Manualshelf

HP VPN Firewall Appliances Network Management Configuration Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
571572573574575576577578579580
557
[RouterA-rip-1] network 10.0.0.0
[RouterA-rip-1] network 150.1.0.0
[RouterA-rip-1] network 151.1.0.0
# Configure the IP addresses of the GigabitEthernet interfaces.
[RouterA] interface gigabitethernet 0/1
[RouterA-GigabitEthernet0/1] ip address 150.1.1.2 255.255.255.0
[RouterA-GigabitEthernet0/1] quit
[RouterA] interface gigabitethernet0/2
[RouterA-GigabitEthernet0/2] ip address 151.1.1.2 255.255.255.0
[RouterA-GigabitEthernet0/2] quit
# Configure the loopback interface address.
[RouterA] interface loopback 0
[RouterA-LoopBack0] ip address 10.1.1.1 32
c. Verify the configuration:
# Run the debugging ip policy-based-route command on Firewall.
<Firewall> debugging ip policy-based-route
<Firewall> terminal debugging
<Firewall> terminal monitor
# Ping Loopback 0 of Router A from Host A, and set the data length to 80 bytes.
C:\>ping -l 80 10.1.1.1
Pinging 10.1.1.1 with 80 bytes of data:
Reply from 10.1.1.1: bytes=80 time<1ms TTL=255
Reply from 10.1.1.1: bytes=80 time<1ms TTL=255
Reply from 10.1.1.1: bytes=80 time<1ms TTL=255
Reply from 10.1.1.1: bytes=80 time<1ms TTL=255
Ping statistics for 10.1.1.1:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
The debugging information about PBR displayed on Firewall is as follows:
<Firewall>
*Jun 7 12:04:33:519 2009 Firewall PBR/7/POLICY-ROUTING: IP policy based routing
success : POLICY_ROUTEMAP : lab1, Node : 10, next-hop : 150.1.1.2
*Jun 7 12:04:34:518 2009 Firewall PBR/7/POLICY-ROUTING: IP policy based routing
success : POLICY_ROUTEMAP : lab1, Node : 10, next-hop : 150.1.1.2
*Jun 7 12:04:35:518 2009 Firewall PBR/7/POLICY-ROUTING: IP policy based routing
success : POLICY_ROUTEMAP : lab1, Node : 10, next-hop : 150.1.1.2
*Jun 7 12:04:36:518 2009 Firewall PBR/7/POLICY-ROUTING: IP policy based routing
success : POLICY_ROUTEMAP : lab1, Node : 10, next-hop : 150.1.1.2
The preceding information shows that Firewall sets the next hop for the received packets to
150.1.1.2 according to PBR. The packets are forwarded via GigabitEthernet 0/1.
# Ping Loopback 0 of Router A from Host A, and set the data length to 200 bytes.
C:\>ping -l 200 10.1.1.1