Configuring parameters related to ra messages – H3C Technologies H3C SecPath F1000-E User Manual
Page 716
691
CAUTION:
After a static neighbor entry is configured, the firewall must resolve the corresponding Layer 2 port
information of the VLAN interface.
Configuring the maximum number of neighbors dynamically
learned
The firewall can dynamically acquire the link-layer address of a neighboring node through NS and NA
messages and add it into the neighbor table. A large table may reduce the forwarding performance of
the firewall. You can restrict the size of the neighbor table by setting the maximum number of neighbors
that an interface can dynamically learn. When the number of dynamically learned neighbors reaches
the threshold, the interface will stop learning neighbor information.
To configure the maximum number of neighbors dynamically learned:
Step Command
Remarks
1.
Enter system view.
system-view
N/A
2.
Enter interface view.
interface interface-type
interface-number
N/A
3.
Configure the maximum
number of neighbors
dynamically learned by an
interface.
ipv6 neighbors max-learning-num
number
Optional.
By default, a Layer 2 interface does
not limit the number of neighbors
dynamically learned. A Layer 3
interface can learn up to 1024
neighbors dynamically.
Setting the aging timer for ND entries in stale state
ND entries in stale state have an aging timer. If an ND entry in stale state is not refreshed before the timer
expires, it transits to the delay state. If it is still not refreshed in five seconds, the ND entry transits to the
probe state, and the firewall sends an NS message for detection. If no response is received, the firewall
removes the ND entry.
To set the aging timer for ND entries in stale state:
Step Command
Remarks
1.
Enter system view.
system-view
N/A
2.
Set the aging timer for ND
entries in stale state.
ipv6 neighbor stale-aging aging-time
Optional.
Four hours by default.
Configuring parameters related to RA messages
You can enable an interface to send RA messages, and configure the interval for sending RA messages
and parameters in RA messages. After receiving an RA message, a host can use these parameters to
- H3C SecPath F5000-A5 Firewall H3C SecPath F1000-A-EI H3C SecPath F1000-E-SI H3C SecPath F1000-S-AI H3C SecPath F5000-S Firewall H3C SecPath F5000-C Firewall H3C SecPath F100-C-SI H3C SecPath F1000-C-SI H3C SecPath F100-A-SI H3C SecBlade FW Cards H3C SecBlade FW Enhanced Cards H3C SecPath U200-A U200-M U200-S H3C SecPath U200-CA U200-CM U200-CS H3C SecBlade LB Cards H3C SecPath L1000-A Load Balancer