Huawei S3700 Series Скачать руководство пользователя страница 343 | Manualshive

Страница: 343 / 398

Huawei S3700 Series Скачать руководство пользователя страница 343

MasterPriority : 90
Preempt : YES Delay Time : 0
TimerRun : 1
TimerConfig : 1
Auth Type : NONE
Virtual Mac : 0000-5e00-010a
Check TTL : YES
Config type : normal-vrrp
Config track link-bfd down-number : 0

Track BFD : 1 Priority reduced : 10

BFD-session state : UP

7.6 Configuring VRRP Security

On a network at security risks, by configuring an authentication mode of VRRP packets, you
can protect devices against attacks.

7.6.1 Establishing the Configuration Task

Before configuring VRRP security authentication, familiarize yourself with the applicable
environment and complete pre-configuration task of configuring a VRRP backup group.

Applicable Environment

In a secure network, by default, the switch considers received and sent VRRP packets real and
valid without authenticating them. In this case, you need not configure an authentication key.

VRRP provides simple text authentication and MD5 authentication for networks that are
vulnerable to attacks. In simple text authentication mode, a string of 1 to 8 characters can be
configured as the authentication key. In MD5 authentication mode, a string of 1 to 8 characters
in plain text or a string of 24 characters in encrypted text can be configured as the authentication
key.

The process of simple text authentication is as follows:

l

Device that sends packets adds the authentication key into VRRP packets.

l

Device that receives packets compares the received authentication key with the local
authentication key. If they are the same, VRRP packets are valid. Otherwise, the switch
discards the received VRRP packets and sends a Trap packet to the Network Management
System (NMS).

The process of MD5 authentication is as follows:

l

The switch adds the authentication key to the VRRP packet.

l

The receiver generates a summary based on the locally configured authentication key and
compares the summary of the received VRRP packet with the locally generated summary.
If they are the same, the receiver considers the received VRRP packet valid. Otherwise,
the receiver considers the received VRRP packet illegal and discards it, and then reports a
trap message to the network management system.

Pre-configuration Tasks

Before configuring the VRRP security function, complete the following tasks:

l

Configuring network layer attributes for interfaces to connect the network

l

Configuring the VRRP backup group

Quidway S3700 Series Ethernet Switches
Configuration Guide - Reliability

7 VRRP and VRRP6 Configuration

Issue 01 (2011-10-26)

Huawei Proprietary and Confidential

Copyright © Huawei Technologies Co., Ltd.

331

«
...
341
342
343
344
345
...
»

Содержание S3700 Series

Страница 1: ...Quidway S3700 Series Ethernet Switches V100R006C01 Configuration Guide Reliability Issue 01 Date 2011 10 26 HUAWEI TECHNOLOGIES CO LTD ...

Страница 2: ...be within the purchase scope or the usage scope Unless otherwise specified in the contract all statements information and recommendations in this document are provided AS IS without warranties guarantees or representations of any kind either express or implied The information in this document is subject to change without notice Every effort has been made in the preparation of this document to ensu...

Страница 3: ...ates a hazard with a high level of risk which if not avoided will result in death or serious injury WARNING Indicates a hazard with a medium or low level of risk which if not avoided could result in minor or moderate injury CAUTION Indicates a potentially hazardous situation which if not avoided could result in equipment damage data loss performance degradation or unexpected results TIP Indicates ...

Страница 4: ...d in braces and separated by vertical bars A minimum of one item or a maximum of all items can be selected x y Optional items are grouped in brackets and separated by vertical bars Several items or no item can be selected 1 n The parameter before the sign can be repeated 1 to n times A line starting with the sign is comments Change History Updates between document issues are cumulative Therefore t...

Страница 5: ...us of an Interface 10 1 3 4 Checking the Configuration 10 1 4 Maintaining DLDP 11 1 4 1 Clearing the Statistics of DLDP 11 1 5 Configuration Examples 12 1 5 1 Example for Configuring DLDP 12 2 Smart Link and Monitor Link Configuration 15 2 1 Smart Link and Monitor Link 16 2 2 Configuring a Smart Link Group 16 2 2 1 Establishing the Configuration Task 16 2 2 2 Creating and Enabling a Smart Link Gro...

Страница 6: ...sic Functions of Smart Link 33 2 6 2 Example for Configuring Load Balancing Between Active and Standby Links of a Smart Link Group 37 2 6 3 Example for Applying the Smart Link Functions 41 3 RRPP Configuration 47 3 1 Overview of RRPP 48 3 2 RRPP Features Supported by the S3700 48 3 3 Configuring RRPP Functions 53 3 3 1 Establishing the Configuration Task 53 3 3 2 Creating Instances 53 3 3 3 Config...

Страница 7: ...ernet OAM Supported by the S3700 150 4 3 Configuring Basic EFM OAM 155 4 3 1 Establishing the Configuration Task 155 4 3 2 Enabling EFM OAM Globally 156 4 3 3 Configuring the Working Mode of EFM OAM on an Interface 156 4 3 4 Optional Setting the Maximum Size of an EFM OAMPDU 157 4 3 5 Enabling EFM OAM on an Interface 157 4 3 6 Checking the Configuration 158 4 4 Configuring EFM OAM Link Monitoring ...

Страница 8: ...2 Checking the Configuration 184 4 9 Configuring Related Parameters of Ethernet CFM 186 4 9 1 Establishing the Configuration Task 187 4 9 2 Optional Configuring the RMEP Activation Time 188 4 9 3 Optional Configuring the Anti Jitter Time During Alarm Restoration 189 4 9 4 Optional Configuring the Anti Jitter Time During Alarm Generation 189 4 10 Fault Verification on the Ethernet 190 4 10 1 Establ...

Страница 9: ...n Between an EFM OAM Module and an Interface 233 4 18 6 Example for Configuring Association Between an Ethernet CFM Module and an Interface 236 4 18 7 Example for Configuring Association Between an EFM OAM Module and an Ethernet CFM Module 239 4 18 8 Example for Configuring Association Between Ethernet CFM with Ethernet CFM 243 4 18 9 Example for Associating Ethernet CFM with RRPP 247 5 ITU T Reco...

Страница 10: ...3 6 5 1 Establishing the Configuration Task 293 6 5 2 Enabling BFD Globally 294 6 5 3 Configuring a Static BFD Session with Automatically Negotiated Discriminators 294 6 5 4 Checking the Configuration 295 6 6 Adjusting BFD Parameters 296 6 6 1 Establishing the Configuration Task 296 6 6 2 Adjusting the BFD Detection Time 296 6 6 3 Adding the Description of a BFD Session 297 6 6 4 Configuring the B...

Страница 11: ...ation Mode of VRRP Packets 332 7 6 3 Checking the Configuration 333 7 7 Adjusting and Optimizing VRRP 333 7 7 1 Establishing the Configuration Task 333 7 7 2 Configuring the Interval for Sending VRRP Advertising Messages 334 7 7 3 Configuring the Preemption Delay Time of Backup Group Switch s 336 7 7 4 Enabling the Reachability Test of the Virtual IP Address 338 7 7 5 Disabling a Switch from Check...

Страница 12: ...ration Task 375 9 3 2 Configuring Local MAC Swap Loopback 376 9 3 3 Enabling the MAC Swap Loopback Function 377 9 3 4 Disabling the MAC Swap Loopback Function 377 9 3 5 Checking the Configuration 378 9 4 Configuring Remote MAC Swap Loopback 379 9 4 1 Establishing the Configuration Task 379 9 4 2 Configuring Remote MAC Swap Loopback 380 9 4 3 Enabling the MAC Swap Loopback Function 380 9 4 4 Disabl...

Страница 13: ...This section describes how to configure DLDP functions 1 3 Resetting the DLDP Status This section describes how to reset the DLDP status 1 4 Maintaining DLDP This section describes how to maintain DLDP 1 5 Configuration Examples This section provides a configuration example of DLDP Quidway S3700 Series Ethernet Switches Configuration Guide Reliability 1 DLDP Configuration Issue 01 2011 10 26 Huawe...

Страница 14: ...nnection of one fiber SwitchB Ethernet0 0 1 Ethernet0 0 1 SwitchA RX TX RX TX DLDP can detect the link status of fibers or copper twisted pairs If a unidirectional link exists DLDP automatically disables the interface or prompts the user to manually disable the interface This prevents network faults Currently the S3700 supports DLDP detection for up to 256 neighbors As a link layer protocol DLDP w...

Страница 15: ...o ends of a pair of fibers or a copper twisted pair to monitor the link status If a unidirectional link exists DLDP automatically disables the interface connected to the link or prompts you to manually disable the interface Unidirectional links can be tested only when the devices on both ends of the fibers and copper twisted pairs support DLDP functions Pre configuration Tasks Before configuring D...

Страница 16: ... two types of unidirectional links that is the crossed connection of fibers and the connection where one fiber is disconnected To detect the unidirectional link caused by disconnection of one fiber you need to manually set the rate and full duplex mode of the interconnected ports otherwise DLDP does not take effect even if it is enabled When a bidirectional link changes to a unidirectional link th...

Страница 17: ...efore the S3700 must be configured to use BPDU MAC address 10F E200 0001 to send DLDP packets Step 3 Run interface interface type interface number The interface view is displayed Or run port group port group name The port group view is displayed Step 4 Run dldp compatible mode enable The DLDP compatible mode is enabled If two devices are connected by using two links the DLDP compatible mode must b...

Страница 18: ...nterval for sending Advertisement packets is set By default the interval for sending Advertisement packets is 5 seconds The interval for sending Advertisement packets must be smaller than one third of the STP convergence time If the interval is too long STP loops occur before a unidirectional link is shut down on a DLDP interface If the interval is too short traffic on the network increases NOTE E...

Страница 19: ...onding interface in either of the following ways l Manual mode This mode can prevent DLDP from blocking the interface immediately to affect packet forwarding when the network performance is poor It is a compromise mode used to prevent an interface from being blocked because of incorrect judgment of the system In this mode DLDP detects the unidirectional link and the network administrator blocks th...

Страница 20: ...tion password otherwise the DLDP authentication fails DLDP works normally only after the DLDP authentication succeeds End 1 2 9 Checking the Configuration Procedure Step 1 Run the display dldp interface interface type interface number command to check the DLDP configuration and neighbor entries End Example Run the display dldp command and you can view the operation mode of DLDP interval for sendin...

Страница 21: ...e state to DLDP Down automatically according to the configuration To enable the interface to detect unidirectional links again you can reset the DLDP state of the interface The DLDP status of the interface after recovery depends on the physical status of the interface If the physical status is Down the DLDP status of the interface changes to Inactive If the physical status is Up the DLDP status ch...

Страница 22: ...erface group The dldp reset command takes effect only when DLDP is enabled globally and on interfaces Procedure Step 1 Run system view The system view is displayed Step 2 Run interface interface type interface number The Ethernet interface view is displayed Or run port group port group name The interface group view is displayed Step 3 Run dldp reset The DLDP status is reset on the interface or int...

Страница 23: ...nk state up The neighbor number of the port is 1 Neighbor mac address 0000 0000 0100 Neighbor port index 21 Neighbor state two way Neighbor aged time 13 Interface Ethernet0 0 2 DLDP port state advertisement DLDP link state up The neighbor number of the port is 1 Neighbor mac address 0000 0000 1100 Neighbor port index 22 Neighbor state two way Neighbor aged time 12 1 4 Maintaining DLDP This section...

Страница 24: ...itch B still sends optical signals and Switch B can receive optical signals because the Tx fiber on Switch A is working normally Therefore the link status on Switch B is still Up If Switch B does not receive any DLDP packet from Switch A within the neighbor aging time Eth 0 0 1 of Switch B changes to unidirectional state To prevent network faults DLDP disables Eth 0 0 1 of Switch B Figure 1 3 Disc...

Страница 25: ...ding Advertisement packets to 80 seconds SwitchA dldp interval 80 Step 6 Set the timeout interval of the DelayDown timer to 4 seconds SwitchA dldp delaydown timer 4 Step 7 Configure DLDP to automatically shut down the interface where a unidirectional link is detected SwitchA dldp unidirectional shutdown auto Step 8 Set the authentication mode of DLDP packets to simple password authentication and s...

Страница 26: ...or number of the port is 0 SwitchB display dldp interface ethernet 0 0 1 Interface Ethernet0 0 1 DLDP port state disable DLDP link state up The neighbor number of the port is 0 End Configuration Files l Configuration file of Switch A sysname SwitchA dldp enable dldp interval 80 dldp delaydown timer 4 dldp authentication mode simple 12345 interface Ethernet0 0 1 dldp enable undo negotiation auto re...

Страница 27: ...ntrol Policy in a Smart Link Group This section describes how to configure the advanced functions of the Smart Link group such as lock of data flows and manual switchover between links 2 4 Configuring a Monitor Link Group This section describes how to create a Monitor Link group configure the uplink and downlink interfaces and enable the revertive switching 2 5 Maintaining the Smart Link This sect...

Страница 28: ...nk is introduced as a supplement to the Smart Link This technology supports the association of interfaces A Monitor Link group consists of an uplink interface and several downlink interfaces If the uplink interface fails the Monitor Link group automatically disables the downlink interfaces When the uplink interface recovers the downlink interfaces also recover 2 2 Configuring a Smart Link Group Th...

Страница 29: ...in milliseconds Pre configuration Tasks Before configuring the basic functions of a Smart Link group complete the following task l Ensuring that the Multiple Spanning Tree Protocol MSTP and Rapid Ring Protection Protocol RRPP are not enabled on the master and slave interfaces of the Smart Link group Data Preparation To configure basic functions of the Smart Link group you need the following data N...

Страница 30: ...to the protected instance For details about STP instance configuration see Configuring and Activating an MST Region NOTE By default a Smart Link group protects all VLANs and the protected vlan reference instance command is applicable only to multicast services End 2 2 3 Configuring the Master and Slave Interfaces in a Smart Link Group Context The slave interface of a Smart Link group is blocked wh...

Страница 31: ... a master interface and a slave interface By default a Smart Link group does not have interfaces End 2 2 4 Enabling the Sending of Flush Packets Context When the active and standby links of the Smart Link group switch the existing forwarding entries no longer apply to the new topology All the MAC address entries and ARP entries on the network need to be updated Then the Smart Link group sends Flus...

Страница 32: ...ntrol VLAN ID and password contained in Flush packets on both devices must be the same That is the control VLAN ID and password in Flush packets sent by the device must be the same as the control VLAN ID and password in Flush packets received by the device NOTE After the flush send control vlan command is run the interface cannot be added to the control VLAN You need to configure the interface to ...

Страница 33: ...d 2 2 6 Optional Enabling Revertive Switching and Setting the WTR Time Context When the active link in a Smart Link group fails the traffic is automatically switched to the standby link The original active link does not preempt the traffic but remains blocked after recovering from the fault To switch the traffic back to the active link you can adopt either of the following methods l Enable the rev...

Страница 34: ...ace type interface number The view of the downlink interface of the SwitchA SwitchB or SwitchC is displayed Step 3 Run smart link flush receive control vlan vlan id password simple password The interface is enabled to receive Flush packets and the control VLAN ID and password contained in Flush packets are set The password is optional If no password is specified no password is used for authenticat...

Страница 35: ...Run system view The system view is displayed Step 2 Run smart link group group id The Smart Link group view is displayed Step 3 Run smart link hold time hold time The holdtime of the Smart Link switchover is set End 2 2 9 Enabling the Functions of the Smart Link Group Context After the functions of the Smart Link group are enabled the standby interface in the group is blocked After the functions o...

Страница 36: ...layed l The functions of the Smart Link group are enabled Therefore Smart link group was enabled is displayed l The status of the interfaces in the Smart Link group is displayed including the role of each interface in the group number of sent Flush packets and time when the last Flush packets are sent As shown in the preceding information Eth 0 0 1 is the master interface in the Smart Link group t...

Страница 37: ...ou need to configure a flow control policy for the Smart Link group Through the configuration you can forcibly lock the data flows to the standby link and switch them back to the active link after the inspection is complete Figure 2 2 Data flow control policy SwitchA SwitchE SwitchB SwitchC Smart Link group Active link SwitchD Inactive link Pre configuration Tasks Before configuring a flow control...

Страница 38: ...lock Data flows are locked on the master interface End 2 3 3 Locking Data Flows on the Slave Interface Context CAUTION If data flows are locked on the slave interface they cannot be switched to the master interface automatically when the slave interface fails As a result traffic is interrupted Do as follows on SwitchD shown in Figure 2 2 Procedure Step 1 Run system view The system view is displaye...

Страница 39: ...terface exist and are both in Up state l The smart link command is not run to lock data streams The smart link manual switch command can be repeatedly used in the Smart Link group view Each time you run the command the active standby switchover is performed between links Packet loss occurs during the switchover The duration is measured in milliseconds End 2 3 5 Checking the Configuration Procedure...

Страница 40: ...le Environment As shown in Figure 2 3 the uplink of Switch A is faulty Although Smart Link is enabled on Switch C link switching is not performed because the active link is not faulty In this case services are interrupted To enable the Smart Link group to respond more quickly to the faults of the uplink you need to configure the Monitor Link function on the device connected to the active link to m...

Страница 41: ...ink Monitor Link to monitor the status of the uplink When a fault occurs the active link of the Smart Link group is blocked quickly The Smart Link group can then detect the fault and switch the traffic to the inactive link This shortens the service interruption duration Pre configuration Tasks Before configuring the basic functions of the Monitor Link group complete the following tasks l 2 2 Confi...

Страница 42: ...view is displayed End 2 4 3 Configuring the Uplink and Downlink Interfaces in a Monitor Link Group Context Do as follows on SwitchA and SwitchB Procedure Step 1 Run system view The system view is displayed Step 2 Run monitor link group group id The Monitor Link group view is displayed The S3700 supports a maximum of 16 Monitor Link groups Step 3 Run port interface type interface number downlink do...

Страница 43: ...or when an uplink interface in Down state becomes Up all the downlink interfaces in the Monitor Link group become Up l When an uplink interface is deleted from the Monitor Link group or when an uplink interface in Up state becomes Down all the downlink interfaces in the Monitor Link group become Down To add a Smart Link group to a Monitor Link group you need to delete the existing uplink interface...

Страница 44: ...Last up time Last down time GigabitEthernet0 0 1 UpLk UP 0000 00 00 00 00 00 UTC 00 00 0000 00 00 00 00 00 UTC 00 00 GigabitEthernet0 0 2 DwLk 1 DOWN 0000 00 00 00 00 00 UTC 00 00 0000 00 00 00 00 00 UTC 00 00 2 5 Maintaining the Smart Link This section describes how to debug the Smart Link 2 5 1 Debugging the Smart Link Context NOTE Debugging affects the performance of the system So after debuggi...

Страница 45: ...ions of Smart Link SwitchC SwitchB Ethernet0 0 1 Ethernet0 0 2 SwitchA Ethernet0 0 1 Ethernet0 0 1 Smart Link group Active link Inactive link Configuration Roadmap The configuration roadmap is as follows 1 Configure the Smart Link group on Switch A and add the uplink interfaces to the Smart Link group 2 Enable revertive switching on Switch A 3 Enable Switch A to send Flush packets 4 Enable Switch ...

Страница 46: ...itchA Ethernet0 0 1 quit SwitchA interface ethernet 0 0 2 SwitchA Ethernet0 0 2 stp disable SwitchA Ethernet0 0 2 quit SwitchA smart link group 1 SwitchA smlk group1 port ethernet 0 0 1 master SwitchA smlk group1 port ethernet 0 0 2 slave Step 3 Enable revertive switching and set the WTR time Configure Switch A SwitchA smlk group1 restore enable SwitchA smlk group1 timer wtr 30 Step 4 Enable the f...

Страница 47: ...0 0 1 is in Inactive state and Eth 0 0 2 is in Active state SwitchA interface ethernet 0 0 1 SwitchA Ethernet0 0 1 undo shutdown SwitchA Ethernet0 0 1 display smart link group 1 Smart Link group 1 information Smart Link group was enabled Wtr time is 30 sec There is no Load Balance There is no protected vlan reference instance DeviceID 0025 9e80 2494 Control vlan ID 10 Member Role State Flush Count...

Страница 48: ...imer wtr 30 flush send control vlan 10 password simple 123 return l Configuration file of Switch B sysname SwitchB vlan batch 10 interface Ethernet0 0 1 port link type trunk port trunk allow pass vlan 10 smart link flush receive control vlan 10 password simple 123 return l Configuration file of Switch C sysname SwitchC vlan batch 10 interface Ethernet0 0 1 port link type trunk port trunk allow pas...

Страница 49: ...The service interruption duration is restricted to millisecond level Figure 2 5 Networking diagram for configuring load balancing between active and standby links of a Smart Link group MAN SwitchC SwitchB Etherent0 0 1 Etherent0 0 2 Active link Inactive link SwitchA Etherent0 0 1 Etherent0 0 1 Smart Link group VLAN 100 500 Configuration Roadmap The configuration roadmap is as follows 1 On Switch A...

Страница 50: ...vlan 100 500 SwitchA mst region active region configuration SwitchA mst region quit Step 3 Add the uplink interfaces to the Smart Link group and specify the master and slave interfaces Ensure that STP is disabled on the uplink interfaces Configure Switch A SwitchA interface ethernet 0 0 1 SwitchA Ethernet0 0 1 stp disable SwitchA Ethernet0 0 1 quit SwitchA interface ethernet 0 0 2 SwitchA Ethernet...

Страница 51: ...ured SwitchA display smart link group 1 Smart Link group 1 information Smart Link group was enabled Wtr time is 30 sec Load Balance Instance 10 There is no protected vlan reference instance DeviceID 0025 9e80 2494 Control vlan ID 10 Member Role State Flush Count Last Flush Time Ethernet0 0 1 Master Active 1 0000 00 00 00 00 00 UTC 00 00 Ethernet0 0 2 Slave Inactive 0 0000 00 00 00 00 00 UTC 00 00 ...

Страница 52: ...Files l Configuration file of Switch A sysname SwitchA vlan batch 10 100 500 stp region configuration instance 10 vlan 10 100 500 active region configuration interface Ethernet0 0 1 port link type trunk port trunk allow pass vlan 10 100 500 stp disable interface Ethernet0 0 2 port link type trunk port trunk allow pass vlan 10 100 500 stp disable smart link group 1 load balance instance 10 slave re...

Страница 53: ...ch C are connected to uplink devices in dual homed mode One out of each link pair needs to be blocked to prevent loops When the active link fails the data flows can be rapidly switched to the standby link to ensure normal services In addition a monitoring mechanism is required to prevent service interruption caused by faults of the uplink This monitoring mechanism enables the downlink to quickly d...

Страница 54: ...o the groups 2 Configure Monitor Link groups on Switch A and Switch B 3 Enable Switch A and Switch C to send Flush packets 4 Enable Switch A and Switch C to receive Flush packets Data Preparation To complete the configuration you need the following data l Numbers of interfaces on Switch A Switch B and Switch C l IDs of the Smart Link groups l Control VLAN ID and password contained in Flush packets...

Страница 55: ...hA interface ethernet 0 0 2 SwitchA Ethernet0 0 2 stp disable SwitchA Ethernet0 0 2 quit SwitchA smart link group 1 SwitchA smlk group1 port ethernet 0 0 1 master SwitchA smlk group1 port ethernet 0 0 2 slave Configure Switch C SwitchC interface ethernet 0 0 1 SwitchC Ethernet0 0 1 stp disable SwitchC Ethernet0 0 1 quit SwitchC interface ethernet 0 0 2 SwitchC Ethernet0 0 2 stp disable SwitchC Eth...

Страница 56: ... to the Monitor Link groups Configure Switch A SwitchA monitor link group 1 SwitchA mtlk group1 smart link group 1 uplink SwitchA mtlk group1 port ethernet 0 0 3 downlink 1 Configure Switch B SwitchB monitor link group 2 SwitchB mtlk group2 port ethernet 0 0 1 uplink SwitchB mtlk group2 port ethernet 0 0 3 downlink 1 Step 8 Set the revertive switching interval of the Monitor Link groups Configure ...

Страница 57: ...e interface Ethernet0 0 3 port link type trunk port trunk allow pass vlan 10 smart link flush receive control vlan 10 password simple 123 smart link group 1 restore enable smart link enable port Ethernet0 0 1 master port Ethernet0 0 2 slave timer wtr 30 flush send control vlan 10 password simple 123 monitor link group 1 smart link group 1 uplink port Ethernet0 0 3 downlink 1 timer recover time 10 ...

Страница 58: ...rface Ethernet0 0 2 port link type trunk port trunk allow pass vlan 10 stp disable smart link group 2 restore enable smart link enable port Ethernet0 0 1 master port Ethernet0 0 2 slave timer wtr 30 flush send control vlan 10 password simple 123 return Quidway S3700 Series Ethernet Switches Configuration Guide Reliability 2 Smart Link and Monitor Link Configuration Issue 01 2011 10 26 Huawei Propr...

Страница 59: ...ster node on an RRPP ring blocks or opens secondary ports according to the ring status In this manner if a fault occurs on a node or a link on the RRPP ring traffic can be fast switched to the backup link and data loops can be prevented 3 4 Configuring RRPP Multi Instance RRPP multi instance is based on domains Multiple RRPP domains can be configured on a physical ring In a domain all ports nodes ...

Страница 60: ... layer protocol used for Ethernet rings RRPP can prevent broadcast storms caused by data loops on a complete Ethernet ring When a link on the Ethernet ring fails nodes on the ring can restore communication immediately through the backup link Compared with other Ethernet ring technologies RRPP has the following features l Convergence time is not related to the number of nodes on a ring network Thus...

Страница 61: ...RRPP major ring and subring If an RRPP domain consists of multiple crossed RRPP rings you can configure one ring as the major ring and other rings as subrings by setting their levels An RRPP domain has only one major ring Protocol packets of subrings are transmitted in the major ring as data packets and protocol packets of the major ring are transmitted only in the major ring l Control VLAN A VLAN...

Страница 62: ...erface Hello Timer and Fail Timer When RRPP detects the link status on the Ethernet ring the master node sends Hello packets according to the Hello timer and determines whether the secondary interface receives the Hello packets according to the Fail timer l The value of the Hello timer specifies the interval at which the master node sends Hello packets from the primary interface l The Fail timer s...

Страница 63: ...witch E Domain 2 is configured with Instance 2 which represents VLANs 201 to 400 When Switch C is in Complete state its secondary interface is blocked Therefore packets of VLANs 201 to 400 are transmitted though the path Switch B Switch D Switch E Figure 3 2 Networking diagram of RRPP multi instance Master 2 Master 1 P S Block SwitchA Backbone network P S Block Block P S Primary port Secondary por...

Страница 64: ... channel of protocol packets on the major ring There are four subrings in Figure 3 3 namely ring 2 in domain 1 ring 3 in domain 1 ring 2 in domain 2 and ring 3 in domain 2 The subrings have the same major ring therefore they can be added to a ring group After the subrings are added to a ring group only one subring sends Edge Hello packets reducing the number of Edge Hello packets l Link Up Delay t...

Страница 65: ... rings When configuring RRPP you must configure all nodes on the RRPP ring NOTE The RRPP or the STP can not coexist on a port RRPP contains no auto election mechanism Therefore to ensure the detection and protection of the ring network through RRPP you must correctly configure each node on the ring Pre Configuration Tasks Before configuring RRPP functions complete the following tasks l Establishin...

Страница 66: ...is set to 16 The S3700 maps VLAN 1 to instance 1 VLAN 2 to instance 2 VLAN 16 to instance 16 and so forth The control VLANs of the major ring and the subrings must be contained in the VLAN list A domain supports up to 49 instances among which instance 0 is the default instance and does not need to be created By default all VLANs are mapped to instance 0 Step 4 Run active region configuration The c...

Страница 67: ...P interface are specified After you specify the control VLAN by running the control vlan command in the RRPP domain view and run the ring node mode command all the interfaces on the RRPP ring allow packets of this control VLAN to pass through Therefore you need only to specify the data VLANs in this step Step 5 Run stp disable STP is disabled on the RRPP interface By default STP is enabled on all ...

Страница 68: ...control VLAN is created The control VLAN specified by vlan id and the sub control VLAN specified by vlan id 1 must be uncreated and not used in port trunk mapping or stacking mode An RRPP domain is configured with two control VLANs the primary control VLAN and the sub control VLAN You need to specify only the primary control VLAN The VLAN whose ID is one more than the ID of the primary control VLA...

Страница 69: ... domain cannot be configured as a protected VLAN of another domain l The control VLAN must be included in the protected VLANs otherwise the RRPP ring cannot be configured l The control VLAN can be mapped to other instances before the RRPP ring is created After the RRPP ring is created the mapping cannot be changed unless you delete the RRPP domain l When the mapping between an instance and VLANs c...

Страница 70: ... common port interface type interface number edge port interface type interface number The edge node and assistant edge node of a subring are configured The common port of the edge node and assistant edge node must be on the major ring The system automatically sets the level of the ring where the edge node and assistant edge node reside to 1 End 3 3 8 Enabling the RRPP Ring The protocol packets of...

Страница 71: ...p enable The RRPP protocol is enabled End 3 3 10 Optional Setting the Values of RRPP Domain Timers Two timers that is the Hello timer and the Fail timer are used when master nodes are sending and receiving RRPP protocol packets The Hello timer is used when primary ports are sending Hello packets The Fail timer is used when secondary ports are receiving the Hello packets sent by the local node Cont...

Страница 72: ...l Run the display rrpp verbose domain domain id ring ring id command to check detailed information about an RRPP domain l Run the display rrpp statistics domain domain id ring ring id command to check the statistics of packets in an RRPP domain End Example Run the display stp region configuration command and you can view the mapping between MSTIs and VLANs The following is an example Quidway displ...

Страница 73: ...t0 0 2 Port status BLOCKED Run the display rrpp statistics command and you can view the statistics of sent and received packets The following is an example Quidway display rrpp statistics domain 1 ring 1 RRPP Ring 1 Ring Level 0 Node Mode Master Is Active Yes Primary port GigabitEthernet0 0 1 Packet LINK COMMON COMPLETE EDGE MAJOR Packet Direct HEALTH DOWN FDB FDB HELLO FAULT Total Send 2934 0 1 1...

Страница 74: ...3 4 Networking diagram of RRPP multi instance CEA UPEA PE AGG CEC UPEB UPEC UPED IPTV VLAN101 200 IPTV VLAN101 200 domain 1 ring 1 IPTV VLAN101 200 domain 2 ring 1 HSI VLAN601 800 domain 1 domain 2 Backbone network HSI VLAN600 800 HSI VLAN600 800 domain 2 ring 2 HSI VLAN601 800 domain 2 ring 3 HSI VLAN601 800 domain 1 ring 3 IPTV VLAN101 200 domain 1 ring2 IPTV VLAN101 200 CE indicates Customer Ed...

Страница 75: ...fore configuring RRPP multi instance complete the following tasks l Establishing the ring networking l Configuring link attributes for interfaces Data Preparation To configure RRPP multi instance you need the following data No Data 1 IDs of RRPP domains 2 IDs of control VLANs in RRPP domains 3 IDs of protected VLANs in RRPP domains 4 IDs of RRPP rings in RRPP domains 5 Names of the ports in RRPP r...

Страница 76: ...6 and so forth The control VLANs of the major ring and the subrings must be contained in the VLAN list A domain supports up to 49 instances among which instance 0 is the default instance and does not need to be created By default all VLANs are mapped to instance 0 Step 4 Run active region configuration The configuration of the MST region is activated End 3 4 3 Configuring Interfaces on the RRPP Ri...

Страница 77: ...he control vlan command in the RRPP domain view and run the ring node mode command all the interfaces on the RRPP ring allow packets of this control VLAN to pass through Therefore you need only to specify the data VLANs in this step Step 5 Run stp disable STP is disabled on the RRPP interface By default STP is enabled on all interfaces of the S3700 Before creating an RRPP ring disable STP on the i...

Страница 78: ...LANs must be configured before you configure an RRPP ring l You can delete or change existing protected VLANs before configuring an RRPP ring The protected VLANs cannot be changed after the RRPP ring is configured l In the same physical topology the control VLAN of a domain cannot be configured as a protected VLAN of another domain l The control VLAN must be included in the protected VLANs otherwi...

Страница 79: ...fy only the primary control VLAN The VLAN whose ID is one more than the ID of the primary control VLAN becomes the sub control VLAN After configuring the control VLAN you cannot directly modify it You can only delete the control VLAN by deleting the domain and then reconfigure the control VLAN The sub control VLAN is also deleted when you delete the domain NOTE DHCP cannot be configured for a cont...

Страница 80: ... common port interface type interface number edge port interface type interface number The edge node and assistant edge node of a subring are configured The common port of the edge node and assistant edge node must be on the major ring The system automatically sets the level of the ring where the edge node and assistant edge node reside to 1 End 3 4 8 Enabling the RRPP Ring The protocol packets of...

Страница 81: ...Step 1 Run system view The system view is displayed Step 2 Run rrpp enable The RRPP protocol is enabled End 3 4 10 Optional Creating a RRPP Ring Group To reduce the Edge Hello packets to be sent and received you can add a group of sub rings with the same edge nodes or assistant edge nodes to an RRPP ring group Context Do as follows on the edge node or assistant edge node Procedure Step 1 Run syste...

Страница 82: ...te activated sub rings from the ring group configure relevant commands firstly on the edge node and then on the assistant edge node End 3 4 11 Optional Configuring the Delay for Link Restoration After the delay for link recovery is configured the block port on the RRPP ring is not switched immediately Instead the block port is switched when the delay timer expires thus reducing the flapping of the...

Страница 83: ...r The value of the Edge hello timer defaults to half the value of the Hello timer of the master node on the major ring Set consistent Hello timers and Fail timers on all the nodes in the same RRPP ring domain otherwise the edge ports of the edge nodes might be unstable End 3 4 13 Checking the Configuration Procedure l Run the display stp region configuration command to check the mapping between MS...

Страница 84: ... M GigabitEthernet0 0 1 GigabitEthernet0 0 2 No Run the display rrpp verbose command and you can view detailed information such as the control VLAN protected VLAN timers node mode and port status The following is an example Quidway display rrpp verbose domain 1 ring 1 Domain Index 1 Control VLAN major 400 sub 401 Protected VLAN Reference Instance 30 Hello Timer 1 sec default is 1 sec Fail Timer 6 ...

Страница 85: ...ore confirm the action before you use the command To clear the RRPP statistics run the following reset command in the user view Procedure Step 1 Run the reset rrpp statistics domain domain id ring ring id command to clear the statistics of RRPP End 3 5 2 Debugging RRPP Debugging information facilitates fault location RRPP debugging includes event debugging and packet debugging Context CAUTION Debu...

Страница 86: ...ch A Switch B and Switch C are on ring 1 of RRPP domain 1 The data of VLANs 100 to 300 needs to be protected Figure 3 5 Networking diagram of a single RRPP ring Ethernet0 0 1 Ethernet0 0 2 Ethernet0 0 1 Ethernet0 0 2 Ethernet0 0 2 Ethernet0 0 1 SwitchB Ring 1 SwitchA SwitchC Primary Port Secondaryport Configuration Roadmap The configuration roadmap is as follows 1 Map instance 1 to VLANs 100 to 30...

Страница 87: ...witchB SwitchB rrpp domain 1 SwitchB rrpp domain region1 control vlan 20 SwitchB rrpp domain region1 quit On the master node of ring 1 namely SwitchC create RRPP domain 1 and configure VLAN 20 as the main control VLAN Quidway system view Quidway sysname SwitchC SwitchC rrpp domain 1 SwitchC rrpp domain region1 control vlan 20 SwitchC rrpp domain region1 quit Step 3 Configure the interfaces to be a...

Страница 88: ...1 secondary port ethernet 0 0 2 level 0 SwitchA rrpp domain region1 ring 1 enable SwitchA rrpp domain region1 quit Configure the protection VLAN on Switch B and configure Switch B as the transit node of RRPP ring 1 and specify the primary interface and secondary interface SwitchB rrpp domain 1 SwitchB rrpp domain region1 protected vlan reference instance 1 SwitchB rrpp domain region1 ring 1 node m...

Страница 89: ...LAN of domain 1 is VLAN 20 and the sub control VLAN is VLAN 21 SwitchA is the master node of ring 1 Eth 0 0 1 is the primary interface and Eth 0 0 2 is the secondary interface l Run the display rrpp verbose domain command on SwitchA Detailed information about RRPP domain 1 is displayed as follows SwitchA display rrpp verbose domain 1 Domain Index 1 Control VLAN major 20 sub 21 Protected VLAN Refer...

Страница 90: ...domain 1 control vlan 20 protected vlan reference instance 1 ring 1 node mode transit primary port Ethernet 0 0 1 secondary port Ethernet 0 0 2 level 0 ring 1 enable interface Ethernet0 0 1 port link type trunk port trunk allow pass vlan 20 to 21 100 to 300 stp disable interface Ethernet0 0 2 port link type trunk port trunk allow pass vlan 20 to 21 100 to 300 stp disable return l Configuration fil...

Страница 91: ... the subring Switch A is the edge node on ring 2 of domain 1 and Switch D is the assistant edge node on ring 2 of domain 1 The main control VLAN ID is 10 The RRPP rings transmit data of VLAN 2 to VLAN 9 Figure 3 6 Networking diagram of crossed RRPP rings with a single instance Huawei version SwitchA Ethernet0 0 1 Ethernet0 0 2 Ethernet0 0 1 Ethernet0 0 2 Ethernet0 0 3 Ethernet0 0 1 SwitchB sub rin...

Страница 92: ...figure domain 1 Then configure VLAN 10 as the main control VLAN and instance 1 as the protected instance of domain 1 SwitchB rrpp enable SwitchB rrpp domain 1 SwitchB rrpp domain region1 control vlan 10 SwitchB rrpp domain region1 protected vlan reference instance 1 SwitchB rrpp domain region1 quit Disable STP on the interfaces to be added to the RRPP rings configure the interfaces as trunk interf...

Страница 93: ... 1 port link type trunk SwitchC Ethernet0 0 1 port trunk allow pass vlan 2 to 9 SwitchC Ethernet0 0 1 stp disable SwitchC Ethernet0 0 1 quit SwitchC interface ethernet 0 0 2 SwitchC Ethernet0 0 2 port link type trunk SwitchC Ethernet0 0 2 port trunk allow pass vlan 2 to 9 SwitchC Ethernet0 0 2 stp disable SwitchC Ethernet0 0 2 quit Configure the primary interface and secondary interface of the mas...

Страница 94: ...nsit node on the RRPP major ring SwitchA rrpp domain 1 SwitchA rrpp domain region1 ring 1 node mode transit primary port ethernet 0 0 2 secondary port ethernet 0 0 1 level 0 SwitchA rrpp domain region1 ring 1 enable SwitchA rrpp domain region1 quit Configure the common interface and edge interface of the edge transit node on the subring SwitchA rrpp domain 1 SwitchA rrpp domain region1 ring 2 node...

Страница 95: ...y port ethernet 0 0 1 level 0 SwitchD rrpp domain region1 ring 1 enable SwitchD rrpp domain region1 quit Configure the common interface and edge interface of the assistant edge node on the RRPP subring SwitchD rrpp domain 1 SwitchD rrpp domain region1 ring 2 node mode assistant edge common port ethernet 0 0 2 edge port ethernet 0 0 3 SwitchD rrpp domain region1 ring 2 enable SwitchD rrpp domain re...

Страница 96: ... Timer 1 sec default is 1 sec Fail Timer 6 sec default is 6 sec Ring Ring Node Primary Common Secondary Edge Is ID Level Mode Port Port Enabled 2 1 M Ethernet0 0 1 Ethernet0 0 2 Yes The output information indicates that RRPP is enabled on SwitchC The main control VLAN is VLAN 10 and the sub control VLAN is VLAN 11 Switch C is the master node on the subring with Eth 0 0 1 as the primary interface a...

Страница 97: ...ode Mode Transit Ring State Linkup Is Enabled Enable Is Active Yes Primary port Ethernet0 0 2 Port status UP Secondary port Ethernet0 0 1 Port status UP RRPP Ring 2 Ring Level 1 Node Mode Edge Ring State Linkup Is Enabled Disable Is Active No Common port Ethernet0 0 2 Port status UP Edge port Ethernet0 0 3 Port status UP l Run the display rrpp brief command on Switch D The following information is...

Страница 98: ...inkup Is Enabled Disable Is Active No Common port Ethernet0 0 2 Port status UP Edge port Ethernet0 0 3 Port status UP End Configuration Files l Configuration file of Switch A sysname SwitchA vlan batch 2 to 11 rrpp enable stp region configuration instance 1 vlan 2 to 11 active region configuration rrpp domain 1 control vlan 10 protected vlan reference instance 1 ring 1 node mode transit primary po...

Страница 99: ...rt trunk allow pass vlan 2 to 11 stp disable return l Configuration file of the Switch C sysname SwitchC vlan batch 2 to 11 rrpp enable stp region configuration instance 1 vlan 2 to 11 active region configuration rrpp domain 1 control vlan 10 protected vlan reference instance 1 ring 2 node mode master primary port Ethernet 0 0 1 secondary port Ethernet 0 0 2 level 1 ring 2 enable interface Etherne...

Страница 100: ...1 stp disable interface Ethernet0 0 2 port link type trunk port trunk allow pass vlan 2 to 11 stp disable interface Ethernet0 0 3 port link type trunk port trunk allow pass vlan 2 to 11 stp disable return 3 6 3 Example for Configuring Tangent RRPP Rings Networking Requirements As shown in Figure 3 7 Switch A Switch B Switch C Switch D and Switch E support the RRPP function Switch A Switch B and Sw...

Страница 101: ...h C as transit nodes on ring 2 5 Configure Switch E as the master node on ring 1 and configure Switch C and Switch D as transit nodes on ring 1 Data Preparation To complete the configuration you need the following data l Numbers of the RRPP interfaces l Control VLAN IDs of ring 1 and ring 2 Procedure Step 1 Create an instance and add the control VLANs added to the list of protected VLANs Configure...

Страница 102: ...stance 1 SwitchE rrpp domain 1 SwitchE rrpp domain region1 control vlan 10 SwitchE rrpp domain region1 protected vlan reference instance 1 SwitchE rrpp domain region1 quit Configure domain 1 on Switch C which is the transit node of ring 1 Configure VLAN 10 as the main control VLAN of domain 1 and configure the list of protected VLANs mapping instance 1 SwitchC rrpp domain 1 SwitchC rrpp domain reg...

Страница 103: ...ch D the transit node on ring 1 SwitchD rrpp domain 1 SwitchD rrpp domain region1 timer hello timer 2 fail timer 7 SwitchD rrpp domain region1 quit Set the Hold timer and Fail timer for Switch C the transit node on ring 1 SwitchC rrpp domain 1 SwitchC rrpp domain region1 timer hello timer 2 fail timer 7 SwitchC rrpp domain region1 quit Set the Hold timer and Fail timer for Switch A the master node...

Страница 104: ...rfaces to be added to the RRPP ring on Switch D SwitchD interface ethernet 0 0 1 SwitchD Ethernet0 0 1 stp disable SwitchD Ethernet0 0 1 quit SwitchD interface ethernet 0 0 2 SwitchD Ethernet0 0 2 stp disable SwitchD Ethernet0 0 2 quit Step 5 Create RRPP rings Configure nodes on ring 2 The configuration procedure is as follows Configure Switch A as the master node of ring 2 and specify the primary...

Страница 105: ...cify the primary and secondary interfaces SwitchD rrpp domain 1 SwitchD rrpp domain region1 ring 1 node mode transit primary port ethernet 0 0 1 secondary port ethernet 0 0 2 level 0 SwitchD rrpp domain region1 ring 1 enable SwitchD rrpp domain region1 quit Step 6 Enable RRPP After configuring an RRPP ring enable RRPP on each node on the ring Then the RRPP ring can be activated Enable RRPP on Swit...

Страница 106: ...ansit node on ring 2 with Eth 0 0 3 as the primary interface and Eth 0 0 4 as the secondary interface l Run the display rrpp verbose domain command on Switch C to view the domain information View detailed information about domain 1 SwitchC display rrpp verbose domain 1 Domain Index 1 Control VLAN major 10 sub 11 Protected VLAN Reference Instance 1 Hello Timer 2 sec default is 1 sec Fail Timer 7 se...

Страница 107: ...figuration file of SwitchB sysname Switch B vlan batch 20 to 21 rrpp enable stp region configuration instance 2 vlan 20 to 21 active region configuration rrpp domain 2 control vlan 20 protected vlan reference instance 2 timer hello timer 3 fail timer 10 ring 2 node mode transit primary port Ethernet 0 0 1 secondary port Ethernet 0 0 2 level 0 ring 2 enable interface Ethernet0 0 1 port hybrid tagge...

Страница 108: ...lan 10 to 11 stp disable interface Ethernet 0 0 2 port hybrid tagged vlan 10 to 11 stp disable interface Ethernet 0 0 3 port hybrid tagged vlan 20 to 21 stp disable interface Ethernet 0 0 4 port hybrid tagged vlan 20 to 21 stp disable return l Configuration file of Switch D sysname SwitchD vlan batch 10 to 11 rrpp enable stp region configuration instance 1 vlan 10 to 11 active region configuration...

Страница 109: ...o 11 stp disable return 3 6 4 Example for Configuring a Single RRPP Ring with Multiple Instances Networking Requirements As shown in Figure 3 8 UPE A UPE B UPE C and PE AGG form a multi instance RRPP ring Two rings are involved in the networking ring 1 in domain 1 and ring 1 in domain 2 VLANs 100 to 300 are configured on CE Domain 1 and domain 2 share the traffic of packets from VLANs 100 to 300 P...

Страница 110: ...rt Secondary Port Ring 1 in domain 1 PE AGG Eth0 0 1 Eth0 0 2 Ring 1 in domain 2 PE AGG Eth0 0 2 Eth0 0 1 Figure 3 8 Networking diagram of single RRPP ring with multiple instances UPEA UPE B PE AGG Domain 2 ring 1 Domain 1 ring 1 UPEC Master 1 Master 2 Backbone network CE 2 CE 1 Ethernet0 0 1 Ethernet0 0 2 Ring 1 VLAN 100 300 VLAN 100 300 Ethernet0 0 1 Ethernet0 0 1 Ethernet0 0 1 Ethernet0 0 2 Eth...

Страница 111: ...PE A Quidway system view Quidway sysname UPEA UPEA vlan batch 100 to 300 Create instance 1 and map it to control VLANs VLAN 5 VLAN 6 and data VLANs 100 to 200 in domain 1 UPEA stp region configuration UPEA mst region instance 1 vlan 5 6 100 to 200 Create instance 2 and map it to control VLANs VLAN 10 and VLAN 11 and data VLANs 201 to 300 in domain 2 UPEA mst region instance 2 vlan 10 11 201 to 300...

Страница 112: ...VLANs 100 to 300 on PE AGG Quidway system view Quidway sysname PE AGG PE AGG vlan batch 100 to 300 Create instance 1 and map it to control VLANs VLAN 5 and VLAN 6 and data VLANs 100 to 200 in domain 1 PE AGG stp region configuration PE AGG mst region instance 1 vlan 5 6 100 to 200 Create instance 2 and map it to control VLANs VLAN 10 and VLAN 11 and data VLANs 201 to 300 in domain 2 PE AGG mst reg...

Страница 113: ...ort trunk allow pass vlan 100 to 300 UPEB Ethernet0 0 2 stp disable UPEB Ethernet0 0 2 quit l Configure UPE C Disable STP on the interfaces that need to be added to the RRPP ring on UPE C Configure the RRPP interfaces to allow packets of VLANs 100 to 300 to pass through UPEC interface ethernet 0 0 1 UPEC Ethernet0 0 1 port link type trunk UPEC Ethernet0 0 1 port trunk allow pass vlan 100 to 300 UP...

Страница 114: ...s in domain 2 Configure VLAN 10 as the control VLAN UPEB rrpp domain 2 UPEB rrpp domain region2 protected vlan reference instance 2 UPEB rrpp domain region2 control vlan 10 UPEB rrpp domain region2 quit l Configure UPE C Configure the VLANs mapping instance 1 as the protected VLANs in domain 1 Configure VLAN 5 as the control VLAN UPEC rrpp domain 1 UPEC rrpp domain region1 protected vlan reference...

Страница 115: ...on1 ring 1 node mode transit primary port ethernet 0 0 1 secondary port ethernet 0 0 2 level 0 UPEB rrpp domain region1 ring 1 enable UPEB rrpp domain region1 quit Configure UPE B as a transit node of ring 1 in domain 2 and specify primary and secondary ports on UPE B UPEB rrpp domain 2 UPEB rrpp domain region2 ring 1 node mode transit primary port ethernet 0 0 1 secondary port ethernet 0 0 2 leve...

Страница 116: ...n procedure is as follows l Configure UPE A Enable the RRPP protocol UPEA rrpp enable l Configure UPE B Enable the RRPP protocol UPEB rrpp enable l Configure UPE C Enable the RRPP protocol UPEC rrpp enable l Configure PE AGG Enable the RRPP protocol PE AGG rrpp enable Step 6 Verify the configuration After the preceding configurations are complete and the network topology becomes stable perform the...

Страница 117: ...tocol Status Enable RRPP Working Mode HW RRPP Linkup Delay Timer 0 sec 0 sec default Number of RRPP Domains 2 Domain Index 1 Control VLAN major 5 sub 6 Protected VLAN Reference Instance 1 Hello Timer 1 sec default is 1 sec Fail Timer 6 sec default is 6 sec Ring Ring Node Primary Common Secondary Edge Is ID Level Mode Port Port Enabled 1 0 M Ethernet0 0 1 Ethernet0 0 2 Yes Domain Index 2 Control VL...

Страница 118: ...bled Enable Is Active Yes Primary port Ethernet0 0 1 Port status UP Secondary port Ethernet0 0 2 Port status UP The preceding information shows that VLAN 10 is the control VLAN in domain 2 and VLANs mapping instance 2 are the protected VLANs UPE A is a transit node in domain 2 and is in LinkUp state l Run the display rrpp verbose domain command on PE AGG You can obtain the following results View d...

Страница 119: ... Configuration file of UPE A sysname UPEA vlan batch 5 to 6 10 to 11 100 to 300 rrpp enable stp region configuration instance 1 vlan 5 to 6 100 to 200 instance 2 vlan 10 to 11 201 to 300 active region configuration rrpp domain 1 control vlan 5 protected vlan reference instance 1 ring 1 node mode transit primary port Ethernet 0 0 1 secondary port Ethernet 0 0 2 level 0 ring 1 enable rrpp domain 2 c...

Страница 120: ...unk allow pass vlan 5 to 6 10 to 11 100 to 300 stp disable return l Configuration file of UPE C sysname UPEC vlan batch 5 to 6 10 to 11 100 to 300 rrpp enable stp region configuration instance 1 vlan 5 to 6 100 to 200 instance 2 vlan 10 to 11 201 to 300 active region configuration rrpp domain 1 control vlan 5 protected vlan reference instance 1 ring 1 node mode transit primary port Ethernet 0 0 1 ...

Страница 121: ...Example for Configuring Crossed RRPP Rings with Multiple Instances HW version Networking Requirements As shown in Figure 3 9 UPE A UPE B UPE C UPE D and PE AGG form two multi instance major rings ring 1 in domain 1 and ring 1 in domain 2 CE1 UPE B and UPE C form two subrings ring 2 in domain 1 and ring 2 in domain 2 CE1 is connected to the major rings through Eth 0 0 3 of UPE B and Eth 0 0 3 of UP...

Страница 122: ...d secondary ports on the master nodes Ring ID Master Node Primary Port Secondary Port Ring Type Ring 1 in domain 1 PE AGG Eth 0 0 1 Eth 0 0 2 Major ring Ring 1 in domain 2 PE AGG Eth 0 0 2 Eth 0 0 1 Major ring Ring 2 in domain 1 CE1 Eth 0 0 1 Eth 0 0 2 Sub ring Ring 2 in domain 2 CE1 Eth 0 0 2 Eth 0 0 1 Sub ring Ring 3 in domain 1 CE2 Eth 0 0 1 Eth 0 0 2 Sub ring Ring 3 in domain 2 CE2 Eth 0 0 2 E...

Страница 123: ...UPE B Eth 0 0 1 Eth 0 0 3 UPE C Eth 0 0 2 Eth 0 0 3 Ring 3 in domain 2 UPE B Eth 0 0 1 Eth 0 0 4 UPE C Eth 0 0 2 Eth 0 0 4 To reduce the Edge Hello packets sent on the major ring and increase available bandwidth you can add the four subrings to a ring group To prevent topology flapping you need to set the Link Up timer on the master nodes Quidway S3700 Series Ethernet Switches Configuration Guide ...

Страница 124: ...t0 0 3 Ethernet0 0 4 Ethernet0 0 1 Ethernet0 0 2 Configuration Roadmap The configuration roadmap is as follows 1 Map instance 1 to VLANs 100 to 200 Map instance 2 to VLANs 201 to 300 2 Add UPE A UPE B UPE C UPE D and PE AGG to ring 1 in domain 1 and ring 1 in domain 2 3 Add CE1 UPE B and UPE C to ring 2 in domain 1 and ring 2 in domain 2 4 Add CE2 UPE B and UPE C to ring 3 in domain 1 and ring 3 i...

Страница 125: ...to 300 Create instance 1 and map it to control VLANs VLAN 5 and VLAN 6 and data VLANs 100 to 200 in domain 1 CE1 stp region configuration CE1 mst region instance 1 vlan 5 6 100 to 200 Create instance 2 and map it to control VLANs VLAN 10 and VLAN 11 and data VLANs 201 to 300 in domain 2 CE1 mst region instance 2 vlan 10 11 201 to 300 Activate the configuration CE1 mst region active region configur...

Страница 126: ...to 200 in domain 1 UPEB stp region configuration UPEB mst region instance 1 vlan 5 6 100 to 200 Create instance 2 and map it to control VLANs VLAN 10 and VLAN 11 and data VLANs 201 to 300 in domain 2 UPEB mst region instance 2 vlan 10 11 201 to 300 Activate the configuration UPEB mst region active region configuration UPEB mst region quit l Configure UPE C Create data VLANs 100 to 300 on UPE C Qui...

Страница 127: ... instance 2 vlan 10 11 201 to 300 Activate the configuration PE AGG mst region active region configuration PE AGG mst region quit l Verify the configuration View the mapping between instances and VLANs The displayed information on UPE A is as follows UPEA display stp region configuration Oper configuration Format selector 0 Region name 00e0cd568d00 Revision level 0 Instance Vlans Mapped 0 1 to 4 7...

Страница 128: ...figure the RRPP interfaces to allow packets of VLANs 100 to 300 to pass through UPEB interface ethernet 0 0 1 UPEB Ethernet0 0 1 port link type trunk UPEB Ethernet0 0 1 port trunk allow pass vlan 100 to 300 UPEB Ethernet0 0 1 stp disable UPEB Ethernet0 0 1 quit UPEB interface ethernet 0 0 2 UPEB Ethernet0 0 2 port link type trunk UPEB Ethernet0 0 2 port trunk allow pass vlan 100 to 300 UPEB Ethern...

Страница 129: ...hrough PE AGG interface ethernet 0 0 1 PE AGG Ethernet0 0 1 port link type trunk PE AGG Ethernet0 0 1 port trunk allow pass vlan 100 to 300 PE AGG Ethernet0 0 1 stp disable PE AGG Ethernet0 0 1 quit PE AGG interface ethernet 0 0 2 PE AGG Ethernet0 0 2 port link type trunk PE AGG Ethernet0 0 2 port trunk allow pass vlan 100 to 300 PE AGG Ethernet0 0 2 stp disable PE AGG Ethernet0 0 2 quit Step 3 Cr...

Страница 130: ...l vlan 5 UPEB rrpp domain region1 quit Configure the VLANs mapping instance 2 as the protected VLANs in domain 2 Configure VLAN 10 as the control VLAN UPEB rrpp domain 2 UPEB rrpp domain region2 protected vlan reference instance 2 UPEB rrpp domain region2 control vlan 10 UPEB rrpp domain region2 quit l Configure UPE C Configure the VLANs mapping instance 1 as the protected VLANs in domain 1 Config...

Страница 131: ...region1 quit Configure PE AGG as the master node of ring 1 in domain 2 Configure Eth 0 0 2 as the primary port and Eth 0 0 1 as the secondary port PE AGG rrpp domain 2 PE AGG rrpp domain region2 ring 1 node mode master primary port ethernet 0 0 2 secondary port ethernet 0 0 1 level 0 PE AGG rrpp domain region2 ring 1 enable PE AGG rrpp domain region2 quit l Configure UPE A Configure UPE A as a tra...

Страница 132: ...rt ethernet 0 0 1 edge port ethernet 0 0 3 UPEB rrpp domain region1 ring 2 enable UPEB rrpp domain region1 quit Configure UPE B as an edge node of ring 2 in domain 2 Configure Eth 0 0 1 as the public port and Eth 0 0 3 as the edge port UPEB rrpp domain 2 UPEB rrpp domain region2 ring 2 node mode edge common port ethernet 0 0 1 edge port ethernet 0 0 3 UPEB rrpp domain region2 ring 2 enable UPEB rr...

Страница 133: ...t 0 0 4 UPEC rrpp domain region1 ring 3 enable UPEC rrpp domain region1 quit Configure UPE C as an edge node of ring 3 in domain 2 Configure Eth 0 0 2 as the public port and Eth 0 0 4 as the edge port UPEC rrpp domain 2 UPEC rrpp domain region2 ring 3 node mode assistant edge common port ethernet 0 0 2 edge port ethernet 0 0 4 UPEC rrpp domain region2 ring 3 enable UPEC rrpp domain region2 quit l ...

Страница 134: ... enable l Configure UPE B Enable the RRPP protocol UPEB rrpp enable l Configure UPE C Enable the RRPP protocol UPEC rrpp enable l Configure CE1 Enable the RRPP protocol CE1 rrpp enable l Configure CE2 Enable the RRPP protocol CE2 rrpp enable Step 6 Configure a ring group l Configure UPE C assistant edge node Create ring group 1 which consists of four subrings ring 2 in domain 1 ring 3 in domain 1 ...

Страница 135: ... sec Number of RRPP Domains 2 Domain Index 1 Control VLAN major 5 sub 6 Protected VLAN Reference Instance 1 Hello Timer 1 sec default is 1 sec Fail Timer 6 sec default is 6 sec Ring Ring Node Primary Common Secondary Edge Is ID Level Mode Port Port Enabled 1 0 T Ethernet0 0 1 Ethernet0 0 2 Yes 2 1 E Ethernet0 0 1 Ethernet0 0 3 Yes 3 1 E Ethernet0 0 1 Ethernet0 0 4 Yes Domain Index 2 Control VLAN m...

Страница 136: ... VLAN Reference Instance 1 Hello Timer 1 sec default is 1 sec Fail Timer 6 sec default is 6 sec Ring Ring Node Primary Common Secondary Edge Is ID Level Mode Port Port Enabled 1 0 M Ethernet0 0 1 Ethernet0 0 2 Yes Domain Index 2 Control VLAN major 10 sub 11 Protected VLAN Reference Instance 2 Hello Timer 1 sec default is 1 sec Fail Timer 6 sec default is 6 sec Ring Ring Node Primary Common Seconda...

Страница 137: ...domain 1 and is in LinkUp state UPE B is a transit node on ring 2 in domain 1 and is in LinkUp state Eth 0 0 1 is the public port and Eth 0 0 3 is the edge port UPE B is a transit node on ring 3 in domain 1 and is in LinkUp state Eth 0 0 1 is the public port and Eth 0 0 4 is the edge port View detailed information about UPE B in domain 2 UPEB display rrpp verbose domain 2 Domain Index 2 Control VL...

Страница 138: ...formation shows that VLAN 5 is the control VLAN in domain 1 and VLANs mapping instance 1 are the protected VLANs PE AGG is the master node in domain 1 and is in Complete state Eth 0 0 1 is the primary port and Eth 0 0 2 is the secondary port View detailed information about PE AGG in domain 2 PE AGG display rrpp verbose domain 2 Domain Index 2 Control VLAN major 10 sub 11 Protected VLAN Reference I...

Страница 139: ...ring 2 enable interface Ethernet0 0 1 port link type trunk port trunk allow pass vlan 6 11 100 to 300 stp disable interface Ethernet0 0 2 port link type trunk port trunk allow pass vlan 6 11 100 to 300 stp disable return l Configuration file of CE2 sysname CE2 vlan batch 5 to 6 10 to 11 100 to 300 rrpp enable rrpp linkup delay timer 1 stp region configuration instance 1 vlan 5 to 6 100 to 200 inst...

Страница 140: ... port Ethernet 0 0 1 secondary port Ethernet 0 0 2 level 0 ring 1 enable rrpp domain 2 control vlan 10 protected vlan reference instance 2 ring 1 node mode transit primary port Ethernet 0 0 1 secondary port Ethernet 0 0 2 level 0 ring 1 enable interface Ethernet0 0 1 port link type trunk port trunk allow pass vlan 5 to 6 10 to 11 100 to 300 stp disable interface Ethernet0 0 2 port link type trunk ...

Страница 141: ...ble interface Ethernet0 0 2 port link type trunk port trunk allow pass vlan 5 to 6 10 to 11 100 to 300 stp disable interface Ethernet0 0 3 port link type trunk port trunk allow pass vlan 6 11 100 to 300 stp disable interface Ethernet0 0 4 port link type trunk port trunk allow pass vlan 6 11 100 to 300 stp disable return l Configuration file of UPE C sysname UPEC vlan batch 5 to 6 10 to 11 100 to 3...

Страница 142: ...0 stp disable interface Ethernet0 0 4 port link type trunk port trunk allow pass vlan 6 11 100 to 300 stp disable return l Configuration file of UPE D sysname UPED vlan batch 5 to 6 10 to 11 100 to 300 rrpp enable stp region configuration instance 1 vlan 5 to 6 100 to 200 instance 2 vlan 10 to 11 201 to 300 active region configuration rrpp domain 1 control vlan 5 protected vlan reference instance ...

Страница 143: ...11 100 to 300 stp disable interface Ethernet0 0 2 port link type trunk port trunk allow pass vlan 5 to 6 10 to 11 100 to 300 stp disable return 3 6 6 Example for Configuring Tangent RRPP Rings with Multiple Instances Networking Requirements As shown in Figure 3 10 UPE A UPE B UPE C and UPE D form two multi instance rings ring 1 in domain 1 and ring 1 in domain 2 UPE D UPE E UPE F and UPE G form ri...

