Manuals / Foundry Networks / Computer Equipment / Network Router

Foundry Networks AR3201-CL, AR3202-CL Foundry AR-Series Router User Guide Foundry Networks, Inc

Models: AR1208 AR1216 AR3202-CL AR3202 AR3201-CL AR3201 AR1204

1 293

Download 293 pages 53.56 Kb

<>

Security Protocol Defaults Warranty BGP4 Configure Commands Show policy ipaccesslist Chapter Command Line Interface Packet Reassembly Security Features

Page 23

Foundry AR-Series Router User Guide

2 - 8

© 2004 Foundry Networks, Inc.

June 2004

Page 22 Page 24

Image 23

Foundry Networks AR3201-CL, AR3202-CL, AR1204, AR1216, AR1208 manual Foundry AR-Series Router User Guide Foundry Networks, Inc

Page 22 Page 24

Related pages Troubleshooting for Weslo WLTL33205.0 Power Specifications for Nady Systems SMA-2130 Responding to error messages for Dell FM120x4 Main Oven Cooking Chart for Electrolux EBUSS To set the connection terminal to use when you for Toshiba SD-P2800SE Installation for PLH Products SD-7103GC-PEQ W1809 Parts List for Woodstock W1810 Programming TV Using Code Lists for GE RM94948 Specifications, Part Numbers, Accessories, cont’d for Extron electronic XPA 1002 What service does the Fluke 5725A require for fault codes?

Contents

Foundry AR-Series Router User Guide Page Contents BGP4 C Lear C Ommands BGP4 Configure Commands Ospf C Onfigure C Ommands 10-1 RIP Show C Ommands Security Features Nomenclature Chapter Getting StartedIntroduction Audience WAN Protocols List of FeaturesRelated Publications Layer 3 Features Feature Supported in AccessIron DevicesLayer 2 Features CLI Snmp Telephone Access How to Get HelpWarranty Coverage Web Access Email Access Foundry AR-Series Router User Guide Foundry Networks, Inc Foundry-AR1208#configure terminal Chapter Command Line InterfaceCommand Types Context-Sensitive Commands For Syntaxes What it means Command ConventionsSyntax Conventions For Examples What it means Abbreviated CommandsExample Conventions Help Command HelpCLI Navigation Navigation Keys Question Mark Help Screen Tree Description Commands Global Commands Global show Command Foundry AR-Series Router User Guide Foundry Networks, Inc Related commands Chapter Policy CommandsConfigure policy Example Configure policy aspathParameter Description Syntax Configure policy communitylist Configure policy communitylist extendedcommunity Configure policy communitylist standardcommunity Configure policy ipaccesslist This example restricts the prefixes to 10.0.0.0/8 only Foundry-AR1208/configure#policy routemap Block100 1 permit Configure policy routemap Related commands Configure policy routemap match Configure policy routemap match aspath Configure policy routemap match community Configure policy routemap match ip ipaddress Configure policy routemap set Configure policy routemap set aspath Parameter Descriptiongenerate Configure policy routemap set community Configure policy routemap set distance Configure policy routemap set localpreference Configure policy routemap set metric Configure policy routemap set metrictype Configure policy routemap set origin Foundry AR-Series Router User Guide Foundry Networks, Inc BGP4 Chapter Protocols Overview Description RFC ComplianceBGP RFC Compliance RIP RFC Compliance Ospf RFC Compliance Protocol Independent Multicast PIM Securing Remote Access Using IPSec VPNMulticasting Clear ip bgp Chapter BGP4 Clear Commands Clear ip bgp all Foundry-AR1208#clear ip bgp group north Clear ip bgp group Foundry-AR1208#clear ip bgp neighbor 10.1.1.1 Clear ip bgp neighbor Configure router Chapter Generic Routing Commands Foundry-AR1208/configure#router routerid Configure router routerid Term Definition Show ip routesParameter Definitions To display all routes, issue the show ip routes command Configure router bgp Chapter BGP4 Configure Commands Configure router bgp aggregateaddress Applicable systems Configure router bgp alwayscomparemed Configure router bgp defaultmetric Preferenc Configure router bgp distance Configure router bgp group Configure router bgp group distributelist Configure router bgp group filterlist Configure router bgp group nexthopself Configure router bgp group password Configure router bgp group removeprivateAS Configure router bgp group routemap Configure router bgp neighbor BGP4 Configure Commands Configure router bgp redistribute Configure router bgp neighbor advertisementinterval Configure router bgp neighbor allowbadid Configure router bgp neighbor defaultoriginate Configure router bgp neighbor description Configure router bgp neighbor distributelist Configure router bgp neighbor ebgpmultihop Configure router bgp neighbor filterlist Configure router bgp neighbor keep Configure router bgp neighbor logupdown Configure router bgp neighbor maximumprefix Configure router bgp neighbor neighborgroup Configure router bgp neighbor nexthopself Configure router bgp neighbor password Configure router bgp neighbor routemap Configure router bgp neighbor timers Configure router bgp neighbor updatesource Configure router bgp redistribute Configure router bgp redistribute connected Configure router bgp redistribute ospf Configure router bgp redistribute rip Configure router bgp redistribute static Show ip bgp Chapter BGP4 show Commands Show ip bgp aggregateaddress Foundry-AR1208#show ip bgp community aann Show ip bgp community Status codes Status and Origin Codes Foundry-AR1208#show ip bgp groups north Show ip bgp groups Foundry-AR1208#show ip bgp neighbors Show ip bgp neighbors Other BGP show Descriptions Applicable systems Foundry-AR1208#show ip bgp paths Show ip bgp paths Foundry-AR1208#show ip bgp regexp Show ip bgp regexp Header Definitions Show ip bgp summaryFoundry-AR1208#show ip bgp summary Foundry-AR1208#show ip bgp table Status and Origin Codes Show ip bgp table Show policy Foundry-AR1208#show policy aspath Show policy aspath Foundry-AR1208#show policy communitylist Show policy communitylist Foundry-1450/show#policy ipaccesslist Show policy ipaccesslist Foundry-AR1208#show policy routemap Show policy routemap Foundry AR-Series Router User Guide Foundry Networks, Inc Chapter Ospf Configure Commands Configure router ospf Configure router ospf 1583 Compatibility Configure router ospf area Configure router ospf area areatype Configure router ospf area areatype normal Configure router ospf area areatype nssa Configure router ospf area areatype nssa nosummary Configure router ospf area areatype stub Configure router ospf area areatype stub nosummary Configure router ospf area defaultcost Configure router ospf area range Configure router ospf area virtuallink Configure router ospf area virtuallink authentication Configure router ospf area virtuallink deadinterval Configure router ospf area virtuallink hellointerval Configure router ospf area virtuallink retransmitinterval Configure router ospf area virtuallink transmitdelay Configure router ospf distance Configure router ospf distance ospf Configure router ospf distance ospf external Configure router ospf distance ospf nonexternal Configure router ospf interface Configure router ospf interface authentication Configure router ospf interface cost Configure router ospf interface deadinterval Configure router ospf interface hellointerval Configure router ospf interface neighbor Configure router ospf interface network Applicable systems Configure router ospf interface pollinterval Configure router ospf interface priority Configure router ospf interface retransmitinterval Configure router ospf interface transmitdelay Configure router ospf redistribute Configure router ospf redistribute bgp Configure router ospf redistribute connected Configure router ospf redistribute rip Configure router ospf redistribute static Configure router ospf refbw Configure router ospf timers Foundry AR-Series Router User Guide Foundry Networks, Inc Foundry-AR1208#show ip ospf area Chapter Ospf Show CommandsShow ip ospf area Related commands Foundry-AR1208#show ip ospf database Show ip ospf database Foundry-AR1208#show ip ospf database all Show ip ospf database all Foundry-AR1208#show ip ospf database asbrsummary Show ip ospf database asbrsummary Foundry-AR1208#show ip ospf database databasesummary Show ip ospf database databasesummary Foundry-AR1208#show ip ospf database external Show ip ospf database external Foundry-AR1208#show ip ospf database network Show ip ospf database network Foundry-AR1208#show ip ospf database nssaexternal Show ip ospf database nssaexternal Foundry-AR1208#show ip ospf database router Show ip ospf database router Foundry-AR1208#show ip ospf database selforiginate Show ip ospf database selforiginate Foundry-AR1208#show ip ospf database summary Show ip ospf database summary Foundry-AR1208#show ip ospf global Show ip ospf global Foundry-AR1208#show ip ospf interface Show ip ospf interface Foundry-AR1208#show ip ospf interface all Show ip ospf interface all Foundry-AR1208#show ip ospf interface bundle Boise Show ip ospf interface bundle Foundry-AR1208#show ip ospf interface ethernet Show ip ospf interface ethernet Foundry-AR1208#show ip ospf neighbor Show ip ospf neighbor Foundry-AR1208#show ip ospf neighbor detail Show ip ospf neighbor detail Foundry-AR1208#show ip ospf neighbor id Show ip ospf neighbor id Foundry-AR1208#show ip ospf neighbor interface ethernet Show ip ospf neighbor interface Foundry-AR1208#show ip ospf neighbor interface bundle Boise Show ip ospf neighbor interface bundle Show ip ospf neighbor interface ethernet Foundry-AR1208#show ip ospf neighbor list Show ip ospf neighbor list Foundry-AR1208#show ip ospf requestlist Show ip ospf requestlist Foundry-AR1208#show ip ospf retransmissionlist Show ip ospf retransmissionlist Foundry-AR1208#show ip ospf virtuallinks Show ip ospf virtuallinks Foundry AR-Series Router User Guide Foundry Networks, Inc Chapter RIP Configure Commands Configure router rip Configure router rip defaultmetric Configure router rip distance Configure router rip interface Configure router rip interface authentication Configure router rip interface distributelist Configure router rip interface metric Configure router rip interface mode Configure router rip interface neighbor Configure router rip interface passive Configure router rip interface splithorizon Configure router rip mode Configure router rip pacing Configure router rip passive Configure router rip redistribute Configure router rip redistribute bgp Configure router rip redistribute connected Configure router rip redistribute ospf Configure router rip redistribute static Configure router rip timers Configure router rip timers flush Configure router rip timers holddown Configure router rip timers update Chapter RIP show Commands Show ip rip Foundry-AR1208#show ip rip global Show ip rip global Show ip rip interface Foundry-AR1208#show ip rip interface all Show ip rip interface all Foundry-AR1208#show ip rip interface bundle Dallas Show ip rip interface bundle Foundry-AR1208#show ip rip interface ethernet0 Show ip rip interface ethernet Foundry-AR1208#show ip rip interface statistics Show ip rip interface statistics Foundry-AR1208#show ip rip statistics Show ip rip statistics Foundry AR-Series Router User Guide Foundry Networks, Inc AS Path Terms Chapter AS Path Regular ExpressionsMatching AS Paths AS Path Regular Expressions regex = n means at least m and at most n repetitions Global parameters PIM CommandsChapter Multicasting Multicasting Overview BSR Multicasting Internet Group Management Protocol Igmp Igmp Commands Traceroute Facility for IP Multicast Multicast Multipath Multipath Commands Generic Routing Encapsulation GRE Introduction to Security Chapter Security FeaturesEnabling Security Features Remote Access Mode Configuration Access MethodsRemote Access User Group Configure a WAN bundle of network type untrusted Add the route to the peer LAN Configure the Ethernet interface with trusted network typeConfigure IKE to the peer gateway Display the crypto interfaces Display the IKE policies in detail Configure the IPSec tunnel to the remote hostDisplay the IKE policies Display IPSec policies in detail Display the IPSec policies Permit SE Router1# show firewall policy internet detail Display Snmp communities Enable Snmp on the Router1 router Router1# show crypto ipsec sa all detail Add route to peer LAN Configure IKE to the peer gateway Display IPSec policies Configure IPSec tunnel to the remote host Display IPSec policies detail Permit Foundry AR-Series Router User Guide Security Features Samature Security Features Configure a WAN bundle of network type untrusted Configure IKE to the peer gateway Configure IPSec tunnel to the remote host Security Features Permit Security Features Foundry AR-Series Router User Guide Samature Example 4 Supporting Remote User Access IPSec Tunneling Using User Group Method Display dynamic IKE policies Configure dynamic IKE policy for a group of mobile users Display dynamic IPSec policies Configure dynamic IPSec policy for a group of mobile usersDisplay dynamic IKE policies in detail Display dynamic IPSec policies in detail Security Features Foundry AR-Series Router User Guide Security Features Foundry AR-Series Router User Guide Security Features IPSec Tunneling Using Mode Configuration Method Display the crypto interfaces Display dynamic IKE policies in detail Display dynamic IPSec policies in detail Permit E Security Features Samature Configuring GRE Configuring Site to Site Tunnel GRE Configuration Examples For more information enter Configuring GRE Site to Site with IPSec Foundry# show crypto ike policy all Configuring GRE Site to Site with IPSec and Ospf Firewalls Firewall Configuration ExamplesBasic Firewall Configuration Create policies for Security Zone Corp that Create the security zones Corp and DMZ and attach interfaces Create policies for Security Zone DMZ that Verify the firewall policy for Security Zone Corp Verify the firewall policy for Security Zone DMZ Create a default route out of the WAN Foundry AR-Series Router User Guide Security Features Stopping DoS Attacks NAT Configurations Packet Reassembly Dynamic NAT many to many NAT Configuration Examples Port Address Translation Many to one Static NAT one to one Method2 Attaching nat pool to the policy Method1 Specifying NAT address with the policy command IPSec Protocols Support Security Protocol DefaultsIPSec Supported Protocols and Algorithms HMAC-MD5-96 Bits Foundry IKE and IPSec DefaultsIKE Defaults Diffie-Hellman Groups for Key Size Authentication Bits Firewall per policy defaults Policy Parameter Default Value Firewall Default ValuesIPSec Defaults Firewall per policy defaults 11 Tunnel Interface Defaults Parameter Default Value Tunneling Default Values10 DoS Protection Defaults Configured DoS Attacks Foundry AR-Series Router User Guide Foundry Networks, Inc Index June

Top Page Image Contents