01-05 OSPF Configuration

HUAWEI NetEngine40E Universal Service
Router 5 OSPF
5 OSPF Configuration
About This Chapter
By building OSPF networks, you can enable OSPF to discover and calculate routes in an AS.
OSPF is applicable to large-scale networks with hundreds of routers.
5.1 Overview of OSPF
Open Shortest Path First (OSPF), which is developed by the IETF, is a link-state IGP. OSPF is
widely used in access networks and MANs.
5.2 Licensing Requirements and Limitations for OSPF
5.3 Configuring Basic OSPF Functions
Before constructing OSPF networks, you need to configure basic OSPF functions.
5.4 Configuring OSPF on the NBMA or P2MP Network
This section describes how to configure OSPF and modify attributes on the NBMA or point-
to-multipoint (P2MP) network to flexibly construct the OSPF network.
5.5 Adjusting OSPF Route Selection
By adjusting OSPF route selection, you can enable OSPF to meet the requirements of
complex networks.
5.6 Controlling OSPF Routing Information
You can control the advertising and receiving of OSPF routing information and import routes
of other protocols.
5.7 Adjusting the OSPF Network Convergence Speed
By adjusting OSPF timers, you can implement OSPF network convergence speed.
5.8 Configuring OSPF Neighbor Relationship Flapping Suppression
OSPF neighbor relationship flapping suppression works by delaying OSPF neighbor
relationship reestablishment or setting the link cost to the maximum value.
5.9 Configuring OSPF Flush LSA Source Tracing
OSPF flush LSA source tracing helps improve the efficiency in locating the devices that
flushed OSPF LSAs.
5.10 Configuring an OSPF Dynamic Hostname
Compared with router IDs, OSPF dynamic hostnames are easier to memorize. Therefore,
using dynamic hostnames to identify routers can facilitate network management.
Issue 01 (2018-12- Copyright © Huawei Technologies Co., 1

Router 5 OSPF
5.11 Configuring an OSPF Stub Area

Configuring a non-backbone area as a stub area can reduce routing entries in the area in an AS
does not transmit routes learned from other areas in the AS or AS external routes. This
reduces bandwidth and storage resource consumption.
5.12 Configuring an NSSA
Configuring a non-backbone area on the border of an AS as an NSSA can reduce entries in
the routing table and the amount of routing information to be transmitted. This section
describes how to set the cost of the default route to an NSSA and adjust the selection of the
default route.
5.13 Configuring OSPF Local MT
By configuring local multicast topology (MT), you can create a routing table for multicast
traffic when multicast and a Multiprotocol Label Switching (MPLS) traffic engineering (TE)
tunnel are configured on a network.
5.14 Configuring an OSPF Sham Link
This section describes how to configure an OSPF sham link so that traffic between sites of the
same VPN in the same OSPF area is forwarded through the OSPF intra-area route over the
BGP/MPLS IP VPN backbone network.
5.15 Configuring BFD for OSPF
After BFD for OSPF is enabled, if a link fails, the router rapidly detects the failure, notifies
the OSPF process or interface of the fault, and instructs OSPF to recalculate routes. This
speeds up OSPF network convergence.
5.16 Configuring OSPF IP FRR
If a link fails, an OSPF IP FRR-capable device can fast switch traffic to a backup link, which
protects traffic and improves OSPF network reliability.
5.17 Configuring OSPF GR Helper
To avoid traffic interruption and route flapping caused by the active/standby switchover, you
can enable OSPF GR.
5.18 Improving OSPF Network Security
On a network demanding high security, you can configure OSPF authentication and GTSM to
improve OSPF network security.
5.19 Configuring the Network Management Function of OSPF
OSPF supports the network management function. You can bind the OSPF MIB to an OSPF
process and configure trap and log functions.
5.20 Maintaining OSPF
Maintaining OSPF involves resetting OSPF and clearing OSPF statistics.
5.21 Configuring OSPF Multi-Area Adjacency
OSPF multi-area adjacency allows one link to be shared by multiple OSPF areas.
5.22 Configuration Examples for OSPF
This section provides several OSPF configuration examples.
5.1 Overview of OSPF

Open Shortest Path First (OSPF), which is developed by the IETF, is a link-state IGP. OSPF is
widely used in access networks and MANs.

Router 5 OSPF
Definition
Open Shortest Path First (OSPF) is a link-state Interior Gateway Protocol (IGP) developed by
the Internet Engineering Task Force (IETF).
OSPF version 2 (OSPFv2) is intended for IPv4. OSPF version 3 (OSPFv3) is intended for
IPv6.
NOTE
In this document, OSPF refers to OSPFv2, unless otherwise stated.
Purpose
Before the emergence of OSPF, the Routing Information Protocol (RIP) was widely used as
an IGP on networks. RIP is a distance-vector routing protocol. Due to its slow convergence,
routing loops, and poor scalability, RIP is gradually being replaced with OSPF.
Typical IGPs include RIP, OSPF, and Intermediate System to Intermediate System (IS-
IS).
Table 5-1 describes differences among the three typical IGPs.
Table 5-1 Differences among RIP, OSPF, and IS-

IS
Item RIP OSPF IS-IS
Protocol IP layer protocol IP layer protocol Link layer protocol

type
Applicati Applies to small networks Applies to medium- sized Applies to large networ
on scope with simple architectures, networks with several as Internet service provi
such as campus networks. hundred routers supported, (ISP) networks.
such as enterprise networks.
Routing Uses a distance-vector Uses the shortest path first Uses the SPF algorithm
algorithm algorithm and exchanges (SPF) algorithm to generate a generate an SPT based o
routing information over the shortest path tree (SPT) based network topology, calcu
User Datagram Protocol on the network topology, shortest paths to all
(UDP). calculates shortest paths to all destinations, and exchan
destinations, and exchanges routing information ove
routing information over IP. The SPF algorithm runs
separately in Level-1 an
Level-2 databases.
Route Slow Less than 1 second Less than 1 second

converge
nce speed
Scalabilit Not supported Supported by Supported by defining r

y partitioning a network levels
into areas

Router 5 OSPF
Benefits
OSPF offers the following benefits:
Wide application scope: OSPF applies to medium-sized networks with several hundred
routers, such as enterprise networks.
Network masks: OSPF packets can carry masks, and therefore the packet length is not
limited by natural IP masks. OSPF can process variable length subnet masks (VLSMs).
Fast convergence: When the network topology changes, OSPF immediately sends link
state update (LSU) packets to synchronize the changes to the link state databases
(LSDBs) of all routers in the same autonomous system (AS).
Loop-free routing: OSPF uses the SPF algorithm to calculate loop-free routes based on
the collected link status.
Area partitioning: OSPF allows an AS to be partitioned into areas, which simplifies
management. Routing information transmitted between areas is summarized, which
reduces network bandwidth consumption.
Equal-cost routes: OSPF supports multiple equal-cost routes to the same destination.
Hierarchical routing: OSPF uses intra-area routes, inter-area routes, Type 1 external
routes, and Type 2 external routes, which are listed in descending order of priority.
Authentication: OSPF supports area-based and interface-based packet authentication,
which ensures packet exchange security.
Multicast: OSPF uses multicast addresses to send packets on certain types of links,
which minimizes the impact on other devices.
5.2 Licensing Requirements and Limitations for OSPF

Licensing Requirements
This feature is a basic feature and is not under license control.
Restrictions and Guidelines

Restrictions Guidelines Impact
OSPF checks whether a neighbor Plan configurations Default routes fail to be

in the full state exists in the properly. delivered.
backbone area before advertising a
default route to the stub area.

Router 5 OSPF
Restrictions Guidelines Impact
OSPF advertises default routes Plan configurations Default routes fail to be

to an NSSA only properly. delivered.
when at least neighbor in the full
state exists in the backbone area or
default routes of another protocol or
of another OSPF process exists in
the same VPN instance, and the nssa
default-route-advertise
command is run.
When a device in an NSSA Plan configurations properly and Load balancing fails to
generates an NSSA LSA based on determine whether to enable OSPF implemented, which may c
an imported external route, the on the loopback interface. link congestion.
device preferentially uses the IP
address of a loopback interface in
the NSSA as the forwarding address
(FA). If no loopback interfaces exist
in the NSSA, the device selects the
IP address of a non-loopback
interface. As a result, the
downstream
device may fail to implement
load balancing using routes even
when links with the same cost
exist.
Before running the undo ospf Before running the undo ospf The residual Opaque LSAs a
process-id command to delete an process-id command to delete an used for calculation. As a res
OSPF process, you need to check OSPF process, you need to check calculation error occurs and m
whether segment routing is enabled. whether segment routing is enabled. last for a maximum of 3600s
If segment routing is enabled, you If segment routing is enabled, you
need to disable it before deleting the need to disable it before deleting the
OSPF process. Otherwise, Opaque OSPF process. Otherwise, Opaque
LSAs may remain unexpectedly due LSAs may remain unexpectedly due
to the Opaque capability change if to the Opaque capability change if
the process is reconfigured. the process is reconfigured.
5.3 Configuring Basic OSPF Functions

Before constructing OSPF networks, you need to configure basic OSPF functions.

Router 5 OSPF
Usage Scenario
When OSPF is configured on multiple routers in the same area, most configuration data, such
as the timer, filter, and aggregation, must be planned uniformly in the area. Incorrect
configurations may cause neighboring routers to fail to send messages to each other or even
causing routing information congestion and self-loops.
The OSPF-relevant commands that are configured in the interface view take effect regardless
of whether OSPF is enabled. After OSPF is disabled, the OSPF-relevant commands also exist
on interfaces.
Pre-configuration Tasks
Before configuring basic OSPF functions, complete the following tasks:
Configure a link layer protocol.
Configure IP addresses for interfaces to ensure that neighboring nodes are reachable at
the network layer.
Configuration Procedures
Figure 5-1 Flowchart of configuring basic OSPF functions
Enabling OSPF
Creating OSPF Virtual Links
Configuring a Route Selection Rule on the router
Setting the OSPF Priority
Configuring the Maximum Number of Packet

Retransmission Attempts
Setting an Interval at Which an LSA Packet Is

Retransmitted to the Neighboring Device
Configuring an Interface to Fill in a DD Packet with

the Interface MTU
Mandatory procedure
Optional procedure
5.3.1 Enabling OSPF

After an OSPF process is created, a router ID is configured for the router, an interface on
which OSPF runs and the area to which the interface belongs are specified, routes can be
discovered and calculated in the AS.

Router 5 OSPF
Context
OSPF on the router requires a router ID. The router ID is a 32-bit unsigned integer, which
uniquely identifies the router in the AS. To ensure the stability of OSPF, manually set the
router ID of each router during network planning.
OSPF prevents the link state database (LSDB) size from unexpectedly growing by
partitioning an AS into different areas. An area is regarded as a logical group, and each group
is identified by an area ID. At the border of an area resides the router instead of a link. A
network segment (or a link) belongs to only one area. The area to which each OSPF interface
belongs must be specified.
Procedure
Step 1 Run system-view
The system view is displayed.
Step 2 Run ospf [ process-id | router-id router-id ] *

An OSPF process is started, and the OSPF view is displayed.
The NE40E supports OSPF multi-instance. To run OSPF in a VPN instance, run the ospf
[ process-id | router-id router-id | vpn-instance vpn-instance-name ] * command.
The NE40E supports OSPF multi-process. Processes can be classified by service type.
The routers exchange packets regardless of process IDs.
router-id router-id specifies the router ID of the router.
By default, the router automatically selects the IP address of an interface as the router
ID. When configuring the router ID, ensure that the router ID is unique in an AS. You
can configure the IP address of an interface as the router ID.
NOTE
Each router ID in an OSPF process must be unique. Otherwise, no OSPF neighbor relationships
can be established, and routing information is incorrect.
If a router ID conflict occurs, perform either of the following operations:
– Run the ospf router-id router-id command to configure a new router ID.
– Run the undo ospf router-id auto-recover disable command to enable the router
ID automatic recovery function. After the function is enabled, the system
automatically allocates a new router ID if a router ID conflict occurs.
NOTE
If the automatic recovery function is enabled and a router ID conflict occurs between
indirectly connected routers in one OSPF area, the conflicting router ID is replaced with
a newly calculated one, regardless of whether the conflicting router ID was manually
configured or automatically generated.
The system can replace a router ID in a maximum of three attempts in case the router ID
conflict persists.
After a router ID is replaced, the reset ospf [ process-id ] process command needs to be
run to validate the new router ID.
If a VPN instance is specified, the OSPF process belongs to this VPN instance. If a VPN
instance is not specified, the OSPF process belongs to the public-network instance.
You can run the description command to configure a description for the OSPF process for
easier identification.

Router 5 OSPF
Step 3 Run area area-id

The OSPF area view is displayed.
OSPF areas are classified as a backbone area (with area ID 0) or non-backbone areas. The
backbone area forwards inter-area routing information. The routing information exchanged
between non-backbone areas must be forwarded through the backbone area.
You can run the description command to configure a description for the OSPF area for easier
identification.
Step 4 To configure OSPF, you can configure the network segments included in an area or enable
OSPF on an interface.
To configure the network segments included in an area, run the network address
wildcard-mask [ description text ] command, in which description specifies the
description of the area.
OSPF runs on an interface only when both of the following conditions are met:
– The mask length of the interface's IP address is greater than or equal to that
specified in the network command.
NOTE
If wildcard-mask in the network command are all 0s and the IP address of the interface is
the same as the IP address specified in the network address command, OSPF is also enabled
on the interface.
– The interface's primary IP address belongs to the network segment specified in the
network command.
By default, OSPF uses a host route with a 32-bit mask to advertise the IP address of a
loopback interface, regardless of the mask length configured for the IP address. To allow
a loopback interface to advertise network-segment routes, its network type must be set to
NBMA or broadcast in the interface view. For details on how to set the network type, see
5.4.1 Configuring Network Types for OSPF Interfaces.
Enable OSPF on an interface.
a. Run the quit command twice to return to the system view.
b. Run the interface interface-type interface-number command to enter the interface
view.
c. Run the ospf enable [ process-id ] area area-id command to enable OSPF on the
interface. The specified area ID can be a decimal integer or in the format of an IPv4
address. Regardless of the specified format, the area ID is displayed as an IPv4
address.
Step 5 Run commit
The configuration is committed.
----End
5.3.2 (Optional) Creating OSPF Virtual Links

This section describes how to create logical links between backbone areas and to ensure the
OSPF network connectivity.
Context
After OSPF is divided into different areas, OSPF routes between non-backbone areas are
updated through route exchanges within the backbone area. Therefore, OSPF requires that all

Router 5 OSPF
non-backbone areas keep connected to the backbone area and devices within the backbone
area also keep connected. In real-world scenarios, however, these requirements cannot be met
due to various limitations. Configuring OSPF virtual links can solve the problem.
Procedure
Step 2 Run ospf [ process-id ]
The OSPF process is started and OSPF view is displayed.
Step 4 Run vlink-peer router-id [ dead dead-interval | hello hello-interval | retransmit retransmit-
interval | trans-delay trans-delay-interval | [ simple [ [ plain ] plain-text | cipher cipher-text ]
| { md5 | hmac-md5 | hmac-sha256 } [ key-id { plain plain-text | [ cipher ] cipher-text } ] |
authentication-null | keychain keychain-name ] | smart-discover ] *
A virtual link is created. The virtual link must also be configured on the neighboring router.
The default value is recommended when a virtual link is created. You can modify the value as
required. Suggestions for configuring parameters are as follows:
The smaller the hello value, the faster the router detects network topology changes, and
the more network resources are consumed.
If the retransmit value is set too small, LSAs may be retransmitted. Setting the
parameter to a large value is recommended on a low-speed network.
The authentication modes of a virtual link and the backbone area must be the same.
Step 5 Run commit
----End
5.3.3 (Optional) Configuring a Route Selection Rule on the router

You can configure the router to comply with the route selection rule defined in RFC 1583 or
RFC 2328.
Context
RFC 2328 and RFC 1583 define the route selection rule differently. After OSPF is enabled on
the router, specify a route selection rule based on the router configuration. The router
complies with the route selection rule defined in RFC 1583 by default. If the neighboring
router complies with the route selection rule defined in RFC 2328, configure the local router
to comply with that defined in RFC 2328. This allows all routers in the OSPF area to comply
with the same route selection rule.

Router 5 OSPF
Procedure
The OSPF process view is displayed.
Step 3 Run undo rfc1583 compatible
The router is configured to comply with the route selection rule defined in RFC 2328, not
RFC 1583.
Step 4 Run commit
----End
5.3.4 (Optional) Setting the OSPF Priority

When multiple routing protocols are used to select routes, you can set the OSPF priority to
maneuver route selection.
Context
The routing protocols may share and select the routing information because the router may
run multiple dynamic routing protocols at the same time. The system sets a priority for each
routing protocol. When multiple routing protocols are used to select routes, the route selected
by the routing protocol with a higher priority takes effect.
Procedure
Step 3 Run preference [ ase | inter | intra ] { preference | route-policy route-policy-name | route-
filter route-filter-name } *
The OSPF priority is set.
ase: sets the priority of the AS-External route.

inter: sets the priority of the Inter-area route.
intra: sets the priority of the Intra-area route.
preference: sets the priority for OSPF. The smaller the value, the higher the priority.
route-policy-name: sets the priority for specified routes in the routing policy.
route-filter-name
: sets the priority for specified routes in the route-filter policy.

Router 5 OSPF
Step 4 Run commit
----End
5.3.5 (Optional) Configuring the Maximum Number of Packet

Retransmission Attempts
When no response to DD packets, LSU packets, or LSR packets is received, the
retransmission mechanism is used and the maximum number of packet retransmission
attempts is set to prevent dead loops caused by repeated transmissions.
Context
If no response is received when the maximum number of packet retransmission attempts is
reached, the neighbor relationship will be interrupted.
Procedure


Step 3 Run retransmission-limit [ max-number ]
The maximum number of OSPF packet retransmission attempts is set.

Step 4 Run commit
----End
5.3.6 (Optional) Setting an Interval at Which an LSA Packet Is

Retransmitted to the Neighboring router
You can control packet retransmission and improve the convergence rate by setting an interval
at which an LSA packet is retransmitted to the neighboring router.
Context
After sending an LSA packet to the neighboring router, the router waits for a response. If no
response is received within the set interval, the router retransmits the LSA packet to the
neighboring router.
Procedure

Router 5 OSPF
Step 2 Run interface interface-type interface-number
The interface view is displayed.
Step 3 Run ospf timer retransmit interval
An interval at which an LSA packet is retransmitted to the neighboring router is set.
Setting the interval to a proper value is recommended. A rather small interval will cause
unnecessary retransmission. The interval is generally longer than a round trip of one packet
transmitted between two routers.
Step 4 Run commit
----End
5.3.7 (Optional) Configuring an Interface to Fill in a DD Packet

with the Interface MTU
You can configure an interface to fill in the Interface MTU field of a DD packet with the
interface MTU.
Context
Different default MTUs may be used on devices provided by different vendors. To ensure
consistency, the MTU is set to 0 by default when the interface sends DD packets.
Setting the MTU in a DD packet will have the neighbor relationship reestablished.
Procedure
Step 3 Run ospf mtu-enable
The interface is configured to fill in a DD packet with the interface MTU and check whether
the MTU in the DD packet from the neighboring router exceeds the MTU of the local router.
Step 4 Run commit
----End

Router 5 OSPF
5.3.8 Verifying the Basic OSPF Configuration

After configuring basic OSPF functions, verify information about OSPF neighbors, interfaces,
and routes.
Prerequisites
Basic OSPF functions have been configured.
Procedure
Run the display ospf [ process-id ] abr-asbr [ router-id ] command in any view to check
information about the ABRs and ASBRs of OSPF.
Run the display ospf [ process-id ] cumulative command in any view to check
information about OSPF statistics.
Run the display ospf [ process-id ] peer command in any view to check information
about OSPF neighbors.
Run the display ospf [ process-id ] nexthop command in any view to check information
OSPF next hop information.
Run the display ospf [ process-id ] error [ lsa | interface interface-type interface-
number ] command in any view to check information about OSPF error information.
Run the display ospf [ process-id ] vlink command in any view to check information
about OSPF virtual links.
Run the display ospf [ process-id ] interface [ all | no-peer | interface-type interface-
number ] [ verbose ] command in any view to check information about OSPF interfaces.
Run the display ospf [ process-id ] routing command in any view to check information
about the OSPF routing table.
Run the display ospf [ process-id ] topology [ area area-id ] [ statistics | verbose ]
command in any view to check information about the topology calculated for OSPF
routes.
Run the display ospf [ process-id ] spf-statistics [ verbose ] command in any view to
check information about route calculation statistics in OSPF processes.
Run the display ospf [ process-id ] request-queue [ interface-type interface-number ]
[ neighbor-id ] command in any view to check information about OSPF request list.
Run the display ospf [ process-id ] retrans-queue [ interface-type interface-number ]
[ neighbor-id ] command in any view to check information about OSPF retransmission
list.
Run the display ospf [ process-id ] statistics updated-lsa [ originate-router
advertising-router-id | history ] command in any view to check information about the
frequent updates of the LSAs that the LSDB receives
Run the display ospf [ process-id ] router-id conflict command in any view to check
information about router ID conflicts (if any).
----End
Example
Run the display ospf peer command, and you can view the Router IDs, addresses, and status
of OSPF neighbors.

Router 5 OSPF
<HUAWEI> display ospf peer

OSPF Process 1 with Router ID 1.1.1.1
Neighbors
Area 0.0.0.0 interface 192.168.1.1 ( GE3/0/0 )'s neighbors

Router ID: 2.2.2.2 Address: 192.168.1.2
State: Full Mode:Nbr is Slave Priority: 1
DR: 192.168.1.4 BDR: 192.168.1.3 MTU: 0
Dead timer due in 32 sec
Retrans timer interval: 0
Neighbor is up for 00:00:03
Authentication Sequence: [ 0 ]
Run the display ospf vlinkcommand, and you can view the OSPF virtual links.
<HUAWEI> display ospf vlink
Virtual Links
Virtual-link Neighbor-id -> 2.2.2.2, Neighbor-State: Full
Interface: 10.1.1.1 (GigabitEthernet1/0/0) Cost: 1 State: P-
2-P Type: Virtual Transit Area: 0.0.0.1
Timers: Hello 10 , Dead 40 , Retransmit 5 , Transmit Delay 1
GR State: Normal
Run the display ospf interface command, and you can view the network types and status of
OSPF interfaces.
<HUAWEI> display ospf interface
Area: 0.0.0.0 MPLS TE not enabled

Interface IP Address Type State Cost Pri
GigabitEthernet1/0/0 192.168.1.1 P2P P-2-P 1 100
Run the display ospf routing command, and you can view the destination addresses, link costs, and next hop
OSPF routes. For example:
<HUAWEI> display ospf routing

Routing Tables
Routing for Network

Destination Cost Type NextHop AdvRouter Area
172.16.1.0/24 2 Transit 192.168.1.2 3.3.3.3 0.0.0.1

172.17.1.0/24 3 Inter-area 192.168.0.2 2.2.2.2 0.0.0.0
192.168.2.0/24 2 Inter-area 192.168.0.2 2.2.2.2 0.0.0.0
Total Nets: 3
Intra Area: 1 Inter Area: 2 ASE: 0 NSSA: 0
Run the display ospf [ process-id ] topology [ area area-id ] [ statistics | verbose ]
command, and you can view the information about the topology calculated for OSPF routes.
<HUAWEI> display ospf topology

Bits :
B - ABR E - ASBR V - VIRTUAL NT - NSSA translator
OSPF Area 0.0.0.0 topology

Type ID Bits Metric Next-Hop Interface
Rtr 8.8.8.8 B 1 11.11.11.1 GigabitEthernet1/0/0
Rtr 9.9.9.9 E 1 - -
Net 11.11.11.1 B 1 11.11.11.2 GigabitEthernet1/0/0

Router 5 OSPF
5.4 Configuring OSPF on the NBMA or P2MP Network

This section describes how to configure OSPF and modify attributes on the NBMA or point-
to-multipoint (P2MP) network to flexibly construct the OSPF network.
Applicable Environment
As shown in Table 5-2, OSPF classifies networks into four types based on the types of link
layer protocols.
NOTE
Differentiated OSPF configurations that are applicable to the NBMA network and P2MP network are
provided in this section. The OSPF configurations not provided here are applicable to the four types of
networks.
Table 5-2 Network types supported by OSPF

Network Type Characteristic Default Configuration
Broadcast On the broadcast network, Hello packets, If the link layer protocol is Etherne
LSU packets, and LSAck packets are Fiber Distributed Data Interface
multicasted; DD packets and LSR packets (FDDI), OSPF regards the network
are unicasted. a broadcast network by default.
Non-broadcast On an NBMA network, Hello packets, If the link layer protocol is ATM, O
multiple access DD packets, LSR packets, LSU regards the network as an NBMA n
(NBMA) packets, and LSAck packets are by default.
unicasted.
The NBMA network must be
fully meshed. Any two routers on the
NBMA network must be directly
reachable.
Point-to-point On a P2P network, Hello packets, DD If the link layer protocol is PPP, HD
(P2P) packets, LSR packets, LSU packets, and Link Access Procedure Balanced (L
LSAck packets are multicasted. OSPF regards the network as a P2P
network by default.
Point-to- On a P2MP network, Hello packets are OSPF does not regard a network as
multipoint multicasted; DD packets, LSR packets, P2MP network by default regardles
(P2MP) LSU packets, and LSAck packets are any link layer protocol. A P2MP ne
unicasted. is forcibly changed from the netwo
The mask lengths of the routers on the another type.
P2MP network must be the same.

Router 5 OSPF
As shown in Table 5-2, OSPF sends packets in different manners on networks of different
types. Therefore, the difference between OSPF configurations on the networks lies in the
packet sending configurations.
Before configuring session parameters for the OSPF neighbor or adjacency relationship,
complete the following tasks:
Configuring a link layer protocol
Configuring IP addresses for interfaces to ensure that neighboring nodes are reachable at
the network layer
Configuring Basic OSPF Functions
You can choose one or several configuration tasks (excluding "Checking the Configuration")
as required.
5.4.1 Configuring Network Types for OSPF Interfaces

OSPF classifies networks into four types based on the types of link layer protocols. You can
configure the network type for an OSPF interface to forcibly change its original network type.
Context
The network types of the interfaces on both ends of a link must be the same; otherwise, the
OSPF neighbor relationship cannot be established.
Procedure
Step 3 Run ospf network-type { broadcast | nbma | p2mp | p2p [ peer-ip-ignore ] }
The network type of the OSPF interface is configured.
When the network type is configured for an interface, the original network type of the
interface is replaced.
The network type can be configured based on the real world situations.
On an interface with the broadcast network type, if a router that does not support the
multicast address exists, change the network type of the interface to NBMA.
On an interface with the NBMA network type, if the network is fully meshed or any two
routers are directly connected, change the network type of the interface to broadcast and
do not configure neighboring router information on the interface.
On an interface with the NBMA network type, if the network is not fully meshed, change
the network type of the interface to P2MP. After that, two indirectly connected routers

Router 5 OSPF
can communicate through one router that can directly reach both the two routers. After
the network type of the interface is changed to P2MP, configuring neighboring router
information on the interface is unnecessary.
If only two routers run OSPF on the same network segment, changing the network type
of the interface to P2P is recommended.
peer-ip-ignore is used to disable network segment check when IP address unnumbering is not
configured for a P2P interface changed from a broadcast interface and the interface tries to
establish an OSPF neighbor relationship. By default, if peer-ip-ignore is not specified in the
command, OSPF checks the network segment of the two ends during which an OSPF
neighbor relationship is to be established. Specifically, OSPF performs an AND operation on
the local subnet mask and the local IP address and on the local subnet mask and the remote IP
address. An OSPF neighbor relationship can be established only when the results on the two
ends are the same.
NOTE
OSPF cannot be configured on a null interface.
Step 4 Run commit
----End
5.4.2 Configuring NBMA Network Attributes

To implement OSPF functions, configure NBMA network attributes.
Procedure
Step 1 (Optional) Set the network type to NBMA.
The NBMA network must be fully meshed. Any two routers on the NBMA network must be
directly reachable. In most cases, however, this requirement cannot be met. To resolve this
problem, run specific commands to forcibly change the network type to NBMA. For details,
see Configuring Network Types for OSPF Interfaces.
1. Run system-view

2. Run interface interface-type interface-number

3. Run ospf network-type nbma
The network type of the OSPF interface is set to NBMA.

4. Run commit
Step 2 (Optional) Run ospf timer poll interval
The interval at which Hello packets for polling are sent by an NBMA interface is set.
On the NBMA network, after the neighbor relationship becomes invalid, the router sends
Hello packets at an interval defined in the polling mechanism.

Router 5 OSPF
Step 3 (Optional) Run ospf dr-priority priority

Sets the priority of an interface that runs for the DR or BDR.
The priority of an interface determines whether the interface is qualified to be a DR or BDR.
The interface with the highest priority is elected as the DR or BDR. If the priority of an
interface on a device is 0, the device cannot be elected as a DR or BDR. On a broadcast or an
NBMA network, you can set the priority of an interface to control the DR or BDR selection.
When the DR and BDR are elected on a network segment, they send DD packets to all
neighboring nodes and set up adjacencies with all neighboring nodes.
Step 4 (Optional) Run ospf timer wait interval
If no Backup Seen event is received within the interval, the designated router (DR) election
starts. Setting a proper value for the wait timer can slow down changes of the DR and the
backup designated router (BDR) on the network, reducing network flapping. When setting the
wait timer, note the following points:
The wait timer takes effect only on broadcast and NBMA interfaces.
The value of the wait timer cannot be greater than the value of the dead timer.
Step 5 Configure a neighboring router on the NBMA network.
The interface with the network type of NBMA cannot broadcast Hello packets to discover
neighboring routers. Therefore, the IP address of a neighboring router must be configured on
the process and whether the neighboring router can participate in DR election must be
determined on the process.
1. Run quit
Exit from the interface view.
2. Run ospf [ process-id ]
3. Run peer ip-address [ dr-priority priority ]
A neighboring router is configured.
4. Run commit
Step 6 Run commit
----End
5.4.3 Configuring P2MP Network Attributes

To implement OSPF functions, configure P2MP network attributes.
Procedure
Step 1 Disable OSPF from checking the network mask.
The OSPF neighbor relationship cannot be established between the devices with different
mask lengths on the P2MP network. After OSPF is disabled from checking the network mask,
the OSPF neighbor relationship can be properly established.

Router 5 OSPF
1. Run system-view


3. Run ospf network-type p2mp
The network type of the OSPF interface is configured.
A P2MP network is forcibly changed from another other type of network. For details, see
Configuring Network Types for OSPF Interfaces.
4. Run ospf p2mp-mask-ignore
OSPF is disabled from checking the network mask on the P2MP network.
5. Run commit
Step 2 (Optional) Configure the device to filter the LSA packets to be sent.
When multiple links exist between two devices, you can configure the local device to filter
the LSA packets to be sent. This can reduce unnecessary LSA retransmission attempts and
save bandwidth resources.
1. Run system-view

2. Run ospf [ process-id ]

3. Based on the basic ACL:
a. Run filter-lsa-out peer ip-address { all | { summary [ acl { acl-number | acl-
name } ] | ase [ acl { acl-number | acl-name } ] | nssa [ acl { acl-number | acl-
name } ] } * }
The local router is configured to filter the LSA packets to be sent on the P2MP
network.
b. Run quit
Return to the system view.
c. Run acl { name basic-acl-name { basic | [ basic ] number basic-acl-number } |
[ number ] basic-acl-number } [ match-order { config | auto } ]
The basic ACL view is displayed.
d. Run rule [ rule-id ] [ name rule-name ] { deny | permit } [ fragment-type
{ fragment | non-fragment | non-subseq | fragment-subseq | fragment-spe-
first } | source { source-ip-address { source-wildcard | 0 | src-netmask } | any } |
time-range time-name | vpn-instance vpn-instance-name ] *
The rule for the basic ACL is configured.
When the rule command is run to configure rules for a named ACL, only the source
address range specified by source and the time period specified by time-range are
valid as the rules.
When a filtering policy of a routing protocol is used to filter routes:

Router 5 OSPF
If the action specified in an ACL rule is permit, a route that matches the rule
will be received or advertised by the system.
If the action specified in an ACL rule is deny, a route that matches the rule
will not be received or advertised by the system.
If a route has not matched any ACL rules, the route will not be received or
advertised by the system.
If an ACL does not contain any rules, all routes matching the route-policy that
references the ACL will not be received or advertised by the system.
If the ACL referenced by the route-policy does not exist, all routes matching
the route-policy will be received or advertised by the system.
In the configuration order, the system first matches a route with a rule that has
a smaller number and then matches the route with a rule with a larger number.
Routes can be filtered using a blacklist or a whitelist:
Route filtering using a blacklist: Configure a rule with a smaller number and
specify the action deny in this rule to filter out the unwanted routes. Then,
configure another rule with a larger number in the same ACL and specify the
action permit in this rule to receive or advertise the other routes.
Route filtering using a whitelist: Configure a rule with a smaller number and
specify the action permit in this rule to permit the routes to be received or
advertised by the system. Then, configure another rule with a larger number in
the same ACL and specify the action deny in this rule to filter out unwanted
routes.
4. Run commit
----End
5.4.4 Verifying the Configuration of OSPF on the NBMA or P2MP

Network
After OSPF attributes are set on networks of different types, you can check OSPF neighbor
and interface information.
Prerequisites
OSPF attributes have been configured on networks of different types.
Procedure
number ] [ verbose ] command to check information about OSPF interfaces.
Run the display ospf [ process-id ] peer command to check information about OSPF
neighbors.
Run the display ospf brief command to check the interval at which Hello packets are
sent on an NBMA network.
----End

Router 5 OSPF
Example
Run the display ospf interface command to view the network types and status of OSPF
interfaces.

Run the display ospf peer command to view information about OSPF neighbors, including
the IP address, interface priority, and the DR or BDR.
Neighbors

DR: 192.168.1.4 BDR: 192.168.1.3 MTU: 0
Neighbor is up for
Run the display ospf brief command to view the interval at which Hello packets are sent on
an NBMA network.
<HUAWEI> display ospf brief
OSPF Protocol Information
RouterID: 9.9.9.9 Border Router: AREA
Multi-VPN-Instance is not enabled
Global DS-TE Mode: Non-Standard IETF Mode
Graceful-restart capability: disabled
Helper support capability : not configured
OSPF Stub Router State Reason: Startup Synchronize
Router LSA stub links with cost 65535
Summary LSA with cost 16777214
External LSA with cost 16777214
Applications Supported: MPLS Traffic-Engineering
Spf-schedule-interval: max 10000ms, start 500ms, hold 1000ms
Default ASE parameters: Metric: 1 Tag: 1 Type: 2
Route Preference: 10
ASE Route Preference: 150
Intra Route Preference: 50
Inter Route Preference: 50
SPF Computation Count: 56
RFC 1583 Compatible
OSPF is in LSDB overflow status(remain time: 205s)
Retransmission limitation is disabled
Import routes limitation is enabled
Self ASE LSA count: 8
Current status: Normal
bfd enabled
BFD Timers: Tx-Interval 10 , Rx-Interval 10 , Multiplier 3
Area Count: 2 Nssa Area Count: 1
ExChange/Loading Neighbors: 0
Area: 0.0.0.0 (MPLS TE not enabled)

Authtype: None Area flag: Normal
SPF scheduled count: 2
Exchange/Loading neighbors: 0
Router ID conflict state: Normal

Router 5 OSPF
Interface: 1.1.1.1 (GE3/0/0)

Cost: 1 State: DR Type: Broadcast MTU: 1500
Priority: 1
Designated Router: 1.1.1.1
Backup Designated Router: 0.0.0.0
Timers: Hello 10, Dead 40, Wait 40, Poll 120, Retransmit 5, Transmit Delay 1

Authtype: None Area flag: NSSA
NSSA Translator State: Elected
Self NSSA LSA count: 2
Interface: 1.1.1.1 (GE2/0/0)

Cost: 1 State: P-2-P Type: P2P MTU: 1500
Multi-area interface
5.5 Adjusting OSPF Route Selection

By adjusting OSPF route selection, you can enable OSPF to meet the requirements of
complex networks.
Usage Scenario
In real world situations, you can configure an OSPF route selection rule by setting OSPF
route attributes to meet the requirements of complex networks.
Set the cost of an interface. The link connected to the interface with a smaller cost value
preferentially transmits routing information.
Configure equal-cost routes to implement load balancing.
Configure a stub router during the maintenance operations such as upgrade to ensure
stable data transmission through key routes.
Suppress interfaces from sending or receiving packets to help select the optimal route.
Configuring an OSPF interface to automatically adjust the link cost based on link quality
that facilitates route selection control and improves network reliability.
Before adjusting OSPF route selection, complete the following tasks:
the network layer.
Configure basic OSPF functions.
Perform one or more of the following configurations as required.
5.5.1 Setting the Interface Cost

You can adjust and optimize route selection by setting the OSPF interface cost.

Router 5 OSPF
Context
After the OSPF interface costs are set, the interface with a smaller cost value preferentially
transmits routing information. This helps select the optimal route.
The OSPF interface cost can be set or calculated based on the interface bandwidth.
Procedure
Manually configure a cost for an OSPF interface.
a. Run system-view

b. Run interface interface-type interface-number

c. Run ospf cost cost
A cost is set for the interface.

d. Run commit

Configure bandwidth-based automatic OSPF interface cost calculation.
The calculation formula is as follows: Interface cost = Bandwidth reference value/
Interface bandwidth. The integer of the calculation result is used as the cost of the
interface. If the result is less than 1, the cost is 1.
a. Run system-view

b. Run ospf [ process-id ]
The OSPF view is displayed.

c. Run bandwidth-reference value
A bandwidth reference value is set.

d. Run commit

----End
5.5.2 Configuring Equal-Cost Routes

You can set the number of OSPF equal-cost routes and route preference to implement load
balancing and adjust route selection.
Context
If the destinations and costs of the multiple routes discovered by one routing protocol are the
same, load balancing can be implemented among the routes.
As shown in Figure 5-2, three routes between Device A and Device B that run OSPF have the
same costs. The three routes are equal-cost routes for load balancing.

Router 5 OSPF
Figure 5-2 Networking diagram of equal-cost routes
IP Network
cost=10 cost=5
IP Network
DeviceA DeviceB
IP Network
Procedure
Step 3 Run maximum load-balancing number
The maximum number of equal-cost routes is set.
If the number of equal-cost routes is greater than number specified in the maximum load-
balancing command, routes are selected for load balancing based on the following criteria:
1. Route priority: Routes with smaller priority values are selected for load balancing. For
details about route priority configuration, see Step 4.
2. Interface index: If routes have the same priority, those with greater interface index values
are selected for load balancing.
3. Next hop IP address: If routes have the same priority and interface index, those with
larger IP addresses are selected for load balancing.
Step 4 (Optional) Run either of the following commands:
To configure a priority for an equal-cost route, run the nexthop ip-address weight value
command.
Among equal-cost OSPF routes, those with smaller priority values configured using the
nexthop command are selected for load balancing.
– ip-address specifies the next hop address of the equal-cost route.
– value specifies the weight of the next hop.
To configure priorities for the routes with a TE tunnel interface or an IPv4 interface as
the outbound interface for route selection if both an IGP-Shortcut-enabled TE tunnel and
IP link are available, run the ecmp prefer { te-tunnel | intact } command.
Step 5 Run commit

Router 5 OSPF
----End
5.5.3 Setting the convergence priority for OSPF routes

You can adjust and optimize route selection by setting the convergence priority for OSPF
routes.
Context
To set the convergence priority of OSPF routes based on a specified IP prefix list takes effect
on the public network only.
OSPF route calculation, link-state advertisement (LSA) flooding, and LSDB synchronization
can be implemented according to the configured priority. Therefore, route convergence can be
controlled.
When an LSA meets multiple priorities, the highest priority takes effect.
OSPF calculates LSAs in the sequence of intra-area routes, inter-area routes, and AS external
routes. This command enables OSPF to calculate the three types of routes separately
according to the specified route calculation priorities. Convergence priorities are critical, high,
medium, and low. To speed up the processing of LSAs with the higher priority, during LSA
flooding, the LSAs need to be placed into the corresponding critical, high, medium, and low
queues according to priorities.
Procedure
Step 2 Run ip_ip-prefix ip-prefix-name [ index index-number ] { permit | deny } ipv4-address
mask-length [ match-network ] [ greater-equal greater-equal-value ] [ less-equal less-
equal-value ]
The IP prefix list is configured.
The OSPF process is started and OSPF view is displayed.
Step 4 Run prefix-priority { critical | high | medium } ip-prefix ip-prefix-name
The convergence priority for OSPF routes is set.
Step 5 Run commit
----End
5.5.4 Configuring a Stub Router

To ensure that a route is not interrupted during flapping-triggering maintenance operations
such as upgrade, you can configure a router as a stub router to allow traffic to bypass the route
on the stub router.

Router 5 OSPF
Context
After a stub router is configured, the route on the stub router will not be preferentially
selected. After the route cost is set to the maximum value 65535, traffic generally bypasses
the router. This ensures an uninterrupted route on the router during maintenance operations
such as upgrade.
Procedure
Step 3 Run stub-router [ on-startup [ interval ] | include-stub | external-lsa [ externallsa-metric ] |

summary-lsa [ summarylsa-metric ] ] *
A stub router is configured.
NOTE
The stub router configured in this manner is irrelevant to the router in the stub area.
Step 4 (Optional) Run maximum-link-cost cost
The maximum cost is set for OSPF links.
Step 5 Run commit
----End
5.5.5 Suppressing an Interface from Receiving and Sending OSPF

Packets
After an interface is suppressed from receiving and sending OSPF packets, routing
information can bypass a specific router and the local router can reject routing information
advertised by another router.
Context
Suppressing an interface from receiving and sending OSPF packets helps routing information
to bypass a specific router and enables the local router to reject routing information advertised
by another router. This ensures that an optimal route is provided.
For example, there are three routes between Device A and Device B, as shown in Figure 5-3.
To configure the route with the outbound interface of Interface 2 to be the optimal route,
suppress Interface 1 and Interface 3 from receiving and sending OSPF packets.

Router 5 OSPF
Figure 5-3 Networking diagram of suppressing an interface from receiving and sending
OSPF packets
IP Network
Interface2
IP Network
DeviceA DeviceB
IP Network
Procedure
Step 3 Run silent-interface { all | interface-type interface-number }
An interface is suppressed from receiving and sending OSPF packets.
The same interface in different processes can be suppressed from sending and receiving OSPF
packets, but the silent-interface command is valid only for the OSPF interface in the local
process.
After an OSPF interface is configured to be in the silent state, the interface can still advertise
its direct routes. Hello packets on the interface, however, cannot be forwarded. Therefore, no
neighbor relationship can be established on the interface. This can enhance the networking
adaptability of OSPF and reduce system resource consumption.
Step 4 Run commit
----End
5.5.6 Configuring an OSPF Interface to Automatically Adjust the

Link Cost
Configuring an OSPF interface to automatically adjust the link cost based on link quality
facilitates route selection control and improves network reliability.
Context
A bit error refers to the deviation between a bit that is sent and the bit that is received. The bit
error rate (BER) refers to the number of bit errors divided by the total number of bits

Router 5 OSPF
transferred during a studied time interval. During data transmission, a high BER will degrade
or even interrupt services in extreme cases.
To prevent this problem, configure OSPF interfaces to automatically adjust link costs based
on link quality so that unreliable links are not used by the optimal routes.
Procedure
Step 3 (Optional) Run bit-error-mode { crc | prefec [ trigger-interval time-interval ] }
Bit error detection is enabled on the interface.
NOTE
Bit error detection is classified as CRC bit error detection or Prefec bit error detection.
Step 4 Run link-quality low bit-error-threshold error-ratio trigger-coefficient trigger-power

resume-ratio recovery-coefficient recovery-power
Bit error detection is enabled on the interface, and a BER threshold is set.
Step 5 Run ospf enable [ process-id ] area area-id
OSPF is enabled on the interface.
Step 6 Run ospf link-quality low incr-cost { cost | max-reachable }
The OSPF interface is configured to automatically adjust the link cost based on link quality.
NOTE
The cost parameter specifies the link cost adjustment value. After this parameter is specified:
If the link quality changes from good to low, the link cost equals the original link cost plus the adjustment
value. The maximum link cost allowed is 65535.
If the link quality changes from low to good, the original link cost applies.
Step 7 Run commit

----End
5.5.7 Configuring a Fallback Cost for an Eth-Trunk Interface

A fallback cost of an Eth-Trunk interface helps adjust route selection dynamically.
Context
If a member interface of an Eth-Trunk interface goes down, the remaining bandwidth of the
Eth-Trunk interface may fail to meet user requirements. As a result, user services are affected.
To address this problem, run the ospf cost-fallback command to configure cost-fallback
parameters (fallback cost and bandwidth threshold) for the Eth-Trunk interface; if the
remaining bandwidth of the Eth-Trunk interface goes below the bandwidth threshold, the cost

Router 5 OSPF
of the interface is changed to the fallback cost which is higher than the normal cost, and
traffic is then switched to an alternative path; when the remaining bandwidth of the Eth-Trunk
interface reaches or exceeds the bandwidth threshold, the original cost is restored.
Procedure
Step 2 Run interface eth-trunk trunk-id
The Eth-Trunk interface view is displayed.
Step 3 Run ospf cost-fallback fallbackcost threshold fallbackbw
A fallback cost is configured for an Eth-Trunk interface.
Step 4 Run commit
----End
5.5.8 Verifying the Configuration of OSPF Route Selection

After OSPF route selection is adjusted, you can check OSPF routing table and interface
information.
Prerequisites
OSPF route selection has been adjusted.
Procedure
number ] [ verbose ] command to check information about OSPF interfaces.
Run the display ospf [ process-id ] routing command to check information about the
OSPF routing table.
Run the display ospf [ process-id ] ecmp-group command to check information about
OSPF ECMP groups
----End
Example
Run the display ospf interface command to view the network types and costs of OSPF
interfaces.

Run the display ospf routing command to view the destination addresses and link costs of
OSPF routes and whether load balancing is performed among these OSPF routes.

Router 5 OSPF

Routing Tables
Routing for Network

Destination Cos t Type NextHop AdvRouter Area
172.16.1.0/24 4 Inter-area 192.168.2.1 2.2.2.2 0.0.0.2
4 Inter-area 192.168.2.3 2.2.2.2 0.0.0.2
192.168.0.0/24 2 Inter-area 192.168.2.1 2.2.2.2 0.0.0.2
Routing for ASEs

Destination Cost Type Tag NextHop AdvRouter
100.0.0.0/8 1 Type2 1 192.168.2.1 1.1.1.1
Total Nets: 4
5.6 Controlling OSPF Routing Information

You can control the advertising and receiving of OSPF routing information and import routes
of other protocols.
Before controlling OSPF routing information, complete the following tasks:
the network layer.
5.6.1 Configuring OSPF to Import External Routes

Importing the routes discovered by other routing protocols can enrich OSPF routing
information.
Context
To access a router running a non-OSPF protocol, an OSPF-capable router needs to import
routes of the non-OSPF protocol into the OSPF network.
OSPF provides loop-free intra-area routes and inter-area routes; however, OSPF cannot
prevent external routing loops. Therefore, exercise caution when configuring OSPF to import
external routes. For details, see "OSPF VPN Extension" in the HUAWEI NetEngine40E
Feature Description - VPN.
Perform the following steps on the ASBR running OSPF.
Procedure

Router 5 OSPF

Step 3 Run import-route { bgp [ permit-ibgp ] | direct | rip [ process-id-rip ] | static | unr | isis
[ process-id-isis ] | ospf [ process-id-ospf ] } [ cost cost | tag tag | type type | route-policy
route-policy-name | route-filter route-filter-name ] *
Routes are imported from another protocol.
Step 4 (Optional) Run default { cost { cost | inherit-metric } | tag tag | type type } *
The default values of parameters (the cost, number of routes, tag, and type) are set for
imported routes.
When OSPF imports external routes, you can set default values for some additional
parameters, such as the cost, number of routes to be imported, route tag, and route type. The
route tag is used to identify the protocol-related information. For example, it can be used to
differentiate AS numbers carried in BGP routes imported by OSPF.
NOTE
You can run one of the following commands to set the cost of the imported route. The following
commands are listed in descending order of priorities.
Run the apply cost command to set the cost of a route.
Run the import-route command to set the cost of the imported route.
Run the default command to set the default cost of the imported route.
Step 5 (Optional) Run any of the following commands as required:

Based on the basic ACL:
a. Run filter-policy { acl-number | acl-name acl-name } export [ direct | static | unr
| bgp | { rip | isis | ospf } [ process-id ] ]
Routes imported using Step 3 can be advertised only when meeting filtering
conditions.
b. Run quit
valid as the rules.

Router 5 OSPF
routes.
Based on the IP prefix:
Run filter-policy ip-prefix ip-prefix-name export [ protocol [ process-id ] ]
Routes imported using Step 3 can be advertised only when meeting filtering conditions.
OSPF filters the imported routes. OSPF uses Type 5 LSAs to carry routes that meet the
filtering conditions and advertises these Type 5 LSAs.
You can specify the parameter protocol [ process-id ] to filter the routes of a certain routing
protocol or a certain OSPF process. If protocol [ process-id ] is not specified, OSPF filters all
imported routes.
The import-route command cannot be used to import the default route from another AS.
Step 6 Run import-route limit limit-number [ threshold-alarm upper-limit upper-limit-value

lower-limit lower-limit-value ]
A limit is configured on the number of LSAs generated when an OSPF process imports
external routes.
If OSPF imports a large number of external routes and advertises them to a device with a
smaller routing table capacity, the device may restart unexpectedly. To address this problem,
run the import-route limit command to configure a limit on the number of LSAs generated
when an OSPF process imports external routes. Check the overload status based on the value
of the Current status field in the display ospf brief command output.
Normal: The number of LSAs generated when an OSPF process imports external routes
is less than or equal to the lower alarm threshold (in percentage) multiplied by the
maximum number allowed.
Approach limit: The number of LSAs generated when an OSPF process imports external
routes is approaching (reaching or exceeding 90% of) the upper alarm threshold.
Exceed limit: The number of LSAs generated when an OSPF process imports external
routes has reached or exceeded the maximum number allowed.
Ensure that upper-limit-value is greater than or equal to lower-limit-value.

Router 5 OSPF
Step 7 Run commit

----End
5.6.2 Configuring OSPF to Import a Default Route

The default route is widely applied on the OSPF network to reduce routing entries in the
routing table and filter specific routing information.
Context
On the area border and AS border of an OSPF network generally reside multiple routers for
next-hop backup or traffic load balancing. A default route can be configured to reduce routing
entries and improve resource usage on the OSPF network.
The default route is generally applied to the following scenarios:
1. An ABR in an area advertises Type 3 LSAs carrying the default route within the area.
routers in the area use the received default route to forward inter-area packets.
2. An ASBR in an AS advertises Type 5 or Type 7 LSAs carrying the default route within
the AS. routers in the AS use the received default route to forward AS external packets.
When no exactly matched route is discovered, the router can forward packets through the
default route.
The preference of the default route in Type 3 LSAs is higher than that of the route in Type 5
or Type 7 LSAs.
The advertising mode of the default route is determined by the type of the area to which the
default route is imported, as shown in Table 5-3.
Table 5-3 Default route advertising mode

Area Generated By Advertise d LSA Type Fl
Type By ng
Commo The default-route-advertise command ASBR Type 5 LSA C

n area on
Stub Automatically ABR Type 3 LSA St

area ar
NSSA The nssa [ default-route-advertise ] ASBR Type 7 LSA N

command
Automatically ABR Type 3 LSA N
Totally Automatically ABR Type 3 LSA N

NSSA
Perform the following steps on the ASBR running OSPF.

Router 5 OSPF
Procedure
Step 3 Run default-route-advertise [ [ always | permit-calculate-other ] | cost cost | type type |
{ route-policy route-policy-name | route-filter route-filter-name } | distribute-delay delay-
time ] *
The default route is imported into the OSPF process.
For details about how to configure the default route in the NSSA, see Configuring an NSSA.
Step 4 Run commit
----End
5.6.3 Configuring Route Summarization

When a large-scale OSPF network is deployed, you can configure route summarization to
reduce routing entries.
Context
Route summarization on a large-scale OSPF network reduces routing entries, minimizes
system resource consumption, and maintains system performance. In addition, if a specific
link frequently alternates between Up and Down, the links not involved in the route
summarization will not be affected, which prevents route flapping and improves network
stability.
Procedure
Configure ABR route summarization.
Perform the following steps on the OSPF ABR:
a. Run system-view
c. Run area area-id
d. Run abr-summary ip-address mask [ [ advertise | cost { cost | inherit-minimum }
| generate-null0-route | hold-max-cost interval ] * | [ not-advertise | cost { cost |
inherit-minimum | hold-max-cost interval } ] * | [ generate-null0-route |
advertise | cost { cost | inherit-minimum } | hold-max-cost interval ] * ]
ABR route summarization is configured.

Router 5 OSPF
e. Run commit
Configure ASBR route summarization.
Perform the following steps on the OSPF ASBR:
a. Run system-view

c. Run asbr-summary ip-address mask [ [ not-advertise | generate-null0-route ] |
tag tag | cost cost | distribute-delay interval ] *
ASBR route summarization is configured.
d. Run commit
NOTE
After route summarization is configured, the routing table on the local OSPF router remains
the same. The routing table on another OSPF router, however, contains only one summarized
route, no specific route. This summarized route is not removed until all specific routes are
interrupted.
----End
5.6.4 Configuring OSPF to Filter LSAs in an Area

Filtering LSAs in an area can prevent unnecessary LSA transmission. This reduces the size of
the LSDB on the neighboring router and speeds up network convergence.
Context
After filtering conditions are set for the incoming or outgoing Type 3 LSAs (Summary LSAs)
in an area, only the Type 3 LSAs that meet the filtering conditions can be received or
advertised.
This function is applicable only to the ABR.
Procedure



Step 4 Filter incoming or outgoing Type 3 LSAs in the area.

Router 5 OSPF
Filter outgoing Type 3 LSAs in the area. Run any of the following commands as
required:
– Based on the basic ACL:
i. Run filter { acl-number | acl-name acl-name } export
Filter outgoing Type 3 LSAs in the area can be advertised.
ii. Run quit
iii. Run acl { name basic-acl-name { basic | [ basic ] number basic-acl-number }
| [ number ] basic-acl-number } [ match-order { config | auto } ]
iv. Run rule [ rule-id ] [ name rule-name ] { deny | permit } [ fragment-type
first } | source { source-ip-address { source-wildcard | 0 | src-netmask } |
any } | time-range time-name | vpn-instance vpn-instance-name ] *
When the rule command is run to configure rules for a named ACL, only the
source address range specified by source and the time period specified by
time-range are valid as the rules.
○ If the action specified in an ACL rule is permit, a route that matches the
rule will be received or advertised by the system.
○ If the action specified in an ACL rule is deny, a route that matches the
rule will not be received or advertised by the system.
○ If a route has not matched any ACL rules, the route will not be received
or advertised by the system.
○ If an ACL does not contain any rules, all routes matching the route-
policy that references the ACL will not be received or advertised by the
system.
○ If the ACL referenced by the route-policy does not exist, all routes
matching the route-policy will be received or advertised by the system.
○ In the configuration order, the system first matches a route with a rule that
has a smaller number and then matches the route with a rule with a larger
number. Routes can be filtered using a blacklist or a whitelist:
Route filtering using a blacklist: Configure a rule with a smaller number
and specify the action deny in this rule to filter out the unwanted routes.
Then, configure another rule with a larger number in the same ACL and
specify the action permit in this rule to receive or advertise the other
routes.
Route filtering using a whitelist: Configure a rule with a smaller number
and specify the action permit in this rule to permit the routes to be
received or advertised by the system. Then, configure another rule with a
larger number in the same ACL and specify the action deny in this rule to
filter out unwanted routes.
– Based on the IP prefix:
Run filter ip-prefix ip-prefix-name export

Router 5 OSPF
– Based on the Route-Policy:

Run filter route-policy route-policy-name export
– Based on the XPL Route-Policy:
Run filter route-filter route-filter-name export
Filter incoming Type 3 LSAs in the area. Run any of the following commands as
required:
– Based on the basic ACL:
i. Run filter { acl-number | acl-name acl-name } import [ include-abr-
summary ]
Filter incoming Type 3 LSAs in the area can be advertised.
ii. Run quit
○ If the action specified in an ACL rule is permit, a route that matches the
rule will be received or advertised by the system.
○ If the action specified in an ACL rule is deny, a route that matches the
rule will not be received or advertised by the system.
○ If a route has not matched any ACL rules, the route will not be received
or advertised by the system.
○ If an ACL does not contain any rules, all routes matching the route-
policy that references the ACL will not be received or advertised by the
system.
○ If the ACL referenced by the route-policy does not exist, all routes
matching the route-policy will be received or advertised by the system.
○ In the configuration order, the system first matches a route with a rule that
has a smaller number and then matches the route with a rule with a larger
number. Routes can be filtered using a blacklist or a whitelist:
Route filtering using a blacklist: Configure a rule with a smaller number
and specify the action deny in this rule to filter out the unwanted routes.
Then, configure another rule with a larger number in the same ACL and
specify the action permit in this rule to receive or advertise the other
routes.

Router 5 OSPF
Route filtering using a whitelist: Configure a rule with a smaller number

and specify the action permit in this rule to permit the routes to be
received or advertised by the system. Then, configure another rule with a
larger number in the same ACL and specify the action deny in this rule to
filter out unwanted routes.
– Based on the IP prefix:
Run filter ip-prefix ip-prefix-name import [ include-abr-summary ]
– Based on the Route-Policy:
Run filter route-policy route-policy-name import [ include-abr-summary ]
– Based on the XPL Route-Policy:
Run filter route-filter route-filter-name import [ include-abr-summary ]
Step 5 Run commit
----End
5.6.5 Configuring OSPF to Filter LSAs to Be Sent

Filtering the LSAs to be sent on the local router can prevent unnecessary LSA transmission.
This reduces the size of the LSDB on the neighboring device and speeds up network
convergence.
Context
When multiple links exist between two devices, you can configure the local device to filter
the LSAs to be sent. This prevents unnecessary LSA transmission and saves bandwidth
resources.
Procedure
Step 3 Based on the basic ACL:
1. Run ospf filter-lsa-out { all | { summary [ acl { acl-number | acl-name } ] | ase [ acl
{ acl-number | acl-name } ] | nssa [ acl { acl-number | acl-name } ] } * }
The LSAs to be sent are filtered.
2. Run quit
3. Run acl { name basic-acl-name { basic | [ basic ] number basic-acl-number } |

Router 5 OSPF

4. Run rule [ rule-id ] [ name rule-name ] { deny | permit } [ fragment-type { fragment |
non-fragment | non-subseq | fragment-subseq | fragment-spe-first } | source
{ source-ip-address { source-wildcard | 0 | src-netmask } | any } | time-range time-name
| vpn-instance vpn-instance-name ] *
address range specified by source and the time period specified by time-range are valid
as the rules.
– If the action specified in an ACL rule is permit, a route that matches the rule will
be received or advertised by the system.
– If the action specified in an ACL rule is deny, a route that matches the rule will not
be received or advertised by the system.
– If a route has not matched any ACL rules, the route will not be received or
– If an ACL does not contain any rules, all routes matching the route-policy that
– If the ACL referenced by the route-policy does not exist, all routes matching the
route-policy will be received or advertised by the system.
– In the configuration order, the system first matches a route with a rule that has a
smaller number and then matches the route with a rule with a larger number. Routes
can be filtered using a blacklist or a whitelist:
Route filtering using a blacklist: Configure a rule with a smaller number and specify
the action deny in this rule to filter out the unwanted routes. Then, configure
another rule with a larger number in the same ACL and specify the action permit in
this rule to receive or advertise the other routes.
advertised by the system. Then, configure another rule with a larger number in the
same ACL and specify the action deny in this rule to filter out unwanted routes.
Step 4 Run commit
----End
5.6.6 Configuring OSPF to Filter Received Routes

After a filtering policy is configured for the OSPF routes that need to be delivered to the
routing management module, only the routes that match the policy will be added to the
routing table.
Procedure

Router 5 OSPF
Step 3 Run any of the following commands as required:

a. Run filter-policy { acl-number | acl-name acl-name [ secondary ] } import
OSPF is configured to filter received routes.

b. Run quit
valid as the rules.
routes.
Run filter-policy ip-prefix ip-prefix-name [ secondary ] import

Router 5 OSPF
Based on the Route-Policy:

Run filter-policy route-policy route-policy-name [ secondary ] import
Based on the XPL Route-Policy:
Run filter-policy route-filter route-filter-name [ secondary ] import
OSPF is a link-state dynamic routing protocol, with routing information carried in the link
status advertisement (LSA). Therefore, the filter-policy import command cannot be used to
filter the advertised or received LSAs. The filter-policy import command is used to filter the
routes calculated by OSPF. Only the routes that match the filtering rules are added to the
routing table and can be advertised. Routes that do not match the filtering rules can be added
to the OSPF routing table but not to the routing information base (RIB) and cannot be
advertised.
Step 4 Run commit
----End
5.6.7 Configuring the Maximum Number of External Routes

Supported by the OSPF LSDB
You can set the maximum number of external routes in the LDSB to keep a proper number of
external routes.
Procedure
Step 3 Run lsdb-overflow-limit number
The maximum number of external routes supported by the OSPF LSDB is configured.
If the number of external routes imported by OSPF exceeds the configured maximum number,
the device deletes self-generated non-default external routes to ensure the proper forwarding
of other external routes.
Step 4 Run commit
----End
5.6.8 Verifying the Configuration of OSPF Routing Information

Control
After OSPF routing information is controlled, you can check OSPF LSDB information.

Router 5 OSPF
Prerequisites
OSPF routing information has been controlled.
Procedure
Run the display ospf [ process-id ] lsdb command to check information about the OSPF
LSDB.
Run the display ospf [ process-id ] asbr-summary [ ip-address mask ] command to
check information about OSPF route summarization.
----End
Example
Run the display ospf lsdb command to view information about the OSPF LSDB, including
the link state IDs in the LSAs and information about the routers that advertise or generate
LSAs.
<HUAWEI> display ospf lsdb
Link State Database
Area: 0.0.0.0
Type LinkState ID AdvRouter Age Len Sequence M
Router 2.2.2.2 2.2.2.2 98 36 8000000B
Network 10.1.1.2 2.2.2.2 98 32 80000004
Sum-Net 20.1.1.0 2.2.2.2 286 28 80000001
Sum-Asbr 2.2.2.2 1.1.1.1 61 28 80000001
AS External Database
Type LinkState ID AdvRouter Age Len Sequence M
External 0.0.0.0 2.2.2.2 1128 36 80000001
External 100.1.1.0 2.2.2.2 538 36 80000002
Type 9 Opaque (Link-Local Scope) Database. Area: 0.0.0.0

Type LinkState ID AdvRouter Age Len Sequence Interf
Opq-Link 3.0.0.0 2.2.2.2 12 44 80000001 10.1.
Type 10 Opaque (Area-Local Scope) Database

Type LinkState ID AdvRouter Age Len Sequence Area
Opq-Area 1.0.0.1 1.1.1.1 4 200 80000003 0.0.0.0
Opq-Area 1.0.0.0 1.1.1.1 1641 28 80000001 0.0.0.0
5.7 Adjusting the OSPF Network Convergence Speed

By adjusting OSPF timers, you can implement OSPF network convergence speed.
Before adjusting the OSPF network convergence speed, complete the following tasks:

the network layer.

Router 5 OSPF
5.7.1 Setting the Interval at Which Hello Packets Are Sent

You can adjust the value of the Hello timer to change the speed of the OSPF neighbor
relationship establishment and change the network convergence speed.
Context
Hello packets are periodically sent between OSPF interfaces to establish and maintain
neighbor relationships. The intervals set on the interfaces at both ends must be the same.
Otherwise, the OSPF neighbor relationship cannot be established.
Procedure
The OSPF interface view is displayed.
Step 3 Run ospf timer hello interval [ conservative ]
The interval at which Hello packets are sent is set on the OSPF interface.
If the conservative parameter is specified in the command, the conservative mode is

configured for the dead timer. If the conservative mode is configured, the value configured for
the dead timer using the ospf timer dead command takes effect even when the value is less
than 10s.
To speed up OSPF convergence in the case of a link failure, configuring BFD For OSPF is
recommended. If the remote end does not support BFD for OSPF or you do not want to
configure BFD for OSPF, specify conservative when you run the ospf timer hello command.
If the conservative mode is configured, the value configured for the dead timer using the ospf
timer dead command takes effect even when the value is less than 10s; if the value
configured for the dead timer is greater than 10s, services may be affected.
NOTE
The interval must be longer than the time a device takes to perform a master/slave main control board
switchover. If the timer is set to less than the switchover time, a protocol intermittent interruption occurs
during a switchover. The default timer value is recommended.
Step 4 Run commit
----End
5.7.2 Setting the delay for transmitting LSAs on an interface

This configuration is important for low-speed networks.

Router 5 OSPF
Procedure
Step 3 Run ospf trans-delay interval
The delay for transmitting LSAs is set on an interface.
The LSAs in the LSDB of the local router age with time (increase by 1 each second), but not
during transmission. To set a delay for transmitting LSAs on an interface.
Step 4 Run commit
----End
5.7.3 Setting the Dead Time of an OSPF neighbor

If no Hello packet is received from a neighbor within a dead interval, the neighbor is
considered Down.
Procedure
Step 3 Run ospf timer dead interval
The dead time is set for the neighbor relationship.
NOTE
If the dead interval of an OSPF neighbor is shorter than 10s, the session may be closed. Therefore, if
dead interval is shorter than 10s, the actual dead interval of an OSPF neighbor is not shorter than 10s. If
the conservative mode is configured using the ospf timer hello command, the configured dead timer
takes effect even when its value is less than 10s.
Both the Hello timer and Dead timer are restored to the default values if the network type is changed.
Step 4 Run commit

----End
5.7.4 Configuring OSPF Sham Hello

With OSPF sham hello, device can exchange Hello and LSU and LSAck packets to maintain
OSPF neighbor relationships, which strengthens the neighbor detection mechanism.

Router 5 OSPF
Procedure
Step 3 Run sham-hello enable
OSPF sham hello is enabled.
Step 4 Run commit
----End
5.7.5 Configuring Smart-discover

After Smart-discover is configured, when the neighbor status changes or the DR or BDR on
the multiple-access network (broadcast network or NBMA network) changes, the local router
sends Hello packets to its neighbor immediately without waiting for the Hello timer to expire.
Context
Without Smart-discover, when the neighbor status of the router changes or the DR/BDR on
the multiple-access network (broadcast or NBMA network) changes, the router does not send
Hello packets to its neighbor until the Hello timer expires; after Smart-discover is configured,
the router sends Hello packets to its neighbor immediately without waiting for the Hello timer
to expire, which speeds up the neighbor relationship establishment and OSPF network
convergence.
Procedure
Step 3 Run ospf smart-discover
Smart-discover is configured on the interface.
Step 4 Run commit
----End
5.7.6 Setting the Interval at Which LSAs Are Updated

You can set the interval at which LSAs are updated based on network connections and router
resources.

Router 5 OSPF
Context
OSPF sets the interval at which LSAs are updated to 5s. This prevents network connections or
frequent route flapping from consuming excessive network bandwidth or device resources.
On a stable network that requires fast route convergence, you can change the interval for
updating LSAs to 0s. In this manner, the device can fast respond to topology or route changes,
which speeds up route convergence.
Procedure
Step 3 Run lsa-originate-interval { 0 | intelligent-timer max-interval start-interval hold-interval

[ other-type interval ] | other-type interval [ intelligent-timer max-interval start-interval
hold-interval ] }
The interval at which LSAs are updated is set.
intelligent-timer: Sets the intelligent timer to update OSPF Type-1 LSA (Router LSA) ,
Type-2 LSA (Network LSA), Type-5 LSA (AS-external-LSA), Type-7 LSA (NSSA
LSA).
max-interval: Sets the maximum interval at which LSAs are updated, in milliseconds.
start-interval: Sets the initial interval at which LSAs are updated, in milliseconds.
hold-interval: Sets the hold interval at which LSAs are updated, in milliseconds.
other-type: Sets the interval to update OSPF Type-3 LSA (Network-summary-LSA),
Type-4 LSA (ASBR-summary-LSA) and Type-10 LSA (Opaque LSA).
After an intelligent timer is enabled, the interval for updating LSAs is as follows:
1. The initial interval for updating LSAs is specified by start-interval.
2. The interval for updating LSAs for the nth (n≥2) time equal hold-interval x 2(n-2).
3. When the interval specified by hold-interval x 2(n-2) reaches the maximum interval
specified by max-interval, OSPF updates LSAs at the maximum interval for three
consecutive times. Then, OSPF updates LSAs at the initial interval specified by start-
interval.
Step 4 (Optional) Run lsa-originate-interval suppress-flapping suppress-interval [ threshold

threshold ]
The suppression period that takes effect when the OSPF LSAs to be sent flap is configured.
If no flapping occurs among the OSPF LSAs to be sent, the configuration of the lsa-
originate-interval command prevents the device from frequently sending LSAs. If the OSPF
LSAs to be sent flap, the configuration of the lsa-originate-interval suppress-flapping
command minimizes the impact of the flapping on services. The larger value of the two
intervals specified in the commands is used as the suppression period.
Step 5 Run commit

Router 5 OSPF
----End
5.7.7 Setting the Interval at Which LSAs Are Received

You can set the interval at which LSAs are received based on network connections and router
resources.
Context
In OSPF, the defined interval at which LSAs are received is 1s. This aims to prevent network
connections or frequent route flapping from consuming excessive network bandwidth or
device resources.
On a stable network that requires fast route convergence, you can cancel the interval at which
LSAs are received by setting the interval to 0s. After the interval is set to 0s, topology or route
changes can be immediately advertised on the network through LSAs, which speeds up route
convergence.
Procedure

Step 3 Run lsa-arrival-interval { interval | intelligent-timer max-interval start-interval hold-
interval }
The interval at which LSAs are received is set.
The parameter interval sets the interval at which LSAs are received, in milliseconds.
The parameter intelligent-timer sets the interval at which router LSAs or network LSAs
are received using an intelligent timer.
The parameter max-interval sets the maximum interval at which LSAs are received, in
milliseconds.
The parameter start-interval sets the initial interval at which LSAs are received, in
milliseconds.
The parameter hold-interval sets the hold interval at which LSAs are received, in
milliseconds.
Details about the interval at which LSAs are received are as follows:
1. start-interval specifies the initial interval at which LSAs are received.
2. The interval at which LSAs are received for the nth (n ≥ 2) time = hold-interval x 2 x
(n-1).
3. When the interval specified in hold-interval x 2 x (n-1) reaches the maximum interval
specified in max-interval, OSPF receives LSAs at the maximum interval for three
consecutive times. Then, OSPF goes back to Step Step 3.1 and receives LSAs at the
initial interval specified in start-interval.

Router 5 OSPF
Step 4 (Optional) Run lsa-arrival-interval suppress-flapping suppress-interval [ threshold

threshold ]
The suppression period that takes effect when received OSPF LSAs flap is configured.
If no flapping occurs among received OSPF LSAs, the configuration of the lsa-arrival-
interval command prevents the device from frequently receiving LSAs. If received OSPF
LSAs flap, the configuration of the lsa-arrival-interval suppress-flapping command
minimizes the impact of the flapping on services. The larger value of the two intervals
specified in the commands is used as the suppression period.
Step 5 Run commit
----End
5.7.8 Setting the Interval for the SPF Calculation

By setting the interval for the SPF calculation, you can save resources consumed by frequent
network changes.
Context
When the OSPF LSDB changes, the shortest path needs to be recalculated. If a network
changes frequently, the shortest path is calculated accordingly, which consumes a large
number of system resources degrades system performance. By configuring an intelligent timer
and a proper interval for the SPF calculation, you can prevent excessive system memory and
bandwidth resources from being occupied.
Procedure
Step 3 Run spf-schedule-interval { interval1 | intelligent-timer max-interval start-interval hold-
interval [ conservative ] | millisecond interval2 }
The interval for the SPF calculation is set.
The interval for the SPF calculation is as follows:
1. The initial interval for the SPF calculation is specified in start-interval.
2. The interval for the SPF calculation for the nth (n≥2) time is equal to hold-interval ×
2(n-2).
3. When the interval specified in hold-interval × 2(n-2) reaches the maximum interval
specified in max-interval, OSPF performs the SPF calculation at the maximum interval
until no SPF calculation is performed within max-interval. After the maximum interval
elapses, the calculation mechanism goes back to step 1.
4. If no flapping occurs within the interval of max-interval that starts upon the end of the
previous SPF calculation, the intelligent timer exits.

Router 5 OSPF
5. If no flapping occurs in the previous interval and flapping occurs in the current interval,
SPF calculation is delayed for a period of the start-interval. After the SPF calculation is
complete, the current interval is used for the next SPF calculation.
Step 4 Run commit
----End
5.7.9 Configuring the Function to Suppress the Advertisement of

Interface Addresses
This section describes how to configure the function to suppress the advertisement of
interface addresses so that interface addresses can be reused.
Procedure
Configuring the function to suppress the advertisement of all interface addresses in an
OSPF process
a. Run system-view
c. Run suppress-reachability
The suppresses the advertisement of all interface addresses in an OSPF process is
configured.
d. Run commit
Configuring an OSPF interface to suppress the advertisement of interface addresses
a. Run system-view
c. Run ospf suppress-reachability
An OSPF interface to suppress the advertisement of interface addresses is
configured.
d. Run commit
----End
5.7.10 Configuring the Route Calculation Delay Function to

Suppress Frequent LSA Flapping
A route calculation delay can suppress frequent OSPF LSA flapping.

Router 5 OSPF
Context
Frequent OSPF LSA flapping on the remote device may lead to route flapping on the local
device, affecting services. To address this problem, run the maxage-lsa route-calculate-delay
command to configure the local device to delay route calculation in the case of frequent OSPF
LSA flapping, which suppresses route flapping locally.
Procedure
Step 3 Run maxage-lsa route-calculate-delay delay-interval
The route calculation delay function is configured to suppress frequent OSPF LSA flapping.
Step 4 Run commit
----End
5.7.11 Disabling Master/Slave Board Switching Triggered by

Abnormal OSPF LSA Aging
By default, master/slave board switching triggered by abnormal OSPF LSA aging is enabled.
To disable this function, perform this task.
Context
When the local device's aging timer expires, the local device incorrectly clears all Router
LSAs from the peer device, which causes route flapping and service interruptions. To resolve
this issue, master/slave board switching triggered by abnormal OSPF LSA aging is
automatically enabled. Master/slave board switching is triggered to restore network
connections and service traffic when the following condition is met:
(Number of incorrectly cleared Router LSAs/Total number of Router LSAs) x 100% ≥ 80%
(Router LSAs are those sent by the peer device to the local device)
Procedure
Step 2 Run ospf maxage-lsa auto-protect disable
The master/slave board switching triggered by abnormal OSPF LSA aging is disabled.
Step 3 Run commit

Router 5 OSPF
----End
5.7.12 Disabling OSPF LSA Aging Management

By default, the OSPF LSA aging management function is enabled. To disable this function,
perform this task.
Context
If an exception occurs in the age field of LSAs, LSAs may be aged unexpectedly, causing
LSA flapping or a route calculation error. For example, if the abnormal aging time is 2500s
and the actual aging time is 500s, LSAs are aged prematurely. To address this problem, OSPF
LSA aging management is enabled by default. If the aging time in a received LSA is greater
than 1800s, OSPF considers the LSA abnormal and changes the aging time to 1700s until the
aging time values of all LSAs in the area become the same. In this case, routes can be
calculated correctly.
Procedure
Step 2 Run lsa-age refresh disable
OSPF LSA aging management is disabled.
Step 3 Run commit
----End
5.7.13 Setting a Period During Which OSPF Keeps the Maximum

Cost in Local LSAs
If a period during which OSPF keeps the maximum cost in local LSAs is configured and an
OSPF interface changes from Down to Up, traffic is switched back only when the period
elapses.
Context
When an OSPF interface changes from Down to Up, the OSPF neighbor relationship is re-
established. When IGP route convergence ends, traffic is switched back. IGP routes converge
fast. Many services that depend on IGP routes may require a delayed switchback. In this case,
you can run the ospf peer hold-max-cost command so that OSPF keeps the maximum cost in
local LSAs for a specified period after the OSPF neighbor relationship reaches Full state.
During this period, the traffic forwarding path remains unchanged. After this period elapses,
the original cost is restored, and traffic is switched back.

Router 5 OSPF
Procedure
Step 3 Run ospf peer hold-max-cost timer timer
A period during which OSPF keeps the maximum cost in local LSAs is set.
Step 4 Run commit
----End
5.7.14 Configuring Secure Synchronization

Secure synchronization prevents traffic loss after a device is restarted.
Context
When the routers in an area just finish synchronizing the LSDBs, the LSDBs of these routers
are different from each other. As a result, route flapping occurs. You can configure secure
synchronization to solve this problem. This, however, may delay the establishment of the
OSPF neighbor relationship.
Procedure
Step 2 Run ospf [process-id ]
Step 3 Run safe-sync enable
Secure synchronization is configured.
Step 4 Run commit
----End
5.7.15 Verifying the Configuration of the OSPF Network

Convergence Speed
After configuring OSPF fast network convergence, verify OSPF brief information.
Prerequisites
OSPF fast convergence has been configured.

Router 5 OSPF
Procedure
Run the display ospf [ process-id ] brief command to check brief information about the
specified OSPF process.
Run the display ospf [ process-id ] statistics maxage-lsa command to check information
about router LSAs that have reached the aging time.
----End
Example
Run the display ospf brief command to view information about OSPF timers.
<HUAWEI> display ospf brief
RFC 1583 Compatible
OSPF is in LSDB overflow status(remain time: 205s)
Self ASE LSA count: 8
bfd enabled

Interface: 1.1.1.1 (GE3/0/0)

Priority: 1

Authtype: None Area flag: NSSA
NSSA Translator State: Elected
Self NSSA LSA count: 2

Router 5 OSPF
Interface: 1.1.1.1 (GE2/0/0)

Cost: 1 State: P-2-P Type: P2P MTU: 1500
Multi-area interface
Run the display ospf [ process-id ] statistics maxage-lsa command to view information
<HUAWEI> display ospf statistics maxage-lsa

Statistics of Router-LSAs
-------------------------------------------
Area: 0.0.0.0
LinkState ID MaxAge count Last MaxAge time
1.1.1.1 1 2014-03-22 11:12:00
5.8 Configuring OSPF Neighbor Relationship Flapping

Suppression
OSPF neighbor relationship flapping suppression works by delaying OSPF neighbor
relationship reestablishment or setting the link cost to the maximum value.
Usage Scenario
If an interface carrying OSPF services alternates between Up and Down, OSPF neighbor
relationship flapping occurs on the interface. During the flapping, OSPF frequently sends
Hello packets to reestablish the neighbor relationship, synchronizes LSDBs, and recalculates
routes. In this process, a large number of packets are exchanged, adversely affecting neighbor
relationship stability, OSPF services, and other OSPF-dependent services, such as LDP and
BGP. OSPF neighbor relationship flapping suppression can address this problem by delaying
OSPF neighbor relationship reestablishment or preventing service traffic from passing
through flapping links.
NOTE
The following steps are optional, choose them as required.
Before configuring OSPF neighbor relationship flapping suppression, complete the following
tasks:
Configure an IP address for each interface to ensure that neighboring routers are
reachable at the network layer.
Procedure

By default, OSPF neighbor relationship flapping suppression is enabled globally. To disable
this function globally, run the suppress-flapping peer disable command.

Router 5 OSPF

By default, OSPF neighbor relationship flapping suppression is enabled on all interfaces in
the same OSPF process. To disable the function from one of the interfaces, run the ospf
suppress-flapping peer disable command.
Step 3 Run ospf suppress-flapping peer hold-down interval
The Hold-down mode is configured, and its duration is set.

Flapping suppression works in either Hold-down or Hold-max-cost mode.
Hold-down mode: In the case of frequent flooding and topology changes during neighbor
relationship establishment, interfaces prevent neighbor relationship reestablishment
during Hold-down suppression, which minimizes LSDB synchronization attempts and
packet exchanges.
Hold-max-cost mode: If the traffic forwarding path changes frequently, interfaces use
65535 as the cost of the flapping link during Hold-max-cost suppression, which prevents
traffic from passing through the flapping link.
NOTE
To change the maximum cost for OSPF links, run the maximum-link-cost cost command.
Flapping suppression can also work first in Hold-down mode and then in Hold-max-cost
mode.
To disable the Hold-max-cost mode, run the ospf suppress-flapping peer hold-max-cost
disable command.
Step 4 Run ospf suppress-flapping peer { detecting-interval detecting-interval | threshold
threshold | resume-interval resume-interval } *
Detection parameters are configured for OSPF neighbor relationship flapping suppression.
Specifies the interval for exiting from OSPF neighbor relationship flapping suppression.
If the interval between two successive neighbor status changes from Full to a non-Full
state is longer than resume-interval, the flapping_count is reset.
If OSPF neighbor relationship flapping suppression works in hold-max-cost mode,
resume-interval indicates the duration of this mode.
NOTE
The value of resume-interval must be greater than that of detecting-interval.
By default, the detection interval of OSPF neighbor relationship flapping suppression is 60s,
the suppression threshold is 10, and the interval for exiting from suppression is 120s. Using
the default detection parameters is recommended.
Step 5 Run quit

Step 6 Run quit
The user view is displayed.
Step 7 Run reset ospf suppress-flapping process-id peer [ interface-type interface-number ]
[ notify-peer ]

Router 5 OSPF
Interfaces are forced to exit from OSPF neighbor relationship flapping suppression.
NOTE
Interfaces exit from flapping suppression in the following scenarios:

The suppression timer expires.
The corresponding OSPF process is reset.
An OSPF neighbor is reset using the reset ospf peer command.
OSPF neighbor relationship flapping suppression is disabled globally using the suppress-flapping
peer disable command in the OSPF view.
The reset ospf suppress-flapping peer command is run.
Step 8 Run commit

----End
Checking the Configurations

Run the display ospf [ process-id ] interface interface-type interface-number verbose
command to check the status of OSPF neighbor relationship flapping suppression.
<HUAWEI> display ospf interface gigabitethernet1/0/0 verbose

Interfaces
Interface: 6.6.6.2 ( GE1/0/0 )
Priority: 1
Timers: Hello 10 , Dead 40 , Wait 40 , Poll 120 , Retransmit 5 , Transmit Delay 1
OpaqueId: 0 PrevState: BackupDR
Effective cost : 65535, enabled by BGP_IGP
Link quality adjust cost: No, link quality: 0x0(GOOD).
Suppress flapping peer: hold-down(start: 2016-01-02 09:58:41, remain-interval:
476 sec)
Suppress flapping peer in the command output indicates the current suppression mode
(Hold-down), time when the flapping suppression started, and the remaining time of the
flapping suppression.
5.9 Configuring OSPF Flush LSA Source Tracing

OSPF flush LSA source tracing helps improve the efficiency in locating the devices that
flushed OSPF LSAs.
Usage Scenario
If network-wide OSPF LSPs are deleted, purge LSPs are flooded, which adversely affects
network stability. In this case, source tracing must be implemented to locate the root cause of
the fault immediately to minimize the impact. However, OSPF itself does not support source
tracing. A conventional solution is isolation node by node until the faulty node is located, but
the solution is complex and time-consuming. To address this problem, enable OSPF purge
LSP source tracing.

Router 5 OSPF
NOTE
Before configuring OSPF flush LSA source tracing, complete the following task:
Configure an IP address for each interface to ensure that neighboring routers are
reachable at the network layer.
Procedure
By default, the OSPF flush LSA source tracing function is enabled globally. To disable this
function, run the ospf flush-source-trace disable command.
By default, the OSPF flush LSA source tracing function is enabled on all interfaces of a
specified OSPF process. To disable this function on an interface, run the ospf flush-source-
trace block command.
Step 3 Run quit

Step 5 Run ospf flush-source-trace port port-number
A UDP port number is specified for OSPF flush LSA source tracing packets.
The OSPF flush LSA source tracing port receives and sends OSPF flush LSA source tracing
packets, and the port is identified by a UDP port number.
Step 6 Run quit
Step 7 Run quit
Step 8 Run reset ospf [ process-id ] flush-source-trace
OSPF flush LSA source tracing is reset.
If a large number of OSPF flush LSA source tracing statistics are stored on a device, you can
run the reset ospf flush-source-trace command to reset the statistics. After the command is
run, all OSPF flush LSA source tracing statistics are reset, and the device needs to re-
negotiate the OSPF flush LSA source tracing capability with neighboring devices.

Router 5 OSPF
Step 9 Run commit
----End

Run the display ospf [ process-id ] [ area area-id ] flush-source-trace analysis-info
command to check information about definitely and possibly faulty nodes identified by OSPF
flush LSA source tracing.
<HUAWEI> display ospf 1 flush-source-trace analysis-info
Flush Source Analysis Information for OSPF(1)

------------------------------------------------
Area(0.0.0.0)Analysis Information
Exactly Flush Source :1 Possible Flush Source :1

Maybe Flush Source :1 Not Flush Source :0
Total :3
Router Id Ip Address FlushType Host Name
1.1.1.1 100.100.100.100 Yes RTA
2.2.2.2 100.100.200.200 Possible RTB
3.3.3.3 100.100.210.210 Maybe RTC
5.10 Configuring an OSPF Dynamic Hostname

Compared with router IDs, OSPF dynamic hostnames are easier to memorize. Therefore,
using dynamic hostnames to identify routers can facilitate network management.
Usage Scenario
To facilitate network management, configure dynamic hostnames to identify routers. If you
configure a dynamic hostname for a router, the router generates a router information (RI)
Opaque LSA, from which you can check the mapping between the router ID and the dynamic
hostname.
Before configuring a dynamic hostname, complete the following tasks:
Configure an IP address for each interface to ensure that neighboring routers can use the
IP addresses to communicate with each other.
Procedure

Router 5 OSPF
Step 3 Run opaque-capability enable
The Opaque LSA capability is enabled.
Step 4 Run hostname hostname
An OSPF dynamic hostname is configured.
NOTE
If you specify hostname in hostname command, hostname is advertised as the dynamic hostname. If no
hostname is specified in hostname command, the hostname specified in the sysname command is
advertised as the dynamic hostname.
Step 5 Run commit
----End

Run either of the following commands to check OSPF hostname information:
display ospf hostname-table

display ospf [ process-id ] lsdb [ router | network | summary | asbr | ase | nssa |
opaque-link | opaque-area ] [ link-state-id ] [ originate-router [ advertising-router-id ]
| self-originate | hostname hostname ] [ age { min-value min-age-value | max-value
max-age-value } * ]
| self-originate ] [ age { min-value min-age-value | max-value max-age-value } * ]
[ resolve-hostname ]
Run the display ospf hostname-table command to check information about OSPF dynamic
hostnames.
<HUAWEI> display ospf hostname-table

Hostname table information
Area: 0.0.0.1
Router ID Hostname
3.3.3.3 RTR_BLR
10.1.1.1 RTR_SHANGHAI
255.255.255.254
RTR_BJI
Area: 0.0.0.2
Router ID Hostname
3.3.3.3 RTR_BLR
30.1.1.1 RTR_DELHI
AS-Scope
Router ID Hostname
20.1.1.1 RTR_SHENZHEN
255.255.255.254 RTR_BJI

Router 5 OSPF
5.11 Configuring an OSPF Stub Area

Configuring a non-backbone area as a stub area can reduce routing entries in the area in an AS
does not transmit routes learned from other areas in the AS or AS external routes. This
reduces bandwidth and storage resource consumption.
Applicable Environment
The number of LSAs can be reduced by partitioning an AS into different areas. To reduce the
number of entries in the routing table and the number of LSAs to be transmitted in a non-
backbone area, configure the non-backbone area on the border of the AS as a stub area.
Configuring a stub area is optional. A stub area generally resides on the border of an AS. For
example, a non-backbone area with only one ABR can be configured as a stub area. In a stub
area, the number of entries in the routing table and the amount of routing information to be
transmitted greatly decrease.
Note the following points when configuring a stub area:
The backbone area (Area 0) cannot be configured as a stub area.

If an area needs to be configured as a stub area, all the routers in this area must be
configured with stub attributes using the stub command.
An ASBR cannot exist in a stub area. External routes are not transmitted in the stub area.
Virtual links cannot exist in the stub area.
Before configuring a stub area, complete the following tasks:
Configuring IP addresses for interfaces to ensure that neighboring routers are reachable
at the network layer
Configuring Basic OSPF Functions
Procedure
Step 4 Run stub
The specified area is configured as a stub area.

Router 5 OSPF
NOTE
All routers in a stub area must be configured with stub attributes using the stub command.
Configuring or deleting stub attributes will update routing information in the area. Stub attributes
can be deleted or configured again only after the routing update is complete.
Step 5 (Optional) Run stub no-summary

The ABR is prevented from sending Type 3 LSAs to the stub area.
Step 6 (Optional) Run stub default-route-advertise backbone-peer-ignore
The ABR is prevented from checking the neighbor status when it generates a default Type 3
LSA and advertises it to the stub area.
Step 7 (Optional) Run default-cost cost
The cost of the default route to the stub area is set.
To ensure the reachability of AS external routes, the ABR in the stub area generates a default
route and advertises the route to the non-ABR routers in the stub area.
Step 8 Run commit
----End

Run the display ospf lsdb command, and you can view the OSPF LSDB, including the types
of LSA and link state IDs. For example:
<HUAWEI> display ospf lsdb

Link State Database
Area: 0.0.0.1
Type LinkState ID AdvRouter Age Len Sequence Metric
Router 10.1.1.1 10.1.1.1 26 48 80000005 1
Router 100.1.1.2 100.1.1.2 28 48 80000004 1
Run the display ospf peer command, and you can view the router IDs, addresses, and status of OSPF neighb

Neighbors

DR: 192.168.1.4 BDR: 192.168.1.3 MTU: 0
Run the display ospf routing command, and you can view the table of OSPF routes. For example:

Router 5 OSPF
Routing Tables
Routing for Network

172.16.1.0/24 2 Transit 192.168.1.2 3.3.3.3 0.

172.17.1.0/24 3 Inter-area 192.168.0.2 2.2.2.2 0.
192.168.1.0/24 1 Stub 192.168.1.2 3.3.3.3 0.
192.168.2.0/24 2 Inter-area 192.168.0.2 2.2.2.2 0.
Total Nets: 4
When Router is in a common area, there are AS external routes in the routing table. After the
area where Router resides is configured as a stub area, AS external routes are invisible, ASE
is 0.
5.12 Configuring an NSSA

Configuring a non-backbone area on the border of an AS as an NSSA can reduce entries in
the routing table and the amount of routing information to be transmitted. This section
describes how to set the cost of the default route to an NSSA and adjust the selection of the
default route.
Usage Scenario
An excessive number of entries in a routing table wastes network resources and causes high
CPU usage. To reduce entries in a routing table, configure a non-backbone area on the border
of an AS as a stub area or an NSSA to reduce the amount of routing information to be
transmitted. For details on how to configure an OSPF stub area, see 5.11 Configuring an
OSPF Stub Area.
An NSSA is a new type of OSPF area. Neither the NSSA nor the stub area transmits routes
learned from other areas in the AS where it resides. Different from the stub area, the NSSA
allows AS external routes to be imported and forwarded in the entire AS.
If you want to import AS external routes to an area and prevent these routes from consuming
resources, configure the area as an NSSA.
Type 7 link state advertisements (LSAs) are used to carry imported AS external routes in the
NSSA. Type 7 LSAs are generated by ASBRs of NSSAs and flooded only in the NSSAs
where ASBRs reside. The ABR in an NSSA selects Type 7 LSAs from the received LSAs and
translates them into Type 5 LSAs to advertise AS external routes to the other areas over the
OSPF network.
NOTE
A Type 7 LSA was introduced to support NSSAs and describe imported external routes.
Type 7 LSAs can be used to carry default route to transmit traffic to other ASs.
To configure an area as an NSSA, configure NSSA attributes on all the routers in this area.
Before configuring an NSSA, complete the following tasks:
Configure IP addresses for interfaces to ensure that neighboring routers are reachable at
the network layer.

Router 5 OSPF
Procedure
Step 4 Run nssa [ default-route-advertise [ backbone-peer-ignore ] | no-import-route | no-
summary | set-n-bit | suppress-forwarding-address | translator-always | translator-
interval interval-value | zero-address-forwarding ] *
The area is configured as an NSSA.
NOTE
NSSA attributes must be configured on all routers in the NSSA using the nssa command.
Configuring or deleting NSSA attributes may trigger routing update in the area and disconnection
from neighbors. The NSSA attributes can be reconfigured or re-canceled only after the routing
update is complete.
The nssa command is applicable to the following scenarios:

Default Type 7 LSAs are generated and advertised to an NSSA.
a. OSPF neighbor relationships that are in the Full state and interfaces that are Up
exist in the backbone area.
b. The default-route-advertise parameter is configured.
c. Other default routes destined for 0.0.0.0 exist in the local routing table.
If condition 1 is met, ABRs generate default Type 7 LSAs and advertise them to the
NSSA. If conditions 2 and 3 are met, ASBRs generate default Type 7 LSAs and
advertise them to the NSSA.
The parameter backbone-peer-ignore is used to prevent the ABR from checking the
neighbor status when the ABR generates default Type 7 LSAs and advertises them to the
NSSA. Specifically, the ABR generates default Type 7 LSAs and advertises them to the
NSSA as long as an interface that is Up exist in the backbone area.
An ASBR also functions as an ABR, and the no-import-route parameter is configured
to prevent external routes imported using the import-route command from being
advertised to the NSSA.
The no-summary parameter is configured on an ABR to reduce the number of LSAs to
be transmitted to the NSSA, which prevents the ABR from transmitting Type 3 LSAs to
the NSSA.
NOTE
After the nssa default-route-advertise backbone-peer-ignore no-summary command is run, the
ABR generates default Type 7 and Type 3 LSAs as long as an interface that is Up exist in the
backbone area. The default Type 3 LSAs preferentially take effect.
After the set-n-bit parameter is configured, the N-bit is set in the database description
(DD) packets during the synchronization between the router and neighboring routers.

Router 5 OSPF
The suppress-forwarding-address parameter sets the forwarding address (FA) of the

Type 5 LSAs translated from Type 7 LSAs by the NSSA ABR to 0.0.0.0.
If multiple ABRs are deployed in the NSSA, the system automatically selects an ABR
(the router with the largest router ID) as a translator to convert Type 7 LSAs into Type 5
LSAs. You can configure the translator-always parameter on an ABR to specify the
ABR as an all-the-time translator. To specify two ABRs for load balancing, configure the
translator-always parameter on the chosen ABRs to specify the ABRs as all-the-time
translators. You can use this command to pre-configure a fixed translator to prevent LSA
flooding caused by translator role changes.
The translator-interval parameter is used to ensure uninterrupted services when
translator roles change. The value of interval-value must be greater than the flooding
interval.
The zero-address-forwarding parameter is used to set the FA of the generated NSSA
LSAs to 0.0.0.0 when external routes are imported to the ABR in an NSSA.
Step 5 (Optional) Run default-cost cost
The cost of the default route carried in Type 3 LSAs that are transmitted by the ABR to the
NSSA is set.
To ensure the reachability of AS external routes, the ABR in the NSSA generates a default
route and advertises it to other routers in the NSSA.
Step 6 Run commit
----End

Run either of the following commands to check LSDB information:
display ospf [ process-id ] lsdb [ brief ]
| self-originate ]
Run either of the following commands to check routing table information:
display ospf [ process-id ] routing [ ip-address [ mask | mask-length ] ] [ interface
interface-type interface-number ] [ nexthop nexthop-address ]
display ospf [ process-id ] routing router-id [ router-id ]
number ] [ verbose ] command to check OSPF interface information.
Run the display ospf routing command before configuring an NSSA.
# Check the routing table on Device A.

Routing Tables
Routing for Network


Router 5 OSPF
192.168.4.0/24 2 Inter-area 192.168.2.1 2.2.2.2 0.0.0.0

192.168.0.0/24 1 Stub 192.168.0.2 3.3.3.3 0.0.0.0
192.168.1.0/24 2 Inter-area 192.168.2.1 2.2.2.2 0.0.0.0
192.168.1.0/24 2 Inter-area 192.168.0.1 1.1.1.1 0.0.0.0
192.168.2.0/24 1 Stub 192.168.2.2 3.3.3.3 0.0.0.0
Routing for ASEs

100.0.0.0/8 1 Type2 1 192.168.0.1 2.2.2.2
Total Nets: 7
Run the display ospf routing command after configuring an NSSA.

# Check the routing table on Device A.

Routing Tables
Routing for Network

Destination Cos t Type NextHop AdvRouter Area
192.168.0.0/24 1 Stub 192.168.0.2 3.3.3.3 0.0.
192.168.2.0/24 1 Stub 192.168.2.2 3.3.3.3 0.0.
Routing for NSSAs

Destination Co st Type Tag NextHop AdvRouter
100.0.0.0/8 1 Type2 1 192.168.0.1 2.2.2.2
Total Nets: 7
By comparing the routing tables before and after an NSSA is configured, you can reach the
following conclusions:
After an area is configured as an NSSA, the number of entries in the routing table is
reduced.
AS external routes are imported to the NSSA.
5.13 Configuring OSPF Local MT

By configuring local multicast topology (MT), you can create a routing table for multicast
traffic when multicast and a Multiprotocol Label Switching (MPLS) traffic engineering (TE)
tunnel are configured on a network.
Usage Scenario
When multicast and an Interior Gateway Protocol (IGP) Shortcut-enabled MPLS TE tunnel
are configured on a network, the outbound interface of the route calculated by an IGP may not
be a physical interface but a TE tunnel interface. The TE tunnel interface on the router sends
multicast Join packets over a unicast route to the multicast source address. The multicast Join
packets are transparent to the router through which the TE tunnel passes. As a result, the
router through which the TE tunnel passes cannot generate multicast forwarding entries.
To resolve this problem, enable OSPF local MT. After local MT is enabled, if the outbound
interface of a calculated route is an IGP Shortcut-enabled TE tunnel interface, the route
management (RM) module creates an independent Multicast IGP (MIGP) routing table for the
multicast protocol, calculates a physical outbound interface for the route, and adds the route to
the MIGP routing table. Multicast packets are then forwarded along this route.

Router 5 OSPF
You can configure a routing policy for local MT to control the number of routing entries in an
MIGP routing table and speed up MIGP routing table lookup.
Before configuring local MT, complete the following tasks:
Configure IP addresses for interfaces to ensure that neighboring Devices are reachable at
the network layer.
Configure the IGP Shortcut.
Procedure


Step 3 Run local-mt enable
Local MT is enabled.
NOTE
Local MT takes effect only to the OSPF process of a public network instance.
Local MT does not support Forwarding Adjacency (FA).
Step 4 (Optional) Run any of the following commands as required:

a. Run local-mt filter-policy acl { acl-number | acl-name }
A routing policy is configured for local MT.
b. Run quit
valid as the rules.

Router 5 OSPF
routes.
Run local-mt filter-policy ip-prefix ip-prefix-name
Based on the Route-Policy:
Run local-mt filter-policy route-policy route-policy-name
Based on the XPL Route-Policy:
Run local-mt filter-policy route-filter route-filter-name
After an MIGP routing table is created, OSPF performs route calculation. If the outbound
interface of the calculated route is an IGP Shortcut-enabled TE tunnel interface, the router
saves the physical interface on which the tunnel interface is configured as the outbound
interface in the MIGP routing table. Multicast packets are then forwarded along this route.
After the routing policy is configured, only the matching routes to the multicast source
address are added to the MIGP routing table, which controls the number of entries in the
MIGP routing table and speeds up MIGP routing table lookup.
Configure a routing policy before you enable local MT, because if an excessive number of
routes to a non-multicast source address exist in an MIGP routing table, the number of entries
may exceed the upper limit.
Step 5 Run commit
----End

Router 5 OSPF

Run the display ospf [ process-id ] migp-routing [ ip-address [ mask | mask-length ] ]
[ interface interface-type interface-number ] [ nexthop nexthop-address ] command to
check MIGP routing table information.
Run the display ospf [ process-id ] routing command to check OSPF routing table
information.
Run the display ospf [ process-id ] brief command to check brief OSPF information.
Run the following command to view MIGP routing table information.
<HUAWEI> display ospf migp-routing

MIGP Routing Tables
Routing for Network

Destination Cos t Type NextHop AdvRouter Are
192.168.3.0/24 4 Stub 10.0.1.1 5.5.5.5 0.0
4.4.4.4/32 3 Stub 10.0.1.1 4.4.4.4 0.0
5.5.5.5/32 4 Stub 10.0.1.1 5.5.5.5 0.0
10.0.3.0/24 3 Transit 10.0.1.1 5.5.5.5 0.0
Total Nets: 4
5.14 Configuring an OSPF Sham Link

This section describes how to configure an OSPF sham link so that traffic between sites of the
same VPN in the same OSPF area is forwarded through the OSPF intra-area route over the
BGP/MPLS IP VPN backbone network.
Usage Scenario
Generally, BGP peers use BGP extended community attributes to carry routing information
over the BGP/MPLS IP VPN backbone network. PEs can use the routing information to
exchange inter-area routes between PEs and CEs through OSPF. OSPF sham links are
unnumbered P2P links between two PEs over an MPLS VPN backbone network. The source
and destination IP addresses of each sham link are IP addresses with a 32-bit mask of
loopback interfaces. The loopback interfaces must be bound to a VPN instance, and routes of
the two IP addresses are advertised through BGP.
On the BGP/MPLS IP VPN backbone network, if an intra-area OSPF link exists between the
network segment where the local CE resides and the network segment where the remote CE
resides, the route over this intra-area OSPF link is an intra-area route and has a higher priority
than the inter-area route over the BGP/MPLS IP VPN backbone network. In this case, VPN
traffic is always forwarded through this intra-area route. To prevent this problem, you can set
up an OSPF sham link between the PEs so that the route over the MPLS IP VPN backbone
network becomes an OSPF intra-area route and ensure that this route is preferentially
selected.
Before configuring an OSPF sham link, complete the following tasks:
Configure basic BGP/MPLS IP VPN functions and configure OSPF between each PE
and its corresponding CE.

Router 5 OSPF
Configure OSPF in the LAN of each CE.
Procedure
Step 1 Configure endpoint IP addresses for a sham link.
Perform the following steps on PEs at both ends of the sham link:
1. Run system-view
2. Run interface loopback loopback-number
A loopback interface is created, and its view is displayed.
Each VPN instance must have an endpoint IP address of a sham link, and the IP address
is a loopback interface IP address with a 32-bit mask in the VPN address space of a PE.
Sham links of the same OSPF process can share the same endpoint IP address. The
endpoint IP addresses of sham links of different OSPF processes must be different.
3. Run ip binding vpn-instance vpn-instance-name
A VPN instance is bound to the loopback interface.
4. Run ip address ip-address { mask | mask-length }
An IP address is configured for the loopback interface.
NOTE
The configured IP address must have a 32-bit mask (255.255.255.255).
5. Run commit
6. Run quit
Step 2 Advertise routes of the sham link's endpoint IP addresses.
1. Run bgp { as-number-plain | as-number-dot }
The BGP view is displayed.
2. Run ipv4-family vpn-instance vpn-instance-name
The BGP-VPN instance IPv4 address family view is displayed.
3. Run import-route direct
Import direct routes (routes of the sham link's endpoint IP addresses in this case) to BGP.
Routes of the sham link's endpoint IP addresses are advertised as VPN IPv4 routes by
BGP.

Router 5 OSPF
NOTE
Ensure that routes of the sham link's endpoint IP addresses are not exchanged by PEs through the VPN
OSPF process.
If routes of the sham link's endpoint IP addresses are exchanged by PEs through the VPN OSPF
process, each PE has two routes to the other endpoint of the sham link. One of the routes is learned
through the VPN OSPF process, and the other is learned through the MP-BGP connection. Because the
OSPF route has a higher priority than the BGP route, the OSPF route is selected, causing a sham link
establishment failure.
4. Run commit
5. Run quit
Return to the BGP view.
6. Run quit
Step 3 Create an OSPF sham link.
1. Run ospf process-id [ router-id router-id ] vpn-instance vpn-instance-name
The OSPF multi-instance view is displayed.
2. Run area area-id
3. Run sham-link soure-ip-address destination-ip-address [ smart-discover | cost cost |
hello hello-interval | dead dead-interval | retransmit retransmit-interval | trans-delay
trans-delay-interval | [ simple [ plain plain-text | [ cipher cipher-text | cipher-text ] |
{ md5 | hmac-md5 | hmac-sha256 } [ key-id { plain plain-text | cipher cipher-text |
cipher-text } ] | authentication-null | keychain keychain-name ] ] *
A sham link is created.
The authentication modes configured at the two ends must be the same. If packet
authentication is configured, only the OSPF packets that pass the authentication are
accepted; if the authentication fails, the OSPF neighbor relationship cannot be
established.
NOTE
To ensure that VPN traffic is forwarded over the MPLS backbone network, ensure that the cost of the
sham link is smaller than that of the OSPF route used to forward the traffic over the user network when
running the sham-link command. In most cases, you need to change the cost of the interfaces on the
user network to ensure that the cost of the OSPF route used to forward the traffic over the user network
is greater than that of the sham link.
----End

After configuring the OSPF sham link, run the following commands to check the
configurations.
Run the display ip routing-table vpn-instance vpn-instance-name command on PEs to
check the VPN routing table.

Router 5 OSPF
Run the display ip routing-table command on CEs to check the routing table.
Run the tracert host command on a CE to check the nodes through which data is
forwarded to the remote end.
Run the display ospf process-id sham-link [ area area-id ] command on PEs to check
whether the sham link is established.
Run the display ospf routing command on CEs to check OSPF routes.
# Run the display ip routing-table vpn-instance command on a PE. The following command
output shows that the route to the remote CE is an OSPF route over the user network rather
than the BGP route over the backbone network.
<HUAWEI> display ip routing-table vpn-instance vpn1
Route Flags: R - relay, D - download to fib, T - to vpn-instance, B - black hole
route
------------------------------------------------------------------------------
Routing Tables: vpn1
Destinations : 10 Routes : 10
Destination/Mask Proto Pre Cost Flags NextHop Interface
5.5.5.5/32 Direct 0 0 D 127.0.0.1 LoopBack10
6.6.6.6/32 IBGP 255 0 RD 3.3.3.9
GigabitEthernet2/0/0
8.8.8.8/32 IBGP 255 2 RD 3.3.3.9
10.1.1.0/24 OSPF 10 11 D 172.16.1.1
10.2.1.0/24 OSPF 10 12 D 172.16.1.1
172.16.1.0/24 Direct 0 0 D 172.16.1.2
172.16.1.2/32 Direct 0 0 D 127.0.0.1
172.16.1.255/32 Direct 0 0 D 127.0.0.1
172.16.2.0/24 IBGP 255 0 RD 3.3.3.9
255.255.255.255/32 Direct 0 0 D 127.0.0.1 InLoopBack0
# Run the display ip routing-table and tracert commands on the CE. The following
command outputs show that the VPN traffic to the remote end is forwarded over the backbone
network.
<HUAWEI> display ip routing-table
route
------------------------------------------------------------------------------
Routing Table : _public_
5.5.5.5/32 O_ASE 150 1 D 172.16.1.2
6.6.6.6/32 O_ASE 150 1 D 172.16.1.2
8.8.8.8/32 OSPF 10 3 D 172.16.1.2
10.1.1.0/24 Direct 0 0 D 10.1.1.1
10.1.1.1/32 Direct 0 0 D 127.0.0.1
10.1.1.255/32 Direct 0 0 D 127.0.0.1
10.2.1.0/24 OSPF 10 11 D 10.1.1.2

Router 5 OSPF
172.16.1.0/24 Direct 0 0 D 172.16.1.1

172.16.1.1/32 Direct 0 0 D 127.0.0.1
172.16.1.255/32 Direct 0 0 D 127.0.0.1
172.16.2.0/24 OSPF 10 3 D 172.16.1.2
255.255.255.255/32 Direct 0 0 [~CE1] D 127.0.0.1 InLoopBack0 hops:
tracert 172.16.2.1
traceroute to 172.16.2.1(172.16.2.1), max 30 ,packet length: 40,press
CTRL_C to break
1 172.16.1.2 131 ms 2 ms 1 ms
2 50.1.1.2 475 ms 4 ms 4 ms
3 172.16.2.2 150 ms 3 ms 4 ms
4 172.16.2.1 76 ms 3 ms 5 ms
# Run the display ospf process-id sham-link area command on the PE. The following command output sho
the OSPF neighbor relationship between the PE and remote CE is in Full state.
<HUAWEI> display ospf sham-link area 0

Sham-Link: 5.5.5.5 --> 6.6.6.6
NeighborID: 22.22.22.22, State: Full, GR status: Normal
Area: 0.0.0.0
Cost: 1 , State: P-2-P , Type: Sham
# Run the display ospf routing command on the CE. The following command output shows that the route to
remote CE is an intra-area route.
Routing Tables
Routing for Network
8.8.8.8/32 3 Stub 172.16.1.2 10.2.1.2 0.0.0.0
10.1.1.0/24 10 Direct 10.1.1.1 10.1.1.1 0.0.0.0
10.2.1.0/24 11 Transit 10.1.1.2 10.1.1.2 0.0.0.0
172.16.1.0/24 1 Direct 172.16.1.1 10.1.1.1 0.0.0.0
172.16.2.0/24 3 Transit 172.16.1.2 10.2.1.2 0.0.0.0
Routing for ASEs
6.6.6.6/32 1 Type2 3489661028 172.16.1.2 11.11.11.11
5.5.5.5/32 1 Type2 3489661028 172.16.1.2 22.22.22.22
Total Nets: 7
5.15 Configuring BFD for OSPF

After BFD for OSPF is enabled, if a link fails, the router rapidly detects the failure, notifies
the OSPF process or interface of the fault, and instructs OSPF to recalculate routes. This
speeds up OSPF network convergence.
Usage Scenario
OSPF enables the router to periodically send Hello packets to a neighboring router for fault
detection. Detecting a fault takes more than 1s. As voice, video, and other VOD services are
widely used. These services are sensitive to packet loss and delays. When traffic is
transmitted at gigabit rates, long-time fault detection will cause packet loss. This cannot meet
high reliability requirements of the carrier-class network. BFD for OSPF was introduced to
resolve this problem. After BFD for OSPF is configured in a specified process or on a

Router 5 OSPF
specified interface, the link status can be rapidly detected and fault detection can be
completed in milliseconds. This speeds up OSPF convergence when the link status changes.
Before configuring BFD for OSPF, complete the following tasks:
the network layer.
5.15.1 Configuring BFD for OSPF in a Specified Process

Configuring BFD for OSPF in a specified process helps the system to rapidly detect the link
status and speeds up OSPF convergence in the case of a link failure.
Context
After BFD for OSPF is configured, when detecting a link fault, BFD rapidly notifies the
routers on both ends of the link of the fault, triggering rapid OSPF convergence. When the
OSPF neighbor relationship goes Down, the BFD session will be dynamically deleted.
Before configuring BFD for OSPF, enable BFD globally.
Perform the following steps on the routers between which a BFD session is to be created.
Procedure
Step 2 Run bfd
BFD is globally configured.
Step 3 Run quit
Step 5 Run bfd all-interfaces enable
BFD for OSPF is configured. The default parameter values are used to create a BFD session.
If all the interfaces in a certain process are configured with BFD and their neighbor
relationships are in the Full state, OSPF creates BFD sessions with default parameter values
on all the interfaces in the process.
Step 6 (Optional) Run bfd all-interfaces { min-rx-interval receive-interval | min-tx-interval
transmit-interval | detect-multiplier multiplier-value | frr-binding } *

Router 5 OSPF
BFD session parameters are modified.
You can skip this step. The default interval at which BFD packets are transmitted and the
default detection multiplier are recommended.
The parameters are configured based on the network status and network reliability
requirements. A short interval at which BFD packets are transmitted can be configured for a
link that has a higher requirement for reliability. A long interval at which BFD packets are
transmitted can be configured for a link that has a lower requirement for reliability.
NOTE
Actual interval at which BFD packets are transmitted on the local router = Max { configured interval
transmit-interval at which BFD packets are transmitted on the local router, configured interval receive-
interval at which BFD packets are received on the peer router }
Actual interval at which BFD packets are received on the local router = Max { configured interval
transmit-interval at which BFD packets are transmitted on the peer router, configured interval receive-
interval at which BFD packets are received on the local router }
Actual time for detecting BFD packets = Actual interval at which BFD packets are received on the local
router x Configured detection multiplier multiplier-value on the peer router
For example:
On the local router, the configured interval at which BFD packets are transmitted is 200 ms; the
configured interval at which BFD packets are received is 300 ms; the detection multiplier is 4.
On the peer router, the configured interval at which BFD packets are transmitted is 100 ms; the interval at
which BFD packets are received is 600 ms; the detection multiplier is 5.
Then:
On the local router, the actual interval at which BFD packets are transmitted is 600 ms calculated by
using the formula max {200 ms, 600 ms}; the interval at which BFD packets are received is 300 ms
calculated by using the formula max {100 ms, 300 ms}; the detection period is 1500 ms calculated by
multiplying 300 ms by 5.
On the peer router, the actual interval at which BFD packets are transmitted is 300 ms calculated by using
the formula max {100 ms, 300 ms}, the actual interval at which BFD packets are received is 600 ms
calculated by using the formula max {200 ms, 600 ms}, and the detection period is 2400 ms calculated by
Step 7 (Optional) Prevent an interface from dynamically creating a BFD session.
After BFD for OSPF is configured, all interfaces on which neighbor relationships are Full in
the OSPF process will create BFD sessions. To prevent specific interfaces from being enabled
with BFD, disable these interfaces from dynamically creating BFD sessions.
1. Run quit


3. Run ospf bfd block
An interface is prevented from dynamically creating a BFD session.
Step 8 Run commit
----End

Router 5 OSPF
5.15.2 Configuring BFD for OSPF on a Specified Interface

Configuring BFD for OSPF on a specified interface helps speed up OSPF convergence in the
case of an interface failure.
Context
After BFD for OSPF is configured on a specified interface and the interface becomes faulty,
the router rapidly detects the fault and instructs OSPF to recalculate routes. This speeds up
OSPF convergence. When the OSPF neighbor relationship goes Down, the BFD session
between OSPF neighbors is dynamically deleted.
Before configuring BFD for OSPF, enable BFD globally.
Perform the following steps on the router:
Procedure
Step 2 Run bfd
BFD is globally configured.
Step 3 Run quit
Step 5 Run ospf bfd enable [ per-link one-arm-echo ]
BFD for OSPF is configured. The default parameter values are used to create a BFD session.
If all the interfaces in a certain process are configured with BFD and their neighbor
relationships are in the Full state, OSPF creates BFD sessions with default parameter values
on specified interfaces in the process.
If multiple physical interfaces are bound to an Eth-Trunk in a VLAN and per-link one-arm-
echo is not specified, the BFD session may go Down as long as one of the physical interfaces
goes Down. As a result, the OSPF neighbor relationship goes Down. If per-link one-arm-
echo is specified in this case, the BFD session goes Down only if all the physical interfaces
are Down, which prevents the OSPF neighbor relationship from going Down.
NOTE
The priority of BFD for OSPF configured on an interface is higher than that of BFD for OSPF
configured for a process.
Step 6 (Optional) Run ospf bfd { min-rx-interval receive-interval | min-tx-interval transmit-

interval | detect-multiplier multiplier-value | frr-binding } *
BFD session parameters are modified.
You can skip this step. The default interval at which BFD packets are transmitted and the
default detection multiplier are recommended.

Router 5 OSPF
The parameters are configured based on the network status and network reliability
requirements. A short interval at which BFD packets are transmitted can be configured for a
link that has a higher requirement for reliability. A long interval at which BFD packets are
transmitted can be configured for a link that has a lower requirement for reliability.
NOTE
Actual interval at which BFD packets are transmitted on the local router = Max { configured interval
transmit-interval at which BFD packets are transmitted on the local router, configured interval receive-
interval at which BFD packets are received on the peer router }
Actual interval at which BFD packets are received on the local router = Max { configured interval
transmit-interval at which BFD packets are transmitted on the peer router, configured interval receive-
interval at which BFD packets are received on the local router }
Actual time for detecting BFD packets = Actual interval at which BFD packets are received on the local
router x Configured detection multiplier multiplier-value on the peer router
For example:
On the local router, the configured interval at which BFD packets are transmitted is 200 ms; the interval at
which BFD packets are received is set to 300 ms; the detection multiplier is 4.
On the peer router, the configured interval at which BFD packets are transmitted is 100 ms; the interval at
which BFD packets are received is 600 ms; the detection multiplier is 5.
Then:
On the local router, the actual interval at which BFD packets are transmitted is 600 ms calculated by
using the formula max {200 ms, 600 ms}; the interval at which BFD packets are received is 300 ms
calculated by using the formula max {100 ms, 300 ms}; the detection period is 1500 ms calculated by
On the peer router, the actual interval at which BFD packets are transmitted is 300 ms calculated by using
the formula max {100 ms, 300 ms}, the actual interval at which BFD packets are received is 600 ms
calculated by using the formula max {200 ms, 600 ms}, and the detection period is 2400 ms calculated by
Step 7 Run commit
----End
5.15.3 Verifying the Configuration of BFD for OSPF

After BFD for OSPF is configured, you can check information about the BFD session.
Prerequisites
BFD for OSPF has been configured.
Procedure
Run either of the following commands to check the BFD session:
– display ospf [process-id ] bfd session interface-type interface-number [ router-id ]
– display ospf [process-id ] bfd session { router-id | all }
----End

Router 5 OSPF
Example
Run the display ospf bfd session all command to view the "BFDState:up" field. The
following example shows that the field is Up, indicating that the BFD session on the local
router is Up.
<HUAWEI> display ospf bfd session all

Area 0.0.0.0 interface 2.2.2.1 ( GigabitEthernet1/0/0 )'s BFD Sessions
NeighborId:2.2.2.2 BFDState:up
LocalIpAdd:2.2.2.1 RemoteIpAdd:2.2.2.2
Total UP/DOWN BFD Session Number : 1 / 0
5.16 Configuring OSPF IP FRR

If a link fails, an OSPF IP FRR-capable device can fast switch traffic to a backup link, which
protects traffic and improves OSPF network reliability.
Usage Scenario
As networks develop, services such as Voice over IP (VoIP) and on-line video services
require high-quality real-time transmission. Nevertheless, if an OSPF fault occurs, traffic can
be switched to a new link only after the fault detection that lasts milliseconds, fault
notification
to the routing control plane that lasts milliseconds, new topology information generation and
flooding that lasts milliseconds, Shortest Path First (SPF) calculation that lasts tens of
milliseconds, and new route notification and adding that lasts hundreds of milliseconds. As a
result, it takes much more than 50 ms, the maximum convergence time tolerable for VoIP and
on-line video services, which cannot meet the requirement for real-time services on the
network.
With OSPF IP FRR that calculates a backup link in advance, devices can fast switch traffic to
the backup link without interrupting traffic if the primary link fails, which protects traffic and
improves OSPF network reliability.
As shown in Figure 5-4, traffic flows from Router S to Router D. The preceding inequality is
met. Router S switches the traffic to the backup link if the primary link fails.
Figure 5-4 OSPF IP FRR link protection

cost = 10 cost = 5
DeviceS DeviceE DeviceD
DeviceN

Router 5 OSPF
NOTE
OSPF IP FRR also applies to node protection. For details, see "OSPF" in HUAWEI NetEngine40E
Feature Description.
OSPF IP FRR is applicable to services that are sensitive to packet delay and packet loss.
The NE40E supports OSPF IP FRR that uses LFA or Remote LFA as the algorithm.
LFA Auto FRR cannot be used to calculate alternate links on large-scale networks, especially
on ring networks. To address this problem, enable Remote LFA Auto FRR. Remote LFA takes
effect only when LFA has been enabled.
Both OSPF LFA FRR and OSPF remote LFA FRR use the SPF algorithm to calculate the
shortest path to the destination node, with each neighbor that provides a backup link as the
root node. The backup next hop is node-based, which applies to single-source routing
scenarios. As networks are increasingly diversified, two ABRs or ASBRs are deployed to
improve network reliability. In this case, OSPF FRR in a multi-source routing scenario is
needed. In Figure 5-5, Device B and Device C function as ABRs to forward area 0 and area 1
routes. Device E advertises an intra-area route. Upon receipt of the route, Device B and
Device C translate it to a Type 3 LSA and flood the LSA to area 0. After OSPF FRR is
enabled on Device A, Device A considers Device B and Device C as its neighbors. Without a
fixed neighbor as the root node, Device A fails to calculate FRR backup next hop. To address
this problem, a virtual node is simulated between Device B and Device C and used as the root
node of Device A, and Device A uses the LFA or remote LFA algorithm to calculate the
backup next hop. This solution converts multi-source routing into single-source routing.
Figure 5-5 OSPF FRR in a multi-source routing scenario
Area 1
Area 0
Device A Device B
Virtual Node Device E
Device D Device C
After OSPF IP FRR is configured, the lower layer needs to fast respond to a link change so
that traffic can be fast switched to the backup link. After FRR and BFD are bound, link

Router 5 OSPF
failures can be detected rapidly so that traffic is rapidly switched to the backup link if the
primary link fails.
Before configuring OSPF IP FRR, complete the following tasks:

the network layer.
Before you configure remote LFA FRR, configure LDP LSPs to be iterated hop by hop
between the source node and PQ node. That is, configure a local LDP session between
each pair of directly connected nodes along the link from the source node to PQ node.
Figure 5-6 Flowchart for configuring OSPF IP FRR
Enable OSPF IP FRR
Bind OSPF IP FRR

and
BFD
Block FRR on a
specified
OSPF interface
Mandatory procedure
Optional procedure
5.16.1 Enabling OSPF IP FRR

With OSPF IP FRR and loop-free backup links, a device can switch traffic to a backup link
immediately if the primary link fails.
Context
Perform the following steps on the router:
Procedure
Router 5 OSPF
Step 2 Run ospf [ process-id | router-id router-id | vpn-instance vpn-instance-name ] *
Step 3 Run frr
The OSPF IP FRR view is displayed.
Step 4 Run loop-free-alternate
OSPF IP FRR is enabled, and a loop-free backup link is generated.
NOTE
OSPF can generate a loop-free backup link only when the OSPF IP FRR traffic protection inequality is
met. For detailed description of OSPF IP FRR, see HUAWEI NetEngine40E Feature Description- OSPF
IP FRR.
Step 5 (Optional) Run frr-policy route { route-policy route-policy-name | route-filter route-

filter- name }
An OSPF IP FRR filtering policy is configured.
After the OSPF IP FRR filtering policy is configured, only the OSPF backup routes that
match the filtering conditions of the policy can be added to the forwarding table.
Step 6 If you want to configure remote LFA Auto FRR, perform the following steps:
1. Run remote-lfa tunnel ldp [ maximum-reachable-cost cost-value ]
Remote LFA Auto FRR is enabled.

2. (Optional) Run remote-lfa available-tunnel-destination ip-prefix ip-prefix-name
A filtering policy is configured to filter PQ nodes.
Only the PQ node that matches the filtering policy can be used as the next hop of an LFA
link.
3. (Optional) Run avoid-microloop frr-protected
The OSPF anti-microloop is enabled.

4. (Optional) Run avoid-microloop frr-protected rib-update-delay rib-update-delay
The delay after which OSPF delivers routes is configured.
If OSPF remote LFA FRR is enabled and the primary link fails, traffic is switched to the
backup link. If route convergence occurs again, traffic is switched from the backup link
to a new primary link. During the switchover, microloop may occur. To prevent this
problem, OSPF anti-microloop is enabled and delays the switching. To configure the
delay, run the avoid-microloop frr-protected rib-update-delay command. After the
command is run, OSPF does not switch traffic to the backup link until the delay elapses.
NOTE
OSPF anti-microloop applies only to OSPF remote LFA FRR.
Step 7 (Optional) Run tiebreaker { node-protecting | lowest-cost | ldp-sync hold-max-cost }

preference preference
The solution of selecting a backup path for OSPF IP FRR is set.

Router 5 OSPF
By default, the solution of selecting a backup path for OSPF IP FRR is node-protection path
first. In some cases, the solution needs to be changed to smallest-cost path first because of
data forwarding capacity or link cost consideration. In Figure 5-7, the primary path is Link-1
(Device S -> Device E -> Device D), and Link-2 and Link-3 (Device S -> Device N ->
Device D) are backup path candidates. By default, Link-3 is selected as the backup path. To
change the solution of selecting a backup path for OSPF IP FRR to smallest-cost path first,
run the tiebreaker command. After the command is run, Link-2 is selected as the backup
path.
Figure 5-7 Solution of selecting a backup path for OSPF IP FRR

DeviceS DeviceE DeviceD
Link-1 cost = 10
Link-2 cost = 20
Link-3
DeviceN
Figure 5-8 shows an inter-board scenario, where Link-1 (Device A -> Device D) is the
primary path, and Link-2 (Device A -> Device E -> Device D) is the backup path. If Link-1
fails, Link-2 functions as the new primary path, and Link-3 (Device A->Device B->Device C-
>Device D) functions as the new backup path. If Link-1 goes Up again but the LDP session
has not gone Up, OSPF enters the Hold-max-cost state. Consequently, the primary path is still
Link-2, and the backup path is still Link-3. If the LDP session goes Up but ldp-sync hold-
max-cost is not configured, OSPF exits from the Hold-max-cost state when the timer used to
delay sending an LDP session Up message expires. In this case, OSPF switches the primary
path back to Link-1. Because the upstream and downstream entries reside on different boards
and the downstream entry has not been updated when downstream traffic arrives, packet loss
occurs. To resolve the problem, configure ldp-sync hold-max-cost so that OSPF
preferentially selects the path with the maximum cost set by LDP-IGP synchronization when
OSPF is in the Hold-max-cost state. Then OSPF switches the backup path to Link-1 and
delivers the backup forwarding entry in advance. When the timer used to delay sending an
LDP session Up message expires, OSPF exits from the Hold-max-cost state and switches the
primary path to Link-1. Because the downstream backup entry is available, no packet loss
occurs.
Figure 5-8 Maximum-cost (set by LDP-IGP synchronization) path first solution

DeviceA DeviceB
DeviceE
DeviceD DeviceC

Router 5 OSPF
Step 8 Run commit
----End
5.16.2 (Optional) Binding IP FRR and BFD

Binding IP FRR and BFD enables the lower layer to fast respond to a link change so that
traffic can be rapidly switched to the backup link if the primary link fails.
Context
After the parameter frr-binding is set to bind the BFD status to the link status of an interface,
link failures can be detected rapidly. This ensures that traffic is rapidly switched to the backup
link if the primary link fails.
Perform the following steps on the router where IP FRR and BFD need to be bound:
Procedure
Bind IP FRR and BFD in an OSPF process.
a. Run system-view

b. Run ospf

c. Run bfd all-interfaces frr-binding
IP FRR and BFD are bound in the OSPF process.

d. Run commit

Bind IP FRR and BFD on a specified OSPF interface.
a. Run system-view


c. Run ospf bfd frr-binding
IP FRR and BFD are bound on the interface.
NOTE
The BFD configuration on an interface takes precedence over that in an OSPF process.
d. Run commit
----End

Router 5 OSPF
5.16.3 (Optional) Disabling OSPF IP FRR on an Interface

If an interface runs key services, ensure that the backup path does not pass through this
interface so that services will not be affected after FRR calculation.
Procedure
The view of an OSPF interface on which FRR is enabled is displayed.
Step 3 Run ospf frr block
FRR is blocked on the OSPF interface.
Step 4 (Optional) Run ospf remote-lfa disable
Interfaces of the specified level are disabled from being calculated as the Remote LFA next
hop.
Step 5 Run commit
----End
5.16.4 Verifying the Configuration of OSPF IP FRR

After configuring OSPF IP FRR, you can view the information about the backup next hop.
Prerequisites
OSPF IP FRR has been configured.
Procedure
Run the display ospf [ process-id ] routing command to check the information about the
primary and backup links after configuring OSPF IP FRR.
----End
Example
View the routes to a specified OSPF router, including information about the backup next hop.
<HUAWEI> display ospf routing 10.1.1.1
Destination : 10.1.1.0/24
AdverRouter : 10.1.1.1 Area : 0.0.0.0
Cost : 1 Type : Transit
NextHop : 10.1.1.2 Interface : GE1/0/0
Priority : High Age : 09h20m11s
Backup NextHop : 10.1.1.3 Backup Interface : GE1/0/1
Backup Type : LFA LINK Tunnel Destination : 3.3.3.3
Tunnel Type : LDP

Router 5 OSPF
5.17 Configuring OSPF GR Helper

To avoid traffic interruption and route flapping caused by the active/standby switchover, you
can enable OSPF GR.
Usage Scenario
Graceful Restart (GR) is a technology used to ensure normal traffic forwarding and non-stop
forwarding of key services during the restart of routing protocols. GR is one of high
availability (HA) technologies. HA technologies comprise a set of comprehensive techniques,
such as fault-tolerant redundancy, link protection, faulty node recovery, and traffic
engineering. As a fault-tolerant redundancy technology, GR is widely used to ensure non-stop
forwarding of key services during master/slave switchover and system upgrade.
NOTE
GR includes the GR restarter and GR helper. NE40E supports the GR Helper only.
Before configuring OSPF GR, complete the following tasks:
the network layer.
Procedure
Step 3 Run opaque-capability enable
The Opaque-LSA capability is enabled.
OSPF supports OSPF GR through Type 9 LSAs (Opaque LSAs). Therefore, before
configuring OSPF GR, run the opaque-capability enable command to enable the Opaque-
LSA capability.
Step 4 Configure GR session parameters on the helper.
1. Run graceful-restart helper-role ignore-external-lsa
The Helper is configured to ignore AS-external LSAs.

2. Run graceful-restart helper-role planned-only
The Helper is configured to support only planned GR.

3. Choose either of the following configuration as required:
– Configure a basic ACL rule.

Router 5 OSPF
i. Run graceful-restart [ helper-role { { acl-number acl-number | acl-name

acl-name } * } | never } ]
GR session parameters on the helper are configured.
ii. Run quit
– Configure an IP prefix list.
Run graceful-restart [ helper-role { { ip-prefix ip-prefix-name * } | never } ]
GR session parameters on the helper are configured.
Step 5 Run commit
----End
Checking the Configuration

Run the display ospf graceful-restart command, and you can view the configurations about
OSPF GR.
<HUAWEI> display ospf graceful-restart
Helper-policy support : planned, un-planned, ignore external lsa

check
Current GR state : Normal
Number of restarting neighbors : 0
Last exit reason:

On Helper : none
5.18 Improving OSPF Network Security

On a network demanding high security, you can configure OSPF authentication and GTSM to
improve OSPF network security.
Usage Scenario
With the increase in attacks on TCP/IP networks and the defects in the TCP/IP protocol suite,
network attacks have increasing impacts on the network security. Attacks on network devices

Router 5 OSPF
may lead to network crash. By configuring GTSM and authentication, you can improve OSPF
network security.
OSPF authentication encrypts OSPF packets by adding the authentication field to packets to
ensure network security. When a local device receives OSPF packets from a remote device,
the local device discards the packets if the authentication passwords carried in these packets
do not match the local one, which protects the local device from potential attacks.
In terms of the packet type, the authentication is classified as follows:
Area authentication
Area authentication is configured in the OSPF area view and applies to packets received
by all interfaces in the OSPF area.
Interface authentication
Interface authentication is configured in the interface view and applies to all packets
received by the interface.
The NE40E supports the following authentication modes:
Simple authentication
MD5 authentication
HMAC-MD5 authentication
Keychain authentication
NOTE
The NE40E supports OSPF GTSM. For detailed configuration of OSPF GTSM, refer to the HUAWEI
NetEngine40E Configuration Guide - Security
Before improving OSPF network security, complete the following tasks:

the network layer.
Configure a keychain
5.18.1 Configuring Area Authentication

OSPF supports packet authentication. Only the packets that are authenticated can be accepted.
If packets fail to be authenticated, the neighbor relationship cannot be established.
Context
NOTE
By default, authentication is not configured for OSPF area. Configuring authentication is recommended
to ensure system security.

Router 5 OSPF
Procedure

Step 4 Run any of the following commands to configure the authentication mode for the OSPF area
as required:
Run authentication-mode simple [ plain plain-text | [ cipher ] cipher-text ]
Simple authentication is configured for the OSPF area.
– plain indicates the plain-text password.
– cipher indicates the cipher-text password. For MD5, HMAC-MD5 or HMAC-
SHA256 authentication, ciphertext passwords are used by default.
When configuring an authentication password, select the ciphertext mode because the
password is saved in configuration files in simpletext if you select simpletext mode,
which has a high risk. To ensure device security, change the password periodically.
Run authentication-mode { md5 | hmac-md5 | hmac-sha256 } [ key-id { plain plain-
text | [ cipher ] cipher-text } ]
Cipher-text authentication is configured for the OSPF area.
– md5 indicates the MD5 cipher-text authentication mode.
– hmac-md5 indicates the HMAC-MD5 cipher-text authentication mode.
– hmac-sha256 indicates the HMAC-SHA256 cipher-text authentication mode.
NOTE
For the sake of security, using the HMAC-SHA256 algorithm rather than the MD5 and HMAC-
MD5 algorithm is recommended.
Run authentication-mode keychain keychain-name
The Keychain authentication is configured for the OSPF area.
NOTE
Before using the Keychain authentication, you must run the keychain command to create a
keychain. Then, run the key-id, key-string, and algorithm commands to configure a key ID, a
password, and an authentication algorithm for this keychain. Otherwise, the OSPF authentication
will fail.
Step 5 Run commit
----End
5.18.2 Configuring Interface Authentication

Interface authentication is used among neighboring routers to set the authentication mode and
password. Interface authentication takes precedence over area authentication.

Router 5 OSPF
Context
NOTE
By default, authentication is not configured for OSPF interface. Configuring authentication is
recommended to ensure system security.
Procedure
Step 3 Run any of the following commands to configure interface authentication as required:
Run ospf authentication-mode simple [ plain plain-text | [ cipher ] cipher-text ]
Simple authentication is configured for the OSPF interface.
– simple indicates simple authentication.
– plain indicates the password in simpletext. For simple authentication, cipher-text
passwords are used by default.
– cipher indicates the cipher-text password. For MD5, HMAC-MD5 or HMAC-
SHA256 authentication, cipher-text passwords are used by default.
When configuring an authentication password, select the ciphertext mode because the
password is saved in configuration files in simpletext if you select simpletext mode,
which has a high risk. To ensure device security, change the password periodically.
Run ospf authentication-mode { md5 | hmac-md5 | hmac-sha256 } [ key-id { plain
plain-text | [ cipher ] cipher-text } ]
Cipher-text authentication is configured for the OSPF interface.
– md5 indicates the MD5 cipher-text authentication mode.
– hmac-md5 indicates the HMAC-MD5 cipher-text authentication mode.
– hmac-sha256 indicates the HMAC-SHA256 cipher-text authentication mode.
NOTE
For the sake of security, using the HMAC-SHA256 algorithm rather than the MD5 and HMAC-
MD5 algorithm is recommended.
Run ospf authentication-mode keychain keychain-name
The Keychain authentication is configured for the OSPF interface.
NOTE
Before using the Keychain authentication, you must run the keychain command to create a
keychain. Then, run the key-id, key-string, and algorithm commands to configure a key ID, a
password, and an authentication algorithm for this keychain. Otherwise, the OSPF authentication
will fail.
Run ospf authentication-mode null
The OSPF interface does not perform authentication.
Step 4 Run commit
----End

Router 5 OSPF
5.18.3 Verifying the Configuration of OSPF Network Security

After configuring OSPF functions to improve OSPF network security, check the
configuration.
Prerequisites
OSPF functions have been configured to improve OSPF network security.
Procedure
Run the display this command to view the configurations of the system in the current
view.
----End
Example
Run the display this command to view the configurations of the system in the current view.
<HUAWEI> system-view
[~HUAWEI] display this
#
interface GigabitEthernet1/0/0
ospf authentication-mode simple
#
5.19 Configuring the Network Management Function of

OSPF
OSPF supports the network management function. You can bind the OSPF MIB to an OSPF
process and configure trap and log functions.
Usage Scenario
Through the Simple Network Management Protocol (SNMP), the OSPF Management
Information Base (MIB) manages information exchanged between the NMS and agents.
Before configuring the network management function of OSPF, complete the following tasks:
the network layer.
Procedure
Step 2 Run ospf mib-binding process-id

Router 5 OSPF
The OSPF process is bound to the MIB.
Step 3 Run commit
----End

Run the following commands to check the previous configuration.
Run the display ospf [ process-id ] brief command to view information about the binding of
OSPF MIBs and OSPF processes.
5.20 Maintaining OSPF

Maintaining OSPF involves resetting OSPF and clearing OSPF statistics.
5.20.1 Clearing OSPF

You can reset OSPF counters.
Context
OSPF information cannot be restored after you clear it. Exercise caution when clearing it.
To clear OSPF information, run the following reset commands in the user view.
Procedure
Run the reset ospf [ process-id ] counters [ neighbor [ interface-type interface-number ]
[ router-id ] ] command to reset OSPF counters.
– counters indicates OSPF counters.
– neighbor indicates neighbor information on the specified interface.
Run the reset ospf [ process-id ] counters maxage-lsa command to delete the statistics
Run the reset ospf [ process-id ] frr command to perform OSPF IP FRR calculation
again.
Run the reset ospf [ process-id ] peer [ interface-type interface-number ] router-id
command to restart an OSPF neighbor.
----End
5.20.2 Resetting OSPF

Restarting OSPF can reset OSPF.

Router 5 OSPF
Context
The OSPF neighbor relationships will be torn down if you run the reset ospf command to
reset OSPF connections. Exercise caution when running the command.
To reset OSPF connections, perform the following operation:

Procedure
Run the reset ospf [ process-id ] process command to restart the OSPF process.
After the reset ospf process command is used to restart OSPF, the following situations
may occur:
– If the router ID is changed, the new router ID takes affect after the reset ospf
process command is run.
– The DR and BDR are re-selected after the reset ospf process command is run.
Run the reset ospf [ process-id ] spf to recalculate OSPF routes.
Run the reset ospf [ process-id ] redistribution to reset OSPF route redistribution.
----End
5.21 Configuring OSPF Multi-Area Adjacency

OSPF multi-area adjacency allows one link to be shared by multiple OSPF areas.
Usage Scenario
In OSPF, intra-area links take precedence over inter-area links. Therefore, even if a high-
speed link exists between two areas, a low-speed intra-network link rather than the high-speed
link is used to transmit inter-area traffic. To address this problem, run the ospf enable multi-
area command to enable OSPF on a multi-area adjacency interface so that a link can be
shared by multiple areas.
Among the OSPF features supported by an OSPF multi-area adjacency interface, some can be
inherited from the main interface, whereas others need to be configured independently. For
details, see Table 5-4.
Table 5-4 OSPF features supported by OSPF multi-area adjacency interfaces

OSPF Description Related Configuration Links
Feature
BFD for BFD for OSPF can be inherited from main 5.21.6 Disabling an OSPF Multi- Area
OSPF interfaces, except for the configuration that Adjacency Interface from Creating BF
disables BFD from an interface. This Sessions
configuration needs to be configured
independently for OSPF multi-area adjacency
interfaces.

Router 5 OSPF
OSPF Description Related Configuration Links

Feature
OSPF OSPF multi-area adjacency interfaces support 5.21.4 Configuring Fast Convergence
fast OSPF fast convergence which needs to be for a Multi-Area Adjacency Interface
converg configured independently for these interfaces
ence and cannot be inherited from their main
interfaces.
IGP- OSPF multi-area adjacency interfaces support Configuring LDP-IGP

LDP IGP-LDP synchronization which needs to be Synchronization
synchro configured independently for these interfaces
nization and cannot be inherited from their main
interfaces.
OSPF OSPF multi-area adjacency interfaces support 5.21.7 Disabling OSPF IP FRR on an O
IP FRR OSPF IP FRR. OSPF IP FRR can be inherited Multi-Area Adjacency Interface
from main interfaces, except for the
configuration that disables FRR from a specified
OSPF interface. This configuration needs to be
configured independently for OSPF multi-area
adjacency interfaces.
OSPF OSPF multi-area adjacency interfaces support 5.21.5 Configuring Neighbor Relations
neighbo OSPF neighbor relationship flapping Flapping Suppression on an OSPF Mu
r suppression which needs to be configured Area Adjacency Interface
relation independently for these
ship interfaces and cannot be inherited from their
flapping main interfaces.
suppres
sion
OSPF OSPF multi-area adjacency interfaces support 5.9 Configuring OSPF Flush LSA Sour
flush OSPF flush LSA source tracing which can be Tracing
LSA inherited from their main interfaces.
source
tracing
OSPF OSPF multi-area adjacency interfaces inherit TE Configuring IGP TE (OSPF or IS-IS)
TE information from their main interfaces.
Before configuring OSPF multi-area adjacency, complete the following tasks:

Assign an IP address to each interface to ensure reachability between neighboring nodes
at the network layer.

Router 5 OSPF
Figure 5-9 Flowchart for configuring OSPF multi-area adjacency

Enabling OSPF on a Multi-Area
Adjacency Interface
Configuring a Cost for a Multi-Area

Adjacency Interface
Configuring an Authentication Mode for

a Multi-Area Adjacency Interface
Configuring Fast Convergence for a

Multi-Area Adjacency Interface
Configuring Neighbor Relationship

Flapping Suppression on an OSPF
Disabling an OSPF Multi-Area

Adjacency Interface from Creating BFD
Sessions
Disabling OSPF IP FRR on an OSPF

Configuring a Fallback Cost for an Eth-

Trunk Multi-Area Adjacency Interface
Maintaining OSPF on a Multi-Area

Adjacency Interface
Mandatory
Optional
5.21.1 Enabling OSPF on a Multi-Area Adjacency Interface

Enabling OSPF on a multi-area adjacency interface is the prerequisite for configuring basic
multi-area adjacency functions.
Procedure


Router 5 OSPF
Step 4 Enable OSPF on an interface.

1. Run twice quit


3. Run ospf enable [ process-id ] area area-id
Step 5 Run ospf enable multi-area area-id
OSPF is enabled on the multi-area adjacency interface.
Step 6 (Optional) Run ospf mtu-enable multi-area area-id
The multi-area adjacency interface is configured to add its MTU to the DD packets to be sent
and check whether the MTU in each received DD packet exceeds the local interface MTU.
The default MTU may vary with the device manufacturer. To keep consistency, prevent the
interface from adding its MTU to the DD packets to be sent.
If the MTU in DD packets is changed, neighbor relationships will be reestablished.
Step 7 Run commit
----End
5.21.2 Configuring a Cost for a Multi-Area Adjacency Interface

Configuring a cost for a multi-area adjacency interface can control route selection.
Procedure

Router 5 OSPF
Step 5 Run ospf cost cost multi-area area-id

A cost is configured for the multi-area adjacency interface.
Step 6 Run commit
----End
5.21.3 Configuring an Authentication Mode for a Multi-Area

Adjacency Interface
Configuring an authentication mode for a multi-area adjacency interface improves OSPF
network security.
Procedure
Step 5 Run either of the following commands:
Run the ospf authentication-mode simple [ plain plain-text | [ cipher ] cipher-text ]
multi-area area-id command to configure simple authentication for the multi-area
adjacency interface.
Run the ospf authentication-mode { md5 | hmac-md5 | hmac-sha256 } [ key-id
{ plain plain-text | [ cipher ] cipher-text } ] multi-area area-id command to configure
ciphertext authentication for the multi-area adjacency interface.
Run the ospf authentication-mode keychain keychain-name multi-area area-id
command to configure keychain authentication for the multi-area adjacency interface.
Run the ospf authentication-mode null multi-area area-id command to configure null
authentication for the multi-area adjacency interface.
Step 6 Run commit
----End
5.21.4 Configuring Fast Convergence for a Multi-Area Adjacency

Interface
Configuring fast convergence for a multi-area adjacency interface improves network
performance.

Router 5 OSPF
Procedure
Configure the interval at which a multi-area adjacency interface sends Hello packets.
a. Run system-view

c. Run ospf enable [ process-id ] area area-id
d. Run ospf enable multi-area area-id
e. Run ospf timer hello interval multi-area area-id
The interval at which Hello packets are sent is configured on the multi-area
f. Run commit
Configure the dead interval of OSPF neighbor relationships for a multi-area adjacency
interface.
a. Run system-view
e. Run ospf timer dead interval multi-area area-id
The dead interval of OSPF neighbor relationships is configured for the multi-area
f. Run commit
Configure an LSA retransmission interval on a multi-area adjacency interface.
a. Run system-view


Router 5 OSPF

e. Run ospf timer retransmit interval multi-area area-id
An LSA retransmission interval is configured on the multi-area adjacency interface.
f. Run commit
Configure an LSA transmission delay on a multi-area adjacency interface.
a. Run system-view
e. Run ospf trans-delay interval multi-area area-id
An LSA transmission delay is configured on the multi-area adjacency interface.
f. Run commit
Configure smart-discover on a multi-area adjacency interface.
a. Run system-view
e. Run ospf smart-discover multi-area area-id
Smart-discover is enabled on the multi-area adjacency interface.
Without smart-discover, if the neighbor status of a device on a P2P network changes
or the DR or BDR on a multi-access network (broadcast or NBMA network)
changes, Hello packets are not sent to neighbors until the Hello timer expires. This
slows down the establishment of neighbor relationships. With smart-discover, Hello
packets are sent to neighbors immediately in this case, regardless of the Hello timer.
This speeds up neighbor relationship establishment and network convergence.
f. Run commit

Router 5 OSPF
Configure a multi-area adjacency interface to filter the LSAs to be sent.

a. Run system-view
e. Run ospf filter-lsa-out { all | { summary [ acl { acl-number | acl-name } ] | ase
[ acl { acl-number | acl-name } ] | nssa [ acl { acl-number | acl-name } ] } * }
multi-area area-id
The multi-area adjacency interface is configured to filter the LSAs to be sent.
If multiple links exist between two devices, you can configure the local device to
filter the LSAs to be sent. This prevents unnecessary LSA transmission and reserves
bandwidth resources.
f. Run commit
----End
5.21.5 Configuring Neighbor Relationship Flapping Suppression

on an OSPF Multi-Area Adjacency Interface
Neighbor relationship flapping suppression can be configured on an OSPF multi-area
adjacency interface to delay OSPF neighbor relationship reestablishment or set the link cost to
the maximum value in case of neighbor relationship flapping.
Usage Scenario
If an interface carrying OSPF services alternates between Up and Down, OSPF neighbor
relationship flapping occurs on the interface. During the flapping, OSPF frequently sends
Hello packets to reestablish the neighbor relationship, synchronizes LSDBs, and recalculates
routes. In this process, a large number of packets are exchanged, adversely affecting neighbor
relationship stability, OSPF services, and other OSPF-dependent services, such as LDP and
BGP. OSPF neighbor relationship flapping suppression can address this problem by delaying
OSPF neighbor relationship reestablishment or preventing service traffic from passing
through flapping links.
NOTE
Procedure

Router 5 OSPF
By default, OSPF neighbor relationship flapping suppression is enabled globally. To disable

this function globally, run the suppress-flapping peer disable command.
Step 5 (Optional) Run ospf suppress-flapping peer disable multi-area area-id
OSPF neighbor relationship flapping suppression on a multi-area adjacency interface is
disabled.
By default, OSPF neighbor relationship flapping suppression is enabled on all multi-area
adjacency interfaces in the same OSPF process. To disable the function from one of the
interfaces, run this command.
Step 6 Run ospf suppress-flapping peer hold-down interval multi-area area-id
The Hold-down mode is configured on a multi-area adjacency interface, and its duration is
set.
Flapping suppression works in either Hold-down or Hold-max-cost mode.
Hold-down mode: In the case of frequent flooding and topology changes during neighbor
relationship establishment, interfaces prevent neighbor relationship reestablishment
during Hold-down suppression, which minimizes LSDB synchronization attempts and
packet exchanges.
Hold-max-cost mode: If the traffic forwarding path changes frequently, interfaces use
65535 (the maximum cost) as the cost of the flapping link during Hold-max-cost
suppression, which prevents traffic from passing through the flapping link.
NOTE
To change the cost used by the Hold-max-cost mode, run the maximum-link-cost cost command.
Flapping suppression can also work first in Hold-down mode and then in Hold-max-cost
mode.
To disable the Hold-max-cost mode, run the ospf suppress-flapping peer hold-max-cost
disable multi-area command.
Step 7 Run ospf suppress-flapping peer { detecting-interval detecting-interval | threshold
threshold | resume-interval resume-interval } * multi-area area-id
Detection parameters are configured for OSPF neighbor relationship flapping suppression on
an OSPF multi-area adjacency interface.
Specifies the interval for exiting from OSPF neighbor relationship flapping suppression.
If the interval between two successive neighbor status changes from Full to a non-Full
state is longer than resume-interval, the flapping_count is reset.
If OSPF neighbor relationship flapping suppression works in hold-max-cost mode,
resume-interval indicates the duration of this mode.

Router 5 OSPF
NOTE
The value of resume-interval must be greater than that of detecting-interval.
You can configure the detection parameters as required. However, keeping the default
configurations is recommended. By default, the detection interval of OSPF neighbor
relationship flapping suppression on multi-area adjacency interfaces is 60s, the suppression
threshold is 10, and the interval for exiting from suppression is 120s.
Step 8 Run quit
Step 9 Run quit
Step 10 Run reset ospf suppress-flapping process-id peer [ interface-name [ all-areas | area
area- id ] ] | [ interface-type interface-number [ all-areas | area area-id ] ] [ notify-peer ]
The OSPF process or the multi-area adjacency interface is configured to exit from OSPF
neighbor relationship flapping suppression.
NOTE
The OSPF process or interface exits from flapping suppression in the following scenarios:
The suppression timer expires.
The corresponding OSPF process is reset.
An OSPF neighbor is reset using the reset ospf peer command.
OSPF neighbor relationship flapping suppression is disabled globally using the suppress-flapping
peer disable (OSPF) command.
The reset ospf suppress-flapping peer command is run.
Step 11 Run commit

----End
5.21.6 Disabling an OSPF Multi-Area Adjacency Interface from

Creating BFD Sessions
After BFD for OSPF is configured, all interfaces on which neighbor relationships are in Full
state in the OSPF process create BFD sessions. You can disable an interface from creating
BFD sessions as required.
Procedure

Router 5 OSPF
Step 5 Run ospf bfd block multi-area area-id
The OSPF multi-area adjacency interface is disabled from creating BFD sessions.
Step 6 Run commit
----End
5.21.7 Disabling OSPF IP FRR on an OSPF Multi-Area Adjacency

Interface
OSPF IP fast reroute (FRR) can be disabled on an OSPF multi-area adjacency interface that is
connected to a link carrying key services. This prevents FRR from calculating the link as the
backup link and minimizes any potential impact on the services.
Procedure
Step 5 Run ospf frr block multi-area area-id
OSPF IP FRR is disabled on the OSPF multi-area adjacency interface.
Step 6 (Optional) Run ospf remote-lfa disable multi-area area-id
Remote loop-free alternate (LFA) is disabled on the OSPF multi-area adjacency interface.
Step 7 Run commit
----End
5.21.8 Configuring a Fallback Cost for an Eth-Trunk Multi-Area

Adjacency Interface
Configuring a fallback cost for an Ethernet multi-area adjacency interface helps control route
selection.

Router 5 OSPF
Context
If a member interface of an Eth-Trunk multi-area adjacency interface goes down, the
remaining bandwidth of the Eth-Trunk multi-area adjacency interface may fail to meet user
requirements. As a result, user services are affected. To address this problem, run the ospf
cost-fallback multi-area command to configure cost-fallback parameters (fallback cost and
bandwidth threshold) for the Eth-Trunk multi-area adjacency interface; if the remaining
bandwidth of the interface goes below the bandwidth threshold, the cost of the interface is
changed to the fallback cost which is higher than the normal cost, and traffic is then switched
to an alternative path; when the remaining bandwidth of the interface reaches or exceeds the
bandwidth threshold, the original cost is restored.
Procedure
Step 2 Run interface eth-trunk trunk-id
The Eth-Trunk interface view is displayed.
Step 5 Run ospf cost-fallback fallbackcost threshold fallbackbw multi-area area-id
A fallback cost is configured for an Eth-Trunk multi-area adjacency interface.
Step 6 Run commit
----End
5.21.9 Maintaining OSPF on a Multi-Area Adjacency Interface

Context
OSPF statistics cannot be restored after being cleared. Therefore, exercise caution before
clearing the OSPF statistics.
To clear OSPF statistics, run the following command in the user view.
Procedure
Run reset ospf [ process-id ] counters [ neighbor [ interface-type interface-number
[ all-areas | area area-id ] ] | [ interface-name [ all-areas | area area-id ] ] [ router-id ] ]

Router 5 OSPF
OSPF statistics are cleared.

----End
5.21.10 Verifying the Configuration of OSPF Multi-Area

Adjacency
After configuring OSPF multi-area adjacency, verify the configuration.
Prerequisites
OSPF multi-area adjacency has been configured.
Procedure
Run the following commands and check (M) Indicates MADJ interface, Multi-area
interface, and Multi-area Interface Count fields to view configurations on the multi-
area adjacency interface:
– display ospf brief
– display ospf interface
– display ospf peer
----End
5.22 Configuration Examples for OSPF

This section provides several OSPF configuration examples.
5.22.1 Example for Configuring Basic OSPF Functions

This section describes how to configure basic OSPF functions, including enabling OSPF on
each router and specifying network segments in different areas.
Networking Requirements
On the network shown in Figure 5-10, all routers run OSPF, and the entire AS is divided into
three areas. Device A and Device B function as ABRs to forward inter—area routes.
After the configuration is complete, each router should learn the routes to all network
segments in the AS.
Figure 5-10 Networking for configuring basic OSPF functions

NOTE
Interface 1 and interface 2 in this example are GE 1/0/0 and GE 2/0/0, respectively.

Router 5 OSPF
Area0
interface1
192.168.0.2/24
DeviceA interface1 Device
interface2 192.168.0.1/24 interface2
192.168.1.1/24 192.168.2.
interface1 interface1
192.168.1.2/24 192.168.2.
DeviceC Device
172.16.1.1/24 172.17.1.1/24
172.16.1.2/24 172.17.1.2/24
DeviceE DeviceF
Area1 Area2
Precautions
When configuring basic OSPF functions, note the following rules:
The backbone area is responsible for forwarding inter-area routes. In addition, the
routing information between non-backbone areas must be forwarded through the
backbone area. OSPF defines the following rules for the backbone area:
– Connectivity must be available between non-backbone areas and the backbone area.
– Connectivity must be available over the backbone area.
The intervals at which Hello, Dead, and Poll packets are sent on the local interface must
be the same as those on the remote interface. Otherwise, the OSPF neighboring
relationship cannot be established.
Configuration Roadmap
The configuration roadmap is as follows:
1. Enable OSPF on each router.

2. Specify network segments in different areas.
Data Preparation
To complete the configuration, you need the following data:
Device Name Router ID Process ID IP Address

Router 5 OSPF
Device A 1.1.1.1 1 Area 0: 192.168.0.0/24

Area 1: 192.168.1.0/24
Device B 2.2.2.2 1 Area 0: 192.168.0.0/24

Area 2: 192.168.2.0/24
Device C 3.3.3.3 1 Area 1: 192.168.1.0/24 and 172.16.1.0/24
Device D 4.4.4.4 1 Area 2: 192.168.2.0/24 and 172.17.1.0/24
Device E 5.5.5.5 1 Area 1: 172.16.1.0/24
Device F 6.6.6.6 1 Area 2: 172.17.1.0/24
Procedure
Step 1 Assign an IP address to each interface. For configuration details, see Configuration Files in
this section.
Step 2 Configure basic OSPF functions.
# Configure Device A.
[~DeviceA] router id 1.1.1.1
[~DeviceA] ospf 1
[*DeviceA-ospf-1] area 0
[*DeviceA-ospf-1-area-0.0.0.0] network 192.168.0.0 0.0.0.255
[*DeviceA-ospf-1-area-0.0.0.0] quit
[*DeviceA-ospf-1] commit
# Configure Device B.
[~DeviceB] router id 2.2.2.2
[~DeviceB] ospf 1
[*DeviceB-ospf-1] area 0
[*DeviceB-ospf-1-area-0.0.0.0] network 192.168.0.0 0.0.0.255
[*DeviceB-ospf-1-area-0.0.0.0] quit
[*DeviceB-ospf-1] commit
# Configure Device C.
[~DeviceC] router id 3.3.3.3
[~DeviceC] ospf 1
[*DeviceC-ospf-1] area 1
[*DeviceC-ospf-1-area-0.0.0.1] network 192.168.1.0 0.0.0.255
[*DeviceC-ospf-1-area-0.0.0.1] commit
[~DeviceC-ospf-1-area-0.0.0.1] quit
# Configure Device D.
[~DeviceD] router id 4.4.4.4

Router 5 OSPF
[~DeviceD] ospf 1
[*DeviceD-ospf-1] area 2
[*DeviceD-ospf-1-area-0.0.0.2] network 192.168.2.0 0.0.0.255
[*DeviceD-ospf-1-area-0.0.0.2] commit
[~DeviceD-ospf-1-area-0.0.0.2] quit
# Configure Device E.
[~DeviceE] router id 5.5.5.5
[~DeviceE] ospf 1
[*DeviceE-ospf-1] area 1
[*DeviceE-ospf-1-area-0.0.0.1] network 172.16.1.0 0.0.0.255
[*DeviceE-ospf-1-area-0.0.0.1] commit
[~DeviceE-ospf-1-area-0.0.0.1] quit
# Configure Device F.
[~DeviceF] router id 6.6.6.6
[~DeviceF] ospf 1
[*DeviceF-ospf-1] area 2
[*DeviceF-ospf-1-area-0.0.0.2] network 172.17.1.0 0.0.0.255
[*DeviceF-ospf-1-area-0.0.0.2] commit
[~DeviceF-ospf-1-area-0.0.0.2] quit
Step 3 Verify the configuration.

# Display the OSPF neighbors of Device A.
[~DeviceA] display ospf peer

Neighbors
Area 0.0.0.0 interface 192.168.0.1(GigabitEthernet1/0/0)'s neighbors

State: Full Mode:Nbr is Master Priority: 1
DR: 192.168.1.2 BDR: 192.168.1.1 MTU: 0
Area 0.0.0.1 interface 192.168.1.1(GigabitEthernet2/0/0)'s neighbors

DR: 192.168.1.2 BDR: 192.168.1.1 MTU: 0
# Display the OSPF routes of Device A.

[~DeviceA] display ospf routing

Routing Tables
Routing for Network

172.16.1.0/24 2 Transit 192.168.1.2 3.3.3.3 0.

172.17.1.0/24 3 Inter-area 192.168.0.2 2.2.2.2 0.
192.168.2.0/24 2 Inter-area 192.168.0.2 2.2.2.2 0.
Total Nets: 3

Router 5 OSPF
# Display the LSDB of Device A.

[~DeviceA] display ospf lsdb

Link State Database
Area: 0.0.0.0
Type LinkState ID AdvRouter Age Len Sequence Me
Router 1.1.1.1 1.1.1.1 93 48 80000004
Router 2.2.2.2 2.2.2.2 92 48 80000004
Sum-Net 172.16.1.0 1.1.1.1 1287 28 80000002
Sum-Net 192.168.1.0 1.1.1.1 1716 28 80000001
Sum-Net 172.17.1.0 2.2.2.2 1336 28 80000001
Sum-Net 192.168.2.0 2.2.2.2 87 28 80000002
Area: 0.0.0.1
Type LinkState ID AdvRouter Age Len Sequence Metric
Router 1.1.1.1 1.1.1.1 1420 48 80000002 1
Router 3.3.3.3 3.3.3.3 1294 60 80000003 1
Router 5.5.5.5 5.5.5.5 1296 36 80000002 1
Network 172.16.1.1 3.3.3.3 1294 32 80000001 0
Sum-Net 172.17.1.0 1.1.1.1 1325 28 80000001 3
Sum-Net 192.168.0.0 1.1.1.1 1717 28 80000001 1
Sum-Net 192.168.2.0 1.1.1.1 1717 28 80000001 2
# Display the routing table on Device D and perform the ping operation to test the
connectivity.
[~DeviceD] display ospf routing

Routing Tables
Routing for Network
Destination Cost Type NextHop AdvRouter Ar

172.16.1.0/24 4 Inter-area 192.168.2.1 2.2.2.2 0.
192.168.0.0/24 2 Inter-area 192.168.2.1 2.2.2.2 0.
192.168.1.0/24 3 Inter-area 192.168.2.1 2.2.2.2 0.
Total Nets: 3
[~DeviceD] ping 172.16.1.1
PING 172.16.1.1: 56 data bytes, press CTRL_C to break
Reply from 172.16.1.1: bytes=56 Sequence=1 ttl=253 time=62 ms
--- 172.16.1.1 ping statistics ---

5 packet(s) transmitted
5 packet(s) received
0.00% packet loss
round-trip min/avg/max = 16/59/94 ms
----End
Configuration Files
Device A configuration file
#
sysname DeviceA
#
router id 1.1.1.1
#

Router 5 OSPF
undo shutdown
ip address 192.168.0.1 255.255.255.0
#
interface
GigabitEthernet2/0/0 undo
shutdown
ip address 192.168.1.1 255.255.255.0
#
ospf 1
area 0.0.0.0
network 192.168.0.0
0.0.0.255 area 0.0.0.1
network 192.168.1.0 0.0.0.255
#
return
Device B configuration file
#
sysname DeviceB
#
router id 2.2.2.2
#
interface
shutdown
ip address 192.168.0.2 255.255.255.0
#
interface
shutdown
ip address 192.168.2.1 255.255.255.0
#
ospf 1
area 0.0.0.0
network 192.168.0.0
0.0.0.255 area 0.0.0.2
network 192.168.2.0 0.0.0.255
#
Device C configuration file
#
sysname DeviceC
#
router id 3.3.3.3
#
interface
shutdown
ip address 192.168.1.2 255.255.255.0
#
interface
shutdown
ip address 172.16.1.1 255.255.255.0
#
ospf 1
area 0.0.0.1
network 192.168.1.0
0.0.0.255 network
172.16.1.0 0.0.0.255
Device D configuration file
#
sysname DeviceD
#
router id 4.4.4.4
#
interface
shutdown
ip address 192.168.2.2 255.255.255.0
#
interface

Router 5 OSPF
ip address 172.17.1.1 255.255.255.0

#
ospf 1
area 0.0.0.2
network 192.168.2.0
0.0.0.255 network
172.17.1.0 0.0.0.255
#
return
Device E configuration file
#
sysname DeviceE
#
router id 5.5.5.5
#
interface
shutdown
ip address 172.16.1.2 255.255.255.0
#
ospf 1
area 0.0.0.1
network 172.16.1.0 0.0.0.255
#
return
Device F configuration file
#
sysname DeviceF
#
router id 6.6.6.6
#
interface
shutdown
ip address 172.17.1.2 255.255.255.0
#
ospf 1
area 0.0.0.2
network 172.17.1.0 0.0.0.255
#
5.22.2 Example for Configuring OSPF Virtual Links

This section describes how to configure virtual links to connect a non-backbone area to the
backbone area.
On the network shown in Figure 5-11, Area 2 is not directly connected to the backbone area
Area 0. Area 1 serves as a transit area to connect Area 2 and Area 0. A virtual link is
configured between Device A and Device B.
Figure 5-11 Networking for configuring an OSPF virtual links

NOTE
Interface 1 and 2 in this example are GE 1/0/0 and GE 2/0/0, respectively.

Router 5 OSPF
Area1
DeviceA 192.168.1.1/24 192.168.1.2/24 Device
interface2 Virtual Link interface2

10.1.1.1/8 172.16.1.1/
10.1.1.2/8 172.16.1.2/
DeviceC Device
Area0 Area2
Precautions
The default value is recommended when a virtual link is created. You can modify the value in
actual scenarios.
Suggestions for configuring parameters are as follows:
The smaller the hello parameter, the more rapidly a router detects network topology
change, the more network resources are consumed.
If the retransmit parameter is set too small, LSAs may be retransmitted. Setting the
parameter to a large value is recommended in a low-speed network.
The authentication modes of a virtual link and the backbone area must be the same.
1. Configure basic OSPF functions on each router.

2. Configure a virtual link between Device A and Device B to connect a non-backbone area
to the backbone area.
Data Preparation
Device A 1.1.1.1 1 Area 0: 10.0.0.0/8

Area 1: 192.168.1.0/24

Router 5 OSPF
Device B 2.2.2.2 1 Area 1: 192.168.1.0/24

Area 2: 172.16.0.0/16
Device C 3.3.3.3 1 Area 0: 10.0.0.0/8
Device D 4.4.4.4 1 Area 2: 172.16.0.0/16
Procedure
this section.
For configuration details, see 5.3 Configuring Basic OSPF Functions.
Step 3 Check the OSPF routes on Device A

Routing Tables
Routing for Network

10.0.0.0/8 1 Transit 10.1.1.1 3.3.3.3 0.

192.168.1.0/24 1 stub 192.168.1.1 1.1.1.1 0.
Total Nets: 2
The routing table on Device A contains no route in Area 2 because Area 2 is not directly
connected to Area 0.
Step 4 Configure an OSPF virtual link.
[~DeviceA] ospf 1
[*DeviceA-ospf-1-area-0.0.0.1] vlink-peer 2.2.2.2
[*DeviceA-ospf-1] quit
[*DeviceA] commit
[~DeviceB] ospf 1
[*DeviceB-ospf-1-area-0.0.0.1] vlink-peer 1.1.1.1
[*DeviceB-ospf-1] quit
[*DeviceB] commit

# Display the OSPF vlink on Device A.
[~DeviceA] display ospf vlink

Router 5 OSPF

Virtual Links
Virtual-link Neighbor-id -> 2.2.2.2, Neighbor-State: Full
Interface: 192.168.1.1 (GigabitEthernet1/0/0)
Cost: 1 State: P-2-P Type: Virtual
Transit Area: 0.0.0.1
GR State: Normal
The preceding command output shows that the OSPF vlink neighbor status is "Full".
# Display the OSPF routes on Device A.

Routing Tables
Routing for Network

172.16.0.0/16 2 Inter-area 192.168.1.2 2.2.2.2 0.0.0

10.0.0.0/8 1 Transit 10.1.1.1 1.1.1.1 0.0
192.168.1.0/24 1 Stub 192.168.1.1 1.1.1.1 0.0
Total Nets: 3
After the virtual link is configured, the routing table on Device A contains routes in Area 2.
----End
Configuration Files
#
sysname DeviceA
#
router-id 1.1.1.1
#
undo shutdown
ip address 192.168.1.1 255.255.255.0
#
undo shutdown
ip address 10.1.1.1 255.0.0.0
#
ospf 1
area 0.0.0.0
network 10.0.0.0 0.255.255.255
area 0.0.0.1
network 192.168.1.0 0.0.0.255
vlink-peer 2.2.2.2
#
return

#
sysname DeviceB
#
router-id 2.2.2.2
#
undo shutdown
ip address 192.168.1.2 255.255.255.0
#

Router 5 OSPF
undo shutdown
ip address 172.16.1.1 255.255.0.0
#
ospf 1
area 0.0.0.1
network 192.168.1.0
0.0.0.255 vlink-peer
1.1.1.1
area 0.0.0.2
network 172.16.0.0 0.0.255.255
#
return
#
sysname DeviceC
#
router-id 3.3.3.3
#
interface
shutdown
ip address 10.1.1.2 255.0.0.0
#
ospf 1
area 0.0.0.0
network 10.0.0.0 0.255.255.255
#
return
#
sysname DeviceD
#
router-id 4.4.4.4
#
interface
shutdown
ip address 172.16.1.2 255.255.0.0
#
ospf 1
area 0.0.0.2
network 172.16.0.0 0.0.255.255
#
5.22.3 Example for Configuring an OSPF Stub Area

This section describes how to configure a stub area that imports static routes. Such
configuration can reduce the number of LSAs advertised to this area without affecting route
reachability.
On the network shown in Figure 5-12, all routers run OSPF, and the entire AS is divided into
three areas. Device A and Device B function as ABRs to advertise inter-area routes; Device D
functions as the ASBR to import external routes (static routes).
Configure Area 1 as a stub area to reduce the LSAs advertised to this area without affecting
route reachability.
Figure 5-12 Networking for configuring an OSPF stub area

NOTE
Interface 1 and interface 2 in this example are GE 1/0/0 and GE 2/0/0, respectively.

Router 5 OSPF
Area0
DeviceA interface1 DeviceB
192.168.0.1/24 interface1
192.168.0.2/24
192.168.1.1/24 192.168.2.1/24
192.168.1.2/24 192.168.2.2/24
ASBR
DeviceC DeviceD
172.16.1.1/24 Stub 172.17.1.1/24
172.16.1.2/24 172.17.1.2/24
DeviceE DeviceF
Area1 Area2
Precautions
When configuring an OSPF stub area, note the following rules:
The backbone area cannot be configured as a stub area.

An ASBR cannot exist in a stub area. That is, AS-external routes are not flooded in the
stub area.
A virtual link cannot pass through a stub area.
1. Configure basic OSPF functions on each router for interconnection.

2. Configure a static route on Device D and import it into OSPF.
3. Configure Area 1 as a stub area by running the stub command on all routers in Area 1
and check the OSPF routing information on Device C.
4. Prevent Device A from advertising Type 3 LSAs to the stub area, and check the OSPF
routing information on Device C.
Data Preparation

Router 5 OSPF
Device A 1.1.1.1 1 Area 0: 192.168.0.0/24

Area 1: 192.168.1.0/24
Device B 2.2.2.2 1 Area 0: 192.168.0.0/24

Area 2: 192.168.2.0/24
Device C 3.3.3.3 1 Area 1: 192.168.1.0/24 and 172.16.1.0/24
Device D 4.4.4.4 1 Area 2: 192.168.2.0/24 and 172.17.1.0/24
Device E 5.5.5.5 1 Area 1: 172.16.1.0/24
Device F 6.6.6.6 1 Area 2: 172.17.1.0/24
Procedure
this section.
Step 2 Configure basic OSPF functions. For details, see 5.22.1 Example for Configuring Basic
OSPF Functions.
Step 3 Configure Device D to import static routes.
[~DeviceD] ip route-static 10.0.0.0 8 null 0
[*DeviceD] ospf 1
[*DeviceD-ospf-1] import-route static type 1
[*DeviceD-ospf-1] commit
[~DeviceD-ospf-1] quit
# Display ABR and ASBR information on Device C.

[~DeviceC] display ospf abr-asbr

Routing Table to ABR and ASBR
Type Destination Area Cost NextHop RtType

Intra-area 1.1.1.1 0.0.0.1 1 192.168.1.1 ABR
Inter-area 4.4.4.4 0.0.0.1 3 192.168.1.1 ASBR
# Display the OSPF routing table on Device C.
NOTE
If the area where Device C resides is a common area, external routes exist in the routing table.
[~DeviceC] display ospf routing

Routing Tables
Routing for Network

172.17.1.0/24 4 Inter-area 192.168.1.1 1.1.1.1 0.

192.168.0.0/24 2 Inter-area 192.168.1.1 1.1.1.1 0.
192.168.2.0/24 3 Inter-area 192.168.1.1 1.1.1.1 0.

Router 5 OSPF
Routing for ASEs

10.0.0.0/8 4 Type1 1 192.168.1.1 4.4.4.4
Total Nets: 4
Step 4 Configure Area 1 as a stub area.
[~DeviceA] ospf 1
[*DeviceA-ospf-1-area-0.0.0.1] stub
[*DeviceA-ospf-1-area-0.0.0.1]
commit [~DeviceA-ospf-1-area-
0.0.0.1] quit
[~DeviceC] ospf 1
[*DeviceC-ospf-1-area-0.0.0.1] stub
[*DeviceC-ospf-1-area-0.0.0.1]
commit [~DeviceC-ospf-1-area-
0.0.0.1] quit
[~DeviceE] ospf 1
[*DeviceE-ospf-1] area 1
[*DeviceE-ospf-1-area-0.0.0.1] stub
[*DeviceE-ospf-1-area-0.0.0.1]
commit [~DeviceE-ospf-1-area-
0.0.0.1] quit
# Display the routing table on Device C.
NOTE
After the area where Device C resides is configured as a stub area, a default route rather than AS
external routes is displayed in the routing table.
OSPF Process 1 with

Routing
Tables
Routing for Network
Destination Cost Type AdvRouter Area
0.0.0.0/0 2 Inter-area 1.1.1.1 0.0.0.1
172.17.1.0/24 4 192.168.1.1
Inter-area 1.1.1.1 0.0.0.1
192.168.0.0/24 2 192.168.1.1
Inter-area 1.1.1.1 0.0.0.1
192.168.2.0/24 3 192.168.1.1
Inter-area 1.1.1.1 0.0.0.1
192.168.1.1
Total Nets: 4
Step 5 # Prevent Device A from advertising Type 3 LSAs to the stub area.
[~DeviceA] ospf
[*DeviceA-ospf-1-area-0.0.0.1] stub no-summary
[*DeviceA-ospf-1-area-0.0.0.1] commit
[~DeviceA-ospf-1-area-0.0.0.1] quit


Router 5 OSPF

Routing Tables
Routing for Network

Destination Cost Type NextHop AdvRouter Ar
0.0.0.0/0 2 Inter-area 192.168.1.1 1.1.1.1 0.
Total Nets: 1
NOTE
After the advertisement of summary LSAs to the stub area is disabled, the number of routing entries on
the routers in the stub area further decreases, and only the default route to a destination beyond the stub
area is reserved.
----End
Configuration Files
#
sysname DeviceA
#
router id 1.1.1.1
#
interface
shutdown
ip address 192.168.0.1 255.255.255.0
#
interface
shutdown
ip address 192.168.1.1 255.255.255.0
#
ospf 1
area 0.0.0.0
network 192.168.0.0
0.0.0.255 area 0.0.0.1
network 192.168.1.0
0.0.0.255 stub no-summary
#
#
sysname DeviceB
#
router id 2.2.2.2
#
interface
shutdown
ip address 192.168.0.2 255.255.255.0
#
interface
shutdown
ip address 192.168.2.1 255.255.255.0
#
ospf 1
area 0.0.0.0
network 192.168.0.0
0.0.0.255 area 0.0.0.2
network 192.168.2.0 0.0.0.255
#
#

Router 5 OSPF
sysname DeviceC
#
router id 3.3.3.3
#
undo shutdown
ip address 192.168.1.2 255.255.255.0
#
undo shutdown
ip address 172.16.1.1 255.255.255.0
#
ospf 1
area 0.0.0.1
network 192.168.1.0 0.0.0.255
network 172.16.1.0 0.0.0.255
stub
#
return
#
sysname DeviceD
#
router id 4.4.4.4
#
undo shutdown
ip address 192.168.2.2 255.255.255.0
#
undo shutdown
ip address 172.17.1.1 255.255.255.0
#
ospf 1
import-route static type 1
area 0.0.0.2
network 192.168.2.0 0.0.0.255
network 172.17.1.0 0.0.0.255
#
ip route-static 10.0.0.0 255.0.0.0 NULL0
#
return
#
sysname DeviceE
#
router id 5.5.5.5
#
undo shutdown
ip address 172.16.1.2 255.255.255.0
#
ospf 1
area 0.0.0.1
network 172.16.1.0 0.0.0.255
stub
#
return
Device F configuration file
#
sysname DeviceF
#
router id 6.6.6.6
#
undo shutdown
ip address 172.17.1.2 255.255.255.0

Router 5 OSPF
#
ospf 1
area 0.0.0.2
network 172.17.1.0 0.0.0.255
#
return
5.22.4 Example for Configuring an OSPF NSSA

This section describes how to configure an OSPF not-so-stubby area (NSSA).
An excessive number of entries in a routing table wastes network resources and causes high
CPU usage. To solve this problem, a non-backbone area on the border of an AS can be
configured as an NSSA to reduce the amount of routing information to be transmitted. An
NSSA in an AS does not transmit routes learned from other areas in the AS but imports AS
external routes. This reduces bandwidth and storage resource consumption.
On the network shown in Figure 5-13, OSPF runs on all routers and the entire AS is divided
into two areas. Device A and Device B function as Area Border Routers (ABRs) to forward
inter-area routes; Device D functions as an Autonomous System Boundary Router (ASBR)
and imports the external static route 10.0.0.0/8. To import AS-external routes but reduce the
number of Link State Advertisements (LSAs) advertised to area 1 without affecting route
reachability, configure area 1 as an NSSA and configure Device A as an LSA translator in the
NSSA.
Figure 5-13 Networking for configuring an OSPF NSSA

NOTE
Interface 1 to 3 in this example are GE 1/0/0, GE 2/0/0, and GE 3/0/0, respectively.

DeviceA
192.168.3.1/24 192.168.0.1/24
interface1
192.168.3.2/24 interface3 interface1
192.168.1.1/24 192.168.0.2/24
DeviceD
ASBR DeviceC
interface1
192.168.1.2/24 interface2
interface2 192.168.2.2/24
192.168.4.1/24
Area1
NSSA 192.168.4.2/24 192.168.2.1/24 Area0
DeviceB

Router 5 OSPF
1. Enable OSPF on all routers and configure basic OSPF functions to ensure that routers
communicate with each other using OSPF. For details, see 5.3 Configuring Basic OSPF
Functions.
2. Configure area 1 as an NSSA.
3. Configure Device D to import the static route 10.0.0.0/8.
4. Configure Device A in the NSSA as an LSA translator.
Data Preparation
Router ID 1.1.1.1 of Device A; OSPF process ID 1; network segment 192.168.0.0/24 of
area 0; network segments 192.168.1.0/24 and 192.168.3.0/24 of area 1
Router ID 2.2.2.2 of Device B; OSPF process ID 1; network segment 192.168.2.0/24 of
area 0; network segments 192.168.1.0/24 and 192.168.4.0/24 of area 1
Router ID 3.3.3.3 of Device C; OSPF process ID 1; network segments 192.168.0.0/24
and 192.168.2.0/24 of area 0
Router ID 4.4.4.4 of Device D; OSPF process ID 1; network segments 192.168.3.0/24
and 192.168.4.0/24 of area 1
Procedure
Step 1 Configure an IP address for each interface.
Configure an IP address for each interface as shown in Figure 5-13. For configuration details,
see Configuration Files in this section.
5.3 Configuring Basic OSPF Functions shows how to configure basic OSPF functions. For
details about the configuration, see Configuration Files in this section.
Step 3 Configure area 1 as an NSSA.
[~DeviceA] ospf
[*DeviceA-ospf-1-area-0.0.0.1] nssa [*DeviceA-ospf-1-
area-0.0.0.1] commit [~DeviceA-ospf-1-area-0.0.0.1] quit
[~DeviceB] ospf
[*DeviceB-ospf-1-area-0.0.0.1] nssa [*DeviceB-ospf-1-
area-0.0.0.1] commit [~DeviceB-ospf-1-area-0.0.0.1] quit
[~DeviceD] ospf
[*DeviceD-ospf-1-area-0.0.0.1] nssa [*DeviceD-ospf-1-
area-0.0.0.1] commit [~DeviceD-ospf-1-area-0.0.0.1] quit
NOTE
NSSA attributes must be configured on all routers in the NSSA using the nssa command.

Router 5 OSPF
Step 4 Configure Device D to import the static route 10.0.0.0/8.

[*DeviceD] ip route-static 10.0.0.0 8 null 0
[*DeviceD] ospf
[*DeviceD-ospf-1] import-route static
[*DeviceD-ospf-1] commit
[~DeviceD-ospf-1] quit


Routing Tables
Routing for Network

192.168.3.0/24 2 Inter-area 192.168.0.1 1.1.1.1 0.0.0.0
192.168.4.0/24 2 Inter-area 192.168.2.1 2.2.2.2 0.0.0.0
192.168.0.0/24 1 Stub 192.168.0.2 3.3.3.3 0.0.0.0
192.168.1.0/24 2 Inter-area 192.168.0.1 1.1.1.1 0.0.0.0
192.168.1.0/24 2 Inter-area 192.168.2.1 2.2.2.2 0.0.0.0
192.168.2.0/24 1 Stub 192.168.2.2 3.3.3.3 0.0.0.0
Routing for ASEs

10.0.0.0/8 1 Type2 1 192.168.2.1 2.2.2.2
Total Nets: 7
The command output shows that Device B has imported an AS external route and that the
router ID of the router that advertises the imported AS external route is 2.2.2.2. Device B
functions as the type-5 LSA translator because OSPF selects the ABR with a larger router
ID as an LSA translator.
Step 5 # Configure Device A as an LSA translator.
[~DeviceA] ospf
[*DeviceA-ospf-1-area-0.0.0.1] nssa default-route-advertise no-summary
translator- always
Step 6
Verify the configuration.
# View the OSPF routing table on Device C.


Routing Tables
Routing for Network

192.168.3.0/24 2 Inter-area 192.168.0.1 1.1.1.1 0.0.0.0
192.168.4.0/24 2 Inter-area 192.168.2.1 2.2.2.2 0.0.0.0
192.168.0.0/24 1 Stub 192.168.0.2 3.3.3.3 0.0.0.0
192.168.1.0/24 2 Inter-area 192.168.2.1 2.2.2.2 0.0.0.0
192.168.1.0/24 2 Inter-area 192.168.0.1 1.1.1.1 0.0.0.0
192.168.2.0/24 1 Stub 192.168.2.2 3.3.3.3 0.0.0.0
Routing for ASEs

10.0.0.0/8 1 Type2 1 192.168.0.1 1.1.1.1
Total Nets: 7

Router 5 OSPF
The command output shows that Device C has imported an AS external route and that the
router ID of the router that advertises the imported AS external route is 1.1.1.1. Device A
functions as the type-5 LSA translator.
----End
Configuration Files
#
sysname DeviceA
#
router id 1.1.1.1
#
undo shutdown
ip address 192.168.0.1 255.255.255.0
#
undo shutdown
ip address 192.168.3.1 255.255.255.0
#
undo shutdown
ip address 192.168.1.1 255.255.255.0
#
ospf 1
area 0.0.0.0
network 192.168.0.0 0.0.0.255
area 0.0.0.1
network 192.168.1.0 0.0.0.255
network 192.168.3.0 0.0.0.255
nssa default-route-advertise no-summary translator-always
#
return

#
sysname DeviceB
#
router id 2.2.2.2
#
undo shutdown
ip address 192.168.1.2 255.255.255.0
#
undo shutdown
ip address 192.168.2.1 255.255.255.0
#
undo shutdown
ip address 192.168.4.2 255.255.255.0
#
ospf 1
area 0.0.0.0
network 192.168.2.0 0.0.0.255
area 0.0.0.1
network 192.168.1.0 0.0.0.255
network 192.168.4.0 0.0.0.255
nssa
#
return

#
sysname DeviceC

Router 5 OSPF
#
router id 3.3.3.3
#
undo shutdown
ip address 192.168.0.2 255.255.255.0
#
undo shutdown
ip address 192.168.2.2 255.255.255.0
#
ospf 1
area 0.0.0.0
network 192.168.0.0 0.0.0.255
network 192.168.2.0 0.0.0.255
#
return

#
sysname DeviceD
#
router id 4.4.4.4
#
undo shutdown
ip address 192.168.3.2 255.255.255.0
#
undo shutdown
ip address 192.168.4.1 255.255.255.0
#
ospf 1
import-route static
area 0.0.0.1
network 192.168.3.0 0.0.0.255
network 192.168.4.0 0.0.0.255
nssa
#
ip route-static 10.0.0.0 255.0.0.0 NULL0
#
return
5.22.5 Example for Configuring OSPF DR Election

This section describes how to set the DR priority on an interface for DR election on a
broadcast network.
On the network shown in Figure 5-14, the interface of Device A has the highest priority of
100 on the network and is elected as the DR; Device C has the second highest priority and is
elected as the BDR. Device B has the priority of 0 and cannot be elected as a DR or a BDR;
no priority is configured for Device D and therefore, Device D uses the default value (1).
Figure 5-14 Networking for configuring OSPF DR election

NOTE
Interface 1 in this example is GE 1/0/0.

Router 5 OSPF
DeviceA DeviceB
192.168.1.1/24 192.168.1.2/24
interface1
interface1
192.168.1.3/24
DeviceC DeviceD
Precautions
Reconfiguring the DR priority for a router does not change the DR or BDR on a network. You
can use either of the following methods to re-elect a DR or BDR. However, the following
methods will disconnect OSPF neighbors. Therefore, use the following methods only when
necessary.
Restart the OSPF processes on all routers.
Configure the shutdown and undo shutdown commands on the interfaces where the
OSPF neighboring relationships are established.
2. Configure the Router ID for each router.
3. Use the default DR priorities and check whether the router is the DR or BDR.
4. Configure the DR priority on an interface and check whether the router is the DR or
BDR.
Data Preparation
Router ID (1.1.1.1) and priority (100) of Device A
Router ID (2.2.2.2) and priority (0) of Device B
Router ID (3.3.3.3) and priority (2) of Device C
Router ID (4.4.4.4) and priority (1) of Device D
Procedure
this section.

Router 5 OSPF

[*DeviceA] ospf 1
[*DeviceB] ospf 1
[*DeviceB-ospf-1-area-0.0.0.0] commit
[~DeviceB-ospf-1-area-0.0.0.0] quit
[*DeviceC] ospf 1
[~DeviceD] router id 4.4.4.4
[*DeviceD] ospf 1
[~DeviceD-ospf-1-area-0.0.0.0] quit
# Display the status of the DR or BDR.

[~DeviceA] display ospf peer

Neighbors

State: 2-Way Mode:Nbr is Slave Priority: 1
DR: 192.168.1.4 BDR: 192.168.1.3 MTU: 0
Neighbor is up for

DR: 192.168.1.4 BDR: 192.168.1.3 MTU: 0

DR: 192.168.1.4 BDR: 192.168.1.3 MTU: 0

Router 5 OSPF
When checking the neighbors of Device A, you can view the DR priority and the neighbor
status. By default, the DR priority is 1. Now Device D functions as the DR and Device C
functions as the BDR.
Step 3 Set the DR priority on each interface.
[~DeviceA] interface gigabitethernet 1/0/0
[~DeviceA-GigabitEthernet1/0/0] ospf dr-priority 100
[*DeviceA-GigabitEthernet1/0/0] commit
[~DeviceA-GigabitEthernet1/0/0] quit
[~DeviceB] interface gigabitethernet 1/0/0
[~DeviceB-GigabitEthernet1/0/0] ospf dr-priority 0
[*DeviceB-GigabitEthernet1/0/0] commit
[~DeviceB-GigabitEthernet1/0/0] quit
[~DeviceC] interface gigabitethernet 1/0/0
[~DeviceC-GigabitEthernet1/0/0] ospf dr-priority 2
[*DeviceC-GigabitEthernet1/0/0] commit
[~DeviceC-GigabitEthernet1/0/0] quit
# Display the status of the DR or BDR.

[~DeviceD] display ospf peer

Neighbors

DR: 192.168.1.4 BDR: 192.168.1.3 MTU: 0

DR: 192.168.1.4 BDR: 192.168.1.3 MTU: 0

DR: 192.168.1.4 BDR: 192.168.1.3 MTU: 0
Step 4 Restart the OSPF processes.

In the user view of each router, run the reset ospf 1 process command to restart the OSPF
process.
# Display the status of OSPF neighbors.

Router 5 OSPF
[~DeviceD] display ospf peer

Neighbors

DR: 192.168.1.1 BDR: 192.168.1.3 MTU: 0

State: 2-Way Mode:Nbr is Slave Priority: 0
DR: 192.168.1.1 BDR: 192.168.1.3 MTU: 0
Neighbor is up for

DR: 192.168.1.1 BDR: 192.168.1.3 MTU: 0
# Display the status of OSPF interfaces.

[~DeviceA] display ospf interface

Interface IP Address Type State Cost
GigabitEthernet1/0/0 192.168.1.1 Broadcast DR 1
[~DeviceB] display ospf interface

GigabitEthernet1/0/0 192.168.1.2 Broadcast DROther 1 100
If the neighbor is in the Full state, the device has established a neighbor relationship with its
neighbor. If the neighbor remains in the 2-Way state, neither of them is the DR or BDR. In
this case, they do not need to exchange LSAs.
If the status of the OSPF interface is DROther, the interface is neither DR nor BDR.
----End
Configuration Files
#
sysname DeviceA
#
router id 1.1.1.1
#
undo shutdown
ip address 192.168.1.1 255.255.255.0

Router 5 OSPF
ospf dr-priority 100

#
ospf 1
area 0.0.0.0
network 192.168.1.0 0.0.0.255
#
return

#
sysname DeviceB
#
router id 2.2.2.2
#
interface
shutdown
ip address 192.168.1.2
255.255.255.0 ospf dr-priority 0
#
ospf 1
area 0.0.0.0
network 192.168.1.0 0.0.0.255
#
return
#
sysname DeviceC
#
router id 3.3.3.3
#
interface
shutdown
ip address 192.168.1.3
255.255.255.0 ospf dr-priority 2
#
ospf 1
area 0.0.0.0
network 192.168.1.0 0.0.0.255
#
return
#
sysname DeviceD
#
router id 4.4.4.4
#
interface
shutdown
ip address 192.168.1.4 255.255.255.0
#
ospf 1
area 0.0.0.0
network 192.168.1.0 0.0.0.255
#
5.22.6 Example for Configuring OSPF Load Balancing

This section describes how to configure OSPF load balancing, including enabling load
balancing and setting priorities for equal-cost routes.
On the network shown in Figure 5-15, the requirements are as follows:

Router 5 OSPF
Device A, Device B, Device C, Device D, and Device E are connected to each other
through OSPF.
Device A, Device B, Device C, Device D, and Device E belong to Area 0.
Load balancing is configured so that the traffic from Device A to Device E is load-
balanced by Device C and Device D.
Figure 5-15 Networking for configuring OSPF load balancing

NOTE
Interface 1 to 4 in this example are GE 1/0/0, GE 2/0/0, GE 3/0/0 and GE 4/0/0, respectively.
Area0
DeviceB
10.1.1.2/24 192.168.0.1/24
10.1.1.1/24 192.168.0.2/24
DeviceC
interface1 10.1.2.1/24 192.168.1.2/24 interface1172.
DeviceA interface2 interface2 interfac
interface1 interface2 Device
Interface3 10.1.2.2/24 Interface3
192.168.1.1/24
10.1.3.1/24 192.168.2.2/24
DeviceD
10.1.3.2/24
192.168.2.1/24 interface1
interface2

2. Configure load balancing on Device A.
3. Set the priority for equal-cost routes on Device A.
4. Configure per-packet load balancing on Device A.
Data Preparation
To complete the configuration, you need the following data.
Data of Device A, including router ID (1.1.1.1), OSPF process ID (1), and network
segment addresses of Area 0 (10.1.1.0/24, 10.1.2.0/24 and 10.1.3.0/24)
Data of Device B, including router ID (2.2.2.2), OSPF process ID (1), and network
segment addresses of Area 0 (10.1.1.0/8 and 192.168.0.0/8)
Router 5 OSPF
Data of Device C, including router ID (3.3.3.3), OSPF process ID (1), and network
Data of Device D, including router ID (4.4.4.4), OSPF process ID (1), and network
Data of Device E, including router ID (5.5.5.5), OSPF process ID (1), and network
segment addresses of Area 0 (192.168.0.0/24, 192.168.1.0/24, 192.168.2.0/24, and
172.17.1.0/24)
Number of equal-cost routes for load balancing on Device A (2)
Next hop weights of the routes from Device A to Device B, Device C, and Device D (2,
1, and 1, respectively)
Procedure
this section.
OSPF Functions.
Step 3 Display the routing table of Device A.
As shown in the routing table, Device A has three valid next hops: Device B (10.1.1.2),
Device C (10.1.2.2), and Device D (10.1.3.2) because the default maximum number of equal-
cost routes is 6.
<DeviceA> display ip routing-table
Route Flags: R - relay, D - download
to fib, T - to vpn-instance, B - black hole route
----------------------------------------------------------------------------
Routing Tables : _public_
10.1.1.0/24 Direct 0 0 D 10.1.1.

10.1.1.1/32 Direct 0 0 D 127.0.0.
10.1.1.2/32 Direct 0 0 D 10.1.1.
10.1.2.0/24 Direct 0 0 D 10.1.2.
10.1.2.1/32 Direct 0 0 D 127.0.0.
10.1.2.2/32 Direct 0 0 D 10.1.2.
10.1.3.0/24 Direct 0 0 D 10.1.2.
10.1.3.1/32 Direct 0 0 D 127.0.0.
10.1.3.2/32 Direct 0 0 D 10.1.2.
192.168.0.0/24 OSPF 10 2 D 10.1.1.2
192.168.1.0/24 OSPF 10 2 D 10.1.2.2
192.168.2.0/24 OSPF 10 2 D 10.1.2.2
172.17.1.0/24 OSPF 10 3 D 10.1.1.2

Router 5 OSPF
OSPF 10 3 D 10.1.2.2
OSPF 10 3 D 10.1.3.2
Step 4 Set the maximum number of routes for load balancing to 2 on Device A.
[~DeviceA] ospf 1
[*DeviceA-ospf-1] maximum load-balancing 2
[~DeviceA-ospf-1] quit
# Display the routing table of Device A. You can view two routes for load balancing on
Device A, with Device B (10.1.1.2) and Device C (10.1.2.2) as the next hops.
[~DeviceA] display ip routing-table
----------------------------------------------------------------------------
10.1.1.0/24 Direct 0 0 D 10.1.1.

10.1.1.1/32 Direct 0 0 D 127.0.0.
10.1.1.2/32 Direct 0 0 D 10.1.1.
10.1.2.0/24 Direct 0 0 D 10.1.2.
10.1.2.1/32 Direct 0 0 D 127.0.0.
10.1.2.2/32 Direct 0 0 D 10.1.2.
10.1.3.0/24 Direct 0 0 D 10.1.2.
10.1.3.1/32 Direct 0 0 D 127.0.0.
10.1.3.2/32 Direct 0 0 D 10.1.2.
192.168.0.0/24 OSPF 10 2 D 10.1.1.2
192.168.1.0/24 OSPF 10 2 D 10.1.2.2
192.168.2.0/24 OSPF 10 2 D 10.1.2.2
172.17.1.0/24 OSPF 10 3 D 10.1.1.2
OSPF 10 3 D 10.1.2.2
Step 5 Set the priority for equal-cost routes on Device A.

[~DeviceA] ospf 1
[*DeviceA-ospf-1] nexthop 10.1.1.2 weight 2

# Display the routing table of Device A.

Router 5 OSPF
----------------------------------------------------------------------------
10.1.1.0/24 Direct 0 0 D 10.1.1.

10.1.1.1/32 Direct 0 0 D 127.0.0.
10.1.1.2/32 Direct 0 0 D 10.1.1.
10.1.2.0/24 Direct 0 0 D 10.1.2.
10.1.2.1/32 Direct 0 0 D 127.0.0.
10.1.2.2/32 Direct 0 0 D 10.1.2.
10.1.3.0/24 Direct 0 0 D 10.1.2.
10.1.3.1/32 Direct 0 0 D 127.0.0.
10.1.3.2/32 Direct 0 0 D 10.1.2.
192.168.0.0/24 OSPF 10 2 D 10.1.1.2
192.168.1.0/24 OSPF 10 2 D 10.1.2.2
192.168.2.0/24 OSPF 10 2 D 10.1.2.2
172.17.1.0/24 OSPF 10 3 D 10.1.2.2
OSPF 10 3 D 10.1.3.2
As shown in the routing table, the priority of the route with 10.1.2.2 and 10.1.3.2 as the next
hop addresses is higher than that of the route with 10.1.1.2 as the next hop address. Therefore,
Device A has only two valid next hops, Device C (10.1.2.2) and Device D (10.1.3.2).
----End
Configuration Files
#
sysname DeviceA
#
undo shutdown
ip address 10.1.1.1 255.255.255.0
#
undo shutdown
ip address 10.1.2.1 255.255.255.0
#
undo shutdown
ip address 10.1.3.1 255.255.255.0
#
ospf 1 router-id 1.1.1.1
maximum load-balancing 2
nexthop 10.1.1.2 weight 2
area 0.0.0.0
network 10.1.1.0 0.0.0.255

Router 5 OSPF
network 10.1.2.0 0.0.0.255

network 10.1.3.0 0.0.0.255
#
return

sysname DeviceB
#
interface
shutdown
ip address 10.1.1.2 255.255.255.0
#
interface
shutdown
ip address 192.168.0.1 255.255.255.0
#
ospf 1 router-id
2.2.2.2 area 0.0.0.0
network 10.1.1.0 0.0.0.255
network 192.168.0.0
0.0.255.255
#
sysname DeviceC
#
interface
shutdown
ip address 10.1.2.2 255.255.255.0
#
interface
shutdown
ip address 192.168.1.1 255.255.255.0
#
ospf 1 router-id
3.3.3.3 area 0.0.0.0
network 10.1.2.0 0.0.0.255
network 192.168.1.0
0.0.0.255
#
sysname DeviceD
#
interface
shutdown
ip address 10.1.3.2 255.255.255.0
#
interface
shutdown
ip address 192.168.2.1 255.255.255.0
#
ospf 1 router-id
4.4.4.4 area 0.0.0.0
network 10.1.3.0 0.0.0.255
network 192.168.2.0
0.0.0.255
#
sysname DeviceE
#
interface
shutdown
ip address 192.168.0.2 255.255.255.0

Router 5 OSPF
undo shutdown
ip address 192.168.1.2 255.255.255.0
#
undo shutdown
ip address 192.168.2.2 255.255.255.0
#
undo shutdown
ip address 172.17.1.1 255.255.255.0
#
area 0.0.0.0
network 192.168.0.0 0.0.255.255
network 192.168.1.0 0.0.0.255
network 192.168.2.0 0.0.0.255
network 172.17.1.0 0.0.0.255
#
return
5.22.7 Example for Configuring OSPF Fast Convergence

This section describes how to configure OSPF fast convergence by adjusting the timer
parameter and configuring BFD.
On the network shown in Figure 5-16, on the broadcast network, OSPF runs on the four
devices, which belong to the same OSPF area.
Figure 5-16 Networking for configuring OSPF fast convergence

NOTE
Interface 1 in this example is GE 1/0/0.

DeviceA DeviceB
192.168.1.1/24 192.168.1.2/24
interface1
interface1
192.168.1.3/24
DeviceC DeviceD
Precautions
When configuring OSPF fast convergence, note the following rules:
You can decrease the interval at which Hello packets are sent and values of the Dead,
Poll, and Wait timers for fast OSPF network convergence. Frequent packet transmission,
however, may overload the device. In addition, the OSPF network convergence slows

Router 5 OSPF
down if the values of these timers are too large. Therefore, set values based on the
network stability.
The intervals at which Hello packets are sent and values of the Dead, Poll, and Wait
timers at both ends must be the same. Otherwise, the OSPF neighbor relationship cannot
be established.
2. Configure the BFD function on each router.
3. Adjust the holddown time of the OSPF neighbors on each router.
4. Configure the Smart-discover function on each router.
5. Adjust the intervals for configuration update, LSA reception, and SPF calculation
through an intelligent timer on each router.
Data Preparation
Holddown time of the OSPF neighbors
Intervals for LSA update, LSA reception, and SPF calculation
Procedure
this section.
OSPF Functions.
Step 3 Adjust the holddown time of the OSPF neighbors on each router.
[*DeviceA-GigabitEthernet1/0/0] ospf timer dead 30
NOTE
The holddown time of neighbors of the OSPF-capable interfaces must be longer than the interval at
which Hello packets are sent, and the values of dead interval on the routers in the same network
segment must be the same.
In this configuration example, the following configurations on each router are the same as that on
Device A. For configuration details, see "Configuration Files" in this section.
– Adjust the holddown time of the OSPF neighbors on each router.
– Configure the Smart-discover function on each router.
– Adjust the intervals for configuration update, LSA reception, and SPF calculation through an
intelligent timer on the router.
Step 4 Configure the Smart-discover function on each router.

[*DeviceA-GigabitEthernet1/0/0] ospf smart-discover

Router 5 OSPF
Step 5 Configure the BFD function on each router.
[*DeviceA] bfd
[*DeviceA-bfd] quit
[*DeviceA] ospf
[*DeviceA-ospf-1] bfd all-interfaces enable
Step 6 Adjust the intervals for configuration update, LSA reception, and SPF calculation through an
intelligent timer on each router.
[~DeviceA] ospf 1
[*DeviceA-ospf-1] lsa-originate-interval intelligent-timer 3000 200 500
[*DeviceA-ospf-1] lsa-arrival-interval intelligent-timer 3000 200 500
[*DeviceA-ospf-1] spf-schedule-interval intelligent-timer 3000 200 500
# Run the display ospf brief command on each router to view the brief information about
OSPF. Use Router A as an example. You can view the value of timers.
[~DeviceA] display ospf brief
RFC 1583 Compatible
bfd enabled

Interface: 1.1.1.1 (GE3/0/1)

Priority: 1

Router 5 OSPF

----End
Configuration Files
#
sysname DeviceA
#
router id 1.1.1.1
#
bfd
#
undo shutdown
ip address 192.168.1.1 255.255.255.0
ospf timer dead 30
ospf smart-discover
#
ospf 1
bfd all-interfaces enable
spf-schedule-interval intelligent-timer 3000 200 500
lsa-arrival-interval intelligent-timer 3000 200 500
lsa-originate-interval intelligent-timer 3000 200 500
area 0.0.0.0
network 192.168.1.0 0.0.0.255
#
return

#
sysname DeviceB
#
router id 2.2.2.2
#
bfd
#
undo shutdown
ip address 192.168.1.2 255.255.255.0
ospf timer dead 30
ospf smart-discover
#
ospf 1
area 0.0.0.0
network 192.168.1.0 0.0.0.255
#
return

#
sysname DeviceC
#
router id 3.3.3.3
#
bfd
#
undo shutdown
ip address 192.168.1.3 255.255.255.0
ospf timer dead 30
ospf smart-discover

Router 5 OSPF
#
ospf 1
area 0.0.0.0
network 192.168.1.0 0.0.0.255
#
return
#
sysname DeviceD
#
router id 4.4.4.4
#
bfd
#
undo shutdown
ip address 192.168.1.4 255.255.255.0
ospf timer dead 30
ospf smart-discover
#
ospf 1
area 0.0.0.0
network 192.168.1.0 0.0.0.255
#
return
5.22.8 Example for Configuring OSPF Local MT

This section provides an example for configuring OSPF local multicast topology (MT).
When multicast and an Interior Gateway Protocol (IGP) Shortcut-enabled Multiprotocol
Label Switching (MPLS) traffic engineering (TE) tunnel are configured on a network, the
outbound interface of the route calculated by an IGP may not be a physical interface but a TE
tunnel interface. The TE tunnel interface on the Device sends multicast Join packets over a
unicast route to the multicast source address. The multicast Join packets are transparent to the
Device through which the TE tunnel passes. As a result, the Device through which the TE
tunnel passes cannot generate multicast forwarding entries.
On the network shown in Figure 5-17, Device A, Device B, Device C, Device D, and Device
E are running OSPF. Device B and Device D set up an MPLS TE tunnel with the tunnel
interface Tunnel 10, and IGP Shortcut is enabled on Tunnel 10 of Device B. The outbound
interface calculated by Device B may be the TE tunnel interface, not the physical interface
GE 2/0/0. Tunnel 10 on Device B sends multicast Join packets over a unicast route to the
multicast source address. The multicast Join packets are transparent to Device C through
which the TE tunnel passes. As a result, Device C cannot generate multicast forwarding
entries.
To resolve the problem, enable OSPF local MT on Device B. After local MT is enabled, if the
outbound interface of a calculated route is an IGP Shortcut-enabled TE tunnel interface, the
route management (RM) module creates an independent Multicast IGP (MIGP) routing table
for the multicast protocol, calculates a physical outbound interface for the route, and adds the
route to the MIGP routing table. Multicast packets are then forwarded along this route.

Router 5 OSPF
Figure 5-17 Configuring local OSPF MT

NOTE
Interface 1 and interface 2 in this example are GE 1/0/0, and GE 2/0/0, respectively.
Client Server
172.16.1.2/24 192.168.3.2/24
172.16.1.1/24 192.168.3.1/24
DeviceA DeviceE
10.0.0.1/24 10.0.3.2/24
10.0.0.2/24 interface1 interface2 10.0.3.1/24
10.0.1.1/24 10.0.2.2/24
DeviceB DeviceD
10.0.1.2/24 DeviceC 10.0.2.1/24
Tunnel10
1. Enable OSPF and configure basic OSPF functions on each Device.

2. Enable PIM-SM on each Device.
3. Configure an MPLS Resource Reservation Protocol (RSVP)-TE tunnel.
4. Configure an MPLS TE tunnel and enable IGP Shortcut for it on Device B.
5. Enable OSPF local MT on Device B.
Data Preparation
To complete the configuration, you need the IP address of each interface on each Router, as
shown in Table 5-5.
Table 5-5 IP address of each interface

Device IP Address of Loopback 0
Device A 1.1.1.1/32
Device B 2.2.2.2/32
Device C 3.3.3.3/32
Device D 4.4.4.4/32

Router 5 OSPF
Device IP Address of Loopback 0
Device E 5.5.5.5/32
The TE tunnel interface Tunnel 10 uses the IP address of Loopback 0 and runs the MPLS
TE protocol. The destination address of the TE tunnel is 4.4.4.4, and the tunnel ID is
100. The TE tunnel uses RSVP-TE as a signaling protocol.
Procedure
Step 1 Assign an IP address to each interface.
Figure 5-17 shows how to assign an IP address to each interface. For configuration details,
see Configuration Files in this section.
Configuring Basic OSPF Functions shows how to configure basic OSPF functions. For
configuration details, see Configuration Files in this section.
Step 3 Configure Protocol Independent Multicast-Sparse Mode (PIM-SM).
# Enable PIM-SM on Device A.
[*DeviceA] multicast routing-enable
[~DeviceA] interface Gigabitethernet 2/0/0 [~DeviceA-
GigabitEthernet2/0/0] pim sm [*DeviceA-GigabitEthernet2/0/0]
quit [*DeviceA] interface Gigabitethernet 1/0/0 [*DeviceA-
GigabitEthernet1/0/0] pim sm [*DeviceA-GigabitEthernet1/0/0]
commit [~DeviceA-GigabitEthernet1/0/0] quit
NOTE
Enable PIM-SM on each Device. The configurations for Device B, Device C, Device D, and Device E are similar to those on D
A. For configuration details, see Configuration Files in this section.
# Enable Internet Group Management Protocol (IGMP) on GE 1/0/0 of Device A.

[~DeviceA] interface Gigabitethernet 1/0/0
[~DeviceA-GigabitEthernet1/0/0] igmp enable [*DeviceA-
GigabitEthernet1/0/0] igmp version 3 [*DeviceA-
GigabitEthernet1/0/0] commit [~DeviceA-GigabitEthernet1/0/0] quit
# Configure a C-BSR and a C-RP. Configure a C-BSR and a C-RP on Device D.

[*DeviceD] pim
[*DeviceD-pim] c-bsr Gigabitethernet 1/0/0 [*DeviceD-pim] c-rp
Gigabitethernet 1/0/0 [*DeviceD-pim] commit
[~DeviceD-pim] quit
# Check the multicast routing table on Device C.

[~DeviceC] display multicast routing-table
Multicast routing table of VPN-Instance: public net
Total 3 entries
00001. (192.168.3.8, 224.31.31.31) Uptime: 15:03:04

Upstream Interface: GigabitEthernet2/0/0
List of 1 downstream interface
1: GigabitEthernet1/0/0

Router 5 OSPF
00002. (192.168.3.9, 224.31.31.31)

Uptime: 15:03:04
00003. (192.168.3.10, 224.31.31.31)

Uptime: 15:03:04
The preceding command output shows information about the multicast routing table on
Device C.
Step 4 Configure an MPLS RSVP-TE tunnel.
[*DeviceB] mpls lsr-id 2.2.2.2
[*DeviceB] mpls [*DeviceB-
mpls] mpls te [*DeviceB-
mpls] mpls rsvp-te
[*DeviceB-mpls] mpls te cspf
[*DeviceB-mpls] commit
[*DeviceB-mpls] quit
[*DeviceB] interface Gigabitethernet 2/0/0
[*DeviceB-GigabitEthernet2/0/0] mpls
[*DeviceB-GigabitEthernet2/0/0] mpls te
[*DeviceB-GigabitEthernet2/0/0] mpls rsvp-te
[*DeviceB-GigabitEthernet2/0/0] quit
[*DeviceB] ospf 1
[*DeviceB-ospf-1] enable traffic-adjustment
[*DeviceB-ospf-1] opaque-capability enable
[*DeviceB-ospf-1] area 0.0.0.0
[*DeviceB-ospf-1-area-0.0.0.0] mpls-te enable
[*DeviceC] mpls lsr-id 3.3.3.3
[*DeviceC] mpls [*DeviceC-
mpls] mpls te [*DeviceC-
mpls] mpls rsvp-te
[*DeviceC-mpls] commit
[*DeviceC-mpls] quit
[*DeviceC] interface Gigabitethernet 1/0/0
[*DeviceC-GigabitEthernet1/0/0] mpls
[*DeviceC-GigabitEthernet1/0/0] mpls te
[*DeviceC-GigabitEthernet1/0/0] mpls rsvp-te
[*DeviceC-GigabitEthernet1/0/0] quit
[*DeviceC] interface Gigabitethernet 2/0/0
[*DeviceC-GigabitEthernet2/0/0] mpls
[*DeviceC-GigabitEthernet2/0/0] mpls te
[*DeviceC-GigabitEthernet2/0/0] mpls rsvp-te
[*DeviceC] ospf 1
[*DeviceC-ospf-1] opaque-capability enable
[*DeviceC-ospf-1] area 0.0.0.0
[*DeviceC-ospf-1-area-0.0.0.0] mpls-te enable
[*DeviceC-ospf-1-area-0.0.0.0] quit

Router 5 OSPF
[*DeviceD] mpls lsr-id 4.4.4.4

[*DeviceD] mpls [*DeviceD-
mpls] mpls te [*DeviceD-
mpls] mpls rsvp-te
[*DeviceD-mpls] commit
[*DeviceD-mpls] quit
[*DeviceD] interface Gigabitethernet 1/0/0
[*DeviceD-GigabitEthernet1/0/0] mpls
[*DeviceD-GigabitEthernet1/0/0] mpls te
[*DeviceD-GigabitEthernet1/0/0] mpls rsvp-te
[*DeviceD-GigabitEthernet1/0/0] commit
[*DeviceD-GigabitEthernet1/0/0] quit
[*DeviceD] ospf 1
[*DeviceD-ospf-1] opaque-capability enable
[*DeviceD-ospf-1] area 0.0.0.0
[*DeviceD-ospf-1-area-0.0.0.0] mpls-te enable
[*DeviceD-ospf-1-area-0.0.0.0] quit
Step 5 Configure an MPLS TE tunnel and enable IGP Shortcut.
# Configure an MPLS TE tunnel and enable IGP Shortcut for it on Device B.

[*DeviceB] interface Tunnel 10
[*DeviceB-Tunnel10] ip address unnumbered interface loopback 0
[*DeviceB-Tunnel10] tunnel-protocol mpls te
[*DeviceB-Tunnel10] destination 4.4.4.4
[*DeviceB-Tunnel10] mpls te tunnel-id 100
[*DeviceB-Tunnel10] mpls te igp shortcut ospf
[*DeviceB-Tunnel10] mpls te igp metric relative -10
[*DeviceB-Tunnel10] commit
[*DeviceB-Tunnel10] quit
# Check the OSPF routing table on Device B. Information shows that an MPLS TE tunnel has
been set up.
[*DeviceB] display ip routing-table
----------------------------------------------------------------------------
Destination/Mask Proto Pre Cost Flags NextHop Interf

2.2.2.2/32 Direct 0 0 D 127.0.0.1 InLoop
3.3.3.3/32 OSPF 10 1 D 10.0.1.1
4.4.4.4/32 OSPF 10 1 D 2.2.2.2 Tunnel10
5.5.5.5/32 OSPF 10 2 D 2.2.2.2 Tunnel10
10.0.0.0/24 Direct 0 0 D 10.0.0.2
10.0.1.0/24 Direct 0 0 D 10.0.1.2
10.0.2.0/24 OSPF 10 2 D 10.0.1.1
OSPF 10 2 D 10.0.1.1 Tunnel10
10.0.3.0/24 OSPF 10 2 D 2.2.2.2 Tunnel10
172.16.1.0/24 OSPF 10 2 D 10.0.0.1
192.168.3.0/24 OSPF 10 3 D 2.2.2.2 Tunnel10

[*DeviceC] display multicast routing-table

Router 5 OSPF
No multicast routing entry is displayed in the multicast routing table on Device C, indicating
that Device C has discarded multicast packets.
Step 6 Enable OSPF local MT.
# Enable OSPF local MT on Device B.
[*DeviceB] ospf
[*DeviceB-ospf-1] local-mt enable

[*DeviceC] display multicast routing-table
Multicast routing table of VPN-Instance: public net
Total 3 entries
00001. (192.168.3.8, 224.31.31.31)

Uptime: 00:00:19
00002. (192.168.3.9, 224.31.31.31)

Uptime: 00:00:19
00003. (192.168.3.10, 224.31.31.31)

Uptime: 00:00:19
The preceding command output shows information about the multicast routing table on
Device C.
----End
Configuration Files
#
sysname DeviceA
#
router id 1.1.1.1
#
multicast routing-enable
#
undo shutdown
ip address 10.0.0.1 255.255.255.0
pim sm
igmp version 3
#
undo shutdown
ip address 172.16.1.1 255.255.255.0
pim sm
igmp enable
#
interface LoopBack0
ip address 1.1.1.1 255.255.255.255

Router 5 OSPF
#
ospf 1
area 0.0.0.0
network 172.16.1.0 0.0.0.255
network 10.0.0.0 0.0.0.255
#
return
#
sysname DeviceB
#
router id 2.2.2.2
#
#
mpls lsr-id 2.2.2.2
mpls
mpls te
mpls rsvp-te
mpls te cspf
#
ospf 1
opaque-capability enable
enable traffic-adjustment
local-mt enable
area 0.0.0.0
network 10.0.0.0 0.0.0.255
network 10.0.1.0 0.0.0.255
network 2.2.2.2 0.0.0.0
mpls-te enable
#
undo shutdown
ip address 10.0.0.2 255.255.255.0
pim sm
#
undo shutdown
ip address 10.0.1.2 255.255.255.0
pim sm
mpls
mpls te
mpls rsvp-te
#
interface LoopBack0
ip address 2.2.2.2 255.255.255.255
pim sm
#
interface Tunnel10
ip address unnumbered interface LoopBack0
tunnel-protocol mpls te
destination 4.4.4.4
mpls te tunnel-id 100
mpls te igp shortcut ospf
mpls te igp metric relative -10
#
pim
C-BSR LoopBack0
C-RP LoopBack0
#
return
#
sysname DeviceC
#
#
mpls lsr-id 3.3.3.3

Router 5 OSPF
mpls
mpls te
mpls rsvp-te
#
ospf 1
area 0.0.0.0
network 10.0.1.0 0.0.0.255
network 10.0.2.0 0.0.0.255
network 3.3.3.3 0.0.0.0
mpls-te enable
#
undo shutdown
ip address 10.0.1.1 255.255.255.0
pim sm
mpls
mpls te
mpls rsvp-te
#
undo shutdown
ip address 10.0.2.2 255.255.255.0
pim sm
mpls
mpls te
mpls rsvp-te
#
interface LoopBack0
undo shutdown
ip address 3.3.3.3 255.255.255.255
#
return
#
sysname DeviceD
#
router id 4.4.4.4
#
#
mpls lsr-id 4.4.4.4
mpls
mpls te
mpls rsvp-te
#
undo shutdown
ip address 10.0.3.1 255.255.255.0
pim sm
#
undo shutdown
ip address 10.0.2.1 255.255.255.0
pim sm
mpls
mpls te
mpls rsvp-te
#
interface LoopBack0
ip address 4.4.4.4 255.255.255.255
pim sm
#
ospf 1
area 0.0.0.0
network 10.0.2.0 0.0.0.255
network 10.0.3.0 0.0.0.255
network 4.4.4.4 0.0.0.0

Router 5 OSPF
mpls-te enable
#
pim
C-BSR GigabitEthernet1/0/0
C-RP GigabitEthernet1/0/0
#
return

#
sysname DeviceE
#
router id 5.5.5.5
#
#
undo shutdown
ip address 10.0.3.2 255.255.255.0
pim sm
#
undo shutdown
ip address 192.168.3.1 255.255.255.0
pim sm
#
interface LoopBack0
ip address 5.5.5.5 255.255.255.255
pim sm
#
ospf 1
area 0.0.0.0
network 10.0.3.0 0.0.0.255
network 192.168.3.0 0.0.0.255
network 5.5.5.5 0.0.0.0
#
return
5.22.9 Example for Configuring OSPF IP FRR

This section describes how to configure OSPF IP FRR with an example, including how to
block FRR on certain interfaces to prevent the links connected to these interfaces from
functioning as backup links and how to bind OSPF IP FRR to a BFD session.
When a fault occurs on the primary link T, traffic is switched to a backup link. In such a
scenario, two problems arise:
It takes hundreds of milliseconds for the traffic to be switched to a backup link. During
this period, services are interrupted.
Traffic may be switched to the link that passes through Device A. Device A is an ASBR
and is not expected to function as a backup device.
If a fault occurs on the network, OSPF IP FRR can fast switch traffic to the backup link
without waiting for route convergence. This ensures uninterrupted traffic transmission. In
addition, you can also prevent the link which passes through Device A from functioning as
the backup link.
On the network shown in Figure 5-18:
All routers run OSPF.
The link cost meets the OSPF IP FRR traffic protection inequality.

Router 5 OSPF
If the primary link T fails, Device S immediately switches traffic to the backup link
which passes through Device N.
Based on the network planning, the link which passes through Device A does not
function as an FRR backup link.
Figure 5-18 Networking for configuring OSPF IP FRR

NOTE
Interface 1, interface 2, interface 3, interface 4 in this example are GE 1/0/0, GE 2/0/0, GE 3/0/0, GE
1/0/1, respectively.
IS-IS
Network
OSPF Network
Area0
DeviceA
ASBR interface1 DeviceD
interface1
LinkT cost=5
interface3 cost = 15 interface3 interface4
DeviceS DeviceE OSPF Network
Area1
interface1 GE2/0/0
DeviceN
Precautions
When configuring OSPF IP FRR, note the following points:
Before configuring OSPF IP FRR, block FRR on certain interfaces to prevent the links
connected to these interfaces from functioning as backup links. After that, the link where the
interface resides is not calculated as a backup link during FRR calculation.
During the configuration of OSPF IP FRR, the lower layer needs to fast respond to a link
change so that traffic can be rapidly switched to the backup link. After the bfd all-interfaces
frr-binding command is run, the BFD session status is associated with the link status of an
interface so that link faults can be rapidly detected.
1. Configure basic OSPF functions on each router.
2. Configure BFD for OSPF on all the devices in Area 0.
3. Set the costs of links to ensure that link T is selected to transmit traffic.
4. Block FRR on a specified interface of Device S.
5. Enable OSPF IP FRR on Device S to protect the traffic forwarded by Device S.

Router 5 OSPF
Data Preparation
Device Router ID Interface IP Address
Device S 1.1.1.1 GE 1/0/0 10.1.1.1/24
GE 2/0/0 10.1.2.1/24
GE 3/0/0 10.1.3.1/24
Device A 2.2.2.2 GE 1/0/0 10.1.1.2/24
GE 2/0/0 10.2.1.2/24
Device N 3.3.3.3 GE 1/0/0 10.1.3.2/24
GE 2/0/0 10.2.3.2/24
Device E 4.4.4.4 GE 1/0/0 10.2.1.1/24
GE 2/0/0 10.1.2.2/24
GE 3/0/0 10.2.3.1/24
GE 1/0/1 172.17.1.1/24
Procedure
this section.
Step 2 Configure basic OSPF functions. For details, see Example for Configuring Basic OSPF
Functions.
Step 3 Configure BFD for OSPF on all the devices in Area 0. For details, see Example for
Configuring BFD for OSPF.
Step 4 Set the costs of links to ensure that link T is selected to transmit traffic.
# Configure Device S.
[~DeviceS] interface gigabitethernet1/0/0
[~DeviceS-GigabitEthernet1/0/0] ospf cost 10
[*DeviceS-GigabitEthernet1/0/0] quit
[*DeviceS] commit
[~DeviceA] interface gigabitethernet2/0/0
[~DeviceA-GigabitEthernet2/0/0] ospf cost 15
[*DeviceA-GigabitEthernet2/0/0] quit
[*DeviceA] commit

Router 5 OSPF
# Configure Device N.
[~DeviceN] interface gigabitethernet2/0/0

[~DeviceN-GigabitEthernet2/0/0] ospf cost
10 [*DeviceN-GigabitEthernet2/0/0] quit
[*DeviceN] commit
Step 5 Block FRR on a specified interface of Device S.

[~DeviceS-GigabitEthernet1/0/0] ospf frr block
[*DeviceS] commit
Step 6
Enable OSPF IP FRR on Device S.
# Enable OSPF IP FRR on Device S.
[~DeviceS] ospf
[*DeviceS-ospf-1] frr
[*DeviceS-ospf-1-frr] loop-free-alternate
[*DeviceS-ospf] commit
Step 7
Verify the configuration.
# Run the display ospf routing router-id command on Device S to view routing
information.
[~DeviceS-ospf-1-frr] display ospf routing router-id 4.4.4.4
Destination : 4.4.4.4 Route Type : Intra-area

Area : 0.0.0.1 AdvRouter : 4.4.4.4
Type :
ASBR URT Cost :
59
NextHop : 10.2.2.1. Interface : GE2/0/0
Backup Nexthop : 10.1.3.2 Backup Interface : GE3/0/0
The preceding display shows that a backup route is generated on Device S.
----End
Configuration Files
Device S configuration file
#
sysname DeviceS
#
bfd
#
ip address 10.1.1.1 255.255.255.0
ospf cost 5
#
ip address 10.1.2.1 255.255.255.0
ospf cost 15
#
ip address 10.1.3.1 255.255.255.0
ospf frr block
ospf cost 10
#
interface LoopBack0
ip address 1.1.1.1 255.255.255.255
#

Router 5 OSPF

bfd all-interfaces frr-binding
frr
loop-free-alternate
area 0.0.0.1
network 10.1.1.0 0.0.0.255
network 10.1.2.0 0.0.0.255
network 10.1.3.0 0.0.0.255
#
return
#
sysname DeviceA
#
bfd
#
ip address 10.1.1.2 255.255.255.0
ospf cost 5
#
ip address 10.2.1.2 255.255.255.0
ospf cost 5
#
interface LoopBack0
ip address 2.2.2.2 255.255.255.255
#
frr
loop-free-alternate
area 0.0.0.1
network 10.1.1.0 0.0.0.255
network 10.2.2.0 0.0.0.255
#
return
Device N configuration file
#
sysname DeviceN
#
bfd
#
ip address 10.1.3.2 255.255.255.0
ospf cost 10
#
ip address 10.2.3.2 255.255.255.0
ospf cost 10
#
interface LoopBack0
ip address 3.3.3.3 255.255.255.255
#
frr
area 0.0.0.1
network 10.1.3.0 0.0.0.255
network 10.2.3.0 0.0.0.255
#
return
#
sysname DeviceE
#

Router 5 OSPF
bfd
#
ip address 10.2.1.1 255.255.255.0
#
ip address 10.1.2.2 255.255.255.0
#
ip address 10.2.3.1 255.255.255.0
#
ip address 172.17.1.1 255.255.255.0
ospf cost 5
#
interface LoopBack0
ip address 4.4.4.4 255.255.255.255
#
area 0.0.0.1
network 10.1.1.0 0.0.0.255
network 10.1.2.0 0.0.0.255
network 10.1.3.0 0.0.0.255
network 172.17.1.0 0.0.0.255
#
return
5.22.10 Example for Configuring BFD for OSPF

This section describes how to configure BFD for OSPF. After BFD for OSPF is configured,
BFD can fast detect link faults and report them to OSPF so that service traffic can be
transmitted through the backup link.
OSPF enables the router to periodically send Hello packets to a neighboring router for fault
detection. Detecting a fault takes more than 1s. With the development of technologies, voice,
video, and other VOD services are widely used. These services are quite sensitive to packet
loss and delays. When traffic is transmitted at gigabit rates, long-time fault detection will
cause packet loss. This cannot meet high reliability requirements of the carrier-class network.
BFD for OSPF is used to resolve the problem. After BFD for OSPF is configured, the link
status can be rapidly detected and fault detection can be completed in milliseconds. This
speeds up OSPF convergence when the link status changes.
For example, as shown in Figure 5-19, the primary link Device A -> Device B and the
secondary link Device A -> Device C -> Device B are deployed on the network. Traffic is
transmitted on the primary link normally. When the primary link becomes faulty, the Device
is expected to rapidly detect the fault and switch traffic to the secondary link.
You can configure BFD for OSPF to detect the OSPF neighbor relationship between Device A
and Device B. When the link between Device A and Device B fails, BFD can rapidly detect
the failure and report it to OSPF. Traffic is then switched to the secondary link.
Figure 5-19 Networking for configuring BFD for OSPF

NOTE
Interface 1, interface 2, interface 3 in this example are GE 1/0/0, GE 2/0/0, and GE 3/0/0, respectively.

Router 5 OSPF
DeviceAinterface2 DeviceB interface3

3.3.3.1/24 172.16.1.1/24
interface2
interface1 3.3.3.2/24 interface1
1.1.1.1/24 2.2.2.2/24
1.1.1.2/24 2.2.2.1/24
DeviceC Area0
Precautions
None
2. Enable global BFD.
3. Enable OSPF BFD on Device A and Device B.
Data Preparation
Data of Device A, including the router ID (1.1.1.1), OSPF process number (1), and
network segment addresses of Area 0 (3.3.3.0/24 and 1.1.1.0/24)
Data of Device B, including the router ID (2.2.2.2), OSPF process number (1), and
network segment addresses of Area 0 (3.3.3.0/24, 2.2.2.0/24, and 172.16.1.0/24)
Data of Device C, including the router ID (3.3.3.3), OSPF process number (1), and
network segment addresses of Area 0 (1.1.1.0/24 and 2.2.2.0/24)
Minimum interval at which BFD packets are received and sent and local detection
multiplier on Device A and Device B
Procedure
this section.
[*DeviceA] ospf 1

Router 5 OSPF

[*DeviceB] ospf 1
[~DeviceB-ospf-1-area-0.0.0.0] quit
[*DeviceC] ospf 1
# After the preceding configurations, run the display ospf peer command. You can view that
a neighbor relationship is established between Device A and Device B, and between Device B
and Device C. Use the command output Device A as an example.
<DeviceA> display ospf peer

Neighbors

DR: 3.3.3.1 BDR: 3.3.3.2 MTU: 0

DR: 1.1.1.1 BDR: 1.1.1.2 MTU: 0
# Display information about the OSPF routing table on Device A, and you can view the
routing entries to Device B and Device C. The next hop address of the route to 172.16.1.0/24
is 3.3.3.2, and service traffic is transmitted on the primary link.
<DeviceA> display ospf routing

Routing Tables
Routing for Network

2.2.2.0/24 2 Stub 1.1.1.2 3.3.3.3 0.0.
172.16.1.0/24 2 Stub 3.3.3.2 2.2.2.2 0.0.
Total Nets: 2

Router 5 OSPF
Step 3 Configure OSPF BFD.

# Enable global BFD on Device A.
[*DeviceA] bfd
[*DeviceA-bfd] quit
[*DeviceA] ospf
[*DeviceA-ospf-1] bfd all-interfaces enable
# Enable global BFD on Device B.

[*DeviceB] bfd
[*DeviceB-bfd] quit
[*DeviceB] ospf
[*DeviceB-ospf-1] bfd all-interfaces enable
[~DeviceB-ospf-1] quit
# Enable global BFD on Device C.

[*DeviceC] bfd
[*DeviceC-bfd] quit
[*DeviceC] ospf
[*DeviceC-ospf-1] bfd all-interfaces enable
[*DeviceC-ospf-1] commit
[~DeviceC-ospf-1] quit
# After the preceding configurations, run the display ospf bfd session all command on
Device A, Device B, or Device C. You can view that the BFD session is
Up. Use the command output Device A as an example.
[~DeviceA] display ospf bfd session all
OSPF Process 1 with Router ID
1.1.1.1
Area 0.0.0.0 interface 1.1.1.1(GE1/0/0)'s BFD Sessions
NeighborId:2.2.2.2 AreaId:0.0.0.0 Interface:GE1/0/0

BFDState:up rx :1000 tx :1000
Multiplier:3 BFD Local Dis:0 LocalIpAdd:1.1.1.1
RemoteIpAdd:1.1.1.2 Diagnostic Info:0
NeighborId:3.3.3.3 AreaId:0.0.0.0 Interface:GE2/0/0

Step 4 Configure BFD on an interface.
# Configure BFD on GigabitEthernet 2/0/0 of Device A. Set the minimum intervals at
which packets are received and sent to 500 ms and the local detection multiplier to 4.
[~DeviceA-GigabitEthernet2/0/0] ospf bfd enable
[*DeviceA-GigabitEthernet2/0/0] ospf bfd min-tx-interval 500 min-rx-interval
500 detect-multiplier 4
# Configure BFD on GigabitEthernet 2/0/0 of Device B. Set the minimum intervals at

which packets are received and sent to 500 ms and the local detection multiplier to 4.
[~DeviceB-GigabitEthernet2/0/0] ospf bfd enable
[*DeviceB-GigabitEthernet2/0/0] ospf bfd min-tx-interval 500 min-rx-interval
500 detect-multiplier 4

Router 5 OSPF
[~DeviceB-GigabitEthernet2/0/0] quit
# After the preceding configurations, run the display ospf bfd session all command on
Device A or Device B. You can check that the minimum intervals at which packets are
sent and received are 500 ms and that the local detection multiplier is 4.
Use the command output Device B as an example.
[~DeviceB] display ospf bfd session all
OSPF Process 1 with Router ID

2.2.2.2
NeighborId:1.1.1.1 AreaId:0.0.0.0 Interface: GE2/0/00

NeighborId:3.3.3.3 AreaId:0.0.0.0 Interface: GE1/0/0

# Run the shutdown command on GigabitEthernet 2/0/0 of Device B to simulate a
primary link failure.
[*DeviceB] interface gigabitethernet 2/0/0
[*DeviceB-GigabitEthernet2/0/0] shutdown
# Display the routing table on Device A. You can view that the backup link takes effect
after the primary link fails and that the next hop address of the route to 172.16.1.0/24 is
1.1.1.2.
<DeviceA> display ospf routing

Routing Tables
Routing for Network

2.2.2.0/24 2 Stub 1.1.1.2 3.3.3.3
0.0.0.0
172.16.1.0/24 3 Stub 1.1.1.2 2.2.2.2
0.0.0.0
Total Nets: 2
----End
Configuration Files
#
sysname DeviceA
#
router id 1.1.1.1
#
bfd
#
undo shutdown
ip address 1.1.1.1 255.255.255.0
#

Router 5 OSPF
undo shutdown
ip address 3.3.3.1 255.255.255.0
ospf bfd enable
ospf bfd min-tx-interval 500 min-rx-interval 500 detect-multiplier 4
#
ospf 1
area 0.0.0.0
network 3.3.3.0 0.0.0.255
network 1.1.1.0 0.0.0.255
#
return

#
sysname DeviceB
#
router id 2.2.2.2
#
bfd
#
undo shutdown
ip address 2.2.2.2 255.255.255.0
#
undo shutdown
ip address 3.3.3.2 255.255.255.0
ospf bfd enable
ospf bfd min-tx-interval 500 min-rx-interval 500 detect-multiplier 4
#
undo shutdown
ip address 172.16.1.1 255.255.255.0
#
ospf 1
area 0.0.0.0
network 3.3.3.0 0.0.0.255
network 2.2.2.0 0.0.0.255
network 172.16.1.0 0.0.0.255
#
return

#
sysname DeviceC
#
router id 3.3.3.3
#
bfd
#
undo shutdown
ip address 1.1.1.2 255.255.255.0
#
undo shutdown
ip address 2.2.2.1 255.255.255.0
ospf bfd enable
#
ospf 1
area 0.0.0.0
network 1.1.1.0 0.0.0.255
network 2.2.2.0 0.0.0.255
#
return

Router 5 OSPF
5.22.11 Example for Configuring OSPF-BGP Synchronization

This section describes how to configure OSPF-BGP synchronization to minimize the impact
of device restart on BGP services on the network.
On the network shown in Figure 5-20, all devices run BGP. An EBGP connection is set up
between Device D and Device E. IBGP connections are set up between devices in AS 10, and
OSPF is used as an IGP protocol.
OSPF-BGP synchronization is required on Device B so that the restart of Device B does not
interrupt the traffic from Device A to AS 20.
Figure 5-20 Networking for configuring OSPF-BGP synchronization

NOTE
Interface 1, interface 2, interface 3 in this example are GE 1/0/0, GE 2/0/0, and GE 3/0/0, respectively.
DeviceC AS 20
interface2 interface1 DeviceF
10.1.2.2/30 10.1.4.1/30
interface1
interface1 10.3.1.2/30
interface2
10.1.2.1/30 10.1.4.2/30 interface2
10.3.1.1/30
DeviceA DeviceD EBGP
DeviceE
interface3
interface1 10.2.1.1/30
10.1.1.1/30 interface2 interface1
10.1.3.2/30 10.2.1.2/30
10.1.1.2/30 10.1.3.1/30
DeviceB AS 10
Precautions
None
1. Enable OSPF on Device A, Device B, Device C, and Device D (except 10.2.1.1/30) and
specify the same area for all OSPF interfaces.
2. Set up IBGP connections between Device A, Device B, Device C, and Device D (except
10.2.1.1/30).
3. Configure the OSPF cost on Device C.
4. Set up EBGP connections between Device D and Device E.

Router 5 OSPF
5. Configure BGP to import direct routes and OSPF processes on Device D.

6. Configure BGP on Device E.
Data Preparation
Data of Device A, including the Router ID (1.1.1.1), number of the AS to which Device
A belongs (10), OSPF process number (1), and network segment addresses of Area 0
(10.1.1.0/30 and 10.1.2.0/30)
Data of Device B, including the Router ID (2.2.2.2), number of the AS to which Device
B belongs (10), OSPF process number (1), and network segment addresses of Area 0
(10.1.1.0/30 and 10.1.3.0/30)
Data of Device C, including the Router ID (3.3.3.3), number of the AS to which Device
C belongs (10), OSPF process number (1), and network segment addresses of Area 0
(10.1.2.0/30 and 10.1.4.0/30)
Data of Device D, including the Router ID (4.4.4.4), number of the AS to which Device
D belongs (10), OSPF process number (1), and network segment addresses of Area 0
(10.1.3.0/30 and 10.1.4.0/30)
Data of Device E, including the Router ID (5.5.5.5) and number of the AS to which
Device E belongs (20)
Procedure
this section.
OSPF Functions.
Step 3 Set up IBGP connections.
<DeviceA> system-view
[~DeviceA] interface loopback 0
[~DeviceA-LoopBack0] ip address 1.1.1.1 32
[*DeviceA-LoopBack0] quit
[*DeviceA] bgp 10
[*DeviceA-bgp] router-id 1.1.1.1
[*DeviceA-bgp] peer 2.2.2.2 as-number 10
[*DeviceA-bgp] peer 2.2.2.2 connect-interface LoopBack 0
[*DeviceA-bgp] quit
[*DeviceA] commit
<DeviceB> system-view
[~DeviceB] interface loopback 0
[~DeviceB-LoopBack0] ip address 2.2.2.2 32
[*DeviceB-LoopBack0] quit
[*DeviceB] bgp 10
[*DeviceB-bgp] router-id 2.2.2.2
[*DeviceB-bgp] peer 1.1.1.1 as-number 10
[*DeviceB-bgp] peer 1.1.1.1 connect-interface LoopBack 0

Router 5 OSPF

[*DeviceB-bgp] quit
[*DeviceB] commit
<DeviceC> system-view
[~DeviceC] interface loopback 0
[~DeviceC-LoopBack0] ip address 3.3.3.3 32
[*DeviceC-LoopBack0] quit
[*DeviceC] bgp 10
[*DeviceC-bgp] router-id 3.3.3.3
[*DeviceC-bgp] peer 1.1.1.1 as-number 10
[*DeviceC-bgp] peer 1.1.1.1 connect-interface LoopBack 0
[*DeviceC-bgp] quit
[*DeviceC] commit
<DeviceD> system-view
[~DeviceD] interface loopback 0
[~DeviceD-LoopBack0] ip address 4.4.4.4 32
[*DeviceD-LoopBack0] quit
[*DeviceD] bgp 10
[*DeviceD-bgp] router-id 4.4.4.4
[*DeviceD-bgp] peer 1.1.1.1 as-number 10
[*DeviceD-bgp] peer 1.1.1.1 connect-interface LoopBack 0
[*DeviceD-bgp] quit
[*DeviceD] commit
Step 4 Set up EBGP connections.

[*DeviceD] bgp 10
[*DeviceD-bgp] peer 10.2.1.2 as-number
20 [*DeviceD-bgp] import-route direct
[*DeviceD-bgp] import-route ospf 1
[*DeviceD-bgp] quit
[*DeviceD] commit
[*DeviceE] bgp 20
[*DeviceE-bgp] peer 10.2.1.1 as-number
10 [*DeviceE-bgp] ipv4-family unicast
[*DeviceE-bgp-af-ipv4] network 10.3.1.0
30 [*DeviceE-bgp-af-ipv4] quit
[*DeviceE-bgp] commit
Step 5 Configure the OSPF cost on Device C.

[~DeviceC] interface gigabitethernet 1/0/0
[~DeviceC-GigabitEthernet1/0/0] ospf cost
2 [*DeviceC-GigabitEthernet1/0/0] quit
[~DeviceC] interface gigabitethernet
2/0/0 [~DeviceC-GigabitEthernet2/0/0]
ospf cost 2 [*DeviceC-
GigabitEthernet2/0/0] commit [~DeviceC-

Router 5 OSPF
[*DeviceC] commit
NOTE
After the OSPF cost is set to 2 on Device C, Device A selects only Device B as the intermediate router
to the network segment 10.2.1.0, and Device C becomes a backup of Device B.
# Check the routing table on DeviceA. BGP learns the route to 10.1.3.0, and the outbound
interface is GE 1/0/0.
Route Flags: R - relied, D - download to fib
------------------------------------------------------------------------------
Routing Tables: _public_
Destination/Mask Proto Pre Cost Flags NextHop Int

1.1.1.1/32 Direct 0 0 D 127.0.0.1 In
1.1.1.255/32 Direct 0 0 D 127.0.0.1 In
2.2.2.2/32 OSPF 10 3 D 10.1.1.2
4.4.4.0/24 BGP 255 0 RD
4.4.4.4/32 OSPF 10 3 D 10
5.5.5.0/24 BGP 255 0 RD 10
10.1.1.0/30 Direct 0 0 D 10.1.1.1
10.1.1.3/32 Direct 0 0 D 10.1.1.1
10.1.1.255/32 Direct 0 0 D 10.1.1.2
10.1.1.2/32 Direct 0 0 D 10.1.1.2
10.1.1.255/32 Direct 0 0 D 10.1.1.2
10.1.2.0/30 Direct 0 0 D 10.1.2.1
10.1.2.3/32 Direct 0 0 D 10.1.2.1
10.1.2.2/32 Direct 0 0 D 10.1.2.2
10.1.2.255/32 Direct 0 0 D 10.1.2.2
10.1.3.0/30 OSPF 10 2 D 10.1.1.2
10.1.3.1/32 BGP 255 0 RD 4.4.4.4
10.1.4.0/30 OSPF 10 3 D 10.1.1.2
OSPF 10 3 D 10.1.2.2
10.1.4.1/32 BGP 255 0 RD 4.4.4.4
10.2.1.0/30 BGP 255 0 RD 4.4.4.4
10.2.1.2/32 BGP 255 0 RD 4.4.4.4
10.3.1.0/30 BGP 255 0 RD 4.4.4.4

Router 5 OSPF
# Display the routing table on Device B.

[~DeviceB] display ip routing-table
------------------------------------------------------------------------------
2.2.2.2/32 Direct 0 0 D 127.0.0.1

InLoopBack0
2.2.2.255/32 Direct 0 0 D 127.0.0.1
InLoopBack0
1.1.1.1/32 OSPF 10 2 D 10.1.1.1
4.4.4.0/24 BGP 255 0 RD 10.1.3.2
4.4.4.4/32 OSPF 10 2 D 10.1.3.2
5.5.5.0/24 BGP 255 0 RD 10.2.1.2
10.1.1.0/30 Direct 0 0 D 10.1.1.2
10.1.1.3/32 Direct 0 0 D 10.1.1.2
10.1.1.1/32 Direct 0 0 D 10.1.1.1
10.1.1.255/32 Direct 0 0 D 10.1.1.1
10.1.1.2/32 Direct 0 0 D 127.0.0.1
InLoopBack0
10.1.1.255/32 Direct 0 0 D 127.0.0.1
InLoopBack0
10.1.2.0/30 OSPF 10 2 D 10.1.1.1
10.1.3.0/30 Direct 0 0 D 10.1.3.1
10.1.3.3/32 Direct 0 0 D 10.1.3.1
10.1.3.1/32 Direct 0 0 D 127.0.0.1
InLoopBack0
10.1.3.255/32 Direct 0 0 D 127.0.0.1
InLoopBack0
10.1.3.2/32 Direct 0 0 D 10.1.3.2
10.1.3.255/32 Direct 0 0 D 10.1.3.2
127.0.0.0/8 Direct 0 0 D 127.0.0.1
InLoopBack0
127.0.0.1/32 Direct 0 0 D 127.0.0.1
InLoopBack0
127.0.0.255/32 Direct 0 0 D 127.0.0.1
InLoopBack0
10.1.4.0/30 OSPF 10 2 D 10.1.3.2
10.1.4.1/32 BGP 255 0 RD 10.1.3.2
10.2.1.0/30 BGP 255 0 RD 10.1.3.2
10.2.1.2/32 BGP 255 0 RD 10.1.3.2
10.3.1.0/30 BGP 255 0 RD 10.1.3.2
255.255.255.255/32 Direct 0 0 D 127.0.0.1
InLoopBack0

Router 5 OSPF
As shown in the routing table, Device B learns the route to 10.3.1.0 through BGP, and the
outbound interface is GE 2/0/0. The routes to 10.1.2.0 and 10.1.4.0 can be learned through
OSPF. The costs of these routes are both 2.
Step 6 Enable OSPF-BGP synchronization on Device B.
[~DeviceB] ospf 1
[*DeviceB-ospf-1] stub-router on-startup
[*DeviceB] commit
# Restart router Device B.
NOTE
Exercise caution when running the reboot command it may lead to a temporary network crash. In
addition, save the configuration file of the router before restarting the router.
<DeviceB> reboot
System will reboot! Continue?[Y/N] y
# Display the routing table on Device A. As shown in the routing table, BGP learns the route
to 10.3.1.0, and the outbound interface is GE 2/0/0.
------------------------------------------------------------------------------
1.1.1.1/32 Direct 0 0 D 127.0.0.1 InLo

2.2.2.2/32 OSPF 10 4 D 10.1.2.2
4.4.4.0/24 BGP 255 0 RD 4.
4.4.4.4/32 OSPF 10 4 D 10.1
5.5.5.0/24 BGP 255 0 RD 10.
10.1.1.0/30 Direct 0 0 D 10.1.
10.1.1.2/32 Direct 0 0 D 10.1.1.2
10.1.2.0/30 Direct 0 0 D 10.1.
10.1.2.2/32 Direct 0 0 D 10.1.2.2
10.1.3.0/30 OSPF 10 2 D 10.1.1.2
10.1.3.1/32 BGP 255 0 RD 4.
10.1.4.0/30 OSPF 10 3 D 10.1.
10.1.4.1/32 BGP 255 0 RD 4.
10.2.1.0/30 BGP 255 0 RD 4.
10.2.1.2/32 BGP 255 0 RD 4.
10.3.1.0/30 BGP 255 0 RD 4.4

Router 5 OSPF
# Display the routing table on Device B. As shown in the routing table, only OSPF routes
exist in the routing table because IGP routes converge faster than BGP routes do. The costs of
the OSPF routes are 65535.
------------------------------------------------------------------------------
1.1.1.1/32 OSPF 10 65536 D 10.1.1.1

4.4.4.4/32 OSPF 10 65536 D 10.1.3.2
10.1.1.0/30 Direct 0 0 D 10.1.1.2
10.1.1.1/32 Direct 0 0 D 10.1.1.1
10.1.2.0/30 OSPF 10 65536 D 10.1.1.1
10.1.3.0/30 Direct 0 0 D 10.1.3.1
10.1.3.2/32 Direct 0 0 D 10.1.3.2
10.1.4.0/30 OSPF 10 65536 D 10.1.3.2
# Display the routing table on Device B again.

------------------------------------------------------------------------------
2.2.2.2/32 Direct 0 0 D 127.0.0.1 InL

1.1.1.1/32 OSPF 10 2 D 10.1.1.1
4.4.4.0/24 BGP 255 0 RD 10.1.3.2
4.4.4.4/32 OSPF 10 2 D 10.1.3.2
5.5.5.0/24 BGP 255 0 RD 10.2.1.2
10.1.1.0/30 Direct 0 0 D 10.1.1.2
10.1.1.1/32 Direct 0 0 D 10.1.1.1
10.1.2.0/30 OSPF 10 2 D 10.1.1.1
10.1.3.0/30 Direct 0 0 D 10.1.3.1
10.1.3.2/32 Direct 0 0 D 10.1.3.2

Router 5 OSPF
10.1.4.0/30 OSPF 10 2 D 10.1.3.2

10.1.4.1/32 BGP 255 0 RD 10.1.3.2
10.2.1.0/30 BGP 255 0 RD 10.1.3.2
10.2.1.2/32 BGP 255 0 RD 10.1.3.2
10.3.1.0/30 BGP 255 0 RD 10.1.3.2
As shown in the routing table, BGP routes on Device B have converged, and the routing
information is the same as that displayed before the restart.
----End
Configuration Files
#
sysname DeviceA
#
router id 1.1.1.1
#
undo shutdown
ip address 10.1.1.1 255.255.255.252
#
undo shutdown
ip address 10.1.2.1 255.255.255.252
#
interface LoopBack0
ip address 1.1.1.1 255.255.255.255
#
bgp 10
router-id 1.1.1.1
peer 2.2.2.2 as-number 10
peer 2.2.2.2 connect-interface LoopBack 0
#
ospf 1
area 0.0.0.0
network 1.1.1.1 0.0.0.0
network 10.1.1.0 0.0.0.3
network 10.1.2.0 0.0.0.3
#
return

#
sysname DeviceB
#
router id 2.2.2.2
#
undo shutdown
ip address 10.1.1.2 255.255.255.252
#
undo shutdown
ip address 10.1.3.1 255.255.255.252
#
interface LoopBack0
ip address 2.2.2.2 255.255.255.255

Router 5 OSPF
#
bgp 10
router-id 2.2.2.2
#
ospf 1
stub-router on-startup
area 0.0.0.0
network 10.1.1.0 0.0.0.3
network 10.1.3.0 0.0.0.3
network 2.2.2.2 0.0.0.0
#
return
#
sysname DeviceC
#
router id 3.3.3.3
#
undo shutdown
ip address 10.1.4.1 255.255.255.252
ospf cost 2
#
undo shutdown
ip address 10.1.2.2 255.255.255.252
ospf cost 2
#
interface LoopBack0
ip address 3.3.3.3 255.255.255.255
#
bgp 10
router-id 3.3.3.3
#
ospf 1
area 0.0.0.0
network 10.1.2.0 0.0.0.3
network 10.1.4.0 0.0.0.3
network 3.3.3.3 0.0.0.0
#
return
#
sysname DeviceD
#
router id 4.4.4.4
#
undo shutdown
ip address 10.1.4.2 255.255.255.252
#
undo shutdown
ip address 10.1.3.2 255.255.255.252
#

Router 5 OSPF
undo shutdown
ip address 10.2.1.1 255.255.255.252
#
interface LoopBack0
ip address 4.4.4.4 255.255.255.255
#
bgp 10
router-id 4.4.4.4
#
ipv4-family unicast
undo synchronization
import-route direct
import-route ospf 1
peer 10.2.1.2 enable
#
ospf 1
area 0.0.0.0
network 4.4.4.4 0.0.0.0
network 10.1.3.0 0.0.0.3
network 10.1.4.0 0.0.0.3
#
return

#
sysname DeviceE
#
router id 5.5.5.5
#
undo shutdown
ip address 10.2.1.2 255.255.255.252
#
undo shutdown
ip address 10.3.1.1 255.255.255.252
#
interface LoopBack0
ip address 5.5.5.5 255.255.255.255
#
bgp 20
router-id 5.5.5.5
#
ipv4-family unicast
network 10.3.1.0 255.255.255.252
peer 10.2.1.1 enable
#
return
5.22.12 Example for Configuring OSPF Multi-Area Adjacency

This section provides an example for configuring OSPF multi-area adjacency, which includes
configuration of enabling OSPF on each device, physical interface, and OSPF multi-area

Router 5 OSPF
In Figure 5-21, all routers run OSPF, and the AS consists of two areas: area 1 and area 2. The
link between router A and router B in area 1 is a high-speed link. Because intra-area links take
precedence over inter-area links during OSPF route selection, traffic from router A to router B
in area 2 is forwarded along the low-speed link of router A -> router C -> router D -> router
B, even though high-speed link between router A and router B exists. However, it is required
that traffic from router A to router B in area 2 be forwarded along the high-speed link between
router A and router B. In this case, configure OSPF multi-area adjacency on router A and
router B and add their multi-area adjacency interfaces to area 2.
Figure 5-21 Networking for configuring OSPF multi-area adjacency

NOTE
Interface 1 and interface 2 in this example stand for GE 1/0/0 and GE 2/0/0, respectively.
Area
1
interface1
interface1
DeviceA
10.1.1.1/24 10.1.1.2/24
10.1.2.1/24 10.1.3.1/24
Area
interface2 2 interface2
10.1.2.2/24 10.1.3.2/24
DeviceC DeviceD
10.1.4.1/24 10.1.4.2/24
1. Enable OSPF on each router.

2. Enable OSPF on physical interfaces.
3. Enable OSPF on multi-area adjacency interfaces.
Data Preparation
OSPF process ID: 1
OSPF areas: area 1 and area 2
Procedure
Step 1 Configure an IP address for each interface. The configuration details are not provided here.

Router 5 OSPF
[~DeviceA] ospf 1
[*DeviceA] interface gigabitethernet 1/0/0
[*DeviceA-GigabitEthernet1/0/0] ospf enable 1 area 1
[*DeviceA] ospf 1
[*DeviceA] interface gigabitethernet 2/0/0
[*DeviceA-GigabitEthernet2/0/0] ospf enable 1 area 2
[*DeviceA] commit
[~DeviceB] ospf 1
[*DeviceB-GigabitEthernet1/0/0] ospf enable 1 area 1
[*DeviceB] ospf 1
[*DeviceB-GigabitEthernet2/0/0] ospf enable 1 area 2
[*DeviceB] commit
[~DeviceC] ospf 1
[*DeviceC-ospf-1-area-0.0.0.2] quit
[*DeviceC-ospf-1] quit
[*DeviceC] interface gigabitethernet 1/0/0
[*DeviceC-GigabitEthernet1/0/0] ospf enable 1 area 2
[*DeviceC] interface gigabitethernet 2/0/0
[*DeviceC-GigabitEthernet2/0/0] ospf enable 1 area 2
[*DeviceC] commit
[~DeviceD] ospf 1
[*DeviceD-ospf-1-area-0.0.0.2] quit
[*DeviceD-ospf-1] quit
[*DeviceD] interface gigabitethernet 1/0/0
[*DeviceD-GigabitEthernet1/0/0] ospf enable 1 area 2
[*DeviceD] interface gigabitethernet 2/0/0
[*DeviceD-GigabitEthernet2/0/0] ospf enable 1 area 2
[*DeviceD] commit
# Run the display ospf peer brief command to check brief information about OSPF
neighbors. Device A is used as an example. The following command output shows that the

Router 5 OSPF
OSPF neighbor relationships between Device A and Device B and between Device A and
Device C are established.
[~DeviceA] display ospf peer brief
(M) Indicates MADJ neighbor

Peer Statistic Information
Total number of peer(s): 2
Peer(s) in full state: 2
-----------------------------------------------------------------------------
Area Id Interface Neighbor id State
0.0.0.1 GigabitEthernet1/0/0 10.1.1.2 Full
-----------------------------------------------------------------------------
# Run the display ip routing-table command to check information about the IP routing table.
Device A is used as an example. The following command output shows that the outbound
interface of the route destined for 1.1.1.1 is GigabitEthernet 2/0/0.
------------------------------------------------------------------------------
Destination/Mask Proto Pre Cost Flags NextHop Interfa

1.1.1.1/32 OSPF 10 3 D 10.
10.1.1.0/24 Direct 0 0 D 10.
10.1.1.1/32 Direct 0 0 D 127.0
10.1.1.255/32 Direct 0 0 D 127.0.
10.1.2.0/24 Direct 0 0 D 10.
10.1.2.1/32 Direct 0 0 D 127.0
10.1.2.255/32 Direct 0 0 D 127.0.
10.1.3.0/24 OSPF 10 3 D 10.
10.1.4.0/24 OSPF 10 2 D 10.1.2.2
The preceding command output shows that traffic from router A to router B in area 2 is
forwarded along the low-speed link of router A -> router C -> router D -> router B.
Step 3 Enable OSPF on multi-area adjacency interfaces.
[*DeviceA-GigabitEthernet1/0/0] ospf enable multi-area 2
[*DeviceA] commit

Router 5 OSPF
[*DeviceB-GigabitEthernet1/0/0] ospf enable multi-area 2

[*DeviceB] commit

# Run the display ospf peer brief command to check brief information about OSPF
neighbors. Device A is used as an example. The following command output shows that the
OSPF neighbor relationships between Device A and Device B and between Device A and
Device C are established and that an OSPF multi-area adjacency is established between
Device A and Device B.
[~DeviceA] display ospf peer brief
(M) Indicates MADJ neighbor

Peer Statistic Information
Total number of peer(s): 3
Peer(s) in full state: 3
-----------------------------------------------------------------------------
Area Id Interface Neighbor id State
0.0.0.2 GigabitEthernet1/0/0 10.1.1.2(M) Full
-----------------------------------------------------------------------------
# Run the display ip routing-table command to check information about the IP routing table.
Device A is used as an example. The following command output shows that the outbound
interface of the route destined for 1.1.1.1 is GigabitEthernet 1/0/0.
------------------------------------------------------------------------------
Destination/Mask Proto Pre Cost Flags NextHop Interfa

1.1.1.1/32 OSPF 10 1 D 10.
10.1.1.0/24 Direct 0 0 D 10.
10.1.1.1/32 Direct 0 0 D 127.0
10.1.1.255/32 Direct 0 0 D 127.0.
10.1.2.0/24 Direct 0 0 D 10.
10.1.2.1/32 Direct 0 0 D 127.0
10.1.2.255/32 Direct 0 0 D 127.0.
10.1.3.0/24 OSPF 10 2 D 10.
10.1.4.0/24 OSPF 10 2 D 10.1.2.2
The preceding command output shows that traffic from router A to router B in area 2 is
forwarded along the high-speed link between router A and router B.
----End

Router 5 OSPF
Configuration Files
#
sysname DeviceA
#
undo shutdown
ip address 10.1.1.1 255.255.255.0
ospf enable 1 area 0.0.0.1
ospf enable multi-area 0.0.0.2
#
undo shutdown
ip address 10.1.2.1 255.255.255.0
#
ospf 1
area 0.0.0.1
area 0.0.0.2
#
return

#
sysname DeviceB
#
undo shutdown
ip address 10.1.1.2 255.255.255.0
ospf enable multi-area 0.0.0.2
#
undo shutdown
ip address 10.1.3.1 255.255.255.0
#
interface LoopBack0
ip address 1.1.1.1 255.255.255.255
#
ospf 1
area 0.0.0.1
area 0.0.0.2
#
return

#
sysname DeviceC
#
undo shutdown
ip address 10.1.4.1 255.255.255.0
#
undo shutdown
ip address 10.1.2.2 255.255.255.0
#
ospf 1
area 0.0.0.2
#
return

Router 5 OSPF
#
sysname DeviceD
#
undo shutdown
ip address 10.1.4.2 255.255.255.0
#
undo shutdown
ip address 10.1.3.2 255.255.255.0
#
ospf 1
area 0.0.0.2
#
return
5.22.13 Example for Configuring an OSPF Sham Link

This section provides an example for configuring an OSPF sham link so that traffic between
sites of the same VPN in the same OSPF area is forwarded through the OSPF intra-area route
over the BGP/MPLS IP VPN backbone network.
In Figure 5-22, CE1 and CE2 reside in the same OSPF area, belong to VPN1, and are
connected to PE1 and PE2, respectively. In this example, the cost of each link is 1.
It is required that OSPF run between each CE and its connected PE and the VPN traffic
between CE1 and CE2 be forwarded over the MPLS backbone network.
Figure 5-22 Networking for configuring an OSPF sham link

NOTE
Interface 1 and interface 2 in this example stand for GE 1/0/0 and GE 2/0/0, respectively.
Loopback1 Loopback1 Loopback1

1.1.1.9/32 2.2.2.9/32 3.3.3.9/32
PE1 50.1.1.1/24 40.1.1.2/24 PE2
Interface1 interface2
50.1.1.2/24 P 40.1.1.1/24
172.16.1.2/24 172.16.2.2/24
Loopback10 Loopback10
5.5.5.5/32 6.6.6.6/32
interface1 Sham link interface1

172.16.1.1/24 172.16.2.1/24
Loopback1
interface2 interface1 interface2 interface2 8.8.8.8/32
CE1 10.1.1.1/24 10.1.1.2/24 RT0 10.2.1.1/24 10.2.1.2/24 CE2
Intra-area OSPF link

Router 5 OSPF
1. Configure an MP-IBGP peer relationship between PEs and configure OSPF between
each CE and its connected PE.
2. Create a VPN instance on each PE and bind the VPN instance to the interface connected
to the corresponding CE.
3. Create an OSPF sham link between PEs.
4. Adjust the cost of forwarding interfaces over the user network to ensure that the cost of
the OSPF route used to forward the traffic over the user network is greater than that of
the sham link.
Data Preparation
MPLS LSR IDs of the PEs and P
VPN instance name, RD, and VPN target of each PE
Data used to configure OSPF (The OSPF process running on the backbone network, the
OSPF process running on the user network, and the OSPF process connecting each PE to
the corresponding CE are different.)
Cost of the sham link and the cost of the OSPF route used to forward the traffic over the
user network
Procedure
Step 1 Configure OSPF on the user network.
Configure OSPF on CE1, RT0, and CE2 and advertise network segments of their interfaces.
# Configure CE1.
[~HUAWEI] sysname CE1
[~CE1] interface GigabitEthernet2/0/0
[~CE1-GigabitEthernet2/0/0] ip address 10.1.1.1 24
[*CE1-GigabitEthernet2/0/0] quit
[*CE1] interface GigabitEthernet1/0/0
[*CE1-GigabitEthernet1/0/0] ip address 172.16.1.1 24
[*CE1] ospf
[*CE1-ospf-1] area 0
[*CE1-ospf-1-area-0.0.0.0] network 10.1.1.0 0.0.0.255
[*CE1-ospf-1-area-0.0.0.0] quit
[*CE1-ospf-1] quit
[*CE1] commit
# Configure RT0.
[~HUAWEI] sysname RT0
[~RT0] interface GigabitEthernet1/0/0
[~RT0-GigabitEthernet1/0/0] ip address 10.1.1.2 24
[*RT0-GigabitEthernet1/0/0] quit
[*RT0] interface GigabitEthernet2/0/0
[*RT0-GigabitEthernet2/0/0] ip address 10.2.1.1 24
[*RT0-GigabitEthernet2/0/0] quit

Router 5 OSPF
[*RT0] ospf
[*RT0-ospf-1] area 0
[*RT0-ospf-1-area-0.0.0.0] network 10.1.1.0 0.0.0.255
[*RT0-ospf-1-area-0.0.0.0] network 10.2.1.0 0.0.0.255
[*RT0-ospf-1-area-0.0.0.0] quit
[*RT0-ospf-1] quit
[*RT0] commit
# Configure CE2.
[~HUAWEI] sysname CE2
[~CE2-GigabitEthernet2/0/0] ip address 10.2.1.2 24
[*CE2] interface GigabitEthernet1/0/0
[*CE2-GigabitEthernet1/0/0] ip address 172.16.2.1 24
[*CE2] ospf
[*CE2-ospf-1] area 0
[*CE2-ospf-1-area-0.0.0.0] quit
[*CE2-ospf-1] quit
[*CE2] commit
Step 2 Configure basic BGP/MPLS IP VPN functions on the backbone network, including an IGP
(OSPF) on the backbone network, MPLS and LDP on the backbone network, and an MP-
IBGP peer relationship between PEs.
# Configure PE1.
[~HUAWEI] sysname PE1
[~PE1] interface loopback 1
[~PE1-LoopBack1] ip address 1.1.1.9 32
[*PE1-LoopBack1] quit
[*PE1] mpls lsr-id 1.1.1.9
[*PE1] mpls
[*PE1-mpls] quit
[*PE1] mpls ldp
[*PE1-mpls-ldp] quit
[*PE1] interface GigabitEthernet2/0/0
[*PE1-GigabitEthernet2/0/0] ip address 50.1.1.1 24
[*PE1-GigabitEthernet2/0/0] mpls
[*PE1-GigabitEthernet2/0/0] mpls ldp
[*PE1-GigabitEthernet2/0/0] quit
[*PE1] ospf
[*PE1-ospf-1] area 0
[*PE1-ospf-1-area-0.0.0.0] network 1.1.1.9 0.0.0.0
[*PE1-ospf-1-area-0.0.0.0] quit
[*PE1-ospf-1] quit
[*PE1] bgp 100
[*PE1-bgp] peer 3.3.3.9 as-number 100
[*PE1-bgp] peer 3.3.3.9 connect-interface loopback 1
[*PE1-bgp] ipv4-family vpnv4
[*PE1-bgp-af-vpnv4] peer 3.3.3.9 enable
[*PE1-bgp-af-vpnv4] quit
[*PE1-bgp] quit
[*PE1] commit
# Configure the P.
[~HUAWEI] sysname P
[~P] interface loopback 1
[~P-LoopBack1] ip address 2.2.2.9 32
[*P-LoopBack1] quit

Router 5 OSPF
[*P] mpls lsr-id 2.2.2.9

[*P] mpls
[*P-mpls] quit
[*P] mpls ldp
[*P-mpls-ldp] quit
[*P] interface GigabitEthernet1/0/0
[*P-GigabitEthernet1/0/0] ip address 50.1.1.2 24
[*P-GigabitEthernet1/0/0] mpls
[*P-GigabitEthernet1/0/0] mpls ldp
[*P-GigabitEthernet1/0/0] quit
[*P] interface GigabitEthernet2/0/0
[*P-GigabitEthernet2/0/0] ip address 40.1.1.1 24
[*P-GigabitEthernet2/0/0] mpls
[*P-GigabitEthernet2/0/0] mpls ldp
[*P-GigabitEthernet2/0/0] quit
[*P] ospf
[*P-ospf-1] area 0
[*P-ospf-1-area-0.0.0.0] network 2.2.2.9 0.0.0.0
[*P-ospf-1-area-0.0.0.0] quit
[*P-ospf-1] quit
[*P] commit
# Configure PE2.
[~HUAWEI] sysname PE2
[~PE2-LoopBack1] ip address 3.3.3.9 32
[*PE2] mpls lsr-id 3.3.3.9
[*PE2] mpls
[*PE2-mpls] quit
[*PE2] mpls ldp
[*PE2-mpls-ldp] quit
[*PE2-GigabitEthernet2/0/0] mpls
[*PE2-GigabitEthernet2/0/0] mpls ldp
[*PE2] ospf
[*PE2-ospf-1] quit
[*PE2] bgp 100
[*PE2-bgp] peer 1.1.1.9 as-number 100
[*PE2-bgp] peer 1.1.1.9 connect-interface loopback 1
[*PE2-bgp] ipv4-family vpnv4
[*PE2-bgp-af-vpnv4] peer 1.1.1.9 enable
[*PE2-bgp-af-vpnv4] quit
[*PE2-bgp] quit
[*PE2] commit
After completing the configurations, PE1 and PE2 learn the route to each other's loopback
interface and establish an MP-IBGP peer relationship.
Step 3 Configure the connection between each PE and the corresponding CE, with OSPF running
between them.
# Configure PE1.
[~PE1] ip vpn-instance vpn1
[*PE1-vpn-instance-vpn1] ipv4-family
[*PE1-vpn-instance-vpn1-af-ipv4] route-distinguisher 100:1
[*PE1-vpn-instance-vpn1-af-ipv4] vpn-target 1:1
[*PE1-vpn-instance-vpn1-af-ipv4] quit

Router 5 OSPF
[*PE1-vpn-instance-vpn1] quit
[*PE1] interface gigabitethernet 1/0/0
[*PE1-GigabitEthernet1/0/0] ip binding vpn-instance vpn1
[*PE1] ospf 100 vpn-instance vpn1
[*PE1-ospf-100] domain-id 10
[*PE1-ospf-100] import-route bgp
[*PE1-ospf-100] quit
[*PE1] bgp 100
[*PE1-bgp] ipv4-family vpn-instance vpn1
[*PE1-bgp-vpn1] import-route direct
[*PE1-bgp-vpn1] import-route ospf 100
[*PE1-bgp-vpn1] quit
[*PE1-bgp] quit
[*PE1] commit
# Configure PE2.
[~PE2] ip vpn-instance vpn1
[*PE2-vpn-instance-vpn1] ipv4-family
[*PE2-vpn-instance-vpn1-af-ipv4] route-distinguisher 100:2
[*PE2-vpn-instance-vpn1-af-ipv4] vpn-target 1:1
[*PE2-vpn-instance-vpn1-af-ipv4] quit
[*PE2-vpn-instance-vpn1] quit
[*PE2-GigabitEthernet1/0/0] ip binding vpn-instance vpn1
[*PE2] ospf 100 vpn-instance vpn1
[*PE2-ospf-100] import-route bgp
[*PE2-ospf-100] domain-id 10
[*PE2] bgp 100
[*PE2-bgp] ipv4-family vpn-instance vpn1
[*PE2-bgp-vpn1] import-route direct
[*PE2-bgp-vpn1] import-route ospf 100
[*PE2-bgp-vpn1] quit
[*PE2-bgp] quit
[*PE2] commit
After completing the configurations, run the display ip routing-table vpn-instance command
on a PE. You may find that the route to the remote CE is an OSPF route over the user network
rather than the BGP route over the backbone network.
The following example uses the command output on PE1.
<PE1> display ip routing-table vpn-instance vpn1
route
------------------------------------------------------------------------------
Routing Tables: vpn1
10.1.1.0/24 OSPF 10 2 D 172.16.1.1
10.2.1.0/24 OSPF 10 3 D 172.16.1.1
172.16.1.0/24 Direct 0 0 D 172.16.1.2
172.16.1.2/32 Direct 0 0 D 127.0.0.1
172.16.2.0/24 OSPF 10 4 D 172.16.1.1

Router 5 OSPF
Step 4 Configure a sham link.

NOTE
To ensure that VPN traffic is forwarded over the MPLS backbone network, ensure that the cost of the
sham link is smaller than that of the OSPF route used to forward the traffic over the user network when
configuring the sham link. In most cases, you need to change the cost of the interfaces on the user
network to ensure that the cost of the OSPF route used to forward the traffic over the user network is
greater than that of the sham link.
# Configure CE1.

[~CE1-GigabitEthernet2/0/0] ospf cost 10
# Configure CE2.
[~CE2-GigabitEthernet2/0/0] ospf cost 10
[~CE2] interface loopback 1
[~CE2-LoopBack1] ip address 8.8.8.8
32 [*CE2-LoopBack1] ospf enable 1
area 0 [*CE2-LoopBack1] quit
[*CE2] commit
# Configure PE1.
[*PE1-LoopBack10] ip binding vpn-instance vpn1
[*PE1-LoopBack10] ip address 5.5.5.5 32
[*PE1] ospf 100 router-id 11.11.11.11
[*PE1-ospf-100-area-0.0.0.0] sham-link 5.5.5.5 6.6.6.6 cost 1
[*PE1] commit
# Configure PE2.
[*PE2-LoopBack10] ip binding vpn-instance vpn1
[*PE2-LoopBack10] ip address 6.6.6.6 32
[*PE2] ospf 100 router-id 22.22.22.22
[*PE2-ospf-100-area-0.0.0.0] sham-link 6.6.6.6 5.5.5.5 cost 1
[*PE2] commit

After completing the configurations, run the display ip routing-table vpn-instance
command again on the PE. You may find that the route to the remote CE becomes the BGP
route over
the backbone network and a route to the destination IP address of the sham link also exist
in the routing table.
<PE1> display ip routing-table vpn-instance vpn1
Route Flags: R - relay, D - download to fib, T - to vpn-instance, B - black
hole route
----------------------------------------------------------------------------
-- Routing Tables: vpn1
5.5.5.5/32 Direct 0 0 D 127.0.0.1 LoopBack10

Router 5 OSPF
6.6.6.6/32 IBGP 255 0 RD 3.3.3.9

8.8.8.8/32 IBGP 255 2 RD 3.3.3.9
10.1.1.0/24 OSPF 10 11 D 172.16.1.1
10.2.1.0/24 OSPF 10 12 D 172.16.1.1
172.16.1.0/24 Direct 0 0 D 172.16.1.2
172.16.1.2/32 Direct 0 0 D 127.0.0.1
172.16.1.255/32 Direct 0 0 D 127.0.0.1
172.16.2.0/24 IBGP 255 0 RD 3.3.3.9
Run the display ip routing-table command on a CE. You may find that the cost of the OSPF
route to the remote CE becomes 3 and the next hop is the IP address of the connected PE
interface. The next hop indicates that the VPN traffic to the remote end is forwarded over the
backbone network.
The following example uses the command output on CE1.
<CE1> display ip routing-table
route
------------------------------------------------------------------------------
5.5.5.5/32 O_ASE 150 1 D 172.16.1.2
6.6.6.6/32 O_ASE 150 1 D 172.16.1.2
8.8.8.8/32 OSPF 10 3 D 172.16.1.2
10.1.1.0/24 Direct 0 0 D 10.1.1.1
10.1.1.1/32 Direct 0 0 D 127.0.0.1
10.1.1.255/32 Direct 0 0 D 127.0.0.1
10.2.1.0/24 OSPF 10 11 D 10.1.1.2
172.16.1.0/24 Direct 0 0 D 172.16.1.1
172.16.1.1/32 Direct 0 0 D 127.0.0.1
172.16.1.255/32 Direct 0 0 D 127.0.0.1
172.16.2.0/24 OSPF 10 3 D 172.16.1.2
NOTE
Cost (3) of the OSPF route from CE1 to CE2 = Cost (1) of the link from CE1 to PE1 + Cost (1) of the
sham link + Cost (1) of the link from PE2 to CE2
Run the tracert command and you may find that the next hop for CE1 to send data to CE2 is
the IP address of PE1's GE 1/0/0. The next hop indicates that the VPN traffic to the remote
end is forwarded over the backbone network.
<CE1> tracert 172.16.2.1

Router 5 OSPF
traceroute to 172.16.2.1(172.16.2.1), max hops: 30 ,packet length: 40,press

CTRL_C to break
1 172.16.1.2 131 ms 2 ms 1 ms
2 50.1.1.2 475 ms 4 ms 4 ms
3 172.16.2.2 150 ms 3 ms 4 ms
4 172.16.2.1 76 ms 3 ms 5 ms
<CE1> tracert 10.2.1.2
traceroute to 10.2.1.2(10.2.1.2), max hops: 30 ,packet length: 40,press CTRL_C
to break
1 10.1.1.2 60 ms 1 ms 1 ms
2 10.2.1.2 12 ms 2 ms 2 ms
Run the display ospf sham-link command on a PE to check whether the sham link is established.
<PE1> display ospf sham-link

Area NeighborId Source-IP Destination-IP State Cost
0.0.0.0 22.22.22.22 5.5.5.5 6.6.6.6 P-2-P 1
Run the display ospf sham-link area command. The following command output shows that the OSPF neigh
relationship is in Full state.
<PE1> display ospf sham-link area 0
Sham-Link: 5.5.5.5 --> 6.6.6.6
NeighborID: 22.22.22.22, State: Full, GR status: Normal
Area: 0.0.0.0
Cost: 1 , State: P-2-P , Type: Sham
Run the display ospf routing command on a CE. The following command output shows that the route to the
CE is an intra-area route.
<CE1> display ospf routing
Routing Tables
Routing for Network
8.8.8.8/32 3 Stub 172.16.1.2 10.2.1.2 0.0.0.0
10.1.1.0/24 10 Direct 10.1.1.1 10.1.1.1 0.0.0.0
10.2.1.0/24 11 Transit 10.1.1.2 10.1.1.2 0.0.0.0
172.16.1.0/24 1 Direct 172.16.1.1 10.1.1.1 0.0.0.0
172.16.2.0/24 3 Transit 172.16.1.2 10.2.1.2 0.0.0.0
Routing for ASEs
6.6.6.6/32 1 Type2 3489661028 172.16.1.2 11.11.11.11
5.5.5.5/32 1 Type2 3489661028 172.16.1.2 22.22.22.22
Total Nets: 7
----End
Configuration Files
PE1 configuration file
#
sysname PE1
#
ip vpn-instance vpn1
ipv4-family
route-distinguisher 100:1
vpn-target 1:1 export-extcommunity
vpn-target 1:1 import-extcommunity
#

Router 5 OSPF
mpls lsr-id 1.1.1.9

mpls
#
mpls ldp
#
undo shutdown
ip binding vpn-instance vpn1
ip address 172.16.1.2 255.255.255.0
#
undo shutdown
ip address 50.1.1.1 255.255.255.0
mpls
mpls ldp
#
interface LoopBack1
ip address 1.1.1.9 255.255.255.255
#
interface LoopBack10
ip address 5.5.5.5 255.255.255.255
#
bgp 100
peer 3.3.3.9 connect-interface LoopBack1
#
ipv4-family unicast
peer 3.3.3.9 enable
#
ipv4-family vpnv4
policy vpn-target
peer 3.3.3.9 enable
#
ipv4-family vpn-instance vpn1
import-route direct
import-route ospf 100
#
ospf 1
area 0.0.0.0
network 1.1.1.9 0.0.0.0
network 50.1.1.0 0.0.0.255
#
ospf 100 router-id 11.11.11.11 vpn-instance vpn1
import-route bgp
domain-id 0.0.0.10
area 0.0.0.0
network 172.16.1.0 0.0.0.255
sham-link 5.5.5.5 6.6.6.6 cost 1
#
return
P configuration file
#
sysname P
#
mpls lsr-id 2.2.2.9
mpls
#
mpls ldp
#
undo shutdown
ip address 50.1.1.2 255.255.255.0
mpls
mpls ldp
#
undo shutdown

Router 5 OSPF
ip address 40.1.1.1 255.255.255.0

mpls
mpls ldp
#
interface LoopBack1
ip address 2.2.2.9 255.255.255.255
#
ospf 1
area 0.0.0.0
network 2.2.2.9 0.0.0.0
network 50.1.1.0 0.0.0.255
network 40.1.1.0 0.0.0.255
#
return
PE2 configuration file
#
sysname PE2
#
ip vpn-instance vpn1
ipv4-family
route-distinguisher 100:2
vpn-target 1:1 export-extcommunity
vpn-target 1:1 import-extcommunity
#
mpls lsr-id 3.3.3.9
mpls
#
mpls ldp
#
undo shutdown
ip address 172.16.2.2 255.255.255.0
#
undo shutdown
ip address 40.1.1.2 255.255.255.0
mpls
mpls ldp
#
interface LoopBack1
ip address 3.3.3.9 255.255.255.255
#
interface LoopBack10
ip address 6.6.6.6 255.255.255.255
#
bgp 100
peer 1.1.1.9 connect-interface LoopBack1
#
ipv4-family unicast
peer 1.1.1.9 enable
#
ipv4-family vpnv4
policy vpn-target
peer 1.1.1.9 enable
#
ipv4-family vpn-instance vpn1
import-route direct
import-route ospf 100
#
ospf 1
area 0.0.0.0
network 3.3.3.9 0.0.0.0
network 40.1.1.0 0.0.0.255
#
ospf 100 router-id 22.22.22.22 vpn-instance vpn1

Router 5 OSPF
import-route bgp
domain-id 0.0.0.10
area 0.0.0.0
network 172.16.2.0 0.0.0.255
sham-link 6.6.6.6 5.5.5.5 cost 1
#
return
CE1 configuration file

#
sysname CE1
#
undo shutdown
ip address 172.16.1.1 255.255.255.0
#
undo shutdown
ip address 10.1.1.1 255.255.255.0
ospf cost 10
#
interface LoopBack0
ip address 8.8.8.8 255.255.255.255
#
ospf 1
area 0.0.0.0
network 172.16.1.0 0.0.0.255
network 10.1.1.0 0.0.0.255
#
return
CE2 configuration file

#
sysname CE2
#
undo shutdown
ip address 172.16.2.1 255.255.255.0
#
undo shutdown
ip address 10.2.1.2 255.255.255.0
ospf cost 10
#
ospf 1
area 0.0.0.0
network 10.2.1.0 0.0.0.255
network 172.16.2.0 0.0.0.255
#
return
RT0 configuration file

#
sysname RT0
#
undo shutdown
ip address 10.1.1.2 255.255.255.0
#
undo shutdown
ip address 10.2.1.1 255.255.255.0
#
ospf 1
area 0.0.0.0
network 10.1.1.0 0.0.0.255
network 10.2.1.0 0.0.0.255
#

Router 5 OSPF
return

01-05 OSPF Configuration

Uploaded by

Copyright:

Available Formats

01-05 OSPF Configuration

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

01-05 OSPF Configuration

Uploaded by

Copyright:

Available Formats

HUAWEI NetEngine40E Universal Service

About This Chapter

Issue 01 (2018-12- Copyright © Huawei Technologies Co., 1

5.11 Configuring an OSPF Stub Area

5.1 Overview of OSPF

Issue 01 (2018-12- Copyright © Huawei Technologies Co., 1

Table 5-1 Differences among RIP, OSPF, and IS-

Item RIP OSPF IS-IS

Protocol IP layer protocol IP layer protocol Link layer protocol

Route Slow Less than 1 second Less than 1 second

Scalabilit Not supported Supported by Supported by defining r

Issue 01 (2018-12- Copyright © Huawei Technologies Co., 1

5.2 Licensing Requirements and Limitations for OSPF

Restrictions and Guidelines

OSPF checks whether a neighbor Plan configurations Default routes fail to be

Issue 01 (2018-12- Copyright © Huawei Technologies Co., 1

Restrictions Guidelines Impact

OSPF advertises default routes Plan configurations Default routes fail to be

5.3 Configuring Basic OSPF Functions

Issue 01 (2018-12- Copyright © Huawei Technologies Co., 1

Figure 5-1 Flowchart of configuring basic OSPF functions

Creating OSPF Virtual Links

Configuring a Route Selection Rule on the router

Setting the OSPF Priority

Configuring the Maximum Number of Packet

Setting an Interval at Which an LSA Packet Is

Configuring an Interface to Fill in a DD Packet with

5.3.1 Enabling OSPF

Issue 01 (2018-12- Copyright © Huawei Technologies Co., 1

Step 2 Run ospf [ process-id | router-id router-id ] *

Issue 01 (2018-12- Copyright © Huawei Technologies Co., 1

Step 3 Run area area-id

5.3.2 (Optional) Creating OSPF Virtual Links

Issue 01 (2018-12- Copyright © Huawei Technologies Co., 1

The system view is displayed.

Step 2 Run ospf [ process-id ]

The OSPF process is started and OSPF view is displayed.

Step 3 Run area area-id

The OSPF area view is displayed.

Step 5 Run commit

The configuration is committed.

5.3.3 (Optional) Configuring a Route Selection Rule on the router

Issue 01 (2018-12- Copyright © Huawei Technologies Co., 1

The system view is displayed.

Step 2 Run ospf [ process-id ]

The OSPF process view is displayed.

Step 3 Run undo rfc1583 compatible

Step 4 Run commit

The configuration is committed.

5.3.4 (Optional) Setting the OSPF Priority

The system view is displayed.

Step 2 Run ospf [ process-id ]

The OSPF process view is displayed.

ase: sets the priority of the AS-External route.

Issue 01 (2018-12- Copyright © Huawei Technologies Co., 1

Step 4 Run commit

The configuration is committed.

5.3.5 (Optional) Configuring the Maximum Number of Packet

The system view is displayed.

The OSPF process view is displayed.