[x]

Configuring RA guard > About RA guard

 

 Next

About RA guard

RA guard allows Layer 2 access devices to analyze and block unwanted and forged RA messages.

Upon receiving an RA message, the device makes the forwarding or dropping decision based on the role of the attached device or the RA guard policy.

  1. If the role of the device attached to the port is router, the device forwards all RA messages received on the port. If the role is host, the device directly drops all RA messages received on the port.

  2. If no role is set for the port, the device uses the RA guard policy to match the information found in the RA message.

    • If the RA message content matches every criterion in the policy, the device forwards the message.

    • If the RA message content is not validated, the device drops the message.

prev

 

up

 next

Configuring RA guard 

home

 Specifying the role of the attached device

© Copyright 2016 Hewlett Packard Enterprise Development LP