H12-891_V1.0 Exam Dumps : HCIE-Datacom V1.0

SRv6 Instruction Naming Conventions

SRv6 (Segment Routing over IPv6) uses segment identifiers (SIDs) with specific functions, indicated by instruction keywords:

✅ A. T: Searches a specified routing table to forward packets.

T (Table Lookup) → Performs a lookup in a specified routing table and forwards packets accordingly.

❌ B. M: Searches a Layer 2 forwarding table for unicast forwarding.

Incorrect! SRv6 does not use M for Layer 2 unicast forwarding.

✅ C. V: Searches a VPN instance routing table to forward packets.

V (VPN Routing Table Lookup) → Performs a lookup in a VPN instance (VRF) table for forwarding.

✅ D. X: Forwards packets through one or a group of specified Layer 3 interfaces.

X (Cross-connect forwarding) → Forwards packets via a specified Layer 3 interface or group of interfaces.

Reference from Huawei HCIE-Datacom Documentation:

Huawei SRv6 Configuration Guide – SRv6 SID Naming and Instruction Set

HCIE-Datacom Study Material – Segment Routing over IPv6 (SRv6) Functionality

Comprehensive and Detailed In-Depth Explanation:

OSPFv3, which supports IPv6, uses a router ID that is 32 bits in length, similar to OSPFv2. The router ID in OSPF is always a 32-bit number, typically represented in an IPv4 address format (dotted decimal). Although OSPFv3 is designed to support IPv6, it still relies on a 32-bit router ID for identification, which must be unique within an OSPF domain. The router ID does not change even though the protocol itself supports IPv6 addresses (128 bits).

Huawei IPsec supports multiple modes for establishing Security Associations (SAs):

A. Template negotiation — Used in IPsec policy templates and dynamic VPNs.

B. IKE auto-negotiation mode — Automatically negotiates parameters via IKE Phase 1/2.

C. Certificate negotiation — IPsec peers can authenticate each other using certificates during IKE negotiation.

D. Manual mode — Static IPsec SAs can be manually configured without IKE, often used in simple or static topologies.

Exact Extract - Huawei Security Configuration Guide (USG Series):

“IPsec SAs can be established manually or dynamically through IKE, including using PSKs or certificates. Template-based approaches simplify large-scale deployment.”