HP A5500 EI Switch Series Configuration Manual Download Page 160 | Manualshive

Page: 160 / 443

background image

148

address to replace its own BSR address and no longer assumes itself to be the BSR, and the winner

retains its own BSR address and continues assuming itself to be the BSR.

Configuring a legal range of BSR addresses enables filtering of bootstrap messages based on the

address range, to prevent a maliciously configured host from masquerading as a BSR. The same
configuration must be made on all routers in the BIDIR-PIM domain. The following are typical BSR

spoofing cases and the corresponding preventive measures:

1.

Some maliciously configured hosts can forge bootstrap messages to fool routers and change RP
mappings. Such attacks often occur on border routers. Because a BSR is inside the network

whereas hosts are outside the network, a BSR can be protected against attacks from external hosts
after you enable the border routers to perform neighbor checks and RPF checks on bootstrap

messages and discard unwanted messages.

2.

When a router in the network is controlled by an attacker or when an illegal router is present in the
network, the attacker can configure this router as a C-BSR and make it win BSR election to control

the right of advertising RP information in the network. After being configured as a C-BSR, a router

automatically floods the network with bootstrap messages. Because a bootstrap message has a TTL
value of 1, the whole network will not be affected as long as the neighbor router discards these

bootstrap messages. Therefore, with a legal BSR address range configured on all routers in the

entire network, all these routers will discard bootstrap messages from out of the legal address

range.

The preventive measures can partially protect the security of BSRs in a network. However, if a legal BSR

is controlled by an attacker, the mentioned problem will still occur.
Follow these steps to configure a C-BSR:

To do…

Use the command…

Remarks

Enter system view

system-view

—

Enter public network PIM view
or VPN instance PIM view

pim

[

vpn-instance

vpn-instance-

name

]

—

Configure an interface as a C-
BSR

c-bsr

interface-type interface-number

[

hash-length

[

priority

] ]

Required
No C-BSRs are configured by
default.

Configure a legal BSR address
range

bsr-policy

acl-number

Optional
No restrictions on BSR address
range by default

NOTE:

•

Because a large amount of information needs to be exchanged between a BSR and the other devices
in the BIDIR-PIM domain, a relatively large bandwidth should be provided between the C-BSRs and
the other devices in the BIDIR-PIM domain.

•

For C-BSRs interconnected through a GRE tunnel, multicast static routes need to be configured to
ensure that the next hop to a C-BSR is a Tunnel interface. For more information about multicast static

routes, see the chapter “Multicast routing and forwarding configuration.”

«
...
158
159
160
161
162
...
»

Summary of Contents for A5500 EI Switch Series

Page 1: ...ration procedures These configuration guides also provide configuration examples to help you apply software features to different network scenarios This documentation is intended for network planners field technical support and servicing engineers and network administrators working with the HP A Series products Part number 5998 1712 Software version Release 2208 Document version 5W100 20110530 ...

Page 2: ...MATERIAL INCLUDING BUT NOT LIMITED TO THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE Hewlett Packard shall not be liable for errors contained herein or for incidental or consequential damages in connection with the furnishing performance or use of this material The only warranties for HP products and services are set forth in the express warranty statements accompan...

Page 3: ...ooping 21 Configuring static multicast MAC address entries 21 Configuring IGMP snooping port functions 22 Configuration prerequisites 22 Configuring aging timers for dynamic ports 23 Configuring static ports 23 Configuring simulated joining 24 Configuring fast leave processing 25 Disabling a port from becoming a dynamic router port 26 Configuring IGMP snooping querier 26 Configuration prerequisite...

Page 4: ...equisites 58 Configuring user port attributes 58 Configuring multicast VLAN ports 59 Displaying and maintaining multicast VLAN 60 Multicast VLAN configuration examples 60 Sub VLAN based multicast VLAN configuration 60 Port based multicast VLAN configuration 63 Multicast routing and forwarding configuration available only on the A5500 EI 67 Multicast routing and forwarding overview 67 Introduction ...

Page 5: ...on prerequisites 99 Enabling IGMP proxying 100 Configuring multicast forwarding on a downstream interface 100 Displaying and maintaining IGMP 101 IGMP configuration examples 102 Basic IGMP functions configuration example 102 SSM mapping configuration example 104 IGMP proxying configuration example 107 Troubleshooting IGMP 109 No membership information on the receiver side router 109 Inconsistent m...

Page 6: ...M common timers 159 Configuring join prune message sizes 161 Displaying and maintaining PIM 161 PIM configuration examples 162 PIM DM configuration example 162 PIM SM non scoped zone configuration example 166 PIM SM admin scope zone configuration example 171 BIDIR PIM configuration example 177 PIM SSM configuration example 182 Troubleshooting PIM configuration 185 Failure of building a multicast d...

Page 7: ...ng route advertisement and reception 222 Configuration prerequisites 222 Configuring MBGP route redistribution 222 Configure default route redistribution into MBGP 222 Configuring MBGP route summarization 223 Advertising a default route to an IPv4 MBGP peer or peer group 224 Configuring outbound MBGP route filtering 224 Configuring inbound MBGP route filtering 225 Configuring MBGP route dampening ...

Page 8: ...a source IPv6 address for the MLD messages sent by the proxy 255 Configuring an MLD snooping policy 255 Configuration prerequisites 255 Configuring an IPv6 multicast group filter 255 Configuring IPv6 multicast source port filtering 256 Configuring the function of dropping unknown IPv6 multicast data 257 Configuring MLD report suppression 257 Configuring the maximum number of multicast groups that ...

Page 9: ...ining IPv6 multicast routing and forwarding 297 Troubleshooting IPv6 multicast policy configuration 298 Abnormal termination of IPv6 multicast data 298 MLD configuration available only on the A5500 EI 300 MLD overview 300 MLD versions 300 How MLDv1 works 300 How MLDv2 works 302 MLD Messages 303 MLD SSM mapping 306 MLD proxying 307 Protocols and standards 307 MLD configuration task list 308 Configu...

Page 10: ...6 PIM SM configuration task list 347 Configuration prerequisites 348 Enabling IPv6 PIM SM 348 Configuring an RP 349 Configuring a BSR 351 Configuring IPv6 administrative scoping 355 Configuring IPv6 multicast source registration 356 Disabling SPT switchover 357 Configuring IPv6 BIDIR PIM 358 IPv6 BIDIR PIM configuration task list 358 Configuration prerequisites 358 Enabling IPv6 PIM SM 359 Enablin...

Page 11: ...Pv6 MBGP route summarization 409 Advertising a default route to a peer or peer group 409 Configuring outbound IPv6 MBGP route filtering 410 Configuring inbound IPv6 MBGP route filtering 411 Configuring IPv6 MBGP route dampening 411 Configuring IPv6 MBGP route attributes 412 Configuration prerequisites 412 Configuring IPv6 MBGP route preferences 412 Configuring the default local preference 412 Conf...

Page 12: ...xii Conventions 425 Index 427 ...

Page 13: ...rk operator can easily provide new value added services such as live webcasting web TV distance learning telemedicine web radio realtime video conferencing and other bandwidth critical and time critical information services Comparison of information transmission techniques Unicast In unicast transmission the information source must send a separate copy of information to each host that needs the in...

Page 14: ...nd Host E need the information If the information is broadcast to the subnet Host A and Host C also receive it In addition to information security issues broadcasting to hosts that do not need the information causes traffic flooding on the same subnet Broadcast is disadvantageous in transmitting data to specific hosts Moreover broadcast transmission is a significant waste of network resources Mult...

Page 15: ... In addition data broadcast is confined to the same subnet but multicast is not Features of multicast Multicast transmission has the following features A multicast group is a multicast receiver set identified by an IP multicast address Hosts join a multicast group to become members of the multicast group before they can receive the multicast data addressed to that multicast group Typically a multi...

Page 16: ...s are commonly used in multicast transmission G Indicates a rendezvous point tree RPT or a multicast packet that any multicast source sends to multicast group G Here the asterisk represents any multicast source and G represents a specific multicast group S G Indicates a shortest path tree SPT or a multicast packet that multicast source S sends to multicast group G Here S represents a specific mult...

Page 17: ...st sources To a receiver not all multicast sources are valid they are filtered SSM model Users might be interested in the multicast data from only certain multicast sources The SSM model provides a transmission service that enables users to specify the multicast sources that they are interested in at the client side The main difference between the SSM model and the ASM model is that in the SSM mod...

Page 18: ...ed by routing protocols and for topology searching protocol maintenance and so on Table 3 lists common permanent group addresses A packet destined for an address in this block will not be forwarded beyond the local subnet regardless of the Time to Live TTL value in the IP header 224 0 1 0 to 238 255 255 255 Globally scoped group addresses This block includes the following types of designated group...

Page 19: ...224 0 0 16 Designated Subnetwork Bandwidth Management SBM 224 0 0 17 All SBMs 224 0 0 18 Virtual Router Redundancy Protocol VRRP 2 IPv6 multicast addresses Figure 4 IPv6 multicast format The following describes the fields of an IPv6 multicast address 0xFF The most significant eight bits are 11111111 which indicates that this address is an IPv6 multicast address Flags The Flags field contains four ...

Page 20: ...cope 2 Link local scope 3 Subnet local scope 4 Admin local scope 5 Site local scope 6 7 9 through D Unassigned 8 Organization local scope E Global scope Group ID The Group ID field contains 112 bits It uniquely identifies an IPv6 multicast group in the scope that the Scope field defines Ethernet multicast MAC addresses When a unicast IP packet is transmitted over Ethernet the destination MAC addre...

Page 21: ... significant 32 bits of a multicast IPv6 address Figure 7 An example of IPv6 to MAC address mapping Multicast protocols NOTE Generally Layer 3 multicast refers to IP multicast working at the network layer The related multicast protocols are Layer 3 multicast protocols which include IGMP MLD PIM IPv6 PIM MSDP MBGP and IPv6 MBGP Layer 2 multicast refers to IP multicast working at the data link layer...

Page 22: ...multicast routing protocol discovers multicast sources and builds multicast distribution trees within an AS to deliver multicast data to receivers Among a variety of mature intra domain multicast routing protocols Protocol Independent Multicast PIM is most widely used Based on the forwarding mechanism PIM includes the dense mode often called PIM DM and sparse mode often called PIM SM An inter doma...

Page 23: ...packet forwarding mechanism In a multicast model a multicast source sends information to the host group identified by the multicast group address in the destination address field of IP multicast packets To deliver multicast packets to receivers located at different positions of the network multicast routers on the forwarding paths usually need to forward multicast packets received on one incoming ...

Page 24: ... The PE devices connect to the public network and the VPN networks at the same time Each PE device must strictly distinguish the information for different networks and must maintain a separate forwarding mechanism for each network On a PE device a set of software and hardware that serves the same network forms an instance Multiple instances exist on a PE device at the same time and an instance res...

Page 25: ...nstances NOTE Only one set of unified multicast service runs on a non PE device It is called a public network The configuration made in VPN instance view takes effect only on the VPN instance interface An interface that does not belong to any VPN instance is called a public network interface ...

Page 26: ...ets for known multicast groups are multicast to the receivers rather than being broadcast to all hosts at Layer 2 Figure 11 Before and after IGMP snooping is enabled on the Layer 2 device Multicast packet transmission without IGMP Snooping Source Multicast router Host A Receiver Host B Host C Receiver Multicast packets Layer 2 switch Multicast packet transmission when IGMP Snooping runs Source Mul...

Page 27: ...ers all its local router ports in its router port list Member port A member port is a port on a Layer 2 switch that leads toward multicast group members In Figure 12 GigabitEthernet 1 0 2 and GigabitEthernet 1 0 3 of Switch A and GigabitEthernet 1 0 2 of Switch B are member ports Each switch registers all the member ports on the local device in its IGMP snooping forwarding table NOTE Whenever ment...

Page 28: ...eleted only through the specific configurations For more information see Configuring static ports When receiving a general query The IGMP querier periodically sends IGMP general queries to all hosts and routers 224 0 0 1 on the local subnet to determine whether active multicast group members exist on the subnet After receiving an IGMP general query the switch forwards it through all ports in the V...

Page 29: ...etes the forwarding entry for the dynamic member port that corresponds to the host from the forwarding table when its aging timer expires When an IGMPv2 or IGMPv3 host leaves a multicast group the host sends an IGMP leave message to the multicast router When the switch receives an IGMP leave message on a dynamic member port the switch first determines whether an entry in the forwarding table exist...

Page 30: ...ion mechanism for hosts does not take effect on it For more information about the IGMP report suppression mechanism for hosts see the chapter IGMP configuration Figure 13 Network diagram for IGMP snooping proxying As shown in Figure 13 Switch A works as an IGMP snooping proxy As a host from the perspective of the querier Router A Switch A represents its attached hosts to send membership reports an...

Page 31: ...e message to the group out all router ports Protocols and standards RFC 4541 Considerations for Internet Group Management Protocol IGMP and Multicast Listener Discovery MLD Snooping Switches IGMP snooping configuration task list Complete these tasks to configure IGMP snooping Task Remarks Configuring basic functions of IGMP snooping Enabling IGMP snooping Required Configuring the version of IGMP s...

Page 32: ...rt group view configurations that you make are effective on all ports in the current port group For a given port a configuration that you make in IGMP snooping view is effective only if you do not make the same configuration in Ethernet interface view Layer 2 aggregate interface view or port group view For IGMP snooping configurations that you make on a Layer 2 aggregate interface do not interfere...

Page 33: ...he version of IGMP snooping To do Use the command Remarks Enter system view system view Enter VLAN view vlan vlan id Configure the version of IGMP snooping igmp snooping version version number Optional Version 2 by default CAUTION If you change IGMPv3 snooping to IGMPv2 snooping the system clears all IGMP snooping forwarding entries that are dynamically added and also does the following Keeps stat...

Page 34: ...mac address multicast mac address vlan vlan id Required No static multicast MAC address entries exist by default NOTE When you configure a static multicast MAC address entry in system view the configuration is effective for the specified interface When you configure a static multicast MAC address entry in interface view or port group view the configuration is effective only for the current interfa...

Page 35: ...r for dynamic member ports host aging time interval Optional 260 seconds by default Configuring aging timers for dynamic ports in a VLAN Follow these steps to configure aging timers for dynamic ports in a VLAN To do Use the command Remarks Enter system view system view Enter VLAN view vlan vlan id Set the aging timer for dynamic router ports igmp snooping router aging time interval Optional 105 se...

Page 36: ...MP querier sends If a host fails to respond the multicast router might deem that no member of this multicast group exists on the network segment and removes the corresponding forwarding path To avoid this situation you can enable simulated joining on a port of the switch That is you configure the port as a simulated member host for a multicast group When the simulated member host receives an IGMP ...

Page 37: ... to more than one host when one host leaves a multicast group the other hosts attached to the port and interested in the same multicast group will fail to receive multicast data for that group If the function of dropping unknown multicast traffic is already enabled on the switch or in the VLANs you should not enable the fast leave processing function Configuring fast leave processing globally Foll...

Page 38: ...prove network security and control over multicast users Follow these steps to disable a port from becoming a dynamic router port To do Use the command Remarks Enter system view system view Enter Ethernet interface view Layer 2 aggregate interface view or port group view interface interface type interface number Required Use either approach port group manual port group name Disable the ports from b...

Page 39: ...th a low source IP address For more information about IGMP querier see the chapter IGMP configuration Configuring IGMP queries and responses You can set the IGMP general query interval based on actual conditions of the network After receiving an IGMP query general query or group specific query a host starts a timer for each multicast group it has joined This timer is initialized to a random value ...

Page 40: ...interval is larger than the maximum response time for IGMP general queries Otherwise multicast group members might be deleted by mistake Configuring source IP address of IGMP queries After the switch receives an IGMP query whose source IP address is 0 0 0 0 on a port it does not enlist that port as a dynamic router port This might prevent multicast forwarding entries from being correctly created a...

Page 41: ...Remarks Enter system view system view Enter VLAN view vlan vlan id Enable IGMP snooping proxying in the VLAN igmp snooping proxying enable Required Disabled by default Configuring a source IP address for the IGMP messages sent by the proxy You can set the source IP addresses in the IGMP reports and leave messages that the IGMP snooping proxy sends on behalf of its attached hosts Follow these steps...

Page 42: ...in the IGMP snooping forwarding table Otherwise the switch drops this report message Any multicast data that has failed the ACL check is not sent to this port In this way the service provider can control the VOD programs provided for multicast users Configuring a multicast group filter globally Follow these steps to configure a multicast group filter globally To do Use the command Remarks Enter sy...

Page 43: ...g view igmp snooping Enable multicast source port filtering source deny port interface list Required Disabled by default Configuring multicast source port filtering on a port or a group of ports Follow these steps to configure multicast source port filtering on a port or a group of ports To do Use the command Remarks Enter system view system view Enter Ethernet interface view or port group view in...

Page 44: ...ch query interval the Layer 2 switch forwards only the first IGMP report per multicast group to the Layer 3 device It will not forward the subsequent IGMP reports from the same multicast group This helps reduce the number of packets being transmitted over the network Follow these steps to configure IGMP report suppression To do Use the command Remarks Enter system view system view Enter IGMP snoop...

Page 45: ... host Configuring multicast group replacement For various reasons the number of multicast groups that the switch or a port joins might exceed the upper limit In addition in some specific applications a multicast group that the switch newly joins must replace an existing multicast group automatically A typical example is channel switching To view a new channel a user switches from the current multi...

Page 46: ...nfiguring 802 1p precedence for IGMP messages You can change 802 1p precedence of IGMP messages so that they can be assigned higher forwarding priority when congestion occurs on their outgoing ports Configuring 802 1p precedence for IGMP messages globally Follow these steps to configure 802 1p precedence for IGMP messages globally To do Use the command Remarks Enter system view system view Enter I...

Page 47: ...ddresses with the policies If a match is found the host is allowed to leave the group Otherwise the leave message is dropped by the access switch Follow these steps to configure a multicast user control policy To do Use the command Remarks Enter system view system view Create a user profile and enter its view user profile profile name Configure a multicast user control policy igmp snooping access ...

Page 48: ...ssages learned by IGMP snooping reset igmp snooping statistics Available in user view NOTE The reset igmp snooping group command works only on an IGMP snooping enabled VLAN but not on a VLAN with IGMP enabled on its VLAN interface The reset igmp snooping group command cannot remove the static group entries of IGMP snooping groups IGMP snooping configuration examples Group policy and simulated join...

Page 49: ...mp enable RouterA GigabitEthernet1 0 1 pim dm RouterA GigabitEthernet1 0 1 quit RouterA interface gigabitethernet 1 0 0 2 RouterA GigabitEthernet1 0 2 pim dm RouterA GigabitEthernet1 0 2 quit 3 Configure Switch A Enable IGMP snooping globally SwitchA system view SwitchA igmp snooping SwitchA igmp snooping quit Create VLAN 100 assign GigabitEthernet 1 0 1 through GigabitEthernet 1 0 4 to this VLAN ...

Page 50: ...24 1 1 1 vlan 100 SwitchA GigabitEthernet1 0 4 quit 4 Verify the configuration Display the information of the IGMP snooping groups in VLAN 100 on Switch A SwitchA display igmp snooping group vlan 100 verbose Total 1 IP Group s Total 1 IP Source s Total 1 MAC Group s Port flags D Dynamic port S Static port C Copy port Subvlan flags R Real VLAN C Copy VLAN Vlan id 100 Total 1 IP Group s Total 1 IP S...

Page 51: ...e path of Switch A Switch B Switch C Configure GigabitEthernet 1 0 3 that connects Switch A to Switch C as a static router port so that multicast traffic can flow to the receivers nearly uninterruptedly along the path of Switch A Switch C in the case that the path of Switch A Switch B Switch C gets blocked NOTE If no static router port is configured when the path of Switch A Switch B Switch C gets...

Page 52: ...e VLAN 100 assign GigabitEthernet 1 0 1 through GigabitEthernet 1 0 3 to this VLAN and enable IGMP snooping in the VLAN SwitchA vlan 100 SwitchA vlan100 port gigabitethernet 1 0 1 to gigabitethernet 1 0 3 SwitchA vlan100 igmp snooping enable SwitchA vlan100 quit Configure GigabitEthernet 1 0 3 to be a static router port SwitchA interface gigabitethernet 1 0 3 SwitchA GigabitEthernet1 0 3 igmp snoo...

Page 53: ...0 5 quit 6 Verify the configuration Display the information of the IGMP snooping groups in VLAN 100 on Switch A SwitchA display igmp snooping group vlan 100 verbose Total 1 IP Group s Total 1 IP Source s Total 1 MAC Group s Port flags D Dynamic port S Static port C Copy port Subvlan flags R Real VLAN C Copy VLAN Vlan id 100 Total 1 IP Group s Total 1 IP Source s Total 1 MAC Group s Router port s t...

Page 54: ...quirements As shown in Figure 16 in a Layer 2 only network environment two multicast sources Source 1 and Source 2 send multicast data to multicast groups 224 1 1 1 and 225 1 1 1 respectively Host A and Host C are receivers of multicast group 224 1 1 1 and Host B and Host D are receivers of multicast group 225 1 1 1 All the receivers are running IGMPv2 and all the switches need to run IGMPv2 snoop...

Page 55: ...ooping enable SwitchA vlan100 igmp snooping drop unknown Enable the IGMP snooping querier function in VLAN 100 SwitchA vlan100 igmp snooping querier Set the source IP address of IGMP general queries and group specific queries to 192 168 1 1 in VLAN 100 SwitchA vlan100 igmp snooping general query source ip 192 168 1 1 SwitchA vlan100 igmp snooping special query source ip 192 168 1 1 SwitchA vlan100...

Page 56: ...v2 reports 12 Received IGMP leaves 0 Received IGMPv2 specific queries 0 Sent IGMPv2 specific queries 0 Received IGMPv3 reports 0 Received IGMPv3 reports with right and wrong records 0 Received IGMPv3 specific queries 0 Received IGMPv3 specific sg queries 0 Sent IGMPv3 specific queries 0 Sent IGMPv3 specific sg queries 0 Received error IGMP messages 0 IGMP snooping proxying configuration example Ne...

Page 57: ...ernet1 0 1 igmp enable RouterA GigabitEthernet1 0 1 pim dm RouterA GigabitEthernet1 0 1 quit RouterA interface gigabitethernet 1 0 2 RouterA GigabitEthernet1 0 2 pim dm RouterA GigabitEthernet1 0 2 quit 3 Configure Switch A Enable IGMP snooping globally SwitchA system view SwitchA igmp snooping SwitchA igmp snooping quit Create VLAN 100 assign ports GigabitEthernet 1 0 1 through GigabitEthernet 1 ...

Page 58: ...group IP group address 224 1 1 1 0 0 0 0 224 1 1 1 Host port s total 2 port GE1 0 3 D GE1 0 4 D MAC group s MAC group address 0100 5e01 0101 Host port s total 2 port GE1 0 3 GE1 0 4 Display information about IGMP multicast groups on Router A RouterA display igmp group Total 1 IGMP Group s Interface group report information of VPN Instance public net GigabitEthernet1 0 1 10 1 1 1 Total 1 IGMP Group...

Page 59: ...source and user control policy configuration example Network requirements As shown in Figure 18 Switch A is a Layer 3 switch It connects to multicast sources 1 and 2 and through VLAN interface 101 and VLAN interface 102 respectively It connects to the RADIUS server through VLAN interface 103 and to Layer 2 switch B through VLAN interface 104 Switch A runs IGMPv2 and Switch B runs IGMPv2 snooping M...

Page 60: ...0 1 through GigabitEthernet 1 0 4 to the four VLANs respectively SwitchA system view SwitchA vlan 101 SwitchA vlan101 port gigabitethernet 1 0 1 SwitchA vlan101 quit SwitchA vlan 102 SwitchA vlan102 port gigabitethernet 1 0 2 SwitchA vlan102 quit SwitchA vlan 103 SwitchA vlan103 port gigabitethernet 1 0 3 SwitchA vlan103 quit SwitchA vlan 104 SwitchA vlan104 port gigabitethernet 1 0 4 SwitchA vlan...

Page 61: ...y SwitchA behavior behavior1 quit SwitchA qos policy policy1 SwitchA qospolicy policy1 classifier classifier1 behavior behavior1 SwitchA qospolicy policy1 quit Create user profile profile1 apply QoS policy policy1 to the inbound direction in user profile view and enable the user profile SwitchA user profile profile1 SwitchA user profile profile1 qos apply policy policy1 inbound SwitchA user profil...

Page 62: ... 1 0 3 to this VLAN and enable IGMP snooping in this VLAN SwitchB vlan 100 SwitchB vlan100 port gigabitethernet 1 0 1 to gigabitethernet 1 0 3 SwitchB vlan100 igmp snooping enable SwitchB vlan100 quit Create a user profile profile2 to allow users to join or leave only one multicast group 224 1 1 1 Then enable the user profile SwitchB acl number 2001 SwitchB acl basic 2001 rule permit source 224 1 ...

Page 63: ...RADIUS server configure the parameters related to Switch A and Switch B For more information see the configuration guide of the RADIUS server 5 Verify the configuration After the configurations the two multicast sources and hosts initiate 802 1X authentication After passing authentication Source 1 sends multicast flows to 224 1 1 1 and Source 2 sends multicast flows to 224 1 1 2 Host A sends messa...

Page 64: ...8 packets 20512512 bytes Wrong If 0 packets Forwarded 19648 packets 20512512 bytes The output shows that Switch A maintains a multicast forwarding entry for multicast packets from Source 1 to 224 1 1 1 No forwarding entry exists to forward packets from Source 2 to 224 1 1 1 which indicates that multicast packets from Source 2 are blocked Troubleshooting IGMP snooping configuration Layer 2 multicas...

Page 65: ...and to enable the function of dropping unknown multicast data Appendix available only on the A5500 EI Processing of multicast protocol messages With Layer 3 multicast routing enabled an IGMP snooping enabled switch processes multicast protocol messages differently under different conditions as follows 1 If only IGMP is enabled on the switch or if both IGMP and PIM are enabled on the switch the swi...

Page 66: ...s disabled on the switch one of the following occurs If IGMP is disabled the switch deletes all its dynamic router ports If IGMP is enabled the switch maintains all its dynamic member ports and dynamic router ports ...

Page 67: ...icast VLAN feature configured on the Layer 2 switch is the solution to this issue With the multicast VLAN feature the Layer 3 device must replicate the multicast traffic only in the multicast VLAN instead of making a separate copy of the multicast traffic in each user VLAN This saves network bandwidth and lessens the burden on the Layer 3 device The multicast VLAN feature can be implemented by the...

Page 68: ... in Figure 21 Host A Host B and Host C are in different user VLANs All user ports ports with attached hosts on Switch A are hybrid ports On Switch A configure VLAN 10 as a multicast VLAN assign all user ports to VLAN 10 and enable IGMP snooping in the multicast VLAN and all user VLANs Figure 21 Port based multicast VLAN After the configuration upon receiving an IGMP message on a user port Switch A...

Page 69: ...guration is given preference Configuring sub VLAN based multicast VLAN Configuration prerequisites Before you configure sub VLAN based multicast VLAN complete the following tasks Create VLANs as required Enable IGMP snooping in the VLAN to be configured as a multicast VLAN Configuring sub VLAN based multicast VLAN In this approach you configure a VLAN as a multicast VLAN and configure user VLANs a...

Page 70: ...e port based multicast VLAN complete the following tasks Create VLANs as required Enable IGMP snooping in the VLAN to be configured as a multicast VLAN Enable IGMP snooping in all user VLANs Configuring user port attributes Configure the user ports as hybrid ports that permit packets of the specified user VLAN to pass and configure the user VLAN to which the user ports belong as the default VLAN C...

Page 71: ...ts These two methods provide the same result Configuring multicast VLAN ports in multicast VLAN view Follow these steps to configure multicast VLAN ports in multicast VLAN view To do Use the command Remarks Enter system view system view Configure the specified VLAN as a multicast VLAN and enter multicast VLAN view multicast vlan vlan id Required Not a multicast VLAN by default Assign ports to the ...

Page 72: ...d multicast VLAN configuration Network requirements Router A connects to a multicast source through GigabitEthernet 1 0 1 and to Switch A through GigabitEthernet 1 0 2 IGMPv2 runs on Router A and IGMPv2 snooping runs on Switch A Router A is the IGMP querier Switch A s GigabitEthernet 1 0 1 belongs to VLAN 10 GigabitEthernet 1 0 2 through GigabitEthernet 1 0 4 belong to VLAN 2 through VLAN 4 respec...

Page 73: ...n each interface and enable IGMP on the host side interface GigabitEthernet 1 0 2 RouterA system view RouterA multicast routing enable RouterA interface gigabitethernet 1 0 1 RouterA GigabitEthernet1 0 1 pim dm RouterA GigabitEthernet1 0 1 quit RouterA interface gigabitethernet 1 0 2 RouterA GigabitEthernet1 0 2 pim dm RouterA GigabitEthernet1 0 2 igmp enable 3 Configure Switch A Enable IGMP snoop...

Page 74: ...t vlan s Multicast vlan 10 subvlan list vlan 2 4 port list no port View the IGMP snooping multicast group information on Switch A SwitchA display igmp snooping group Total 4 IP Group s Total 4 IP Source s Total 4 MAC Group s Port flags D Dynamic port S Static port C Copy port Subvlan flags R Real VLAN C Copy VLAN Vlan id 2 Total 1 IP Group s Total 1 IP Source s Total 1 MAC Group s Router port s to...

Page 75: ...100 5e01 0101 Host port s total 1 port s GE1 0 4 Vlan id 10 Total 1 IP Group s Total 1 IP Source s Total 1 MAC Group s Router port s total 1 port s GE1 0 1 D IP group s the following ip group s match to one mac group IP group address 224 1 1 1 0 0 0 0 224 1 1 1 Host port s total 0 port s MAC group s MAC group address 0100 5e01 0101 Host port s total 0 port s The outputs shows that IGMP snooping is...

Page 76: ...er VLANs Network diagram Figure 23 Network diagram for port based multicast VLAN configuration Source Receiver Host A VLAN 2 GE1 0 2 GE1 0 3 GE1 0 4 Switch A IGMP querier Router A GE1 0 1 1 1 1 2 24 GE1 0 2 10 110 1 1 24 1 1 1 1 24 Receiver Host B VLAN 3 Receiver Host C VLAN 4 GE1 0 1 Configuration procedure 1 Configure IP addresses Configure the IP address and subnet mask for each interface accor...

Page 77: ...ybrid SwitchA GigabitEthernet1 0 2 port hybrid pvid vlan 2 SwitchA GigabitEthernet1 0 2 port hybrid vlan 2 untagged SwitchA GigabitEthernet1 0 2 port hybrid vlan 10 untagged SwitchA GigabitEthernet1 0 2 quit The configuration for GigabitEthernet 1 0 3 and GigabitEthernet 1 0 4 is similar details not shown Configure VLAN 10 as a multicast VLAN SwitchA multicast vlan 10 Assign GigabitEthernet 1 0 2 ...

Page 78: ...1 IP Source s Total 1 MAC Group s Router port s total 1 port s GE1 0 1 D IP group s the following ip group s match to one mac group IP group address 224 1 1 1 0 0 0 0 224 1 1 1 Host port s total 3 port s GE1 0 2 D GE1 0 3 D GE1 0 4 D MAC group s MAC group address 0100 5e01 0101 Host port s total 3 port s GE1 0 2 GE1 0 3 GE1 0 4 The output shows that IGMP snooping is maintaining the router ports an...

Page 79: ...ticast routing table consists of a set of S G entries Each entry indicates the routing information for delivering multicast data from a multicast source to a multicast group If a router supports multiple multicast protocols its multicast routing table includes routes generated by multiple protocols The router chooses the optimal route from the multicast routing table based on the configured multic...

Page 80: ...ee routes have the same priority the router selects the RPF route according to the sequence of multicast static route MBGP route and unicast route If not configured to use the longest match principle the router selects the route with the highest priority If the three routes have the same priority the router selects the RPF route according to the sequence of multicast static route MBGP route and un...

Page 81: ...g interfaces Otherwise it discards the packet Assume that unicast routes are available in the network MBGP is not configured and no multicast static routes have been configured on Router C as shown in Figure 24 Multicast packets travel along the SPT from the multicast source to the receivers The multicast forwarding table on Router C contains the S G entry with VLAN interface 20 as the incoming in...

Page 82: ...e is Router A and the multicast information from Source travels along the path from Router A to Router C which is the unicast route between the two routers When a multicast static route is configured on Router C and Router B is configured as Router C s RPF neighbor on the path back to Source the multicast information from Source travels from Router A to Router B and then to Router C RPF route crea...

Page 83: ...vertised throughout the network or redistributed to other routers Multicast traceroute You can use the multicast traceroute utility to trace the path of a multicast stream from the first hop router to the last hop router Concepts in multicast traceroute Last hop router If one of the interfaces of a router connects to the subnet that contains the given destination address and if the router can forw...

Page 84: ...unicast to the querier Configuration task list Complete these tasks to configure multicast routing and forwarding Task Remarks Enabling IP multicast routing Optional Configuring multicast routing and forwarding Configuring multicast static routes Optional Configuring a multicast routing policy Optional Configuring a multicast forwarding range Optional Configuring the multicast forwarding table siz...

Page 85: ...e and route distinguisher commands see the MPLS Command Reference Configuring multicast routing and forwarding Configuration prerequisites Before you configure multicast routing and forwarding complete the following tasks Configure a unicast routing protocol so that all devices in the domain are interoperable at the network layer Enable PIM PIM DM or PIM SM Determine the maximum number of downstre...

Page 86: ...ation about RPF route selection see RPF check process You can configure per source or per source and group load splitting to optimize the traffic delivery when multiple data flows are handled Configuring a multicast routing policy for the public network Follow these steps to configure a multicast routing policy for the public network To do Use the command Remarks Enter system view system view Conf...

Page 87: ...r system view system view Enter interface view interface interface type interface number Configure a multicast forwarding boundary multicast boundary group address mask mask length Required No forwarding boundary by default Configuring the multicast forwarding table size The switch maintains the corresponding forwarding entry for each multicast packet that it receives Excessive multicast routing e...

Page 88: ...es for a single multicast forwarding entry multicast forwarding table downstream limit limit Optional 128 by default Configuring the multicast forwarding table size in a VPN instance Follow these steps to configure the multicast forwarding table size in a VPN instance To do Use the command Remarks Enter system view system view Enter VPN instance view ip vpn instance vpn instance name Configure the...

Page 89: ...ble source address mask mask mask length group address mask mask mask length incoming interface interface type interface number register outgoing interface exclude include match interface type interface number register begin exclude include regular expression Available in any view Display information of the multicast static routing table display multicast routing table all instance vpn instance vp...

Page 90: ...orwarding table the corresponding routing entry is also deleted from the multicast routing table Configuration examples Changing an RPF route Network requirements PIM DM runs in the network All switches in the network support multicast Switch A Switch B and Switch C run OSPF Receiver can receive the multicast data from Source through the path Switch A Switch B which is the same as the unicast rout...

Page 91: ...rface 102 SwitchB Vlan interface102 pim dm SwitchB Vlan interface102 quit Enable IP multicast routing on Switch A and enable PIM DM on each interface SwitchA system view SwitchA multicast routing enable SwitchA interface vlan interface 200 SwitchA Vlan interface200 pim dm SwitchA Vlan interface200 quit SwitchA interface vlan interface 102 SwitchA Vlan interface102 pim dm SwitchA Vlan interface102 ...

Page 92: ...ating an RPF route Network requirements PIM DM runs in the network and all switches in the network support IP multicast Switch B and Switch C run OSPF and have no unicast routes to Switch A Receiver can receive the multicast data from Source 1 in the OSPF domain Perform the following configuration so that Receiver can receive multicast data from Source 2 which is outside the OSPF domain Network di...

Page 93: ...nterface 102 SwitchC Vlan interface102 pim dm SwitchC Vlan interface102 quit The configuration on Switch B is similar to that on Switch A details not shown Use the display multicast rpf info command to view the RPF routes to Source 2 on Switch B and Switch C SwitchB display multicast rpf info 50 1 1 100 SwitchC display multicast rpf info 50 1 1 100 No information is displayed It indicates that no ...

Page 94: ...ght also fail Solution 1 Use the display multicast routing table static config command to view the detailed configuration information of multicast static routes to verify that the multicast static route has been correctly configured and that the route entry exists 2 Use the display multicast routing table static command to view the information of multicast static routes to verify that the multicas...

Page 95: ...olution 1 Use the display pim routing table command to check whether the S G entries exist on the router If so the router has received the multicast data Otherwise the router has not received the data 2 Use the display multicast boundary command to view the multicast boundary information on the interfaces Use the multicast boundary command to change the multicast forwarding boundary setting 3 In t...

Page 96: ... IGMP versions support the Any Source Multicast ASM model In addition to support for the ASM model IGMPv3 can be directly deployed to implement the Source Specific Multicast SSM model but IGMPv1 and IGMPv2 must work with the IGMP SSM mapping function to implement the SSM model NOTE For more information about the ASM and SSM models see the chapter Multicast overview Introduction to IGMPv1 IGMPv1 ma...

Page 97: ... Host B suppresses its own report for G1 because the IGMP routers Router A and Router B have already determined that at least one host on the local subnet is interested in G1 This IGMP report suppression mechanism helps reduce traffic on the local subnet 4 At the same time because Host A is interested in G2 it sends a report to the multicast group address of G2 5 Through the query report process t...

Page 98: ...ave timed out and initiates a new querier election process Leave group mechanism In IGMPv1 when a host leaves a multicast group it does not send any notification to the multicast router The multicast router relies on the host response timeout timer to determine whether a group has members This adds to the leave latency In IGMPv2 when a host leaves a multicast group the following steps occur 1 This...

Page 99: ...IGMPv2 Host B cannot select multicast sources when it joins multicast group G Multicast streams from both Source 1 and Source 2 will flow to Host B whether or not it needs them When IGMPv3 is running between the hosts and routers Host B can explicitly express its interest in the multicast data that Source 1 sends to multicast group G denoted as S1 G rather than the multicast data that Source 2 sen...

Page 100: ... this group record contain a list of the sources that the system will no longer obtain data from for packets sent to the specified multicast address If the change was made to an Include source list these sources are the addresses that were deleted from the list If the change was made to an Exclude source list these sources are the addresses that were added to the list IGMP SSM mapping The IGMP SSM...

Page 101: ...into G INCLUDE S1 S2 information based on the configured IGMP SSM mappings and provides SSM service NOTE The IGMP SSM mapping feature does not process IGMPv3 reports For more information about the SSM group range see the chapter PIM configuration IGMP proxying In some simple tree topologies it is not necessary to configure complex multicast routing protocols such as PIM on the boundary devices Ins...

Page 102: ...ipating in the querier election sending queries and maintaining memberships based on the reports Multi instance IGMP IGMP maintains group memberships on a per interface basis IGMP in a VPN instance handles protocol packets based on the VPN instance on the interface Upon receiving an IGMP packet the router determines the instance to which the message belongs and handles the message within the insta...

Page 103: ...ation prerequisites Before you configure the basic functions of IGMP complete the following tasks Configure any unicast routing protocol so that all devices in the domain are interoperable at the network layer Configure PIM DM or PIM SM Determine the IGMP version Determine the multicast group and multicast source addresses for static group member configuration Determine the ACL rules for multicast...

Page 104: ...stance is associated with an interface by default Enable IGMP igmp enable Required Disabled by default NOTE For more information about the ip vpn instance route distinguisher and ip binding vpn instance commands see the MPLS Command Reference For more information about the multicast routing enable command see the IP Multicast Command Reference Configuring IGMP versions Because the protocol packets...

Page 105: ... Required An interface is not a static member of any multicast group or multicast source and group by default NOTE Before you configure an interface of a PIM SM device as a static member of a multicast group or a multicast source and group if the interface is enabled with PIM SM ensure that the interface is a PIM SM DR If the interface is enabled with IGMP but not with PIM SM ensure that the inter...

Page 106: ...groups that the current interface can join igmp group limit limit Required 2000 by default NOTE This configuration takes effect for dynamically joined multicast groups but not for statically configured multicast groups Adjusting IGMP performance NOTE The configuration in IGMP view is effective on all interfaces whereas the configuration in interface view is effective only on the current interface ...

Page 107: ...but processes all the IGMP messages that it received In this case IGMP messages are directly passed to the upper layer protocol whether or not the IGMP messages carry the Router Alert option To enhance the device performance and avoid unnecessary costs and also for the consideration of protocol security configure the device to discard IGMP messages that do not carry the Router Alert option Configu...

Page 108: ...ber query interval The value of the last member query count equals the value of the robustness variable After receiving an IGMP query general query group specific query or group and source specific query a host starts a delay timer for each multicast group that it has joined This timer is initialized to a random value in the range of 0 to the maximum response time which is derived from the Max Res...

Page 109: ... time interval Optional 10 seconds by default Configure the IGMP last member query interval last member query interval interval Optional 1 second by default Configure the other querier present interval timer other querier present interval Optional By default the other querier present interval is IGMP general query interval IGMP robustness variable maximum response time for IGMP general queries 2 C...

Page 110: ...erval Otherwise the IGMP querier might change frequently on the network Make sure that the IGMP general query interval is greater than the maximum response time for IGMP general queries Otherwise multicast group members might be wrongly removed The maximum response time for IGMP general queries the IGMP last member query interval and the IGMP other querier present interval are effective only for I...

Page 111: ...VPN instance IGMP view igmp vpn instance vpn instance name Configure an IGMP SSM mapping ssm mapping group address mask mask length source address Required No IGMP mappings are configured by default CAUTION If IGMPv3 is enabled on a VLAN interface and if a port in that VLAN is configured as a simulated host the simulated host will send IGMPv3 reports even if you did not specify a multicast source ...

Page 112: ...configured in PIM view can still take effect In addition in IGMPv1 the designated router DR is elected by the working multicast routing protocol such as PIM to serve as the IGMP querier A downstream interface that is running IGMPv1 cannot be elected as the DR and cannot serve as the IGMP querier Do not enable IGMP proxying on a VLAN interface with IGMP snooping enabled or vice versa Configuring mu...

Page 113: ...y the information of IGMP proxying groups display igmp all instance vpn instance vpn instance name proxying group group address verbose begin exclude include regular expression Available in any view Display information in the IGMP routing table display igmp all instance vpn instance vpn instance name routing table source address mask mask mask length group address mask mask mask length flags act s...

Page 114: ...of receivers reception of multicast data IGMP configuration examples Basic IGMP functions configuration example Network requirements Receivers receive VOD information through multicast Receivers of different organizations form stub networks N1 and N2 and Host A and Host C are receivers in N1 and N2 respectively Switch A in the PIM network connects to N1 and both Switch B and Switch C connect to N2...

Page 115: ...e omitted here 2 Enable IP multicast routing and enable PIM DM and IGMP Enable IP multicast routing on Switch A enable PIM DM on each interface and enable IGMP on VLAN interface 100 SwitchA system view SwitchA multicast routing enable SwitchA interface vlan interface 100 SwitchA Vlan interface100 igmp enable SwitchA Vlan interface100 pim dm SwitchA Vlan interface100 quit SwitchA interface vlan int...

Page 116: ... vlan interface 200 Vlan interface200 10 110 2 1 IGMP is enabled Current IGMP version is 2 Value of query interval for IGMP in seconds 60 Value of other querier present interval for IGMP in seconds 125 Value of maximum query response time for IGMP in seconds 10 Querier for IGMP 10 110 2 1 this router Total 1 IGMP Group reported SSM mapping configuration example Network requirements The PIM SM doma...

Page 117: ...s are omitted here Configure OSPF for interoperability among the switches Ensure the network layer interoperation on the PIM SM domain and dynamic update of routing information among the switches through a unicast routing protocol The detailed configuration steps are omitted here 2 Enable IP multicast routing enable PIM SM on each interface and enable IGMP and IGMP SSM mapping on the host side int...

Page 118: ...SwitchD pim c rp vlan interface 104 SwitchD pim quit 4 Configure the SSM group range Configure the SSM group range 232 1 1 0 24 on Switch D SwitchD acl number 2000 SwitchD acl basic 2000 rule permit source 232 1 1 0 0 0 0 255 SwitchD acl basic 2000 quit SwitchD pim SwitchD pim ssm policy 2000 SwitchD pim quit The configuration on Switch A Switch B and Switch C is similar to that on Switch D 5 Conf...

Page 119: ... Total 0 G entry 2 S G entry 133 133 1 1 232 1 1 1 Protocol pim ssm Flag UpTime 00 13 25 Upstream interface Vlan interface104 Upstream neighbor 192 168 4 2 RPF prime neighbor 192 168 4 2 Downstream interface s information Total number of downstreams 1 1 Vlan interface400 Protocol igmp UpTime 00 13 25 Expires 133 133 3 1 232 1 1 1 Protocol pim ssm Flag UpTime 00 13 25 Upstream interface Vlan interf...

Page 120: ...ce 100 SwitchA Vlan interface100 igmp enable SwitchA Vlan interface100 pim dm SwitchA Vlan interface100 quit Enable IP multicast routing on Switch B IGMP Proxying on VLAN interface 100 and IGMP on VLAN interface 200 SwitchB system view SwitchB multicast routing enable SwitchB interface vlan interface 100 SwitchB Vlan interface100 igmp proxying enable SwitchB Vlan interface100 quit SwitchB interfac...

Page 121: ...rotocol layer of the interface is up directly affect the generation of group membership information Multicast routing must be enabled on the router and IGMP must be enabled on the interface connecting to the host If the IGMP version on the router interface is lower than that on the host the router will not be able to recognize the IGMP report from the host If the igmp group policy command has been...

Page 122: ...ce and these parameters influence one another forming very complicated relationships Inconsistent IGMP interface parameter configurations for routers on the same subnet will surely result in inconsistency of memberships In addition although an IGMP router is compatible with a host that is running a different version of IGMP all routers on the same subnet must run the same version of IGMP Inconsist...

Page 123: ... an interface of the device it undergoes an RPF check If the RPF check succeeds the device creates the corresponding routing entry and forwards the packet If the RPF check fails the device discards the packet For more information about RPF see the chapter Multicast routing and forwarding configuration Based on the implementation mechanism PIM falls into the following modes Protocol Independent Mul...

Page 124: ...ds multicast data to multicast group G the multicast packet is first flooded throughout the domain The router first performs RPF check on the multicast packet If the packet passes the RPF check the router creates an S G entry and forwards the data to all downstream nodes in the network In the flooding process an S G entry is created on all the routers in the PIM DM domain 2 Nodes without downstrea...

Page 125: ...ticast data sends a graft message toward its upstream node as a request to join the SPT again 2 Upon receiving this graft message the upstream node puts the interface on which the graft was received into the forwarding state and responds with a graft ack message to the graft sender 3 If the node that sent a graft message does not receive a graft ack message from its upstream node it will keep send...

Page 126: ...r with a higher IP address of the local interface wins PIM SM overview PIM DM uses the flood and prune principle to build SPTs for multicast data distribution Although an SPT has the shortest path it is built with a low efficiency Therefore the PIM DM mode is not suitable for large sized and medium sized networks PIM SM is a type of sparse mode multicast protocol It uses the pull mode for multicas...

Page 127: ...similar neighbor discovery mechanism as PIM DM does For more information see Neighbor discovery DR election PIM SM also uses hello messages to elect a DR for a multi access network such as Ethernet The elected DR will be the only multicast forwarder on this multi access network A DR must be elected in a multi access network whether this network connects to multicast sources or to receivers The DR ...

Page 128: ...ugh the RP To lessen the RP burden and optimize the topological structure of the RPT you can configure multiple candidate RPs C RPs in a PIM SM domain among which an RP is dynamically elected through the bootstrap mechanism Each elected RP serves a different multicast group range For this purpose you must configure a bootstrap router BSR The BSR serves as the administrative core of the PIM SM doma...

Page 129: ...re calculated through the hashing algorithm The C RP with the largest hash value wins 3 If all the C RPs have the same priority and hash value the C RP that has the highest IP address wins The hashing algorithm used for RP calculation is Value G M Ci 1103515245 1103515245 G M 12345 XOR Ci 12345 mod 231 Table 7 Values in the hashing algorithm Value Description Value Hash value G IP address of the m...

Page 130: ... are the leaves of the RPT The multicast data addressed to the multicast group G flows through the RP reaches the corresponding DR along the established RPT and finally is delivered to the receiver When a receiver is no longer interested in the multicast data addressed to multicast group G the directly connected DR sends a prune message which goes hop by hop along the RPT to the RP Upon receiving ...

Page 131: ...e established SPT to the RP Then the RP forwards the data along the RPT to the receivers When the multicast traffic arrives at the RP along the SPT the RP sends a register stop message to the source side DR by unicast to stop the source registration process NOTE The RP is configured to initiate an SPT switchover as described in this section Otherwise the DR at the multicast source side keeps encap...

Page 132: ...om the RPT and sends an RP bit prune message hop by hop to the RP Upon receiving this prune message the RP sends a prune message toward the multicast source suppose only one receiver exists to implement the SPT switchover Multicast data is directly sent from the source to the receivers along the SPT PIM SM builds SPTs through SPT switchover more economically than PIM DM does through the flood and ...

Page 133: ...hbor is the address of the next hop to the RP DF election On a network segment with multiple multicast routers the same multicast packets might be forwarded to the RP repeatedly To address this issue BIDIR PIM uses a DF election mechanism to elect a unique designated forwarder DF for each RP on every network segment within the BIDIR PIM domain and allows only the DF to forward multicast data to th...

Page 134: ... Receiver Multicast packets Receiver side RPT Join message RP Source Host A Receiver As shown in Figure 43 the process for building a receiver side RPT is similar to that for building an RPT in PIM SM 1 When a receiver joins multicast group G it uses an IGMP message to inform the directly connected router 2 Upon getting the receiver information the router sends a join message which is forwarded ho...

Page 135: ...rce are at the same side of the RP the source side RPT and the receiver side RPT might meet at a node before reaching the RP In this case multicast packets are directly forwarded by the node to the receiver instead of by the RP Administrative scoping overview Division of PIM SM domains Typically a PIM SM BIDIR PIM domain contains only one BSR which is responsible for advertising RP set information...

Page 136: ...undary The multicast information cannot cross this boundary in either direction A better understanding of the global scope zone and admin scope zones should be based on geographical space and group address range 1 Geographical space Admin scope zones are logical zones specific to particular multicast groups The multicast packets of these multicast groups are confined within the local admin scope z...

Page 137: ...s a solution for source specific multicast It maintains the relationships between hosts and routers through IGMPv3 In actual application part of the PIM SM technique is adopted to implement the SSM model In the SSM model receivers locate a multicast source by means of advertisements consultancy and so on No RP or RPT is required no source registration process exists and no need exists to use the m...

Page 138: ...s created on all routers on the path from the DR to the source An SPT is thereby built in the network with the source S as its root and receivers as its leaves This SPT is the transmission channel in PIM SSM If the group address in the message does not fall into the SSM group range the DR follows the PIM SM process The DR must send a G join message to the RP and start a multicast source registrati...

Page 139: ...ormation and RP set information for each instance Upon receiving a multicast data packet the multicast router determines the VPN instance that the data packet belongs to The router then forwards the packet according to the multicast routing table of that VPN instance or creates a multicast routing table entry for that VPN instance Protocols and standards RFC 3973 Protocol Independent Multicast Den...

Page 140: ...iving a new refresh message Determine the TTL value of state refresh messages Determine the graft retry period Enabling PIM DM With PIM DM enabled a router sends hello messages periodically to discover PIM neighbors and processes messages from the PIM neighbors When deploying a PIM DM domain enable PIM DM on all non border interfaces of the routers Enabling PIM DM globally for the public network F...

Page 141: ...ation about the ip vpn instance route distinguisher and ip binding vpn instance commands see the MPLS Command Reference For more information about the multicast routing enable command see the IP Multicast Command Reference Enabling state refresh capability Pruned interfaces resume multicast forwarding when the pruned state times out To prevent this the router with the multicast source attached per...

Page 142: ...figurations on all routers in the PIM domain Follow these steps to configure state refresh parameters To do Use the command Remarks Enter system view system view Enter public network PIM view or VPN instance PIM view pim vpn instance vpn instance name Configure the interval between state refresh messages state refresh interval interval Optional 60 seconds by default Configure the time to wait befo...

Page 143: ...g administrative scoping Optional Configuring an admin scope zone boundary Optional Configuring C BSRs for each admin scope zone and the global scope zone Optional Configuring multicast source registration Optional Disabling SPT switchover Optional Configuring PIM common features Optional Configuration prerequisites Before you configure PIM SM complete the following tasks Configure any unicast rou...

Page 144: ...g PIM SM globally for the public network Follow these steps to enable PIM SM for the public network To do Use the command Remarks Enter system view system view Enable IP multicast routing multicast routing enable Required Disabled by default Enter interface view interface interface type interface number Enable PIM SM pim sm Required Disabled by default Enabling PIM SM in a VPN instance Follow thes...

Page 145: ...RP election mechanism to enhance the robustness and operational manageability of a multicast network CAUTION In a PIM network if both PIM SM and BIDIR PIM are enabled do not configure the same RP to serve PIM SM and BIDIR PIM simultaneously to avoid PIM routing table errors Configuring a static RP If only one dynamic RP exists in a network configuring a static RP can avoid communication interrupti...

Page 146: ...ority holdtime hold interval advertisement interval adv interval Required No C RP is configured by default Configure a legal C RP address range and the range of multicast groups to be served crp policy acl number Optional No restrictions by default NOTE When configuring a C RP ensure a relatively large bandwidth between this C RP and the other devices in the PIM SM domain An RP can serve multiple ...

Page 147: ...SR You can configure any router as a C BSR Elected from C BSRs the BSR is responsible for collecting and advertising RP information in the PIM SM domain Configuring a C BSR Configure C BSRs on routers in the backbone network When you are configuring a router as a C BSR be sure to specify a PIM SM enabled interface on the router The following summarizes the BSR election process Initially every C BS...

Page 148: ...gal BSR the problem will still occur Follow these steps to configure a C BSR To do Use the command Remarks Enter system view system view Enter public network PIM view or VPN instance PIM view pim vpn instance vpn instance name Configure an interface as a C BSR c bsr interface type interface number hash length priority Required No C BSRs are configured by default Configure a legal BSR address range...

Page 149: ...gure these parameters global configuration level global scope zone level and admin scope zone level The value of these parameters configured at the global scope zone level or admin scope zone level have preference over the global values If you do not configure these parameters at the global scope zone level or admin scope zone level the corresponding global values will be used For configuration of...

Page 150: ...P set information in bootstrap messages within the PIM SM domain It encapsulates a BSM in an IP datagram and might split the datagram into fragments if the message exceeds the maximum transmission unit MTU In respect of such IP fragmentation loss of a single IP fragment leads to unavailability of the entire message Semantic fragmentation of BSMs can solve this issue When a BSM exceeds the MTU it i...

Page 151: ...one also maintains a BSR which serves all the remaining multicast groups Enabling administrative scoping Before you configure an admin scope zone you must enable administrative scoping Perform the following configuration on routers that can become a C BSR and ZBR Follow these steps to enable administrative scoping To do Use the command Remarks Enter system view system view Enter public network PIM...

Page 152: ...ticast group Configure C BSRs for each admin scope zone and the global scope zone 1 Configure C BSRs for each admin scope zone Perform the following configuration on the routers that will work as C BSRs in admin scope zones Follow these steps to configure a C BSR for an admin scope zone To do Use the command Remarks Enter system view system view Enter public network PIM view or VPN instance PIM vi...

Page 153: ...cksum based on the entire register messages However to reduce the workload of encapsulating data in register messages and for the sake of interoperability HP does not recommend this method of checksum calculation When receivers stop receiving multicast data addressed to a certain multicast group through the RP the RP stops serving the receivers of that multicast group or when the RP formally start...

Page 154: ...DR it initiates an STP switchover process by default upon receiving the first multicast packet along the RPT You can disable the switchover from RPT to SPT Follow these steps to configure SPT switchover To do Use the command Remarks Enter system view system view Enter public network PIM view or VPN instance PIM view pim vpn instance vpn instance name Disable the SPT switchover spt switch threshold...

Page 155: ... Optional Configuring C BSRs for each admin scope zone and the global scope zone Optional Configuring PIM common features Optional Configuration prerequisites Before you configure BIDIR PIM complete the following tasks Configure a unicast routing protocol so that all devices in the domain are interoperable at the network layer Determine the IP address of a static RP and the ACL that defines the ra...

Page 156: ...ult Enabling PIM SM for a VPN instance Follow these steps to enable PIM SM for a VPN instance To do Use the command Remarks Enter system view system view Create a VPN instance and enter VPN instance view ip vpn instance vpn instance name Configure an RD for the VPN instance route distinguisher route distinguisher Required Not configured by default Enable IP multicast routing multicast routing enab...

Page 157: ... job Generally static RP configuration is just a backup means for the dynamic RP election mechanism to enhance the robustness and operation manageability of a multicast network CAUTION In a PIM network if both PIM SM and BIDIR PIM are enabled do not configure the same RP to serve PIM SM and BIDIR PIM simultaneously to avoid PIM routing table errors Configuring a static RP If only one dynamic RP ex...

Page 158: ... has a chance to become the BSR you must configure the same filtering policy on all C BSRs in the BIDIR PIM domain Follow these steps to configure a C RP To do Use the command Remarks Enter system view system view Enter public network PIM view or VPN instance PIM view pim vpn instance vpn instance name Configure an interface to be a C RP for BIDIR PIM c rp interface type interface number group pol...

Page 159: ...ance PIM view pim vpn instance vpn instance name Configure the C RP Adv interval c rp advertisement interval interval Optional 60 seconds by default Configure C RP timeout time c rp holdtime interval Optional 150 seconds by default NOTE For more information about the configuration of other timers in BIDIR PIM see Configuring PIM common timers Configuring a BSR A BIDIR PIM domain can have only one ...

Page 160: ...otstrap messages Because a bootstrap message has a TTL value of 1 the whole network will not be affected as long as the neighbor router discards these bootstrap messages Therefore with a legal BSR address range configured on all routers in the entire network all these routers will discard bootstrap messages from out of the legal address range The preventive measures can partially protect the secur...

Page 161: ...rtisement messages to form an RP set and advertises it to all routers in the BIDIR PIM domain All the routers use the same hash algorithm to get the RP address that corresponds to specific multicast groups Perform the following configuration on C BSR routers Follow these steps to configure global C BSR parameters To do Use the command Remarks Enter system view system view Enter public network PIM ...

Page 162: ...y the formula BS period BS timeout 10 2 The default BS timeout is 130 seconds so the default BS period 130 10 2 60 seconds If this parameter is manually configured the system will use the configured value About the BS timeout timer By default the BS timeout value is determined by the formula BS timeout timer BS period 2 10 The default BS period is 60 seconds so the default BS timeout timer 60 2 10...

Page 163: ...nction is enabled NOTE Generally a BSR performs BSM semantic fragmentation according to the MTU of its BSR interface However the semantic fragmentation of BSMs originated due to learning of a new PIM neighbor is performed according to the MTU of the outgoing interface Configuring administrative scoping With administrative scoping disabled a BIDIR PIM domain has only one BSR The BSR manages the who...

Page 164: ...inistrative scoping enabled group range specific BSRs are elected from C BSRs C RPs in the network send advertisement messages to the specific BSR The BSR summarizes the advertisement messages to form an RP set and advertises it to all routers in the specific admin scope zone All the routers use the same hash algorithm to get the RP address that corresponds to the specific multicast group Configur...

Page 165: ...admin scope zone level have preference over the global values If you do not configure these parameters at the global scope zone level or admin scope zone level the corresponding global values will be used For configuration of global C BSR parameters see Configuring global C BSR parameters Configuring PIM SSM NOTE The PIM SSM model needs the support of IGMPv3 Therefore be sure to enable IGMPv3 on P...

Page 166: ...ed by default Enabling PIM SM in a VPN instance Follow these steps to enable PIM SM in a VPN instance To do Use the command Description Enter system view system view Create a VPN instance and enter VPN instance view ip vpn instance vpn instance name Configure an RD for the VPN instance route distinguisher route distinguisher Required No RD is configured by default Enable IP multicast routing multi...

Page 167: ...iew or VPN instance PIM view pim vpn instance vpn instance name Configure the SSM group range ssm policy acl number Optional 232 0 0 0 8 by default CAUTION Make sure that the same SSM group range is configured on all routers in the entire domain Otherwise multicast information cannot be delivered through the SSM model When a member of a multicast group in the SSM group range sends an IGMPv1 or IGM...

Page 168: ...rval global value interface level value Determine the maximum delay between hello message interface level value Determine the assert timeout time global value interface value Determine the join prune interval global value interface level value Determine the join prune timeout global value interface value Determine the multicast source lifetime Determine the maximum size of join prune messages Dete...

Page 169: ...erface number Configure a hello message filter pim neighbor policy acl number Required No hello message filter by default NOTE With the hello message filter configured if hello messages of an existing PIM neighbor fail to pass the filter the PIM neighbor will be removed automatically when it times out Configuring PIM hello options In either a PIM DM domain or a PIM SM domain the hello messages sen...

Page 170: ...IM router finds that the generation ID in a hello message from the upstream router has changed it assumes that the status of the upstream neighbor is lost or that the upstream neighbor has changed In this case it triggers a join message for state update If you disable join suppression namely enable neighbor tracking be sure to disable the join suppression feature on all PIM routers on a multi acce...

Page 171: ...riod if the upstream router receives a join message from the downstream router it cancels the prune action Follow these steps to configure the prune delay time To do Use the command Remarks Enter system view system view Enter public network PIM view or VPN instance PIM view pim vpn instance vpn instance name Configure the prune delay interval prune delay interval Optional 3 seconds by default Conf...

Page 172: ...ult Configure assert timeout time holdtime assert interval Optional 180 seconds by default Configure the multicast source lifetime source lifetime interval Optional 210 seconds by default Configuring PIM common timers on an interface Follow these steps to configure PIM common timers on an interface To do Use the command Remarks Enter system view system view Enter interface view interface interface...

Page 173: ...me bsr info begin exclude include regular expression Available in any view Display the information of unicast routes used by PIM display pim all instance vpn instance vpn instance name claimed route source address begin exclude include regular expression Available in any view Display the number of PIM control messages display pim all instance vpn instance vpn instance name control message counters...