Страница 144: ...odes Ring ID Master Node Primary Port Secondary Port Ring 1 in domain 1 UPE D Eth 0 0 1 Eth 0 0 2 Ring 1 in domain 2 UPE D Eth 0 0 2 Eth 0 0 1 Ring 1 in domain 3 UPE F Eth 0 0 1 Eth 0 0 2 Figure 3 10 Networking diagram of tangent RRPP rings with multiple instances UPEB UPEA UPEC domain 1 domain 2 UPED Master 1 Domain 1 ring 1 Domain 2 ring 1 CE Domain 3 ring 1 Master 3 domain 3 UPEE UPEG UPEF Mast...

Страница 145: ...ta l Instance IDs l Range of the protected VLANs l IDs of the control VLANs l Numbers of the RRPP interfaces Procedure Step 1 Create instances l Configure UPE A Create data VLANs 100 to 300 on UPE A Quidway system view Quidway sysname UPEA UPEA vlan batch 100 to 300 Create instance 1 and map it to control VLANs VLAN 5 and VLAN 6 and data VLANs 100 to 200 in domain 1 UPEA stp region configuration U...

Страница 146: ... and map it to control VLANs VLAN 10 and VLAN 11 and data VLANs 201 to 300 in domain 2 UPEC mst region instance 2 vlan 10 11 201 to 300 Activate the configuration UPEC mst region active region configuration UPEC mst region quit l Configure UPE D Create data VLANs 100 to 300 on UPE D Quidway system view Quidway sysname UPED UPED vlan batch 100 to 300 Create instance 1 and map it to control VLANs VL...

Страница 147: ...ate the configuration UPEF mst region active region configuration UPEF mst region quit l Configure UPE G Create data VLANs 100 to 300 on UPE G Quidway system view Quidway sysname UPEG UPEG vlan batch 100 to 300 Create instance 1 and map it to control VLANs VLAN 20 and VLAN 21 and data VLANs 100 to 300 in domain 3 UPEG stp region configuration UPEG mst region instance 1 vlan 20 21 100 to 300 Activa...

Страница 148: ...unk allow pass vlan 100 to 300 UPEB Ethernet0 0 2 stp disable UPEB Ethernet0 0 2 quit l Configure UPE C Disable STP on the interfaces that need to be added to the RRPP ring on UPE C Configure the RRPP interfaces to allow packets of VLANs 100 to 300 to pass through UPEC interface ethernet 0 0 1 UPEC Ethernet0 0 1 port link type trunk UPEC Ethernet0 0 1 port trunk allow pass vlan 100 to 300 UPEC Eth...

Страница 149: ...hernet0 0 1 port link type trunk UPEF Ethernet0 0 1 port trunk allow pass vlan 100 to 300 UPEF Ethernet0 0 1 stp disable UPEF Ethernet0 0 1 quit UPEF interface ethernet 0 0 2 UPEF Ethernet0 0 2 port link type trunk UPEF Ethernet0 0 2 port trunk allow pass vlan 100 to 300 UPEF Ethernet0 0 2 stp disable UPEF Ethernet0 0 2 quit l Configure UPE G Disable the STP function on the interfaces to be added ...

Страница 150: ...p domain region1 protected vlan reference instance 1 UPEC rrpp domain region1 control vlan 5 UPEC rrpp domain region1 quit Configure the VLANs mapping instance 2 as the protected VLANs in domain 2 Configure VLAN 10 as the control VLAN UPEC rrpp domain 2 UPEC rrpp domain region2 protected vlan reference instance 2 UPEC rrpp domain region2 control vlan 10 UPEC rrpp domain region2 quit l Configure UP...

Страница 151: ...n region1 ring 1 node mode transit primary port ethernet 0 0 1 secondary port ethernet 0 0 2 level 0 UPEA rrpp domain region1 ring 1 enable UPEA rrpp domain region1 quit Configure UPE A as a transit node of ring 1 in domain 2 and specify primary and secondary ports on UPE A UPEA rrpp domain 2 UPEA rrpp domain region2 ring 1 node mode transit primary port ethernet 0 0 1 secondary port ethernet 0 0 ...

Страница 152: ...ure UPE D as the master node of ring 1 in domain 2 Configure Eth 0 0 2 as the primary port and Eth 0 0 1 as the secondary port UPED rrpp domain 2 UPED rrpp domain region2 ring 1 node mode master primary port ethernet 0 0 2 secondary port ethernet 0 0 1 level 0 UPED rrpp domain region2 ring 1 enable UPED rrpp domain region2 quit Configure UPE D as a transit node of ring 1 in domain 3 and specify pr...

Страница 153: ...ng The configuration procedure is as follows l Configure UPE A Enable the RRPP protocol UPEA rrpp enable l Configure UPE B Enable the RRPP protocol UPEB rrpp enable l Configure UPE C Enable the RRPP protocol UPEC rrpp enable l Configure UPE D Enable the RRPP protocol UPED rrpp enable l Configure UPE E Enable the RRPP protocol UPEE rrpp enable l Configure UPE F Enable the RRPP protocol UPEF rrpp en...

Страница 154: ... default is 6 sec Ring Ring Node Primary Common Secondary Edge Is ID Level Mode Port Port Enabled 1 0 T Ethernet0 0 3 Ethernet0 0 4 Yes The preceding information shows that the RRPP protocol is enabled on UPE D In domain 1 VLAN 1 is the control VLAN and VLANs mapping instance 1 are the protected VLANs UPE D is the master on ring 1 Eth 0 0 1 is the primary port Eth 0 0 2 is the secondary port In do...

Страница 155: ...0 2 Port status UP Secondary port Ethernet0 0 1 Port status BLOCKED The preceding information shows that VLAN 10 is the control VLAN in domain 2 and VLANs mapping instance 2 are the protected VLANs UPE D is the master node in domain 2 and is in Complete state The primary port is Eth 0 0 2 and the secondary port is Eth 0 0 1 View detailed information about UPE D in domain 3 UPED display rrpp verbos...

Страница 156: ...allow pass vlan 5 to 6 10 to 11 100 to 300 stp disable interface Ethernet0 0 2 port link type trunk port trunk allow pass vlan 5 to 6 10 to 11 100 to 300 stp disable return l Configuration file of UPE B sysname UPEB vlan batch 5 to 6 10 to 11 100 to 300 rrpp enable stp region configuration instance 1 vlan 5 to 6 100 to 200 instance 2 vlan 10 to 11 201 to 300 active region configuration rrpp domain...

Страница 157: ... mode transit primary port Ethernet 0 0 1 secondary port Ethernet 0 0 2 level 0 ring 1 enable interface Ethernet0 0 1 port link type trunk port trunk allow pass vlan 5 to 6 10 to 11 100 to 300 stp disable interface Ethernet0 0 2 port link type trunk port trunk allow pass vlan 5 to 6 10 to 11 100 to 300 stp disable Return l Configuration file of UPE D sysname UPED vlan batch 5 to 6 10 to 11 20 to 2...

Страница 158: ...e interface Ethernet0 0 4 port link type trunk port trunk allow pass vlan 20 to 21 100 to 300 stp disable return l Configuration file of UPE E sysname UPEE vlan batch 20 to 21 100 to 300 rrpp enable stp region configuration instance 1 vlan 20 to 21 100 to 300 active region configuration rrpp domain 3 control vlan 20 protected vlan reference instance 1 ring 1 node mode transit primary port Ethernet...

Страница 159: ...rn l Configuration file of UPE G sysname UPEG vlan batch 20 to 21 100 to 300 rrpp enable stp region configuration instance 1 vlan 20 to 21 100 to 300 active region configuration rrpp domain 3 control vlan 20 protected vlan reference instance 1 ring 1 node mode transit primary port Ethernet 0 0 1 secondary port Ethernet 0 0 2 interface Ethernet0 0 1 port link type trunk port trunk allow pass vlan 2...

Страница 160: ...ss ratio on a physical link you can take effective measures to ensure better performance of the link 4 6 Associating EFM OAM with an Interface After EFM OAM is associated with an interface services may be greatly affected For example all the Layer 2 and Layer 3 services may be blocked 4 7 Configuring Association Between an EFM OAM Session and an Interface Triggering the Physical Status of the Inte...

Страница 161: ...n Ethernet CFM and an interface is configured in the OAM management view local Ethernet CFM can detect a fault and then notify the OAM management module of the fault This triggers the physical status of the interface associated with Ethernet CFM to become Down In addition when the physical status of an interface becomes Down the OAM management module notifies Ethernet CFM of the fault and Ethernet...

Страница 162: ...s on IP networks Ethernet OAM can work with the Automatic Protection Switching APS to trigger protection switching when detecting connectivity faults This ensures service interruption in no more than 50 ms to achieve carrier class reliability l Performance management Performance management is used to measure the packet loss ratio delay and jitter during the transmission of packets It also collects...

Страница 163: ...exceeds the specified threshold within a certain period The detection duration is measured in seconds If at least one errored frame is detected within a second this second is called an errored frame second l Fault notification When an errored frame event or severe fault event occurs on the local device the local node sends fault notification messages to notify the peer device At the same time the ...

Страница 164: ...orted The features and configurations supported by 802 1ag Draft 7 and Standard 802 1ag 2007 are the same MIP Supported Supported 802 1ag Draft 7 and Standard 802 1ag 2007 contain the same types of MIP creation rules that is default explicit and none The differences are as follows l In 802 1ag Draft 7 MIPs are created based on the interface l In Standard 802 1ag 2007 MIPs are created based on the ...

Страница 165: ...A MIPs reside on the interfaces on the S3700 and are automatically created by the S3700 l Connectivity check Ethernet CFM divides a network into one MD or multiple MDs Each MD is divided into one MA or multiple MAs The MEPs in an MA exchange Continuity Check messages CCMs periodically to detect the connectivity between them l Fault acknowledgement 802 1ag MAC ping Similar to ping 802 1ag MAC ping ...

Страница 166: ...e interface and Layer 2 and Layer 3 services are unblocked In addition you can configure the association between EFM OAM and an interface only after EFM OAM at both ends are in detect state l Association between EFM OAM modules After a fault is detected the OAM management module transmits a fault notification message through association An EFM OAM module on an interface transmits a fault message t...

Страница 167: ...ectivity of the direct link between devices 4 3 1 Establishing the Configuration Task Before configuring basic EFM OAM functions familiarize yourself with the applicable environment complete the pre configuration tasks and obtain the required data This can help you complete the configuration task quickly and accurately Applicable Environment As shown in Figure 4 1 you can perform the configuration...

Страница 168: ...rking mode of EFM OAM on the interface cannot be modified after EFM OAM is configured on the interface Do as follows on the devices at both ends of the link Procedure Step 1 Run system view The system view is displayed Step 2 Run interface interface type interface number The interface view of an interface at one end of the link is displayed Step 3 Run efm mode active passive The working mode of EF...

Страница 169: ...ce interface type interface number The interface view of an interface at one end of the link is displayed Step 3 Run efm packet max size size The maximum size of an EFM OAMPDU is set By default the maximum size of an EFM OAMPDU on an interface is 128 bytes EFM OAMPDUs longer than 128 bytes are discarded as invalid packets If the maximum size of an EFM OAMPDU on both interfaces of the link is confi...

Страница 170: ...erface type interface number command to check the status of the EFM OAM protocol on an interface End Example Run the display efm command You can view all the EFM OAM configurations on the local interface and part of the EFM OAM configurations on the remote interface For example Quidway display efm interface ethernet 0 0 1 Item Value Interface Ethernet0 0 1 EFM Enable Flag enable Mode active OAMPDU...

Страница 171: ...e configuration tasks and obtain the required data This can help you complete the configuration task quickly and accurately Applicable Environment Link monitoring can be used to detect and locate faults at the link layer in different scenarios It uses the event notification OAMPDU When a link fails the local link notifies the remote OAM entity of the fault after detecting a fault through events Pr...

Страница 172: ...rface is 1 second Step 4 Run efm error frame threshold threshold The threshold for detecting errored frames on the interface is set By default the threshold for detecting errored frames on an interface is 1 Step 5 Run efm error frame notification enable The interface is enabled to detect errored frames By default an interface cannot detect errored frames End 4 4 3 Optional Detecting Errored Codes ...

Страница 173: ...4 4 4 Optional Detecting Errored Frame Seconds of EFM OAM When an interface is enabled to detect errored frame seconds the S3700 generates an errored frame seconds summary event and notifies the peer if the number of errored frame seconds reaches or exceeds the threshold within a set period Context An errored frame second is a one second interval during which at least one errored frame is detected...

Страница 174: ...ed codes or errored frame seconds the link is considered unavailable if the number of errored frames errored codes or errored frame seconds detected by the interface reaches or exceeds the threshold within a set period The errored frame event errored code event and errored frame seconds summary event are called threshold crossing events In this case you can associate a threshold crossing event wit...

Страница 175: ...heck information about EFM OAM on an interface l Run the display efm session all interface interface type interface number command to check the status of the EFM OAM protocol on an interface End Example Run the display efm command You can view information about link monitoring on the interface For example Quidway display efm interface ethernet 0 0 1 Item Value Interface Ethernet0 0 1 EFM Enable Fl...

Страница 176: ...n perform the configuration task to detect the packet loss ratio on a link As shown in Figure 4 2 enable EFM OAM on Switch A and SwitchB and enable remote loopback on GE0 0 1 on Switch A Send test packets from Switch A to SwitchB You can get the packet loss ratio on the link by observing the receiving of test packets on Switch A Figure 4 2 Diagram of testing the packet loss ratio on the link GE 0 ...

Страница 177: ...rding of data packets and protocol packets therefore you are not advised to configure other services on the loopback interface By default the timeout period for remote loopback is 20 minutes After the timeout period remote loopback is automatically disabled You can set the timeout period to 0 for a link to remain in the remote loopback state The following requirements must be met to implement remo...

Страница 178: ...t By default the size of a test packet is 64 bytes the number of test packets sent is 5 The outbound interface for the test packets is the interface that connects the link to be tested End Follow up Procedure The parameter in this command cannot be modified when test packets are being sent Press Ctrl C to stop sending test packets 4 5 4 Checking the Statistics on Returned Test Packets By viewing s...

Страница 179: ...ype interface number The interface view is displayed Step 3 Run efm loopback stop Remote loopback is disabled on the interface If EFM OAM remote loopback is left enabled the link fails to forward service data for a long time To prevent this EFM OAM remote loopback on the S3700 can be automatically disabled after a timeout period By default the timeout period for remote loopback is 20 minutes After...

Страница 180: ... After EFM OAM is associated with an interface services may be greatly affected For example all the Layer 2 and Layer 3 services may be blocked 4 6 1 Establishing the Configuration Task Before configuring the association between EFM OAM and an interface familiarize yourself with the applicable environment complete the pre configuration tasks and obtain the required data This can help you complete ...

Страница 181: ...o associate EFM OAM with an interface l Associating an error event with an interface and setting the interface to the blocking state when the error event occurs l Associating an error event with an interface and setting the interface to the disabled state when the error event occurs l Associating a threshold crossing event with an interface Do as follows on the devices at one end or both ends of t...

Страница 182: ...urs 1 Run system view The system view is displayed 2 Run interface interface type interface number The view of an interface at one end of the link is displayed 3 Run efm critical event dying gasp link fault timeout trigger error down An error event is associated with the interface By default an error event is not associated with an interface After the efm trigger error downcommand is used to assoc...

Страница 183: ...the Configuration By viewing the TriggerIfDown field you can check whether the configurations are successful Prerequisite The configurations of Associating EFM OAM with an Interface function are complete Procedure Step 1 Run the display efm all interface interface type interface number command to check the EFM OAM configuration information on an interface End Example Run the display efm command If...

Страница 184: ...ion can then send fault information to the remote device 4 7 1 Establishing the Configuration Task Before configuring the association between an EFM OAM session and an interface you must enable EFM OAM globally on each device and enable EFM in the interface view of each outgoing interface Applicable Environment As shown in Figure 4 4 EFM OAM is enabled on PE1 and PE2 When a fault occurs on a link ...

Страница 185: ... OAM session and an interface in the OAM management view complete the following task l 4 3 Configuring Basic EFM OAM Data Preparation To configure the association between an EFM OAM session and an interface in the OAM management view you need the following data No Data 1 Type and number of each interface associated with an EFM OAM session 2 Type and number of each interface enabled with EFM OAM 4 ...

Страница 186: ...ngress interface interface type1 interface number1 egress efm interface interface type2 interface number2 trigger if down The unidirectional transmission of fault information from an interface to an EFM OAM session is configured When an interface associated with an EFM OAM session goes Down the OAM management module can send fault information to the EFM OAM session associated with the interface an...

Страница 187: ...M OAM session and an interface are successfully associated End Example Run the display this command You can view all associations between EFM OAM sessions and interfaces Quidway oam mgr display this oam mgr oam bind ingress interface GigabitEthernet0 0 1 egress efm interface GigabitEthernet0 0 2 trigger if down oam bind ingress efm interface GigabitEthernet0 0 2 trigger if down egress interface Gi...

Страница 188: ...at the edge of the MA that is to determine that MEPs must be configured on the interfaces on which devices When implementing automatic connectivity detection on directly connected links you also need to ensure that l The devices at both ends must be configured in the same MA within an MD l An MA can be either associated with a VLAN or not l MEPs must be configured on the interfaces at both ends of...

Страница 189: ...802 1ag 2007 cannot be enabled at the same time on a network End 4 8 3 Enabling Ethernet CFM Globally You must enable Ethernet CFM globally before configuring and applying all CFM functions Context Do as follows on the switch that requires Ethernet CFM Procedure Step 1 Run system view The system view is displayed Step 2 Run cfm enable Ethernet CFM is enabled globally By default Ethernet CFM on the...

Страница 190: ...The default MD must be of a higher level than all MDs to which MEPs on the local device belong In addition the default MD must be of the same level as the high level MD The high level CCMs are transmitted through the default MD Context Do as follows on each S3700 device that requires Ethernet CFM NOTE IEEE 802 1ag has two versions that is IEEE 802 1ag Draft 7 and IEEE Standard 802 1ag 2007 The cfm...

Страница 191: ...un ma ma name An MA is created and the MA view is displayed You can create up to 256MAs in an MD You can create up to 256 MAs on an S3700 One or multiple MA can map to one VLAN Step 4 Run map vlan vlan id Associate the MA with a VLAN By default an MA is not associated with any VLAN Ethernet CFM maintains the connectivity of each MA separately After an MA is associated with a VLAN Ethernet CFM can ...

Страница 192: ...Protocol packets sent from the outward MEP are forwarded by this interface The requirements for the MEPs created in an MA on the same S3700 are as follows l The inward MEP and outward MEP are mutually exclusive l Only one outward MEP can be created Multiple inward MEPs can be created but only one inward MEP can be created on an interface Do as follows on the edge devices of an MA Procedure Step 1 ...

Страница 193: ...m view is displayed Step 2 Run cfm md md name The MD view is displayed Step 3 Run ma ma name The MA view is displayed Step 4 Run remote mep mep id mep id mac mac address An RMEP in the current MA is created End Follow up Procedure l If you need to create multiple RMEPs in an MA repeat Step 4 l If you need to create multiple RMEPs in multiple MAs repeat Step 3 and Step 4 l If you need to create mul...

Страница 194: ... creation rule is none The rule is classified into the following types l default A MIP can be created on an interface if neither a MEP of a higher level nor a MIP of a lower level is configured on the interface l explicit A MIP cannot be created on an interface if no MEP of a lower level exists A MIP can be created on an interface if neither a MEP of a higher level nor a MIP of a lower level exist...

Страница 195: ...ng of CCMs is enabled on the MEP By default a MEP is disabled to send CCMs If mep id mep id is not specified all the MEPs in the MA are enabled to send CCMs Step 6 Run remote mep ccm receive mep id mep id enable The receiving of CCMs from the RMEP within the same MA is enabled on the local MEP By default the local MEP cannot receive CCMs from the RMEP When the local device is enabled to receive CC...

Страница 196: ... l Run the display cfm ma md md name ma ma name command to check detailed information about an MA l Run the display cfm mep md md name ma ma name mep id mep id command to check detailed information about a MEP l Run the display cfm remote mep md md name ma ma name mep id mep id or display cfm remote mep md md name ma ma name cfm state up down disable command to check detailed information about an ...

Страница 197: ...running the display cfm ma command Quidway display cfm ma The total number of MAs is 1 MD Name md1 Level 0 MA Name ma1 Interval 1000 Priority 6 Vlan ID VSI Name MEP Number 0 RMEP Number 0 In IEEE 802 1ag Draft 7 if a MEP is created successfully you can view information about the MEP after running the display cfm mep command Quidway display cfm mep The total number of MEPs is 2 MD Name md2 Level 7 ...

Страница 198: ...n disabled CFM Status up Alarm Status None In IEEE 802 1ag Draft 7 run the display mip create type command If the MIP creation rule is correct the configuration is successful Quidway display mip create type interface ethernet0 0 1 Interface Name MIP Create Type MIP Create Type On Interface GigabitEthernet0 0 1 none Run the display cfm mip command If information about the MIP is displayed the confi...

Страница 199: ...nd enabled with the function of receiving CCMs from a certain RMEP the local device can receive CCMs at the set RMEP activation time That is the activation time for receiving CCMs from the RMEP is the time reserved for configuring the RMEP At the set RMEP activation time if the local MEP does not receive any CCMs in three consecutive sending intervals this means that a connectivity fault occurs be...

Страница 200: ... 1 Run system view The system view is displayed Step 2 Run cfm md md name The MD view is displayed Step 3 Run ma ma name The MA view is displayed Step 4 Run active time time The RMEP activation time is configured NOTE IEEE 802 1ag has two versions that is IEEE 802 1ag Draft 7 and IEEE Standard 802 1ag 2007 The cfm default md command can be used only on the device complying with IEEE Standard 802 1...

Страница 201: ... Standard 802 1ag 2007 The cfm default md command can be used only on the device complying with IEEE Standard 802 1ag 2007 Before using the cfm default md command you must use the cfm version command to set the IEEE 802 1ag version to IEEE Standard 802 1ag 2007 End 4 9 4 Optional Configuring the Anti Jitter Time During Alarm Generation By configuring the anti jitter time during alarm restoration y...

Страница 202: ...onnectivity between two devices manually you can configure the local device to send test packets and wait response packets on the local device to check whether the remote device is reachable Based on the type of the link to be tested you can adopt the following methods to check the link connectivity l To check connectivity of the link between MEPs or between a MEP and a MIP in the same MA on a net...

Страница 203: ...or more devices perform either of the following operations on the switch with a MEP at one end of the link to be tested l MA view 1 Run system view The system view is displayed 2 Run cfm md md name The MD view is displayed 3 Run ma ma name The MA view is displayed 4 Run ping mac 8021ag mac mac address remote mep mep id mep id md md name ma ma name c count interface interface type interface number ...

Страница 204: ...of the switchs Procedure Step 1 Run system view The system view is displayed Step 2 Run ping mac enable Gmac ping is enabled globally By default Gmac ping is disabled When Gmac ping is enabled l MAC ping can be implemented on the switchs l The switchs can respond to LBMs Step 3 Run ping mac mac address vlan vlan id interface interface type interface number c count s packetsize t timeout The connec...

Страница 205: ...IP in the same MA on a network where MDs MAs and MEPs are configured use 802 1ag MAC trace l To locate faults on the link between two devices on a network where MDs MAs or MEPs are not configured use the Gmac trace Pre configuration Tasks Before performing 802 1ag MAC trace complete the following task l Configuring Basic Ethernet CFM Functions Data Preparation To perform 802 1ag MAC trace you need...

Страница 206: ...ace type interface number t timeout ttl ttl The connectivity fault between the local switch and the remote switch is located Run the trace mac 8021ag command without md md name ma ma name in the MA view to determine a forwarding path or failure point in a specified MA Run the trace mac 8021ag md md name ma ma name command in the MA view to determine a forwarding path or failure point in a specifie...

Страница 207: ...on the link to be tested Procedure Step 1 Configuring the switchs at both Ends and the Intermediate switch Do as follows on the switchs at both ends and the intermediate switch on the link to be tested 1 Run system view The system view is displayed 2 Run trace mac enable Gmac trace is enabled globally By default Gmac trace is disabled The following can be performed only after Gmac trace is enabled...

Страница 208: ...iguration Task Applicable Environment After association between an Ethernet CFM module and an interface is configured if a MEP detects a connectivity fault between the MEP and a specified RMEP in the same MA the OAM management module blocks and then unblocks the interface where the MEP is located so that other modules can detect the fault Figure 4 5 Application scenario of association between an E...

Страница 209: ...t CFM A link aggregation group LAG in static LACP mode is configured on SwitchA and SwitchB Ethernet CFM is enabled on SwitchA and SwitchB SwitchA and SwitchB belong to the same MD MEPs are configured on all the member interfaces of the LAG MEPs on the interfaces of the same link belong to the same MA MEPs on interfaces on different links belong to different MAs MEPs at both ends of a link send CC...

Страница 210: ...t CFM module detects the fault and reports the fault to the OAM management module The OAM management module blocks and then unlocks Eth 0 0 1 Then the LAG detects the fault and switches data to the inactive link The process of handling faults on other links is similar to that on the link between SwitchA and SwitchC This implements protection switching within 50 ms to achieve carrier class reliabil...

Страница 211: ...s be created in the specified MA and the current interface is configured with outward facing MEPs before you use the cfm md md name ma ma name remote mep mep id mep id trigger if down command An interface can be associated with an RMEP only You need to delete the current configurations to modify the mapping between the interface and the RMEP If multiple member interfaces exist in the link aggregat...

Страница 212: ...ment module notifies Ethernet CFM of the fault and Ethernet CFM sends Ethernet CFM messages carrying fault information to the remote device 4 13 1 Establishing the Configuration Task Before configuring the association between Ethernet CFM and an interface you must enable Ethernet CFM globally on each device and enable EFM in the interface view of each outgoing interface Applicable Environment As s...

Страница 213: ...uring the association between Ethernet CFM and an interface in the OAM management view complete the following task l Configuring Basic Ethernet CFM Functions Data Preparation To configure the association between Ethernet CFM and an interface in the OAM management view you need the following data No Data 1 Type and number of each interface associated with Ethernet CFM 2 Type and number of each inte...

Страница 214: ...mation run the display current configuration command to check the configuration The command output displays the oam bind ingress cfm md ma egress interface and oam bind ingress interface egress cfm md ma trigger if down commands but does not display the oam bind cfm md ma trigger if down interface or oam bind interface cfm md ma trigger if down command The displayed commands configure reverse tran...

Страница 215: ...tion configuration in the OAM management view Prerequisite All configurations of the association between Ethernet CFM and an interface are complete Procedure Step 1 Run the display this command in the OAM management view to check whether Ethernet CFM and an interface are successfully associated End Example Run the display this command You can view all associations between Ethernet CFM and interfac...

Страница 216: ...between CE1 and PE2 and notify CE2 Figure 4 10 Association between EFM OAM and Ethernet CFM Ethernet CFM Ethernet0 0 1 CE1 PE1 PE2 CE2 EFM OAM EFM OAM Ethernet0 0 1 Ethernet0 0 2 Ethernet0 0 2 Pre configuration Tasks Before associating EFM OAM and Ethernet CFM complete the following tasks l 4 3 Configuring Basic EFM OAM l 4 8 Configuring Basic Ethernet CFM Data Preparation To associate EFM OAM and...

Страница 217: ...er functional modules is deleted l If an MA or MD is deleted the association between Ethernet CFM and other functional modules is deleted NOTE If you run oam bind cfm md md name ma ma name efm interface interface type interface number command two records of the oam bind ingress efm interface interface type interface number egress cfm md md name ma ma name and oam bind ingress cfm md md name ma ma ...

Страница 218: ...ernet CFM runs between CE1 and CE2 After Ethernet CFM is associated with Ethernet CFM the Ethernet CFM module can detect faults on the link between CE1 and PE1 and notify CE2 Figure 4 11 Networking diagram for configuring association between Ethernet CFM and Ethernet CFM Ethernet CFM Ethernet0 0 1 CE1 PE1 PE2 CE2 Ethernet CFM Ethernet CFM Ethernet0 0 1 Ethernet0 0 2 Ethernet0 0 2 Pre configuration...

Страница 219: ...f the link Step 4 Optional Run oam bind cfm md md name1 ma ma name1 cfm md md name2 ma ma name2 Bidirectional fault transmission is enabled between Ethernet CFM modules at the two ends of the link Steps 3 to 4 are optional and can be selected as required NOTE After bidirectional transmission of fault messages is configured the system displays two configuration records of unidirectional fault messa...

Страница 220: ...t CFM becomes Down the peer device on the SEP segment of the edge device needs to send FLUSH FDB packets to report the topology change to other nodes on the SEP segment After the nodes on the SEP segment receive FLUSH FDB packets the blocking interface on the SEP segment needs to enter the forwarding state and send FLUSH FDB packets to trigger the updating of MAC address tables and ARP tables of n...

Страница 221: ...ion between Ethernet CFM and SEP is configured The interface specified by interface interface type interface number must be added to the SEP segment End 4 16 3 Checking the Configuration Prerequisite The configurations of association between Ethernet CFM and SEP are complete Procedure Step 1 Run the display this command in the OAM management view to check association between Ethernet CFM and SEP Q...

Страница 222: ...erface End 4 18 Configuration Examples This section provides several configuration examples of Ethernet OAM 4 18 1 Example for Configuring EFM OAM Networking Requirements As shown in Figure 4 12 a user network is connected to an ISP network through Switch A and Switch B Switch A functions as the CE device and Switch B functions as the underlayer PE UPE device The networking requirements are as fol...

Страница 223: ...witch B 5 seconds and threshold of number of errored frames 5 l Period for detecting errored codes on Eth 0 0 1 of Switch B 5 seconds and threshold of number of errored codes 5 l Period for detecting errored frame seconds on Eth 0 0 1 of Switch B 120 seconds and threshold of number of errored frame seconds 5 Procedure Step 1 Enable EFM OAM globally Enable EFM OAM globally on Switch A Quidway syste...

Страница 224: ...rror frame second period 120 SwitchB Ethernet0 0 1 efm error frame second threshold 5 SwitchB Ethernet0 0 1 efm error frame second notification enable SwitchB Ethernet0 0 1 quit Step 5 Verify the configuration If EFM OAM is configured correctly on Switch A and Switch B Eth 0 0 1 and Eth 0 0 1 start the handshake after negotiation Run the display efm session command on Switch A or Switch B and you ...

Страница 225: ...e second period 120 efm error frame second threshold 5 efm error frame second notification enable efm error code period 5 efm error code threshold 5 efm error code notification enable return 4 18 2 Example for Testing the Packet Loss Ratio on a Link Networking Requirements As shown in Figure 4 13 a user network is connected to an ISP network through Switch A and Switch B Switch A functions as the ...

Страница 226: ...al for EFM OAM remote loopback l Size number and sending rate of test packets Procedure Step 1 Configure basic functions of EFM OAM Enable EFM OAM globally on Switch B Quidway system view Quidway sysname SwitchB SwitchB efm enable Enable EFM OAM globally on Switch A Quidway system view Quidway sysname SwitchA SwitchA efm enable Configure EFM OAM on Eth 0 0 1 of Switch A to work in passive mode Swi...

Страница 227: ...e configuration is successful The displayed information is as follows SwitchB display efm session interface ethernet 0 0 1 Interface EFM State Loopback Timeout Ethernet0 0 1 Loopback control 20 Run the display efm session command on Switch A If the EFM OAM protocol on Eth 0 0 1 is in Loopback be controlled state that is Eth 0 0 1 responds to remote loopback it indicates that the configuration is s...

Страница 228: ...sion interface ethernet 0 0 1 Interface EFM State Loopback Timeout Ethernet0 0 1 detect End Configuration Files l Configuration file of Switch A sysname SwitchA efm enable interface Ethernet0 0 1 efm mode passive efm enable return l Configuration file of Switch B sysname SwitchB efm enable interface Ethernet0 0 1 efm enable return 4 18 3 Example for Configuring Basic Functions of Ethernet CFM Netw...

Страница 229: ...xcept Switch G Associate MA 1 with VLAN 2 4 Create MA 1 in MD 1 on all the Switches except Switch E and Switch I Associate MA 2 with VLAN 3 5 Create MD 2 at level 4 and create MA 3 in MD 2 on Switch A Switch B Switch C and Switch D Associate MA 3 with VLAN 4 6 Create MEPs and RMEPs in MA 1 of MD 1 on Switch I Switch H and Switch E 7 Create MEPs and RMEPs in MA 2 of MD 1 on Switch H and Switch G 8 ...

Страница 230: ... all the Switches except Switch E and Switch I Create MA 2 in MD 1 on Switch A SwitchA md md1 ma ma2 SwitchA md md1 ma ma2 map vlan 3 SwitchA md md1 ma ma2 quit SwitchA md md1 quit Create MA 2 in MD 1 on Switches B to H The configurations of these Switches are similar to the configuration of Switch A and are not mentioned here Step 5 Create MD 2 and create MA 3 in MD 2 on Switch A Switch B Switch ...

Страница 231: ...H md md1 ma ma1 remote mep mep id 1 SwitchH md md1 ma ma1 remote mep mep id 3 SwitchH md md1 ma ma1 quit SwitchH md md1 quit Create an RMEP in MA 1 of MD 1 on Switch I SwitchI md md1 ma ma1 remote mep mep id 2 SwitchI md md1 ma ma1 remote mep mep id 3 SwitchI md md1 ma ma1 quit SwitchI md md1 quit Step 7 Create MEPs and RMEPs in MD 1 of MA 2 on Switch H and Switch G Create a MEP in MA 2 of MD 1 on...

Страница 232: ...id 1 SwitchC md md2 ma ma3 remote mep mep id 3 SwitchC md md2 ma ma3 quit SwitchC md md2 quit Create an RMEP in MA 3 of MD 2 on Switch D SwitchD md md2 ma ma3 remote mep mep id 1 SwitchD md md2 ma ma3 remote mep mep id 2 SwitchD md md2 ma ma3 quit SwitchD md md2 quit Step 9 Enable sending and receiving of CCMs Enable Switch A to send CCMs of all the MEPs SwitchA md md2 ma ma3 mep ccm send enable E...

Страница 233: ...y cfm remote mep The total number of RMEPs is 3 The status of RMEPS 2 up 0 down 0 disable MD Name md1 Level 6 MA Name ma1 RMEP ID 1 Vlan ID 2 VSI Name MAC 0000 0121 0555 CCM Receive enabled Trigger If Down disabled CFM Status up Alarm Status RemoteAlarm MD Name md1 Level 6 MA Name ma1 RMEP ID 3 Vlan ID 2 VSI Name MAC 0000 0121 0666 CCM Receive enabled Trigger If Down disabled CFM Status up Alarm S...

Страница 234: ...rnet0 0 3 inward mep ccm send mep id 1 enable remote mep mep id 2 remote mep ccm receive mep id 2 enable remote mep mep id 3 remote mep ccm receive mep id 3 enable return l Configuration file of Switch B sysname SwitchB vlan batch 2 to 4 cfm enable interface Ethernet0 0 1 port link type trunk port trunk allow pass vlan 2 to 4 interface Ethernet0 0 3 port link type trunk port trunk allow pass vlan ...

Страница 235: ...3 enable return l Configuration file of Switch D sysname SwitchD vlan batch 2 to 4 cfm enable interface Ethernet0 0 2 port link type trunk port trunk allow pass vlan 2 to 4 interface Ethernet0 0 3 port link type trunk port trunk allow pass vlan 2 to 4 cfm md md1 level 6 ma ma1 map vlan 2 ma ma2 map vlan 3 cfm md md2 level 4 ma ma3 map vlan 4 mep mep id 3 interface Ethernet0 0 3 inward mep ccm send...

Страница 236: ...f Switch F sysname SwitchF vlan batch 2 to 3 cfm enable interface Ethernet0 0 1 port link type trunk port trunk allow pass vlan 2 to 3 interface Ethernet0 0 2 port link type trunk port trunk allow pass vlan 3 interface Ethernet0 0 3 port link type trunk port trunk allow pass vlan 2 cfm md md1 level 6 ma ma1 map vlan 2 ma ma2 map vlan 3 return l Configuration file of Switch G sysname SwitchG vlan b...

Страница 237: ...an 2 mep mep id 2 interface Ethernet0 0 2 inward mep ccm send mep id 2 enable remote mep mep id 1 remote mep ccm receive mep id 1 enable remote mep mep id 3 remote mep ccm receive mep id 3 enable ma ma2 map vlan 3 mep mep id 1 interface Ethernet0 0 1 inward mep ccm send mep id 1 enable remote mep mep id 2 remote mep ccm receive mep id 2 enable return l Configuration file of Switch I sysname Switch...

Страница 238: ...ch F are managed by ISP 2 The CFM function can be enabled after the default MD is configured on the device in a low level MD Figure 4 15 Networking diagram for configuring the default MD for Ethernet CFM Eth0 0 1 Eth0 0 2 MEP of MA1 MEP of MA2 MIP SwitchA SwitchD SwitchE SwitchF Eth0 0 3 Eth0 0 1 Eth0 0 2 SwitchB SwitchC Eth0 0 1 Eth0 0 2 E t h 0 0 1 Eth0 0 3 VLAN2 VLAN3 VLAN3 VLAN2 Configuration ...

Страница 239: ...Draft 7 is enabled on a device Switch IEEE 802 1ag Draft 7 to IEEE Standard 802 1ag 2007 on Switch A SwitchA system view SwitchA cfm version standard Warning CFM will be disabled before the version of CFM is changed and all info rmation about the MD will be deleted Continue Y N y Info Succeeded in changing the version of CFM Switch IEEE 802 1ag Draft 7 to IEEE Standard 802 1ag 2007 on Switch B Swi...

Страница 240: ...r to the configuration on Switch B and is not mentioned here Step 6 Set the MIP creation rule in the default MD on Switch B and Switch C Set the MIP creation rule in the default MD on Switch B SwitchB cfm default md SwitchB default md mip create type default SwitchB default md quit Set the MIP creation rule in the default MD on Switch C The configuration on Switch C is similar to the configuration...

Страница 241: ...md md1 ma ma1 remote mep mep id 2 Step 10 Configure MEPs and RMEPs in MA 2 of MD 1 on Switch A and Switch E Configure a MEP in MA 2 of MD 1 on Switch A SwitchA cfm md md1 SwitchA md md1 ma ma2 SwitchA md md1 ma ma2 mep mep id 1 interface ethernet 0 0 2 inward Configure a MEP in MA 2 of MD 1 on Switch E Quidway system view Quidway sysname SwitchE SwitchE cfm md md1 SwitchE md md1 ma ma2 SwitchE md ...

Страница 242: ...ration on Switch A and you can view that no connectivity fault occurs between Switch A and Switch E and the 802 1ag MAC trace operation is successful The following information is displayed SwitchA cfm md md1 SwitchA md md1 ma ma1 SwitchA md md1 ma ma1 trace mac 8021ag mac aa99 6600 5600 Tracing the route to aa99 6600 5600 over a maximum of 255 hops Hops Mac Ingress Ingress Action Relay Action Forw...

Страница 243: ... mep id 2 enable return l Configuration file of Switch B sysname SwitchB vlan batch 2 to 3 cfm version standard cfm enable interface Ethernet0 0 1 port link type trunk port trunk allow pass vlan 2 to 3 interface Ethernet0 0 3 port link type trunk port trunk allow pass vlan 2 to 3 cfm md md2 level 4 cfm default md level 6 mip create type default vlan 2 to 3 return l Configuration file of Switch C s...

Страница 244: ...1 map vlan 2 ma ma2 map vlan 3 return l Configuration file of Switch E sysname SwitchE vlan batch 3 cfm version standard cfm enable interface Ethernet0 0 1 port link type trunk port trunk allow pass vlan 3 interface Ethernet0 0 2 port link type trunk port trunk allow pass vlan 3 cfm md md1 level 6 ma ma2 map vlan 3 mep mep id 2 interface ethernet 0 0 2 inward mep ccm send mep id 2 enable remote me...

Страница 245: ...n the physical status of the interface becomes Down the OAM management module sends a fault notification message to the EFM OAM module Then the EFM OAM module sends the fault notification message to the remote device Networking Requirements As shown in Figure 4 16 EFM OAM is configured between Switch B and Switch C When Eth 0 0 2 on Switch B becomes Down the EFM OAM module reports the fault to Eth...

Страница 246: ... Enable Eth 0 0 1 on Switch B and the EFM OAM module between Switch B and Switch C to report faults to each other SwitchB oam mgr SwitchB oam mgr oam bind efm interface ethernet 0 0 2 trigger if down interface ethernet 0 0 1 SwitchB oam mgr quit Step 3 Verify the configuration After Eth 0 0 2 on Switch B is shut down the EFM OAM module reports the fault to Eth 0 0 1 Then Eth 0 0 1 is triggered to ...

Страница 247: ...0 Output bandwidth utilization 0 00 End Configuration Files l Configuration file of Switch B sysname SwitchB efm enable interface Ethernet0 0 1 efm enable interface Ethernet0 0 2 efm mode passive efm enable bpdu enable oam mgr oam bind ingress interface Ethernet0 0 2 egress efm interface Ethernet0 0 1 trigger if down oam bind ingress efm interface Ethernet0 0 1 trigger if down egress interface Eth...

Страница 248: ...lows 1 Configure Ethernet CFM on Switch A and Switch B 2 Associate an Ethernet CFM module with Eth 0 0 1 on SwitchA Procedure Step 1 Create VLANs and add interfaces to the VLANs Configure Switch A Quidway system view Quidway sysname SwitchA SwitchA vlan 10 SwitchA vlan10 quit SwitchA interface ethernet 0 0 2 SwitchA Ethernet0 0 2 port link type trunk SwitchA Ethernet0 0 2 port trunk allow pass vla...

