vpn-instance vpn-instance-name: Specifies an MPLS L3VPN instance by its name, a case-sensitive string of 1 to 31 characters. If you do not specify a VPN instance, this command displays IPv6 FIB entries for the public network.

ipv6-address: Displays IPv6 FIB entries for a destination IPv6 address. If you do not specify an IPv6 address, this command displays all IPv6 FIB entries.

prefix-length: Specifies a prefix length for the IPv6 address, in the range of 0 to 128. If you do not specify the prefix length, this command displays the IPv6 FIB entry longest matching the IPv6 address.

slot slot-number: Specifies a card by its slot number. If you do not specify a card, the active MPU is specified.

Examples

# Display all IPv6 FIB entries for the public network.

<Sysname> display ipv6 fib

Route destination count: 1

Directly-connected host count: 0

Entries issued to hardware:1

Flag:

U:Usable G:Gateway H:Host B:Blackhole D:Dynamic S:Static

R:Relay F:FRR

Destination: ::1 Prefix length: 128

Nexthop : ::1 Flags: UH

Time stamp : 0x1 Label: Null

Interface : InLoop0 Token: Invalid

Table 1 Command output

Field	Description
Route destination count	Total number of route destination addresses.
Directly-connected host count	Number of directly-connected hosts that are learned through features such as ND.
Entries issued to hardware	Number of IPv6 FIB entries successfully issued to hardware.
FIB entry count	Total number of IPv6 FIB entries.
Destination	Destination address.
Prefix length	Prefix length of the destination address.
Nexthop	Next hop address.
Flags	Route flag: · U—Usable route. · G—Gateway route. · H—Host route. · B—Black hole route. · D—Dynamic route. · S—Static route. · R—Recursive route. · F—Fast re-route.
Time stamp	Time when the IPv6 FIB entry was generated.
Label	Inner MPLS label. For IPv6 FIB entries for the public network, this field displays Null.
Interface	Outgoing interface.
Token	Label switched path index number.

‌

display ipv6 fib prefix diff

Use display ipv6 fib prefix diff to display the differences in IPv6 FIB entries between the specified slots.

Syntax

display ipv6 fib prefix diff [ all | [ vpn-instance vpn-instance-name ] [ ipv6-address [ prefix-length ] ] ] slot slot-number1 slot slot-number2

Views

Any view

Predefined user roles

network-admin

network-operator

Parameters

all: Displays IPv6 FIB entry differences on the public network and all private networks.

vpn-instance vpn-instance-name: Specifies an MPLS L3VPN instance by its name, a case-sensitive string of 1 to 31 characters. The VPN instance name cannot contain spaces. If you do not specify a VPN instance, this command displays IPv6 FIB entry differences on the public network.

ipv6-address: Displays differences for IPv6 FIB entries that exactly match the specified IPv6 address.

prefix-length: Specifies the prefix length of the specified IPv6 address, in the range of 0 to 128. If you specify this argument, this command displays differences for IPv6 FIB entries that exactly match the specified IPv6 address and the specified prefix length. If you do not specify this argument, this command displays differences for IPv6 FIB entries that match the specified IPv6 address under the longest match rule.

slot slot-number1 slot slot-number2: Specifies the two cards to be compared. The slot-number1 argument represents the slot number of card 1 and the slot-number2 argument represents the slot number of card 2.

Usage guidelines

Application scenarios

IPv6 FIB entry inconsistency between cards might cause packet loss between the MPU and interface modules, slow packet processing of interface modules, or packet congestion on interface modules. To avoid such an issue, you can use this command to display IPv6 FIB entry differences between the specified slots.

Operating mechanism

If you specify none of the all, vpn-instance vpn-instance-name, and ipv6-address parameters, this command displays the differences in IPv6 FIB entries on the public network.

Restrictions and guidelines

The slots specified in this command must be different.

Examples

# Display the differences in IPv6 FIB entries between the specified slots.

<Sysname> display ipv6 fib prefix diff slot 0 slot 1

--- Slot 0 CPU 0

+++ Slot 1 CPU 0

@@ -1,5 +0,0 @@

-Destination/Mask: ::1/128 VNID:0x220000002 VPN:--

-Destination/Mask: 1::/64 VNID:0x420000004 VPN:--

-Destination/Mask: 1::1/128 VNID:0x220000002 VPN:--

-Destination/Mask: FE80::/10 VNID:0x320000003 VPN:--

\ No newline at end of file

+Destination/Mask: 1::2/128 VNID:0x220000003 VPN:--

+Destination/Mask: 1::3/128 VNID:0x220000004 VPN:--

\ No newline at end of file

Table 2 Command output

Field	Description
Slot	· --- Slot—The first slot specified for comparison. · +++ Slot—The second slot specified for comparison.
CPU	CPU number of the card.
Destination/Mask	Destination IP address and prefix length of the IPv6 FIB entry. The minus sign (-) in front of this field indicates that the entry belongs to the first slot. The plus sign (+) in front of this field indicates that the entry belongs to the second slot.
VNID	VN ID. If no VN ID exists, this field displays --.
VPN	VPN instance. For the entry belongs to the public network, this field displays --.

‌

display ipv6 icmp statistics

Use display ipv6 icmp statistics to display ICMPv6 packet statistics.

Syntax

display ipv6 icmp statistics [ slot slot-number ]

Views

Any view

Predefined user roles

network-admin

network-operator

Parameters

slot slot-number: Specifies a card by its slot number. If you do not specify a card, this command displays ICMPv6 packet statistics for all cards.

Examples

# Display ICMPv6 packet statistics.

<Sysname> display ipv6 icmp statistics

Input: bad code 0 too short 0

checksum error 0 bad length 0

path MTU changed 0 destination unreachable 0

too big 0 parameter problem 0

echo request 0 echo reply 0

neighbor solicit 0 neighbor advertisement 0

router solicit 0 router advertisement 0

redirect 0 router renumbering 0

output: parameter problem 0 echo request 0

echo reply 0 unreachable no route 0

unreachable admin 0 unreachable beyond scope 0

unreachable address 0 unreachable no port 0

too big 0 time exceed transit 0

time exceed reassembly 0 redirect 0

ratelimited 0 other errors 0

Table 3 Command output

Field	Description
bad code	Number of received packets with error codes.
too short	Number of received packets with the length too short.
checksum error	Number of received packets with checksum errors.
bad length	Number of received packets with incorrect packet size.
path MTU changed	Number of received packets with path MTU changed.
destination unreachable	Number of destination unreachable packets that have been received.
too big	Number of received or sent oversized packets.
parameter problem	Number of received or sent packets with incorrect parameters.
echo request	Number of received or sent echo request packets.
echo reply	Number of received or sent echo reply packets.
neighbor solicit	Number of received NS packets.
neighbor advertisement	Number of received NA packets.
router solicit	Number of received RS packets.
router advertisement	Number of received RA packets.
redirect	Number of received or sent redirect packets.
router renumbering	Number of received packets with router renumbering.
unreachable no route	Number of sent packets to report the error that no route is available to the destination.
unreachable admin	Number of sent packets to report the error that the communication with the destination is administratively prohibited.
unreachable beyondscope	Number of sent packets to report the error that the source addresses is beyond the scope.
unreachable address	Number of address unreachable packets that have been sent.
unreachable no port	Number of port unreachable packets that have been sent.
time exceed transit	Number of sent packets to report the time exceeded in transmit error.
time exceed reassembly	Number of sent packets to report the fragment reassembly time exceeded error.
ratelimited	Number of packets that were not sent out because of the rate limit.
other errors	Number of sent packets with other errors.

‌

display ipv6 interface

Use display ipv6 interface to display IPv6 interface information.

Syntax

display ipv6 interface [ interface-type [ interface-number ] ] [ brief ]

Views

Any view

Predefined user roles

network-admin

network-operator

Parameters

interface-type: Specifies an interface by its type.

interface-number: Specifies an interface by its number.

brief: Displays brief IPv6 interface information, including physical status, link-layer protocols, and IPv6 address. If you do not specify the keyword, this command displays detailed IPv6 interface information, including IPv6 configuration and operating information, and IPv6 packet statistics.

Usage guidelines

If you do not specify an interface, this command displays IPv6 information about all interfaces.

If you specify only the interface-type argument, this command displays IPv6 information about the interfaces of the specified type.

If you specify both the interface-type and the interface-number arguments, this command displays IPv6 information about the specified interface.

Examples

# Display IPv6 information about GigabitEthernet 1/0/1.

<Sysname> display ipv6 interface gigabitethernet 1/0/1

GigabitEthernet1/0/1 current state: UP

Line protocol current state: UP

IPv6 is enabled, link-local address is FE80::200:1FF:FE04:5D00 [TENTATIVE]

Global unicast address(es):

10::1234:56FF:FE65:4322, subnet is 10::/64 [TENTATIVE] [AUTOCFG]

[valid lifetime 4641s/preferred lifetime 4637s]

20::1234:56ff:fe65:4322, subnet is 20::/64 [TENTATIVE] [EUI-64]

30::1, subnet is 30::/64 [TENTATIVE] [ANYCAST]

40::2, subnet is 40::/64 [TENTATIVE] [DHCP]

50::3, subnet is 50::/64 [TENTATIVE]

Joined group address(es):

FF02::1

FF02::2

FF02::1:FF00:1

FF02::1:FF04:5D00

MTU is 1500 bytes

ND DAD is enabled, number of DAD attempts: 1

ND reachable time is 30000 milliseconds

ND retransmit interval is 1000 milliseconds

Hosts use stateless autoconfig for addresses

IPv6 Packet statistics:

InReceives: 0

InTooShorts: 0

InTruncatedPkts: 0

InHopLimitExceeds: 0

InBadHeaders: 0

InBadOptions: 0

ReasmReqds: 0

ReasmOKs: 0

InFragDrops: 0

InFragTimeouts: 0

OutFragFails: 0

InUnknownProtos: 0

InDelivers: 0

OutRequests: 0

OutForwDatagrams: 0

InNoRoutes: 0

InTooBigErrors: 0

OutFragOKs: 0

OutFragCreates: 0

InMcastPkts: 0

InMcastNotMembers: 0

OutMcastPkts: 0

InAddrErrors: 0

InDiscards: 0

OutDiscards: 0

Table 4 Command output

Field	Description
GigabitEthernet1/0/1 current state	Physical state of the interface: · Administratively DOWN—The interface has been administratively shut down by using the shutdown command. · DOWN—The interface is administratively up but its physical state is down, possibly because of a connection or link failure. · UP—The administrative and physical states of the interface are both up.
Line protocol current state	Link layer state of the interface: · DOWN—The link layer protocol state of the interface is down. · UP—The link layer protocol state of the interface is up.
IPv6 is enabled	IPv6 is enabled on the interface. This feature is automatically enabled after an IPv6 address is configured for an interface.
link-local address	Link-local address of the interface.
Global unicast address(es)	Global unicast addresses of the interface. IPv6 address states: · TENTATIVE—Initial state. DAD is being performed or is to be performed on the address. · DUPLICATE—The address is not unique on the link. · PREFERRED—The address is preferred and can be used as the source or destination address of a packet. If an address is in this state, the command does not display the address state. · DEPRECATED—The address is beyond the preferred lifetime but in the valid lifetime. It is valid, but it cannot be used as the source address for a new connection. Packets destined for the address are processed correctly. If a global unicast address is not manually configured, the following notations indicate how the address is obtained: · AUTOCFG—Stateless autoconfigured. · DHCP—Assigned by a DHCPv6 server. · EUI-64—Manually configured EUI-64 IPv6 address. · RANDOM—Random address automatically generated. If the address is a manually configured anycast address, it is noted with ANYCAST.
valid lifetime	Specifies how long autoconfigured global unicast addresses using a prefix are valid.
preferred lifetime	Specifies how long autoconfigured global unicast addresses using a prefix are preferred.
Joined group address(es)	Addresses of the multicast groups that the interface has joined.
MTU	MTU of the interface.
ND DAD is enabled, number of DAD attempts	DAD is enabled. · If DAD is enabled, this field displays the number of attempts to send an NS message for DAD (set by using the ipv6 nd dad attempts command). For more information about the ipv6 nd dad attempts command, see IPv6 neighbor discovery commands in Layer 3—IP Services Command Reference. · If DAD is disabled, this field displays ND DAD is disabled. To disable DAD, set the number of attempts to 0.
ND reachable time	Time during which a neighboring device is reachable.
ND retransmit interval	Interval for retransmitting an NS message.
Hosts use stateless autoconfig for addresses	Hosts obtained IPv6 addresses through stateless autoconfiguration.
InReceives	Received IPv6 packets, including error messages.
InTooShorts	Received IPv6 packets that are too short. For example, the received IPv6 packet is less than 40 bytes.
InTruncatedPkts	Received IPv6 packets with a length less than the payload length field specified in the packet header.
InHopLimitExceeds	Received IPv6 packets with a hop count exceeding the hop limit field specified in the packet header.
InBadHeaders	Received IPv6 packets with incorrect basic headers.
InBadOptions	Received IPv6 packets with incorrect extension headers.
ReasmReqds	Received IPv6 fragments.
ReasmOKs	Number of reassembled IPv6 packets.
InFragDrops	Received IPv6 fragments that are discarded because of certain errors.
InFragTimeouts	Received IPv6 fragments that are discarded because the amount of time they stay in the system buffer exceeds the specified interval.
OutFragFails	IPv6 packets that fail to be fragmented on the output interface.
InUnknownProtos	Received IPv6 packets with unknown or unsupported protocol type.
InDelivers	Received IPv6 packets that are delivered to user protocols (such as ICMPv6, TCP, and UDP).
OutRequests	Local IPv6 packets sent by IPv6 user protocols.
OutForwDatagrams	IPv6 packets forwarded by the interface.
InNoRoutes	Received IPv6 packets that are discarded because no matching route can be found.
InTooBigErrors	Received IPv6 packets that fail to be forwarded because they exceeded the Path MTU.
OutFragOKs	Fragmented IPv6 packets on the output interface.
OutFragCreates	Number of IPv6 fragments on the output interface.
InMcastPkts	Received IPv6 multicast packets.
InMcastNotMembers	Received IPv6 multicast packets that are discarded because the interface is not in the multicast group.
OutMcastPkts	IPv6 multicast packets sent by the interface.
InAddrErrors	Received IPv6 packets that are discarded due to invalid destination addresses.
InDiscards	Received IPv6 packets that are discarded due to resource problems rather than packet errors.
OutDiscards	IPv6 packets that fail to be sent due to resource problems rather than packet errors.

‌

# Display brief IPv6 information about all interfaces.

<Sysname> display ipv6 interface brief

*down: administratively down

(s): spoofing

Interface Physical Protocol IPv6 Address

GigabitEthernet1/0/1 up up 2001::1

Table 5 Command output

Field	Description
*down: administratively down	The interface has been administratively shut down by using the shutdown command.
(s): spoofing	Spoofing attribute of the interface. The link protocol state of the interface is up, but the link is temporarily established on demand or does not exist.
Interface	Name of the interface.
Physical	Physical state of the interface: · *down—The interface has been administratively shut down by using the shutdown command. · down—The interface is administratively up but its physical state is down, possibly because of a connection or link failure. · up—The administrative and physical states of the interface are both up.
Protocol	Link layer protocol state of the interface: · down—The network layer protocol state of the interface is down. · up—The network layer protocol state of the interface is up.
IPv6 Address	IPv6 address of the interface. · If multiple global unicast addresses are configured, this field displays the lowest address. · If no global unicast address is configured, this field displays the link-local address. · If no address is configured, this field displays Unassigned.

‌

Related commands

statistics l3-packet enable

display ipv6 interface prefix

Use display ipv6 interface prefix to display IPv6 prefix information for an interface.

Syntax

display ipv6 interface interface-type interface-number prefix

Views

Any view

Predefined user roles

network-admin

network-operator

Parameters

interface-type interface-number: Specifies an interface by its type and number.

Examples

# Display IPv6 prefix information for GigabitEthernet 1/0/1.

<Sysname> display ipv6 interface gigabitEthernet 1/0/1 prefix

Prefix: 1001::/65 Origin: ADDRESS

Age: - Flag: AL

Lifetime(Valid/Preferred): 2592000/604800

Preference: -

Prefix: 2001::/64 Origin: STATIC

Age: - Flag: L

Lifetime(Valid/Preferred): 3000/2000

Preference: -

Prefix: 3001::/64 Origin: RA

Age: 600 Flag: A

Lifetime(Valid/Preferred): -

Preference: -

Prefix: 4001::/64 Origin: STATIC

Age: - Flag: ALP

Lifetime(Valid/Preferred): 1000/200

Preference: 200

Table 6 Command output

Filed	Description
Prefix	IPv6 address prefix.
Origin	How the prefix is generated: · STATIC—Manually configured by using the ipv6 nd ra prefix command. For more information about this command, see IPv6 neighbor discovery commands in Layer 3—IP Services Command Reference. · RA—Advertised in RA messages after stateless autoconfiguration is enabled. · ADDRESS—Generated by a manually configured address.
Age	Aging time in seconds. If the prefix does not age out, this field displays a hyphen (-).
Flag	Flags carried in RA messages. If no flags are available, this field displays a hyphen (-). · L—The address with the prefix is directly reachable on the link. · A—The prefix is used for stateless autoconfiguration. · N—The prefix is not advertised in RA messages.
Lifetime	Lifetime in seconds advertised in RA messages. If the prefix does not need to be advertised, this field displays a hyphen (-). · Valid—Valid lifetime of the prefix. · Preferred—Preferred lifetime of the prefix.
Preference	Preference value for the IPv6 prefix in RA messages.

‌

Related commands

ipv6 nd ra prefix

display ipv6 pathmtu

Use the display ipv6 pathmtu command to display IPv6 Path MTU information.

Syntax

display ipv6 pathmtu [ vpn-instance vpn-instance-name ] { ipv6-address | { all | dynamic | static } [ count ] }

Views

Any view

Predefined user roles

network-admin

network-operator

Parameters

ipv6-address: Specifies the destination IPv6 address for which the Path MTU information is to be displayed.

all: Displays all Path MTU information for the public network.

dynamic: Displays all dynamic Path MTU information.

static: Displays all static Path MTU information.

count: Displays the total number of Path MTU entries.

Examples

# Display all Path MTU information.

<Sysname> display ipv6 pathmtu all

IPv6 destination address PathMTU Age Type

1:2::3:2 1800 - Static

1:2::4:2 1400 10 Dynamic

1:2::5:2 1280 10 Dynamic

# Displays the total number of Path MTU entries.

<Sysname> display ipv6 pathmtu all count

Total number of entries: 3

Table 7 Command output

Field	Description
IPv6 destination address	IPv6 destination address.
PathMTU	Path MTU value on the network path to an IPv6 address.
Age	Time for a Path MTU to live. For a static Path MTU, this field displays a hyphen (-).
Type	Path MTU type: · Dynamic—Dynamically negotiated. · Static—Statically configured.
Total number of entries	Total number of Path MTU entries.

Related commands

ipv6 pathmtu

reset ipv6 pathmtu

display ipv6 prefix

Use display ipv6 prefix to display information about IPv6 prefixes, including dynamic and static prefixes.

Syntax

display ipv6 prefix [ prefix-number ]

Views

Any view

Predefined user roles

network-admin

network-operator

Parameters

prefix-number: Specifies the ID of an IPv6 prefix, in the range of 1 to 1024. If you do not specify an IPv6 prefix ID, this command displays information about all IPv6 prefixes.

Usage guidelines

A static IPv6 prefix is configured by using the ipv6 prefix command.

A dynamic IPv6 prefix is obtained from the DHCPv6 server, and its prefix ID is configured by using the ipv6 dhcp client pd command. For detailed information, see Layer 3—IP Services Configuration Guide.

Examples

# Display information about all IPv6 prefixes.

<Sysname> display ipv6 prefix

Number Prefix Type

1 1::/16 Static

2 11:77::/32 Dynamic

# Display information about the IPv6 prefix with prefix ID 1.

<Sysname> display ipv6 prefix 1

Number: 1

Type : Dynamic

Prefix: ABCD:77D8::/32

Preferred lifetime 90 sec, valid lifetime 120 sec

Table 8 Command output

Field	Description
Number	Prefix ID.
Type	Prefix type: · Static—Static IPv6 prefix. · Dynamic—Dynamic IPv6 prefix.
Prefix	Prefix and its length. If no prefix is obtained, this field displays Not-available.
Preferred lifetime 90 sec	Preferred lifetime in seconds. For a static IPv6 prefix, this field is not displayed.
valid lifetime 120 sec	Valid lifetime in seconds. For a static IPv6 prefix, this field is not displayed.

‌

Related commands

ipv6 dhcp client pd

ipv6 prefix

display ipv6 rawip

Use display ipv6 rawip to display brief information about IPv6 RawIP connections.

Syntax

display ipv6 rawip [ slot slot-number ]

Views

Any view

Predefined user roles

network-admin

network-operator

Parameters

slot slot-number: Specifies a card by its slot number. If you do not specify a card, this command displays brief information about IPv6 RawIP connections for all cards.

Examples

# Display brief information about IPv6 RawIP connections.

<Sysname> display ipv6 rawip

#: Kernel RawIP connection

Local Addr Foreign Addr Protocol Slot Cpu PCB

2001:2002:2003:2 3001:3002:3003:3 58 1 0 0x0000000000000009

004:2005:2006:20 004:3005:3006:30

07:2008 07:3008

2002::100 2002::138 58 2 0 0x0000000000000008

:: :: 58 5 0 0x0000000000000002

#:: :: 58 0 0 N/A

Table 9 Command output

Field	Description
#	The pound sign (#) indicates a Comware kernel connection.
Local Addr	Local IPv6 address.
Foreign Addr	Peer IPv6 address.
Protocol	Protocol number.
PCB	PCB index.

‌

display ipv6 rawip verbose

Use display ipv6 rawip verbose to display detailed information about IPv6 RawIP connections.

Syntax

display ipv6 rawip verbose [ slot slot-number [ pcb pcb-index ] ]

Views

Any view

Predefined user roles

network-admin

network-operator

Parameters

slot slot-number: Specifies a card by its slot number. If you do not specify a card, this command displays detailed information about IPv6 RawIP connections for all cards.

pcb pcb-index: Displays detailed information about IPv6 RawIP connections of the specified PCB. The value range for the pcb-index argument is 1 to 16.

Examples

# Display detailed information about an IPv6 RawIP connection.

<Sysname> display ipv6 rawip verbose

Total RawIP socket number: 1

Connection info: src = ::, dst = ::

Location: slot: 6 cpu: 0

Creator: ping6[320]

State: N/A

Options: N/A

Error: 0

Receiving buffer(cc/hiwat/lowat/drop/full/state): 0 / 9216 / 1 / 0 / 0 / N/A

Sending buffer(cc/hiwat/lowat/state): 0 / 9216 / 512 / N/A

Type: 3

Protocol: 58

Inpcb flags: N/A

Inpcb extflag: INP_EXTRCVICMPERR INP_EXTFILTER

Inpcb vflag: INP_IPV6

Hop limit: 255 (minimum hop limit: 0)

Send VRF: 0xffff

Receive VRF: 0xffff

Table 10 Command output

Field	Description
Total RawIP socket number	Total number of IPv6 RawIP sockets.
Connection info	Connection information, including the source and destination IPv6 addresses.
Location	Socket location.
Creator	Task name of the socket. The process number is in the square brackets.
State	Socket state: · NOFDREF—The user has closed the connection. · ISCONNECTED—The connection has been established. · ISCONNECTING—The connection is being established. · ISDISCONNECTING—The connection is being interrupted. · ASYNC—Asynchronous mode. · ISDISCONNECTED—The connection has been terminated. · PROTOREF—Indicates strong protocol reference. · N/A—None of above state.
Options	Socket options: · SO_DEBUG—Records socket debugging information. · SO_ACCEPTCONN—Enables the server to listen connection requests. · SO_REUSEADDR—Allows the local address reuse. · SO_KEEPALIVE—Requires the protocol to test whether the connection is still alive. · SO_DONTROUTE—Bypasses the routing table query for outgoing packets because the destination is in a directly connected network. · SO_BROADCAST—Supports broadcast packets. · SO_LINGER—Closes the socket. The system can still send remaining data in the socket send buffer. · SO_OOBINLINE—Stores the out-of-band data in the input queue. · SO_REUSEPORT—Allows the local port reuse. · SO_TIMESTAMP—Records the timestamps of the input packets, accurate to milliseconds. This option is applicable to protocols that are not connection orientated. · SO_NOSIGPIPE—Disables the socket from sending data. As a result, a sigpipe cannot be established when a return failure occurs. · SO_TIMESTAMPNS—Has a similar function with the timestamp, accurate to nanoseconds. · SO_KEEPALIVETIME—Sets a keepalive time. This option is supported in TCP. · SO_FILTER—Supports setting the packet filter criterion. This option is available for OSI Socket and RawIP. · SO_USCBINDEX—Obtains the user profile index from the received packets. · N/A—No options are set.
Error	Error code.
Receiving buffer (cc/hiwat/lowat/drop/full/state)	Displays receive buffer information in the following order: · cc—Used space. · hiwat—Maximum space. · lowat—Minimum space. · drop—Number of dropped packets. · full—Number of packets dropped because the kernel's sending buffer is full. · state—Buffer state: ¡ CANTSENDMORE—Unable to send data to the peer. ¡ CANTRCVMORE—Unable to receive data from the peer. ¡ RCVATMARK—Receiving tag. ¡ N/A—None of the above states.
Sending buffer(cc/hiwat/lowat/state)	Displays send buffer information in the following order: · cc—Used space. · hiwat—Maximum space. · lowat—Minimum space. · state—Buffer state: ¡ CANTSENDMORE—Unable to send data to the peer. ¡ CANTRCVMORE—Unable to receive data from the peer. ¡ RCVATMARK—Receiving tag. ¡ N/A—None of the above states.
Type	Socket type: · 1—SOCK_STREAM. This socket uses TCP to provide reliable transmission of byte streams. · 2—SOCK_DGRAM. This socket uses UDP to provide datagram transmission. · 3—SOCK_RAW. This socket allows an application to change the next upper-layer protocol header. · N/A—None of the above types.
Protocol	Number of protocol using the socket. 58 represents ICMP.
Inpcb flags	Flags in the Internet PCB: · INP_RECVOPTS—Receives IPv6 options. · INP_RECVRETOPTS—Receives replied IPv6 options. · INP_RECVDSTADDR—Receives destination IPv6 address. · INP_HDRINCL—Provides the entire IPv6 header. · INP_REUSEADDR—Reuses the IPv6 address. · INP_REUSEPORT—Reuses the port number. · INP_ANONPORT—Port number not specified. · INP_PROTOCOL_PACKET—Identifies a protocol packet. · INP_RCVVLANID—Receives the VLAN ID of the packet. Only UDP and RawIP support this flag. · IN6P_IPV6_V6ONLY—Only supports IPv6 protocol stack. · IN6P_PKTINFO—Receives the source IPv6 address and input interface of the packet. · IN6P_HOPLIMIT—Receives the hop limit. · IN6P_HOPOPTS—Receives the hop-by-hop options extension header. · IN6P_DSTOPTS—Receives the destination options extension header. · IN6P_RTHDR—Receives the routing extension header. · IN6P_RTHDRDSTOPTS—Receives the destination options extension header preceding the routing extension header. · IN6P_TCLASS—Receives the traffic class of the packet. · IN6P_AUTOFLOWLABEL—Attaches a flow label automatically. · IN6P_RFC2292—Uses the API specified in RFC 2292. · IN6P_MTU—Discovers differences in the MTU size of every link along a given data path. TCP does not support this flag. · INP_RCVMACADDR—Receives the MAC address of the frame. · INP_USEICMPSRC—Uses the specified IPv6 address as the source IPv6 address for outgoing ICMP packets. · INP_SYNCPCB—Waits until Internet PCB is synchronized. · INP_RECVIF—Obtains the input interface of the received packets. · INP_NONBLOCK—Non-blocking socket. · INP_DONTROUTE—Performs no route lookup for outgoing packets. · INP_BROADCAST—Allows broadcast packet transmission. · INP_SNDBYDSTMAC—Uses the specified MAC address for outgoing packets. · INP_RCVFROMUSER—Uses the forward process for receiving packets and bypasses the kernel. · INP_RECVVPN—Obtains the VPN information of the received packets. · INP_RCVVLANID—Obtains the VLAN ID of the received packets. · N/A—None of the above flags.
Inpcb extflag	Extension flags in the Internet PCB: · INP_EXTRCVPVCIDX—Records the PVC index of the received packet. · INP_RCVPWID—Records the PW ID of the received packet. · INP_EXTRCVICMPERR—Receives an ICMP error packet. · INP_EXTFILTER—Filters the contents in the received packet. · N/A—None of the above flags.
Inpcb vflag	IP version flag in the Internet PCB: · INP_IPV4—IPv4 protocol. · INP_IPV6—IPv6 protocol. · INP_IPV6PROTO—Creates an Internet PCB based on IPv6 protocol. · INP_TIMEWAIT—In TIMEWAIT state. · INP_ONESBCAST—Sends broadcast packets. · INP_DROPPED—Protocol dropped flag. · INP_SOCKREF—Strong socket reference. · INP_DONTBLOCK—Do not block synchronization of the Internet PCB. · N/A—None of the above flags.
Hop limit	Hop limit in the Internet PCB.
Send VRF	VRF from which packets are sent.
Receive VRF	VRF from which packets are received.

‌

display ipv6 router-renumber statistics

Use display ipv6 router-renumber statistics to display router renumbering statistics.

Syntax

display ipv6 router-renumber statistics

Views

Any view

Predefined user roles

network-admin

network-operator

Examples

# Display router renumbering statistics.

<Sysname> display ipv6 router-renumber statistics

Enabling/disabling protocol failed: 0

Packets with sequence number error: 2

Packets with segment number error: 1

PCO check failed: 0

Packets with T-flag set and R-flag unset: 1

Router-renumber function disable: 0

Packets too short: 0

Packets with invalid destinations: 0

Create result packets failed: 0

Sent result packets failed: 0

Received command packets: 7

Received reset packets: 3

Sent result packets: 9

SequenceNumber: 0x2

ResetSequenceNumber: 0x2

SegmentNumber[0]: 0x1

SegmentNumber[1]: 0x0

SegmentNumber[2]: 0x0

SegmentNumber[3]: 0x0

SegmentNumber[4]: 0x0

SegmentNumber[5]: 0x0

SegmentNumber[6]: 0x0

SegmentNumber[7]: 0x0

Table 11 Command output

Field	Description
Enabling/disabling protocol failed	Number of protocol packets that failed to be sent to the CPU.
Packets with sequence number error	Number of packets with the incorrect sequence number.
Packets with segment number error	Number of packets with the incorrect segment number.
PCO check failed	Number of packets that failed the PCO check.
Packets with T-flag set and R-flag unset	Number of packets with T-flag set and R-flag unset.
Router-renumber function disable	Router-renumber function disable
Packets too short	Number of packets with a short length.
Packets with invalid destinations	Number of packets with invalid destination addresses.
Create result packets failed	Number of Result messages that the device failed to create.
Sent result packets failed	Number of Result messages that failed to be sent.
Received command packets	Number of received Command messages.
Received reset packets	Number of received Reset messages.
Sent result packets	Number of Result messages that have been sent.
SequenceNumber	Sequence number.
ResetSequenceNumber	Reset sequence number.
SegmentNumber[0-7]	Segment number.

Related commands

reset ipv6 router-renumber statistics

display ipv6 statistics

Use display ipv6 statistics to display IPv6 and ICMPv6 packet statistics.

Syntax

display ipv6 statistics [ slot slot-number ]

Views

Any view

Predefined user roles

network-admin

network-operator

Parameters

slot slot-number: Specifies a card by its slot number. If you do not specify a card, this command displays IPv6 and ICMPv6 packet statistics for all cards.

Examples

# Display IPv6 and ICMPv6 packet statistics.

<Sysname> display ipv6 statistics

IPv6 statistics:

Sent packets:

Total: 0

Sent locally: 0 Forwarded: 0

Raw packets: 0 Discarded: 0

Fragments: 0 Fragments failed: 0

Routing failed: 0

Received packets:

Total: 0

Received locally: 0 Hop limit exceeded: 0

Fragments: 0 Reassembled: 0

Reassembly failures: 0 Reassembly timeout: 0

Format errors: 0 Option errors: 0

Protocol errors: 0

ICMPv6 statistics:

Sent packets:

Total: 0

Unreachable: 0 Too big: 0

Hop limit exceeded: 0 Reassembly timeouts: 0

Parameter problems: 0

Echo requests: 0 Echo replies: 0

Neighbor solicits: 0 Neighbor adverts: 0

Router solicits: 0 Router adverts: 0

Redirects: 0 Router renumbering: 0

Send failed:

Rate limitation: 0 Other errors: 0

Received packets:

Total: 0

Checksum errors: 0 Too short: 0

Bad codes: 0

Unreachable: 0 Too big: 0

Hop limit exceeded: 0 Reassembly timeouts: 0

Parameter problems: 0 Unknown error types: 0

Echo requests: 0 Echo replies: 0

Neighbor solicits: 0 Neighbor adverts: 0

Router solicits: 0 Router adverts: 0

Redirects: 0 Router renumbering: 0

Unknown info types: 0

Deliver failed:

