Thursday, May 15, 2014

Vpn-instance in HP routers and switches(VRF in cisco)

Notes :- VRF in H3C/Comware is called vpn-instance and is configured much like VRF on a Cisco device.


#
ip vpn-instance red
 description Customer red
#
interface GigabitEthernet2/0/1
 description Int to cust red
 ip binding vpn-instance red
#


#
ip vpn-instance red
 description Customer red
 route-distinguisher 1:1
#
interface GigabitEthernet2/0/1
 description Int to cust red
 ip binding vpn-instance red
#

Some commands from BGP IPV4 VPN-INSTANCE
#
bgp 100
undo synchronization
peer 3.3.3.3 as-number 100
peer 3.3.3.3 connect-interface LoopBack0
#
ipv4-family vpn-instance cust1_site1
import-route direct
import-route ospf 200
#
ipv4-family vpnv4
peer 3.3.3.3 enable

#

Optimization of fortigate IPS

IPS signature need select according to infrastructure environment  Eg:-  if  we are not have Linux servers this ips signature can disable (d...