1. Manuals
  2. Brands
  3. Brocade Communications Systems Manuals
  4. Switch
  5. ServerIron ADX 12.4.00a
  6. Security manual

Configuring A Rule For Ipv6 Ext Header Types - Brocade Communications Systems ServerIron ADX 12.4.00a Security Manual

Version 12.4.00a
Hide thumbs
Table of Contents

Advertisement

5
DDoS protection
TABLE 16
reserved
router-advertisement
router-solicitation

Configuring a rule for IPv6 ext header types

ServerIron ADX has a set of built-in rules to manage IPv6 header types. In this case, the rule
command is used with a <ipv6-ext-header-type > variable specified in Table 17.
The following example configures the "filter5" security filter with a rule to drop packets that contain
the ipv6-ext-header type esp.
ServerIronADX(config)# security filter filter5
ServerIronADX(config-sec-filter5)#rule ipv6-ext-header-type esp drop
Syntax: [no] rule ipv6-ext-header-type <ipv6-ext-header-type> [log | no-log] [drop | no-drop]
The <ipv6-ext-header-type> variable is specified as one of the options described in Table
17.
The log parameter directs the ServerIron ADX to drop traffic on the bound interface that matches
the rule specified by the configured <ipv6-ext-header-type>. The no-log parameter disables
this function.
The drop parameter directs the ServerIron ADX to drop traffic on the bound interface that matches
the rule specified by the configured <ipv6-ext-header-type>. The no-drop parameter
disables this function
TABLE 17
Attack Type
ah
cfg-hdr0-num
cfg-hdr1-num
cfg-hdr2-num
cfg-hdr3-num
destination-option
esp
hop-by-hop
mobility-header
no-next-header
routing-header
unknown-header
132
ICMPv6 types and descriptions
ICMP type 255: reserved for expansion
ICMP type 134: router-advertisement
ICMP type 133: router-solicitation
IPv6 ext header types and descriptions
Description
Authentication Header Option
Configurable extension header code 0
Configurable extension header code 1
Configurable extension header code 2
Configurable extension header code 3
Destination Options (with Routing Options)
Encapsulation Security Payload Header
Hop-by-Hop option
Mobility Header option
No Next Header
Routing Header option
Unknown headers are those that are not listed in the above header types
and TCP/UDP/ICMPv6.
ServerIron ADX Security Guide
53-1002440-03

Advertisement

Table of Contents
loading

Related Manuals for Brocade Communications Systems ServerIron ADX 12.4.00a

Related Content for Brocade Communications Systems ServerIron ADX 12.4.00a

This manual is also suitable for:

Serveriron adx 1000Serveriron adx 4000Serveriron adx 8000Serveriron adx 10000

Table of Contents