53-1002639-0310 July 2013

FastIron Ethernet Switch Layer 3 Routing Configuration Guide

Supporting FastIron Software Release 08.0.00a

Copyright 2013 Brocade Communications Systems, Inc. All Rights Reserved.

ADX, Brocade, Brocade Assurance, Brocade One, the B-wing symbol, DCX, Fabric OS, ICX, MLX, MyBrocade, SAN Health, VCS, and VDX are registered trademarks, and AnyIO, HyperEdge, NET Health, OpenScript, and The Effortless Network are trademarks of Brocade Communications Systems, Inc., in the United States and/or in other countries. Other brands, products, or service names mentioned may be trademarks of their respective owners.

Notice: This document is for informational purposes only and does not set forth any warranty, expressed or implied, concerning any equipment, equipment feature, or service offered or to be offered by Brocade. Brocade reserves the right to make changes to this document at any time, without notice, and assumes no responsibility for its use. This informational document describes features that may not be currently available. Contact a Brocade sales office for information on feature and product availability. Export of technical data contained in this document may require an export license from the United States government.

The authors and Brocade Communications Systems, Inc. shall have no liability or responsibility to any person or entity with respect to any loss, cost, liability, or damages arising from the information contained in this book or the computer programs that accompany it.

The product described by this document may contain open source software covered by the GNU General Public License or other open source license agreements. To find out which open source software is included in Brocade products, view the licensing terms applicable to the open source software, and obtain a copy of the programming source code, please visit http://www.brocade.com/support/oscd.

Brocade Communications Systems, Incorporated

Document History

Corporate and Latin American HeadquartersBrocade Communications Systems, Inc.130 Holger WaySan Jose, CA 95134 Tel: 1-408-333-8000 Fax: 1-408-333-8101 E-mail: info@brocade.com

Asia-Pacific HeadquartersBrocade Communications Systems China HK, Ltd.No. 1 Guanghua RoadChao Yang DistrictUnits 2718 and 2818Beijing 100020, ChinaTel: +8610 6588 8888Fax: +8610 6588 9999E-mail: china-info@brocade.com

European HeadquartersBrocade Communications Switzerland SrlCentre SwissairTour B - 4me tage29, Route de l'AroportCase Postale 105CH-1215 Genve 15Switzerland Tel: +41 22 799 5640Fax: +41 22 799 5641E-mail: emea-info@brocade.com

Asia-Pacific HeadquartersBrocade Communications Systems Co., Ltd. (Shenzhen WFOE)Citic PlazaNo. 233 Tian He Road NorthUnit 1308 13th FloorGuangzhou, ChinaTel: +8620 3891 2000Fax: +8620 3891 2111E-mail: china-info@brocade.com

Title Publication number Summary of changes Date

FastIron Ethernet Switch Layer 3 Routing Configuration Guide

53-1002639-01 Initial release of a new document

April 2013

FastIron Ethernet Switch Layer 3 Routing Configuration Guide

53-1002639-02 Updated release of a new document

June 2013

FastIron Ethernet Switch Layer 3 Routing Configuration Guide

53-1002639-03 Updated for defect fix July 2013

Interface IP parameters Layer 2 Switches . . . . . . . . . . . . . . .19Contents

About This Document

Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .xviiSupported Hardware . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xviiUnsupported features . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xviii

Audience . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xviii

Whats new in this document . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xviiiSummary of enhancements in FastIron release 08.0.00a. . . xviii

Document conventions. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xixText formatting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xixCommand syntax conventions . . . . . . . . . . . . . . . . . . . . . . . . . . xixNotes, cautions, and danger notices . . . . . . . . . . . . . . . . . . . . . xx

Related publications . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .xx

Getting technical help . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xxi

Document feedback . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xxi

Chapter 1 IP Configuration

Basic IP configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3

IP configuration overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3Full Layer 3 support . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3IP interfaces . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4IP packet flow through a Layer 3 Switch. . . . . . . . . . . . . . . . . . . . 4IP route exchange protocols . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9IP multicast protocols . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9IP interface redundancy protocols . . . . . . . . . . . . . . . . . . . . . . . 10ACLs and IP access policies . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10

Basic IP parameters and defaults Layer 3 Switches. . . . . . . . . . . 10When parameter changes take effect . . . . . . . . . . . . . . . . . . . . 11IP global parameters Layer 3 Switches. . . . . . . . . . . . . . . . . . 11IP interface parameters Layer 3 Switches . . . . . . . . . . . . . . .15

Basic IP parameters and defaults Layer 2 Switches. . . . . . . . . . . 17IP global parameters Layer 2 Switches. . . . . . . . . . . . . . . . . . 17FastIron Ethernet Switch Layer 3 Routing Configuration Guide iii53-1002639-03

Configuring IP parameters Layer 3 Switches . . . . . . . . . . . . . . . . .19Configuring IP addresses. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .19Configuring 31-bit subnet masks on point-to-point networks . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .23Configuring DNS resolver . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .25Configuring packet parameters . . . . . . . . . . . . . . . . . . . . . . . . .28Changing the router ID. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 31Specifying a single source interface for specifiedpacket types . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .32ARP parameter configuration . . . . . . . . . . . . . . . . . . . . . . . . . . .36Configuring forwarding parameters . . . . . . . . . . . . . . . . . . . . . . 41Disabling ICMP messages . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .44Enabling ICMP Redirect Messages . . . . . . . . . . . . . . . . . . . . . . .45Static routes configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . .46Configuring a default network route . . . . . . . . . . . . . . . . . . . . . .55Configuring IP load sharing . . . . . . . . . . . . . . . . . . . . . . . . . . . . .56ICMP Router Discovery Protocol configuration . . . . . . . . . . . . .59IRDP parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .60Reverse Address Resolution Protocol configuration . . . . . . . . .62Configuring UDP broadcast and IP helper parameters . . . . . . .64BootP and DHCP relay parameter configuration . . . . . . . . . . . .66DHCP Server. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .68Displaying DHCP Server information . . . . . . . . . . . . . . . . . . . . .79DHCP Client-Based Auto-Configuration and Flash image update83

Configuring IP parameters Layer 2 Switches . . . . . . . . . . . . . . . . .92Configuring the management IP address and specifyingthe default gateway . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .92Configuring Domain Name Server (DNS) resolver. . . . . . . . . . .93Changing the TTL threshold . . . . . . . . . . . . . . . . . . . . . . . . . . . .94DHCP Assist configuration. . . . . . . . . . . . . . . . . . . . . . . . . . . . . .95

IPv4 point-to-point GRE tunnels . . . . . . . . . . . . . . . . . . . . . . . . . . . . .98IPv4 GRE tunnel overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .99GRE packet structure and header format . . . . . . . . . . . . . . . . .99Path MTU Discovery (PMTUD) support . . . . . . . . . . . . . . . . . . .100Configuration considerations for PMTUD support . . . . . . . . . .100Tunnel loopback ports for GRE tunnels . . . . . . . . . . . . . . . . . .101Support for IPv4 multicast routing over GRE tunnels . . . . . . .101GRE support with other features . . . . . . . . . . . . . . . . . . . . . . .102Configuration considerations for GRE IP tunnels . . . . . . . . . .103Configuration tasks for GRE tunnels . . . . . . . . . . . . . . . . . . . .106Example point-to-point GRE tunnel configuration . . . . . . . . . .115Displaying GRE tunneling information . . . . . . . . . . . . . . . . . . .117Clearing GRE statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .121

Displaying IP configuration information and statistics . . . . . . . . . .122Changing the network mask display to prefix format . . . . . . .122Displaying IP information Layer 3 Switches . . . . . . . . . . . . .122Displaying IP information Layer 2 Switches . . . . . . . . . . . . .137

Disabling IP checksum check. . . . . . . . . . . . . . . . . . . . . . . . . . . . . .141iv FastIron Ethernet Switch Layer 3 Routing Configuration Guide53-1002639-03

Chapter 2 Layer 3 Routing Protocols

Adding a static IP route. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .143Configuring a null route . . . . . . . . . . . . . . . . . . . . . . . . . . . . .145Static route next hop resolution . . . . . . . . . . . . . . . . . . . . . . . .145Static route recursive lookup . . . . . . . . . . . . . . . . . . . . . . . . . .146Static route resolve by default route. . . . . . . . . . . . . . . . . . . . .146

Adding a static ARP entry . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .147

Modifying and displaying Layer 3 system parameter limits . . . . . .147Layer 3 configuration notes. . . . . . . . . . . . . . . . . . . . . . . . . . . .147FastIron first generation modules. . . . . . . . . . . . . . . . . . . . . . .147FastIron second generation modules . . . . . . . . . . . . . . . . . . . .149FastIron third generation modules . . . . . . . . . . . . . . . . . . . . . .149Displaying Layer 3 system parameter limits . . . . . . . . . . . . . .150

Configuring RIP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .151Enabling RIP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .151Enabling redistribution of IP static routes into RIP . . . . . . . . .152Configuring a redistribution filter . . . . . . . . . . . . . . . . . . . . . . .152Enabling redistribution . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .153Enabling learning of default routes . . . . . . . . . . . . . . . . . . . . .153Changing the route loop prevention method . . . . . . . . . . . . . .154

Other Layer 3 protocols. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .154

Enabling or disabling routing protocols . . . . . . . . . . . . . . . . . . . . . .154

