3com S7906E Installationsanweisungen

1-32

The configuration on Switch C and Switch D is similar to the configuration on Switch A. The specific

configuration steps are omitted here.

4) Configure MSDP peers

# Configure an MSDP peer on Switch A.

[SwitchA] msdp

[SwitchA-msdp] peer 192.168.1.2 connect-interface vlan-interface 101

[SwitchA-msdp] quit

# Configure MSDP peers on Switch C.

[SwitchC] msdp

[SwitchC-msdp] peer 192.168.1.1 connect-interface vlan-interface 101

[SwitchC-msdp] peer 10.110.5.2 connect-interface vlan-interface 104

[SwitchC-msdp] quit

# Configure an MSDP peer on Switch D.

[SwitchD] msdp

[SwitchD-msdp] peer 10.110.5.1 connect-interface vlan-interface 104

[SwitchD-msdp] quit

5) Configure SA message filtering rules

# Configure an SA message rule on Switch C so that Switch C will not forward SA messages for (Source

1, 225.1.1.0/30) to Switch D.

[SwitchC] acl number 3001

[SwitchC-acl-adv-3001] rule deny ip source 10.110.3.100 0 destination 225.1.1.0 0.0.0.3

[SwitchC-acl-adv-3001] rule permit ip source any destination any

[SwitchC-acl-adv-3001] quit

[SwitchC] msdp

[SwitchC-msdp] peer 10.110.5.2 sa-policy export acl 3001

[SwitchC-msdp] quit

# Configure an SA message rule on Switch D so that Switch D will not create SA messages for Source

[SwitchD] acl number 2001

[SwitchD-acl-basic-2001] rule deny source 10.110.6.100 0

[SwitchD-acl-basic-2001] quit

[SwitchD] msdp

[SwitchD-msdp] import-source acl 2001

[SwitchD-msdp] quit

6) Verify the configuration

View the (S, G) entries cached in the SA cache on the switches using the display msdp sa-cache

command. For example:

# View the (S, G) entries cached in the SA cache on Switch C.

[SwitchC] display msdp sa-cache

MSDP Source-Active Cache Information of VPN-Instance: public net

MSDP Total Source-Active Cache - 8 entries

MSDP matched 8 entries

(Source, Group) Origin RP Pro AS Uptime Expires