Name: OmniSwitch os6900
Brand: OmniSwitch
Rating: 5 (1 reviews)

To Next Page

To Previous Page

Configuring IPsec Additional Examples

OmniSwitch AOS Release 7 Network Configuration Guide June 2013 page 18-21

Discarding RIPng Packets

RIPng uses the well known address of ff02::9 to advertise routes. The following example shows how

IPsec can be configured to drop all RIPng packets.

Discarding RIPng Packets

Switch A

-> ipsec policy DISCARD_UDPout source fe80::100 destination ff02::9 protocol udp

out discard

-> ipsec policy DISCARD_UDPin source fe80::200 destination ff02::9 protocol udp

in discard

Switch B

-> ipsec policy DISCARD_UDPout source fe80::200 destination ff02::9 protocol udp

out discard

-> ipsec policy DISCARD_UDPin source fe80::100 destination ff02::9 protocol udp

in discard

Switch A

Link Local: fe80::200Link Local: fe80::100

Switch B

Default Chapter3
- Table of Contents3
About this Guide29
- Supported Platforms29
- When Should I Read this Manual29
- Who Should Read this Manual29
- How Is the Information Organized30
- What Is in this Manual30
- What Is Not in this Manual30
- Documentation Roadmap31
- Related Documentation33
- Technical Support34
Chapter 1 Configuring Ethernet Ports36
- Ethernet Specifications36
- Ethernet Port Defaults36
- Ethernet Ports Overview38
  - Valid Port Settings38
- Configuring Ethernet Port Parameters38
- Clearing Ethernet Port Violations45
- Link Monitoring46
- Link Fault Propagation50
Chapter 2 Configuring UDLD55
- In this Chapter55
- UDLD Specifications56
- UDLD Defaults56
- Quick Steps for Configuring UDLD57
- UDLD Overview58
  - UDLD Operational Mode58
  - Mechanisms to Detect Unidirectional Links59
- Configuring UDLD59
- Verifying the UDLD Configuration62
- In this Chapter63
Chapter 3 Managing Source Learning64
- Source Learning Specifications64
- Source Learning Defaults64
- MAC Address Table Overview65
- Using Static MAC Addresses65
  - Configuring Static MAC Addresses66
- Using Static Multicast MAC Addresses67
  - Configuring Static Multicast MAC Addresses67
  - Static Multicast Mac Addresses on Link Aggregate Ports68
- Configuring MAC Address Table Aging Time69
- Configuring the Source Learning Status70
- Increasing the MAC Address Table Size71
- Displaying Source Learning Information72
Chapter 4 Configuring Vlans73
Configuring Vlans74
- VLAN Specifications74
- VLAN Defaults74
- Sample VLAN Configuration75
- VLAN Management Overview76
- Creating/Modifying Vlans76
- Assigning Ports to Vlans78
  - Changing the Default VLAN Assignment for a Port79
  - Using 802.1Q Tagging79
- Enabling/Disabling Spanning Tree for a VLAN81
- Enabling/Disabling Source Learning81
- Configuring VLAN IP Interfaces82
- Bridging Vlans Across Multiple Switches83
- Verifying the VLAN Configuration85
  - Understanding Port Output85
Chapter 32 Diagnosing Switch Problems85
Chapter 5 Configuring High Availability Vlans87
- In this Chapter87
- High Availability Vlans Specifications88
- High Availability Default Values88
- Quick Steps for Creating High Availability Vlans89
- High Availability VLAN Overview90
  - High Availability VLAN Operational Mode90
  - Traffic Flows in High Availability VLAN91
- Configuring High Availability Vlans on a Switch92
- Application Examples95
- Displaying High Availability VLAN Status102
Chapter 6 Configuring Spanning Tree Parameters103
- In this Chapter104
- Spanning Tree Specifications105
- Spanning Tree Bridge Parameter Defaults106
- Spanning Tree Port Parameter Defaults106
- Multiple Spanning Tree (MST) Region Defaults107
- Spanning Tree Overview108
  - How the Spanning Tree Topology Is Calculated108
  - Topology Examples112
- MST General Overview114
- Spanning Tree Operating Modes122
- Using Spanning Tree Configuration Commands127
- Configuring STP Bridge Parameters128
- Configuring STP Port Parameters135
- Sample Spanning Tree Configuration146
  - Example Network Overview146
  - Example Network Configuration Steps147
- Sample MST Region Configuration149
- Sample MSTI Configuration151
- Verifying the Spanning Tree Configuration154
Chapter 7 Configuring Static Link Aggregation155
- Static Link Aggregation Specifications156
- Static Link Aggregation Default Values156
- Quick Steps for Configuring Static Link Aggregation157
- Static Link Aggregation Overview159
  - Static Link Aggregation Operation159
  - Relationship to Other Features160
- Configuring Static Link Aggregation Groups160
- Modifying Static Aggregation Group Parameters163
  - Modifying the Static Aggregate Group Name163
  - Modifying the Static Aggregate Group Administrative State163
- Application Example164
- Displaying Static Link Aggregation Configuration and Statistics165
Configuring Static Link Aggregation155
- In this Chapter155
Chapter 8 Configuring Dynamic Link Aggregation167
- Dynamic Link Aggregation Specifications168
- Dynamic Link Aggregation Default Values169
- Quick Steps for Configuring Dynamic Link Aggregation170
- Dynamic Link Aggregation Overview172
  - Dynamic Link Aggregation Operation172
  - Relationship to Other Features174
- Configuring Dynamic Link Aggregate Groups174
- Modifying Dynamic Link Aggregate Group Parameters178
- Application Examples193
- Displaying Dynamic Link Aggregation Configuration and Statistics196
Configuring Dynamic Link Aggregation167
- In this Chapter167
Chapter 9 Configuring Virtual Chassis199
- In this Chapter200
- Virtual Chassis Specifications201
- Virtual Chassis Default Values202
- Quick Steps for Configuring a Virtual Chassis203
- Virtual Chassis Overview205
- Virtual Chassis Topologies212
  - Basic Virtual Chassis Building Block212
  - Recommended Topologies212
- Interaction with Other Features214
  - Data Center Bridging214
  - Multicast Load Balancing214
- Configuring Virtual Chassis214
- Virtual Chassis Configuration Example221
- Link Aggregation Configuration222
- Displaying Virtual Chassis Configuration and Status223
Configuring Multi-Chassis Link Aggregation225
- In this Chapter226
Chapter 10 Configuring Multi-Chassis Link Aggregation226
- Multi-Chassis Link Aggregation Specifications227
- Multi-Chassis Link Aggregation Default Values228
- Quick Steps for Configuring MCLAG229
- MCLAG Overview233
- MCLAG Topologies237
- MCLAG Packet Flow242
  - Layer 2 Switching over MCLAG242
- Interaction with Other Features245
- Configuring MCLAG251
- Recommended Configuration Parameters257
  - Verifying Parameter Consistency257
- MCLAG Configuration Examples259
  - Example 1: MCLAG Topology259
  - Example 2: MCLAG Group ID Configuration261
- Displaying MCLAG Configuration and Statistics262
Chapter 11 Configuring ERP263
- ERP Specifications264
- ERP Defaults265
- ERP Overview266
- Interaction with Other Features272
- Quick Steps for Configuring ERP with Standard Vlans273
- Quick Steps for Configuring ERP with VLAN Stacking274
- ERP Configuration Overview and Guidelines275
- Configuring an ERP Ring276
- Erpv2 Configuration Overview and Guidelines280
  - Major and Sub Ring Management280
  - Sample Switch Configuration281
- Sample Ethernet Ring Protection Configuration284
  - Example ERP Overview284
  - Example ERP Configuration Steps285
- Sample Erpv2 Ring Configuration286
- Verifying the ERP Configuration289
11 Configuring ERP263
- In this Chapter263
Chapter 12 Configuring MVRP291
- MVRP Specifications292
- MVRP Defaults293
- Quick Steps for Configuring MVRP294
- MRP Overview295
- MVRP Overview295
  - How MVRP Works295
  - Interaction with Other Features298
- Configuring MVRP299
- Verifying the MVRP Configuration305
12 Configuring MVRP291
- In this Chapter291
Chapter 13 Configuring 802.1AB307
- 802.1AB Specifications308
- 802.1AB Defaults Table308
- Quick Steps for Configuring 802.1AB309
- 802.1AB Overview310
- Configuring 802.1AB313
- Verifying 802.1AB Configuration317
13 Configuring 802.1AB307
- In this Chapter307
Chapter 14 Configuring Dynamic Automatic Fabric319
- In this Chapter320
- Auto-Fabric Specifications321
- Auto-Fabric Default Values322
- Quick Steps for Configuring Auto-Fabric323
- Auto-Fabric Overview325
  - Basic Auto-Fabric Operation325
  - Auto-Fabric Discovery Window326
- Auto-Fabric Discovery Examples327
  - Auto-Fabric Configured in the Core327
  - The Core Is Manually Configured for LACP, SPB, and MVRP328
- Interaction with Other Features329
- Configuring Auto-Fabric332
- Displaying Auto-Fabric Configuration and Status334
Chapter 15 Configuring IP335
- IP Specifications337
- IP Defaults338
- IP Overview339
Chapter 24 Configuring IP Multicast Switching340
- IP Forwarding341
- IP Configuration350
- Managing IP363
- Verifying the IP Configuration370
- VRF Route Leak371
  - Configuring VRF Route Leak372
  - Verifying VRF Route Leak Configuration373
Chapter 16 Configuring Multiple VRF375
- VRF Specifications376
- Quick Steps for Configuring Multiple VRF377
- Multiple VRF Overview380
- VRF Interaction with Other Features385
- Verifying the VRF Configuration393
Chapter 17 Configuring Ipv6395
- Ipv6 Specifications396
- Ipv6 Defaults398
- Quick Steps for Configuring Ipv6 Routing399
- Ipv6 Overview400
- Configuring an Ipv6 Interface408
  - Configuring a Unique Local Ipv6 Unicast Address409
- Assigning Ipv6 Addresses410
  - Removing an Ipv6 Address411
- Configuring Ipv6 Tunnel Interfaces412
- Creating an Ipv6 Static Route413
- Configuring the Route Preference of a Router414
- Configuring Route Map Redistribution415
- Verifying the Ipv6 Configuration421
Chapter 18 Configuring Ipsec423
- Ipsec Specifications424
- Quick Steps for Configuring an Ipsec AH Policy425
- Quick Steps for Configuring an Ipsec Discard Policy426
- Ipsec Overview427
- Configuring Ipsec on the Omniswitch432
  - Configuring an Ipsec Policy433
  - Configuring an Ipsec SA437
    - Verifying Ipsec Sa438
    - Configuring Ipsec Sa Keys438
- Additional Examples441
  - Discarding Ripng Packets443
- Verifying Ipsec Configuration444
Chapter 19 Configuring RIP445
- RIP Specifications446
- Quick Steps for Configuring RIP Routing447
- RIP Overview448
  - RIP Version 2449
- RIP Routing450
  - Enabling RIP451
    - Configuring the Rip Interface Receive Option452
    - Configuring the Rip Interface Metric452
- RIP Options453
  - Configuring the RIP Invalid Timer454
  - Enabling a RIP Host Route455
- Configuring Redistribution456
- RIP Security462
- Verifying the RIP Configuration463
Chapter 20 Configuring BFD465
- BFD Specifications466
- Quick Steps for Configuring BFD467
  - Quick Steps for Configuring BFD Support for Layer 3 Protocols469
- BFD Overview471
Configuring BFD475
- Configuring the Bfd Receive Time Interval476
- Configuring the Bfd Transmit Time Interval476
- Configuring the Bfd Echo Interval477
- Configuring the Bfd Multiplier477
- Enabling or Disabling Bfd Status478
- Configuring BFD Support for Layer 3 Protocols479
- Configuring Bfd Support for Vrrp Tracking483
