< Home

Configuring the IPSG Function

Context

To defend against IP address spoofing attacks, enable the IP source guard (IPSG) function to check IP packets against a binding table. This function prevents unauthorized packets from passing through an AP and ensures network security.

Procedure

  1. Run system-view

    The system view is displayed.

  2. Run wlan

    The WLAN view is displayed.

  3. Run vap-profile name profile-name

    The VAP profile view is displayed.

  4. Run ip source check user-bind enable

    The IPSG function is enabled on the AP.

    By default, IP source guard is disabled on APs.

    After the IPSG function is enabled, run the undo learn-client-address disable command to enable STA address learning to make the IPSG function take effect.

Parent Topic: Configuring WLAN Security
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >