Configuring Icmpv6 Packet Sending; Configuring The Maximum Icmpv6 Error Packets Sent In An Interval; Enabling Replying To Multicast Echo Requests - HP 3600 v2 Series Configuration Manual

Hide thumbs Also See for 3600 v2 Series:

Command reference manual (510 pages)

Configuration manual (449 pages)

Security configuration manual (398 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

243

244

245

246

Table of Contents

Step

Enter system view.

Set the synwait timer.

Set the finwait timer.

Set the size of the IPv6 TCP

sending/receiving buffer.

Configuring ICMPv6 packet sending

Configuring the maximum ICMPv6 error packets sent in an

interval

If too many ICMPv6 error packets are sent within a short time in a network, network congestion may

occur. To avoid network congestion, you can control the maximum number of ICMPv6 error packets sent

within a specific time by adopting the token bucket algorithm.

You can set the capacity of a token bucket to determine the number of tokens in the bucket. In addition,

you can set the update interval of the token bucket, the interval for restoring the configured capacity. One

token allows one ICMPv6 error packet to be sent. Each time an ICMPv6 error packet is sent, the number

of tokens in a token bucket decreases by one. If the number of ICMPv6 error packets successively sent

exceeds the capacity of the token bucket, the additional ICMPv6 error packets cannot be sent out until

the capacity of the token bucket is restored.

To configure the capacity and update interval of the token bucket:

Step

Enter system view.

Configure the capacity

and update interval of

the token bucket.

Enabling replying to multicast echo requests

If hosts are configured to answer multicast echo requests, an attacker can use this mechanism to attack

a host. For example, if Host A (an attacker) sends an echo request with the source being Host B to a

multicast address, all hosts in the multicast group will send echo replies to Host B. To prevent such an

attack, disable a device from answering multicast echo requests by default. In some application

scenarios, however, you must enable the device to answer multicast echo requests.

Command

system-view

tcp ipv6 timer syn-timeout

wait-time

tcp ipv6 timer fin-timeout wait-time

tcp ipv6 window size

Command

system-view

ipv6 icmp-error { bucket

bucket-size | ratelimit

interval } *

136

Remarks

N/A

Optional.

75 seconds by default.

Optional.

675 seconds by default.

Optional.

8 KB by default.

Remarks

N/A

Optional.

By default, the capacity of a token bucket is 10

and the update interval is 100 milliseconds. A

maximum of 10 ICMPv6 error packets can be

sent within 100 milliseconds.

The update interval "0" indicates that the

number of ICMPv6 error packets sent is not

restricted.

Table of Contents

Show Quick Links

Hide quick links:

Table of Contents

Configuring Icmpv6 Packet Sending; Configuring The Maximum Icmpv6 Error Packets Sent In An Interval; Enabling Replying To Multicast Echo Requests - HP 3600 v2 Series Configuration Manual

Configuring ICMPv6 packet sending

Enabling replying to multicast echo requests

Hide quick links:

Troubleshooting

Related Manuals for HP 3600 v2 Series

Related Content for HP 3600 v2 Series

Table of Contents