Страница 249: ...md1 quit Verify the configuration Run the display cfm mep and display cfm remote mep commands on Switch A or Switch B If information about the MEP and RMEP is displayed it indicates that the configuration is successful The displayed information on Switch B is as follows SwitchB display cfm mep md md1 The total number of MEPs is 1 MD Name md1 Level 0 MA Name ma1 MEP ID 1 Vlan ID 10 VSI Name Interfa...

Страница 250: ...Last 300 seconds output rate 0 bits sec 0 packets sec Input peak rate 0 bits sec Record time Output peak rate 0 bits sec Record time Input 0 packets 0 bytes Unicast 0 Multicast 0 Broadcast 0 Jumbo 0 CRC 0 Giants 0 Jabbers 0 Throttles 0 Runts 0 DropEvents 0 Alignments 0 Symbols 0 Ignoreds 0 Frames 0 Discard 0 Total Error 0 Output 0 packets 0 bytes Unicast 0 Multicast 0 Broadcast 0 Jumbo 0 Collision...

Страница 251: ...tion Between an EFM OAM Module and an Ethernet CFM Module Networking Requirements As shown in Figure 4 18 to implement end to end link fault detection you need to enable EFM OAM between Switch A and Switch B and between Switch C andSwitch D and enable Ethernet CFM between Switch B and Switch C When a fault occurs on the link between Switch A and Switch B Ethernet CFM is triggered to send trap mess...

Страница 252: ...ame SwitchB SwitchB efm enable SwitchB interface ethernet 0 0 1 SwitchB Ethernet0 0 1 bpdu enable SwitchB Ethernet0 0 1 efm enable SwitchB Ethernet0 0 1 quit Step 3 Configure Ethernet CFM between the Switch B and Switch C Configure Switch B SwitchB cfm enable SwitchB cfm md md1 SwitchB md md1 ma ma1 SwitchB md md1 ma ma1 map vlan 10 SwitchB md md1 ma ma1 mep mep id 1 interface ethernet 0 0 2 outwa...

Страница 253: ... Switch B and Switch C in both directions That is enable the EFM OAM and Ethernet CFM modules to send trap messages to each other SwitchC oam mgr SwitchC oam mgr oam bind cfm md md1 ma ma1 efm interface ethernet 0 0 1 SwitchC oam mgr quit Step 6 Verify the configuration On Switch D enable the function of sending debugging information to a terminal SwitchD terminal logging SwitchD terminal monitor ...

Страница 254: ...trunk port trunk allow pass vlan 10 efm enable bpdu enable interface Ethernet0 0 2 port link type trunk port trunk allow pass vlan 10 cfm md md1 ma ma1 map vlan 10 mep mep id 1 interface ethernet0 0 2 outward mep ccm send enable remote mep mep id 2 remote mep ccm receive mep id 2 enable oam mgr oam bind ingress efm interface Ethernet0 0 1 egress cfm md md1 ma ma1 oam bind ingress cfm md md1 ma ma1...

Страница 255: ...e interface Ethernet0 0 1 port link type trunk port trunk allow pass vlan 10 efm mode passive efm enable bpdu enable interface Ethernet0 0 2 port link type trunk port trunk allow pass vlan 10 return 4 18 8 Example for Configuring Association Between Ethernet CFM with Ethernet CFM Networking Requirements As shown in Figure 4 19 Ethernet CFM is configured between Switch A and Switch B and between Sw...

Страница 256: ...1 SwitchA md md1 ma ma1 SwitchA md md1 ma ma1 map vlan 10 SwitchA md md1 ma ma1 mep mep id 1 interface ethernet 0 0 1 outward SwitchA md md1 ma ma1 remote mep mep id 2 SwitchA md md1 ma ma1 mep ccm send enable SwitchA md md1 ma ma1 remote mep ccm receive enable SwitchA md md1 ma ma1 quit SwitchA md md1 quit Configure Switch B Quidway system view Quidway sysname SwitchB SwitchB cfm enable SwitchB c...

Страница 257: ...e SwitchC md md1 ma ma2 quit SwitchC md md1 quit Run the display cfm remote mep command on Switch B to check the CFM status and you can find that the CFM status is Up SwitchB display cfm remote mep The total number of RMEPs is 2 MD Name md1 Level 0 MA Name ma1 RMEP ID 1 Vlan ID 10 VSI Name MAC CCM Receive enabled Trigger If Down disabled CFM Status up Alarm Status RemoteAlarms MD Name md1 Level 0 ...

Страница 258: ...Files l Configuration file of Switch A sysname SwitchA vlan batch 10 cfm enable interface Ethernet0 0 1 port link type trunk port trunk allow pass vlan 10 cfm md md1 ma ma1 map vlan 10 mep mep id 1 interface Ethernet0 0 1 outward mep ccm send mep id 1 enable remote mep mep id 2 remote mep ccm receive mep id 2 enable return l Configuration file of Switch B sysname SwitchB vlan batch 10 20 cfm enabl...

Страница 259: ...trunk allow pass vlan 20 cfm md md1 ma ma2 map vlan 20 mep mep id 2 interface Ethernet0 0 2 outward mep ccm send mep id 2 enable remote mep mep id 1 remote mep ccm receive mep id 1 enable return 4 18 9 Example for Associating Ethernet CFM with RRPP Networking Requirements As shown in Figure 4 20 UPEA UPEB UPEC and PE AGG constitute an RRPP single ring VLANs 100 to 300 are configured on the CE pack...

Страница 260: ... ID of Data VLAN Domain 1 VLAN 5 and VLAN 6 Instance 1 VLANs 100 to 300 Instance 1 For details on the master node and primary and secondary interfaces on the master node of the ring see Table 4 4 Table 4 4 Master node and primary and secondary interfaces on the master node Ring ID Master Node Primary Interface Secondary Interface Ring 1 in domain 1 PE AGG Eth 0 0 1 Eth 0 0 2 Configuration Roadmap ...

Страница 261: ...ntrol VLANs 5 and 6 and data VLANs 100 to 200 in domain 1 to instance 1 UPEA stp region configuration UPEA mst region instance 1 vlan 5 6 100 to 300 Activate the configuration UPEA mst region active region configuration UPEA mst region quit l Configure UPEB Create data VLANs 100 to 300 on UPEB Quidway system view Quidway sysname UPEB UPEB vlan batch 100 to 300 Create instance 1 and map control VLA...

Страница 262: ...onfigure the interfaces to be added to the RRPP ring l Configure UPEA On UPEA disable STP on the interfaces to be added to the RRPP ring Configure the RRPP interfaces to allow packets of VLANs 100 to 300 to pass through UPEA interface ethernet 0 0 1 UPEA Ethernet0 0 1 port link type trunk UPEA Ethernet0 0 1 port trunk allow pass vlan 100 to 300 UPEA Ethernet0 0 1 stp disable UPEA Ethernet0 0 1 qui...

Страница 263: ...t0 0 2 quit Step 3 Create RRPP domains and configure protected VLANs and control VLANs l Configure UPEA Configure the VLANs mapping instance 1 as protected VLANs in domain 1 and configure VLAN 5 as the control VLAN UPEA rrpp domain 1 UPEA rrpp domain region1 protected vlan reference instance 1 UPEA rrpp domain region1 control vlan 5 UPEA rrpp domain region1 quit l Configure UPEB Configure the VLAN...

Страница 264: ...domain region1 ring 1 node mode transit primary port ethernet 0 0 1 secondary port ethernet 0 0 2 level 0 UPEC rrpp domain region1 ring 1 enable UPEC rrpp domain region1 quit l Configure PE AGG Configure PE AGG as the master node of ring 1 in domain 1 Eth 0 0 1 as the primary interface and Eth 0 0 2 as the secondary interface PE AGG rrpp domain 1 PE AGG rrpp domain region1 ring 1 node mode master ...

Страница 265: ...ut UPEA in domain 1 UPEA display rrpp verbose domain 1 Domain Index 1 Control VLAN major 5 sub 6 Protected VLAN Reference Instance 1 ello Timer 1 sec default is 1 sec Fail Timer 3 sec default is 3 sec RRPP Ring 1 Ring Level 0 Node Mode Transit Ring State LinkUp Is Enabled Enable Is Active Yes Primary port Ethernet0 0 1 Port status UP Secondary port Ethernet0 0 2 Port status UP The preceding inform...

Страница 266: ...1 mep mep id 1 interface ethernet 0 0 2 outward UPEA md md1 ma ma1 remote mep mep id 2 UPEA md md1 ma ma1 remote mep ccm receive mep id 2 enable UPEA md md1 ma ma1 mep ccm send enable UPEA md md1 ma ma1 quit UPEA md md1 ma ma2 UPEA md md1 ma ma2 map vlan 100 UPEA md md1 ma ma2 mep mep id 3 interface ethernet 0 0 1 outward UPEA md md1 ma ma2 remote mep mep id 4 UPEA md md1 ma ma2 remote mep ccm rec...

Страница 267: ...mgr oam bind cfm md md1 ma ma1 trigger if down interface ethernet 0 0 1 PE AGG oam mgr oam bind cfm md md1 ma ma2 trigger if down interface ethernet 0 0 2 PE AGG oam mgr quit Step 8 Verify the configuration Shut down Eth 0 0 1 on UPEB and simulate fault on the link of Eth 0 0 1and run the display cfm remote mep command on PE AGG to check the CFM status The following information is displayed PE AGG...

Страница 268: ...ls 0 Ignoreds 0 Frames 0 Discard 0 Total Error 0 Output 0 packets 0 bytes Unicast 0 Multicast 0 Broadcast 0 Jumbo 0 Collisions 0 Deferreds 0 Late Collisions 0 ExcessiveCollisions 0 Buffers Purged 0 Discard 0 Total Error 0 Input bandwidth utilization threshold 100 00 Output bandwidth utilization threshold 100 00 Input bandwidth utilization 0 00 Output bandwidth utilization 0 00 Run the display rrpp...

Страница 269: ...uration instance 1 vlan 5 6 100 to 300 active region configuration rrpp domain 1 control vlan 5 protected vlan reference instance 1 ring 1 node mode transit primary port Ethernet 0 0 1 secondary port Ethernet 0 0 2 level 0 ring 1 enable interface Ethernet0 0 1 port link type trunk port trunk allow pass vlan 5 to 6 100 to 300 stp disable interface Ethernet0 0 2 port link type trunk port trunk allow...

Страница 270: ...llow pass vlan 5 to 6 100 to 300 stp disable interface Ethernet0 0 2 port link type trunk port trunk allow pass vlan 5 to 6 100 to 300 stp disable return l Configuration file of UPEC sysname UPEC vlan batch 5 to 6 100 to 300 rrpp enable stp region configuration instance 1 vlan 5 6 100 to 200 active region configuration rrpp domain 1 control vlan 5 protected vlan reference instance 1 ring 1 node mo...

Страница 271: ... mep id 2 interface Ethernet0 0 1 outward mep ccm send mep id 2 enable remote mep mep id 1 remote mep ccm receive mep id 1 enable ma ma2 map vlan 100 mep mep id 4 interface Ethernet0 0 2 outward mep ccm send mep id 4 enable remote mep mep id 3 remote mep ccm receive mep id 3 enable oam mgr oam bind ingress interface Ethernet0 0 1 egress cfm md md1 ma ma1 oam bind ingress interface Ethernet0 0 2 eg...

Страница 272: ... the S3700 The Y 1731 features supported by the S3700 include one way frame delay measurement and two way frame delay Measurement 5 3 Configuring the One way Frame Delay Measurement in a VLAN You can configure the one way frame delay measurement in the VLAN bound to an MA and estimate the quality of services based on the calculated one way frame delay 5 4 Configuring the Two way Frame Delay Measur...

Страница 273: ...delay measurement DM As shown in Figure 5 1 ITU T Recommendation Y 1731 is commonly deployed on MEPs to implement end to end fast fault detection and performance monitoring Figure 5 1 Application of ITU T Recommendation Y 1731 MA MEP1 MEP2 802 1ag Y 1731 When a user considers that the purchased Ethernet tunnel services are of low quality or when an operator needs to conduct their regular service l...

Страница 274: ...he one way frame delay based on the following formula Frame delay RxTimef TxTimeStampf The frame delay variation namely frame jitter can be calculated based on the frame delay Jitter is used as a measure of the variability over time of the frame delay across a network and is the absolute difference value between two delays Figure 5 2 Networking diagram of the one way frame delay measurement MA MEP...

Страница 275: ... delay measurement in the VLAN bound to an MA and estimate the quality of services based on the calculated one way frame delay 5 3 1 Establishing the Configuration Task Before configuring the one way frame delay measurement familiarize yourself with the applicable environment complete the pre configuration tasks and obtain the required data This can help you complete the configuration task quickly...

Страница 276: ...ith MEPs Procedure Step 1 Run system view The system view is displayed Step 2 Run cfm version draft7 standard The 802 1ag version is set to IEEE Standard 802 1ag 2007 NOTE IEEE 802 1ag has two versions IEEE 802 1ag Draft 7 and IEEE Standard 802 1ag 2007 Y 1731 can be used only on the device complying with IEEE Standard 802 1ag 2007 Therefore run the cfm version command to set the 802 1ag version t...

Страница 277: ...p 3 Run ma ma name The MA view is displayed Step 4 Run delay measure one way threshold threshold value An alarm threshold is set for the two way frame delay measurement End 5 3 4 Configuring DM Frame Reception on a Remote MEP The One way frame delay measurement can work normally only when DM frame reception is configured on a remote MEP Context Do as follows on a remote MEP Quidway S3700 Series Et...

Страница 278: ...l If the local MEP has not learned the MAC address of the RMEP you must specify the destination MAC address for one way frame delay measurement l If the local MEP has learned the MAC address of the RMEP you can specify the RMEP ID for one way frame delay measurement One way frame delay measurement is implemented between the transmitting and receiving MEPs by exchanging DM frames After one way fram...

Страница 279: ...an view the value of the average delay SwitchB display y1731 statistic type oneway delay md md1 ma ma1 01 1DM received Delay 41640 usec Delay variation 0 usec 02 1DM received Delay 43501 usec Delay variation 1861 usec 03 1DM received Delay 8787 usec Delay variation 34714 usec 04 1DM received Delay 43335 usec Delay variation 34548 usec 05 1DM received Delay 43333 usec Delay variation 2 usec 06 1DM ...

Страница 280: ...the local MEP Every field in the DMM frame is copied to the DMR frame except that the source and destination MAC addresses are swapped and the message type is changed from DMM to DMR Upon receiving the DMR frame the local MEP calculates the two way frame delay based on the timestamps NOTE Before enabling the two way delay measurement in the VLAN on the local device you must configure the DMM frame...

Страница 281: ... to IEEE Standard 802 1ag 2007 before configuring Y 1731 CAUTION After the version is changed all CFM configurations are deleted therefore use the cfm version command with caution Step 3 Run cfm md md name The MD view is displayed Step 4 Run ma ma name The MA view is displayed Step 5 Run map vlan vlan id The MA is bound to a VLAN End 5 4 3 Optional Setting an Alarm Threshold for the Two way Frame ...

Страница 282: ...wo way frame delay measurement can work properly only when the devices at both ends are enabled to receive DMM packets Context The following operations must performed on both the local and remote MEP devices Procedure Step 1 Run system view The system view is displayed Step 2 Run cfm md md name The MD view is displayed Step 3 Run ma ma name The MA view is displayed Step 4 Run delay measure two way...

Страница 283: ...amp at the time of sending the DMM frame After receiving the DMM frame the remote MEP adds the RxTimeStampf value timestamp at the time of receiving the DMM frame to the DMM frame generates a DMR frame with the TxTimeStampb value timestamp at the time of sending the DMR frame and sends the message to the requesting MEP Every field in the DMM frame is copied to the DMR frame except that the source ...

Страница 284: ...ec 02 DMR received from 0025 9e80 2494 Delay 508 usec Variation 10 us ec Delay measurement statistics Packets transmitted 2 Valid packets received 2 Average delay 503 usec Average delay variation 10 usec Best case delay 498 usec Worst case delay 508 usec 5 5 Configuration Examples This section provides several configuration examples of Y 1731 5 5 1 Example for Configuring the One way Frame Delay M...

Страница 285: ...itch A Data Preparation To complete the configuration you need the following data l VLAN ID l Alarm threshold of the one way frame delay measurement l Names of the MD and MA Procedure Step 1 Configuring synchronize clock For the configuration procedure see NTP Configuration Step 2 Configure VLANs Configure Switch A Quidway system view Quidway sysname SwitchA SwitchA vlan 2 SwitchA vlan2 quit Switc...

Страница 286: ...chD Ethernet0 0 2 quit SwitchD interface ethernet 0 0 1 SwitchD Ethernet0 0 1 port link type trunk SwitchD Ethernet0 0 1 port trunk allow pass vlan 2 SwitchD Ethernet0 0 1 quit Step 3 Configure basic Ethernet CFM functions Configure Switch A SwitchA cfm version standard SwitchA cfm enable SwitchA cfm md md1 SwitchA md md1 ma ma1 SwitchA md md1 ma ma1 map vlan 2 SwitchA md md1 ma ma1 quit SwitchA m...

Страница 287: ...it SwitchB md md1 quit Step 7 Verify the configuration After the configuration run the display y1731 statistics type oneway delay md md1 ma ma1 command and you can view the statistics about the one way frame delay SwitchB display y1731 statistic type oneway delay md md1 ma ma1 01 1DM received Delay 41640 usec Delay variation 0 usec 02 1DM received Delay 43501 usec Delay variation 1861 usec 03 1DM ...

Страница 288: ...rt link type trunk port trunk allow pass vlan 2 cfm md md1 ma ma1 map vlan 2 mep mep id 2 interface Ethernet0 0 1 outward mep ccm send mep id 2 enable remote mep mep id 1 remote mep ccm receive mep id 1 enable delay measure one way receive return l Configuration file of Switch C sysname SwitchC vlan batch 2 interface Ethernet0 0 1 port link type trunk port trunk allow pass vlan 2 interface Etherne...

Страница 289: ...he number of DM frames sent each time is also set to 10 Figure 5 5 Networking diagram of configuring the two way frame delay measurement in a VLAN SwitchA SwitchB SwitchC SwitchD Ethernet0 0 1 Ethernet0 0 1 Ethernet0 0 2 Ethernet0 0 2 Ethernet0 0 1 Ethernet0 0 1 Configuration Roadmap The configuration roadmap is as follows 1 Configure VLANs on Switch A Switch B Switch C and Switch D 2 Configure MD...

Страница 290: ... view Quidway sysname SwitchC SwitchC vlan 2 SwitchC vlan2 quit SwitchC interface ethernet 0 0 1 SwitchC Ethernet0 0 1 port link type trunk SwitchC Ethernet0 0 1 port trunk allow pass vlan 2 SwitchC Ethernet0 0 1 quit SwitchC interface ethernet 0 0 2 SwitchC Ethernet0 0 2 port link type trunk SwitchC Ethernet0 0 2 port trunk allow pass vlan 2 SwitchC Ethernet0 0 2 quit Configure Switch D Quidway s...

Страница 291: ...chB md md1 ma ma1 SwitchB md md1 ma ma1 mep mep id 2 interface ethernet 0 0 1 outward SwitchB md md1 ma ma1 remote mep mep id 1 SwitchB md md1 ma ma1 mep ccm send mep id 2 enable SwitchA md md1 ma ma1 remote mep ccm receive mep id 1 enable SwitchB md md1 ma ma1 quit SwitchB md md1 quit Step 4 Set the alarm threshold for the two way frame delay measurement to 1000 Configure Switch A SwitchA cfm md ...

Страница 292: ...ec 02 DMR received from 0025 9e80 2494 Delay 508 usec Variation 10 us ec Delay measurement statistics Packets transmitted 2 Valid packets received 2 Average delay 503 usec Average delay variation 10 usec Best case delay 498 usec Worst case delay 508 usec End Configuration Files l Configuration file of Switch A sysname SwitchA vlan batch 2 cfm version standard cfm enable interface Ethernet0 0 1 por...

Страница 293: ...hC vlan batch 2 interface Ethernet0 0 1 port link type trunk port trunk allow pass vlan 2 interface Ethernet0 0 2 port link type trunk port trunk allow pass vlan 2 return l Configuration file of Switch D sysname SwitchD vlan batch 2 interface Ethernet0 0 1 port link type trunk port trunk allow pass vlan 2 interface Ethernet0 0 2 port link type trunk port trunk allow pass vlan 2 return Quidway S370...

Страница 294: ...y negotiated discriminators is configured to check the interworking between a device and another device on which a BFD session is dynamically established The static BFD session with automatically negotiated discriminators is applicable to static routes 6 6 Adjusting BFD Parameters Adjusting BFD parameters enables a BFD session to check links on a network effectively and quickly 6 7 Configuring the...

Страница 295: ...een neighboring forwarding engines with light loads and high speeds l Uses a single mechanism to monitor any medium and protocol layer in real time In addition the detection time and costs are variable 6 2 BFD Features Supported by the S3700 This section describes the BFD features supported by the S3700 The S3700s send BFD control packets based on the negotiated period If an S3700 does not receive...