Bad length: 0

Table 12 Command output

Field	Description
IPv6 statistics:	IPv6 packet statistics.
Sent packets: Total: Sent locally: Forwarded: Raw packets: Discarded: Fragments: Fragments failed: Routing failed:	Statistics for sent IPv6 packets: · Total—Total number of packets that have been locally sent and forwarded. · Sent locally—Number of locally sent packets. · Forwarded—Number of forwarded packets. · Raw packets—Number of packets sent by using a raw socket. · Discarded—Number of discarded packets. · Fragments—Number of sent fragments. · Fragments failed—Number of fragments that were failed to send. · Routing failed—Number of packets with routing failures.
Received packets: Total: Received locally: Hop limit exceeded: Fragments: Reassembled: Reassembly failures: Reassembly timeout: Format errors: Option errors: Protocol errors:	Statistics for received IPv6 packets: · Total—Total number of received packets. · Received locally—Number of received packets that are destined for the device. · Hop limit exceeded—Number of packets with hop limit exceeded. · Fragments—Number of received fragments. · Reassembled—Number of reassembled packets. · Reassembly failures—Number of packets with reassembly failures. · Reassembly timeout—Number of packets with reassembly timed out. · Format errors—Number of packets with format errors. · Option errors—Number of packets with option errors. · Protocol errors—Number of packets with protocol errors.
ICMPv6 statistics:	ICMPv6 message statistics.
Sent packets: Total: Unreached: Too big: Hop limit exceeded: Reassembly timeouts: Parameter problems: Echo requests: Echo replies: Neighbor solicits: Neighbor adverts: Router solicits: Router adverts: Redirects: Router renumbering Sent failed: Rate limitation: Other errors:	Statistics for sent ICMPv6 messages: · Total—Total number of sent messages. · Unreached—Number of Destination Unreachable messages. · Too big—Number of Packet Too Big messages. · Hop limit exceeded—Number of Hop Limit Exceeded messages. · Reassembly timeouts—Number of Fragment Reassembly Time Exceeded messages. · Parameter problems—Number of Parameter Problem messages. · Echo requests—Number of Echo Requests. · Echo replies—Number of Echo Replies. · Neighbor solicits—Number of Neighbor Solicitation messages. · Neighbor adverts—Number of Neighbor Advertisement messages. · Router solicits—Number of Router Solicitation messages. · Router adverts—Number of Router Advertisement messages. · Redirects—Number of Redirect messages. · Router renumbering—Number of Router Renumbering messages. · Sent failed—Number of messages that were failed to send locally. · Rate limitation—Number of unsent messages because of rate limiting. · Other errors—Number of messages with other errors.
Received packets: Total: Checksum errors: Too short: Bad codes: Unreachable: Too big: Hop limit exceeded: Reassembly timeouts: Parameter problems: Unknown error types: Echo requests: Echo replies: Neighbor solicits: Neighbor adverts: Router solicits: Router adverts: Redirects: Router renumbering: Unknown info types: Deliver failed: Bad length:	Statistics for received ICMPv6 messages: · Total—Total number of received messages. · Checksum errors—Number of messages with checksum errors. · Too short—Number of messages with a too short length. · Bad codes—Number of messages with error codes. · Unreachable—Number of Destination Unreachable messages. · Too big—Number of Packet Too Big messages. · Hop limit exceeded—Number of Hop Limit Exceeded messages. · Reassembly timeouts—Number of Fragment Reassembly Time Exceeded messages. · Parameter problems—Number of Parameter Problem messages. · Unknown error types—Number of messages with unknown error types. · Echo requests—Number of Echo Requests. · Echo replies—Number of Echo Replies. · Neighbor solicits—Number of Neighbor Solicitation messages. · Neighbor adverts—Number of Neighbor Advertisement messages. · Router solicits—Number of Router Solicitation messages. · Router adverts—Number of Router Advertisement messages. · Redirects—Number of Redirect messages. · Router renumbering—Number of Router Renumbering messages. · Unknown info types—Number of messages with unknown information types. · Deliver failed—Number of messages with local delivery failures. · Bad length—Number of messages with error length.

Field

Description

IPv6 statistics:

IPv6 packet statistics.

Sent packets:

Total:

Sent locally:

Forwarded:

Raw packets:

Discarded:

Fragments:

Fragments failed:

Routing failed:

Statistics for sent IPv6 packets:

· Total—Total number of packets that have been locally sent and forwarded.

· Sent locally—Number of locally sent packets.

· Forwarded—Number of forwarded packets.

· Raw packets—Number of packets sent by using a raw socket.

· Discarded—Number of discarded packets.

· Fragments—Number of sent fragments.

· Fragments failed—Number of fragments that were failed to send.

· Routing failed—Number of packets with routing failures.

Received packets:

Total:

Received locally:

Hop limit exceeded:

Fragments:

Reassembled:

Reassembly failures:

Reassembly timeout:

Format errors:

Option errors:

Protocol errors:

Statistics for received IPv6 packets:

· Total—Total number of received packets.

· Received locally—Number of received packets that are destined for the device.

· Hop limit exceeded—Number of packets with hop limit exceeded.

· Fragments—Number of received fragments.

· Reassembled—Number of reassembled packets.

· Reassembly failures—Number of packets with reassembly failures.

· Reassembly timeout—Number of packets with reassembly timed out.

· Format errors—Number of packets with format errors.

· Option errors—Number of packets with option errors.

· Protocol errors—Number of packets with protocol errors.

ICMPv6 statistics:

ICMPv6 message statistics.

Sent packets:

Total:

Unreached:

Too big:

Hop limit exceeded:

Reassembly timeouts:

Parameter problems:

Echo requests:

Echo replies:

Neighbor solicits:

Neighbor adverts:

Router solicits:

Router adverts:

Redirects:

Router renumbering

Sent failed:

Rate limitation:

Other errors:

Statistics for sent ICMPv6 messages:

· Total—Total number of sent messages.

· Unreached—Number of Destination Unreachable messages.

· Too big—Number of Packet Too Big messages.

· Hop limit exceeded—Number of Hop Limit Exceeded messages.

· Reassembly timeouts—Number of Fragment Reassembly Time Exceeded messages.

· Parameter problems—Number of Parameter Problem messages.

· Echo requests—Number of Echo Requests.

· Echo replies—Number of Echo Replies.

· Neighbor solicits—Number of Neighbor Solicitation messages.

· Neighbor adverts—Number of Neighbor Advertisement messages.

· Router solicits—Number of Router Solicitation messages.

· Router adverts—Number of Router Advertisement messages.

· Redirects—Number of Redirect messages.

· Router renumbering—Number of Router Renumbering messages.

· Sent failed—Number of messages that were failed to send locally.

· Rate limitation—Number of unsent messages because of rate limiting.

· Other errors—Number of messages with other errors.

Received packets:

Total:

Checksum errors:

Too short:

Bad codes:

Unreachable:

Too big:

Hop limit exceeded:

Reassembly timeouts:

Parameter problems:

Unknown error types:

Echo requests:

Echo replies:

Neighbor solicits:

Neighbor adverts:

Router solicits:

Router adverts:

Redirects:

Router renumbering:

Unknown info types:

Deliver failed:

Bad length:

Statistics for received ICMPv6 messages:

· Total—Total number of received messages.

· Checksum errors—Number of messages with checksum errors.

· Too short—Number of messages with a too short length.

· Bad codes—Number of messages with error codes.

· Unreachable—Number of Destination Unreachable messages.

· Too big—Number of Packet Too Big messages.

· Hop limit exceeded—Number of Hop Limit Exceeded messages.

· Reassembly timeouts—Number of Fragment Reassembly Time Exceeded messages.

· Parameter problems—Number of Parameter Problem messages.

· Unknown error types—Number of messages with unknown error types.

· Echo requests—Number of Echo Requests.

· Echo replies—Number of Echo Replies.

· Neighbor solicits—Number of Neighbor Solicitation messages.

· Neighbor adverts—Number of Neighbor Advertisement messages.

· Router solicits—Number of Router Solicitation messages.

· Router adverts—Number of Router Advertisement messages.

· Redirects—Number of Redirect messages.

· Router renumbering—Number of Router Renumbering messages.

· Unknown info types—Number of messages with unknown information types.

· Deliver failed—Number of messages with local delivery failures.

· Bad length—Number of messages with error length.

‌

Related commands

reset ipv6 statistics

statistics l3-packet enable

display ipv6 tcp

Use display ipv6 tcp to display brief information about IPv6 TCP connections.

Syntax

display ipv6 tcp [ slot slot-number ]

Views

Any view

Predefined user roles

network-admin

network-operator

Parameters

slot slot-number: Specifies a card by its slot number. If you do not specify a card, this command displays brief information about IPv6 TCP connections for all cards.

Examples

# Display brief information about IPv6 TCP connections.

<Sysname> display ipv6 tcp

*: TCP connection with authentication

#: Kernel TCP connection

LAddr->port FAddr->port State Slot CPU PCB

*2001:2002:2003:2 3001:3002:3003:3 ESTABLISHED 1 0 0x000000000000c387

004:2005:2006:20 004:3005:3006:30

07:2008->1200 07:3008->1200

#2002::1->1100 2002::5->2333 LISTEN 1 0 N/A

2001::1->23 2001::5->1284 ESTABLISHED 2 0 0x0000000000000008

2003::1->25 2001::2->1283 LISTEN 3 0 0x0000000000000009

Table 13 Command output

Field	Description
*	Indicates that the TCP connection uses authentication.
#	The pound sign (#) indicates a Comware kernel connection.
LAddr->port	Local IPv6 address and port number.
FAddr->port	Peer IPv6 address and port number.
State	IPv6 TCP connection state: · CLOSED—The server receives a disconnection request's reply from the client. · LISTEN—The server is waiting for connection requests. · SYN_SENT—The client is waiting for the server to reply to the connection request. · SYN_RCVD—The server receives a connection request. · ESTABLISHED—The server and client have established connections and can transmit data bidirectionally. · CLOSE_WAIT—The server receives a disconnection request from the client. · FIN_WAIT_1—The client is waiting for the server to reply to a disconnection request. · CLOSING—The server and client are waiting for peer's disconnection reply when receiving disconnection requests from each other. · LAST_ACK—The server is waiting for the client to reply to a disconnection request. · FIN_WAIT_2—The client receives a disconnection reply from the server. · TIME_WAIT—The client receives a disconnection request from the server.
PCB	PCB index.

