Brocade FastIron Ethernet Switch Layer 3 Routing Configuration Guide User Manual

maximum-prefix num specifies the maximum number of IP network prefixes (routes) that can be
learned from the specified neighbor or peer group . You can specify a value from 0 through
4294967295. The default is 0 (unlimited).

• The num parameter specifies the maximum number. The range is 0 through 4294967295. The

default is 0 (unlimited).

• The threshold parameter specifies the percentage of the value you specified for the maximum-prefix

num , at which you want the software to generate a Syslog message. You can specify a value from 1
(one percent) to 100 (100 percent). The default is 100.

• The teardown parameter tears down the neighbor session if the maximum-prefix limit is exceeded.

The session remains shutdown until you clear the prefixes using the clear ip bgp neighbor all or
clear ip bgp neighbor command, or change the maximum prefix configuration for the neighbor. The
software also generates a Syslog message.

next-hop-self specifies that the device should list itself as the next hop in updates sent to the specified
neighbor. This option is disabled by default.

password string specifies an MD5 password for securing sessions between the device and the
neighbor. You can enter a string up to 80 characters long. The string can contain any alphanumeric
characters and spaces if the words in the password are placed inside quotes.

NOTE
If you want the software to assume that the value you enter is the clear-text form, and to encrypt display
of that form, do not enter 0 or 1. Instead, omit the encryption option and allow the software to use the
default behavior. If you specify encryption option 1, the software assumes that you are entering the
encrypted form of the password or authentication string. In this case, the software decrypts the
password or string you enter before using the value for authentication. If you accidentally enter option 1
followed by the clear-text version of the password or string, authentication will fail because the value
used by the software will not match the value you intended to use.

The system creates an MD5 hash of the password and uses it for securing sessions between the device
and its neighbors. To display the configuration, the system uses a 2-way encoding scheme to be able to
retrieve the original password that was entered.

By default, the password is encrypted. If you want the password to appear in clear text, insert a 0
between the password and the string.

device(config-bgp)# neighbor 10.157.22.26 password 0 marmalade

The system adds an encryption code followed by the encrypted text of the original password. For
example, the following portion of the code has the encrypted code “2”.

password 2 $IUA2PWc9LW9VIW9zVQ=="

One of the following may be displayed:

• 0 = the password is not encrypted and is in clear text
• 2 = the password uses proprietary base64 cryptographic 2-way algorithm

peer-group group-name assigns the neighbor to the specified peer group.

prefix-list string in |out specifies an IP prefix list. You can use IP prefix lists to control routes to and
from the neighbor. IP prefix lists are an alternative method to AS-path filters. The in and out keywords
specify whether the list is applied on updates received from the neighbor or sent to the neighbor. The
filters can use the same prefix list or different prefix lists.

remote-as as-number specifies the AS in which the remote neighbor resides. The as-number has no
default value. The range is 1 - 4294967295.

Configuring BGP4 (IPv4)

FastIron Ethernet Switch Layer 3 Routing Configuration Guide

403

53-1003087-04