Enabling or disabling Layer 2 switching . . . . . . . . . . . . . . . . . . . . .155Configuration notes and feature limitations for Layer 2 switching155Command syntax for Layer 2 switching . . . . . . . . . . . . . . . . . .155

Chapter 3 IPv6 Configuration on FastIron X Series, FCX, and ICX Series Switches

Full Layer 3 IPv6 feature support. . . . . . . . . . . . . . . . . . . . . . . . . . .158

IPv6 addressing overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .159IPv6 address types. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .159IPv6 stateless auto-configuration . . . . . . . . . . . . . . . . . . . . . . .161

IPv6 CLI command support . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .161

IPv6 host address on a Layer 2 switch . . . . . . . . . . . . . . . . . . . . . .163Configuring a global or site-local IPv6 addresswith a manually configured interface ID . . . . . . . . . . . . . . . . .164Configuring a link-local IPv6 address as a system-wideaddress for a switch. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .164

Configuring the management port for anIPv6 automatic address configuration. . . . . . . . . . . . . . . . . . . . . . .165

Configuring basic IPv6 connectivity ona Layer 3 switch. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .165

Enabling IPv6 routing. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .165IPv6 configuration on each router interface . . . . . . . . . . . . . .165Configuring IPv4 and IPv6 protocol stacks. . . . . . . . . . . . . . . .168FastIron Ethernet Switch Layer 3 Routing Configuration Guide v53-1002639-03

IPv6 management (IPv6 host support) . . . . . . . . . . . . . . . . . . . . . .169Configuring IPv6 management ACLs . . . . . . . . . . . . . . . . . . . .170Restricting SNMP access to an IPv6 node . . . . . . . . . . . . . . . .170Specifying an IPv6 SNMP trap receiver . . . . . . . . . . . . . . . . . .170Configuring SNMP V3 over IPv6 . . . . . . . . . . . . . . . . . . . . . . . .170Secure Shell, SCP, and IPv6 . . . . . . . . . . . . . . . . . . . . . . . . . . . 171IPv6 Telnet . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 171IPv6 traceroute. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .172IPv6 Web management using HTTP and HTTPS . . . . . . . . . . .172Restricting Web management access . . . . . . . . . . . . . . . . . . .172Configuring name-to-IPv6 address resolution usingIPv6 DNS resolver . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .173Defining an IPv6 DNS entry. . . . . . . . . . . . . . . . . . . . . . . . . . . .173Pinging an IPv6 address . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 174Configuring an IPv6 Syslog server . . . . . . . . . . . . . . . . . . . . . .175Viewing IPv6 SNMP server addresses . . . . . . . . . . . . . . . . . . .175Disabling router advertisement and solicitation messages . . 176Disabling IPv6 on a Layer 2 switch . . . . . . . . . . . . . . . . . . . . . . 176

IPv6 ICMP feature configuration . . . . . . . . . . . . . . . . . . . . . . . . . . .177Configuring ICMP rate limiting . . . . . . . . . . . . . . . . . . . . . . . . .177Enabling IPv6 ICMP redirect messages . . . . . . . . . . . . . . . . . .178

IPv6 neighbor discovery configuration . . . . . . . . . . . . . . . . . . . . . .178IPv6 neighbor discovery configuration notes . . . . . . . . . . . . . .179Neighbor solicitation and advertisement messages . . . . . . . .179Router advertisement and solicitation messages . . . . . . . . . .180Neighbor redirect messages . . . . . . . . . . . . . . . . . . . . . . . . . . .180Setting neighbor solicitation parameters forduplicate address detection . . . . . . . . . . . . . . . . . . . . . . . . . . .180Setting IPv6 router advertisement parameters . . . . . . . . . . . .181Prefixes advertised in IPv6 routeradvertisement messages . . . . . . . . . . . . . . . . . . . . . . . . . . . . .183Setting flags in IPv6 router advertisement messages. . . . . . .184Enabling and disabling IPv6 router advertisements . . . . . . . .184Configuring reachable time for remote IPv6 nodes. . . . . . . . .185

IPv6 MTU . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .185Configuration notes and feature limitations for IPv6 MTU. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .185Changing the IPv6 MTU . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .186

Static neighbor entries configuration . . . . . . . . . . . . . . . . . . . . . . .186

Limiting the number of hops an IPv6 packet can traverse . . . . . .187

IPv6 source routing security enhancements. . . . . . . . . . . . . . . . . .187

TCAM space on FCX device configuration . . . . . . . . . . . . . . . . . . . .188Allocating TCAM space for IPv4 routing information . . . . . . . .188Allocating TCAM space for GRE tunnel information. . . . . . . . .188

Clearing global IPv6 information . . . . . . . . . . . . . . . . . . . . . . . . . . .189Clearing the IPv6 cache. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .189Clearing IPv6 neighbor information . . . . . . . . . . . . . . . . . . . . .189Clearing IPv6 routes from the IPv6 route table . . . . . . . . . . . .190vi FastIron Ethernet Switch Layer 3 Routing Configuration Guide53-1002639-03

Clearing IPv6 traffic statistics . . . . . . . . . . . . . . . . . . . . . . . . . .190

Displaying global IPv6 information. . . . . . . . . . . . . . . . . . . . . . . . . .190Displaying IPv6 cache information . . . . . . . . . . . . . . . . . . . . . .191Displaying IPv6 interface information. . . . . . . . . . . . . . . . . . . .192Displaying IPv6 neighbor information. . . . . . . . . . . . . . . . . . . .194Displaying the IPv6 route table . . . . . . . . . . . . . . . . . . . . . . . . .195Displaying local IPv6 routers . . . . . . . . . . . . . . . . . . . . . . . . . . .196Displaying IPv6 TCP information . . . . . . . . . . . . . . . . . . . . . . . .197Displaying IPv6 traffic statistics . . . . . . . . . . . . . . . . . . . . . . . .201

DHCP relay agent for IPv6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .204Configuring DHCP for IPv6 relay agent . . . . . . . . . . . . . . . . . . .204Enabling the interface-ID on the DHCPv6 relay agent messages205Displaying DHCPv6 relay agent information . . . . . . . . . . . . . .205Displaying the DHCPv6 Relay configured destinations . . . . . .205Displaying the DHCPv6 Relay information for an interface. . .206

Chapter 4 Configuring RIP

RIP Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .207

RIP parameters and defaults . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .208RIP global parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .208RIP interface parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . .209

Configuring RIP parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .210Enabling RIP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .210Configuring metric parameters . . . . . . . . . . . . . . . . . . . . . . . . .210Changing the administrative distance . . . . . . . . . . . . . . . . . . .211Configuring redistribution . . . . . . . . . . . . . . . . . . . . . . . . . . . . .211Configuring route learning and advertising parameters . . . . .214Changing the route loop prevention method . . . . . . . . . . . . . .215Suppressing RIP route advertisement on a VRRP or VRRPE backup interface . . . . . . . . . . . . . . . . . . . . . . . . . . . .216Configuring RIP route filters using prefix-lists and route maps216Setting RIP timers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .217

Displaying RIP Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .218

Displaying CPU utilization statistics . . . . . . . . . . . . . . . . . . . . . . . . .221

Chapter 5 Configuring RIPng

RIPng Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .223

Configuring RIPng . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .224Enabling RIPng . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .224Configuring RIPng timers. . . . . . . . . . . . . . . . . . . . . . . . . . . . . .225Configuring route learning and advertising parameters . . . . .226Redistributing routes into RIPng . . . . . . . . . . . . . . . . . . . . . . . .227Controlling distribution of routes through RIPng . . . . . . . . . . .228Configuring poison reverse parameters . . . . . . . . . . . . . . . . . .228

Clearing RIPng routes from IPv6 route table . . . . . . . . . . . . . . . . . .229

Displaying RIPng information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .229Displaying RIPng configuration . . . . . . . . . . . . . . . . . . . . . . . . .229Displaying RIPng routing table . . . . . . . . . . . . . . . . . . . . . . . . .230FastIron Ethernet Switch Layer 3 Routing Configuration Guide vii53-1002639-03

Chapter 6 Configuring OSPF Version 2

OSPF point-to-point links . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .235Designated routers in multi-access networks . . . . . . . . . . . . .235Designated router election in multi-access networks . . . . . . .236OSPF RFC 1583 and 2328 compliance . . . . . . . . . . . . . . . . . .237Reduction of equivalent AS external LSAs . . . . . . . . . . . . . . . .237Support for OSPF RFC 2328 Appendix E . . . . . . . . . . . . . . . . .239

OSPF graceful restart . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .240OSPF Stub Router Advertisement . . . . . . . . . . . . . . . . . . . . . . .240OSPF Shortest Path First throttling. . . . . . . . . . . . . . . . . . . . . . 241IETF RFC and internet draft support. . . . . . . . . . . . . . . . . . . . . 241Dynamic OSPF activation and configuration . . . . . . . . . . . . . .243