- BFD Application Example487
- Verifying the BFD Configuration492
Chapter 21 Configuring DHCP Relay493
- DHCP Relay Specifications494
- DHCP Relay Defaults495
- Quick Steps for Setting up DHCP Relay496
- DHCP Relay Overview497
- DHCP Relay Implementation501
  - Configuring BOOTP/DHCP Relay Parameters502
  - Setting Maximum Hops503
- Using Automatic IP Configuration504
- Configuring UDP Port Relay505
  - Enabling/Disabling UDP Port Relay506
  - How the Relay Agent Processes DHCP Packets from the Client507
- Verifying the DHCP Relay Configuration509
Chapter 22 Configuring VRRP511
- VRRP Specifications513
- Quick Steps for Creating a Virtual Router515
- VRRP Overview516
- VRRP Configuration Overview520
- Verifying the VRRP Configuration528
- Vrrpv3 Configuration Overview529
- Verifying the Vrrpv3 Configuration534
- Creating Tracking Policies535
- VRRP Application Example536
  - VRRP Tracking Example538
- Vrrpv3 Application Example540
  - Vrrpv3 Tracking Example541
Chapter 23 Configuring Server Load Balancing544
- Server Load Balancing Default Values545
- Quick Steps for Configuring Server Load Balancing546
  - Quick Steps for Configuring a Qos Policy Condition Cluster547
- Server Load Balancing Overview549
  - Server Load Balancing Example550
  - Weighted Round Robin Distribution Algorithm551
  - Server Health Monitoring552
- Configuring Server Load Balancing on a Switch553
  - Configuring and Deleting SLB Clusters554
  - Automatic Configuration of Slb Policy Rules555
  - Assigning Servers to and Removing Servers from a Cluster556
- Modifying Optional Parameters557
  - Modifying the Ping Retries558
- Taking Clusters and Servers On/Off Line559
- Configuring SLB Probes560
  - Associating a Probe with a Cluster561
- Displaying Server Load Balancing Status and Statistics564
- In this Chapter567
- IPMS Specifications568
- Ipmsv6 Specifications569
- Ipmsv6 Default Values571
- IPMS Overview572
  - Reserved IP Multicast Addresses573
  - Igmp Version 3574
- Configuring IPMS on a Switch575
  - Enabling and Disabling IGMP Querier-Forwarding576
  - Configuring and Removing an IGMP Static Neighbor577
  - Configuring and Removing an IGMP Static Querier578
    - Configuring an Igmp Static Group579
    - Removing an Igmp Static Group579
- Modifying IPMS Parameters580
  - Modifying the IGMP Query Response Interval581
  - Modifying the IGMP Router Timeout582
  - Modifying the Source Timeout583
  - Enabling and Disabling IGMP Querying584
  - Enabling and Disabling the IGMP Spoofing585
  - Enabling and Disabling the IGMP Zapping586
  - Limiting IGMP Multicast Groups587
- Ipmsv6 Overview588
  - Reserved Ipv6 Multicast Addresses589
- Configuring Ipmsv6 on a Switch590
  - Enabling and Disabling MLD Querier-Forwarding591
  - Configuring and Removing an MLD Static Neighbor592
  - Configuring and Removing an MLD Static Querier593
    - Configuring an Mld Static Group594
    - Removing an Mld Static Group594
- Modifying Ipmsv6 Parameters595
  - Modifying the MLD Query Response Interval596
  - Modifying the MLD Router Timeout597
  - Enabling and Disabling the MLD Querying598
  - Modifying the MLD Robustness Variable599
  - Enabling and Disabling the MLD Spoofing600
  - Limiting MLD Multicast Groups601
- IPMS Application Example603
- Ipmsv6 Application Example605
- Displaying IPMS Configurations and Statistics607
- Displaying Ipmsv6 Configurations and Statistics608
Chapter 25 Configuring Qos609
- Qos Specifications611
- Qos General Overview612
- Classification614
- Congestion Management618
- Congestion Avoidance628
- Traffic Policing and Shaping630
- Qos Policy Overview637
- Qos Defaults642
