nd-snooping ra-guard - 188金宝搏的网址

Syntax

nd-snooping ra-guard [log] no nd-snooping ra-guard

描述

This command enables Routing Advertisement (RA) guard on the selected VLAN. When enabled, ingress Routing Advertisement (RA) and Routing Redirect (RR) packets on the selected VLAN are blocked on untrusted ports. The packets are forwarded when received on trusted ports.

The no form of the command disables RA guard on the VLAN.

NOTE:ND snooping must be enabled in both the global context and the config-vlan context before this command can be used.

Command context

config-vlan

Parameters

(日志): Logs messages along with drop functionality.

权威

Administrators or local user group members with execution rights for this command.

Examples

Enabling ND snooping RA guard on VLAN 100:

switch(config)#nd-snooping enableswitch(config)#vlan 100switch(config-vlan-100)#nd-snooping ra-guardswitch(config-vlan-100)#exitswitch(config)#

Enabling ND snooping RA guard on VLAN 100 with event logging on dropped packets:

switch(config)#nd-snooping enableswitch(config)#vlan 100switch(config-vlan-100)#nd-snooping ra-guard logswitch(config-vlan-100)#exitswitch(config)#

Disabling ND snooping RA guard on VLAN 100:

switch(config)#vlan 100switch(config-vlan-100)#no nd-snooping ra-guardswitch(config-vlan-100)#exitswitch(config)#