HP VPN Firewall Appliances Network Management Command Reference
678
Hardware Value ran
g
e
Default value
F5000 1 to 8192 8192
F5000-S/F5000-C 1 to 8192 8192
VPN firewall modules 1 to 8192 8192
20-Gbps VPN firewall modules 1 to 2048 2048
Examples
# On the public network, enable the device to cache a maximum of 100 (S, G) entries learned from its
MSDP peer 125.10.7.6.
<Sysname> system-view
[Sysname] msdp
[Sysname-msdp] peer 125.10.7.6 sa-cache-maximum 100
Related commands
• display msdp brief
• display msdp peer-status
• display msdp sa-count
peer sa-policy
Use peer sa-policy to configure a filtering rule for received or forwarded SA messages.
Use undo peer sa-policy to restore the default.
Syntax
peer peer-address sa-policy { import | export } [ acl acl-number ]
undo peer peer-address sa-policy { import | export }
Default
SA messages received or to be forwarded are not filtered, and all SA messages are accepted or
forwarded.
Views
Public network MSDP view
Default command level
2: System level
Parameters
import: Specifies the incoming direction.
export: Specifies the outgoing direction.
peer-address: Specifies an MSDP peer.
acl-number: Specifies an advanced ACL, in the range of 3000 to 3999. If you do not provide an ACL
number, all SA messages carrying (S, G) entries are filtered off.