Page 174: ...play the RP information display pim all instance vpn instance vpn instance name rp info group address begin exclude include regular expression Available in any view Reset PIM control message counters reset pim all instance vpn instance vpn instance name control message counters interface interface type interface number Available in user view PIM configuration examples PIM DM configuration example ...

Page 175: ...ure IP addresses and unicast routing Configure the IP address and subnet mask for each interface according to Figure 49 details not shown Configure OSPF on the switches in the PIM DM domain to ensure network layer reachability among them details not shown 2 Enable IP multicast routing and enable PIM DM and IGMP Enable IP multicast routing on Switch A enable PIM DM on each interface and enable IGMP...

Page 176: ...5 1 local Vlan103 1 30 1 192 168 1 2 local Vlan101 1 30 1 192 168 2 2 local Vlan102 1 30 1 192 168 3 2 local Carry out the display pim neighbor command to view the PIM neighboring relationships among the switches For example View the PIM neighboring relationships on Switch D SwitchD display pim neighbor VPN Instance public net Total Number of Neighbors 3 Neighbor Interface Uptime Expires Dr Priori...

Page 177: ...umber of downstreams 1 1 Vlan interface100 Protocol pim dm UpTime 00 04 25 Expires never The information on Switch B and Switch C is similar to that on Switch A View the PIM routing table information on Switch D SwitchD display pim routing table VPN Instance public net Total 0 G entry 1 S G entry 10 110 5 100 225 1 1 1 Protocol pim dm Flag LOC ACT UpTime 00 03 27 Upstream interface Vlan interface3...

Page 178: ...rface 200 and to Switch E through VLAN interface 103 and VLAN interface 104 respectively VLAN interface 105 on Switch D and VLAN interface 102 on Switch E act as C BSRs and C RPs The C BSR on Switch E has a higher priority The multicast group range served by the C RP is 225 1 1 0 24 Modify the hash mask length to map a certain number of consecutive group addresses within the range to the two C RPs...

Page 179: ...im sm SwitchA Vlan interface101 quit SwitchA interface vlan interface 102 SwitchA Vlan interface102 pim sm SwitchA Vlan interface102 quit The configuration on Switch B and Switch C is similar to that on Switch A The configuration on Switch D and Switch E is also similar to that on Switch A except that it is not necessary to enable IGMP on the corresponding interfaces on these two switches 3 Config...

Page 180: ... bsr info command For example View the BSR information and the locally configured C RP information in effect on Switch A SwitchA display pim bsr info VPN Instance public net Elected BSR Address 192 168 9 2 Priority 20 Hash mask length 32 State Accept Preferred Scope Not scoped Uptime 00 40 40 Expires 00 01 42 View the BSR information and the locally configured C RP information in effect on Switch ...

Page 181: ... RP information Group MaskLen 225 1 1 0 24 RP 192 168 4 2 Priority 192 HoldTime 150 Uptime 00 51 45 Expires 00 02 22 RP 192 168 9 2 Priority 192 HoldTime 150 Uptime 00 51 45 Expires 00 02 22 Assume that Host A needs to receive information addressed to the multicast group G 225 1 1 0 The RP that corresponds to the multicast group G is Switch E as a result of hash calculation so an RPT will be built...

Page 182: ...8 1 2 Downstream interface s information Total number of downstreams 1 1 Vlan interface100 Protocol pim sm UpTime 00 00 42 Expires 00 03 06 The information on Switch B and Switch C is similar to that on Switch A View the PIM routing table information on Switch D SwitchD display pim routing table VPN Instance public net Total 0 G entry 1 S G entry 10 110 5 100 225 1 1 0 RP 192 168 9 2 Protocol pim ...

Page 183: ...Source 1 and Source 2 send different multicast information to multicast group 239 1 1 1 Host A receives the multicast information only from Source 1 and Host B receives the multicast information only from Source 2 Source 3 sends multicast information to multicast group 224 1 1 1 Host C is a multicast receiver for this multicast group VLAN interface 101 of Switch B acts as a C BSR and C RP of admin...

Page 184: ... 110 7 1 24 Switch B Vlan int200 192 168 2 1 24 Vlan int107 10 110 8 1 24 Vlan int101 10 110 1 2 24 Switch E Vlan int400 192 168 4 1 24 Vlan int103 10 110 2 1 24 Vlan int105 10 110 5 2 24 Vlan int102 10 110 3 1 24 Vlan int108 10 110 7 2 24 Switch C Vlan int300 192 168 3 1 24 Switch F Vlan int109 10 110 9 1 24 Vlan int104 10 110 4 1 24 Vlan int107 10 110 8 2 24 Vlan int105 10 110 5 1 24 Vlan int102...

Page 185: ...ting enable SwitchB pim SwitchB pim c bsr admin scope SwitchB pim quit SwitchB interface vlan interface 200 SwitchB Vlan interface200 pim sm SwitchB Vlan interface200 quit SwitchB interface vlan interface 101 SwitchB Vlan interface101 pim sm SwitchB Vlan interface101 quit SwitchB interface vlan interface 102 SwitchB Vlan interface102 pim sm SwitchB Vlan interface102 quit SwitchB interface vlan int...

Page 186: ...55 SwitchB acl basic 2001 quit SwitchB pim SwitchB pim c bsr group 239 0 0 0 8 SwitchB pim c bsr vlan interface 101 SwitchB pim c rp vlan interface 101 group policy 2001 SwitchB pim quit On Switch D configure the service scope of RP advertisements and configure VLAN interface 104 as a C BSR and C RP of admin scope zone 2 SwitchD acl number 2001 SwitchD acl basic 2001 rule permit source 239 0 0 0 0...

Page 187: ...0 8 Candidate RP 10 110 1 2 Vlan interface101 Priority 192 HoldTime 150 Advertisement Interval 60 Next advertisement scheduled at 00 00 15 View the BSR information and the locally configured C RP information on Switch D SwitchD display pim bsr info VPN Instance public net Elected BSR Address 10 110 9 1 Priority 64 Hash mask length 30 State Accept Preferred Scope Global Uptime 00 01 45 Expires 00 0...

Page 188: ...ss 10 110 9 1 Priority 64 Hash mask length 30 State Elected Scope Global Candidate RP 10 110 9 1 Vlan interface109 Priority 192 HoldTime 150 Advertisement Interval 60 Next advertisement scheduled at 00 00 55 To view the RP information learned on a switch use the display pim rp info command For example View the RP information on Switch B SwitchB display pim rp info VPN Instance public net PIM SM BS...

Page 189: ...et PIM SM BSR RP information Group MaskLen 224 0 0 0 4 RP 10 110 9 1 local Priority 192 HoldTime 150 Uptime 00 00 32 Expires 00 01 58 BIDIR PIM configuration example Network requirements In the BIDIR PIM domain shown in Figure 52 Source 1 and Source 2 send different multicast information to multicast group 225 1 1 1 Host A and Host B receive multicast information from the two sources VLAN interfac...

Page 190: ... 32 Configuration procedure 1 Configure IP addresses and unicast routing Configure the IP address and subnet mask for each interface according to Figure 52 details not shown Configure OSPF on the switches in the BIDIR PIM domain to ensure network layer reachability among them details not shown 2 Enable IP multicast routing PIM SM BIDIR PIM and IGMP On Switch A enable IP multicast routing enable PI...

Page 191: ...multicast routing enable SwitchC interface vlan interface 102 SwitchC Vlan interface102 pim sm SwitchC Vlan interface102 quit SwitchC interface vlan interface 103 SwitchC Vlan interface103 pim sm SwitchC Vlan interface103 quit SwitchC interface loopback 0 SwitchC LoopBack0 pim sm SwitchC LoopBack0 quit SwitchC pim SwitchC pim bidir pim enable On Switch D enable IP multicast routing enable PIM SM o...

Page 192: ...ation of BIDIR PIM on Switch B SwitchB display pim df info VPN Instance public net RP Address 1 1 1 1 Interface State DF Pref DF Metric DF Uptime DF Address Vlan200 Win 100 1 01 24 09 192 168 2 1 local Vlan101 Win 100 1 01 24 09 10 110 1 2 local Vlan102 Lose 0 0 01 23 12 10 110 2 2 View the DF information of BIDIR PIM on Switch C SwitchC display pim df info VPN Instance public net RP Address 1 1 1...

Page 193: ...h B SwitchB display multicast forwarding table df info Multicast DF information of VPN Instance public net Total 1 RP Total 1 RP matched 00001 RP Address 1 1 1 1 MID 0 Flags 0x2100000 0 Uptime 00 06 24 RPF interface Vlan interface102 List of 2 DF interfaces 1 Vlan interface101 2 Vlan interface200 View the DF information of the multicast forwarding table on Switch C SwitchC display multicast forwar...

Page 194: ...the SSM mode Host A and Host C are multicast receivers in two stub networks Switch D connects to the network that comprises the multicast source Source through VLAN interface 300 Switch A connects to stub network N1 through VLAN interface 100 and to Switch D and Switch E through VLAN interface 101 and VLAN interface 102 respectively Switch B and Switch C connect to stub network N2 through their re...

Page 195: ...168 3 1 24 Vlan int105 192 168 4 1 24 Configuration procedure 1 Configure IP addresses and unicast routing Configure the IP address and subnet mask for each interface according to Figure 53 details not shown Configure OSPF on the switches in the PIM SM domain to ensure network layer reachability among them details not shown 2 Enable IP multicast routing and enable PIM SM and IGMP Enable IP multica...

Page 196: ... the PIM configuration and running status on each interface For example View the PIM configuration information on Switch A SwitchA display pim interface VPN Instance public net Interface NbrCnt HelloInt DR Pri DR Address Vlan100 0 30 1 10 110 1 1 local Vlan101 1 30 1 192 168 1 2 Vlan102 1 30 1 192 168 9 2 Assume that Host A needs to receive the information a specific multicast source S 10 110 5 10...

Page 197: ...e clients When the multicast data is flooded to a router regardless of which router it is the router creates S G entries only if it has a route to the multicast source If the router does not have a route to the multicast source or if PIM DM is not enabled on the router s RPF interface to the multicast source the router cannot create S G entries When PIM SM runs on the entire network and when a rou...

Page 198: ... enabled on the RPF interface and the corresponding interface of the RPF neighbor router 6 Verify that the same PIM mode PIM SM or PIM DM is enabled on all the routers in the entire network Be sure that the same PIM mode is enabled on all the routers In the case of PIM SM also verify that the BSR and RP configurations are correct Multicast data abnormally terminated on an intermediate router Sympt...

Page 199: ... has no unicast route to any C RP An RPT cannot be established correctly or the DR cannot perform source registration with the RP Analysis The C RPs periodically send C RP Adv messages to the BSR by unicast If a C RP has no unicast route to the BSR the BSR cannot receive C RP Adv messages from that C RP and the bootstrap message of the BSR will not contain information about that C RP If the BSR do...

Page 200: ...188 3 Verify the PIM neighboring relationships Use the display pim neighbor command to determine whether the normal PIM neighboring relationships have been established among the routers ...

Page 201: ... domain to deliver multicast data from a local multicast source to local receivers If a mechanism allows RPs of different PIM SM domains to share their multicast source information the local RP will be able to join multicast sources in other domains and multicast data can be transmitted among different domains MSDP achieves this goal Establishing MSDP peer relationships between appropriate routers...

Page 202: ... the data to the receivers along the RPT Intermediate MSDP peer An MSDP peer with multicast remote MSDP peers like RP 2 An intermediate MSDP peer forwards SA messages received from one remote MSDP peer to other remote MSDP peers functioning as a relay of multicast source information MSDP peers can also be created on common PIM SM routers other than RPs Router A and Router B are MSDP peers on commo...

Page 203: ...icy based filtering so that only SA messages that have arrived along the correct path and passed the filtering are received and forwarded This avoids delivery loops of SA messages In addition configure MSDP peers into an MSDP mesh group to avoid flooding of SA messages between MSDP peers 4 SA messages are forwarded from one MSDP peer to another and finally information about the multicast source tr...

Page 204: ... is configured as its static RPF peer NOTE If only one MSDP peer exists in a PIM SM domain this PIM SM domain is also called a stub domain For example AS 4 in Figure 56 is a stub domain The MSDP peer in a stub domain can have multiple remote MSDP peers at the same time You can configure one or more remote MSDP peers as static RPF peers When an RP receives an SA message from a static RPF peer the R...

Page 205: ...DP peers in different ASs Because the SA message is from an MSDP peer RP 7 in a different AS and the MSDP peer is the next hop on the BGP or MBGP route to the source side RP RP 8 accepts the message and forwards it to its other peer RP 9 7 When RP 9 receives the SA message from RP 8 Because RP 9 has only one MSDP peer RP 9 accepts the SA message SA messages from paths other than those described pr...

Page 206: ...om Source it directly joins the SPT rooted at Source The significance of Anycast RP is as follows Optimal RP path A multicast source registers with the nearest RP so that an SPT with the optimal path is built A receiver joins the nearest RP so that an RPT with the optimal path is built Load balancing between RPs Each RP maintains just part of the source group information within the PIM SM domain a...

Page 207: ...onfiguring a static RPF peer Optional Configuring an MSDP peer connection Configuring MSDP peer description Optional Configuring an MSDP mesh group Optional Configuring MSDP peer connection control Optional Configuring SA messages related parameters Configuring SA message content Optional Configuring SA request messages Optional Configuring SA message filtering rules Optional Configuring the SA ca...

Page 208: ...g multicast routing enable Required Disabled by default Return to system view quit Enable MSDP and enter VPN instance MSDP view msdp vpn instance vpn instance name Required Disabled by default NOTE For more information about the ip vpn instance and route distinguisher commands see the MPLS Command Reference For more information about the multicast routing enable command see the IP Multicast Comman...

Page 209: ...nfigure a static RPF peer static rpf peer peer address rp policy ip prefix name Required No static RPF peer configured by default NOTE If only one MSDP peer is configured on a router this MSDP will be registered as a static RPF peer Configuring an MSDP peer connection Configuration prerequisites Before you configure MSDP peer connection complete the following tasks Configure any unicast routing pr...

Page 210: ...eers you can create a mesh group that contains these MSDP peers Follow these steps to create an MSDP mesh group To do Use the command Remarks Enter system view system view Enter public network MSDP view or VPN instance MSDP view msdp vpn instance vpn instance name Create an MSDP mesh group and assign an MSDP peer to that mesh group peer peer address mesh group name Required An MSDP peer does not b...

Page 211: ...he ACL rules for filtering SA messages to be received and forwarded Determine the TTL threshold for multicast packet encapsulation in SA messages Determine the maximum number of S G entries learned from the specified MSDP peer that the router can cache Configuring SA message content Some multicast sources send multicast data at an interval longer than the aging time of S G entries In this case the...

Page 212: ...fault after receiving a new join message a switch does not send an SA request message to any MSDP peer Instead it waits for the next SA message from its MSDP peer This causes the receiver to delay obtaining multicast source information To enable a new receiver to get the currently active multicast source information as early as possible configure devices to send SA request messages to the designat...

Page 213: ... message out Follow these steps to configure a filtering rule for receiving or forwarding SA messages To do Use the command Remarks Enter system view system view Enter public network MSDP view or VPN instance MSDP view msdp vpn instance vpn instance name Configure an SA message creation rule import source acl acl number Required No restrictions on S G entries by default Configure a filtering rule ...

Page 214: ...he S G entry information in the SA cache display msdp all instance vpn instance vpn instance name sa cache group address source address as number begin exclude include regular expression Available in any view View the number of S G entries in the SA cache display msdp all instance vpn instance vpn instance name sa count as number begin exclude include regular expression Available in any view Reset...

Page 215: ... 10 110 5 1 24 Vlan int200 10 110 3 1 24 Switch E Vlan int105 10 110 6 1 24 Switch B Vlan int103 10 110 1 1 24 Vlan int102 192 168 3 2 24 Vlan int101 192 168 1 1 24 Loop0 3 3 3 3 32 Loop0 1 1 1 1 32 Switch F Vlan int105 10 110 6 2 24 Switch C Vlan int104 10 110 4 1 24 Vlan int400 10 110 7 1 24 Vlan int102 192 168 3 1 24 Source 1 10 110 2 100 24 Vlan int101 192 168 1 2 24 Source 2 10 110 5 100 24 L...

Page 216: ...Vlan interface101 quit The configuration on Switch C and Switch E is similar to the configuration on Switch B 3 Configure C BSRs and C RPs Configure Loopback 0 as a C BSR and a C RP on Switch B SwitchB pim SwitchB pim c bsr loopback 0 SwitchB pim c rp loopback 0 SwitchB pim quit The configuration on Switch C and Switch E is similar to the configuration on Switch B 4 Configure BGP for mutual route ...

Page 217: ...it Configure MSDP peers on Switch E SwitchE msdp SwitchE msdp peer 192 168 3 1 connect interface vlan interface 102 SwitchE msdp quit 6 Verify the configuration Use the display bgp peer command to view the BGP peering relationships between the switches For example View the information about BGP peering relationships on Switch B SwitchB display bgp peer BGP local router ID 1 1 1 1 Local AS number 1...

Page 218: ... e EGP incomplete Network NextHop MED LocPrf PrefVal Path Ogn 1 1 1 1 32 192 168 1 1 0 0 100 i 2 2 2 2 32 192 168 3 2 0 100 0 3 3 3 3 32 0 0 0 0 0 0 192 168 1 0 0 0 0 0 0 0 192 168 1 1 0 0 100 192 168 1 1 32 0 0 0 0 0 0 192 168 1 2 32 0 0 0 0 0 0 192 168 1 1 0 0 100 192 168 3 0 0 0 0 0 0 0 i 192 168 3 2 0 100 0 192 168 3 1 32 0 0 0 0 0 0 192 168 3 2 32 0 0 0 0 0 0 i 192 168 3 2 0 100 0 When the mu...

Page 219: ...8 200 8 0 View the detailed MSDP peer information on Switch B SwitchB display msdp peer status MSDP Peer Information of VPN Instance public net MSDP Peer 192 168 1 2 AS 200 Description Information about connection status State Up Up down time 00 15 47 Resets 0 Connection interface Vlan interface101 192 168 1 1 Number of sent received messages 16 16 Number of discarded output messages 0 Elapsed tim...

Page 220: ...he only static RPF peer of Switch C and Switch E so that any switch can receive SA messages from only its static RPF peers and permitted by the corresponding filtering policy Figure 59 Network diagram for inter AS multicast configuration leveraging static RPF peers Vlan int101 V l a n i n t 1 0 2 Switch B Switch A Source 1 AS 100 PIM SM 1 PIM SM 3 PIM SM 2 Loop0 Switch C Switch D Switch E Switch F...

Page 221: ... vlan interface 103 SwitchA Vlan interface103 pim sm SwitchA Vlan interface103 quit SwitchA interface vlan interface 100 SwitchA Vlan interface100 pim sm SwitchA Vlan interface100 quit SwitchA interface vlan interface 200 SwitchA Vlan interface200 igmp enable SwitchA Vlan interface200 pim sm SwitchA Vlan interface200 quit The configuration on Switch B Switch C Switch D Switch E and Switch F is sim...

Page 222: ...192 168 3 1 rp policy list c SwitchE msdp quit 5 Verify the configuration Use the display bgp peer command to view the BGP peering relationships between the switches If the command gives no output information a BGP peering relationship has not been established between the switches When the multicast source in PIM SM 1 Source 1 and the multicast source in PIM SM 2 Source 2 send multicast informatio...

Page 223: ...D configure the interface Loopback 10 as a C BSR and Loopback 20 as a C RP The router ID of Switch B is 1 1 1 1 and the router ID of Switch D is 2 2 2 2 Set up an MSDP peering relationship between Switch B and Switch D Figure 60 Network diagram for Anycast RP configuration L o o p 0 L o o p 2 0 L o o p 2 0 L o o p 0 V l a n i n t 1 0 1 V l a n i n t 1 0 1 V l a n i n t 1 0 2 V l a n i n t 1 0 2 V ...

Page 224: ...iew SwitchB multicast routing enable SwitchB interface vlan interface 100 SwitchB Vlan interface100 igmp enable SwitchB Vlan interface100 pim sm SwitchB Vlan interface100 quit SwitchB interface vlan interface 103 SwitchB Vlan interface103 pim sm SwitchB Vlan interface103 quit SwitchB interface Vlan interface 101 SwitchB Vlan interface101 pim sm SwitchB Vlan interface101 quit SwitchB interface loop...

Page 225: ...0 17 0 0 View the brief MSDP peer information on Switch D SwitchD display msdp brief MSDP Peer Brief Information of VPN Instance public net Configured Up Listen Connect Shutdown Down 1 1 0 0 0 0 Peer s Address State Up Down time AS SA Count Reset Count 1 1 1 1 Up 00 10 18 0 0 To view the PIM routing information on the switches use the display pim routing table command When Source 1 10 110 5 100 24...

