HP VPN Firewall Appliances Network Management Configuration Guide
519
4. Configure BGP between Firewall and Router C, and configure BGP on Firewall to redistribute
OSPF routes:
# On Firewall, enable BGP, specify Router C as an EBGP peer, and configure BGP to redistribute
OSPF routes.
[Firewall] bgp 65106
[Firewall-bgp] router-id 3.3.3.3
[Firewall-bgp] peer 10.220.2.217 as-number 64631
[Firewall-bgp] import-route ospf
# Configure Firewall as an EBGP peer on Router C.
[RouterC] bgp 64631
[RouterC-bgp] router-id 4.4.4.4
[RouterC-bgp] peer 10.220.2.16 as-number 65106
[RouterC-bgp] quit
# Display routing table information on Router C.
[RouterC] display ip routing-table
Routing Tables: Public
Destinations : 8 Routes : 8
Destination/Mask Proto Pre Cost NextHop Interface
4.4.4.4/32 Direct 0 0 127.0.0.1 InLoop0
10.220.2.0/24 Direct 0 0 10.220.2.217 GE0/1
10.220.2.217/32 Direct 0 0 127.0.0.1 InLoop0
127.0.0.0/8 Direct 0 0 127.0.0.1 InLoop0
127.0.0.1/32 Direct 0 0 127.0.0.1 InLoop0
192.168.64.0/24 BGP 255 1 10.220.2.16 GE0/1
192.168.74.0/24 BGP 255 1 10.220.2.16 GE0/1
192.168.99.0/24 BGP 255 1 10.220.2.16 GE0/1
The output shows that Router C has learned routes to 192.168.64.0/24, 192.168.74.0/24, and
192.168.99.0/24 through BGP.
After the above configurations, ping the hosts on networks 192.168.64.0/24,
192.168.74.0/24, and 192.168.99.0/24 from Router C. The ping operations succeed.
5. Configure route summarization on Firewall:
# Summarize 192.168.64.0/24, 192.168.74.0/24, and 192.168.99.0/24 into a single route
192.168.64.0/18 on Firewall and disable advertisement of the specific routes.
[Firewall-bgp] aggregate 192.168.64.0 18 detail-suppressed
[Firewall-bgp] quit
6. Verify the configuration:
# Display IP routing table information on Firewall.
[Firewall] display ip routing-table
Routing Tables: Public
Destinations : 11 Routes : 11
Destination/Mask Proto Pre Cost NextHop Interface
3.3.3.3/32 Direct 0 0 127.0.0.1 InLoop0
10.220.2.0/24 Direct 0 0 10.220.2.16 GE0/1