Table of Contents
Advertisement
25
Configuring IPv6 First Hop Security through Web GUI
STEP 1
STEP 2
STEP 3
STEP 4
553
•
Router Solicitation (RS) messages
•
Neighbor Advertisement (NA) messages
•
Neighbor Solicitation (NS) messages
•
ICMPv6 Redirect messages
•
Certification Path Advertisement (CPA) messages
•
Certification Path Solicitation (CPS) message
•
DHCPv6 messages
The FHS features are disabled by default.
FHS Settings
Use the FHS Settings page to enable the FHS Common feature on a specified group of VLANs
and to set the global configuration value for logging of dropped packets. If required, a policy
can be added or the packet drop logging can be added to the system-defined default policy.
To configure IPv6 First Hop Security common parameters:
Click Security > IPv6 First Hop Security > FHS Settings.
The currently-defined polices are displayed. For each policy, its Policy Type is displayed,
which indicates whether it is a default or user-defined policy.
Enter the following global configuration fields:
•
FHS VLAN List—Enter one or more VLANs on which IPv6 First Hop Security is
enabled.
•
Packet Drop Logging—Select to create a SYSLOG when a packet is dropped by a First
Hop Security policy. This is the global default value if no policy is defined.
Click Apply to add the settings to the Running Configuration file.
Create a FHS policy if required by clicking Add.
Enter the following fields:
•
Policy Name—Enter a user-defined policy name.
Cisco Sx350, SG350X, SG350XG, Sx550X & SG550XG Series Managed Switches, Firmware Release 2.2.5.x
Security: IPv6 First Hop Security
Configuring IPv6 First Hop Security through Web GUI
Hide quick links:
Advertisement
Table of Contents
