R3166-R3206-HP High-End Firewalls Network Management Configuration Guide-6PW101
350
1. Configure a BGP confederation
After you split an AS into multiple sub ASs, you can configure a router in a sub AS in the following way:
• Enable BGP and specify the AS number of the router.
• Specify the confederation ID. From an outsider’s perspective, the sub ASs of the confederation is a
single AS, which is identified by the confederation ID.
• If the router needs to establish eBGP connections to other sub ASs, you need to specify the peering
sub ASs in the confederation.
A confederation contains a maximum of 32 sub ASs. The AS number of a sub AS is effective only in the
confederation.
Follow these steps to configure a BGP confederation:
To do… Use the command…
Remarks
Enter system view system-view
—
Enter BGP view bgp as-number
—
Configure a confederation ID confederation id as-number
Required
Not configured by default.
Specify peering sub ASs in the
confederation
confederation peer-as
as-number-list
Required
Not configured by default.
2. Configure confederation compatibility
If some other routers in the confederation do not comply with RFC 3065, you must enable confederation
compatibility to allow the router to work with those routers.
To do… Use the command…
Remarks
Enter system view system-view
—
Enter BGP view bgp as-number
—
Enable compatibility with routers not compliant
with RFC 3065 in the confederation
confederation nonstandard
Optional
Not enabled by default
Enable Guard route redistribution
Guard routes use NULL 0 as the outbound interface.
You can enable Guard route redistribution into BGP on a Guard device, After that, when a Guard route
is configured on the Guard device, the Guard route is redistributed into the BGP route table and
advertised to a BGP peer. In this way, traffic that is received by the BGP peer and destined to the
destination of the Guard route is diverted to the Guard device, which then handles the traffic as
configured.
Follow these steps to enable Guard route redistribution into BGP:
To do… Use the command…
Remarks
Enter system view system-view —
Enter BGP view bgp as-number —