EasyManua.ls Logo

Zte ZXR10 8900 Series - URPF Configuration Example

Zte ZXR10 8900 Series
186 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
Chapter17URPFConguration
Note:
Instep1,theparametersaredescribedbelow.
StrictmeansthatifegressportfoundbysourceIPaddressis
differentfromdataingressport,itwillbediscarded;otherwise
itwillbeprocessedinprimaryway.
LoosemeansthatifsourceIPaddresscanndroute,and
egressportandingressportofdefaultroutearecoincident,it
willbeprocessedinthenormalway,otherwiseitwillbedis-
carded.
Loose-ingoring-default-routemeansthatifsourceIPad-
dresscanndrouteandtherouteisnotbydefault,itwillbe
processedinthenormalway.Otherwiseitwillbediscarded.
URPFConfiguration
Example
URPFnetworktopologyisshowninFigure39.
FIGURE39URPFCONFIGURATIONEXAMPLE
StrictURPFisconguredoninterfacefei_1/2onS1soastopre-
venttheusersbehindnetwork192.168.0.0/24frommaliciously
attackingnetworksbehindS1.
CongurationonS1:
ZXR10(config)#interfacefei_1/2
ZXR10(config-if)#swacvlan10
ZXR10(config-if)#ipverifystrict
ZXR10(config-if)#exit
ZXR10(config)#intvlan10
ZXR10(config-if)#ipaddress192.168.0.1255.255.255.0
CondentialandProprietaryInformationofZTECORPORATION159

Table of Contents

Other manuals for Zte ZXR10 8900 Series

Preview: Command Reference
Command Reference147 pages
Preview: Command Manual
Command Manual177 pages
Preview: Hardware Manual
Hardware Manual131 pages
Preview: Hardware Installation Manual
Hardware Installation Manual109 pages
Preview: Instructions
Instructions14 pages

Related product manuals