beautypg.com

Configuring ldp md5 authentication, Configuring an lsp generation policy – H3C Technologies H3C S12500-X Series Switches User Manual

Page 35

background image

24

The LDP backoff mechanism can mitigate this problem by using an initial delay timer and a maximum

delay timer. After LDP fails to establish a session with a peer LSR for the first time, LDP does not start an
attempt until the initial delay timer expires. If the session setup fails again, LDP waits for two times the

initial delay before the next attempt, and so forth until the maximum delay time is reached. After that, the

maximum delay time will always take effect.
To configure LDP backoff:

Step Command

Remarks

1.

Enter system view.

system-view

N/A

2.

Enter LDP view or enter
LDP-VPN instance view.

Enter LDP view:

mpls ldp

Enter LDP-VPN instance view:

a.

mpls ldp

b.

vpn-instance

vpn-instance-name

N/A

3.

Configure the initial delay
time and maximum delay

time.

backoff initial initial-time maximum
maximum-time

By default, the initial delay time is
15 seconds and the maximum

delay time is 120 seconds.

Configuring LDP MD5 authentication

To improve security for LDP sessions, you can configure MD5 authentication for the underlying TCP
connections to check the integrity of LDP messages.
For two LDP peers to establish an LDP session successfully, make sure the LDP MD5 authentication

configurations on the LDP peers are consistent.
To configure LDP MD5 authentication:

Step Command

Remarks

1.

Enter system view.

system-view

N/A

2.

Enter LDP view or enter
LDP-VPN instance view.

Enter LDP view:
mpls ldp

Enter LDP-VPN instance view:

a.

mpls ldp

b.

vpn-instance vpn-instance-name

N/A

3.

Enable LDP MD5
authentication.

md5-authentication peer-lsr-id { cipher |
plain } password

By default, LDP MD5
authentication is disabled.

Configuring an LSP generation policy

An LSP generation policy controls the number of LSPs generated by LDP in one of the following ways:

Use all routes to establish LSPs.

Use the routes permitted by an IP prefix list to establish LSPs. For information about IP prefix list
configuration, see Layer 3—IP Routing Configuration Guide.

This manual is related to the following products:
See also other documents in the category H3C Technologies Routers: