Configuring ospfv3 ipsec policies, Network requirements, Configuration procedure – H3C Technologies H3C SecPath F1000-E User Manual
Page 804
779
Routing Table :
Summary Count : 1
Destination : 2001:4:: PrefixLength : 64
NextHop : 2001:2::2 Preference : 10
IpPrecedence : QosLcId :
RelayNextHop : :: Tag : 0H
Neighbor : :: ProcessID : 0
Interface : GigabitEthernet0/2 Protocol : OSPFv3
State : Invalid Adv Cost : 2
Tunnel ID : 0x0 Label : NULL
Age : 4610sec
Configuring OSPFv3 IPsec policies
Network requirements
As shown in
•
Configure OSPFv3 on the firewalls. The AS is divided into two areas.
•
Configure IPsec policies on the firewalls to authenticate and encrypt protocol packets.
Figure 387 Network diagram
Configuration procedure
1.
Configure IPv6 addresses for interfaces. (Details not shown.)
2.
Configure OSPFv3 basic functions:
# Configure SecPath A: enable OSPFv3 and configure the router ID as 1.1.1.1.
[SecPathA] ipv6
[SecPathA] ospfv3 1
[SecPathA-ospfv3-1] router-id 1.1.1.1
[SecPathA-ospfv3-1] quit
[SecPathA] interface GigabitEthernet 0/2
[SecPathA-GigabitEthernet0/2] ospfv3 1 area 1
[SecPathA-GigabitEthernet0/2] quit
# Configure SecPath B: enable OSPFv3 and configure the router ID as 2.2.2.2.
- H3C SecPath F5000-A5 Firewall H3C SecPath F1000-A-EI H3C SecPath F1000-E-SI H3C SecPath F1000-S-AI H3C SecPath F5000-S Firewall H3C SecPath F5000-C Firewall H3C SecPath F100-C-SI H3C SecPath F1000-C-SI H3C SecPath F100-A-SI H3C SecBlade FW Cards H3C SecBlade FW Enhanced Cards H3C SecPath U200-A U200-M U200-S H3C SecPath U200-CA U200-CM U200-CS H3C SecBlade LB Cards H3C SecPath L1000-A Load Balancer