Configuring An Interface As The Source For Syslog Packets; Ip Fragmentation Protection - Dell PowerConnect B-RX Configuration Manual
Bigiron rx series configuration guide v02.8.00
Hide thumbs
Also See for PowerConnect B-RX:
- Configuration manual (1436 pages) ,
- Getting started manual (32 pages) ,
- Installation manual (240 pages)
Table of Contents
Advertisement
RADIUS packets
To specify the lowest-numbered IP address configured on a virtual interface as the device's source
for all RADIUS packets, enter commands such as the following.
BigIron RX(config)# int ve 1
BigIron RX(config-vif-1)# ip address 10.0.0.3/24
BigIron RX(config-vif-1)# exit
BigIron RX(config)# ip radius source-interface ve 1
The commands configure virtual interface 1, assign IP address 10.0.0.3/24 to the interface, then
designate the interface as the source for all RADIUS packets from the device.
Syntax: ip radius source-interface ethernet <slot/port> | loopback <num> | ve <num>
The <num> parameter is a loopback interface or virtual interface number.
Configuring an interface as the source for Syslog packets
You can configure the device to use the lowest-numbered IPv4 or IPv6 address configured on a
loopback interface, virtual interface, or Ethernet port as the source for all Syslog packets from the
device. The software uses the lowest-numbered IP or IPv6 address configured on the interface as
the source IP address for the packets.
For example, to specify the lowest-numbered IP address configured on a virtual interface as the
device's source for all Syslog packets, enter commands such as the following:.
BigIron RX(config)# int ve 1
BigIron RX(config-vif-1)# ip address 10.0.0.4/24
BigIron RX(config-vif-1)# exit
BigIron RX(config)# ip syslog source-interface ve 1
The commands in this example configure virtual interface 1, assign IP address 10.0.0.4/24 to the
interface, then designate the interface's address as the source address for all Syslog packets.
Syntax: [no] ip syslog source-interface ethernet [<slotnum>/]<portnum> | loopback <num> | ve
The <num> parameter is a loopback interface or virtual interface number. If you specify an
Ethernet, the <slotnum>/]<portnum> is the port's number including the slot number, if you are
configuring a device.
The default is the lowest-numbered IP or IPv6 address configured on the port through which the
packet is sent. The address therefore changes, by default, depending on the port.
IP fragmentation protection
Beginning with this release, IP packet filters on the device switches will drop undersized fragments
and overlapping packet fragments to prevent tiny fragment attacks as explained in RFC 1858.
When packets are fragmented on the network, the first fragment of a packet must be large enough
to contain all the necessary header information. Fragments, once reassembled, must meet certain
criteria before they are allowed to pass through the network. There are no CLI commands for this
new security feature.
BigIron RX Series Configuration Guide
53-1002253-01
Configuring an interface as the source for Syslog packets
<num>
7
185
Advertisement
Table of Contents
