Cisco Cisco ASA for Nexus 1000V Series Switch 기술 매뉴얼
asa(config)# show ospf interface
inside is up, line protocol is up
Internet Address 198.51.100.1 mask 255.255.255.0, Area 0
Process ID 928, Router ID 198.51.100.1, Network Type BROADCAST, Cost: 10
Transmit Delay is 1 sec, State DR, Priority 1
Designated Router (ID) 198.51.100.1, Interface address 198.51.100.1
No backup designated router on this network
Timer intervals configured, Hello 250 msec, Dead 1, Wait 1, Retransmit 5
Hello due in 48 msec
Index 1/1, flood queue length 0
Next 0x0(0)/0x0(0)
Last flood scan length is 0, maximum is 0
Last flood scan time is 0 msec, maximum is 0 msec
Neighbor Count is 0, Adjacent neighbor count is 0
Suppress hello for 0 neighbor(s)
New OSPF Timer Commands for Link−State Advertisement and SPF Throttling
These commands were introduced in ASA Release 9.2.1 and later: timers lsa arrival, timers pacing, timers
throttle lsa and timers throttle spf as part of the OSPF router configuration.
throttle lsa and timers throttle spf as part of the OSPF router configuration.
asa(config−router)# timers ?
router mode commands/options:
lsa OSPF LSA timers
pacing OSPF pacing timers
throttle OSPF throttle timers
These commands have been removed: timers spf and timers lsa−grouping−pacing.
More information about the benefits of Link State Advertisement (LSA) and Shortest Path First (SPF)
throttling can be found in these documents:
throttling can be found in these documents:
OSPF Shortest Path First Throttling
•
OSPF Link−State Advertisement (LSA)
•
OSPF Route Filtering with an ACL
Route filtering with an Access Control List (ACL) is now supported. This is achieved with the distribute−list
command to filter routes.
command to filter routes.
For example, in order to filter out routes for 10.20.20.0/24, the configuration would look like this:
access−list ospf standard deny host 10.20.20.0
access−list ospf standard permit any4
!
router ospf 1
network 198.51.100.0 255.255.255.0 area 0
log−adj−changes
distribute−list ospf in interface inside
When the associated ACL is checked, it indicates that it has incrementing hit counts:
asa(config)# show access−list ospf
access−list ospf; 2 elements; name hash: 0xb5dd06eb
access−list ospf line 1 standard deny host 10.20.20.0 (hitcnt=1) 0xe29503b8
access−list ospf line 2 standard permit any4 (hitcnt=2) 0x51ff4e67