Switching

 View Only
last person joined: 2 days ago 

Ask questions and share experiences about EX and QFX portfolios and all switching solutions across your data center, campus, and branch locations.
  • 1.  Disabling ip forwarding

    This message was posted by a user wishing to remain anonymous
    Posted 12-13-2022 12:48
    This message was posted by a user wishing to remain anonymous

    Hi everyone,

    Question just to ease a little doubt I am having. 

    Is there an equivalent to cisco command "no ip routing" to make the switch behave purely as a L2 device in Junos?
    Am I correct in thinking that dynamic IP forwarding is enabled by default in junos and cannot be disabled?

    Following from this I am considering the security implications of the above as shouldn't routing only be enabled where necessary in a network? In this case I've been looking at RPF which looks to me like a possible way to mitigate against any means to spoof or bypass any firewalls, routers or NAC on L2 switches. 


  • 2.  RE: Disabling ip forwarding

    Posted 12-14-2022 09:22
    ip routing is enabled when a layer 3 feature is configured and turned on.  And then only the specific features enabled.

    ------------------------------
    Steve Puluka BSEET - Juniper Ambassador
    IP Architect - DQE Communications Pittsburgh, PA (Metro Ethernet & ISP - Retired)
    http://puluka.com/home
    ------------------------------