EasyManuals Logo

Juniper EX2200 Hardware Guide

Juniper EX2200
354 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #40 background imageLoading...
Page #40 background image
For more information about strict unicast RPF, see RFC 3704, Ingress Filtering for
Multihomed Networks at http://www.ietf.org/rfc/rfc3704.txt.
Unicast RPF Implementation
This section includes:
Unicast RPF Packet Filtering on page 20
Bootstrap Protocol (BOOTP) and DHCP Requests on page 20
Default Route Handling on page 20
Unicast RPF Packet Filtering
When you enable unicast RPF on the switch, the switch handles traffic in the following
manner:
If the switch receives a packet on the interface that is the best return path to the unicast
source address of that packet, the switch forwards the packet.
If the best return path from the switch to the packet's unicast source address is not
the receiving interface, the switch discards the packet.
If the switch receives a packet that has a source IP address that does not have a routing
entry in the forwarding table, the switch discards the packet.
Bootstrap Protocol (BOOTP) and DHCP Requests
Bootstrap protocol (BOOTP) and DHCP request packets are sent with a broadcast MAC
address and therefore the switch does not perform unicast RPF checks on them. The
switch forwards all BOOTP packets and DHCP request packets without performing
unicast RPF checks.
Default Route Handling
If the best return path to the source is the default route (0.0.0.0) and the default route
points to reject, the switch discards the packets. If the default route points to a valid
network interface, the switch performs a normal unicast RPF check on the packets.
When to Enable Unicast RPF
Enable unicast RPF when you want to ensure that traffic arriving on a network interface
comes from a source that resides on a network that that interface can reach. You can
enable unicast RPF on untrusted interfaces to filter spoofed packets. For example, a
common application for unicast RPF is to help defend an enterprise network from
DoS/DDoS attacks coming from the Internet.
Enable unicast RPF only on symmetrically routed interfaces. A symmetrically routed
interface uses the same route in both directions between the source and the destination,
as shown in Figure 3 on page 21. Symmetrical routing means that if an interface receives
a packet, the switch uses the same interface to send a reply to the packet source (the
receiving interface matches the forwarding-table entry for the best return path to the
source).
Copyright © 2015, Juniper Networks, Inc.20
Network Interfaces for EX4300 Switches

Table of Contents

Other manuals for Juniper EX2200

Preview: User Manual
User Manual238 pages
Preview: Quick Start Guide
Quick Start Guide7 pages
Preview: Complete Hardware Guide
Complete Hardware Guide176 pages
Preview: Quick Start
Quick Start2 pages
Preview: Mounting Manual
Mounting Manual4 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Juniper EX2200 and is the answer not in the manual?

Juniper EX2200 Specifications

General IconGeneral
Throughput77 Mpps
MAC address table8000 entries
Jumbo frames supportYes
Number of VLANs1024
Networking standards-
Switch typeManaged
SFP module slots quantity4
Installed SFP modules quantity0
Basic switching RJ-45 Ethernet ports quantity48
StackableNo
Product colorBlack
Power consumption (typical)100 W
Operating altitude0 - 3048 m
Non-operating altitude0 - 4877 m
Storage temperature (T-T)-40 - 70 °C
Operating temperature (T-T)0 - 45 °C
Storage relative humidity (H-H)0 - 95 %
Operating relative humidity (H-H)10 - 85 %
Weight and Dimensions IconWeight and Dimensions
Depth254 mm
Width441 mm
Height43 mm
Weight3600 g

Related product manuals