First-hop security IPv6 Cisco IOS

From Teknologisk videncenter
Revision as of 07:17, 19 December 2011 by Heth (talk | contribs) (Links)
Jump to: navigation, search

Kate.png This article is under development....

Unicast Reverse Path Forwarding

To avoid spoofed packets passing a Router. Could be DoS attack. With RPF - reverse Path Forwarding - the router checks that the sending hosts source IP address matches the routing table on the receiving interface.

Example
An access-list can be used as an option to this command
R1(config)#<input>interface fa0/1</input>
R1(config-if)#<input>ipv6 verify unicast reverse-path</input>

Links

Retrieved from "http://mars.merhot.dk/w/index.php?title=First-hop_security_IPv6_Cisco_IOS&oldid=20689"