Page 226: ... 10 110 6 100 24 sends multicast data to G Host B joins G By comparing the PIM routing information displayed on Switch B with that displayed on Switch D you can see that Switch D acts now as the RP for Source 2 and Host B View the PIM routing information on Switch B SwitchB display pim routing table No information is output on Switch B View the PIM routing information on Switch D SwitchD display p...

Page 227: ...ulticast data to multicast groups 225 1 1 0 30 and 226 1 1 0 30 and Source 2 sends multicast data to multicast group 227 1 1 0 30 Configure SA message filtering rules so that receivers Host A and Host B can receive only the multicast data addressed to multicast groups 225 1 1 0 30 and 226 1 1 0 30 and Host C can receive only the multicast data addressed to multicast groups 226 1 1 0 30 and 227 1 1...

Page 228: ...multicast routing enable SwitchA interface vlan interface 100 SwitchA Vlan interface100 igmp enable SwitchA Vlan interface100 pim sm SwitchA Vlan interface100 quit SwitchA interface vlan interface 101 SwitchA Vlan interface101 pim sm SwitchA Vlan interface101 quit SwitchA interface vlan interface 102 SwitchA Vlan interface102 pim sm SwitchA Vlan interface102 quit SwitchA interface loopback 0 Switc...

Page 229: ...onfigure an SA message rule on Switch C so that Switch C will not forward SA messages for entry Source 1 225 1 1 0 30 to Switch D SwitchC acl number 3001 SwitchC acl adv 3001 rule deny ip source 10 110 3 100 0 destination 225 1 1 0 0 0 0 3 SwitchC acl adv 3001 rule permit ip source any destination any SwitchC acl adv 3001 quit SwitchC msdp SwitchC msdp peer 10 110 5 2 sa policy export acl 3001 Swi...

Page 230: ...26 1 1 2 1 1 1 1 00 32 53 00 05 07 10 110 3 100 226 1 1 3 1 1 1 1 00 32 53 00 05 07 Troubleshooting MSDP MSDP peers stay in down state Symptom The configured MSDP peers stay in the down state Analysis A TCP connection based MSDP peering relationship is established between the local interface address and the MSDP peer after the configuration The TCP connection setup will fail if there is a consiste...

Page 231: ...xchange their locally registered S G entries with one another in the Anycast RP application Analysis In the Anycast RP application RPs in the same PIM SM domain are configured to be MSDP peers to achieve load balancing among the RPs An MSDP peer address must be different from the Anycast RP address and the C BSR and C RP must be configured on different devices or interfaces If the originating rp c...

Page 232: ...multicast NLRI performs reverse path forwarding RPF exclusively In this way route selection for a destination through the unicast routing table and through the multicast routing table have different results ensuring consistent unicast forwarding and normal multicast between domains MP BGP is defined in RFC 2858 Multiprotocol Extensions for BGP 4 The application of MP BGP on multicast is called Mul...

Page 233: ...r of MBGP routes for load balancing Optional Configuring a large scale MBGP network Configuring IPv4 MBGP peer groups Optional Configuring MBGP community Optional Configuring an MBGP route reflector Optional Configuring MBGP basic functions Configuration prerequisites Before you configure MBGP be sure that neighboring nodes can access each other at the network layer Configuration procedure Follow ...

Page 234: ...ol import route protocol process id all processes allow direct med med value route policy route policy name At least one of these approaches is required No route redistribution is configured by default Currently the allow direct keyword is available only when the specified routing protocol is OSPF Inject a network into the MBGP routing table network ip address mask mask length short cut route poli...

Page 235: ...tomatic summarization Summarizes subnets redistributed from IGP With the feature configured MBGP advertises only summary natural networks rather than subnets The default routes and routes injected by the network command are not summarized Manual summarization Summarizes MBGP local routes A manual summary route has a higher priority than an automatic one Follow these steps to configure MBGP route s...

Page 236: ...P route filtering If several filtering policies are configured they are applied in the following sequence filter policy export peer filter policy export peer as path acl export peer ip prefix export peer route policy export Only the routes that have passed all the configured policies can be advertised Follow these steps to configure BGP route distribution filtering policies To do Use the command R...

Page 237: ...ssed all the configured policies can be advertised Follow these steps to configure MBGP route reception filtering policies To do Use the command Remarks Enter system view system view Enter BGP view bgp as number Enter IPv4 MBGP address family view ipv4 family multicast Filter incoming routes using an ACL or IP prefix list filter policy acl number ip prefix ip prefix name import At least one of the...

Page 238: ... view bgp as number Enter IPv4 MBGP address family view ipv4 family multicast Configure BGP route dampening parameters dampening half life reachable half life unreachable reuse suppress ceiling route policy route policy name Required Not configured by default Configuring MBGP route attributes Modifying MBGP route attributes can help affect route selection Configuration prerequisites Before you con...

Page 239: ...ce value Optional 100 by default Configuring the MED attribute When other conditions of routes to a destination are identical the route with the smallest MED is selected Follow these steps to configure the MED attribute To do Use the command Remarks Enter system view system view Enter BGP view bgp as number Enter IPv4 MBGP address family view ipv4 family multicast Configure the MED attribute Confi...

Page 240: ... Specify the router as the next hop of routes sent to a peer peer group peer group name ip address next hop local Optional By default IPv6 MBGP specifies the local router as the next hop for routes sent to an eBGP peer peer group but not for routes sent to an MBGP iBGP peer peer group Configuring the AS PATH attribute In general MBGP checks whether the AS_PATH attribute of a route from a peer cont...

Page 241: ...esh If the peer is enabled with route refresh when the MBGP route selection policy is modified on a switch the switch advertises a route refresh message to its MBGP peers The MBGP peers resend their routing information to the switch after they receive the message Therefore the local switch can perform dynamic route update and apply the new policy without terminating MBGP connections Follow these s...

Page 242: ...updates to the BGP speaker reducing update messages and saving network resources After you enable the BGP ORF capability the local BGP router negotiates the ORF capability with the BGP peer through Open messages That is the BGP router determines whether to carry ORF information in messages and if so whether to carry nonstandard ORF information in the packets After completing the negotiation proces...

Page 243: ...ion of the both send and receive parameters and the negotiation result Local parameter Peer parameter Negotiation result send receive The ORF sending capability is enabled locally and the ORF receiving capability is enabled on the peer both receive send The ORF receiving capability is enabled locally and the ORF sending capability is enabled on the peer both both both Both the ORF sending and rece...

Page 244: ... added by default Enter IPv4 MBGP address family view ipv4 family multicast Enable the IPv4 unicast peer group peer group name enable Required Add an IPv4 MBGP peer to the peer group peer ip address group group name Required Not configured by default CAUTION To configure an MBGP peer group you must enable the corresponding IPv4 BGP unicast peer group in IPv4 MBGP address family view Before you add...

Page 245: ...isement For routing policy configuration see the Layer 3 IP Routing Configuration Guide Configuring an MBGP route reflector To guarantee the connectivity between multicast iBGP peers in an AS you must make them fully meshed This becomes impractical when large numbers of multicast iBGP peers exist Configuring route reflectors can solve this problem Follow these steps to configure an MBGP route refl...

Page 246: ...isplay bgp multicast paths as regular expression begin exclude include regular expression Available in any view Display MBGP peer peer group information display bgp multicast peer ip address verbose begin exclude include regular expression Available in any view Display the prefix entries in the ORF information from the specified BGP peer display bgp multicast peer ip address received ip prefix beg...

Page 247: ...y bgp multicast routing table peer ip address advertised routes received routes network address mask mask length statistic begin exclude include regular expression Available in any view Display IPv4 MBGP routing information matching an AS regular expression display bgp multicast routing table regular expression as regular expression Available in any view Display IPv4 MBGP routing statistics displa...

Page 248: ...a n i n t 2 0 0 Device Interface IP address Device Interface IP address Source 10 110 1 100 24 Switch C Vlan int200 10 110 2 1 24 Switch A Vlan int100 10 110 1 1 24 Vlan int102 192 168 2 2 24 Vlan int101 192 168 1 1 24 Vlan int104 192 168 4 1 24 Loop0 1 1 1 1 32 Loop0 3 3 3 3 32 Switch B Vlan int101 192 168 1 2 24 Switch D Vlan int103 192 168 3 2 24 Vlan int102 192 168 2 1 24 Vlan int104 192 168 4...

Page 249: ... pim sm SwitchC Vlan interface200 igmp enable SwitchC Vlan interface200 quit Configure a PIM domain border on Switch A SwitchA interface vlan interface 101 SwitchA Vlan interface101 pim bsr boundary SwitchA Vlan interface101 quit Configure a PIM domain border on Switch B SwitchB interface vlan interface 101 SwitchB Vlan interface101 pim bsr boundary SwitchB Vlan interface101 quit 4 Configure Loopb...

Page 250: ...chB bgp import route ospf 1 SwitchB bgp ipv4 family multicast SwitchB bgp af mul peer 192 168 1 1 enable SwitchB bgp af mul import route ospf 1 SwitchB bgp af mul quit SwitchB bgp quit 6 Configure MSDP peer Specify the MSDP peer on Switch A SwitchA msdp SwitchA msdp peer 192 168 1 2 connect interface vlan interface 101 SwitchA msdp quit Specify the MSDP peer on Switch B SwitchB msdp SwitchB msdp p...

Page 251: ...le display brief information about MSDP peers on Switch B SwitchB display msdp brief MSDP Peer Brief Information of VPN Instance public net Configured Up Listen Connect Shutdown Down 1 1 0 0 0 0 Peer s Address State Up Down time AS SA Count Reset Count 192 168 1 1 Up 00 07 17 100 1 0 ...

Page 252: ... runs multicast packets for known IPv6 multicast groups are multicast to the receivers at Layer 2 Figure 63 Before and after MLD snooping is enabled on the Layer 2 switch IPv6 multicast packet transmission without MLD Snooping Source Multicast router Host A Receiver Host B Host C Receiver IPv6 multicast packets Layer 2 switch IPv6 multicast packet transmission when MLD Snooping runs Source Multica...

Page 253: ...tch B are router ports The switch registers all its local router ports in its router port list Member port A member port also known as IPv6 multicast group member port is a port on the Ethernet switch that leads toward multicast group members In the figure GigabitEthernet 1 0 2 and GigabitEthernet 1 0 3 of Switch A and GigabitEthernet 1 0 2 of Switch B are member ports The switch registers all the...

Page 254: ...tatic ports General queries The MLD querier periodically sends MLD general queries to all hosts and routers FF02 1 on the local subnet to determine whether IPv6 multicast group members exist on the subnet After receiving an MLD general query the switch forwards it through all ports in the VLAN except the port that received the MLD query The switch also performs the following judgment If the port t...

Page 255: ...ng table entry does not exist or if the outgoing port list does not contain the port the switch discards the MLD done message instead of forwarding it to any port If the forwarding table entry exists and the outgoing port list contains the port the switch forwards the MLD done message to all router ports in the native VLAN Because the switch has not determined whether any other hosts attached to t...

Page 256: ...neral query the proxy forwards it to all ports but the receiving port In addition the proxy generates a report according to the group memberships it maintains and sends the report out all router ports Multicast address specific query In response to the MLD group specific query for a certain IPv6 multicast group the proxy sends the report to the group out all router ports if the forwarding entry fo...

Page 257: ...ers for dynamic ports Optional Configuring static ports Optional Configuring simulated joining Optional Configuring fast leave processing Optional Disabling a port from becoming a dynamic router port Optional Configuring MLD snooping querier Enabling MLD snooping querier Optional Configuring MLD queries and responses Optional Configuring source IPv6 addresses of MLD queries Optional Configuring ML...

Page 258: ... do not interfere with those made on its member ports nor do they participate in aggregation calculations Configurations that you make on a member port of the aggregate group will not take effect until the port leaves the aggregate group Configuring basic functions of MLD snooping Configuration prerequisites Before you configure the basic functions of MLD snooping complete the following tasks Conf...

Page 259: ...rwarding entries S G which will be restored when MLDv1 snooping is changed back to MLDv2 snooping For more information about static joining see Configuring static ports Configuring IPv6 static multicast MAC address entries In Layer 2 multicast a Layer 2 IPv6 multicast protocol such as MLD snooping can dynamically add IPv6 multicast MAC address entries You can also configure IPv6 multicast MAC addr...

Page 260: ... number from 0 to F can be manually added to the MAC address table A multicast MAC address is a MAC address whose the least significant bit of the most significant octet is 1 Configuring MLD snooping port functions Configuration prerequisites Before you configure MLD snooping port functions complete the following tasks Enable MLD snooping in the VLAN Configure the corresponding port groups Determi...

Page 261: ...st aging time interval Optional 260 seconds by default Configuring static ports If all hosts attached to a port are interested in the IPv6 multicast data addressed to a particular IPv6 multicast group configure the port as a static member port for that IPv6 multicast group You can configure a port of a switch to be a static router port through which the switch can forward all IPv6 multicast data t...

Page 262: ...s like a real host in the following ways When a port is configured as a simulated member host the switch sends an unsolicited MLD report through the port and can respond to MLD general queries with MLD reports through the port When the simulated joining function is disabled on a port the switch sends an MLD done message through that port Follow these steps to configure simulated joining To do Use ...

Page 263: ...w these steps to configure fast leave processing on a port or a group of ports To do Use the command Remarks Enter system view system view Enter Ethernet interface view Layer 2 aggregate interface view or port group view interface interface type interface number Required Use either approach port group manual port group name Enable fast leave processing mld snooping fast leave vlan vlan list Requir...

Page 264: ...ermine the source IPv6 address of MLD multicast address specific queries Enabling MLD snooping querier In an IPv6 multicast network that runs MLD a multicast router or Layer 3 multicast switch sends MLD queries so that all Layer 3 multicast devices can establish and maintain multicast forwarding entries in order to forward multicast traffic correctly at the network layer This router or Layer 3 swi...

Page 265: ...k Such burst can occur when a large number of hosts simultaneously send reports when the corresponding timers expire simultaneously For MLD general queries configure the maximum response time to fill the Max Response time field For MLD multicast address specific queries configure the MLD last member query interval to fill the Max Response time field Namely for MLD multicast address specific querie...

Page 266: ...nal FE80 02FF FFFF FE00 0001 by default Configure the source IPv6 address of MLD multicast address specific queries mld snooping special query source ip ipv6 address current interface Optional FE80 02FF FFFF FE00 0001 by default CAUTION The source IPv6 address of MLD query messages might affect MLD querier election within the segment Configuring MLD snooping proxying Configuration prerequisites Be...

Page 267: ...xy sends mld snooping done source ip ipv6 address current interface Required The default is FE80 02FF FFFF FE00 0001 Configuring an MLD snooping policy Configuration prerequisites Before you configure an MLD snooping policy complete the following tasks Enable MLD snooping in the VLAN Determine the IPv6 ACL rule for IPv6 multicast group filtering Determine the maximum number of IPv6 multicast group...

Page 268: ...ace interface type interface number Required Use either approach port group manual port group name Configure an IPv6 multicast group filter mld snooping group policy acl6 number vlan vlan list Required By default no IPv6 group filter is configured on an interface That is the hosts on the interface can join any valid multicast group Configuring IPv6 multicast source port filtering When the IPv6 mul...

Page 269: ...ch forwards unknown multicast data to its router ports instead of flooding it in the VLAN If no router ports exist the switch drops the unknown multicast data Follow these steps to enable dropping unknown IPv6 multicast data in a VLAN To do Use the command Remarks Enter system view system view Enter VLAN view vlan vlan id Enable dropping unknown IPv6 multicast data mld snooping drop unknown Requir...

Page 270: ...group limit limit vlan vlan list Optional 1000 by default NOTE When you configure this maximum number if the number of IPv6 multicast groups the port has joined exceeds the configured maximum value the system deletes all the forwarding entries for the port from the MLD snooping forwarding table and the hosts on this port join IPv6 multicast groups again until the number of IPv6 multicast groups th...

Page 271: ...ticast group replacement on a port or a group of ports To do Use the command Remarks Enter system view system view Enter Ethernet interface view Layer 2 aggregate interface view or port group view interface interface type interface number Required Use either approach port group manual port group name Enable IPv6 multicast group replacement mld snooping overflow replace vlan vlan list Required Disa...

Page 272: ... connected hosts through a RADIUS server Then the device uses the configured multicast user control policy to perform multicast access control on authenticated users as follows After receiving an MLD report from a host the access switch matches the IPv6 multicast group address and multicast source address carried in the report with the configured policies If a match is found the user is allowed to...

Page 273: ...ssion Available in any view Display the statistics information of MLD messages learned by MLD snooping display mld snooping statistics begin exclude include regular expression Available in any view Display IPv6 static multicast MAC address entries display mac address mac address vlan vlan id multicast vlan vlan id count begin exclude include regular expression Available in user view Remove dynamic...

Page 274: ...f Switch A even if Host A and Host B accidentally temporarily stop receiving IPv6 multicast data Figure 66 Network diagram for IPv6 group policy simulated joining configuration Source Router A Switch A Receiver Receiver Host B Host A Host C GE1 0 1 GE1 0 4 GE1 0 2 GE1 0 3 MLD querier 1 1 64 GE1 0 1 2001 1 64 GE1 0 2 1 2 64 Configuration procedure 1 Enable IPv6 forwarding and configure IPv6 address...

Page 275: ...rule permit source ff1e 101 128 SwitchA acl6 basic 2001 quit SwitchA mld snooping SwitchA mld snooping group policy 2001 vlan 100 SwitchA mld snooping quit Configure GigabitEthernet 1 0 3 and GigabitEthernet 1 0 4 as simulated hosts for IPv6 multicast group FF1E 101 SwitchA interface gigabitethernet 1 0 3 SwitchA GigabitEthernet1 0 3 mld snooping host join ff1e 101 vlan 100 SwitchA GigabitEthernet...

Page 276: ...s static member ports for multicast group FF1E 101 to enhance the reliability of multicast traffic transmission Suppose STP runs on the network To avoid data loops the forwarding path from Switch A to Switch C is blocked under normal conditions and IPv6 multicast traffic flows to the receivers attached to Switch C only along the path of Switch A Switch B Switch C You must configure GigabitEthernet...

Page 277: ...terface and enable MLD on GigabitEthernet 1 0 1 RouterA system view RouterA multicast ipv6 routing enable RouterA interface gigabitethernet 1 0 1 RouterA GigabitEthernet1 0 1 mld enable RouterA GigabitEthernet1 0 1 pim ipv6 dm RouterA GigabitEthernet1 0 1 quit RouterA interface gigabitethernet 1 0 2 RouterA GigabitEthernet1 0 2 pim ipv6 dm RouterA GigabitEthernet1 0 2 quit 3 Configure Switch A Ena...

Page 278: ...igabitEthernet 1 0 5 to this VLAN and enable MLD snooping in the VLAN SwitchC vlan 100 SwitchC vlan100 port gigabitethernet 1 0 1 to gigabitethernet 1 0 5 SwitchC vlan100 mld snooping enable SwitchC vlan100 quit Configure GigabitEthernet 1 0 3 and GigabitEthernet 1 0 5 as static member ports for IPv6 multicast group FF1E 101 SwitchC interface Gigabitethernet 1 0 3 SwitchC GigabitEthernet1 0 3 mld ...

Page 279: ...chC display mld snooping group vlan 100 verbose Total 1 IP Group s Total 1 IP Source s Total 1 MAC Group s Port flags D Dynamic port S Static port C Copy port Subvlan flags R Real VLAN C Copy VLAN Vlan id 100 Total 1 IP Group s Total 1 IP Source s Total 1 MAC Group s Router port s total 1 port s GE1 0 2 D 00 01 23 IP group s the following ip group s match to one mac group IP group address FF1E 101...

Page 280: ...ithin the VLAN configure all the switches to drop unknown multicast data packets Figure 68 Network diagram for MLD snooping querier configuration Configuration procedure 1 Configure Switch A Enable IPv6 forwarding and enable MLD snooping globally SwitchA system view SwitchA ipv6 SwitchA mld snooping SwitchA mld snooping quit Create VLAN 100 and assign GigabitEthernet 1 0 1 through GigabitEthernet ...

Page 281: ...messages received Display the MLD message statistics on Switch B SwitchB vlan100 display mld snooping statistics Received MLD general queries 3 Received MLDv1 specific queries 0 Received MLDv1 reports 12 Received MLD dones 0 Sent MLDv1 specific queries 0 Received MLDv2 reports 0 Received MLDv2 reports with right and wrong records 0 Received MLDv2 specific queries 0 Received MLDv2 specific sg queri...

Page 282: ...1 0 1 mld enable RouterA GigabitEthernet1 0 1 pim ipv6 dm RouterA GigabitEthernet1 0 1 quit RouterA interface gigabitethernet 1 0 2 RouterA GigabitEthernet1 0 2 pim ipv6 dm RouterA GigabitEthernet1 0 2 quit 3 Configure Switch A Enable MLD snooping globally SwitchA system view SwitchA mld snooping SwitchA mld snooping quit Create VLAN 100 assign ports GigabitEthernet 1 0 1 through GigabitEthernet 1...

