Manualshelf

HP VPN Firewall Appliances Network Management Configuration Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
711712713714715716717718719720
692
Figure 363 Application environment of local ND proxy
Because Host A's IPv6 address is on the same subnet as Host B's, Host A directly sends an NS
message to obtain Host B's MAC address. However, Host B cannot receive the NS message
because they are isolated at Layer 2.
To solve this problem, enable local ND proxy on GigabitEthernet 0/2 of the firewall so that the
firewall can forward messages between Host A and Host B.
Local ND proxy implements Layer 3 communication for two hosts in the following cases:
{ The two hosts must connect to different isolated Layer 2 ports of a VLAN.
{ If isolate-user-VLAN is used, the two hosts must belong to different secondary VLANs.
Configuration procedure
You can enable ND proxy and local ND proxy in VLAN interface view, Layer 3 Ethernet interface view,
or Layer 3 Ethernet subinterface view.
To enable ND proxy:
Ste
p
Command
Remarks
1. Enter system view.
system-view N/A
2. Enter interface view.
interface interface-type interface-number N/A
3. Enable ND proxy.
proxy-nd enable Disabled by default.
To enable local ND proxy:
Ste
p
Command
Remarks
1. Enter system view.
system-view N/A
2. Enter interface view.
interface interface-type interface-number N/A
3. Enable local ND proxy.
local-proxy-nd enable Disabled by default.
Configuring path MTU discovery
This section describes how to configure path MTU discovery.