HP 5500 Ei 5500 Si Switch Series Configuration Guide
Have a look at the manual HP 5500 Ei 5500 Si Switch Series Configuration Guide online for free. It’s possible to download the document as PDF or print. UserManuals.tech offer 1114 HP manuals and user’s guides for free. Share the user manual or guide on Facebook, Twitter or Google+.
![Page 656
174
Figure 78 Adding a mapping between do main name and IPv6 address
2. Configure the DNS client:
# Enable dynamic domain name resolution.
system-view
[Device] dns resolve
# Specify the DNS server 2::2.
[Device] dns server ipv6 2::2
# Configure com as the DNS suffix.
[Device] dns domain com
Verifying the configuration
# Use the ping ipv6 host command on the device to verify that the communication between the device
and the host is normal and that the corresponding destination IP...](http://img.usermanuals.tech/thumb/36/58909/w64_hp-5500-ei-5500-si-switch-series-configuration-guide-655.png "Page 656
174
Figure 78 Adding a mapping between do main name and IPv6 address
2. Configure the DNS client:
# Enable dynamic domain name resolution.
system-view
[Device] dns resolve
# Specify the DNS server 2::2.
[Device] dns server ipv6 2::2
# Configure com as the DNS suffix.
[Device] dns domain com
Verifying the configuration
# Use the ping ipv6 host command on the device to verify that the communication between the device
and the host is normal and that the corresponding destination IP...")
![Page 664
182
Figure 1 Network diagram
Configuration procedure
B e f o re c o n f i g u r i n g a n I P v 6 m a n u a l t u n n e l , m a ke s u re that Switch A and Switch B have the corresponding
VLAN interfaces created and can reach to each other.
• Configure Switch A:
# Enable IPv6.
system-view
[SwitchA] ipv6
# Configure an IPv4 address for VLAN-interface 100.
[SwitchA] interface vlan-interface 100
[SwitchA-Vlan-interface100] ip address 192.168.100.1 255.255.255.0...](http://img.usermanuals.tech/thumb/36/58909/w64_hp-5500-ei-5500-si-switch-series-configuration-guide-663.png "Page 664
182
Figure 1 Network diagram
Configuration procedure
B e f o re c o n f i g u r i n g a n I P v 6 m a n u a l t u n n e l , m a ke s u re that Switch A and Switch B have the corresponding
VLAN interfaces created and can reach to each other.
• Configure Switch A:
# Enable IPv6.
system-view
[SwitchA] ipv6
# Configure an IPv4 address for VLAN-interface 100.
[SwitchA] interface vlan-interface 100
[SwitchA-Vlan-interface100] ip address 192.168.100.1 255.255.255.0...")
![Page 665
183
• Configure Switch B
# Enable IPv6.
system-view
[SwitchB] ipv6
# Configure an IPv4 address for VLAN-interface 100.
[SwitchB] interface vlan-interface 100
[SwitchB-Vlan-interface100] ip address 192.168.50.1 255.255.255.0
[SwitchB-Vlan-interface100] quit
# Configure an IPv6 address for VLAN-interface 101.
[SwitchB] interface vlan-interface 101
[SwitchB-Vlan-interface101] ipv6 address 3003::1 64
[SwitchB-Vlan-interface101] quit
# Create service loopback group 1 to support the tunnel...](http://img.usermanuals.tech/thumb/36/58909/w64_hp-5500-ei-5500-si-switch-series-configuration-guide-664.png "Page 665
183
• Configure Switch B
# Enable IPv6.
system-view
[SwitchB] ipv6
# Configure an IPv4 address for VLAN-interface 100.
[SwitchB] interface vlan-interface 100
[SwitchB-Vlan-interface100] ip address 192.168.50.1 255.255.255.0
[SwitchB-Vlan-interface100] quit
# Configure an IPv6 address for VLAN-interface 101.
[SwitchB] interface vlan-interface 101
[SwitchB-Vlan-interface101] ipv6 address 3003::1 64
[SwitchB-Vlan-interface101] quit
# Create service loopback group 1 to support the tunnel...")
![Page 666
184
MTU is 1480 bytes
ND reachable time is 30000 milliseconds
ND retransmit interval is 1000 milliseconds
Hosts use stateless autoconfig for addresses
IPv6 Packet statistics:
InReceives: 55
...
[SwitchB] display ipv6 interface tunnel 0
Tunnel0 current state :UP
Line protocol current state :UP
IPv6 is enabled, link-local address is FE80::C0A8:3201
Global unicast address(es):
3001::2, subnet is 3001::/64
Joined group address(es):
FF02::1:FF00:0...](http://img.usermanuals.tech/thumb/36/58909/w64_hp-5500-ei-5500-si-switch-series-configuration-guide-665.png "Page 666
184
MTU is 1480 bytes
ND reachable time is 30000 milliseconds
ND retransmit interval is 1000 milliseconds
Hosts use stateless autoconfig for addresses
IPv6 Packet statistics:
InReceives: 55
...
[SwitchB] display ipv6 interface tunnel 0
Tunnel0 current state :UP
Line protocol current state :UP
IPv6 is enabled, link-local address is FE80::C0A8:3201
Global unicast address(es):
3001::2, subnet is 3001::/64
Joined group address(es):
FF02::1:FF00:0...")
179 Task Remarks Configuring a tunnel interface Required. Configuring an IPv6 over IPv4 tunnel Configuring an IPv6 manual tunnel Optional. Use one as needed. Configuring a 6to4 tunnel Configuring an ISATAP tunnel Configuring a tunnel interface Configure a Layer 3 virtual tunnel interface on each device on a tunnel so that devices at both ends can send, identify, and process packets from the tunnel. Configuration guidelines Follow these guidelines when you configure a tunnel interface: • Before configuring a tunnel interface on a switch, you may need create a service loopback group with its service type as Tunnel, and add unused Layer 2 Ethernet interfaces of the switch to the service loopback group. • On the switch, an encapsulated packet cannot be forwarded a second time at Layer 3 by using the destination address and routing table, but is sent to the loopback interface, which then sends the packet to the forwarding module for Layer 3 forwarding. You must reference a service loopback group on the tunnel interface. Otherwise, the tunne l interface will not be up and packets cannot be transmitted over the tunnel. For creation and configuration of a service loopback group, see Layer 2—LAN Switching Configuration Guide. • The tunnel bandwidth command does not change the actual ban dwidth of the tunnel interface, but sets a bandwidth value for dynamical routing protoc ols to calculate the cost of a tunnel path. You can determine the value according to the bandwidth of the output interface. • The switch fragments IP unicast packets larger th an the MTU on the tunnel interface, and sends an ICMP error packet to the source device to inform it to modify its MTU. • The switch fragments IPv6 unicast packets larger than the MTU on the tunnel interface, and sends a n I C M P v 6 e r r o r p a c k e t t o t h e s o u r c e d e v i c e t o i n f o r m i t t o m o d i f y i t s M T U . T h e m i n i m u m M T U v a l u e in the ICMPv6 error packet is 1280 bytes, and you must configure a MTU no smaller than 1280 bytes for the tunnel (such as an IPv6 over IPv4 tunnel or an IPv6 over IPv6 tunnel). • By default, sending of ICMP destination unreachable packets is disabled. To enable it, use the ip unreachables enable command. Configuration procedure To configure a tunnel interface: Step Command Remarks 1. Enter system view. system-view N/A 2. Create a tunnel interface and enter its view. interface tunnel number By default, no tunnel interface is created.
180 Step Command Remarks 3. Configure the description for the interface. description text Optional. By default, the description of a tunnel interface is Tunnelnumber Interface . 4. Reference a service loopback group. service-loopback-group number By default, the tunnel does not reference any service loopback group. 5. Set the MTU of the tunnel interface. mtu size Optional. 64000 bytes by default. • An MTU set on any tunnel interface is effective on all existing tunnel interfaces. • You can issue this command multiple times, but only the last configuration takes effect. 6. Set the bandwidth of the tunnel interface. tunnel bandwidth bandwidth-value Optional. By default, the bandwidth of the tunnel interface is 64 kbps. 7. Restore the default setting. default Optional. 8. Shut down the tunnel interface. shutdown Optional. By default, the interface is up. Configuring an IPv6 manual tunnel Configuration prerequisites Configure IP addresses for interfaces (such as the VLAN interface, and loopback interface) on the device to ensure normal communication. One of the interfaces will be used as the source interface of the tunnel. Configuration guidelines Follow these guidelines when you configure an IPv6 manual tunnel: • After a tunnel interface is deleted, all the features configured on the tunnel interface will be deleted. • To encapsulate and forward IPv6 packets whose destination address does not belong to the subnet where the current tunnel interface resides, you must configure a static route or dynamic routing for forwarding those packets through this tunnel inte rface. If you configure a static route to that destination IPv6 address, specify this tunnel interf ace as the outbound interface, or the peer tunnel interface address as the next hop. A similar configuration is required at the other tunnel end. If you configure dynamic routing at both ends, enable the dynamic routing protocol on both tunnel interfaces. For the detailed configuration, see Layer 3—IP Routing Configuration Guide. Configuration procedure To configure an IPv6 manual tunnel:
181
Step Command Remarks
1. Enter system view.
system-view N/A
2. Enable IPv6.
ipv6 By default, the IPv6 packet
forwarding function is disabled.
3.
Enter tunnel interface
view. interface tunnel
number N/A
4. Configure an IPv6
address for the tunnel
interface.
• Configure a global unicast IPv6
address or a site-local address:
{ ipv6 address { ipv6-address
prefix-length |
ipv6-address /prefix-length }
{ ipv6 address
ipv6-address /prefix-length eui-64
• Configure a link-local IPv6 address:
{ ipv6 address auto link-local
{ ipv6 address ipv6-address
link-local The link-local IPv6 address
configuration is optional.
By default,
•
No IPv6 global unicast address
or site-local address is
configured for the tunnel
interface.
• A link-local address is
automatically created when an
IPv6 global unicast address or
site-local address is configured.
5. Specify the IPv6
manual tunnel mode. tunnel-protocol ipv6-ipv4
IPv6 manual tunnel by default.
The same tunnel mode should be
configured at both ends of the
tunnel. Otherwise, packet delivery
will fail.
6.
Configure a source
address or interface for
the tunnel. source
{ ip-address | interface-type
interface-number } By default, no source address or
interface is configured for the tunnel.
7.
Configure a
destination address for
the tunnel. destination
ip-address By default, no destination address is
configured for the tunnel.
8.
Return to system view.
quit N/A
9. Enable dropping of
IPv6 packets using
IPv4-compatible IPv6
addresses. tunnel discard ipv4-compatible-packet
Optional.
Disabled by default.
Configuration example
Network requirements
As shown in Figure 1
, two IPv6 networks are connected over an IPv4 network. Configure an IPv6 over
IPv4 tunnel between Switch A and Switch B to make the two IPv6 networks reachable to each other. If the
destination IPv4 address cannot be automatically obtained from the destination IPv6 addresses of
packets, configure an IPv6 manual tunnel.
182 Figure 1 Network diagram Configuration procedure B e f o re c o n f i g u r i n g a n I P v 6 m a n u a l t u n n e l , m a ke s u re that Switch A and Switch B have the corresponding VLAN interfaces created and can reach to each other. • Configure Switch A: # Enable IPv6. system-view [SwitchA] ipv6 # Configure an IPv4 address for VLAN-interface 100. [SwitchA] interface vlan-interface 100 [SwitchA-Vlan-interface100] ip address 192.168.100.1 255.255.255.0 [SwitchA-Vlan-interface100] quit # Configure an IPv6 address for VLAN-interface 101. [SwitchA] interface vlan-interface 101 [SwitchA-Vlan-interface101] ipv6 address 3002::1 64 [SwitchA-Vlan-interface101] quit # Create service loopback group 1 to support the tunnel service. [SwitchA] service-loopback group 1 type tunnel # Assign GigabitEthernet 1/0/3 to service loopbac k group 1, and disable STP, NDP, and LLDP on the interface. [SwitchA] interface GigabitEthernet 1/0/3 [SwitchA-GigabitEthernet1/0/3] undo stp enable [SwitchA-GigabitEthernet1/0/3] undo ndp enable [SwitchA-GigabitEthernet1/0/3] undo lldp enable [SwitchA-GigabitEthernet1/0/3] port service-loopback group 1 [SwitchA-GigabitEthernet1/0/3] quit # Configure a manual IPv6 tunnel. [SwitchA] interface tunnel 0 [SwitchA-Tunnel0] ipv6 address 3001::1/64 [SwitchA-Tunnel0] source vlan-interface 100 [SwitchA-Tunnel0] destination 192.168.50.1 [SwitchA-Tunnel0] tunnel-protocol ipv6-ipv4 # Reference service loopback group 1 on the tunnel. [SwitchA-Tunnel0] service-loopback-group 1 [SwitchA-Tunnel0] quit # Configure a static route to IPv6 Group 2 through Tunnel 0 on Switch A. [SwitchA] ipv6 route-static 3003:: 64 tunnel 0
183
• Configure Switch B
# Enable IPv6.
system-view
[SwitchB] ipv6
# Configure an IPv4 address for VLAN-interface 100.
[SwitchB] interface vlan-interface 100
[SwitchB-Vlan-interface100] ip address 192.168.50.1 255.255.255.0
[SwitchB-Vlan-interface100] quit
# Configure an IPv6 address for VLAN-interface 101.
[SwitchB] interface vlan-interface 101
[SwitchB-Vlan-interface101] ipv6 address 3003::1 64
[SwitchB-Vlan-interface101] quit
# Create service loopback group 1 to support the tunnel service.
[SwitchB] service-loopback group 1 type tunnel
# Assign GigabitEthernet 1/0/3 to service loo pback group 1, and disable STP, NDP, and LLDP.
[SwitchB] interface GigabitEthernet 1/0/3
[SwitchB-GigabitEthernet1/0/3] undo stp enable
[SwitchB-GigabitEthernet1/0/3] undo ndp enable
[SwitchB-GigabitEthernet1/0/3] undo lldp enable
[SwitchB-GigabitEthernet1/0/3] port service-loopback group 1
[SwitchB-GigabitEthernet1/0/3] quit
# Configure an IPv6 manual tunnel.
[SwitchB] interface tunnel 0
[SwitchB-Tunnel0] ipv6 address 3001::2/64
[SwitchB-Tunnel0] source vlan-interface 100
[SwitchB-Tunnel0] destination 192.168.100.1
[SwitchB-Tunnel0] tunnel-protocol ipv6-ipv4
# Reference service loopback group 1 on the tunnel.
[SwitchB-Tunnel0] service-loopback-group 1
[SwitchB-Tunnel0] quit
# Configure a static route to IPv6 Group 1 through Tunnel 0 on Switch B.
[SwitchB] ipv6 route-static 3002:: 64 tunnel 0
Verifying the configuration
Display the status of the tunnel interfaces on Switch A and Switch B.
[SwitchA] display ipv6 interface tunnel 0
Tunnel0 current state :UP
Line protocol current state :UP
IPv6 is enabled, link-local address is FE80::C0A8:6401
Global unicast address(es):
3001::1, subnet is 3001::/64
Joined group address(es):
FF02::1:FF00:0
FF02::1:FF00:1
FF02::1:FFA8:6401
FF02::2
FF02::1
184
MTU is 1480 bytes
ND reachable time is 30000 milliseconds
ND retransmit interval is 1000 milliseconds
Hosts use stateless autoconfig for addresses
IPv6 Packet statistics:
InReceives: 55
...
[SwitchB] display ipv6 interface tunnel 0
Tunnel0 current state :UP
Line protocol current state :UP
IPv6 is enabled, link-local address is FE80::C0A8:3201
Global unicast address(es):
3001::2, subnet is 3001::/64
Joined group address(es):
FF02::1:FF00:0
FF02::1:FF00:1
FF02::1:FFA8:3201
FF02::2
FF02::1
MTU is 1480 bytes
ND reachable time is 30000 milliseconds
ND retransmit interval is 1000 milliseconds
Hosts use stateless autoconfig for addresses
IPv6 Packet statistics:
InReceives: 55
...
# Ping the IPv6 address of VLAN-interface 101 at the peer end from Switch A.
[SwitchA] ping ipv6 3003::1
PING 3003::1 : 56 data bytes, press CTRL_C to break
Reply from 3003::1
bytes=56 Sequence=1 hop limit=64 time = 1 ms
Reply from 3003::1
bytes=56 Sequence=2 hop limit=64 time = 1 ms
Reply from 3003::1
bytes=56 Sequence=3 hop limit=64 time = 1 ms
Reply from 3003::1
bytes=56 Sequence=4 hop limit=64 time = 1 ms
Reply from 3003::1
bytes=56 Sequence=5 hop limit=64 time = 1 ms
--- 3003::1 ping statistics ---
5 packet(s) transmitted
5 packet(s) received
0.00% packet loss
round-trip min/avg/max = 1/1/1 ms
185
Configuring a 6to4 tunnel
Configuration prerequisites
Configure IP addresses for interfaces (such as the VLAN interface, and loopback interface) on the device
to ensure normal communication. One of the interfaces will be used as the source interface of the tunnel.
