R3166-R3206-HP High-End Firewalls Network Management Configuration Guide-6PW101
262
[RouterB] display ip routing-table
Routing Tables: Public
Destinations : 8 Routes : 8
Destination/Mask Proto Pre Cost NextHop Interface
10.2.1.0/24 RIP 100 1 12.3.1.1 Eth1/1
11.1.1.0/24 RIP 100 1 12.3.1.1 Eth1/1
12.3.1.0/24 Direct 0 0 12.3.1.2 Eth1/1
12.3.1.2/32 Direct 0 0 127.0.0.1 InLoop0
16.4.1.0/24 Direct 0 0 16.4.1.1 Eth1/2
16.4.1.1/32 Direct 0 0 127.0.0.1 InLoop0
127.0.0.0/8 Direct 0 0 127.0.0.1 InLoop0
127.0.0.1/32 Direct 0 0 127.0.0.1 InLoop0
4. Configure a filtering policy for redistributed routes
# On Firewall, define ACL 2000 and reference it to a filtering policy to filter routes redistributed from RIP
100, making the route not advertised to Router B.
[Firewall] acl number 2000
[Firewall-acl-basic-2000] rule deny source 10.2.1.1 0.0.0.255
[Firewall-acl-basic-2000] rule permit
[Firewall-acl-basic-2000] quit
[Firewall] rip 200
[Firewall-rip-100] filter-policy 2000 export rip 100
# Display the routing table on Router B.
[RouterB] display ip routing-table
Routing Tables: Public
Destinations : 7 Routes : 7
Destination/Mask Proto Pre Cost NextHop Interface
11.1.1.0/24 RIP 100 1 12.3.1.1 Eth1/1
12.3.1.0/24 Direct 0 0 12.3.1.2 Eth1/1
12.3.1.2/32 Direct 0 0 127.0.0.1 InLoop0
16.4.1.0/24 Direct 0 0 16.4.1.1 Eth1/2
16.4.1.1/32 Direct 0 0 127.0.0.1 InLoop0
127.0.0.0/8 Direct 0 0 127.0.0.1 InLoop0
127.0.0.1/32 Direct 0 0 127.0.0.1 InLoop0
RIP interface additional metric configuration example
Network requirements
As shown in Figure 146:
• RIPv2 is enabled on all the interfaces of Firewall, Router B, Router C, Router D, and Router A.
• Firewall has two links to Router D. The link from Router B to Router D is more stable than that from
Router C to Router D. Configure an additional metric for RIP routes received through GigabitEthernet
0/1 on Firewall so that Firewall prefers the network 1.1.5.0/24 learned from Router B.