Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
ON THIS PAGE
 

onlink-subnet-only

Syntax

Hierarchy Level

Description

Enable this option to prevent the device from responding to a neighbor solicitation (NS) from a prefix that is not included as one of the device interface prefixes.

After configuring the onlink-subnet-only statement, the Routing Engine needs to be restarted using the request system reboot both-routing-engines command. If the attacker’s IPv6 destination address is already in the forwarding-table, it is not removed after you configure the onlink-subnet-only statement, and therefore the device continues to respond to ping NSs. Restarting the Routing Engine removes the entry from the forwarding table.

Default

Disabled

Required Privilege Level

admin— To view this statement in the configuration.

admin-control— To add this statement to the configuration.

Release Information

Statement introduced in Junos OS Release 10.0.

Related Documentation