Enabling IPv6 SEND

After a rate limit for the system to compute or verify the RSA signature in a specified period (1s), the key length allowed on the interface, and the timestamp in the ND messages are set, the system considers the received ND messages that do not meet these requirements invalid.

Procedure

  1. Run system-view

    The system view is displayed.

  2. (Optional) Run ipv6 nd security rate-limit ratelimit-value

    A rate limit for the system to compute or verify the RSA signature in a specified period (1s) is set.

  3. Run interface interface-type interface-number

    The interface view is displayed.

  4. Run ipv6 enable

    The IPv6 function is enabled.

  5. (Optional) Run ipv6 nd security key-length { minimum keylen-value | maximum keylen-value } *

    The key length allowed on the interface is set.

  6. (Optional) Run ipv6 nd security timestamp { fuzz-factor fuzz-value | delta delta-value | drift drift-value } *

    The timestamp configuration parameters are set

  7. Run ipv6 nd security strict

    The strict security mode is enabled on the interface.

  8. Run commit

    The configuration is committed.

Parent Topic: Configuring IPv6 SEND
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >