises it to the non-ABR routers in the stub area.

  • OSPFv3 NSSA area: An NSSA is also a special area that resembles a stub area in many ways. The difference between the two areas is that the NSSA area can introduce and advertise routes outside the AS to the entire OSPF AS, without learning external routes sent from other areas on the OSPF network.

  • OSPFv3 virtual link: All the non-backbone areas need to be connected to the backbone area in the OSPFv3 deployment. Otherwise, some areas will be unreachable. However, in actual applications, physical connectivity between the non-backbone area and backbone area cannot be ensured because of various limitations. In this case, OSPFv3 virtual links can be configured between the ABRs in the new non-backbone area and those in the backbone area.

Configuring OSPFv3 route attributes

In practical applications, to meet the requirements of complex network environment, configure the OSPFv3 route attributes to change the OSPFv3 route selection policies.

Configuring OSPFv3 Route Attributes

Controlling OSPFv3 routing information

In practical applications, to meet the network requirements, configure filtering of received and advertised routes and route aggregation, and control the number of external routes from the LSDB to implement accurate control of OSPFv3 routing information.

Controlling OSPFv3 Routing Information

Adjusting and optimizing OSPFv3 networks

Change the OSPFv3 packet timer to adjust the OSPFv3 network convergence rate and network load brought by protocol packets. On some low-rate links, the delay of LSA transmission by interfaces must be considered. Adjust the SPF calculation interval to restrict resource consumption caused by frequent network changes.

Optimizing an OSPFv3 Network

Configuring OSPFv3 GR

To prevent route flapping and interruption of traffic forwarding caused by OSPFv3 restart, enable the OSPFv3 GR features.

After OSPFv3 is restarted, the GR Restarter and the GR Helper re-establish the neighbor relationship, exchange routing information, synchronize the database, and update the routing table and forwarding table. This implements OSPFv3 fast convergence.

Configuration OSPFv3 GR

Improving OSPFv3 network security
On networks that require high security, the OSPFv3 GTSM and authentication method can be configured to improve OSPFv3 network security.

  • The Generalized TTL Security Mechanism (GTSM) defends against attacks by checking the TTL value. If an attacker simulates real OSPFv3 unicast packets and keeps sending them to a router, an interface card on the router receives the packets and directly sends them to the control plane for OSPFv3 processing, without checking the packet validity. As a result, the router is busy in processing these packets, causing high CPU usage. The GTSM function protects the router by checking whether the TTL value in the IP packet header is in a pre-defined range to improve the system security.

  • OSPF authentication is an encryption method based on network security requirements. It encrypts OSPF packets by adding the authentication field to the packets. When the local device receives OSPF packets sent from a remote device, if the authentication passwords are different from the local configuration, the local device will discard the packets to implement self-protection.

Improving OSPFv3 Network Security

Configuring the OSPFv3 network management function

OSPFv3 supports the network management function. You can bind OSPFv3 MIB to a process. In addition, OSPFv3 also supports fault and log functions.

Configuring the Network Management Function of OSPFv3
Translation
简体中文
Download
Updated: 2019-05-17

Document ID: EDOC1000174069

Views: 123828

Downloads: 269

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next
Enterprise APP

Copyright © 2019 Huawei Technologies Co., Ltd. All rights reserved.