From the course: Cisco CCNP ENARSI v1.1 (300-410) Cert Prep: 3 Infrastructure Security
Unlock this course with a free trial
Join today to access over 22,600 courses taught by industry experts.
IPv6 neighbor discovery inspection and snooping
From the course: Cisco CCNP ENARSI v1.1 (300-410) Cert Prep: 3 Infrastructure Security
IPv6 neighbor discovery inspection and snooping
- [Instructor] The IP version six neighbor discovery inspection feature, otherwise known as IP version six snooping, is another way that we can mitigate threats in our neighbor discovery process on a network. IP version six nodes use the neighbor discovery protocol or NDP to discover the presence and link layer addresses of other nodes that reside on the same link. This is used by both routers and hosts. With hosts, NDP is leveraged in order to find neighboring routers that can forward the packets. And routers use that to advertise their own presence on the network. The NDP process is based on the exchange of neighbor solicitation and advertisement messages. And these NDP messages are unsecure, meaning that they are susceptible to attacks. And that's the reason that IP version six snooping was developed. With IP version six snooping, a device learns and populates a binding table called the DHCP version six snooping table. This is built by snooping DHCP version six message exchanges…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Contents
-
-
-
-
(Locked)
AAA troubleshooting28s
-
(Locked)
Local database5m 43s
-
(Locked)
TACACS+5m 54s
-
(Locked)
RADIUS5m 24s
-
(Locked)
Router security troubleshooting37s
-
(Locked)
IPv4 access control lists (ACLs)10m 39s
-
(Locked)
IPv6 traffic filters7m 25s
-
Unicast Reverse Path Forwarding (uRPF)8m 24s
-
(Locked)
Control Plane Policing (CoPP)12m 34s
-
(Locked)
IPv6 RA Guard2m 36s
-
(Locked)
DHCPv6 Guard2m 51s
-
(Locked)
IPv6 neighbor discovery inspection and snooping2m 10s
-
(Locked)
IPv6 source guard2m 53s
-
(Locked)
Lab: IPv4 ACL troubleshooting7m 48s
-
(Locked)
Chapter 2 summary42s
-
(Locked)
-