- Configuring Global Qos Parameters647
- Creating Policies651
- Using Condition Groups in Policies661
- Using Map Groups668
  - How Map Groups Work669
  - Verifying Map Group Configuration670
- Using Access Control Lists671
- Applying the Configuration679
  - Interaction with LDAP Policies680
  - Verifying the Applied Policy Configuration681
- Policy Applications682
- In this Chapter693
Chapter 26 Managing Policy Servers694
- Policy Server Overview695
- Modifying Policy Servers696
Chapter 27 Configuring Universal Network Profiles702
- UNP Specifications702
- UNP Defaults703
- Quick Steps for Configuring UNP704
- UNP Overview709
- UNP Configuration Overview727
- Configuring UNP Port-Based Access Control728
  - Configuring UNP Port Parameters729
- Configuring Profiles733
- UNP Application Example741
  - UNP CLI Configuration Example742
- Verifying the UNP Configuration744
- In this Chapter747
Chapter 28 Configuring Application Fingerprinting748
- AFP Defaults749
- Quick Steps for Configuring AFP751
- AFP Overview752
- Configuring AFP757
- Verifying the AFP Configuration765
- In this Chapter767
Chapter 29 Managing Authentication Servers768
- Authentication Server Specifications768
- Server Defaults769
- Quick Steps for Configuring Authentication Servers770
- Server Overview771
- RADIUS Servers773
  - Radius Accounting Server Attributes776
  - Configuring the RADIUS Client777
- TACACS+ Server778
  - Configuring the TACACS+ Client779
- LDAP Servers780
- Verifying the Authentication Server Configuration793
- In this Chapter795
Chapter 30 Configuring Port Mapping796
- Creating/Deleting a Port Mapping Session797
- Enabling/Disabling a Port Mapping Session798
- Sample Port Mapping Configuration799
  - Example Port Mapping Configuration Steps800
Chapter 31 Configuring Learned Port Security801
- Learned Port Security Specifications802
- Sample Learned Port Security Configuration803
- Learned Port Security Overview805
- Configuring Learned Port Security810
- Displaying Learned Port Security Information817
- Port Monitoring Overview823
- Switch Health Overview831
  - Switch Health Defaults832
- Port Mirroring833
- Port Monitoring842
- Sflow847
- Remote Monitoring (RMON)852
- Monitoring Switch Health859
Chapter 33 Configuring VLAN Stacking867
- VLAN Stacking Specifications868
- VLAN Stacking Overview870
- Quick Steps for Configuring VLAN Stacking875
- Configuring VLAN Stacking Services877
- VLAN Stacking Application Example888
  - VLAN Stacking Configuration Example889
- Verifying the VLAN Stacking Configuration892
Chapter 34 Using Switch Logging893
- Switch Logging Specifications894
- Switch Logging Defaults895
- Quick Steps for Configuring Switch Logging896
- Switch Logging Overview897
- Switch Logging Commands Overview898
Chapter 35 Configuring Ethernet OAM905
- Ethernet OAM Specifications906
- Ethernet OAM Overview907
Chapter 36 Configuring Service Assurance Agent910
- Quick Steps for Configuring Ethernet OAM912
Configuring Ethernet OAM913
- Configuring a Maintenance Association914
- Configuring a Maintenance End Point915
- Configuring Loopback916
- Verifying the Ethernet OAM Configuration918
- In this Chapter919
- SAA Specifications920
- Quick Steps for Configuring SAA921
- Service Assurance Agent Overview922
- Verifying the SAA Configuration927
Appendix A Software License and Copyright Statements929
- Alcatel-Lucent License Agreement929
- Third Party Licenses and Notices932

OmniSwitch os6900 User Manual

Table of Contents

Questions and Answers:

OmniSwitch os6900 Specifications

Brand	OmniSwitch
Model	os6900
Category	Switch
Language	English