HP VPN Firewall Appliances Network Management Configuration Guide
533
[FirewallA] bgp 200
[FirewallA-bgp] peer 3.0.2.2 route-policy apply_med_50 export
[FirewallA-bgp] peer 2.0.2.2 route-policy apply_med_100 export
# Enable BFD for peer 3.0.2.2.
[FirewallA-bgp] peer 3.0.2.2 bfd
# Establish an EBGP connection to Router C.
[FirewallA-bgp] peer 30.1.1.2 as-number 100
[FirewallA-bgp] quit
4. Configure BGP on Firewall B:
# Establish two IBGP connections to Firewall A.
<FirewallB> system-view
[FirewallB] bgp 200
[FirewallB-bgp] peer 3.0.1.1 as-number 200
[FirewallB-bgp] peer 3.0.1.1 bfd
[FirewallB-bgp] peer 2.0.1.1 as-number 200
# Enable BFD for peer 3.0.1.1.
[FirewallB-bgp] peer 3.0.1.1 bfd
# Configure a preference for IBGP routes as 140.
[FirewallB-bgp] preference 255 140 130
[FirewallB-bgp] quit
5. Configure BGP on Router C:
# Establish two EBGP connections to Firewall A.
<RouterC> system-view
[RouterC] bgp 100
[RouterC-bgp] peer 30.1.1.1 as-number 200
# Inject network 1.1.1.0/24 to the BGP routing table of Router C.
[RouterC-bgp] network 1.1.1.0 24
[RouterC-bgp] quit
6. Configure BFD parameters (you can use default BFD parameters instead):
# Configure Firewall A:
{ Configure active-mode BFD on GigabitEthernet 1/2.
[FirewallA] bfd session init-mode active
[FirewallA] interface gigabitethernet 1/2
{ Configure the minimum interval for transmitting BFD control packets as 500 milliseconds.
[FirewallA-GigabitEthernet1/2] bfd min-transmit-interval 500
{ Configure the minimum interval for receiving BFD control packets as 500 milliseconds.
[FirewallA-GigabitEthernet1/2] bfd min-receive-interval 500
{ Configure the detect multiplier as 7.
[FirewallA-GigabitEthernet1/2] bfd detect-multiplier 7
{ Configure the BFD authentication mode as plaintext authentication, and set the authentication
key to ibgpbfd.
[FirewallA-GigabitEthernet1/2] bfd authentication-mode simple 1 ibgpbfd
[FirewallA-GigabitEthernet1/2] quit
# Configure Firewall B.
[FirewallB] bfd session init-mode active