IPv6 Secure Neighbor Discovery
|
12.4(24)T
|
The SeND protocol is designed to counter the threats of the ND protocol. SeND defines a set of neighbor discovery options and two neighbor discovery messages. SeND also defines a new autoconfiguration mechanism to establish address ownership.
The following commands were introduced or modified:
auto-enroll,
crypto key generate rsa,
crypto pki authenticate,
crypto pki enroll,
crypto pki import,
enrollment terminal (ca-trustpoint),
enrollment url (ca-trustpoint),
fingerprint,
ip-extension,
ip http server,
ipv6 address,
ipv6 address link-local,
ipv6 cga modifier rsakeypair,
ipv6 cga modifier rsakeypair (interface),
ipv6 nd secured certificate-db,
ipv6 nd secured full-secure,
ipv6 nd secured full-secure (interface),
ipv6 nd secured key-length,
ipv6 nd secured sec-level,
ipv6 nd secured timestamp,
ipv6 nd secured timestamp-db,
ipv6 nd secured trustanchor,
ipv6 nd secured trustpoint,
password (ca-trustpoint),
revocation-check,
rsakeypair,
serial-number (ca-trustpoint),
show ipv6 cga address-db,
show ipv6 cga modifier-db,
show ipv6 nd secured certificates,
show ipv6 nd secured counters interface,
show ipv6 nd secured nonce-db,
show ipv6 nd secured timestamp-db,
subject-name.
|