‌

display ipv6 tcp verbose

Use display ipv6 tcp verbose to display detailed information about IPv6 TCP connections.

Syntax

display ipv6 tcp verbose [ slot slot-number [ pcb pcb-index ] ]

Views

Any view

Predefined user roles

network-admin

network-operator

Parameters

slot slot-number: Specifies a card by its slot number. If you do not specify a card, this command displays detailed information about IPv6 TCP connections for all cards.

pcb pcb-index: Displays detailed information about IPv6 TCP connections of the specified PCB. The value range for the pcb-index argument is 1 to 16.

Examples

# Display detailed information about an IPv6 TCP connection.

<Sysname> display ipv6 tcp verbose

TCP inpcb number: 1(tcpcb number: 1)

Connection info: src = 2001::1->179 , dst = 2001::2->4181

NAT kernel port: 0

Location: Slot: 6 Cpu: 0

NSR standby: N/A

Creator: bgpd[199]

State: ISCONNECTED

Options: N/A

Error: 0

Receiving buffer(cc/hiwat/lowat/drop/full/state): 0 / 65536 / 1 / 0 / 0 / N/A

Sending buffer(cc/hiwat/lowat/state): 0 / 65536 / 512 / N/A

Type: 1

Protocol: 6

Inpcb flags: N/A

Inpcb extflag: N/A

Inpcb vflag: INP_IPV6

Hop limit: 255 (minimum hop limit: 0)

Connection state: ESTABLISHED

TCP options: TF_REQ_SCALE TF_REQ_TSTMP TF_SACK_PERMIT TF_NSR

NSR state: READY(M)

Send VRF: 0x0

Receive VRF: 0x0

ServiceType: 7

Table 14 Command output

Field	Description
TCP inpcb number	Number of IPv6 TCP Internet PCBs.
Connection info	Connection information, including source IPv6 address, source port number, destination IPv6 address, and destination port number.
NAT kernel port	TCP port for NAT in the kernel mode. If NAT is not enabled, the value of this field is 0.
Location	Socket location.
NSR standby	Number of the NSR standby MPU. This field displays N/A if no NSR standby MPU is present.
tcpcb number	Number of IPv6 TCP PCBs (excluding PCBs of TCP in TIME_WAIT state).
Creator	Task name of the socket. The process number is in the square brackets.
State	Socket state: · NOFDREF—The user has closed the connection. · ISCONNECTED—The connection has been established. · ISCONNECTING—The connection is being established. · ISDISCONNECTING—The connection is being interrupted. · ASYNC—Asynchronous mode. · ISDISCONNECTED—The connection has been terminated. · PROTOREF—Indicates strong protocol reference. · N/A—None of above state.
Options	Socket options: · SO_DEBUG—Records socket debugging information. · SO_ACCEPTCONN—Enables the server to listen connection requests. · SO_REUSEADDR—Allows the local address reuse. · SO_KEEPALIVE—Requires the protocol to test whether the connection is still alive. · SO_DONTROUTE—Bypasses the routing table query for outgoing packets because the destination is in a directly connected network. · SO_BROADCAST—Supports broadcast packets. · SO_LINGER—Closes the socket. The system can still send remaining data in the socket send buffer. · SO_OOBINLINE—Stores the out-of-band data in the input queue. · SO_REUSEPORT—Allows the local port reuse. · SO_TIMESTAMP—Records the timestamps of the input packets, accurate to milliseconds. This option is applicable to protocols that are not connection orientated. · SO_NOSIGPIPE—Disables the socket from sending data. As a result, a sigpipe cannot be established when a return failure occurs. · SO_TIMESTAMPNS—Has a similar function with the timestamp, accurate to nanoseconds. · SO_KEEPALIVETIME—Sets a keepalive time. This option is supported in TCP. · SO_FILTER—Supports setting the packet filter criterion. This option is available for OSI Socket and RawIP. · N/A—No options are set.
Error	Error code.
Receiving buffer(cc/hiwat/lowat/drop/full/state)	Displays receive buffer information in the following order: · cc—Used space. · hiwat—Maximum space. · lowat—Minimum space. · drop—Number of dropped packets. · full—Number of packets dropped because the kernel's sending buffer is full. · state—Buffer state: ¡ CANTSENDMORE—Unable to send data to the peer. ¡ CANTRCVMORE—Unable to receive data from the peer. ¡ RCVATMARK—Receiving tag. ¡ N/A—None of the above states.
Sending buffer(cc/hiwat/lowat/state)	Displays send buffer information in the following order: · cc—Used space. · hiwat—Maximum space. · lowat—Minimum space. · state—Buffer state: ¡ CANTSENDMORE—Unable to send data to the peer. ¡ CANTRCVMORE—Unable to receive data from the peer. ¡ RCVATMARK—Receiving tag. ¡ N/A—None of the above states.
Type	Socket type: · 1—SOCK_STREAM. This socket uses TCP to provide reliable transmission of byte streams. · 2—SOCK_DGRAM. This socket uses UDP to provide datagram transmission. · 3—SOCK_RAW. This socket allows an application to change the next upper-layer protocol header. · N/A—None of the above types.
Protocol	Number of the protocol using the socket. 6 represents TCP.
Inpcb flags	Flags in the Internet PCB: · INP_RECVOPTS—Receives IPv6 options. · INP_RECVRETOPTS—Receives replied IPv6 options. · INP_RECVDSTADDR—Receives destination IPv6 address. · INP_HDRINCL—Provides the entire IPv6 header. · INP_REUSEADDR—Reuses the IPv6 address. · INP_REUSEPORT—Reuses the port number. · INP_ANONPORT—Port number not specified. · INP_PROTOCOL_PACKET—Identifies a protocol packet. · INP_RCVVLANID—Receives the VLAN ID of the packet. Only UDP and RawIP support this flag. · IN6P_IPV6_V6ONLY—Only supports IPv6 protocol stack. · IN6P_PKTINFO—Receives the source IPv6 address and input interface of the packet. · IN6P_HOPLIMIT—Receives the hop limit. · IN6P_HOPOPTS—Receives the hop-by-hop options extension header. · IN6P_DSTOPTS—Receives the destination options extension header. · IN6P_RTHDR—Receives the routing extension header. · IN6P_RTHDRDSTOPTS—Receives the destination options extension header preceding the routing extension header. · IN6P_TCLASS—Receives the traffic class of the packet. · IN6P_AUTOFLOWLABEL—Attaches a flow label automatically. · IN6P_RFC2292—Uses the API specified in RFC 2292. · IN6P_MTU—Discovers differences in the MTU size of every link along a given data path. TCP does not support this flag. · INP_RCVMACADDR—Receives the MAC address of the frame. · INP_SYNCPCB—Waits until Internet PCB is synchronized. · INP_RECVIF—Obtains the input interface of the received packets. · INP_NONBLOCK—Non-blocking socket. · INP_DONTROUTE—Performs no route lookup for outgoing packets. · INP_BROADCAST—Allows broadcast packet transmission. · INP_SNDBYDSTMAC—Uses the specified MAC address for outgoing packets. · INP_RCVFROMUSER—Uses the forward process for receiving packets and bypasses the kernel. · INP_RECVVPN—Obtains the VPN information of the received packets. · INP_RCVVLANID—Obtains the VLAN ID of the received packets. · N/A—None of the above flags.
Inpcb extflag	Extension flags in the Internet PCB: · INP_EXTRCVPVCIDX—Records the PVC index of the received packet. · INP_RCVPWID—Records the PW ID of the received packet. · INP_EXTDONTDROP—Does not drop the received packet. · INP_EXLISTEN—Listening socket. · INP_EXTWHITELIST —Supports the allowlist function. · INP_EXTMCNOSRC—Does not set the source address upon a ping multicast operation. · N/A—None of the above flags.
Inpcb vflag	IP version flags in the Internet PCB: · INP_IPV4—IPv4 protocol. · INP_IPV6—IPv6 protocol. · INP_IPV6PROTO—Creates an Internet PCB based on IPv6 protocol. · INP_TIMEWAIT—In TIMEWAIT state. · INP_ONESBCAST—Sends broadcast packets. · INP_DROPPED—Protocol dropped flag. · INP_SOCKREF—Strong socket reference. · INP_DONTBLOCK—Do not block synchronization of the Internet PCB. · N/A—None of the above flags.
Hop limit	Hop limit in the Internet PCB.
Connection state	TCP connection state: · CLOSED—The server receives a disconnection request's reply from the client. · LISTEN—The server is waiting for connection requests. · SYN_SENT—The client is waiting for the server to reply to the connection request. · SYN_RCVD—The server receives a connection request. · ESTABLISHED—The server and client have established connections and can transmit data bidirectionally. · CLOSE_WAIT—The server receives a disconnection request from the client. · FIN_WAIT_1—The client is waiting for the server to reply to a disconnection request. · CLOSING—The server and client are waiting for peer's disconnection reply when receiving disconnection requests from each other. · LAST_ACK—The server is waiting for the client to reply to a disconnection request. · FIN_WAIT_2—The client receives a disconnection reply from the server. · TIME_WAIT—The client receives a disconnection request from the server.
TCP options	TCP options: · TF_MD5SIG—Enables MD5 signature. · TF_NODELAY—Disables the Nagle algorithm that buffers the sent data inside the TCP. · TF_NOOPT—No TCP options. · TF_NOPUSH—Forces TCP to delay sending any TCP data until a full sized segment is buffered in the TCP buffers. · TF_BINDFOREIGNADDR—Binds the peer IP address. · TF_NSR—Enables TCP NSR. · TF_REQ_SCALE—Enables the TCP window scale option. · TF_REQ_TSTMP—Enables the time stamp option. · TF_SACK_PERMIT—Enables the TCP selective acknowledgement option. · TF_ENHANCED_AUTH—Enables the enhanced authentication option.
NSR state	NSR state of the TCP connection: · CLOSED—Closed (initial) state. · CLOSING—The connection is to be closed. · ENABLED—The connection backup is enabled. · OPEN—The connection synchronization has started. · PENDING—The connection backup is not ready. · READY—The connection backup is ready. · SMOOTH—The connection data is being smoothed. Between the parentheses is the role of the connection: · M—Main connection. · S—Standby connection.
Send VRF	VRF from which packets are sent.
Receive VRF	VRF from which packets are received.
ServiceType	Current service type. A value of 7 indicates that the current service type is BGP.

‌

display ipv6 tcp-proxy

Use display ipv6 tcp-proxy to display brief information about IPv6 TCP proxy.

Syntax

display ipv6 tcp-proxy slot slot-number

Views

Any view

Predefined user roles

network-admin

network-operator

Parameters

slot slot-number: Specifies a card by its slot number.

Examples

# Display brief information about IPv6 TCP proxy.

<Sysname> display ipv6 tcp-proxy slot 1

LAddr->port FAddr->port State Service type

2001::1->45 11:22:33:44->54602 ESTABLISHED WAAS

11:22:33:44->54602 2001::1->45 ESTABLISHED WAAS

Table 15 Command output

Field	Description
LAddr->port	Local IPv6 address and port number.
Faddr->port	Peer IPv6 address and port number.
State	IPv6 TCP connection state: · CLOSED—The server receives a disconnection request's reply from the client. · LISTEN—The server is waiting for connection requests. · SYN_SENT—The client is waiting for the server to reply to the connection request. · SYN_RECEIVED—The server receives a connection request. · ESTABLISHED—The server and client have established connections and can transmit data bidirectionally. · CLOSE_WAIT—The server receives a disconnection request from the client. · FIN_WAIT_1—The client is waiting for the server to reply to a disconnection request. · CLOSING—The server and client are waiting for peer's disconnection reply when receiving disconnection requests from each other. · LAST_ACK—The server is waiting for the client to reply to a disconnection request. · FIN_WAIT_2—The client receives a disconnection reply from the server. · TIME_WAIT—The client receives a disconnection request from the server.
Service type	Type of services that the IPv6 TCP proxy is used for: · NONE—No service type is specified. · LB—Load balancing services. · WAAS—Wide area application services. · APPPROXY—Application proxy services.

‌

display ipv6 tcp-proxy port-info

Use display ipv6 tcp-proxy port-info to display the usage of non-well known ports for IPv6 TCP proxy.

Syntax

display ipv6 tcp-proxy port-info slot slot-number

Views

Any view

Predefined user roles

network-admin

network-operator

Parameters

slot slot-number: Specifies a card by its slot number. If you do not specify a card, this command displays non-well known port usage for all cards.

Usage guidelines

The TCP ports are divided into well-known ports (port numbers from 0 through 1023) and non-well known ports (port numbers from 1024 through 65535).

· Well known ports are for certain services, for example, port 23 for Telnet service, ports 20 and 21 for FTP service, and port 80 for HTTP service.

· Non-well known ports are available for various services. You can use the display ipv6 tcp-proxy port-info command to display the usage of these ports.

Examples

# Display the usage of non-well known ports for IPv6 TCP proxy.

<Sysname> display ipv6 tcp-proxy port-info

Index Range State

16 [1024, 1087] USABLE

17 [1088, 1151] USABLE

18 [1152, 1215] USABLE

19 [1216, 1279] USABLE

20 [1280, 1343] USABLE

...

1020 [65280, 65343] USABLE

1021 [65344, 65407] USABLE

1022 [65408, 65471] USABLE

1023 [65472, 65535] USABLE

Table 16 Command output

Field	Description
Index	Index of the port range.
Range	Start port number and end port number.
State	State of the port range: · USABLE—The ports are assignable. · ASSIGNED—Some ports are dynamically assigned and some ports are not. · ALLASSIGNED—All ports are dynamically assigned. The assigned ports can be reclaimed. · TO RECLAIM—Some ports are statically assigned. The assigned ports can be reclaimed. · RESERVED—The ports are reserved. The reserved ports cannot be dynamically assigned.

display ipv6 udp

Use display ipv6 udp to display brief information about IPv6 UDP connections.

Syntax

display ipv6 udp [ slot slot-number ]

Views

Any view

Predefined user roles

network-admin

network-operator

Parameters

slot slot-number: Specifies a card by its slot number. If you do not specify a card, this command displays brief information about IPv6 UDP connections for all cards.

Examples

# Displays brief information about IPv6 UDP connections.

<Sysname> display ipv6 udp

#: Kernel UDP connection

LAddr->port FAddr->port Slot Cpu PCB

2001:2002:2003:2 3001:3002:3003:3 1 0 0x000000000000c387

004:2005:2006:20 004:3005:3006:30

07:2008->1200 07:3008->1200

#2002::1->1100 2002::5->2333 1 0 N/A

2001::1->23 2001::5->1284 2 0 0x0000000000000008

2003::1->25 2001::2->1283 3 0 0x0000000000000009

Table 17 Command output

Field	Description
#	The pound sign (#) indicates a Comware kernel connection.
LAddr->port	Local IPv6 address and port number.
FAddr->port	Peer IPv6 address and port number.
PCB	PCB index.

‌

display ipv6 udp verbose

Use display ipv6 udp verbose to display detailed information about IPv6 UDP connections.

Syntax

display ipv6 udp verbose [ slot slot-number [ pcb pcb-index ] ]

Views

Any view

Predefined user roles

network-admin

network-operator

Parameters

slot slot-number: Specifies a card by its slot number. If you do not specify a card, this command displays detailed information about IPv6 UDP connections for all cards.

pcb pcb-index: Displays detailed information about IPv6 UDP connections of the specified PCB. The value range for the pcb-index argument varies by device model.

Examples

# Display detailed information about an IPv6 UDP connection.

<Sysname> display ipv6 udp verbose

Total UDP socket number: 1

Connection info: src = ::->69, dst = ::->0

Location: slot: 6 cpu: 0

Creator: sock_test_mips[250]

State: N/A

Options: N/A

Error: 0

Receiving buffer(cc/hiwat/lowat/drop/full/state): 0 / 41600 / 1 / 0 / 0 / N/A

Sending buffer(cc/hiwat/lowat/state): 0 / 9216 / 512 / N/A

Type: 2

Protocol: 17

Inpcb flags: N/A

Inpcb extflag: N/A

Inpcb vflag: INP_IPV6

Hop limit: 255 (minimum hop limit: 0)