Configuring OSPF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .243Configuration rules . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .243OSPF parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .243Enable OSPF on the router . . . . . . . . . . . . . . . . . . . . . . . . . . . .245Assign OSPF areas . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .246Assign a totally stubby area. . . . . . . . . . . . . . . . . . . . . . . . . . . .246Assigning an area range (optional) . . . . . . . . . . . . . . . . . . . . . .250Assigning an area cost (optional parameter) . . . . . . . . . . . . . .251Assigning interfaces to an area . . . . . . . . . . . . . . . . . . . . . . . .253Setting all OSPFv2 interfaces to the passive state . . . . . . . . .253Modify interface defaults . . . . . . . . . . . . . . . . . . . . . . . . . . . . .253Change the timer for OSPF authentication changes . . . . . . . .256Block flooding of outbound LSAs on specificOSPF interfaces . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .257Assign virtual links . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .258Modify Virtual Link Parameters. . . . . . . . . . . . . . . . . . . . . . . . .259Modify virtual link parameters . . . . . . . . . . . . . . . . . . . . . . . . .261Changing the reference bandwidth for the coston OSPF interfaces . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .262Define redistribution filters . . . . . . . . . . . . . . . . . . . . . . . . . . . .264Modify default metric for redistribution . . . . . . . . . . . . . . . . . .266Enable route redistribution . . . . . . . . . . . . . . . . . . . . . . . . . . . .266Disable or re-enable load sharing. . . . . . . . . . . . . . . . . . . . . . .268Configure external route summarization . . . . . . . . . . . . . . . . .269Configure default route origination. . . . . . . . . . . . . . . . . . . . . . 271Supported match and set conditions . . . . . . . . . . . . . . . . . . . .272

OSPF non-stop routing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .273

Synchronization of critical OSPF elements . . . . . . . . . . . . . . . . . . .273Link state database synchronization . . . . . . . . . . . . . . . . . . . .273Neighbor router synchronization. . . . . . . . . . . . . . . . . . . . . . . . 274Interface synchronization . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 274

Standby module operations . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 274Neighbor database . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 274LSA database . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .275

Enabling and disabling NSR . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .275Limitations of NSR . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .275viii FastIron Ethernet Switch Layer 3 Routing Configuration Guide53-1002639-03

Disabling configuration. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 276

OSPF distribute list . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .277Configuring an OSPF distribution list using ACLs. . . . . . . . . . .277Configuring an OSPF distribution list using route maps . . . . .278Modify SPF timers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .280Modify redistribution metric type . . . . . . . . . . . . . . . . . . . . . . .280Modify administrative distance. . . . . . . . . . . . . . . . . . . . . . . . .281Configure OSPF group Link State Advertisement(LSA) pacing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .282Modify OSPF traps generated . . . . . . . . . . . . . . . . . . . . . . . . . .282Modify exit overflow interval . . . . . . . . . . . . . . . . . . . . . . . . . . .283Specify types of OSPF Syslog messages to log . . . . . . . . . . . .284Configuring an OSPF network type . . . . . . . . . . . . . . . . . . . . . .284Configuring OSPF Graceful Restart. . . . . . . . . . . . . . . . . . . . . .285Configuring OSPF router advertisement. . . . . . . . . . . . . . . . . .287Configuring OSPF shortest path first throttling . . . . . . . . . . . .289

Displaying OSPF information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .290Displaying general OSPF configuration information . . . . . . . .291Displaying OSPF area information . . . . . . . . . . . . . . . . . . . . . .293Displaying OSPF neighbor information . . . . . . . . . . . . . . . . . . .294Displaying OSPF interface information. . . . . . . . . . . . . . . . . . .296Displaying OSPF interface brief information . . . . . . . . . . . . . .298Displaying OSPF route information . . . . . . . . . . . . . . . . . . . . . .300Displaying OSPF database information . . . . . . . . . . . . . . . . . .302Displaying OSPF external link state information . . . . . . . . . . .303Displaying OSPF database-summary information . . . . . . . . . .304Displaying OSPF database link state information . . . . . . . . . .305Displaying OSPF ABR and ASBR information . . . . . . . . . . . . . .306Displaying OSPF trap status . . . . . . . . . . . . . . . . . . . . . . . . . . .307Viewing Configured OSPF point-to-point links . . . . . . . . . . . . .307Displaying OSPF virtual neighbor and link information . . . . . .309Clearing OSPF neighbors. . . . . . . . . . . . . . . . . . . . . . . . . . . . . .310Displaying an OSPF Graceful Restart information . . . . . . . . . .310Displaying OSPF Router Advertisement information . . . . . . . .311

Clearing OSPF information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .311Clearing OSPF neighbors. . . . . . . . . . . . . . . . . . . . . . . . . . . . . .312Disabling and re-enabling the OSPF process. . . . . . . . . . . . . .312Clearing OSPF routes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .312

Chapter 7 Configuring OSPF Version 3

OSPFv3 overview. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .314

Link-state advertisement types for OSPFv3 . . . . . . . . . . . . . . . . . .315FastIron Ethernet Switch Layer 3 Routing Configuration Guide ix53-1002639-03

Configuring OSPFv3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .315Enabling OSPFv3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .316Assigning OSPFv3 areas . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 317Assigning an area cost for OSPFv3 (optional parameter) . . . .321Specifying a network type . . . . . . . . . . . . . . . . . . . . . . . . . . . . .323Configuring virtual links. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .323Changing the reference bandwidth for the cost on OSPFv3 interfaces325Redistributing routes into OSPFv3 . . . . . . . . . . . . . . . . . . . . . .326Filtering OSPFv3 routes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .330Configuring default route origination . . . . . . . . . . . . . . . . . . . .333Modifying Shortest Path First timers . . . . . . . . . . . . . . . . . . . .333Modifying administrative distance . . . . . . . . . . . . . . . . . . . . . .334Configuring the OSPFv3 LSA pacing interval . . . . . . . . . . . . . .335Modifying exit overflow interval. . . . . . . . . . . . . . . . . . . . . . . . .336Modifying external link state database limit . . . . . . . . . . . . . .336Setting all OSPFv3 interfaces to the passive state . . . . . . . . .336Modifying OSPFv3 interface defaults . . . . . . . . . . . . . . . . . . . .337Disabling or re-enabling event logging . . . . . . . . . . . . . . . . . . .338IPsec for OSPFv3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .338Configuring IPsec for OSPFv3 . . . . . . . . . . . . . . . . . . . . . . . . . .339Configuring OSPFv3 Graceful Restart Helper mode . . . . . . . .346Configuring OSPFv3 Non-stop routing (NSR) . . . . . . . . . . . . . .346

Displaying OSPFv3 information . . . . . . . . . . . . . . . . . . . . . . . . . . . .347General OSPFv3 configuration information . . . . . . . . . . . . . . .347Displaying OSPFv3 area information . . . . . . . . . . . . . . . . . . . .348Displaying OSPFv3 database information . . . . . . . . . . . . . . . .349Displaying IPv6 interface information. . . . . . . . . . . . . . . . . . . .355Displaying IPv6 OSPFv3 interface information . . . . . . . . . . . .356Displaying OSPFv3 memory usage . . . . . . . . . . . . . . . . . . . . . .361Displaying OSPFv3 neighbor information. . . . . . . . . . . . . . . . .362Displaying routes redistributed into OSPFv3 . . . . . . . . . . . . . .364Displaying OSPFv3 route information . . . . . . . . . . . . . . . . . . . .365Displaying OSPFv3 SPF information . . . . . . . . . . . . . . . . . . . . .367Displaying OSPFv3 GR Helper mode information . . . . . . . . . .370Displaying OSPFv3 NSR information . . . . . . . . . . . . . . . . . . . . 371Displaying IPv6 OSPF virtual link information . . . . . . . . . . . . . 371Displaying OSPFv3 virtual neighbor information . . . . . . . . . . .372IPsec examples . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .373

OSPFv3 clear commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .382Clearing all OSPFv3 data. . . . . . . . . . . . . . . . . . . . . . . . . . . . . .382Clearing OSPFv3 data in a VRF . . . . . . . . . . . . . . . . . . . . . . . . .382Clearing all OSPFv3 packet counters . . . . . . . . . . . . . . . . . . . .382Scheduling Shortest Path First (SPF) calculation . . . . . . . . . .382Clearing all redistributed routes from OSPFv3. . . . . . . . . . . . .383Clearing OSPFv3 neighbors. . . . . . . . . . . . . . . . . . . . . . . . . . . .383x FastIron Ethernet Switch Layer 3 Routing Configuration Guide53-1002639-03

Chapter 8 Configuring BGP4 (IPv4)

BGP4 overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .387Relationship between the BGP4 route table and the IP route table . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .388How BGP4 selects a path for a route (BGP best path selection algorithm) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .389BGP4 message types. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .391Grouping of RIB-out peers . . . . . . . . . . . . . . . . . . . . . . . . . . . . .393

BGP4 graceful restart . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .393BGP4 Peer notification during a management module switchover . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .393BGP4 neighbor local AS. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .395

Basic configuration and activation for BGP4 . . . . . . . . . . . . . . . . .396Disabling BGP4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .396

BGP4 parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .397

Memory considerations . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .399Memory configuration options obsoleted bydynamic memory . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .400

Basic configuration tasks required for BGP4 . . . . . . . . . . . . . . . . .400Enabling BGP4 on the router . . . . . . . . . . . . . . . . . . . . . . . . . .400Changing the router ID. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .401Setting the local AS number . . . . . . . . . . . . . . . . . . . . . . . . . . .401Adding a loopback interface . . . . . . . . . . . . . . . . . . . . . . . . . . .402Adding BGP4 neighbors. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .403Adding a BGP4 peer group . . . . . . . . . . . . . . . . . . . . . . . . . . . .413FastIron Ethernet Switch Layer 3 Routing Configuration Guide xi53-1002639-03

