beautypg.com

Configuring msdp peer connection control – H3C Technologies H3C S12500 Series Switches User Manual

Page 210

background image

194

messages from inside the group without performing an RPF check, and does not forward the message

within the mesh group. This mechanism not only avoids SA flooding but also simplifies the RPF check
mechanism, because no need exists to run BGP or MBGP between these MSDP peers.
By configuring the same mesh group name for multiple MSDP peers, you can create a mesh group and

assign those MSDP peers to that mesh group.
Before grouping multiple switches into an MSDP mesh group, make sure that these devices are
interconnected with one another.
If you configure more than one mesh group name on an MSDP peer, only the most recent configuration

takes effect.
To create an MSDP mesh group:

Step Command

Remarks

1.

Enter system view.

system-view

N/A

2.

Enter public network MSDP
view or VPN instance MSDP

view.

msdp [ vpn-instance
vpn-instance-name ]

N/A

3.

Create an MSDP mesh group
and assign an MSDP peer to

that mesh group.

peer peer-address mesh-group
name

An MSDP peer does not belong to
any mesh group by default.

Configuring MSDP peer connection control

CAUTION:

The MSDP peers involved in the MD5 authentication must have the same authentication method and
password. Otherwise, the authentication fails and the TCP connection cannot be established.

MSDP peers are interconnected over TCP (port number 639). You can flexibly control sessions between

MSDP peers by manually deactivating and reactivating the MSDP peering connections. When the

connection between two MSDP peers is deactivated, SA messages will no longer be delivered between
them, and the TCP connection is closed without any connection setup retry. The configuration information

remain unchanged.
A TCP connection is required in the following situations:

A new MSDP peer is created.

A previously deactivated MSDP peer connection is reactivated.

A previously failed MSDP peer attempts to resume operation.

You can adjust the interval between MSDP peering connection retries.
To enhance MSDP security, you can configure an MD5 authentication password for the TCP connection
to be established with an MSDP peer. If the MD5 authentication fails, the TCP connection cannot be

established.
To configure MSDP peer connection control:

Step Command

Remarks

1.

Enter system view.

system-view

N/A

This manual is related to the following products:
See also other documents in the category H3C Technologies Routers: