Filter
Top Products
166 Summit 300-48 Switch Software User Guide
IP Unicast Routing
UDP-Forwarding Example
In this example, the VLAN Marketing and the VLAN Operations are pointed toward a specific backbone
DHCP server (with IP address 10.1.1.1) and a backup server (with IP address 10.1.1.2). Additionally, the
VLAN LabUser is configured to use any responding DHCP server on a separate VLAN called LabSvrs.
The commands for this configuration are as follows:
create udp-profile backbonedhcp
create udp-profile labdhcp
config backbonedhcp add 67 ipaddress 10.1.1.1
config backbonedhcp add 67 ipaddress 10.1.1.2
config labdhcp add 67 vlan labsvrs
config marketing udp-profile backbonedhcp
config operations udp-profile backbonedhcp
config labuser udp-profile labdhcp
ICMP Packet Processing
As ICMP packets are routed or generated, you can take various actions to control distribution. For
ICMP packets typically generated or observed as part of the routing function, you can assert control on
a per-type, per-VLAN basis. You would alter the default settings for security reasons: to restrict the
success of tools that can be used to find an important application, host, or topology information. The
controls include the disabling of transmitting ICMP messages associated with unreachables,
port-unreachables, time-exceeded, parameter-problems, redirects, time-stamp, and address-mask
requests.
For ICMP packets that are typically routed, you can apply access lists to restrict forwarding behavior.
Access lists are described in Chapter 10.
UDP-Forwarding Commands
Table 61 describes the commands used to configure UDP-forwarding.
Table 61: UDP-Forwarding Commands
Command Description
config udp-profile <profile_name> add <udp_port>
[vlan <name> | ipaddress <dest_ipaddress>]
Adds a forwarding entry to the specified
UDP-forwarding profile name. All
broadcast packets sent to <udp_port>
are forwarded to either the destination IP
address (unicast or subnet directed
broadcast) or to the specified VLAN as an
all-ones broadcast.
config udp-profile <profile_name> delete
<udp_port> [vlan <name> | ipaddress
<dest_ipaddress>]
Deletes a forwarding entry from the
specified udp-profile name.