Optional BGP4 configuration tasks . . . . . . . . . . . . . . . . . . . . . . . . .416Changing the Keep Alive Time and Hold Time . . . . . . . . . . . . .416Changing the BGP4 next-hop update timer . . . . . . . . . . . . . . . 417Enabling fast external fallover. . . . . . . . . . . . . . . . . . . . . . . . . . 417Changing the maximum number of paths for BGP4 load sharing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .418Customizing BGP4 load sharing . . . . . . . . . . . . . . . . . . . . . . . .419Specifying a list of networks to advertise. . . . . . . . . . . . . . . . .420Changing the default local preference . . . . . . . . . . . . . . . . . . .421Using the IP default route as a valid next-hop for a BGP4 route . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .422Changing the default MED (Metric) used forroute redistribution . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .422Enabling next-hop recursion . . . . . . . . . . . . . . . . . . . . . . . . . . .422Changing administrative distances . . . . . . . . . . . . . . . . . . . . .425Requiring the first AS to be the neighbor AS . . . . . . . . . . . . . .426Disabling or re-enabling comparison of the AS-Path length . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .427Enabling or disabling comparison of router IDs. . . . . . . . . . . .428Configuring the Layer 3 Switch to always compare Multi-Exit Discriminators . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .428Treating missing MEDs as the worst MEDs . . . . . . . . . . . . . . .429Configuring route reflection parameters . . . . . . . . . . . . . . . . .429Configuring confederations . . . . . . . . . . . . . . . . . . . . . . . . . . . .432Aggregating routes advertised to BGP4 neighbors . . . . . . . . .435

Configuring BGP4 graceful Restart . . . . . . . . . . . . . . . . . . . . . . . . .436Configuring BGP4 restart for the global routing instance . . . .436Configuring BGP4 Restart for a VRF . . . . . . . . . . . . . . . . . . . . .436Configuring timers for BGP4 Restart (optional) . . . . . . . . . . . .436BGP4 null0 routing. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .437Configuring BGP4 null0 routing . . . . . . . . . . . . . . . . . . . . . . . .438

Modifying redistribution parameters . . . . . . . . . . . . . . . . . . . . . . . .441Redistributing connected routes. . . . . . . . . . . . . . . . . . . . . . . .442Redistributing RIP routes. . . . . . . . . . . . . . . . . . . . . . . . . . . . . .442Redistributing OSPF external routes. . . . . . . . . . . . . . . . . . . . .442Redistributing static routes . . . . . . . . . . . . . . . . . . . . . . . . . . . .443Redistributing IBGP routes . . . . . . . . . . . . . . . . . . . . . . . . . . . .443

Filtering . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .444AS-path filtering . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .444BGP4 Filtering communities . . . . . . . . . . . . . . . . . . . . . . . . . . .447Defining and applying IP prefix lists . . . . . . . . . . . . . . . . . . . . .448Defining neighbor distribute lists . . . . . . . . . . . . . . . . . . . . . . .449Defining route maps . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .450Using a table map to set the tag value. . . . . . . . . . . . . . . . . . .459Configuring cooperative BGP4 route filtering. . . . . . . . . . . . . .459

Four-byte Autonomous System Numbers (AS4) . . . . . . . . . . . . . . .462Enabling AS4 numbers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .463

BGP4 AS4 attribute errors . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .467Error logs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .467xii FastIron Ethernet Switch Layer 3 Routing Configuration Guide53-1002639-03

Configuring route flap dampening . . . . . . . . . . . . . . . . . . . . . . . . . .468Globally configuring route flap dampening . . . . . . . . . . . . . . .469Using a route map to configure route flap dampening for a specific neighbor . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .470Removing route dampening from a route. . . . . . . . . . . . . . . . . 471Displaying and clearing route flap dampening statistics . . . . 471

Generating traps for BGP4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .473

Configuring BGP4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .473

Entering and exiting the address family configuration level . . . . . 474

BGP route reflector . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .475Configuring BGP route reflector . . . . . . . . . . . . . . . . . . . . . . . .475

Specifying a maximum AS path length . . . . . . . . . . . . . . . . . . . . . .478Setting a global maximum AS path limit . . . . . . . . . . . . . . . . .479Setting a maximum AS path limit for a peer group or neighbor . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .479

BGP4 max-as error messages . . . . . . . . . . . . . . . . . . . . . . . . . . . . .480

Originating the default route . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .480

Changing the default metric used for route cost . . . . . . . . . . . . . .480

Configuring a static BGP4 network . . . . . . . . . . . . . . . . . . . . . . . . .481Route-map continue clauses for BGP4 routes. . . . . . . . . . . . .482Specifying route-map continuation clauses . . . . . . . . . . . . . . .483Dynamic route filter update. . . . . . . . . . . . . . . . . . . . . . . . . . . .484

Generalized TTL Security Mechanism support . . . . . . . . . . . . . . . .487

Displaying BGP4 information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .487Displaying summary BGP4 information . . . . . . . . . . . . . . . . . .488Displaying the active BGP4 configuration . . . . . . . . . . . . . . . .491Displaying summary neighbor information . . . . . . . . . . . . . . .492Displaying BGP4 neighbor information. . . . . . . . . . . . . . . . . . .494Displaying peer group information . . . . . . . . . . . . . . . . . . . . . .502Displaying summary route information . . . . . . . . . . . . . . . . . .503Displaying VRF instance information . . . . . . . . . . . . . . . . . . . .503Displaying the BGP4 route table . . . . . . . . . . . . . . . . . . . . . . . .504Displaying BGP4 route-attribute entries . . . . . . . . . . . . . . . . . .512Displaying the routes BGP4 has placed in the IP route table . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .513Displaying route flap dampening statistics . . . . . . . . . . . . . . .513Displaying the active route map configuration . . . . . . . . . . . .515Displaying BGP4 graceful restart neighbor information . . . . .516Displaying AS4 details . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .516Displaying route-map continue clauses . . . . . . . . . . . . . . . . . .524Updating route information and resetting a neighbor session . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .527Using soft reconfiguration . . . . . . . . . . . . . . . . . . . . . . . . . . . . .528Dynamically requesting a route refresh from a BGP4 neighbor530Closing or resetting a neighbor session . . . . . . . . . . . . . . . . . .533Clearing and resetting BGP4 routes in the IP route table . . . .534

Clearing traffic counters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .534FastIron Ethernet Switch Layer 3 Routing Configuration Guide xiii53-1002639-03

Clearing diagnostic buffers. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .535

Chapter 9 Configuring BGP4+

Address family configuration level . . . . . . . . . . . . . . . . . . . . . . . . . .538

Configuring BGP4+ . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .538Enabling BGP4+. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .539Configuring BGP4+ neighbors using global or site-local IPv6 addresses . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .539Adding BGP4+ neighbors using link-local addresses . . . . . . .540Configuring a BGP4+ peer group . . . . . . . . . . . . . . . . . . . . . . .542Advertising the default BGP4+ route . . . . . . . . . . . . . . . . . . . .544Importing routes into BGP4+ . . . . . . . . . . . . . . . . . . . . . . . . . .545Redistributing prefixes into BGP4+ . . . . . . . . . . . . . . . . . . . . .545Aggregating routes advertised to BGP4 neighbors . . . . . . . . .546Using route maps . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .546Enabling next-hop recursion . . . . . . . . . . . . . . . . . . . . . . . . . . .547Using the IP default route as a valid next-hop for a BGP4+ route548

Clearing BGP4+ information. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .549Removing route flap dampening. . . . . . . . . . . . . . . . . . . . . . . .549Clearing route flap dampening statistics . . . . . . . . . . . . . . . . .549Clearing BGP4+ local route information. . . . . . . . . . . . . . . . . .550Clearing BGP4+ neighbor information . . . . . . . . . . . . . . . . . . .550Clearing and resetting BGP4+ routes in the IPv6 route table.553Clearing traffic counters for all BGP4+ neighbors. . . . . . . . . .553

Displaying BGP4+ information . . . . . . . . . . . . . . . . . . . . . . . . . . . . .553Displaying the BGP4+ route table. . . . . . . . . . . . . . . . . . . . . . .554Displaying BGP4+ route information . . . . . . . . . . . . . . . . . . . .560Displaying BGP4+ route-attribute entries. . . . . . . . . . . . . . . . .561Displaying the BGP4+ running configuration. . . . . . . . . . . . . .563Displaying dampened BGP4+ paths. . . . . . . . . . . . . . . . . . . . .564Displaying filtered-out BGP4+ routes . . . . . . . . . . . . . . . . . . . .564Displaying route flap dampening statistics . . . . . . . . . . . . . . .569Displaying BGP4+ neighbor information . . . . . . . . . . . . . . . . .570Displaying BGP4+ peer group configuration information . . . .591Displaying BGP4+ summary . . . . . . . . . . . . . . . . . . . . . . . . . . .592

Configuring BGP4+ graceful restart. . . . . . . . . . . . . . . . . . . . . . . . .594Displaying BGP4+ graceful restart neighbor information . . . .596

Chapter 10 VRRP and VRRP-E

Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .598

VRRP and VRRP-E overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .598VRRP overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .598VRRP-E overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .604ARP behavior with VRRP-E. . . . . . . . . . . . . . . . . . . . . . . . . . . . .607

Comparison of VRRP and VRRP-E . . . . . . . . . . . . . . . . . . . . . . . . . .607VRRP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .607VRRP-E . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .607xiv FastIron Ethernet Switch Layer 3 Routing Configuration Guide53-1002639-03

Architectural differences between VRRP and VRRP-E. . . . . . .608

VRRP and VRRP-E parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . .609Note regarding disabling VRRP or VRRP-E . . . . . . . . . . . . . . . .612

Basic VRRP parameter configuration . . . . . . . . . . . . . . . . . . . . . . .613Configuration rules for VRRP. . . . . . . . . . . . . . . . . . . . . . . . . . .613Configuring the Owner for IPv4 VRRP. . . . . . . . . . . . . . . . . . . .613Configuring the Owner for IPv6 VRRP. . . . . . . . . . . . . . . . . . . .614Configuring a Backup for IPv4 VRRP . . . . . . . . . . . . . . . . . . . .614Configuring a Backup for IPv6 VRRP . . . . . . . . . . . . . . . . . . . .615Configuration considerations for IPv6 VRRP v3 and IPv6 VRRP-E v3 support on Brocade devices . . . . . . . . . . . . .616

Basic VRRP-E parameter configuration . . . . . . . . . . . . . . . . . . . . . . 617Configuration rules for VRRP-E . . . . . . . . . . . . . . . . . . . . . . . . . 617Configuring IPv4 VRRP-E . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 617Configuring IPv6 VRRP-E . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .618

Additional VRRP and VRRP-E parameter configuration . . . . . . . . .619VRRP and VRRP-E authentication types. . . . . . . . . . . . . . . . . .620VRRP router type . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .622Suppression of RIP advertisements . . . . . . . . . . . . . . . . . . . . .623Hello interval configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . .624Dead interval configuration. . . . . . . . . . . . . . . . . . . . . . . . . . . .625Backup Hello message state and interval . . . . . . . . . . . . . . . .625Track port configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .626Track priority configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . .626Backup preempt configuration . . . . . . . . . . . . . . . . . . . . . . . . .627Changing the timer scale. . . . . . . . . . . . . . . . . . . . . . . . . . . . . .627VRRP-E slow start timer. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .628VRRP-E Extension for Server Virtualization . . . . . . . . . . . . . . .629

Forcing a Master router to abdicate to a Backup router. . . . . . . . .632

Displaying VRRP and VRRP-E information. . . . . . . . . . . . . . . . . . . .633Displaying summary information . . . . . . . . . . . . . . . . . . . . . . .633Displaying detailed information . . . . . . . . . . . . . . . . . . . . . . . .636Displaying statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .643Clearing VRRP or VRRP-E statistics . . . . . . . . . . . . . . . . . . . . .647

Configuration examples . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .647VRRP example . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .647VRRP-E example. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .649

Chapter 11 Configuring Multi-VRF

Supported devices, interface modules, and protocols . . . . . . . . . .651

Multi-VRF Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .653

Configuring Multi-VRF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .654Configuring VRF-related system-max values . . . . . . . . . . . . . .655Configuring VRF instances . . . . . . . . . . . . . . . . . . . . . . . . . . . .658Configuring a route distinguisher . . . . . . . . . . . . . . . . . . . . . . .658Configuring IPv4 and/or IPv6 address families . . . . . . . . . . . .659Configuring routing protocols for new Multi-VRF instance . . .659Assigning a VRF routing instance to an L3 interface. . . . . . . .660FastIron Ethernet Switch Layer 3 Routing Configuration Guide xv53-1002639-03

Removing a Multi-VRF instance . . . . . . . . . . . . . . . . . . . . . . . . . . . .661

Configuring Management VRFs . . . . . . . . . . . . . . . . . . . . . . . . . . . .661Source interface and management VRF compatibility . . . . . .662Supported management applications . . . . . . . . . . . . . . . . . . .662

Configuring a global management VRF . . . . . . . . . . . . . . . . . . . . . .664Configuration notes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .665

Displaying the management VRF information. . . . . . . . . . . . . . . . .665

Configuring sFlow with Multi-VRFs . . . . . . . . . . . . . . . . . . . . . . . . . .668

Configuring static-ARP for Multi-VRFs . . . . . . . . . . . . . . . . . . . . . . .669Configuring static-ARP on default VRFs . . . . . . . . . . . . . . . . . .669Configuring static-ARP on non-default VRFs . . . . . . . . . . . . . .669Proxy ARP and Local Proxy ARP. . . . . . . . . . . . . . . . . . . . . . . . .670ARP rate-limiting. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .670

Configuring DAI to support a Multi-VRF instance . . . . . . . . . . . . . .670

Configuring DHCP snooping to support a Multi-VRF instance . . . .671

Configuring IP Source Guard to support a Multi-VRF instance . . .671

Configuring the Neighbor Discovery Protocol . . . . . . . . . . . . . . . . .672Configuring Static-Neighbor on default VRFs. . . . . . . . . . . . . .672Configuring static-neighbor on non-default VRFs . . . . . . . . . .672

Assigning loopback interfaces . . . . . . . . . . . . . . . . . . . . . . . . . . . . .672

Configuring load sharing for Multi-VRFs . . . . . . . . . . . . . . . . . . . . .672

Multi-VRF Show commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .673View all configured VRFs in summary mode . . . . . . . . . . . . . .673View specific VRF in detail mode . . . . . . . . . . . . . . . . . . . . . . .673View all configured VRFs in detail mode . . . . . . . . . . . . . . . . .673View DHCPv6 snooping status and ports. . . . . . . . . . . . . . . . . 674View DHCPv6 snooping binding database . . . . . . . . . . . . . . . . 674Application and routing protocol specific VRF show commands674

Multi-VRF basic configuration example . . . . . . . . . . . . . . . . . . . . . .675Step 1: System-max configuration . . . . . . . . . . . . . . . . . . . . . .677Step 2: Configuring VRFs. . . . . . . . . . . . . . . . . . . . . . . . . . . . . .678Step 3: Start OSPF process for each VRF. . . . . . . . . . . . . . . . .679Step 4: Assign VRFs to each ve interfaces, and configure IP address and OSPF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .679Show IP OSPF neighbor and show ip route output for each VRF680

Indexxvi FastIron Ethernet Switch Layer 3 Routing Configuration Guide53-1002639-03

hardware installation guide for that product family. Related publications, lists the hardware installation guides.

NOTEThe Brocade ICX 6430-C switch supports the same feature set as the Brocade ICX 6430 switch unless otherwise noted.About This Document

In this chapterIntroduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xviiAudience. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xviiiWhats new in this document . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xviiiDocument conventions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xixRelated publications . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xxGetting technical help . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xxiDocument feedback . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xxi

IntroductionThis guide includes procedures for configuring the software. The software procedures show how to perform tasks using the CLI. This guide also describes how to monitor Brocade products using statistics and summary screens.

Supported HardwareThis guide supports the following product families from Brocade:

FastIron X Series devices (chassis models): FastIron SX 800 FastIron SX 1600

Brocade FCX Series (FCX) Stackable Switch Brocade ICX 6610 (ICX 6610) Stackable Switch Brocade ICX 6430 Series (ICX 6430) Brocade ICX 6450 Series (ICX 6450) Brocade TurboIron 24X SeriesFor information about the specific models and modules supported in a product family, refer to the FastIron Ethernet Switch Layer 3 Routing Configuration Guide xvii53-1002639-03

Unsupported featuresFeatures that are not documented in Related publications, are not supported.

AudienceThis document is designed for system administrators with a working knowledge of Layer 2 and Layer 3 switching and routing.

If you are using a Brocade Layer 3 switch, you should be familiar with the following protocols if applicable to your network IP, RIP, OSPF, BGP, ISIS, IGMP, PIM, and VRRP.

Whats new in this documentThis document includes the information from IronWare software release 08.0.00a.

Summary of enhancements in FastIron release 08.0.00aTable 1 lists the enhancements for FastIron release 08.0.00a.

TABLE 1 Summary of enhancements in FastIron release 08.0.00a

Feature Description Described in

BGP4+ This release supports implementation of MBGP for IPv6 BGP (BGP4+).

Chapter 9, Configuring BGP4+

BGP4+ Graceful Restart This release supports Graceful Restart for and Graceful Restart Helper-Mode for BGP4+.

Chapter 9, Configuring BGP4+

BGP 4-Byte ASN Support This release supports the use 4-BYTE ASN's for BGP. Chapter 8, Configuring BGP4 (IPv4)

Generic Router Encapsulation (GRE)

IPv4 point-to-point GRE tunnels are now supported for the ICX6610. Hitless management is supported for GRE tunnels. Hitless management for IPv6-over-IPv4 tunnels is supported for IP tunnels.

Chapter 1, IP Configuration

Non-Stop Routing Support for OSPFv2

This release introduces the enhancement of Non-Stop Routing Support for OSPFv2. NSR removes the dependency of Graceful-Restart by all neighboring OSPF Routers.

Chapter 6, Configuring OSPF Version 2

Non-Stop Routing Support for OSPFv3

This release introduces the enhancement of Non-Stop Routing Support for OSPFv3. NSR removes the dependency of Graceful-Restart by all neighboring OSPF Routers.

Chapter 7, Configuring OSPF Version 3,

Enhancements to Gratuitous ARP

This release introduces Gratuitous ARP Enhancements features like learn gratuitous ARP, CLI enhancement for static ARP, and Gratuitous ARP default behavior.

