HP VPN Firewall Appliances Appendix Protocol Reference

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module

Table Of Contents

Title Page
Contents
IP routing basics
- Routing table
- Dynamic routing protocols
- Route preference
- Load sharing
- Route backup
- Route recursion
- Route redistribution
Static routing
Default route
RIP
- Overview
- RIP operation
- RIP versions
- RIP message format
- Supported RIP features
- Protocols and standards
OSPF
- Overview
- OSPF packets
- LSA types
- OSPF area
- Router types
- Route types
- Route calculation
- OSPF network types
- DR and BDR
  - DR and BDR election
- Protocols and standards
IS-IS
- Overview
- Terminology
- IS-IS address format
- NET
- IS-IS area
  - Level-1 and Level-2
  - Route leaking
- IS-IS network types
  - Network types
  - DIS and pseudonodes
- IS-IS PDUs
- Supported IS-IS features
- Protocols and standards
BGP
- BGP speaker and BGP peer
- BGP message types
- BGP path attributes
- BGP route selection
- BGP route advertisement rules
- BGP load balancing
- Settlements for problems in large-scale BGP networks
- MP-BGP
  - MP-BGP extended attributes
  - Address family
- BGP configuration views
- Protocols and standards
IPv6 static routing
IPv6 default route
RIPng
- Overview
- RIPng working mechanism
- RIPng packet format
  - Basic format
  - RTE format
- RIPng packet processing procedure
  - Request packet
  - Response packet
- Protocols and standards
OSPFv3
- Overview
- Packets
- LSA types
- Timers
- Supported features
- Protocols and standards
IPv6 IS-IS
- Overview
IPv6 BGP
Multicast overview
- Overview
- Multicast models
- Multicast architecture
  - Multicast addresses
    - IP multicast addresses
    - Ethernet multicast MAC addresses
  - Multicast protocols
- Multicast packet forwarding mechanism
Multicast routing and forwarding
- Overview
- RPF check mechanism
  - RPF check process
  - RPF check implementation in multicast
- Static multicast routes
  - Changing an RPF route
  - Creating an RPF route
- Multicast forwarding across unicast subnets
- Multicast traceroute
IGMP
- Overview
- IGMP versions
- IGMPv1 overview
- IGMPv2 overview
  - Querier election mechanism
  - "Leave group" mechanism
- IGMPv3 overview
  - Enhancements in control capability of hosts
  - Enhancements in query and report capabilities
- IGMP SSM mapping
- IGMP proxying
- Protocols and standards
PIM
- Overview
- PIM-DM overview
- PIM-SM overview
- Administrative scoping overview
  - Relationship between admin-scoped zones and the global-scoped zone
- PIM-SSM overview
- Relationship among PIM protocols
- Protocols and standards
MSDP
- Overview
- How MSDP works
- Protocols and standards
IPv6 multicast routing and forwarding
- Overview
- RPF check mechanism
- RPF check implementation in IPv6 multicast
- IPv6 multicast forwarding across IPv6 unicast subnets
IPv6 PIM
- Overview
- IPv6 PIM-DM overview
- IPv6 PIM-SM overview
- IPv6 PIM-SSM overview
- Relationship among IPv6 PIM protocols
- Protocols and standards
MLD
- Overview
- MLD versions
- How MLDv1 works
- How MLDv2 works
- MLD message types
  - MLD query message
  - MLD report message
- MLD SSM mapping
- MLD proxying
- Protocols and standards
Support and other resources
- Contacting HP
  - Subscription service
- Related information
  - Documents
  - Websites
- Conventions
Index

• IP address—Destination IP address. It can be a natural network address, subnet address or host

address.

• Subnet mask—Mask of the destination address.

• Next hop—If set to 0.0.0.0, it indicates that the originator of the route is the best next hop;

otherwise it indicates a next hop better than the originator of the route.

RIPv2 authentication message format

RIPv2 sets the AFI field of the first route entry to 0xFFFF to identify authentication information.

Figure 3 RIPv2 authentication message

• Authentication type—A value of 2 represents plain text authentication, while a value of 3

represents MD5.

• Authentication—Authentication data, including password information when plain text

authentication is adopted or including key ID, MD5 authentication data length and sequence

number when MD5 authentication is adopted.

RFC 1723 only defines plain text authentication. For information about MD5 authentication, see RFC

2453.

Supported RIP features

RIP supports the following features:

• RIPv1 and RIPv2

• RIP for MPLS VPNs

• BFD

RIP periodically sends route update requests to neighbors. If no route update response for a route is

received within the specified interval, RIP considers the route unreachable. This mechanism cannot detect

link faults quickly. After BFD is configured for RIP, and BFD detects a broken link, RIP can quickly age out

the unreachable route, thus avoiding interference to other services.

Protocols and standards

• RFC 1058, Routing Information Protocol

• RFC 1723, RIP Version 2 - Carrying Additional Information

• RFC 1721, RIP Version 2 Protocol Analysis

• RFC 1722, RIP Version 2 Protocol Applicability Statement

Command

0xFFFF

Authentication (16 octets)

Version Unused

Authentication type

0715 31