Differences
This shows you the differences between two versions of the page.
| Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
| en:dpi:bras_bng:bras_l2_options:bras_l2_vlan_ipsg:start [2023/10/13 13:50] – ↷ Page moved from en:dpi:bras_bng:opt_bras_l2:bras_l2_options:bras_l2_vlan_ipsg:start to en:dpi:bras_bng:bras_l2_options:bras_l2_vlan_ipsg:start elena.krasnobryzh | en:dpi:bras_bng:bras_l2_options:bras_l2_vlan_ipsg:start [Unknown date] (current) – removed - external edit (Unknown date) 127.0.0.1 | ||
|---|---|---|---|
| Line 1: | Line 1: | ||
| - | ====== IP source guard ====== | ||
| - | {{indexmenu_n> | ||
| - | FastDPI BRAS allows you to control the correspondence of VLAN tags and IP addresses for subscribers. | ||
| - | When assigning IP addresses using DHCP the fastDPI BRAS stores VLAN/QinQ subscriber tags in its [[en: | ||
| - | and then uses this data to control whether the source IP address and VLAN tag match. | ||
| - | |||
| - | To enable IP source guard mode you should set the value of '' | ||
| - | * 0 – IP source guard is disabled. It is the default value. | ||
| - | * 1 – IP source guard is enabled and is only applicable to active sessions. If the session resides in '' | ||
| - | * 2 – strict: IP source guard is enabled and is applicable to sessions resided in '' | ||
| - | |||
| - | The packet will be forwarded in the following cases: | ||
| - | * '' | ||
| - | * Session is active and packet VLAN tags are the same as registered in DHCP request ones | ||
| - | * Session state is unknown | ||
| - | * '' | ||
| - | * Session is active and VLAN tags are the same as registered in DHCP request ones | ||
| - | * Session state is unknown and VLAN tags are the same as stored in the UDR | ||
| - | |||
| - | If the conditions are not met the package will be dropped. | ||
| - | |||
| - | IP source guard is used just in case of outbound traffic (from LAN to WAN). | ||
| - | |||
| - | Stingray Service Gateway 7.4+: the [[en: | ||