Page 283: ...ne mac group IP group address FF1E 101 FF1E 101 Host port s total 2 port s GE1 0 3 D GE1 0 4 D MAC group s MAC group address 3333 0000 0101 Host port s total 2 port s GE1 0 3 GE1 0 4 Display information about MLD multicast groups on Router A RouterA display mld group Total 1 MLD Group s Interface group report information GigabitEthernet1 0 1 2001 1 Total 1 MLD Group reported Group Address FF1E 1 L...

Page 284: ...trol policy configuration example Network requirements As shown in Figure 70 Switch A is a Layer 3 switch It connects to IPv6 multicast sources Source 1 and Source 2 through VLAN interface 101 and VLAN interface 102 respectively It connects to the RADIUS server through VLAN interface 103 and to the Layer 2 switch Switch B through VLAN interface 104 MLDv1 runs on Switch A and MLDv1 snooping runs on...

Page 285: ...thernet 1 0 1 through GigabitEthernet 1 0 4 to the four VLANs respectively SwitchA system view SwitchA vlan 101 SwitchA vlan101 port gigabitethernet 1 0 1 SwitchA vlan101 quit SwitchA vlan 102 SwitchA vlan102 port gigabitethernet 1 0 2 SwitchA vlan102 quit SwitchA vlan 103 SwitchA vlan103 port gigabitethernet 1 0 3 SwitchA vlan103 quit SwitchA vlan 104 SwitchA vlan104 port gigabitethernet 1 0 4 Sw...

Page 286: ...ur SwitchA traffic behavior behavior1 SwitchA behavior behavior1 filter deny SwitchA behavior behavior1 quit SwitchA qos policy policy1 SwitchA qospolicy policy1 classifier classifier1 behavior behavior1 SwitchA qospolicy policy1 quit Create a user profile apply policy1 to the inbound direction of Eth 1 2 in user profile view and enable the user profile SwitchA user profile profile1 SwitchA user p...

Page 287: ...s VLAN and enable MLD snooping in this VLAN SwitchB vlan 100 SwitchB vlan100 port gigabitethernet 1 0 1 to gigabitethernet 1 0 3 SwitchB vlan100 mld snooping enable SwitchB vlan100 quit Create a user profile profile2 and configure the user profile so that users can join or leave only one IPv6 multicast group FF1E 101 Then enable the user profile SwitchB acl ipv6 number 2001 SwitchB acl6 basic 2001...

Page 288: ...server On the RADIUS server configure the parameters related to Switch A and Switch B For more information see the configuration guide of the RADIUS server 5 Verify the configuration After the configurations the two multicast sources and hosts initiate 802 1X authentication After passing the authentication Source 1 sends multicast flows to FF1E 101 and Source 2 sends multicast flows to FF1E 102 Ho...

Page 289: ...n interface104 Matched 19648 packets 20512512 bytes Wrong If 0 packets Forwarded 19648 packets 20512512 bytes The output shows that Switch A maintains a multicast forwarding entry for multicast packets from Source 1 to FF1E 101 No forwarding entry exists for packets from Source 2 to FF1E 101 It indicates that IPv6 multicast packets from Source 2 are blocked Troubleshooting MLD snooping Layer 2 mul...

Page 290: ...and to determine whether the function of dropping unknown IPv6 multicast data is enabled If not use the mld snooping drop unknown command to enable this function Appendix available only on the A5500 EI Processing of IPv6 multicast protocol messages With Layer 3 multicast routing enabled an MLD snooping enabled switch processes IPv6 multicast protocol messages differently under different conditions...

Page 291: ... 2 port information For more information about this command see the IP Multicast Command Reference 4 If IPv6 PIM is disabled on the switch one of the following occurs If MLD is disabled the switch deletes all its dynamic router ports If MLD is enabled the switch maintains all its dynamic member ports and dynamic router ports ...

Page 292: ...ticast VLAN feature configured on the Layer 2 device is the solution to this issue With the IPv6 multicast VLAN feature the Layer 3 device needs to replicate the multicast traffic only in the IPv6 multicast VLAN instead of making a separate copy of the multicast traffic in each user VLAN This saves network bandwidth and lessens the burden on the Layer 3 device The IPv6 multicast VLAN feature can b...

Page 293: ...s shown in Figure 73 Host A Host B and Host C are in different user VLANs All the user ports are hybrid ports On Switch A configure VLAN 10 as an IPv6 multicast VLAN assign all user ports to VLAN 10 and enable MLD snooping in the IPv6 multicast VLAN and all user VLANs Figure 73 Port based IPv6 multicast VLAN After the configuration upon receiving an MLD message on a user port Switch A tags the mes...

Page 294: ... given preference Configuring IPv6 sub VLAN based IPv6 multicast VLAN Configuration prerequisites Before you configure sub VLAN based IPv6 multicast VLAN complete the following tasks Create VLANs as required Enable MLD snooping in the VLAN to be configured as an IPv6 multicast VLAN Configuring sub VLAN based IPv6 multicast VLAN In this approach you configure a VLAN as an IPv6 multicast VLAN and co...

Page 295: ...erequisites Before you configure port based IPv6 multicast VLAN complete the following tasks Create VLANs as required Enable MLD snooping in the VLAN to be configured as an IPv6 multicast VLAN Enable MLD snooping in all user VLANs Configuring user port attributes Configure the user ports as hybrid ports to permit packets of the specified user VLAN to pass and configure the user VLAN to which the u...

Page 296: ...gure IPv6 multicast VLAN ports in IPv6 multicast VLAN view Follow these steps to configure IPv6 multicast VLAN ports in IPv6 multicast VLAN view To do Use the command Remarks Enter system view system view Configure the specified VLAN as an IPv6 multicast VLAN and enter IPv6 multicast VLAN view multicast vlan ipv6 vlan id Required No IPv6 multicast VLAN configured by default Assign the ports to the...

Page 297: ...guration example Network requirements As shown in Figure 74 Router A connects to an IPv6 multicast source through GigabitEthernet 1 0 1 and to Switch A through GigabitEthernet 1 0 2 MLDv1 runs on Router A and MLD snooping runs on Switch A Router A is the MLD querier Switch A s GigabitEthernet 1 0 1 belongs to VLAN 10 GigabitEthernet 1 0 2 through GigabitEthernet 1 0 4 belong to VLAN 2 through VLAN...

Page 298: ...nable MLD on the host side interface GigabitEthernet 1 0 2 RouterA system view RouterA multicast ipv6 routing enable RouterA interface gigabitethernet 1 0 1 RouterA GigabitEthernet1 0 1 pim ipv6 dm RouterA GigabitEthernet1 0 1 quit RouterA interface gigabitethernet 1 0 2 RouterA GigabitEthernet1 0 2 pim ipv6 dm RouterA GigabitEthernet1 0 2 mld enable 3 Configure Switch A Enable MLD snooping global...

Page 299: ...ping IPv6 multicast group information on Switch A SwitchA display mld snooping group Total 4 IP Group s Total 4 IP Source s Total 4 MAC Group s Port flags D Dynamic port S Static port C Copy port Subvlan flags R Real VLAN C Copy VLAN Vlan id 2 Total 1 IP Group s Total 1 IP Source s Total 1 MAC Group s Router port s total 0 port s IP group s the following ip group s match to one mac group IP group ...

Page 300: ...1 Host port s total 0 port s The output shows that MLD snooping is maintaining the router port in the IPv6 multicast VLAN VLAN 10 and the member ports in the sub VLANs VLAN 2 through VLAN 4 Port based multicast VLAN configuration example Network requirements As shown in Figure 75 Router A connects to an IPv6 multicast source Source through GigabitEthernet 1 0 1 and to Switch A through GigabitEther...

Page 301: ...configure the IPv6 address and address prefix for each interface according to Figure 75 details not shown 2 Configure Router A Enable IPv6 multicast routing enable IPv6 PIM DM on each interface and enable MLD on the host side interface GigabitEthernet 1 0 2 RouterA system view RouterA multicast ipv6 routing enable RouterA interface gigabitethernet 1 0 1 RouterA GigabitEthernet1 0 1 ipv6 pim dm Rou...

Page 302: ...itEthernet 1 0 4 is similar details not shown Configure VLAN 10 as an IPv6 multicast VLAN SwitchA multicast vlan ipv6 10 Assign GigabitEthernet 1 0 2 and GigabitEthernet 1 0 3 to IPv6 multicast VLAN 10 SwitchA ipv6 mvlan 10 port gigabitethernet 1 0 2 to gigabitethernet 1 0 3 SwitchA ipv6 mvlan 10 quit Assign GigabitEthernet 1 0 4 to IPv6 multicast VLAN 10 SwitchA interface gigabitethernet 1 0 4 Sw...

Page 303: ...p group s match to one mac group IP group address FF1E 101 FF1E 101 Host port s total 3 port s GE1 0 2 D GE1 0 3 D GE1 0 4 D MAC group s MAC group address 3333 0000 0101 Host port s total 3 port s GE1 0 2 GE1 0 3 GE1 0 4 The output shows that MLD snooping is maintaining router ports and member ports in VLAN 10 ...

Page 304: ... entry indicates the routing information for delivering multicast data from a multicast source to a multicast group If a router supports multiple IPv6 multicast protocols its IPv6 multicast routing table will include routes that these protocols generated The router chooses the optimal route from the IPv6 multicast routing table based on the configured multicast routing and forwarding policy and in...

Page 305: ...the multicast source to the receivers or the rendezvous point RP the packet source for RPF check is the multicast source For a packet that travels along the rendezvous point tree RPT from the RP to the receivers or along the source side RPT from the multicast source to the RP the packet source for RPF check is the RP For a bootstrap message from the bootstrap router BSR the packet source for RPF c...

Page 306: ... receivers as shown in Figure 76 The IPv6 multicast forwarding table on Router C contains the S G entry with VLAN interface 20 as the RPF interface Figure 76 RPF check process When an IPv6 multicast packet arrives on VLAN interface 20 of Router C because the interface is the incoming interface of the S G entry the router forwards the packet to all outgoing interfaces When an IPv6 multicast packet ...

Page 307: ...omain are interoperable at the network layer Configure IPv6 PIM DM or IPv6 PIM SM Determine the maximum number of downstream nodes for a single entry in the IPv6 multicast forwarding table Determine the maximum number of entries in the IPv6 multicast forwarding table Configuring an IPv6 multicast routing policy You can configure the router to determine the RPF route based on the longest match prin...

Page 308: ...st packets Follow these steps to configure an IPv6 multicast forwarding range To do Use the command Remarks Enter system view system view Enter interface view interface interface type interface number Configure an IPv6 multicast forwarding boundary multicast ipv6 boundary ipv6 group address prefix length scope scope id admin local global organization local site local Required No forwarding boundar...

Page 309: ...information display multicast ipv6 boundary group ipv6 group address prefix length scope scope id interface interface type interface number begin exclude include regular expression Available in any view Display the information of the IPv6 multicast forwarding table display multicast ipv6 forwarding table ipv6 source address prefix length ipv6 group address prefix length incoming interface interfac...

Page 310: ... table Troubleshooting IPv6 multicast policy configuration Abnormal termination of IPv6 multicast data Symptom A host sends an MLD report announcing its joining an IPv6 multicast group G However no member information about the IPv6 multicast group G exists on the intermediate router The intermediate router can receive IPv6 multicast packets successfully but the packets cannot reach the stub networ...

Page 311: ...urrent configuration command to display the configuration of the IPv6 multicast filter Change the IPv6 ACL rule used in the source policy command so that the source IP address of the IPv6 multicast packets and the IPv6 multicast group address can both match the IPv6 ACL rule ...

Page 312: ...rfaces in this chapter refer to Layer 3 interfaces in generic sense and Ethernet interfaces operating in route mode For more information about the operating mode of the Ethernet interface see the Layer 2 LAN Switching Configuration Guide MLD versions The following MLD versions are available MLDv1 Defined in RFC 2710 which is derived from IGMPv2 MLDv2 Defined in RFC 3810 which is derived from IGMPv...

Page 313: ... B and Host C will receive IPv6 multicast data addressed to IPv6 multicast group G1 and Host A will receive IPv6 multicast data addressed to G2 as shown in Figure 77 The following process describes how the hosts join the IPv6 multicast groups and how the MLD querier Router B in the figure maintains the IPv6 multicast group memberships 1 The hosts send unsolicited MLD reports to the addresses of th...

Page 314: ...ing members if any on the subnet of the group that is being queried should send a report within the time of the maximum response delay set in the query messages 4 If the querier receives a report for the group within the maximum response delay time it will maintain the memberships of the IPv6 multicast group Otherwise the querier will assume that no hosts on the subnet are still interested in IPv6...

Page 315: ... address state per multicast address per attached subnet The multicast address state consists of the following items Filter mode The router keeps tracing the Include or Exclude state List of sources The router keeps tracing the newly added or deleted IPv6 multicast source Timers Filter timer and source timer The filter timer is the time the router waits before switching to the Include mode after a...

Page 316: ...ialized to zero Checksum Standard IPv6 checksum Maximum Response Delay Maximum response delay allowed before a host sends a report message Reserved Reserved field and initialized to zero Multicast Address This field is set to 0 in a general query message It is set to a specific IPv6 multicast address in a multicast address specific query message or multicast address and source specific query messa...

Page 317: ...rt message format Table 11 MLDv2 report message field description Field Description Type 143 Message type For a report message this field is set to 143 Reserved The Reserved fields are set to 0 on transmission and ignored on reception Checksum Standard IPv6 checksum Number of Multicast Address Records This field indicates how many IPv6 multicast address records are present in this report message M...

Page 318: ... in Figure 81 Host A and Host B are running MLDv1 and Host C is running MLDv2 To provide SSM service for Host A and Host B you must configure the MLD SSM mapping feature on Router A With the MLD SSM mapping feature configured when Router A receives an MLDv1 report it checks the IPv6 multicast group address G carried in the message If G is not in the IPv6 SSM group range Router A cannot provide the...

Page 319: ... called a host interface Downstream interface An interface that is running MLD and not in the direction toward the root of the multicast forwarding tree A downstream interface acts as a router that is running MLD and is also called a router interface A device with MLD proxying configured maintains a group membership database which stores the group memberships on all the downstream interfaces in th...

Page 320: ...pings Optional Configuring MLD proxying Enabling MLD proxying Optional Configuring IPv6 multicast forwarding on a downstream interface Optional NOTE In MLD view the configuration is globally effective In interface view the configuration is effective on the current interface only If no configuration is performed in interface view the global configurations performed in MLD view will apply to that in...

Page 321: ...ble command see the IP Multicast Command Reference Configuring the MLD version Because MLD message types and formats vary with MLD versions the same MLD version should be configured for all routers on the same subnet before MLD can work properly Configuring an MLD version globally Follow these steps to configure an MLD version globally To do Use the command Remarks Enter system view system view En...

Page 322: ... or an IPv6 multicast source and group if the interface is IPv6 PIM SM enabled it must be an IPv6 PIM SM DR If this interface is MLD enabled but not IPv6 PIM SM enabled it must be an MLD querier For more information about IPv6 PIM SM and a DR see the chapter IPv6 PIM configuration As a static member of an IPv6 multicast group or an IPv6 multicast source and group an interface does not respond to t...

Page 323: ...00 by default NOTE This configuration takes effect for dynamically joined IPv6 multicast groups but not the statically configured multicast groups Adjusting MLD performance NOTE In MLD view the configuration is globally effective In interface view the configuration is effective only on the current interface If the same function or parameter is configured in both MLD view and interface view the con...

Page 324: ... MLD messages no matter whether the MLD messages carry the Router Alert option or not To enhance device performance avoid unnecessary costs and ensure protocol security configure the device to discard MLD messages that do not carry the Router Alert option Configuring the Router Alert option for MLD messages globally Follow these steps to configure the Router Alert option for MLD messages globally ...

Page 325: ...ast address and source specific query The timer is initialized to a random value in the range of 0 to the maximum response delay advertised in the MLD query message When the timer decreases to 0 the host sends an MLD membership report message to the IPv6 multicast group To speed up the rereponse of hosts to MLD queries and avoid simultaneous timer expirations causing MLD report traffic bursts you ...

Page 326: ...the other querier present interval is determined by the formula Other querier present interval in seconds MLD query interval MLD querier s robustness variable maximum response delay for MLD general query 2 Configuring MLD query and response parameters on an interface Follow these steps to configure MLD query and response parameters on an interface To do Use the command Remarks Enter system view sy...

Page 327: ...multicast group member removals set the MLD query interval greater than the maximum response delay for MLD general queries Configuring MLD fast leave processing MLD fast leave processing is implemented by MLD snooping For more information about MLD snooping see the chapter MLD snooping configuration Configuring MLD SSM mapping Because of possible restrictions some receiver hosts on an SSM network ...

Page 328: ...figured by default CAUTION If MLDv2 is enabled on a VLAN interface of a switch and if a port in that VLAN is configured as a simulated host the simulated host will send MLDv2 reports even if you did not specify an IPv6 multicast source when configuring simulated joining with the mld snooping host join command In this case the corresponding IPv6 multicast group will not be created based on the conf...

Page 329: ...iguring IPv6 multicast forwarding on a downstream interface Typically to avoid duplicate multicast flows only queriers can forward IPv6 multicast traffic On MLD proxy devices a downstream interface must be a querier in order to forward IPv6 multicast traffic to downstream hosts If the interface has failed in the querier election you must manually enable IPv6 multicast forwarding on this interface ...

Page 330: ...y view Display MLD SSM mappings display mld ssm mapping ipv6 group address begin exclude include regular expression Available in any view Display the IPv6 multicast group information created based on the configured MLD SSM mappings display mld ssm mapping group ipv6 group address interface interface type interface number verbose begin exclude include regular expression Available in any view Remove...

Page 331: ...quired between Switch A and N1 MLDv1 is also required between the other two switches Switch B and Switch C and N2 Switch B acts as the MLD querier because it has a lower IPv6 address Figure 83 Network diagram for basic MLD functions configuration Ethernet Ethernet Configuration procedure 1 Enable IPv6 forwarding and configure IPv6 addresses and IPv6 unicast routing Enable IPv6 forwarding on each s...

Page 332: ...terface201 quit Enable IPv6 multicast routing on Switch C enable IPv6 PIM DM on each interface and enable MLD on VLAN interface 200 SwitchC system view SwitchC multicast ipv6 routing enable SwitchC interface vlan interface 200 SwitchC Vlan interface200 mld enable SwitchC Vlan interface200 pim ipv6 dm SwitchC Vlan interface200 quit SwitchC interface vlan interface 202 SwitchC Vlan interface202 pim ...

Page 333: ... 1001 1 64 Source 3 3001 1 64 Source 2 2001 1 64 Receiver 4001 1 64 Switch A Vlan int100 1001 2 64 Switch C Vlan int300 3001 2 64 Vlan int101 1002 1 64 Vlan int103 3002 1 64 Vlan int104 1003 1 64 Vlan int102 2002 2 64 Switch B Vlan int200 2001 2 64 Switch D Vlan int400 4001 2 64 Vlan int101 1002 2 64 Vlan int103 3002 2 64 Vlan int102 2002 1 64 Vlan int104 1003 2 64 Configuration procedure 1 Enable...

Page 334: ...ticast ipv6 routing enable SwitchA interface vlan interface 100 SwitchA Vlan interface100 pim ipv6 sm SwitchA Vlan interface100 quit SwitchA interface vlan interface 101 SwitchA Vlan interface101 pim ipv6 sm SwitchA Vlan interface101 quit SwitchA interface vlan interface 104 SwitchA Vlan interface104 pim ipv6 sm SwitchA Vlan interface104 quit The configuration on Switch B and Switch C is similar t...

Page 335: ...igured MLD SSM mappings on Switch D SwitchD display mld ssm mapping group Total 1 MLD SSM mapping Group s Interface group report information Vlan interface400 4001 2 Total 1 MLD SSM mapping Group reported Group Address FF3E 101 Last Reporter 4001 1 Uptime 00 02 04 Expires off Use the display pim ipv6 routing table command to view the IPv6 PIM routing table information on each switch Display the IP...

Page 336: ...ure 85 Network diagram for MLD proxying configuration Configuration procedure 1 Enable IPv6 forwarding and configure the IPv6 addresses Enable IPv6 forwarding on each switch and configure the IPv6 address and prefix length of each interface according to Figure 85 The detailed configuration steps are omitted here 2 Enable IPv6 multicast routing IPv6 PIM DM MLD and MLD proxying respectively Enable I...

Page 337: ...er alert disabled Use the display mld group command to view MLD group information For example Display the MLD group information on Switch A SwitchA display mld group Total 1 MLD Group s Interface group report information Vlan interface100 2001 1 Total 1 MLD Groups reported Group Address Last Reporter Uptime Expires ff3e 101 2001 2 00 02 04 00 01 15 The output shows that the MLD reports sent from t...

