Displaying And Maintaining Nd Detection; Nd Detection Configuration Example - HP 5120 SI Series Security Configuration Manual
Hide thumbs
Also See for 5120 SI Series:
- Command reference manual (395 pages) ,
- Installation manual (48 pages) ,
- Specification (33 pages)
Table of Contents
Advertisement
NOTE:
ND detection performs source check by using the binding tables of IP source guard, DHCPv6 snooping,
•
and ND snooping. To prevent an ND-untrusted port from discarding legal ND packets in an ND
detection-enabled VLAN, ensure that at least one of the three functions is available.
When creating an IPv6 static binding with IP source guard for ND detection in a VLAN, specify the
•
VLAN ID for the binding. If not, no ND packets in the VLAN can match the binding.
Displaying and maintaining ND detection
To do...
Display the ND detection
configuration
Display the statistics of discarded
packets when the ND detection
checks the user legality
Clear the statistics by ND
detection
ND detection configuration example
Network requirements
As shown in
has the IPv6 address 10::5 and MAC address 0001-0203-0405. Host B has the IPv6 address 10::6 and
MAC address 0001-0203-0607.
Enable ND detection on Switch B to filter out forged ND packets.
Use the command
display ipv6 nd detection [ | { begin | exclude |
include } regular-expression ]
display ipv6 nd detection statistics [ interface
interface-type interface-number ] [ | { begin |
exclude | include } regular-expression ]
reset ipv6 nd detection statistics [ interface
interface-type interface-number ]
Figure 1
17, Host A and Host B connect to Switch A, the gateway, through Switch B. Host A
322
Remarks
Available in any view
Available in any view
Available in user view
Advertisement
Table of Contents
Troubleshooting