Chapter 1, IP Configurationxviii FastIron Ethernet Switch Layer 3 Routing Configuration Guide53-1002639-03

Document conventionsThis section describes text formatting conventions and important notice formats used in this document.

Text formattingThe narrative-text formatting conventions that are used are as follows:

For readability, command names in the narrative portions of this guide are presented in mixed lettercase: for example, switchShow. In actual examples, command lettercase is all lowercase.

Command syntax conventionsCommand syntax in this manual follows these conventions:

Management VRF The management VRF is used to provide secure management access to the device by sending inbound and outbound management traffic through the VRF specified as a global management VRF and through the out-of-band management port, thereby isolating management traffic from the network data traffic.

Chapter 11, Configuring Multi-VRF,

IPv6 DHCP Snooping IPv6 DHCP Snooping enables the Brocade device to filter untrusted DHCP packets in a subnet.

Chapter 11, Configuring Multi-VRF,

VRRP-E Statistics Enhancement

The VRRP-E Statistics feature is enhanced by providing a "total hello packet" count.

Chapter 10, VRRP and VRRP-E,

TABLE 1 Summary of enhancements in FastIron release 08.0.00a (Continued)

Feature Description Described in

bold text Identifies command names

Identifies the names of user-manipulated GUI elements

Identifies keywords

Identifies text to enter at the GUI or CLI

italic text Provides emphasis

Identifies variables

Identifies document titles

code text Identifies CLI output

command Commands are printed in bold.

--option, option Command options are printed in bold.

-argument, arg Arguments.

[ ] Optional elements appear in brackets.FastIron Ethernet Switch Layer 3 Routing Configuration Guide xix53-1002639-03

Notes, cautions, and danger noticesThe following notices and statements are used in this manual. They are listed below in order of increasing severity of potential hazards.

NOTEA note provides a tip, guidance, or advice, emphasizes important information, or provides a reference to related information.

ATTENTIONAn Attention statement indicates potential damage to hardware or data.

CAUTIONA Caution statement alerts you to situations that can be potentially hazardous to you or cause damage to hardware, firmware, software, or data.

DANGERA Danger statement indicates conditions or situations that can be potentially lethal or extremely hazardous to you. Safety labels are also attached directly to products to warn of these conditions or situations.

Related publicationsThe following Brocade documents supplement the information in this guide and can be located at http://www.brocade.com/ethernetproducts.

Brocade FastIron, FCX, ICX, and TurboIron Diagnostic Reference Brocade FastIron SX Series Chassis Hardware Installation Guide Brocade FCX Series Hardware Installation Guide Brocade ICX 6430 and ICX 6450 Stackable Switch Hardware Installation Guide Brocade ICX 6610 Stackable Switch Hardware Installation Guide Brocade TurboIron 24X Series Configuration Guide Brocade TurboIron 24X Series Hardware Installation Guide

variable Variables are printed in italics. In the help pages, values are underlined or enclosed in angled brackets < >.

... Repeat the previous element, for example member[;member...]

value Fixed values following arguments are printed in plain font. For example, --show WWN

| Boolean. Elements are exclusive. Example: --show -mode egress | ingressxx FastIron Ethernet Switch Layer 3 Routing Configuration Guide53-1002639-03

FastIron Ethernet Switch Administration Guide FastIron Ethernet Switch IP Multicast Configuration Guide FastIron Ethernet Switch Layer 3 Routing Configuration Guide FastIron Ethernet Switch Platform and Layer 2 Switching Configuration Guide FastIron Ethernet Switch Security Configuration Guide FastIron Ethernet Switch Software Upgrade Guide FastIron Ethernet Switch Stacking Configuration Guide FastIron Ethernet Switch Traffic Management Guide Unified IP MIB Reference

Getting technical helpTo contact Technical Support, go to http://www.brocade.com/services-support/index.page for the latest e-mail and telephone contact information.

Document feedbackQuality is our first concern at Brocade and we have made every effort to ensure the accuracy and completeness of this document. However, if you find an error or an omission, or you think that a topic needs further development, we want to hear from you. Forward your feedback to:

documentation@brocade.com

Provide the title and version number of the document and as much detail as possible about your comment, including the topic heading and page number and your suggestions for improvement.FastIron Ethernet Switch Layer 3 Routing Configuration Guide xxi53-1002639-03

xxii FastIron Ethernet Switch Layer 3 Routing Configuration Guide53-1002639-03

FastIron Ethernet Switch Layer 3 Routing Configuration Guide53-1002639-03Routing for directly connected IP subnets yes yes yes no yes

Virtual interfaces: up to 512 virtual interfaces

yes yes yes no yes, up to 255Chapter

1IP Configuration

Table 2 lists the individual Brocade FastIron switches and the IP features they support. These features are supported with the full Layer 3 software image except where explicitly noted.

TABLE 2 Supported IP featuresFeature FSX 800

FSX 1600FCX ICX 6610 ICX 6430

ICX 6430-C12ICX 6450

BootP/DHCP relay Yes Yes Yes No Yes

Specifying which IP address will be included in a DHCP/BootP reply packet

Yes Yes Yes No Yes

DHCP Server Yes Yes Yes Yes Yes

DHCP client-based auto-configuration Yes Yes Yes Yes Yes

DHCP client-based flash image auto-update

Yes Yes Yes Yes Yes

DHCP assist Yes Yes Yes Yes Yes

Equal Cost Multi Path (ECMP) load sharing Yes Yes Yes No Yes

IP helper Yes Yes Yes No Yes

Single source address for the following packet types: Telnet TFTP Syslog SNTP TACACS/TACACS+ RADIUS SSH SNMP

Yes No No No No

IPv4 point-to-point GRE IP tunnels yes(IPv6 devices only1)

yes yes no no

Routes in hardware maximum: FSX up to 512k routes ICX6610 up to 16k routes ICX 6450 - up to 12k routes

yes yes yes no yes1

IP Configuration1Basic IP configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3IP configuration overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3Basic IP parameters and defaults Layer 3 Switches . . . . . . . . . . . . . . . . . 10Basic IP parameters and defaults Layer 2 Switches . . . . . . . . . . . . . . . . . 17Configuring IP parameters Layer 3 Switches . . . . . . . . . . . . . . . . . . . . . . . 19IPv4 point-to-point GRE tunnels . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 98Configuring IP parameters Layer 2 Switches . . . . . . . . . . . . . . . . . . . . . . . 92Displaying IP configuration information and statistics . . . . . . . . . . . . . . . . 122Disabling IP checksum check . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 141

NOTEReferences to chassis-based Layer 3 Switches apply to the FSX 800 and FSX 1600.

31-bit subnet mask on point-to-point networks

yes on devices running full layer 3 image

yes on devices running full layer 3 image

yes on devices running full layer 3 image

no yes

Address Resolution Protocol (ARP) yes yes yes yes yes

Reverse Address Resolution Protocol (RARP)

yes yes yes no yes

IP follow yes yes yes no yes

Proxy ARP yes yes yes no yes

Local proxy ARP yes yes yes no yes

Learning gratuitous ARP Yes on devices running layer 3 image

Yes on devices running layer 3 image

Yes on devices running layer 3 image

no Yes on devices running layer 3 image

Jumbo frames yes(up to 10,240 bytes)

yes(up to 10,240 bytes)

yes(up to 10,200 bytes)

yes(up to 10,200 bytes)

yes(up to 10,200 bytes)

IP MTU (individual port setting) yes yes yes no yes

Path MTU discovery yes yes yes no no

ICMP Router Discovery Protocol (IRDP) yes yes yes no yes

Domain Name Server (DNS) resolver yes yes yes yes yes

IP checksum check disable yes no no no no

1. Second and third generation modules.This chapter contains the following sections:

TABLE 2 Supported IP featuresFeature FSX 800

FSX 1600FCX ICX 6610 ICX 6430

ICX 6430-C12ICX 64502 FastIron Ethernet Switch Layer 3 Routing Configuration Guide53-1002639-03

Basic IP configuration 1NOTEThe terms Layer 3 Switch and router are used interchangeably in this chapter and mean the same.

Basic IP configurationIP is enabled by default. Basic configuration consists of adding IP addresses for Layer 3 Switches, enabling a route exchange protocol, such as the Routing Information Protocol (RIP).

If you are configuring a Layer 3 Switch, refer to Configuring IP addresses on page 19 to add IP addresses, then enable and configure the route exchange protocols, as described in other chapters of this guide.

If you are configuring a Layer 2 Switch, refer to Configuring the management IP address and specifying the default gateway on page 92 to add an IP address for management access through the network and to specify the default gateway.

The rest of this chapter describes IP and how to configure it in more detail. Use the information in this chapter if you need to change some of the IP parameters from their default values or you want to view configuration information or statistics.

IP configuration overviewBrocade Layer 2 Switches and Layer 3 Switches support Internet Protocol version 4 (IPv4) and IPv6. IP support on Brocade Layer 2 Switches consists of basic services to support management access and access to a default gateway.