Page 338: ...nfigured to restrict the host from joining IPv6 multicast group G Use the display current configuration interface command to determine whether the mld group policy command has been executed If an IPv6 ACL is configured to restrict the host from joining IPv6 multicast group G the ACL must be modified to allow IPv6 multicast group G to receive report messages Inconsistent memberships on routers on t...

Page 339: ...the packet If the RPF check fails the device discards the packet For more information about RPF see the chapter IPv6 multicast routing and forwarding configuration Based on the implementation mechanism IPv6 PIM falls into the following modes Protocol Independent Multicast Dense Mode for IPv6 IPv6 PIM DM Protocol Independent Multicast Sparse Mode for IPv6 IPv6 PIM SM Bidirectional Protocol Independ...

Page 340: ...IM DM domain an IPv6 multicast source first floods IPv6 multicast packets when it sends IPv6 multicast data to IPv6 multicast group G The packet undergoes an RPF check If the packet passes the RPF check the router creates an S G entry and forwards the packet to all downstream nodes in the network In the flooding process an S G entry is created on all the routers in the IPv6 PIM DM domain 2 Nodes w...

Page 341: ...he node that needs to receive IPv6 multicast data sends a graft message toward its upstream node as a request to join the SPT again 2 Upon receiving this graft message the upstream node puts the interface on which the graft was received into the forwarding state and responds with a graft ack message to the graft sender 3 If the node that sent a graft message does not receive a graft ack message fr...

Page 342: ...in the route metric to the source exists the router with a higher IPv6 link local address wins IPv6 PIM SM overview IPv6 PIM DM uses the flood and prune principle to build SPTs for IPv6 multicast data distribution Although an SPT has the shortest path it is built with a low efficiency Therefore the PIM DM mode is not suitable for large sized and medium sized networks IPv6 PIM SM is a type of spars...

Page 343: ...follows Neighbor discovery DR election RP discovery Embedded RP RPT establishment IPv6 Multicast source registration Switchover to SPT Assert Neighbor discovery IPv6 PIM SM uses the similar neighbor discovery mechanism as IPv6 PIM DM does For more information see Neighbor discovery DR election IPv6 PIM SM also uses hello messages to elect a DR for a multi access network such as a LAN The elected D...

Page 344: ...e area and a huge amount of IPv6 multicast traffic must be forwarded through the RP To lessen the RP burden and optimize the topological structure of the RPT you can configure multiple candidate RPs C RPs in an IPv6 PIM SM domain Among them an RP is dynamically elected through the bootstrap mechanism Each elected RP serves a different multicast group range For this purpose you must configure a boo...

Page 345: ...e same priority and hash value the C RP that has the highest IP address wins The hashing algorithm used for RP calculation is Value G M Ci 1103515245 1103515245 G M 12345 XOR Ci 12345 mod 231 Table 12 Values in the hashing algorithm Value Description Value Hash value G The digest from the exclusive or XOR operation between the 32 bit segments of the IPv6 multicast group address For example if the ...

Page 346: ...address and sends a register message to the RP RPT establishment Figure 90 RPT establishment in an IPv6 PIM SM domain As shown in Figure 90 the process of building an RPT is as follows 1 When a receiver joins IPv6 multicast group G it uses an MLD report message to inform the directly connected DR 2 Upon getting the IPv6 multicast group G s receiver information the DR sends a join message which is ...

Page 347: ...egister message and forwards the multicast IPv6 multicast packet down the RPT and sends an S G join message hop by hop toward the IPv6 multicast source The routers along the path from the RP to the IPv6 multicast source form an SPT branch Each router on this branch generates an S G entry in its forwarding table The source side DR is the root of the SPT and the RP is the leaf of the SPT 3 The subse...

Page 348: ...n S G join message hop by hop toward the IPv6 multicast source When the join message reaches the source side DR all the routers on the path have created the S G entry in their forwarding table and thus an SPT branch is established When the IPv6 multicast packets travel to the router where the RPT and the SPT deviate the router drops the multicast packets received from the RPT and sends an RP bit p...

Page 349: ... specified with a virtual IPv6 address which is called the rendezvous point address RPA The link corresponding to the RPA s subnet is called the rendezvous point link RPL All interfaces connected to the RPL can act as RPs which back up one another NOTE In IPv6 BIDIR PIM an RPF interface is the interface pointing to an RP and an RPF neighbor is the address of the next hop to the RP DF election On a...

Page 350: ...the RP s address and the priority and metric of the unicast route MBGP route or multicast static route to the RP 2 The router with a route of the highest priority becomes the DF 3 In the case of a tie the router with the route with the lowest metric wins the DF election 4 In the case of a tie in the metric the router with the highest IP address wins Bidirectional RPT building A bidirectional RPT c...

Page 351: ...IPv6 multicast group 3 The routers along the path from the receiver s directly connected router to the RP form an RPT branch and each router on this branch adds a G entry to its forwarding table The means any IPv6 multicast source When a receiver is no longer interested in the multicast data addressed to IPv6 multicast group G the directly connected router sends a prune message which goes hop by h...

Page 352: ...the same side of the RP the source side RPT and the receiver side RPT might meet at a node before reaching the RP In this case IPv6 multicast packets are directly forwarded by the node to the receiver instead of by the RP IPv6 administrative scoping overview Division of IPv6 PIM SM domains Typically an IPv6 PIM SM IPv6 BIDIR PIM domain contains only one BSR which is responsible for advertising RP ...

Page 353: ... scope zone Each IPv6 admin scope zone has its own boundary The multicast information cannot cross this border in either direction A better understanding of the IPv6 global scope zone and IPv6 admin scope zones should be based on geographical space and group address range 1 Geographical space IPv6 admin scope zones are logical zones specific to particular multicast groups The multicast packets of ...

Page 354: ...u can implement the SSM model by leveraging part of the IPv6 PIM SM technique The SSM model provides a solution for source specific multicast It maintains the relationships between hosts and routers through MLDv2 IPv6 PIM DM implements IPv6 multicast forwarding by building SPTs rooted at the IPv6 multicast source through the flood and prune mechanism Although an SPT has the shortest path it is bui...

Page 355: ...st source S and that sent to the IPv6 multicast group G The DR that has received the report first determines whether the IPv6 group address in this message falls into the IPv6 SSM group range and then does the following If the IPv6 group address in the message does fall into the IPv6 SSM group range the IPv6 PIM SSM model is built The DR sends a channel subscription message hop by hop toward the I...

Page 356: ...SSM for G MLD SSM mapping is configured for G Enable IPv6 PIM SM for G The receiver specifies an IPv6 multicast source No Yes No Yes NOTE For more information about MLD SSM mapping see the chapter MLD configuration Protocols and standards IPv6 PIM related specifications are as follows RFC 3973 Protocol Independent Multicast Dense Mode PIM DM Protocol Specification Revised RFC 4601 Protocol Indepen...

Page 357: ...efore receiving a new refresh message Determine the hop limit value of state refresh messages Determine the graft retry period Enabling IPv6 PIM DM With IPv6 PIM DM enabled a router sends hello messages periodically to discover IPv6 PIM neighbors and processes messages from the IPv6 PIM neighbors When you deploy an IPv6 PIM DM domain enable IPv6 PIM DM on all non border interfaces of routers Follo...

Page 358: ...ple state refresh messages within a short time and some of them might be duplicated messages To keep a router from receiving such duplicated messages you can configure the time that the router must wait before receiving the next state refresh message If the router receives a new state refresh message within the waiting time the router will discard it If this timer times out the router will accept ...

Page 359: ...riod To do Use the command Remarks Enter system view system view Enter interface view interface interface type interface number Configure the graft retry period pim ipv6 timer graft retry interval Optional 3 seconds by default NOTE For more information about the configuration of other timers in IPv6 PIM DM see Configuring IPv6 PIM common timers Configuring IPv6 PIM SM IPv6 PIM SM configuration tas...

Page 360: ...d by each C RP Determine the legal C RP address range and the IPv6 ACL that define the range of IPv6 multicast groups to be served Determine the C RP Adv interval Determine the C RP timeout Determine the C BSR priority Determine the hash mask length Determine the IPv6 ACL rule defining a legal BSR address range Determine the BS period Determine the BS timeout Determine the IPv6 ACL for register me...

Page 361: ...v6 PIM SM and IPv6 BIDIR PIM simultaneously to avoid IPv6 PIM routing table errors Configuring a static RP If only one dynamic RP exists in a network configuring a static RP can avoid communication interruption due to single point failures It can also avoid frequent message exchange between C RPs and the BSR Perform the following configuration on all the routers in the IPv6 PIM SM domain Follow th...

Page 362: ...multicast groups to be served crp policy acl6 number Optional No restrictions by default NOTE When configuring a C RP ensure a relatively large bandwidth between this C RP and the other devices in the IPv6 PIM SM domain An RP can serve multiple IPv6 multicast groups or all IPv6 multicast groups Only one RP can forward IPv6 multicast traffic for an IPv6 multicast group at a moment Enabling embedded...

Page 363: ... IPv6 PIM SM domain can have only one BSR but must have at least one C BSR Any router can be configured as a C BSR Elected from C BSRs the BSR is responsible for collecting and advertising RP information in the IPv6 PIM SM domain Configuring a C BSR HP recommends that you configure C BSRs on routers in the backbone network When you are configuring a router as a C BSR be sure to specify the IPv6 ad...

Page 364: ...attacker controls a legal BSR the problem will still occur Follow these steps to complete basic BSR configuration To do Use the command Remarks Enter system view system view Enter IPv6 PIM view pim ipv6 Configure an interface as a C BSR c bsr ipv6 address hash length priority Required No C BSRs are configured by default Configure a legal BSR address range bsr policy acl6 number Optional No restric...

Page 365: ...al 126 by default Configure the C BSR priority c bsr priority priority Optional 64 by default Configuring C BSR timers The BSR election winner multicasts its own IPv6 address and RP set information throughout the region that it serves through bootstrap messages The BSR floods bootstrap messages throughout the network at the interval of the BS BSR state period Any C BSR that receives a bootstrap me...

Page 366: ...trap message fragments BSMFs Upon receiving a BSMF that contains the RP set information of one group range a non BSR router updates corresponding RP set information directly If the RP set information of one group range is carried in multiple BSMFs a non BSR router updates corresponding RP set information upon receiving all these BSMFs Because the RP set information contained in each segment is dif...

Page 367: ...zone is formed by ZBRs Each admin scope zone maintains a BSR which serves multicast groups with a specific Scope field in their group addresses Multicast protocol packets such as assert messages and bootstrap messages that belong to this range cannot cross the admin scope zone boundary Perform the following configuration on routers that can become a ZBR Follow these steps to configure an IPv6 admi...

Page 368: ... groups If the filtering rule denies an S G entry or if the filtering rule does not define an action for this entry the RP will send a register stop message to the DR to stop the registration process for the IPv6 multicast data In view of information integrity of register messages in the transmission process you can configure the device to calculate the checksum based on the entire register messag...

Page 369: ...e time probe interval interval Optional 5 seconds by default Disabling SPT switchover If an A5500 EI switch acts as an RP or the receiver side DR it initiates an STP switchover process by default upon receiving the first IPv6 multicast packet along the RPT You can disable the switchover from RPT to SPT Follow these steps to configure SPT switchover To do Use the command Remarks Enter system view s...

Page 370: ... Configuring C BSRs for each admin scope zone Optional Configuring IPv6 PIM common features Optional Configuration prerequisites Before you configure IPv6 BIDIR PIM complete the following tasks Enable IPv6 forwarding and configure an IPv6 unicast routing protocol so that all devices in the domain are interoperable at the network layer Determine the IPv6 address of a static RP and the IPv6 ACL that...

Page 371: ...s of the same device must work in the same IPv6 PIM mode NOTE For more information about the multicast ipv6 routing enable command see the IP Multicast Command Reference Enabling IPv6 BIDIR PIM Perform this configuration on all routers in the IPv6 BIDIR PIM domain Follow these steps to enable IPv6 BIDIR PIM To do Use the command Remarks Enter system view system view Enter IPv6 PIM view pim ipv6 En...

Page 372: ...Pv6 address For example if the IPv6 addresses of the interfaces at the two ends of a link are 1001 1 64 and 1001 2 64 specify a virtual IPv6 address like 1001 100 64 for the static RP As a result the link becomes an RPL Configuring a C RP In an IPv6 BIDIR PIM domain you can configure routers that intend to become the RP as C RPs The BSR collects the C RP information by receiving the C RP Adv messa...

Page 373: ...Pv6 PIM view pim ipv6 Enable embedded RP embedded rp acl6 number Optional By default embedded RP is enabled for IPv6 multicast groups in the default embedded RP address scopes NOTE The default embedded RP address scopes are FF7x 12 and FFFx 12 Here x refers to any legal address scope For more information about the Scope field see the chapter Multicast overview Configuring C RP timers globally To e...

Page 374: ...sumes itself to be the BSR but the winner retains its own BSR address and continues assuming itself to be the BSR Configuring a legal range of BSR addresses enables filtering of bootstrap messages based on the address range thus to prevent a maliciously configured host from masquerading as a BSR The same configuration must be made on all routers in the IPv6 BIDIR PIM domain The following are typic...

Page 375: ...BIDIR PIM domain border is a bootstrap message boundary Each BSR has its specific service scope A number of IPv6 BIDIR PIM domain border interfaces partition a network into different IPv6 BIDIR PIM domains Bootstrap messages cannot cross a domain border in either direction Perform the following configuration on routers that are intended to form the IPv6 BIDIR PIM domain border Follow these steps t...

Page 376: ...n on C BSR routers Follow these steps to configure C BSR timers To do Use the command Remarks Enter system view system view Enter IPv6 PIM view pim ipv6 Configure the BS period c bsr interval interval Optional For the default value see the note under this table Configure the BS timeout timer c bsr holdtime interval Optional For the default value see the note under this table NOTE About the BS peri...

Page 377: ...Therefore if such devices exist in the IPv6 BIDIR PIM domain you need to disable the semantic fragmentation function on the C BSRs Follow these steps to disable the BSM semantic fragmentation function To do Use the command Remarks Enter system view system view Enter IPv6 PIM view pim ipv6 Disable the BSM semantic fragmentation function undo bsm fragment enable Required By default the BSM semantic ...

Page 378: ...al site local Required By default no IPv6 multicast forwarding boundary is configured NOTE For more information about the multicast ipv6 boundary command see the IP Multicast Command Reference Configuring C BSRs for each admin scope zone In a network with administrative scoping enabled group range specific BSRs are elected from C BSRs C RPs in the network send advertisement messages to the specifi...

Page 379: ...s to configure IPv6 PIM SSM Task Remarks Enabling IPv6 PIM SM Required Configuring the IPv6 SSM group range Optional Configuring IPv6 PIM common features Optional Configuration prerequisites Before you configure IPv6 PIM SSM complete the following tasks Enable IPv6 forwarding and configure any IPv6 unicast routing protocol so that all devices in the domain are interoperable at the network layer De...

Page 380: ...rs in the IPv6 PIM SM domain Follow these steps to configure the IPv6 SSM group range To do Use the command Remarks Enter system view system view Enter IPv6 PIM view pim ipv6 Configure the IPv6 SSM group range ssm policy acl6 number Optional FF3x 32 by default here x refers to any legal group scope CAUTION Be sure to configure the same IPv6 SSM group range on all routers in the entire domain Other...

Page 381: ...bal value interface value Determine the prune message delay global value interface level value Determine the prune override interval global value interface level value Determine the prune delay Determine the hello interval global value interface level value Determine the maximum delay between hello message interface level value Determine the assert timeout time global value interface value Determi...

Page 382: ...boring relationships Follow these steps to configure a hello message filter To do Use the command Remarks Enter system view system view Enter interface view interface interface type interface number Configure a hello message filter pim ipv6 neighbor policy acl6 number Required No hello message filter by default NOTE When the hello message filter is configured if hello messages of an existing IPv6 ...

Page 383: ...he router changes for example when IPv6 PIM is just enabled on the interface or the device is restarted When the router starts or restarts sending hello messages it generates a new generation ID If an IPv6 PIM router finds that the generation ID in a hello message from the upstream router has changed it assumes that the status of the upstream neighbor is lost or that the upstream neighbor has chan...

Page 384: ...o that it will not perform the prune action immediately after receiving the prune message Instead it maintains the current forwarding state for a period of prune delay time In this period if the upstream router receives a join message from the downstream router it cancels the prune action Follow these steps to configure the prune delay time To do Use the command Remarks Enter system view system vi...

Page 385: ...onds by default Configure the join prune timeout time holdtime join prune interval Optional 210 seconds by default Configure assert timeout time holdtime assert interval Optional 180 seconds by default Configure the IPv6 multicast source lifetime source lifetime interval Optional 210 seconds by default Configuring IPv6 PIM common timers on an interface Follow these steps to configure IPv6 PIM comm...

Page 386: ... domain and locally configured C RP information in effect display pim ipv6 bsr info begin exclude include regular expression Available in any view Display the information of IPv6 unicast routes used by IPv6 PIM display pim ipv6 claimed route ipv6 source address begin exclude include regular expression Available in any view Display the number of IPv6 PIM control messages display pim ipv6 control me...

Page 387: ...he RP information display pim ipv6 rp info ipv6 group address begin exclude include regular expression Available in any view Reset IPv6 PIM control message counters reset pim ipv6 control message counters interface interface type interface number Available in user view IPv6 PIM configuration examples IPv6 PIM DM configuration example Network requirements Receivers receive VOD information through m...

Page 388: ... unicast routing Enable IPv6 forwarding on each switch and configure the IPv6 address and prefix length for each interface according to Figure 99 details not shown Configure OSPFv3 on the switches in the IPv6 PIM DM domain to ensure network layer reachability among them details not shown 2 Enable IPv6 multicast routing and enable IPv6 PIM DM and MLD Enable IPv6 multicast routing on Switch A enable...

Page 389: ... View the IPv6 PIM configuration information on Switch D SwitchD display pim ipv6 interface Interface NbrCnt HelloInt DR Pri DR Address Vlan300 0 30 1 4001 1 local Vlan103 0 30 1 1002 2 local Vlan101 1 30 1 2002 2 local Vlan102 1 30 1 3001 2 local Use the display pim ipv6 neighbor command to view the IPv6 PIM neighboring relationships among the switches For example View the IPv6 PIM neighboring re...

Page 390: ...ace Vlan interface103 Upstream neighbor 1002 2 RPF prime neighbor 1002 2 Downstream interface s information Total number of downstreams 1 1 Vlan interface100 Protocol pim dm UpTime 00 01 20 Expires never The output on Switch B and Switch C is similar to that on Switch A View the IPv6 PIM multicast routing table information on Switch D SwitchD display pim ipv6 routing table Total 0 G entry 1 S G en...

Page 391: ...ace 102 on Switch E act as C BSRs and C RPs The C BSR on Switch E has a higher priority The IPv6 multicast group range served by the C RP is FF0E 101 64 Modify the hash mask length to map a certain number of consecutive IPv6 group addresses within the range to the two C RPs MLDv1 will run between Switch A and N1 and between Switch B Switch C and N2 Figure 100 Network diagram for IPv6 PIM SM non sc...

Page 392: ...ce 101 SwitchA Vlan interface101 pim ipv6 sm SwitchA Vlan interface101 quit SwitchA interface vlan interface 102 SwitchA Vlan interface102 pim ipv6 sm SwitchA Vlan interface102 quit The configuration on Switch B and Switch C is similar to that on Switch A The configuration on Switch D and Switch E is also similar to that on Switch A except that it is not necessary to enable MLD on the correspondin...

Page 393: ...w the BSR information and the locally configured C RP information in effect on Switch A SwitchA display pim ipv6 bsr info Elected BSR Address 1003 2 Priority 20 Hash mask length 128 State Accept Preferred Uptime 00 04 22 Expires 00 01 46 View the BSR information and the locally configured C RP information in effect on Switch D SwitchD display pim ipv6 bsr info Elected BSR Address 1003 2 Priority 2...

Page 394: ...Host A needs to receive information addressed to the IPv6 multicast group G FF0E 100 The RP corresponding to the multicast group G is Switch E as a result of hash calculation so an RPT will be built between Switch A and Switch E When the IPv6 multicast source S 4001 100 64 registers with the RP an SPT will be built between Switch D and Switch E Upon receiving IPv6 multicast data Switch A immediate...

Page 395: ...ilar to that on Switch A View the IPv6 PIM multicast routing table information on Switch D SwitchD display pim ipv6 routing table Total 0 G entry 1 S G entry 4001 100 FF0E 100 RP 1003 2 Protocol pim sm Flag SPT LOC ACT UpTime 00 14 44 Upstream interface Vlan interface300 Upstream neighbor NULL RPF prime neighbor NULL Downstream interface s information Total number of downstreams 1 1 Vlan interface...

