Manualshelf

R21xx-HP FlexFabric 11900 Layer 3 IP Services Command Reference

ManualsBrandsHP ManualsNetwork HardwareHP FlexFabric 11000 Switch Products
111112113114115116117118119120
110
Usage guidelines
By default, an interface obtains DNS suffix and DNS server information from DHCP. A network attacker
may act as the DHCP server to assign wrong DNS suffix and DNS server address to the device. As a
result, the device fails to obtain the resolved IP address or may get the wrong IP address. With the DNS
trusted interface specified, the device only uses the DNS suffix and DNS server information obtained
through the trusted interface to avoid attack.
This configuration is applicable to both IPv4 and IPv6.
You can configure up to 128 DNS trusted interfaces on the device.
Examples
# Specify VLAN-interface 2 as the DNS trusted interface.
<Sysname> system-view
[Sysname] dns trust-interface vlan-interface 2
ip host
Use ip host to create a host name-to-IPv4 address mapping.
Use undo ip host to remove a mapping.
Syntax
ip host host-name ip-address [ vpn-instance vpn-instance-name ]
undo ip host host-name ip-address [ vpn-instance vpn-instance-name ]
Default
No mappings are created.
Views
System view
Predefined user roles
network-admin
Parameters
host-name: Specifies a host name. It is a dot-separated case-insensitive string including letters, digits,
hyphens (-), underscores (_), and dots (.) (for example, aabbcc.com). The host name can contain at most
253 characters, and each separated string contains no more than 63 characters.
ip-address: Specifies the IPv4 address of the host.
vpn-instance vpn-instance-name: Specifies the name of an MPLS L3VPN, a case -sensitive string of 1 to 31
characters. To specify a host name-to-IP address mapping on the public network, do not use this option.
Usage guidelines
You can configure host name-to-IPv4 address mappings for the public network and up to 1024 VPNs,
and configure a maximum of 1024 host name-to-IPv4 address mappings for the public network or each
VPN.