306
IPsec for IPv6 BGP packets configuration example
Network requirements
As shown in Figure 79, all switches run IPv6 BGP. Establish an IBGP connection between Switch A
and Switch B. Establish an EBGP connection between Switch B and Switch C.
To enhance security, configure IPsec to protect IPv6 BGP packets.
Figure 79 Network diagram
Configuration procedure
1. Configure IPv6 addresses for interfaces. (Details not shown.)
2. Establish an IBGP connection between Switch A and Switch B:
# Configure Switch A.
<SwitchA> system-view
[SwitchA] bgp 65008
[SwitchA-bgp] router-id 1.1.1.1
[SwitchA-bgp] group ibgp internal
[SwitchA-bgp] peer 1::2 group ibgp
[SwitchA-bgp] address-family ipv6 unicast
[SwitchA-bgp-ipv6] peer ibgp enable
[SwitchA-bgp-ipv6] quit
[SwitchA-bgp] quit
# Configure Switch B.
<SwitchB> system-view
[SwitchB] bgp 65008
[SwitchB-bgp] router-id 2.2.2.2
[SwitchB-bgp] group ibgp internal
[SwitchB-bgp] peer 1::1 group ibgp
[SwitchB-bgp] address-family ipv6 unicast
[SwitchB-bgp-ipv6] peer ibgp enable
[SwitchB-bgp-ipv6] quit
3. Establish an EBGP connection between Switch B and Switch C:
# Configure Switch C.
<SwitchC> system-view
[SwitchC] bgp 65009
[SwitchC-bgp] router-id 3.3.3.3
[SwitchC-bgp] group ebgp external
[SwitchC-bgp] peer 3::1 as-number 65008
[SwitchC-bgp] peer 3::1 group ebgp
[SwitchC-bgp] address-family ipv6 unicast
[SwitchC-bgp-ipv6] peer ebgp enable
[SwitchC-bgp-ipv6] quit
To Next Page
Loading...
Need help?
General