Page 396: ...er for this multicast group VLAN interface 101 of Switch B acts as a C BSR and C RP of admin scope zone 1 which serves the IPv6 multicast groups with the Scope field value in their group addresses being 4 VLAN interface 104 of Switch D acts as a C BSR and C RP of admin scope zone 2 which also serves the IPv6 multicast groups with the Scope field value in their group addresses being 4 VLAN interfac...

Page 397: ... shown Configure OSPFv3 on the switches in the IPv6 PIM SM domain to ensure network layer reachability among them details not shown 2 Enable IPv6 multicast routing and IPv6 administrative scoping and enable IPv6 PIM SM and MLD Enable IPv6 multicast routing and administrative scoping on Switch A enable IPv6 PIM SM on each interface and enable MLD on the host side interface VLAN interface 100 Switch...

Page 398: ...B Vlan interface102 quit SwitchB interface vlan interface 103 SwitchB Vlan interface103 multicast ipv6 boundary scope 4 SwitchB Vlan interface103 quit On Switch C configure VLAN interface 103 and VLAN interface 106 to be the boundary of admin scope zone 2 SwitchC system view SwitchC interface vlan interface 103 SwitchC Vlan interface103 multicast ipv6 boundary scope 4 SwitchC Vlan interface103 qui...

Page 399: ...n on a switch use the display pim ipv6 bsr info command For example View the BSR information and the locally configured C RP information on Switch B SwitchB display pim ipv6 bsr info Elected BSR Address 8001 1 Priority 64 Hash mask length 126 State Accept Preferred Scope 14 Uptime 00 01 45 Expires 00 01 25 Elected BSR Address 1002 2 Priority 64 Hash mask length 126 State Elected Scope 4 Uptime 00 ...

Page 400: ...ent Interval 60 Next advertisement scheduled at 00 00 10 View the BSR information and the locally configured C RP information on Switch F SwitchF display pim ipv6 bsr info Elected BSR Address 8001 1 Priority 64 Hash mask length 126 State Elected Scope 14 Uptime 00 01 11 Next BSR message scheduled at 00 00 49 Candidate BSR Address 8001 1 Priority 64 Hash mask length 126 State Elected Scope 14 Candi...

Page 401: ... 00 03 39 Expires 00 01 51 prefix prefix length FF2E 16 RP 8001 1 Priority 192 HoldTime 130 Uptime 00 03 39 Expires 00 01 51 prefix prefix length FF3E 16 RP 8001 1 Priority 192 HoldTime 130 Uptime 00 03 39 Expires 00 01 51 prefix prefix length FF4E 16 RP 8001 1 Priority 192 HoldTime 130 Uptime 00 03 39 Expires 00 01 51 prefix prefix length FF5E 16 RP 8001 1 Priority 192 HoldTime 130 Uptime 00 03 3...

Page 402: ...00 01 51 prefix prefix length FF9E 16 RP 8001 1 Priority 192 HoldTime 130 Uptime 00 03 39 Expires 00 01 51 prefix prefix length FFAE 16 RP 8001 1 Priority 192 HoldTime 130 Uptime 00 03 39 Expires 00 01 51 prefix prefix length FFBE 16 RP 8001 1 Priority 192 HoldTime 130 Uptime 00 03 39 Expires 00 01 51 prefix prefix length FFCE 16 RP 8001 1 Priority 192 HoldTime 130 Uptime 00 03 39 Expires 00 01 51...

Page 403: ...39 Expires 00 01 51 prefix prefix length FF04 16 RP 1002 2 Priority 192 HoldTime 130 Uptime 00 03 39 Expires 00 01 51 prefix prefix length FF14 16 RP 1002 2 Priority 192 HoldTime 130 Uptime 00 03 39 Expires 00 01 51 prefix prefix length FF24 16 RP 1002 2 Priority 192 HoldTime 130 Uptime 00 03 39 Expires 00 01 51 prefix prefix length FF34 16 RP 1002 2 Priority 192 HoldTime 130 Uptime 00 03 39 Expir...

Page 404: ...me 130 Uptime 00 03 39 Expires 00 01 51 prefix prefix length FF74 16 RP 1002 2 Priority 192 HoldTime 130 Uptime 00 03 39 Expires 00 01 51 prefix prefix length FF84 16 RP 1002 2 Priority 192 HoldTime 130 Uptime 00 03 39 Expires 00 01 51 prefix prefix length FF94 16 RP 1002 2 Priority 192 HoldTime 130 Uptime 00 03 39 Expires 00 01 51 prefix prefix length FFA4 16 RP 1002 2 Priority 192 HoldTime 130 U...

Page 405: ...00 03 39 Expires 00 01 51 prefix prefix length FFE4 16 RP 1002 2 Priority 192 HoldTime 130 Uptime 00 03 39 Expires 00 01 51 prefix prefix length FFF4 16 RP 1002 2 Priority 192 HoldTime 130 Uptime 00 03 39 Expires 00 01 51 View the RP information on Switch F SwitchF display pim rp info PIM SM BSR RP information prefix prefix length FF0E 16 RP 8001 1 Priority 192 HoldTime 130 Uptime 00 03 39 Expires...

Page 406: ...ix prefix length FF4E 16 RP 8001 1 Priority 192 HoldTime 130 Uptime 00 03 39 Expires 00 01 51 prefix prefix length FF5E 16 RP 8001 1 Priority 192 HoldTime 130 Uptime 00 03 39 Expires 00 01 51 prefix prefix length FF6E 16 RP 8001 1 Priority 192 HoldTime 130 Uptime 00 03 39 Expires 00 01 51 prefix prefix length FF7E 16 RP 8001 1 Priority 192 HoldTime 130 Uptime 00 03 39 Expires 00 01 51 prefix prefi...

Page 407: ...00 01 51 prefix prefix length FFBE 16 RP 8001 1 Priority 192 HoldTime 130 Uptime 00 03 39 Expires 00 01 51 prefix prefix length FFCE 16 RP 8001 1 Priority 192 HoldTime 130 Uptime 00 03 39 Expires 00 01 51 prefix prefix length FFDE 16 RP 8001 1 Priority 192 HoldTime 130 Uptime 00 03 39 Expires 00 01 51 prefix prefix length FFEE 16 RP 8001 1 Priority 192 HoldTime 130 Uptime 00 03 39 Expires 00 01 51...

Page 408: ...102 Network diagram for IPv6 BIDIR PIM configuration V l a n i n t 3 0 0 Device Interface IP address Device Interface IP address Switch A Vlan int100 1001 1 64 Switch D Vlan int300 4001 1 64 Vlan int101 1002 1 64 Vlan int400 5001 1 64 Switch B Vlan int200 2001 1 64 Vlan int103 3001 2 64 Vlan int101 1002 2 64 Source 1 1001 2 64 Vlan int102 2002 1 64 Source 2 5001 2 64 Switch C Vlan int102 2002 2 64...

Page 409: ...v6 BIDIR PIM SwitchB system view SwitchB multicast ipv6 routing enable SwitchB interface vlan interface 200 SwitchB Vlan interface200 mld enable SwitchB Vlan interface200 pim ipv6 sm SwitchB Vlan interface200 quit SwitchB interface vlan interface 101 SwitchB Vlan interface101 pim ipv6 sm SwitchB Vlan interface101 quit SwitchB interface vlan interface 102 SwitchB Vlan interface102 pim ipv6 sm Switc...

Page 410: ...C BSR and loopback interface 0 as a C RP for the entire IPv6 BIDIR PIM domain SwitchC pim6 c bsr 2002 2 SwitchC pim6 c rp 6001 1 bidir SwitchC pim6 quit 4 Verify the configuration To view the DF information of IPv6 BIDIR PIM on a switch use the display pim ipv6 df info command View the DF information of IPv6 BIDIR PIM on Switch A SwitchA display pim ipv6 df info RP Address 6001 1 Interface State D...

Page 411: ...table on a switch use the display multicast ipv6 forwarding table df info command For more information about this command see the IP Multicast Command Reference View the DF information of the IPv6 multicast forwarding table on Switch A SwitchA display multicast ipv6 forwarding table df info Multicast DF information Total 1 RP Total 1 RP matched 00001 RP Address 6001 1 MID 0 Flags 0x2100000 0 Uptim...

Page 412: ...SSM configuration example Network requirements Receivers receive VOD information through multicast The receiver groups of different organizations form stub networks and one or more receiver hosts exist in each stub network The entire PIM domain operates in the SSM mode Host A and Host C are IPv6 multicast receivers in two stub networks N1 and N2 Switch D connects to the network that comprises the ...

Page 413: ...3 2002 2 64 Switch C Vlan int200 2001 2 64 Vlan int102 1003 2 64 Vlan int104 3001 1 64 Vlan int105 4002 2 64 Configuration procedure 1 Enable IPv6 forwarding and configure IPv6 addresses and IPv6 unicast routing Enable IPv6 forwarding on each switch and configure the IPv6 address and prefix length for each interface according to Figure 103 details not shown Configure OSPFv3 on the switches in the ...

Page 414: ...m ipv6 interface command to view the IPv6 PIM configuration and running status on each interface For example View the IPv6 PIM configuration information on Switch A SwitchA display pim ipv6 interface Interface NbrCnt HelloInt DR Pri DR Address Vlan100 0 30 1 1001 1 local Vlan101 1 30 1 1002 2 Vlan102 1 30 1 1003 2 Assume that Host A needs to receive the information a specific IPv6 multicast source...

Page 415: ... PIM routing entry is created based on an IPv6 unicast route whichever IPv6 PIM mode is running Multicast works only when unicast does IPv6 PIM must be enabled on the RPF interface An RPF neighbor must be an IPv6 PIM neighbor as well If IPv6 PIM is not enabled on the RPF interface or the RPF neighbor the establishment of a multicast distribution tree will fail resulting in abnormal multicast forwa...

Page 416: ...reated in the IPv6 PIM routing table In addition the source policy command filters received IPv6 multicast packets If the IPv6 multicast data fails to pass the ACL rule defined in this command IPv6 PIM cannot create the route entry either Solution 1 Verify the IPv6 multicast forwarding boundary configuration Use the display current configuration command to view the IPv6 multicast forwarding bounda...

Page 417: ...R will be unable to receive the advertisements from the C RP and the bootstrap messages of the BSR will not contain the information about that C RP The RP is the core of an IPv6 PIM SM domain Make sure that the RP information on all routers is exactly the same a specific group is mapped to the same RP and a unicast route is available to the RP Solution 1 Verify that the routes to C RPs the RP and ...

Page 418: ...th forwarding RPF exclusively In this way route selection for a destination through the IPv6 unicast routing table and through the IPv6 multicast routing table have different results ensuring consistent unicast forwarding and normal multicast between domains MP BGP is defined in RFC 2858 Multiprotocol Extensions for BGP 4 The application of MP BGP on IPv6 multicast is called IPv6 Multicast BGP IPv...

Page 419: ... Optional Configuring an IPv6 MBGP route reflector Optional Configuring IPv6 MBGP basic functions Configuration prerequisites Before you configure IPv6 MBGP complete the following tasks Enable IPv6 Configure network layer addresses for interfaces Complete BGP basic configuration Configuring an IPv6 MBGP peer Follow these steps to configure an IPv6 MBGP peer To do Use the command Remarks Enter syst...

Page 420: ... preferred value in the routing policy is zero the routes matching it will also use the value set with the peer ipv6 group name ipv6 address preferred value value command To use a routing policy to set a preferred value use the peer ipv6 group name ipv6 address route policy route policy name import export command and the apply preferred value preferred value command For more information about the ...

Page 421: ... redistribute any IGP default route Configuring IPv6 MBGP route summarization To reduce the routing table size on medium and large BGP networks you must configure route summarization on IPv6 MBGP routers BGP supports only manual summarization of IPv6 multicast routes Follow these steps to configure IPv6 MBGP route summarization To do Use the command Remarks Enter system view system view Enter BGP ...

Page 422: ...lt Configure filter policies as needed If you configure multiple filter policies they will be applied in the following order filter policy export peer filter policy export peer as path acl export peer ipv6 prefix export peer route policy export A filter policy can be applied only after the previous one is passed routing information can be advertised only after passing all the filter policies confi...

Page 423: ...6 address route policy route policy name import Specify an IPv6 ACL to filter routes from a peer peer group peer ipv6 group name ipv6 address filter policy acl6 number import Specify an AS path ACL to filter IPv6 BGP routing information from a peer peer group peer ipv6 group name ipv6 address as path acl as path acl number import Specify an IPv6 prefix list to filter routes from a peer peer group ...

Page 424: ...complete the following tasks Enable IPv6 Configure the IPv6 MBGP basic functions Configuring IPv6 MBGP route preferences Follow these steps to configure IPv6 MBGP route preferences To do Use the command Remarks Enter system view system view Enter BGP view bgp as number Enter IPv6 MBGP address family view ipv6 family multicast Configure preferences for external internal local IPv6 MBGP routes prefe...

Page 425: ...t Enable the comparison of the MED for routes from confederation peers bestroute med confederation Optional Disabled by default Configuring the NEXT_HOP attribute You can use the peer next hop local command to specify the local router as the next hop of routes sent to an IPv6 multicast iBGP peer or peer group If load balancing is configured the router specifies itself as the next hop of routes sen...

Page 426: ...pecify the number of times that the local AS number can appear in the AS PATH of routes from the peer peer group peer ipv6 group name ipv6 address allow as loop number Optional Not allowed by default Disable IPv6 MBGP from considering the AS_PATH during best route selection bestroute as path neglect Optional Enabled by default Configure updates to a peer peer group to carry only the public AS numb...

Page 427: ... refresh for a peer peer group peer ipv6 group name ipv6 address capability advertise route refresh Optional Enabled by default Perform a manual soft reset If the peer does not support route refresh use the peer keep all routes command to save all the route updates from the peer and then use the refresh bgp ipv6 multicast command to soft reset IPv6 MBGP connections to refresh the IPv6 MBGP routing...

Page 428: ...bility advertise route refresh Optional Enabled by default If this feature is not enabled you need to configure this command Enable the non standard ORF capability for a BGP peer peer group peer group name ipv6 address capability advertise orf non standard Optional By default standard BGP ORF capability defined in RFC 5291 and RFC 5292 is supported If this feature is not enabled you need to config...

Page 429: ...nfiguration organize some IPv6 MBGP peers that have the same route update policy into a peer group A policy configured for a peer group applies to all the members in the group Follow these steps to configure an IPv6 MBGP peer group To do Use the command Remarks Enter system view system view Enter BGP view bgp as number Enter IPv6 address family view ipv6 family Create an IPv6 BGP peer group group ...

Page 430: ...amily view ipv6 family multicast Advertise the community attribute to an IPv6 MBGP peer peer group peer ipv6 group name ipv6 address advertise community Required By default no community attribute is advertised to any peer group peer Advertise the extended community attribute to an IPv6 MBGP peer peer group peer ipv6 group name ipv6 address advertise ext community Required By default no extended co...

Page 431: ...void routing loops Displaying and maintaining IPv6 MBGP Displaying IPv6 MBGP To do Use the command Remarks Display the IPv6 MBGP peer group information display bgp ipv6 multicast group ipv6 group name begin exclude include regular expression Available in any view Display IPv6 MBGP routing information injected with the network command display bgp ipv6 multicast network begin exclude include regular...

Page 432: ...ailable in any view Display IPv6 MBGP routing flap statistics display bgp ipv6 multicast routing table flap info regular expression as regular expression as path acl as path acl number ipv6 address prefix length longer match begin exclude include regular expression Available in any view Display the IPv6 MBGP routes received from or advertised to the IPv6 MBGP peer or peer group display bgp ipv6 mu...

Page 433: ... PIM SM 2 is in AS 200 OSPFv3 is the IGP in the two ASs and IPv6 MBGP runs between the two ASs to exchange IPv6 multicast route information The IPv6 multicast source belongs to IPv6 PIM SM 1 and the receiver belongs to IPv6 PIM SM 2 Configure VLAN interface 101 of Switch A and Switch B as the C BSR and C RP of the respective IPv6 PIM SM domains Figure 104 Network diagram for IPv6 MBGP configuratio...

Page 434: ... Switch A Enable IPv6 multicast routing on Switch C enable IPv6 PIM SM on each interface and enable MLD on the host side interface VLAN interface 200 SwitchC system view SwitchC multicast ipv6 routing enable SwitchC interface vlan interface 102 SwitchC Vlan interface102 pim ipv6 sm SwitchC Vlan interface102 quit SwitchC interface vlan interface 104 SwitchC Vlan interface104 pim ipv6 sm SwitchC Vla...

Page 435: ...direct SwitchA bgp af ipv6 mul quit SwitchA bgp quit On Switch B configure the IPv6 MBGP peers and redistribute OSPF routes SwitchB ipv6 SwitchB bgp 200 SwitchB bgp router id 2 2 2 2 SwitchB bgp ipv6 family SwitchB bgp af ipv6 peer 1001 1 as number 100 SwitchB bgp af ipv6 import route ospfv3 1 SwitchB bgp af ipv6 quit SwitchB bgp ipv6 family multicast SwitchB bgp af ipv6 mul peer 1001 1 enable Swi...

Page 436: ... wwalerts After registering you will receive email notification of product enhancements new driver versions firmware updates and other product resources Related information Documents To find related documents browse to the Manuals page of the HP Business Support Center website http www hp com support manuals For related documentation navigate to the Networking section and select a networking categ...

Page 437: ...eparated by vertical bars from which you select one choice multiple choices or none 1 n The argument or keyword and argument combination before the ampersand sign can be entered 1 to n times A line that starts with a pound sign is comments GUI conventions Convention Description Boldface Window names button names field names and menu items are in bold text For example the New User window appears cl...

Page 438: ...ting capable device such as a router or Layer 3 switch Represents a generic switch such as a Layer 2 or Layer 3 switch or a router that supports Layer 2 forwarding and other Layer 2 features Port numbering in examples The port numbers in this document are for illustration only and might be unavailable on your device ...

Page 439: ...uisites 345 Configuration prerequisites 30 Configuration prerequisites 407 Configuration prerequisites 221 Configuration prerequisites 199 Configuration prerequisites 369 Configuration prerequisites 367 Configuration prerequisites 22 Configuration prerequisites 128 Configuration prerequisites 226 Configuration prerequisites 195 Configuration prerequisites 222 Configuration prerequisites 408 Config...

Page 440: ...Configuring fast leave processing 250 Configuring IGMP fast leave processing 98 Configuring IGMP message options 95 Configuring IGMP queries and responses 27 Configuring IGMP query and response parameters 96 Configuring IGMP report suppression 32 Configuring IGMP versions 92 Configuring inbound IPv6 MBGP route filtering 411 Configuring inbound MBGP route filtering 225 Configuring IPv4 MBGP peer gr...

Page 441: ... 31 Configuring the IPv6 multicast forwarding table size 296 Configuring the IPv6 SSM group range 368 Configuring the maximum number of equal cost routes for load balancing 417 Configuring the maximum number of IPv6 multicast groups that an interface can join 311 Configuring the maximum number of MBGP routes for load balancing 231 Configuring the maximum number of multicast groups that a port can ...

Page 442: ...the same subnet 110 Injecting a local IPv6 MBGP route 408 Inter AS multicast configuration leveraging BGP routes 202 Inter AS multicast configuration leveraging static RPF peers 208 Inter RP communication faults in Anycast RP application 219 Introduction to IGMPv1 84 Introduction to MLD snooping 240 Introduction to multicast routing and forwarding 67 Introduction to the multi instance concept 12 I...

Page 443: ...onfiguration example 166 PIM SM overview 114 PIM SSM configuration example 182 PIM SSM configuration task list 153 PIM SSM overview 125 Port based multicast VLAN configuration 63 Port based multicast VLAN configuration example 288 Principle of IGMP snooping 14 Processing of IPv6 multicast protocol messages 278 Processing of multicast protocol messages 53 Protocols and standards 127 Protocols and s...

Reviews:

No comments

Related manuals for A5500 EI Switch Series

Brand: D-Link Pages: 267

Brand: D-Link Pages: 99

Brand: D-Link Pages: 5

Brand: D-Link Pages: 15

AirPro DWL-6000AP

Brand: D-Link Pages: 65

AirPlus XtremeG Ethernet-to-Wireless Bridge...

Brand: D-Link Pages: 31

Brand: Jøtul Pages: 20

Brand: ProCurve Pages: 2

3C8567 - SuperStack II NETBuilder SI 567...

Brand: 3Com Pages: 6

Brand: Alfa Network Pages: 11

Brand: R.V.R. Elettronica Pages: 171

TERASTATION HS-D1.0TGL/R5

Brand: Buffalo Pages: 2

Brand: Datacom Pages: 45

Brand: Avaya Pages: 90

ConnectPort WAN GPS

Brand: Digi Pages: 2

Transport DR64-C

Brand: Digi Pages: 16

Brand: Digi Pages: 20

Brand: 3Egreen Pages: 10

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands