Juniper SRX neighbor-ship-protocol

In this post we will see how easy it's to enable ipv6  Route-advertisement  via NDP on a Juniper SRX.

1st 

The topology;

The ipv6  firewall has two ipv6  defined  /64 prefixes of  2001.db8:{98-99}::/64 and we will set these up for basic route  advertisement for SLACC ipv6  enable clients.


2nd


The interface has to be configured for address within  the prefix that we will advertise;

3rd


We now have to enable neighbor-ship protocol & define the prefixes for advertisement;

NOTE:  full config  see the arrow and blue oval

Lastly


We can validate that ipv6 SLACC clients can receive the prefixes as shown with my macbook;

NOTE: The arrows show our privacy and EOUI-64 ipv6  addresses

Ken Felix

Freelance Network / Security Engineer Consultant

kfelix  ----a---t---socpuppets ---d---o---t---com

         ^         ^

=(   <@> <@>   )=

              o

           /     \