Feature Explorer AI 
×
You can resolve potential distributed denial-of-service (DDoS) issues with the IPv6 Neighbor Discovery Protocol (NDP) and traffic. The fundamental challenge of IPv6 NDP DDoS is the large address space of IPv6 that allows attackers to trigger a huge number of resolves that exhaust the router resources. The resolution mechanism and DDoS NDP policer help mitigate the problem to some extent. The functionality primarily extends the flow-detection CLI and optimizes the host bound classification (HBC) filter to make packet-type searching faster. It also extends the NDP DDoS protocol group to classify the NDP types. Full Ethernet or IPv6 fields support is added by allowing destination addresses.
| Product / Application | Software | Introduced Release |
|---|---|---|
| MX5 | Junos OS | 16.1R1 |
| MX10 | Junos OS | 16.1R1 |
| MX40 | Junos OS | 16.1R1 |
| MX80 | Junos OS | 16.1R1 |
| MX104 | Junos OS | 16.1R1 |
| MX204 | Junos OS | 17.4R1 |
| MX240 | Junos OS | 16.1R1 |
| MX301 | Junos OS | 25.4R1 |
| MX304 | Junos OS | 22.2R3 |
| MX480 | Junos OS | 16.1R1 |
| MX960 | Junos OS | 16.1R1 |
| MX2010 | Junos OS | 16.1R1 |
| MX2020 | Junos OS | 16.1R1 |
| MX10003 | Junos OS | 17.3R1 |
| MX10004 | Junos OS | 22.3R1 |
| MX10008 | Junos OS | 18.2R1 |
| MX10016 | Junos OS | 19.2R1 |
| Next Generation Port Extender | Junos OS | 25.4R1 |