Configuration guidelines
Follow these guidelines when you configure a 6to4 tunnel:
• No destination address needs to be configured for a 6to4 tunnel because the destination address
can automatically be obtained from the IPv4 address embedded in the 6to4 IPv6 address.
• To encapsulate and forward IPv6 packets whose destination address does not belong to the subnet
where the receiving tunnel interface resides, configure a static route to reach the destination IPv6
address through this tunnel interface on the devi ce. Because automatic tunnels do not support
dynamic routing, you can configure a static route to that destination IPv6 address with this tunnel
interface as the outbound interface or the peer tunnel interface address as the next hop. A similar
configuration is required at the other tunnel end. For the detailed configuration, see Layer 3—IP
Routing Configuration Guide .
• Automatic tunnel interfaces using the same encapsul ation protocol cannot share the same source IP
address.
Configuration procedure
To configure a 6to4 tunnel:
Step Command Remarks
1. Enter system view.
system-view N/A
2. Enable IPv6.
ipv6 By default, the IPv6 packet forwarding
function is disabled.
3.
Enter tunnel interface
view. interface tunnel
number N/A
4. Configure an IPv6
address for the tunnel
interface.
• Configure an IPv6 global unicast
address or a site-local address:
{ ipv6 address { ipv6-address
prefix-length |
ipv6-address /prefix-length }
{ ipv6 address
ipv6-address /prefix-length
eui-64
• Configure an IPv6 link-local
address:
{ ipv6 address auto link-local
{ ipv6 address ipv6-address
link-local The IPv6 link-local address
configuration is optional.
By default,
•
No IPv6 global unicast address or
site-local address is configured for
the tunnel interface.
• A link-local address will
automatically be generated when
an IPv6 global unicast address or
site-local address is configured.
186
Step Command Remarks
5. Specify the 6to4 tunnel
mode. tunnel-protocol ipv6-ipv4 6to4
IPv6 manual tunnel by default.
The same tunnel mode should be
configured at both ends of the tunnel.
Otherwise, packet delivery will fail.
6.
Configure a source
address or interface for
the tunnel. source
{ ip-address | interface-type
interface-number } By default, no source address or
interface is configured for the tunnel.
7.
Return to system view.
quit N/A
8. Enable dropping of
IPv6 packets using
IPv4-compatible IPv6
addresses. tunnel discard
ipv4-compatible-packet
Optional.
Disabled by default.
Configuration example
Network requirements
As shown in
Figure 2, two 6to4 networks are connected to an IPv4 network through two 6to4 switches
(Switch A and Switch B). Configure a 6to4 tunnel to make Host A and Host B reachable to each other.
Figure 2 Network diagram
Configuration consideration
To enable communication between 6to4 networks, configure 6to4 addresses for 6to4 switches and hosts
in the 6to4 networks.
• The IPv4 address of VLAN-interface 100 on Switch A is 2.1.1.1/24, and the corresponding 6to4
p r e f i x i s 2 0 0 2 : 0 2 01: 0101: : / 4 8 a f t e r i t i s t r a n s l a t e d t o a n I P v 6 address. Assign interface Tunnel 0 to
subnet 2002:0201:0101::/64 and VLAN-interface 101 to subnet 2002:0201:0101:1::/64.
• The IPv4 address of VLAN-interface 100 on Switch B is 5.1.1.1/24, and the corresponding 6to4
prefix is 2002:0501:0101::/48 after it is translated to an IPv6 address. Assign interface Tunnel 0 to
s u b n e t 2 0 0 2 : 0 5 01: 0101: : / 6 4 a n d V L A N - i n t e r f a c e 101 t o s u b n e t 2 0 0 2 : 0 5 01: 0101:1: : / 6 4 .
Configuration procedure
Before configuring a 6to4 tunnel, make sure that Switch A and Switch B have the corresponding VLAN
interfaces created and are reachable to each other.
187 • Configure Switch A: # Enable IPv6. system-view [SwitchA] ipv6 # Configure an IPv4 address for VLAN-interface 100. [SwitchA] interface vlan-interface 100 [SwitchA-Vlan-interface100] ip address 2.1.1.1 24 [SwitchA-Vlan-interface100] quit # Configure an IPv6 address for VLAN-interface 101. [SwitchA] interface vlan-interface 101 [SwitchA-Vlan-interface101] ipv6 address 2002:0201:0101:1::1/64 [SwitchA-Vlan-interface101] quit # Create service loopback group 1 to support the tunnel service. [SwitchA] service-loopback group 1 type tunnel # Assign GigabitEthernet 1/0/3 to service loopbac k group 1, and disable STP, NDP, and LLDP on the interface. [SwitchA] interface GigabitEthernet 1/0/3 [SwitchA-GigabitEthernet1/0/3] undo stp enable [SwitchA-GigabitEthernet1/0/3] undo ndp enable [SwitchA-GigabitEthernet1/0/3] undo lldp enable [SwitchA-GigabitEthernet1/0/3] port service-loopback group 1 [SwitchA-GigabitEthernet1/0/3] quit # Configure a 6to4 tunnel. [SwitchA] interface tunnel 0 [SwitchA-Tunnel0] ipv6 address 2002:201:101::1/64 [SwitchA-Tunnel0] source vlan-interface 100 [SwitchA-Tunnel0] tunnel-protocol ipv6-ipv4 6to4 # Reference service loopback group 1 on the tunnel. [SwitchA-Tunnel0] service-loopback-group 1 [SwitchA-Tunnel0] quit # Configure a static route whose destination address is 2002::/16 and next-hop is the tunnel interface. [SwitchA] ipv6 route-static 2002:: 16 tunnel 0 • Configure Switch B: # Enable IPv6. system-view [SwitchB] ipv6 # Configure an IPv4 address for VLAN-interface 100. [SwitchB] interface vlan-interface 100 [SwitchB-Vlan-interface100] ip address 5.1.1.1 24 [SwitchB-Vlan-interface100] quit # Configure an IPv6 address for VLAN-interface 101. [SwitchB] interface vlan-interface 101 [SwitchB-Vlan-interface101] ipv6 address 2002:0501:0101:1::1/64 [SwitchB-Vlan-interface101] quit # Create service loopback group 1 to support the tunnel service.
188 [SwitchB] service-loopback group 1 type tunnel # Assign GigabitEthernet 1/0/3 to service loopback group 1, and disable STP, NDP, and LLDP on the interface. [SwitchB] interface GigabitEthernet 1/0/3 [SwitchB-GigabitEthernet1/0/3] undo stp enable [SwitchB-GigabitEthernet1/0/3] undo ndp enable [SwitchB-GigabitEthernet1/0/3] undo lldp enable [SwitchB-GigabitEthernet1/0/3] port service-loopback group 1 [SwitchB-GigabitEthernet1/0/3] quit # Configure the 6to4 tunnel. [SwitchB] interface tunnel 0 [SwitchB-Tunnel0] ipv6 address 2002:0501:0101::1/64 [SwitchB-Tunnel0] source vlan-interface 100 [SwitchB-Tunnel0] tunnel-protocol ipv6-ipv4 6to4 # Reference service loopback group 1 on the tunnel. [SwitchB-Tunnel0] service-loopback-group 1 [SwitchB-Tunnel0] quit # Configure a static route whose destination addr ess is 2002::/16 and the next hop is the tunnel interface. [SwitchB] ipv6 route-static 2002:: 16 tunnel 0 Verifying the configuration # Ping Host B from Host A or ping Host A from Host B. D:\>ping6 -s 2002:201:101:1::2 2002:501:101:1::2 Pinging 2002:501:101:1::2 from 2002:201:101:1::2 with 32 bytes of data: Reply from 2002:501:101:1::2: bytes=32 time=13ms Reply from 2002:501:101:1::2: bytes=32 time=1ms Reply from 2002:501:101:1::2: bytes=32 time=1ms Reply from 2002:501:101:1::2: bytes=32 time