Страница 296: ...tected by the single hop BFD session only one BFD session can be set up on a specified interface enabled with a specified data protocol Therefore each BFD session is bound to an interface On the S3700 BFD sessions are bound to Layer 2 interfaces Multi Hop BFD Multi hop BFD detects IP connectivity of paths between two non directly connected devices These paths may span multiple hops or overlap Mult...

Страница 297: ...ues of BFD Parameters After a BFD session is set up you can change the values of related parameters such as the expected interval for sending BFD packets the minimum interval for receiving BFD packets and local detection multiplier without affecting the status of the session 6 3 Configuring Single hop BFD A single hop BFD session rapidly detects faults in direct links over a network 6 3 1 Establis...

Страница 298: ...bfd BFD is enabled globally and the BFD view is displayed By default BFD is disabled globally Before configuring the BFD functions you must enable BFD globally otherwise the configuration fails End 6 3 3 Optional Setting the Multicast IP Address of BFD Context Do as follows on S3700s at both ends of the link to be detected Procedure Step 1 Run system view The system view is displayed Step 2 Run bf...

Страница 299: ...e type interface number source ip source ip When creating a single hop BFD session for the first time you must bind the single hop BFD session to the peer IP address and the local address In addition the configuration of the single hop BFD session cannot be changed after being created When BFD configuration items are created the system checks only the format of the IP address rather than the corre...

Страница 300: ...ace number command to check information about the interface where BFD is enabled l Run the display bfd session all static for ip discriminator discr value dynamic peer ip peer ip vpn instance vpn name static auto verbose command to check information about a BFD session l Run the display bfd statistics session all static for ip discriminator discr value dynamic peer ip peer ip vpn instance vpn name...

Страница 301: ...minator 20 10 Received Packets 97 Send Packets 314 Received Bad Packets 169 Send Bad Packets 0 Down Count 32 ShortBreak Count 0 Send Lsp Ping Count 0 Dynamic Session Delete Count 0 Create Time 2007 10 14 16 48 13 Last Down Time 2007 10 14 17 09 11 Total Time From Last DOWN D H M S Total Time From Create 000D 00H 20M 59S Total Session Number 1 6 4 Configuring the Multi Hop BFD By configuring a mult...

Страница 302: ...he switch Procedure Step 1 Run system view The system view is displayed Step 2 Run bfd BFD is enabled globally and the BFD view is displayed End 6 4 3 Creating a BFD Session Context If Unicast Reverse Path Forwarding URPF is enabled on a device on the transmission path of BFD packets this device checks the source IP address of the BFD packets In this case you can specify the correct source IP addr...

Страница 303: ...discarded incorrectly Step 3 Set the identifiers l Run discriminator local discr value The local discriminator is set l Run discriminator remote discr value The remote discriminator is set NOTE When you set the discriminators ensure that the local discriminator at the local end is the same as the remote discriminator at the peer end otherwise the BFD session fails to be set up Step 4 Run commit Th...

Страница 304: ...bose Session MIndex 4096 One Hop State Up Name bfd1 Local Discriminator 22 Remote Discriminator 11 Session Detect Mode Asynchronous Mode Without Echo Function BFD Bind Type Interface Ethernet0 0 1 Bind Session Type Static Bind Peer IP Address 224 0 0 184 NextHop Ip Address 224 0 0 184 Bind Interface Ethernet0 0 1 FSM Board Id 0 TOS EXP 7 Min Tx Interval ms 1000 Min Rx Interval ms 1000 Actual Tx In...

Страница 305: ...ing a static BFD session with automatically negotiated discriminators familiarize yourself with the applicable environment complete the pre configuration tasks and obtain data required for the configuration This will help you complete the configuration task quickly and accurately Applicable Environment If a dynamic BFD session is used by a remote device a static BFD session with automatically nego...

Страница 306: ... 3 Configuring a Static BFD Session with Automatically Negotiated Discriminators Context Do as follows on the Switch where the static BFD session with automatically negotiated discriminators is used to detect the link Procedure Step 1 Run system view The system view is displayed Step 2 Run bfd cfg name bind peer ip ip address vpn instance vpn name interface interface type interface number source i...

Страница 307: ...r IP Address 11 1 1 1 Bind Interface Bind Source IP Address 11 1 1 2 FSM Board Id 0 TOS EXP 7 Min Tx Interval ms 1000 Min Rx Interval ms 1000 Actual Tx Interval ms 1000 Actual Rx Interval ms 1000 Local Detect Multi 3 Detect Interval ms 3000 Echo Passive Disable Acl Number Destination Port 3784 TTL 253 Proc Interface Status Disable WTR Interval ms Active Multi 3 Last Local Diagnostic No Diagnostic ...

Страница 308: ...itored by a BFD session If none of the preceding parameters is set the default configurations are used Pre configuration Tasks Before adjusting BFD parameters you need to set up a BFD session Data Preparation To adjust BFD parameters you need the following data No Data 1 BFD configuration name 2 Local intervals at which BFD packets are sent and received 3 Local BFD detection multiplier 4 Priority ...

Страница 309: ...By default the local detection multiplier is 3 Step 6 Run commit The configuration takes effect End 6 6 3 Adding the Description of a BFD Session Descriptions of BFD sessions help you distinguish between various BFD sessions Context NOTE The description command takes effect only on statically configured BFD sessions not on BFD sessions that are dynamically configured or BFD sessions that are creat...

Страница 310: ... The WTR time for a BFD session is used to prevent frequent master slave switchovers caused by BFD session flapping If a BFD session changes from Down to Up BFD reports the change to an upper layer application after the WTR time expires Do as follows on the switch Procedure Step 1 Run system view The system view is displayed Step 2 Run bfd cfg name The BFD session view is displayed Step 3 Run wtr ...

Страница 311: ...Run commit The configuration takes effect End 6 6 6 Checking the Configuration Procedure Step 1 Run the display bfd configuration all static for ip name cfg name discriminator local discr value dynamic peer ip peer ip vpn instance vpn name static auto verbose commands to check the configuration of BFD Step 2 Run the display bfd session all static for ip discriminator discr value dynamic peer ip pe...

Страница 312: ...ms 1000 Actual Tx Interval ms 1000 Actual Rx Interval ms 1000 Local Detect Multi 3 Detect Interval ms 3000 Echo Passive Disable Acl Number Destination Port 3784 TTL 255 Proc Interface Status Disable WTR Interval ms Active Multi 3 Last Local Diagnostic No Diagnostic Bind Application No Application Bind Session TX TmrID 4491 Session Detect TmrID 4492 Session Init TmrID Session WTR TmrID Session Echo...

Страница 313: ...lap the NMS receives a great number of trap messages The interval at which trap messages are sent is set helping a device suppress trap messages Context Do as follows on the switch that needs to be configured with the interval at which trap messages are sent Procedure Step 1 Run system view The system view is displayed Step 2 Run bfd BFD is enabled globally and the global BFD view is displayed Ste...

Страница 314: ...to maintain BFD by deleting BFD statistics and monitoring BFD operation 6 8 1 Clearing BFD Statistics Deleting previous BFD statistics is recommended before BFD statistics within a specified period of time are collected Context CAUTION BFD statistics cannot be restored after being deleted Exercise caution when using the command Procedure Step 1 Run the reset bfd statistics all discriminator discr ...

Страница 315: ...ides several configuration examples of BFD 6 9 1 Example for Configuring Single Hop BFD on a Layer 2 Interface Networking Requirements Interfaces of the S3700 are Layer 2 interfaces If you need to detect the connectivity of the Layer 2 forwarding link between two directly connected S3700s configure single hop BFD and bind the BFD session to a multicast IP address and local interface As shown in Fi...

Страница 316: ...ession atob quit Step 2 Configure single hop BFD on Switch B Enable BFD on Switch B Quidway system view Quidway sysname SwitchB SwitchB bfd SwitchB bfd quit Create a BFD session on Switch B SwitchB bfd btoa bind peer ip default ip interface ethernet 0 0 1 SwitchB bfd session btoa discriminator local 2 SwitchB bfd session btoa discriminator remote 1 SwitchB bfd session btoa commit SwitchB bfd sessi...

Страница 317: ... bfd atob bind peer ip default ip interface Ethernet0 0 1 discriminator local 1 discriminator remote 2 commit return l Configuration file of Switch B sysname SwitchB bfd bfd btoa bind peer ip default ip interface Ethernet0 0 1 discriminator local 2 discriminator remote 1 commit return 6 9 2 Example for Configuring Single Hop BFD on a VLANIF Interface Networking Requirements The S3700s are connecte...

Страница 318: ...ns Default values of minimum intervals for sending BFD control packets minimum intervals for receiving BFD control packets and local detection multipliers Procedure Step 1 On Switch A and Switch B create VLAN 13 configure Eth 0 0 1 interfaces as hybrid interfaces and add Eth 0 0 1 interfaces to VLAN 13 Configure Switch A Quidway system view Quidway sysname SwitchA SwitchA vlan 13 SwitchA vlan13 qu...

Страница 319: ...tion Output bandwidth utilization Step 3 Configure single hop BFD on Switch A Enable BFD on Switch A SwitchA bfd SwitchA bfd quit Create a BFD session on SwitchA SwitchA bfd atob bind peer ip 10 1 1 6 interface vlanif 13 SwitchA bfd session atob discriminator local 1 SwitchA bfd session atob discriminator remote 2 SwitchA bfd session atob commit SwitchA bfd session atob quit Step 4 Configure singl...

Страница 320: ...ostic No Diagnostic Bind Application No Application Bind Session TX TmrID 16392 Session Detect TmrID Session Init TmrID Session WTR TmrID Session Echo Tx TmrID PDT Index FSM 0 RCV 0 IF 0 TOKEN 0 Session Description Total UP DOWN Session Number 0 1 End Configuration Files l Configuration file of Switch A sysname SwitchA vlan batch 13 bfd interface Vlanif13 ip address 10 1 1 5 255 255 255 0 interfac...

Страница 321: ...itchB SwitchC Etherent0 0 1 VLAN 10 VLAN 20 Etherent0 0 1 Etherent0 0 2 Etherent0 0 1 Configuration Roadmap The configuration roadmap is as follows 1 Configure a BFD session on Switch A to detect the multi hop path from Switch A toSwitch C 2 Configure a BFD session on Switch C to detect the multi hop path from Switch C toSwitch A Data Preparation To complete the configuration you need the followin...

Страница 322: ... 1 1 2 The configuration of Switch C is the same as the configuration of Switch A and is not mentioned here Step 3 Configure multi hop BFD on Switch A and Switch C Create a BFD session with Switch C on Switch A SwitchA bfd SwitchA bfd quit SwitchA bfd atoc bind peer ip 10 2 1 2 SwitchA bfd session atoc discriminator local 10 SwitchA bfd session atoc discriminator remote 20 SwitchA bfd session atoc...

Страница 323: ...nd Session TX TmrID 16445 Session Detect TmrID Session Init TmrID 16447 Session WTR TmrID Session Echo Tx TmrID PDT Index FSM 0 RCV 0 IF 0 TOKEN 0 Session Description Total UP DOWN Session Number 0 1 End Configuration Files l Configuration file of Switch A sysname SwitchA vlan batch 10 bfd interface Vlanif10 ip address 10 1 1 1 255 255 0 0 interface Ethernet0 0 1 port hybrid pvid vlan 10 port hybr...

Страница 324: ...h 20 interface Vlanif20 ip address 10 2 1 2 255 255 0 0 interface Ethernet0 0 1 port hybrid pvid vlan 20 port hybrid untagged vlan 20 bfd ctoa bind peer ip 10 1 1 1 discriminator local 20 discriminator remote 10 commit ip route static 10 1 0 0 255 255 0 0 10 2 1 1 return Quidway S3700 Series Ethernet Switches Configuration Guide Reliability 6 BFD Configuration Issue 01 2011 10 26 Huawei Proprietar...

Страница 325: ...ing VRRP to Track the Status of an Interface By configuring a VRRP backup group to track the interface status you can implement the backup function when the interface fails 7 5 Configuring VRRP to Tracking the BFD Session Status This section describes how to configure VRRP to track the BFD session status to implement fast switchover 7 6 Configuring VRRP Security On a network at security risks by c...

Страница 326: ...ain VRRP Detailed operations include deleting VRRP statistics and monitoring the VRRP operation status 7 11 Configuration Examples This section provides several configuration examples of VRRP Quidway S3700 Series Ethernet Switches Configuration Guide Reliability 7 VRRP and VRRP6 Configuration Issue 01 2011 10 26 Huawei Proprietary and Confidential Copyright Huawei Technologies Co Ltd 314 ...

Страница 327: ... gateways is required VRRP is a fault tolerant protocol defined in RFC 3768 VRRP allows the hosts to select one of routes to multiple egress gateways by separating logical devices from physical devices On a LAN for example an Ethernet with multicast and broadcast capabilities VRRP uses logical gateways to provide high availability for transmission links preventing a gateway failure from interrupti...

Страница 328: ...nfigure up to eight BFD sessions The switchover can be complete within 1 second Working with the BFD sessions VRRP shortens the duration of the switchover Enable Disable the Ping Function to the Virtual IP Address To ping through virtual IP addresses that are used in the VRRP backup group you can monitor the operating status of the virtual switches but the VRRP backup group may suffer the ICMP att...

Страница 329: ... for IPv4 Master backup mode Supported Supported Load balancing mode Supported Supported Interface status tracking Supported Supported Fast VRRP switchover Supported Supported Pinging a virtual IP address Supported Supported Security authentication of VRRP backup groups Not supported Supported Smooth VRRP switching Not supported Supported mVRRP Supported Supported 7 3 Configuring the VRRP Backup G...

Страница 330: ... 2 and the backup device in backup group 1 Some hosts on the network use backup group 1 as their gateway and others use backup group 2 as their gateway In this case they can back up each other and share the traffic NOTE The VLANIF interface support VRRP Pre configuration Tasks Before configuring the VRRP backup group complete the following tasks l Configuring network layer attributes for the inter...

Страница 331: ...en you assign another virtual IP address to the backup group the system adds this address into the virtual IP address list of this backup group For users who require equivalent VRRP reliability a backup group can be configured with multiple virtual IP addresses Different addresses serve different user groups This is easy to manage and can prevent users default gateway addresses from varying with t...

Страница 332: ... local indicates the virtual IPv6 address assigned to a VRRP6 backup group is a link local address The link local address is an IPv6 address with the prefix being FE80 The link local address takes effect only on a local link because it is used by neighboring nodes along the link to communicate with each other An IPv6 switch never forwards packets carrying link local addresses To assign a virtual I...

Страница 333: ...ep as required to configure VRRP for IPv4 VRPv4 or VRRP for IPv6 VRRPv6 Procedure l For VRRP for IPv4 run the following commands 1 Run system view The system view is displayed 2 Run interface interface type interface number The VLANIF interface view is displayed 3 Run vrrp vrid virtual router id priority priority value The priority of the switch in a VRRP backup group is configured By default the ...

Страница 334: ...essages is configured By default a super VLAN sends VRRP Advertisement packets only to the sub VLAN with the smallest VLAN ID among all the sub VLANs in Up state End 7 3 5 Checking the Configuration By viewing the status of a VRRP backup group you can check whether the configurations are successful Prerequisite The configurations of the VRRP backup group function are complete Procedure l Run the d...

Страница 335: ... Preempt YES Delay Time 0 TimerRun 1 TimerConfig 1 Auth Type NONE Virtual Mac 0000 5e00 0101 Check TTL YES Config type normal vrrp Config track link bfd down number 0 Vlanif100 Virtual Router 2 state Backup Virtual IP 10 1 1 112 Master IP 10 1 1 1 PriorityRun 100 PriorityConfig 100 MasterPriority 120 Preempt YES Delay Time 0 TimerRun 1 TimerConfig 1 Auth Type NONE Virtual Mac 0000 5e00 0102 Check ...

Страница 336: ...y The method of tracking the status of the interface are as follows 1 When the tracked interface is Down the priority of the switch in the backup group reduces by a certain value automatically to be lower than that of other switchs in the group 2 The switch with the highest priority becomes the master switch and thus the master backup switchover of the VRRP backup group is complete Pre configurati...

Страница 337: ...ddress owner reduced value reduced specifies the value by which the priority decreases when the tracked interface goes Down The value ranges from 1 to 255 The lowest priority is 1 When the priority is decreased to 1 a VRRP Advertisement packet with priority 0 is sent The priority 0 is reserved in the system for special use When the backup device receives a VRRP Advertisement packet with the priori...

Страница 338: ...served for only the IP address owner reduced value reduced specifies the value by which the priority decreases when the tracked interface goes Down The value ranges from 1 to 255 The lowest priority is 1 When the priority is decreased to 1 a VRRP Advertisement packet with priority 0 is sent The priority 0 is reserved in the system for special use When the backup device receives a VRRP Advertisemen...

Страница 339: ...eempt YES Delay Time 0 TimerRun 1 TimerConfig 1 Auth Type NONE Virtual Mac 0000 5e00 0101 Check TTL YES Config type normal vrrp Config track link bfd down number 0 Track IF Ethernet0 0 2 priority reduced 10 IF State UP Quidway display vrrp6 Vlanif10 Virtual Router 1 State Master Virtual IP FE80 1 2 Master IP FE80 218 82FF FED3 2AF1 PriorityRun 200 PriorityConfig 200 MasterPriority 200 Preempt YES ...

Страница 340: ...e to ensure network connectivity l Configuring a VRRP group l Creating BFD sessions Data Preparation To configure VRRP to track the BFD session status you need the following data No Data 1 VRRP group ID 2 ID or name of the tracked BFD session 7 5 2 Tracking the Status of a BFD Session By tracking a BFD session a VRRP backup group can perform the fast VRRP switchover when being notified by the BFD ...

Страница 341: ...be switched fast When a VRRP backup group monitors both BFD sessions and interfaces the maximum number of BFD sessions and interfaces is 8 If increased value increased is specified the value of the increased VRRP backup group priority can exceed the priority of the master VRRP backup group when all the tracked BFD sessions or interfaces go Down Otherwise if the VRRP backup group takes precedence o...

Страница 342: ...creases note that if the priority of the Backup switch in a backup group is higher than that of the Master switch whose priority is changed the fast switchover is performed When configuring a VRRP6 backup group to track the status of a BFD session note the following points l If the parameter session name bfd configure name is specified the VRRP backup group can track the status of only dynamic BFD...

Страница 343: ... be configured as the authentication key The process of simple text authentication is as follows l Device that sends packets adds the authentication key into VRRP packets l Device that receives packets compares the received authentication key with the local authentication key If they are the same VRRP packets are valid Otherwise the switch discards the received VRRP packets and sends a Trap packet...

Страница 344: ...irtual address A backup group is created and its virtual IP address is specified Step 4 optional Run vrrp vrid virtual router id priority priority value The priority of the switch in the backup group is configured Step 5 Run vrrp vrid virtual router id authentication mode simple key md5 md5 key The authentication mode for VRRP packets is configured The authentication key on the master device must ...

Страница 345: ...nfig 120 MasterPriority 120 Preempt YES Delay Time 20 TimerRun 1 TimerConfig 1 Auth Type MD5 Auth key 6M PO438G Q Q MAF4 1 Virtual Mac 0000 5e00 0101 Check TTL YES Config type normal vrrp Config track link bfd down number 0 According to the preceding command output the Auth Type field displays MD5 and the Auth key field displays 6M PO438G Q Q MAF4 1 That is VRRP backup group 1 adopts MD5 authentic...

Страница 346: ...er backup switchover l By enabling the test on the reachability of the virtual IP address you can ping the virtual IP address to check the network connectivity l By prohibiting the system from checking number of hops in VRRP packets you can improve the compatibility of Huawei routers with different vendors routers Pre configuration Tasks Before adjusting and optimizing VRRP complete the following ...

Страница 347: ...ckets at very short intervals may lead to frequent VRRP switchover In this case you can increase the interval NOTE l If the advertise interval parameters set for two VRRP devices are the same the two devices can work in master and slave mode l If the advertise interval parameters set for two VRRP devices are different both the two devices are in master state l For VRRP6 run the following commands ...

Страница 348: ...gher than that of the current master switch The original master switch becomes a backup switch After the preemption delay period is set the backup switch is delayed to preempt the master switch Run the vrrp vrid virtual router id preempt mode disable command to configure switchs in the backup group with the non preemption mode In the non preemption mode if a switch in the backup group becomes the ...

Страница 349: ...d to adopt the non preemption mode on theswitch of the VRRP6 backup group In non preemption mode after a certain switch becomes the master router in the backup group and works normally another switch cannot preempt the master router even if its priority is set to a value higher than that of the master router When the IPv6 address owner recovers from a fault the router immediately becomes the maste...

Страница 350: ... cause ICMP attacks To prevent this you can run the undo vrrp virtual ip ping enable command to disable the function of testing reachability of a virtual IP address End 7 7 5 Disabling a Switch from Checking Number of Hops in VRRP Packets By prohibiting the check of TTLs in VRRP packets you can improve compatibility between devices of different vendors Context Defined in RFC 3768 the system detect...

Страница 351: ...t in VRRP6 packets is disabled By default the hop limit in VRRP6 packets is checked You can run the undo vrrp6 un check hop limit command to enable the switch to check the hop limit in VRRP6 packets End 7 7 6 Configuring the Timeout Time of Sending Gratuitous ARP Packets by the Master router By adjusting the interval for sending gratuitous ARP packets on the master device you can reduce the number...

Страница 352: ...s of VRRP l Run the display vrrp6 interface interface type interface number vrid virtual router id brief command to check the status and configurations of the VRRP6 backup group End Example Run the display vrrp command and you can view the modified VRRP parameter For example the TimerRun field and the TimerConfig field display 20 That is the interval for sending the VRRP advertisement packet is mo...

Страница 353: ... configuration tasks and obtain the required data This can help you complete the configuration task quickly and accurately Application Environment Figure 7 2 mVRRP determines the dual homing of the master and slave switches NPE1 NPE2 UPE mVRRP As shown in Figure 7 2 when the convergence layer of the Metro Ethernet ME dual NPEs are deployed for high reliability The master and standby switches are d...

Страница 354: ... homed to NPEs through two physical links You can bind the member interfaces to the mVRRP backup group to determine the master member interfaces and the slave interfaces Pre configuration Tasks Before configuring mVRRP complete the following tasks l Configuring attributes of network layer of interfaces for connectivity Data Preparation To configure mVRRP you need the following data No Data 1 ID of...

Страница 355: ...vrid virtual router id virtual ip virtual ipv6 address link local A VRRP6 backup group is created and a virtual IPv6 address is assigned to the VRRP backup group 4 Run vrrp6 vrid virtual router id priority priority value The priority of the VRRP6 backup group is configured 5 Run admin vrrp6 vrid virtual router id This VRRP6 backup group is configured as an mVRRP6 backup group End 7 8 3 Optional Co...

Страница 356: ...group becomes dependent That is the member VRRP backup group deletes the protocol timer and no longer sends or receives packets and implements its state machine by directly copying the status of the mVRRP backup group The backup member can be bound to only one mVRRP NOTE Only a single member VRRP backup group can be configured on a single interface l For VRRP for IPv6 1 Run system view The system ...

Страница 357: ...ing information about the mVRRP backup group l Run the display vrrp binding admin vrrp interface interface type1 interface number1 vrid virtual router id member vrrp interface interface type2 interface number2 vrid virtual router id command to check the binding between the mVRRP backup group and the member VRRP backup groups l Run the display vrrp binding admin vrrp interface interface type1 inter...

Страница 358: ... undertake this configuration task to upgrade the VRRP version as required Pre configuration Tasks Before configuring VRRP version upgrade complete the following tasks l Installing the device and powering it on properly l Ensuring that VRRPv2 is running on the device Data Preparation To configure VRRP version upgrade you need the following data No Data 1 VRRP version number 7 9 2 Configuring VRRPv...

Страница 359: ...rsion information End Example After the configuration run the display vrrp protocol information command and you can view that the VRRP protocol version is v3 and the mode for sending Advertisement packets is send v3 only Quidway display vrrp protocol information VRRP protocol information is shown as below VRRP protocol version v3 Send advertisement packet mode send v3 only 7 10 Maintaining VRRP Th...

Страница 360: ...er End 7 11 Configuration Examples This section provides several configuration examples of VRRP 7 11 1 Example for Configuring VRRP in Master Backup Mode Networking Requirements As shown in Figure 7 3 Host A communicates with Host B through the default gateway The requirements are as follows l The VRRP group that consists of SwitchA and SwitchB functions as the default gateway of Host A l SwitchA ...

Страница 361: ...4 Configuration Roadmap The configuration roadmap is as follows 1 Configure VLANIF interfaces and assign IP addresses to the VLANIF interface 2 Configure the OSPF protocol between Switch A Switch B and Switch C to implement interworking between them 3 Create VRRP group 1 on VLANIF 100 of Switch A Set the highest priority for Switch A in the VRRP group to ensure that Switch A functions as the maste...

Страница 362: ... system view Quidway sysname SwitchB SwitchB interface vlanif 100 SwitchB Vlanif100 ip address 10 1 1 2 24 SwitchB Vlanif100 quit SwitchB interface vlanif 400 SwitchB Vlanif400 ip address 192 168 2 1 24 SwitchB Vlanif400 quit Configure an IP address for the VLANIF interface on Switch C Quidway system view Quidway sysname SwitchC SwitchC interface vlanif 200 SwitchC Vlanif200 ip address 192 168 1 2...

Страница 363: ...IP address to the VLANIF interface Create VRRP group 1 and retain the default priority of SwitchB in the VRRP group so that Switch B functions as the backup SwitchB interface vlanif 100 SwitchB Vlanif100 vrrp vrid 1 virtual ip 10 1 1 111 SwitchB Vlanif100 quit Step 4 Verify the configuration l The VRRP group can function as the gateway After the preceding configuration Host A can ping Host B Run t...

Страница 364: ...ip routing table Route Flags R relied D download to fib Routing Tables Public Destinations 9 Routes 10 Destination Mask Proto Pre Cost Flags NextHop Interface 10 1 1 0 24 Direct 0 0 D 10 1 1 2 Vlanif100 10 1 1 2 32 Direct 0 0 D 127 0 0 1 InLoopBack0 20 1 1 0 24 OSPF 10 2 D 192 168 2 2 Vlanif200 127 0 0 0 8 Direct 0 0 D 127 0 0 1 InLoopBack0 127 0 0 1 32 Direct 0 0 D 127 0 0 1 InLoopBack0 192 168 1...

Страница 365: ...t0 0 1 port hybrid pvid vlan 100 port hybrid untagged vlan 100 interface Ethernet0 0 2 port hybrid pvid vlan 200 port hybrid untagged vlan 200 ospf 1 area 0 0 0 0 network 192 168 1 0 0 0 0 255 network 10 1 1 0 0 0 0 255 return l Configuration file of Switch B sysname SwitchB vlan batch 100 400 interface Vlanif100 ip address 10 1 1 2 255 255 255 0 vrrp vrid 1 virtual ip 10 1 1 111 interface Vlanif4...

Страница 366: ...68 1 0 0 0 0 255 network 192 168 2 0 0 0 0 255 network 20 1 1 0 0 0 0 255 return 7 11 2 Example for Configuring VRRP in Load Balancing Mode Networking Requirements As shown in Figure 7 4 l Switch A is the master device in VRRP group 1 and the backup device in VRRP group 2 l Switch B is the master device in VRRP group 2 and the backup device in VRRP group 1 l Host A on the internal network uses VRR...

Страница 367: ...Eth 0 0 2 VLANIF400 192 168 2 1 24 Switch C Eth 0 0 1 VLANIF300 20 1 1 1 24 Eth 0 0 2 VLANIF200 192 168 1 2 24 Eth 0 0 3 VLANIF400 192 168 2 2 24 Configuration Roadmap The configuration roadmap is as follows 1 Implement networking between Switch A Switch B and Switch C 2 Create two VRRP groups on VLANIF 100 of Switch A Configure Switch A as the master device in VRRP group 1 and the backup device i...

Страница 368: ...A Vlanif100 quit On Switch B assign an IP address to VLANIF 100 Create VRRP group 1 and retain the default priority 100 of Switch B in VRRP group 1 so that Switch B functions as the backup Create VRRP group 2 on Switch B and set the priority of Switch B in VRRP group 2 to 120 so that Switch B functions as the master in VRRP group 2 Quidway system view Quidway sysname SwitchB SwitchB interface vlan...

Страница 369: ...1 2 PriorityRun 100 PriorityConfig 100 MasterPriority 120 Preempt YES Delay Time 0 TimerRun 1 TimerConfig 1 Auth Type NONE Virtual Mac 0000 5e00 0102 Check TTL YES Config type normal vrrp Config track link bfd down number 0 End Configuration Files l Configuration file of Switch A sysname SwitchA vlan batch 100 200 interface Vlanif100 ip address 10 1 1 1 255 255 255 0 vrrp vrid 1 virtual ip 10 1 1 ...

Страница 370: ...turn l Configuration file of Switch C sysname SwitchC vlan batch 200 300 400 interface Vlanif200 ip address 192 168 1 2 255 255 255 0 interface Vlanif300 ip address 20 1 1 1 255 255 255 0 interface Vlanif400 ip address 192 168 2 2 255 255 255 0 interface Ethernet0 0 1 port hybrid pvid vlan 300 port hybrid untagged vlan 300 interface Ethernet0 0 2 port hybrid pvid vlan 200 port hybrid untagged vlan...

Страница 371: ...tandby switchover should be completed within 1 second That is fast switchover is required on the bearer network Figure 7 5 Networking of VRRP fast switchover Backup group 10 Virtual IP address 10 1 1 3 24 SwitchA SwitchB SwitchC SwitchD UMG VLAN Ethernet0 0 2 Backbone Network Ethernet0 0 1 Ethernet0 0 1 Ethernet0 0 2 Device Interface VLANIF interface IP address Switch A Eth 0 0 1 VLANIF100 10 1 1 ...

Страница 372: ...tails see Figure 7 5 Step 2 Create a BFD session Create a BFD session on Switch A Quidway system view Quidway sysname SwitchA SwitchA bfd SwitchA bfd quit SwitchA bfd atob bind peer ip 10 1 1 2 interface vlanif 200 SwitchA bfd session atob discriminator local 1 SwitchA bfd session atob discriminator remote 2 SwitchA bfd session atob commit SwitchA bfd session atob quit Create a BFD session on Swit...

Страница 373: ... Vlanif100 vrrp vrid 10 track bfd session 2 increased 40 SwitchB Vlanif100 quit Run the display vrrp command on Switch A or Switch B and you can see that Switch A is the master and Switch B is the backup You can also view the tracked BFD session and its status on Switch B SwitchA display vrrp Vlanif100 Virtual Router 10 state Master Virtual IP 10 1 1 3 Master IP 10 1 1 1 PriorityRun 160 PriorityCo...

Страница 374: ...IP 10 1 1 1 PriorityRun 160 PriorityConfig 160 MasterPriority 0 Preempt YES Delay Time 0 TimerRun 1 TimerConfig 1 Auth Type NONE Virtual Mac 0000 5e00 0110 Check TTL YES Config type normal vrrp Config track link bfd down number 0 Run the display vrrp command on Switch B and you can see that Switch B becomes the master and the status of the BFD session changes to Down SwitchB display vrrp Vlanif100...

Страница 375: ...ysname SwitchB vlan batch 100 200 bfd interface Vlanif100 ip address 10 1 1 2 255 255 255 0 vrrp vrid 10 virtual ip 10 1 1 3 vrrp vrid 10 priority 140 vrrp vrid 10 track bfd session 2 increased 40 interface Vlanif200 ip address 192 168 0 2 255 255 255 0 interface Ethernet0 0 1 port hybrid pvid vlan 100 port hybrid untagged vlan 100 interface Ethernet0 0 2 port hybrid pvid vlan 200 port hybrid unta...

Страница 376: ...tworking of VRRP6 Ethernet HostB HostA Virtual IP Address 2000 1 Ethernet0 0 1 Vlanif100 2000 2 Ethernet0 0 1 Vlanif100 2000 3 SwitchA SwitchB Master Backup Network Configuration Roadmap The configuration roadmap is as follows 1 Configure IPv6 addresses for interfaces 2 Configure virtual IPv6 addresses Data Preparation To complete the configuration you need the following data l VRRP6 group ID l Pr...

Страница 377: ...tchB Vlanif100 ipv6 enable SwitchB Vlanif100 ipv6 address 2000 3 64 Step 3 Configure virtual IPv6 addresses on interfaces in the VRRP6 group Configure SwitchA SwitchA Vlanif100 vrrp6 vrid 24 virtual ip fe80 1 link local SwitchA Vlanif100 vrrp6 vrid 24 virtual ip 2000 1 SwitchA Vlanif100 quit Configure SwitchB SwitchB Vlanif100 vrrp6 vrid 24 virtual ip fe80 1 link local SwitchB Vlanif100 vrrp6 vrid...

Страница 378: ...onfig track link bfd down number 0 End Configuration Files l Configuration file of SwitchA sysname SwitchA vlan batch 100 ipv6 interface Vlanif100 ipv6 enable ipv6 address 2000 2 64 vrrp6 vrid 24 virtual ip FE80 1 link local vrrp6 vrid 24 virtual ip 2000 1 interface Ethernet0 0 1 port hybrid pvid vlan 100 port hybrid untagged vlan 100 return l Configuration file of SwitchB sysname SwitchB vlan bat...

Страница 379: ...r Figure 7 7 Networking of VRRP in load balancing mode HostA 2000 3 64 Ethernet0 0 1 Ethernet SwitchA group 1 Master group 2 Backup HostC 2003 1 64 SwitchC HostB 2000 4 64 Virtual IP Address 2000 60 Backup group 2 Virtual IP Address 2000 100 Backup group 1 SwitchB group 1 Backup group 2 Master Ethernet0 0 1 Ethernet0 0 2 Ethernet0 0 2 Ethernet0 0 1 Ethernet0 0 2 Ethernet0 0 3 Device Interface VLAN...

Страница 380: ...f Host B to 2000 60 which is the virtual IPv6 address of VRRP group 2 Set the default gateway address of Host C to 2003 2 Step 4 Configure VRRP6 groups Create VRRP group 1 and VRRP group 2 on VLANIF 100 of Switch A Set the priority of Switch A in VRRP group 1 to 120 so that Switch A becomes the master device in VRRP group 1 Use the default priority of Switch A in VRRP group 2 so that Switch A beco...

Страница 381: ...erConfig 100 Virtual MAC 0000 5e00 0201 Check hop limit YES Config type normal vrrp Config track link bfd down number 0 Vlanif100 Virtual Router 2 State Backup Virtual IP FE80 2 2000 60 Master IP FE80 200 FF FE00 24 PriorityRun 100 PriorityConfig 100 MasterPriority 120 Preempt YES Delay time 0 TimerRun 100 TimerConfig 100 Virtual MAC 0000 5e00 0202 Check hop limit YES Config type normal vrrp Confi...

Страница 382: ...6 address 2000 1 64 vrrp6 vrid 1 virtual ip FE80 1 link local vrrp6 vrid 1 virtual ip 2000 100 vrrp6 vrid 1 priority 120 vrrp6 vrid 2 virtual ip FE80 2 link local vrrp6 vrid 2 virtual ip 2000 60 ospfv3 1 area 0 0 0 0 interface Vlanif200 ipv6 enable ipv6 address 2002 1 64 ospfv3 1 area 0 0 0 0 interface Ethernet0 0 1 port hybrid pvid vlan 100 port hybrid pvid untagged 100 interface Ethernet0 0 2 po...

Страница 383: ...itch C sysname SwitchC vlan batch 200 300 400 ipv6 ospfv3 1 router id 3 3 3 3 interface Vlanif200 ipv6 enable ipv6 address 2002 2 ospfv3 1 area 0 0 0 0 interface Vlanif300 ipv6 enable ipv6 address 2003 2 64 ospfv3 1 area 0 0 0 0 interface Vlanif400 ipv6 enable ipv6 address 2001 2 64 ospfv3 1 area 0 0 0 0 interface Ethernet0 0 1 port hybrid pvid vlan 200 port hybrid pvid untagged 200 interface Ethe...

Страница 384: ...r Configuring Association Between an EFM OAM Module and an Interface l 4 18 6 Example for Configuring Association Between an Ethernet CFM Module and an Interface l 4 18 7 Example for Configuring Association Between an EFM OAM Module and an Ethernet CFM Module l 4 18 8 Example for Configuring Association Between Ethernet CFM with Ethernet CFM l 4 18 9 Example for Associating Ethernet CFM with RRPP ...

Страница 385: ...l MAC swap loopback test and remote MAC swap loopback test 9 3 Configuring Local MAC Swap Loopback By configuring local MAC swap loopback you can test connectivity and performance of a switch and the Ethernet network connected to the switch 9 4 Configuring Remote MAC Swap Loopback By configuring remote MAC swap loopback you can test connectivity and performance of the Ethernet network connected to...

Страница 386: ...stination MAC addresses of all Ethernet frames that match the local MAC swap loopback configuration and sends the Ethernet frames back to the tester through the specified outbound interface The tester then analyzes network performance based on Ethernet frames sent from the tested switch When a local MAC swap test is performed on an interface services on the interface are interrupted but services o...

Страница 387: ...iliarize yourself with the applicable environment complete the pre configuration tasks and obtain the data required for the configuration This can help you complete the configuration task quickly and accurately Applicable Environment Before using an S3700 to provide services for users perform a local MAC swap loopback test on the S3700 to check whether the S3700 can provide services properly This ...

Страница 388: ...Context Before performing a local MAC swap loopback test configure the source MAC address destination MAC address and VLAN ID of test packets on the S3700 Only the packets with the specified source MAC address destination MAC address and VLAN ID are looped back Procedure Step 1 Run system view The system view is displayed Step 2 Run interface interface type interface number The interface view is d...

Страница 389: ...ck function when the loopback test begins and disable it immediately after the loopback test is complete Procedure Step 1 Run system view The system view is displayed Step 2 Run interface interface type interface number The interface view is displayed MAC swap loopback tests cannot be performed on an Eth Trunk interface or its member interfaces Step 3 Run loopback swap mac start The MAC swap loopb...

Страница 390: ...imes out To perform the loopback test again run the loopback swap mac start command End 9 3 5 Checking the Configuration After configuring the local MAC swap loopback function use the following command to verify the configuration Prerequisite All configurations of local MAC swap loopback are complete Procedure l Run the display loopback swap mac information command to view the configuration of loc...

Страница 391: ...mance of the network between an S3700 uplink interface and a remote device The remote MAC swap loopback test can also check whether VLAN mapping and VLAN stacking are configured successfully on the uplink interface A remote MAC swap loopback test checks connectivity and performance of the network between a tester and a tested switch but does not check performance of the tested switch Pre configura...

Страница 392: ...lan id inner vlan inner vlan id timeout time value none Remote MAC swap loopback is configured NOTE The S3700EI and S3700SI do not support the inner vlan inner vlan id parameter CAUTION A remote MAC swap loopback test modifies only Ethernet frames matching the MAC swap loopback configuration on an interface and other Ethernet frames can still be forwarded on the interface However if a large number...

Страница 393: ... End 9 4 4 Disabling the MAC Swap Loopback Function This section describes how to disable the MAC swap loopback function Context A loopback test deteriorates network performance If a large number of test packets are sent bandwidth of other services is occupied Therefore disable the MAC swap loopback function immediately after the loopback test is complete Procedure Step 1 Run system view The syste...

Страница 394: ...rmation Loopback type remote Loopback state running Loopback test time s 60 Loopback interface Ethernet0 0 1 Loopback output interface Ethernet0 0 1 Loopback source MAC 0001 0001 0001 Loopback destination MAC 0002 0002 0002 Loopback vlan 10 Loopback inner vlan 0 Loopback packets 0 9 5 Configuration Examples This section provides examples of MAC swap loopback configuration 9 5 1 Example for Configu...

Страница 395: ... period of the loopback test 80s Procedure Step 1 Create VLAN 100 configure GE 0 0 1 as trunk interface and GE 0 0 2 as a hybrid interface and add the interfaces to VLAN 100 Quidway system view Quidway sysname SwitchB SwitchB vlan batch 100 SwitchB interface gigabitethernet0 0 1 SwitchB GigabitEthernet0 0 1 port link type trunk SwitchB GigabitEthernet0 0 1 port trunk allow pass vlan 100 SwitchB Gi...

Страница 396: ...SwitchB vlan batch 100 interface Ethernet0 0 2 port hybrid pvid vlan 100 port hybrid untagged vlan 100 loopback local swap mac source mac 0018 2000 0085 dest mac 0018 2000 0070 vlan 100 interface GigabitEthernet0 0 1 timeout 80 interface GigabitEthernet0 0 1 port link type trunk port trunk allow pass vlan 100 return 9 5 2 Example for Configuring Remote MAC Swap Loopback Networking Requirements As ...

Страница 397: ...an batch 100 SwitchB interface gigabitethernet 0 0 1 SwitchB GigabitEthernet0 0 1 port link type trunk SwitchB GigabitEthernet0 0 1 port trunk allow pass vlan 100 SwitchB GigabitEthernet0 0 1 quit Step 2 Configure remote MAC swap loopback and enable the MAC swap loopback function on GE 0 0 1 SwitchB GigabitEthernet0 0 1 loopback remote swap mac source mac 0018 2000 0085 dest mac 018 2000 0070 vlan...

Страница 398: ...inner vlan 0 Loopback packets 0 End Configuration Files l Configuration file of Switch B sysname SwitchB vlan batch 100 interface GigabitEthernet0 0 1 port link type trunk port trunk allow pass vlan 100 loopback remote swap mac source mac 0018 2000 0085 dest mac 0018 2000 0070 vlan 100 timeout 80 return Quidway S3700 Series Ethernet Switches Configuration Guide Reliability 9 MAC Swap Loopback Conf...

Отзывы:

Нет отзывов