EasyManua.ls Logo

Zte ZXR10 ZSR V2 - Ipv6 URPF Configuration Instances; Example: Configuring Ipv6 URPF (Strict); Figure 21-1 Topology of Ipv6 URPF Configuration Example (Strict)

Zte ZXR10 ZSR V2
313 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
Chapter21IPv6URPFConguration
interface<interface-name>:nameoftheinterfacewheretheIPv6URPFfunctionis
congured.
ignore-default-route:Itisonlyavailableforloosemode.
2.Verifythecongurations.
CommandFunction
ZXR10#showrunning-configurpf[all]DisplaysalltheURPFcongurations.
ZXR10#showrunning-config-interface
<interface-name>[all]
DisplaysURPFcongurationofa
speciedinterface.
EndofSteps
21.3IPv6URPFCongurationInstances
21.3.1Example:ConfiguringIPv6URPF(Strict)
CongurationDescription
AsshowninFigure21-1,strictURPFisconguredfortheinterfacegei-2/1onR1,which
preventsthenetworkuserscomingfromthenetworksegmentbefore1:1::ad:ea/64from
attackingthenetworkconnectingtoR1,andpermitsthedataowfromthenetwork
segment1:11::ad:ea/64topassthroughURPFinspection.
Figure21-1TopologyofIPv6URPFCongurationExample(Strict)
CongurationFlow
1.CongureIPv6addressfortheinterface.
2.CreateACL,addtheACLmatchingrequirements.Forexample,permitthetrafc
comingfrom1:11::ad:ea/64topass.
3.BindstrictIPv6URPFwithACLlisttotheinterface.
CongurationCommands
ThecongurationofR1isasfollows:
R1(config)#interfacegei-2/1
R1(config-if-gei-2/1)#noshutdown
R1(config-if-gei-2/1)#ipv6enable
R1(config-if-gei-2/1)#ipv6address1:1::ad:ea/64
21-3
SJ-20140504150128-018|2014-05-10(R1.0)ZTEProprietaryandCondential

Table of Contents

Other manuals for Zte ZXR10 ZSR V2

Preview: Configuration Guide (System Management
Configuration Guide (System Management192 pages

Related product manuals