Full Layer 3 supportIP support on Brocade full Layer 3 Switches includes all of the following, in addition to a highly configurable implementation of basic IP services including Address Resolution Protocol (ARP), ICMP Router Discovery Protocol (IRDP), and Reverse ARP (RARP):

Route exchange protocols:- Routing Information Protocol (RIP)- Open Shortest Path First (OSPF)- Border Gateway Protocol version 4 (BGP4)

Multicast protocols:- Internet Group Membership Protocol (IGMP)- Protocol Independent Multicast Dense (PIM-DM)- Protocol Independent Multicast Sparse (PIM-SM)

Router redundancy protocols:- Virtual Router Redundancy Protocol Extended (VRRP-E)- Virtual Router Redundancy Protocol (VRRP)FastIron Ethernet Switch Layer 3 Routing Configuration Guide 353-1002639-03

IP configuration overview1IP interfaces

NOTEThis section describes IPv4 addresses. For information about IPv6 addresses on FastIron X Series devices, refer to IPv6 addressing overview section in the FastIron Ethernet Switch Administration Guide.

Brocade Layer 3 Switches and Layer 2 Switches allow you to configure IP addresses. On Layer 3 Switches, IP addresses are associated with individual interfaces. On Layer 2 Switches, a single IP address serves as the management access address for the entire device.

All Brocade Layer 3 Switches and Layer 2 Switches support configuration and display of IP addresses in classical subnet format (for example: 192.168.1.1 255.255.255.0) and Classless Interdomain Routing (CIDR) format (for example: 192.168.1.1/24). You can use either format when configuring IP address information. IP addresses are displayed in classical subnet format by default but you can change the display format to CIDR. Refer to Changing the network mask display to prefix format on page 122.

Layer 3 SwitchesBrocade Layer 3 Switches allow you to configure IP addresses on the following types of interfaces:

Ethernet ports Virtual routing interfaces (used by VLANs to route among one another) Loopback interfaces GRE tunnelsEach IP address on a Layer 3 Switch must be in a different subnet. You can have only one interface that is in a given subnet. For example, you can configure IP addresses 192.168.1.1/24 and 192.168.2.1/24 on the same Layer 3 Switch, but you cannot configure 192.168.1.1/24 and 192.168.1.2/24 on the same Layer 3 Switch.

You can configure multiple IP addresses on the same interface.

The number of IP addresses you can configure on an individual interface depends on the Layer 3 Switch model. To display the maximum number of IP addresses and other system parameters you can configure on a Layer 3 Switch, refer to Displaying and modifying system parameter default settings section in the FastIron Ethernet Switch Platform and Layer 2 Switching Configuration Guide.

You can use any of the IP addresses you configure on the Layer 3 Switch for Telnet or SNMP access.

Layer 2 SwitchesYou can configure an IP address on a Brocade Layer 2 Switch for management access to the Layer 2 Switch. An IP address is required for Telnet access and SNMP access.

You also can specify the default gateway for forwarding traffic to other subnets.

IP packet flow through a Layer 3 SwitchFigure 1 shows how an IP packet moves through a Brocade Layer 3 Switch.

FIGURE 1 IP Packet flow through a Brocade Layer 3 Switch4 FastIron Ethernet Switch Layer 3 Routing Configuration Guide53-1002639-03

IP configuration overview 1Figure 1 shows the following packet flow:

1. When the Layer 3 Switch receives an IP packet, the Layer 3 Switch checks for filters on the receiving interface.1 If a deny filter on the interface denies the packet, the Layer 3 Switch discards the packet and performs no further processing, except generating a Syslog entry and SNMP message, if logging is enabled for the filter.

2. If the packet is not denied at the incoming interface, the Layer 3 Switch looks in the session table for an entry that has the same source IP address and TCP or UDP port as the packet. If the session table contains a matching entry, the Layer 3 Switch immediately forwards the packet, by addressing it to the destination IP address and TCP or UDP port listed in the session table entry and sending the packet to a queue on the outgoing ports listed in the session table. The Layer 3 Switch selects the queue based on the Quality of Service (QoS) level associated with the session table entry.

3. If the session table does not contain an entry that matches the packet source address and TCP or UDP port, the Layer 3 Switch looks in the IP forwarding cache for an entry that matches the packet destination IP address. If the forwarding cache contains a matching entry, the Layer 3 Switch forwards the packet to the IP address in the entry. The Layer 3 Switch sends the packet to a queue on the outgoing ports listed in the forwarding cache. The Layer 3 Switch selects the queue based on the Quality of Service (QoS) level associated with the forwarding cache entry.

IncomingPort

OutgoingPort

SessionTable

N

Y

FwdingCache

N

Y

NY

Y

N

PBRor

IP accpolicy

IP RouteTable

ARPCache

LoadBalancingAlgorithm

Mult.Equal-cost

Paths

LowestAdmin.

Distance

LowestMetric

Static ARPTable

RIP

OSPF

BGP4FastIron Ethernet Switch Layer 3 Routing Configuration Guide 553-1002639-03

1. The filter can be an Access Control List (ACL) or an IP access policy.

IP configuration overview14. If the IP forwarding cache does not have an entry for the packet, the Layer 3 Switch checks the IP route table for a route to the packet destination. If the IP route table has a route, the Layer 3 Switch makes an entry in the session table or the forwarding cache, and sends the route to a queue on the outgoing ports:

If the running-config contains an IP access policy for the packet, the software makes an entry in the session table. The Layer 3 Switch uses the new session table entry to forward subsequent packets from the same source to the same destination.

If the running-config does not contain an IP access policy for the packet, the software creates a new entry in the forwarding cache. The Layer 3 Switch uses the new cache entry to forward subsequent packets to the same destination.

The following sections describe the IP tables and caches:

ARP cache and static ARP table IP route table IP forwarding cache Layer 4 session tableThe software enables you to display these tables. You also can change the capacity of the tables on an individual basis if needed by changing the memory allocation for the table.

ARP cache and static ARP tableThe ARP cache contains entries that map IP addresses to MAC addresses. Generally, the entries are for devices that are directly attached to the Layer 3 Switch.

An exception is an ARP entry for an interface-based static IP route that goes to a destination that is one or more router hops away. For this type of entry, the MAC address is either the destination device MAC address or the MAC address of the router interface that answered an ARP request on behalf of the device, using proxy ARP.

ARP cacheThe ARP cache can contain dynamic (learned) entries and static (user-configured) entries. The software places a dynamic entry in the ARP cache when the Layer 3 Switch learns a device MAC address from an ARP request or ARP reply from the device.

The software can learn an entry when the Layer 2 Switch or Layer 3 Switch receives an ARP request from another IP forwarding device or an ARP reply. Here is an example of a dynamic entry:

Each entry contains the destination device IP address and MAC address.

Static ARP tableIn addition to the ARP cache, Layer 3 Switches have a static ARP table. Entries in the static ARP table are user-configured. You can add entries to the static ARP table regardless of whether or not the device the entry is for is connected to the Layer 3 Switch.

NOTELayer 3 Switches have a static ARP table. Layer 2 Switches do not.

IP Address MAC Address Type Age Port1 10.95.6.102 0000.00fc.ea21 Dynamic 0 66 FastIron Ethernet Switch Layer 3 Routing Configuration Guide53-1002639-03

IP configuration overview 1The software places an entry from the static ARP table into the ARP cache when the entry interface comes up.

Here is an example of a static ARP entry.

Index IP Address MAC Address Port 1 10.95.6.111 0000.003b.d210 1/1

Each entry lists the information you specified when you created the entry.

Displaying ARP entriesTo display ARP entries, refer to the following sections:

Displaying the ARP cache on page 126 Layer 3 Switch Displaying the static ARP table on page 129 Layer 3 Switch only Displaying ARP entries on page 138 Layer 2 SwitchTo configure other ARP parameters, refer to the following sections:

ARP parameter configuration on page 36 Layer 3 Switch onlyTo increase the size of the ARP cache and static ARP table, refer to the following:

For dynamic entries, refer to the section Displaying and modifying system parameter default settings in the FastIron Ethernet Switch Platform and Layer 2 Switching Configuration Guide. The ip-arp parameter controls the ARP cache size.

Static entries, Changing the maximum number of entries the static ARP table can hold on page 40 (Layer 3 Switches only). The ip-static-arp parameter controls the static ARP table size.

IP route tableThe IP route table contains paths to IP destinations.

NOTELayer 2 Switches do not have an IP route table. A Layer 2 Switch sends all packets addressed to another subnet to the default gateway, which you specify when you configure the basic IP information on the Layer 2 Switch.

The IP route table can receive the paths from the following sources:

A directly-connected destination, which means there are no router hops to the destination A static IP route, which is a user-configured route A route learned through RIP A route learned through OSPF A route learned through BGP4The IP route table contains the best path to a destination:

When the software receives paths from more than one of the sources listed above, the software compares the administrative distance of each path and selects the path with the lowest administrative distance. The administrative distance is a protocol-independent value from 1 through 255. FastIron Ethernet Switch Layer 3 Routing Configuration Guide 753-1002639-03

IP configuration overview1 When the software receives two or more best paths from the same source and the paths have the same metric (cost), the software can load share traffic among the paths based on destination host or network address (based on the configuration and the Layer 3 Switch model).

Here is an example of an entry in the IP route table.

Each IP route table entry contains the destination IP address and subnet mask and the IP address of the next-hop router interface to the destination. Each entry also indicates the port attached to the destination or the next-hop to the destination, the route IP metric (cost), and the type. The type indicates how the IP route table received the route:

To display the IP route table, refer to Displaying the IP route table on page 131 (Layer 3 Switch only).

To configure a static IP route, refer to Static routes configuration on page 46 (Layer 3 Switch only).

To clear a route from the IP route table, refer to Clearing IP routes on page 134 (Layer 3 Switch only).

To increase the size of the IP route table for learned and static routes, refer to the section Displaying and modifying system parameter default settings in the FastIron Ethernet Switch Platform and Layer 2 Switching Configuration Guide:- For learned routes, modify the ip-route parameter.- For static routes, modify the ip-static-route parameter.

IP forwarding cacheThe IP forwarding cache provides a fast-path mechanism for forwarding IP packets. The cache contains entries for IP destinations. When a Brocade Layer 3 Switch has completed processing and addressing for a packet and is ready to forward the packet, the device checks the IP forwarding cache for an entry to the packet destination:

If the cache contains an entry with the destination IP address, the device uses the information in the entry to forward the packet out the ports listed in the entry. The destination IP address is the address of the packet final destination. The port numbers are the ports through which the destination can be reached.

If the cache does not contain an entry and the traffic does not qualify for an entry in the session table instead, the software can create an entry in the forwarding cache.

Each entry in the IP forwarding cache has an age timer. If the entry remains unused for ten minutes, the software removes the entry. The age timer is not configurable.

Here is an example of an entry in the IP forwarding cache.

Destination NetMask Gateway Port Cost Type10.1.0.0 255.255.0.0 10.1.1.2 1/1 2 R

IP Address Next Hop MAC Type Port Vlan Pri1 192.168.1.11 DIRECT 0000.0000.0000 PU n/a 08 FastIron Ethernet Switch Layer 3 Routing Configuration Guide53-1002639-03

IP configuration overview 1Each IP forwarding cache entry contains the IP address of the destination, and the IP address and MAC address of the next-hop router interface to the destination. If the destination is actually an interface configured on the Layer 3 Switch itself, as shown here, then next-hop information indicates this. The port through which the destination is reached is also listed, as well as the VLAN and Layer 4 QoS priority associated with the destination if applicable.

To display the IP forwarding cache, refer to Displaying the forwarding cache on page 130.

NOTEYou cannot add static entries to the IP forwarding cache, although you can increase the number of entries the cache can contain. Refer to the section Displaying and modifying system parameter default settings in the FastIron Ethernet Switch Platform and Layer 2 Switching Configuration Guide.

Layer 4 session tableThe Layer 4 session provides a fast path for forwarding packets. A session is an entry that contains complete Layer 3 and Layer 4 information for a flow of traffic. Layer 3 information includes the source and destination IP addresses. Layer 4 information includes the source and destination TCP and UDP ports. For comparison, the IP forwarding cache contains the Layer 3 destination address but does not contain the other source and destination address information of a Layer 4 session table entry.

The Layer 2 Switch or Layer 3 Switch selects the session table instead of the IP forwarding table for fast-path forwarding for the following features:

Layer 4 Quality-of-Service (QoS) policies IP access policiesTo increase the size of the session table, refer to the section Displaying and modifying system parameter default settings in the FastIron Ethernet Switch Platform and Layer 2 Switching Configuration Guide. The ip-qos-session parameter controls the size of the session table.

IP route exchange protocolsBrocade Layer 3 Switches support the following IP route exchange protocols:

Routing Information Protocol (RIP) Open Shortest Path First (OSPF) Border Gateway Protocol version 4 (BGP4)All these protocols provide routes to the IP route table. You can use one or more of these protocols, in any combination. The protocols are disabled by default. For configuration information, refer to the following:

Chapter 4, Configuring RIP Chapter 6, Configuring OSPF Version 2 Chapter 8, Configuring BGP4 (IPv4)

IP multicast protocolsBrocade Layer 3 Switches also support the following Internet Group Membership Protocol (IGMP) FastIron Ethernet Switch Layer 3 Routing Configuration Guide 953-1002639-03

based IP multicast protocols:

Basic IP parameters and defaults Layer 3 Switches1 Protocol Independent Multicast Dense mode (PIM-DM) Protocol Independent Multicast Sparse mode (PIM-SM)For configuration information, refer to chapter IP Multicast Protocols in the FastIron Ethernet Switch IP Multicast Configuration Guide.

NOTEBrocade Layer 2 Switches support IGMP and can forward IP multicast packets. Refer to the IP Multicast Traffic Reduction chapter in the FastIron Ethernet Switch IP Multicast Configuration Guide.

IP interface redundancy protocolsYou can configure a Brocade Layer 3 Switch to back up an IP interface configured on another Brocade Layer 3 Switch. If the link for the backed up interface becomes unavailable, the other Layer 3 Switch can continue service for the interface. This feature is especially useful for providing a backup to a network default gateway.

Brocade Layer 3 Switches support the following IP interface redundancy protocols:

Virtual Router Redundancy Protocol (VRRP) A standard router redundancy protocol based on RFC 2338. You can use VRRP to configure Brocade Layer 3 Switches and third-party routers to back up IP interfaces on other Brocade Layer 3 Switches or third-party routers.

Virtual Router Redundancy Protocol Extended (VRRP-E) A Brocade extension to standard VRRP that adds additional features and overcomes limitations in standard VRRP. You can use VRRP-E only on Brocade Layer 3 Switches.

For configuration information, refer to the Chapter 10, VRRP and VRRP-E.

ACLs and IP access policiesBrocade Layer 3 Switches provide two mechanisms for filtering IP traffic:

Access Control Lists (ACLs) IP access policiesBoth methods allow you to filter packets based on Layer 3 and Layer 4 source and destination information.

ACLs also provide great flexibility by providing the input to various other filtering mechanisms such as route maps, which are used by BGP4.

IP access policies allow you to configure QoS based on sessions (Layer 4 traffic flows).

Only one of these filtering mechanisms can be enabled on a Brocade device at a time. Brocade devices can store forwarding information for both methods of filtering in the session table.

For configuration information, refer to the chapter Rule-Based IP ACLs in the FastIron Ethernet Switch Security Configuration Guide.

Basic IP parameters and defaults Layer 3 SwitchesIP is enabled by default. The following IP-based protocols are all disabled by default:10 FastIron Ethernet Switch Layer 3 Routing Configuration Guide53-1002639-03

Basic IP parameters and defaults Layer 3 Switches 1 Routing protocols:- Routing Information Protocol (RIP) refer to Chapter 4, Configuring RIP- Open Shortest Path First (OSPF) refer to Chapter 6, Configuring OSPF Version 2- Border Gateway Protocol version 4 (BGP4) refer to Chapter 8, Configuring BGP4 (IPv4)

Multicast protocols:- Internet Group Membership Protocol (IGMP) refer to Global IP multicast parameters

section in the FastIron Ethernet Switch IP Multicast Configuration Guide.- Protocol Independent Multicast Dense (PIM-DM) refer to PIM Dense section in the

FastIron Ethernet Switch IP Multicast Configuration Guide.- Protocol Independent Multicast Sparse (PIM-SM) refer to PIM Sparse section in the

FastIron Ethernet Switch IP Multicast Configuration Guide. Router redundancy protocols:

- Virtual Router Redundancy Protocol Extended (VRRP-E) refer to Chapter 10, VRRP and VRRP-E

- Virtual Router Redundancy Protocol (VRRP) refer to Chapter 10, VRRP and VRRP-EThe following tables list the Layer 3 Switch IP parameters, their default values, and where to find configuration information.

NOTEFor information about parameters in other protocols based on IP, such as RIP, OSPF, and so on, refer to the configuration chapters for those protocols.

When parameter changes take effectMost IP parameters described in this chapter are dynamic. They take effect immediately, as soon as you enter the CLI command. You can verify that a dynamic change has taken effect by displaying the running-config. To display the running-config, enter the show running-config or write terminal command at any CLI prompt.

To save a configuration change permanently so that the change remains in effect following a system reset or software reload, save the change to the startup-config file:

To save configuration changes to the startup-config file, enter the write memory command from the Privileged EXEC level of any configuration level of the CLI.

Changes to memory allocation require you to reload the software after you save the changes to the startup-config file. When reloading the software is required to complete a configuration change described in this chapter, the procedure that describes the configuration change includes a step for reloading the software.

IP global parameters Layer 3 SwitchesTable 3 lists the IP global parameters for Layer 3 Switches.FastIron Ethernet Switch Layer 3 Routing Configuration Guide 1153-1002639-03

Basic IP parameters and defaults Layer 3 Switches1

TABLE 3 IP global parameters Layer 3 SwitchesParameter Description Default For more

information

IP state The Internet Protocol, version 4 EnabledNOTE: You cannot

disable IP.

n/a

IP address and mask notation

Format for displaying an IP address and its network mask information. You can enable one of the following: Class-based format; example: 192.168.1.1

255.255.255.0 Classless Interdomain Routing (CIDR) format;

example: 192.168.1.1/24

Class-basedNOTE: Changing this

parameter affects the display of IP addresses, but you can enter addresses in either format regardless of the display setting.

page 122

Router ID The value that routers use to identify themselves to other routers when exchanging route information. OSPF and BGP4 use router IDs to identify routers. RIP does not use the router ID.

The IP address configured on the lowest-numbered loopback interface.If no loopback interface is configured, then the lowest-numbered IP address configured on the device.

page 31

Maximum Transmission Unit (MTU)

The maximum length an Ethernet packet can be without being fragmented.

1500 bytes for Ethernet II encapsulation1492 bytes for SNAP e