Send VRF: 0xffff

Receive VRF: 0xffff

Table 18 Command output

Field	Description
Total UDP socket number	Total number of IPv6 UDP sockets.
Connection info	Connection information, including source IPv6 address, source port number, destination IPv6 address, and destination port number.
Location	Socket location.
Creator	Task name of the socket. The progress number is in the square brackets.
State	Socket state: · NOFDREF—The user has closed the connection. · ISCONNECTED—The connection has been established. · ISCONNECTING—The connection is being established. · ISDISCONNECTING—The connection is being interrupted. · ASYNC—Asynchronous mode. · ISDISCONNECTED—The connection has been terminated. · PROTOREF—Indicates strong protocol reference. · N/A—None of above state.
Options	Socket options: · SO_DEBUG—Records socket debugging information. · SO_ACCEPTCONN—Enables the server to listen connection requests. · SO_REUSEADDR—Allows the local address reuse. · SO_KEEPALIVE—Requires the protocol to test whether the connection is still alive. · SO_DONTROUTE—Bypasses the routing table query for outgoing packets because the destination is in a directly connected network. · SO_BROADCAST—Supports broadcast packets. · SO_LINGER—Closes the socket. The system can still send remaining data in the socket send buffer. · SO_OOBINLINE—Stores the out-of-band data in the input queue. · SO_REUSEPORT—Allows the local port reuse. · SO_TIMESTAMP—Records the timestamps of the input packets, accurate to milliseconds. This option is applicable to protocols that are not connection orientated. · SO_NOSIGPIPE—Disables the socket from sending data. As a result, a sigpipe cannot be established when a return failure occurs. · SO_TIMESTAMPNS—Has a similar function with the timestamp, accurate to nanoseconds. · SO_KEEPALIVETIME—Sets a keepalive time. This option is supported in TCP. · SO_FILTER—Supports setting the packet filter criterion. This option is available for OSI Socket and RawIP. · SO_USCBINDEX—Obtains the user profile index from the received packets. · N/A—No options are set.
Error	Error code.
Receiving buffer(cc/hiwat/lowat/drop/full/state)	Displays receive buffer information in the following order: · cc—Used space. · hiwat—Maximum space. · lowat—Minimum space. · drop—Number of dropped packets. · full—Number of packets dropped because the kernel's sending buffer is full. · state—Buffer state: ¡ CANTSENDMORE—Unable to send data to the peer. ¡ CANTRCVMORE—Unable to receive data from the peer. ¡ RCVATMARK—Receiving tag. ¡ N/A—None of the above states.
Sending buffer(cc/hiwat/lowat/state)	Displays send buffer information in the following order: · cc—Used space. · hiwat—Maximum space. · lowat—Minimum space. · state—Buffer state: ¡ CANTSENDMORE—Unable to send data to the peer. ¡ CANTRCVMORE—Unable to receive data from the peer. ¡ RCVATMARK—Receiving tag. ¡ N/A—None of the above states.
Type	Socket type: · 1—SOCK_STREAM. This socket uses TCP to provide reliable transmission of byte streams. · 2—SOCK_DGRAM. This socket uses UDP to provide datagram transmission. · 3—SOCK_RAW. This socket allows an application to change the next upper-layer protocol header. · N/A—None of the above types.
Protocol	Number of the protocol using the socket. 17 represents UDP.
Inpcb flags	Flags in the Internet PCB: · INP_RECVOPTS—Receives IPv6 options. · INP_RECVRETOPTS—Receives replied IPv6 options. · INP_RECVDSTADDR—Receives destination IPv6 address. · INP_HDRINCL—Provides the entire IPv6 header. · INP_REUSEADDR—Reuses the IPv6 address. · INP_REUSEPORT—Reuses the port number. · INP_ANONPORT—Port number not specified. · INP_PROTOCOL_PACKET—Identifies a protocol packet. · INP_RCVVLANID—Receives the VLAN ID of the packet. Only UDP and RawIP support this flag. · IN6P_IPV6_V6ONLY—Only supports IPv6 protocol stack. · IN6P_PKTINFO—Receives the source IPv6 address and input interface of the packet. · IN6P_HOPLIMIT—Receives the hop limit. · IN6P_HOPOPTS—Receives the hop-by-hop options extension header. · IN6P_DSTOPTS—Receives the destination options extension header. · IN6P_RTHDR—Receives the routing extension header. · IN6P_RTHDRDSTOPTS—Receives the destination options extension header preceding the routing extension header. · IN6P_TCLASS—Receives the traffic class of the packet. · IN6P_AUTOFLOWLABEL—Attaches a flow label automatically. · IN6P_RFC2292—Uses the API specified in RFC 2292. · IN6P_MTU—Discovers differences in the MTU size of every link along a given data path. TCP does not support this flag. · INP_RCVMACADDR—Receives the MAC address of the frame. · INP_SYNCPCB—Waits until Internet PCB is synchronized. · INP_RECVIF—Obtains the input interface of the received packets. · INP_NONBLOCK—Non-blocking socket. · INP_DONTROUTE—Performs no route lookup for outgoing packets. · INP_BROADCAST—Allows broadcast packet transmission. · INP_SNDBYDSTMAC—Uses the specified MAC address for outgoing packets. · INP_RCVFROMUSER—Uses the forward process for receiving packets and bypasses the kernel. · INP_RECVVPN—Obtains the VPN information of the received packets. · INP_RCVVLANID—Obtains the VLAN ID of the received packets. · N/A—None of the above flags.
Inpcb extflag	Extension flags in the Internet PCB: · INP_EXTRCVPVCIDX—Records the PVC index of the received packet. · INP_RCVPWID—Records the PW ID of the received packet. · N/A—None of the above flags.
Inpcb vflag	IP version flags in the Internet PCB: · INP_IPV4—IPv4 protocol. · INP_IPV6—IPv6 protocol. · INP_IPV6PROTO—Creates an Internet PCB based on IPv6 protocol. · INP_TIMEWAIT—In TIMEWAIT state. · INP_ONESBCAST—Sends broadcast packets. · INP_DROPPED—Protocol dropped flag. · INP_SOCKREF—Strong socket reference. · INP_DONTBLOCK—Do not block synchronization of the Internet PCB. · N/A—None of the above flags.
Hop limit	Hop limit in the Internet PCB.
Send VRF	VRF from which packets are sent.
Receive VRF	VRF from which packets are received.

‌

ipv6 address

Use ipv6 address to configure an IPv6 global unicast address for an interface.

Use undo ipv6 address to delete an IPv6 global unicast address of the interface.

Syntax

ipv6 address { ipv6-address prefix-length | ipv6-address/prefix-length }

undo ipv6 address [ ipv6-address prefix-length | ipv6-address/prefix-length ]

Default

No IPv6 global unicast address is configured for an interface.

Views

Interface view

Predefined user roles

network-admin

Parameters

ipv6-address: Specifies an IPv6 address.

prefix-length: Specifies a prefix length in the range of 1 to 128.

Usage guidelines

Like public IPv4 addresses, IPv6 global unicast addresses are assigned to ISPs. This type of address allows for prefix aggregation to reduce the number of global routing entries.

If you do not specify any parameters, the undo ipv6 address command deletes all IPv6 addresses of an interface.

Examples

# Set the IPv6 global unicast address of GigabitEthernet 1/0/1 to 2001::1 with prefix length 64.

Method 1:

<Sysname> system-view

[Sysname] interface gigabitethernet 1/0/1

[Sysname-GigabitEthernet1/0/1] ipv6 address 2001::1/64

Method 2:

<Sysname> system-view

[Sysname] interface gigabitethernet 1/0/1

[Sysname-GigabitEthernet1/0/1] ipv6 address 2001::1 64

ipv6 address anycast

Use ipv6 address anycast to configure an IPv6 anycast address for an interface.

Use undo ipv6 address anycast to delete the IPv6 anycast address of the interface.

Syntax

ipv6 address { ipv6-address prefix-length | ipv6-address/prefix-length } anycast

undo ipv6 address { ipv6-address prefix-length | ipv6-address/prefix-length } anycast

Default

No IPv6 anycast address is configured for an interface.

Views

Interface view

Predefined user roles

network-admin

Parameters

ipv6-address: Specifies an IPv6 anycast address.

prefix-length: Specifies a prefix length in the range of 1 to 128.

Examples

# Set the IPv6 anycast address of interface GigabitEthernet 1/0/1 to 2001::1 with prefix length 64.

Method 1:

<Sysname> system-view

[Sysname] interface gigabitethernet 1/0/1

[Sysname-GigabitEthernet1/0/1] ipv6 address 2001::1/64 anycast

Method 2:

<Sysname> system-view

[Sysname] interface gigabitethernet 1/0/1

[Sysname-GigabitEthernet1/0/1] ipv6 address 2001::1 64 anycast

ipv6 address auto

Use ipv6 address auto to enable the stateless address autoconfiguration feature on an interface, so that the interface can automatically generate a global unicast address.

Use undo ipv6 address auto to disable this feature.

Syntax

ipv6 address auto

undo ipv6 address auto

Default

The stateless address autoconfiguration feature is disabled.

Views

Interface view

Predefined user roles

network-admin

Usage guidelines

After a global unicast address is generated through stateless autoconfiguration, a link-local address is generated automatically.

To delete the global unicast address and the link-local address that are automatically generated, use either of the following commands:

· undo ipv6 address auto

· undo ipv6 address

Examples

# Enable stateless address autoconfiguration on interface GigabitEthernet 1/0/1.

<Sysname> system-view

[Sysname] interface gigabitethernet 1/0/1

[Sysname-GigabitEthernet1/0/1] ipv6 address auto

ipv6 address auto link-local

Use ipv6 address auto link-local to automatically generate a link-local address for an interface.

Use undo ipv6 address auto link-local to restore the default.

Syntax

ipv6 address auto link-local

undo ipv6 address auto link-local

Default

No link-local address is configured on an interface. A link-local address is automatically generated after an IPv6 global unicast address is configured for the interface.

Views

Interface view

Predefined user roles

network-admin

Usage guidelines

Link-local addresses are used for neighbor discovery and stateless autoconfiguration on the local link. Packets using link-local addresses as the source or destination addresses cannot be forwarded to other links.

After an IPv6 global unicast address is configured for an interface, a link-local address is automatically generated. This link-local address is the same as the one generated by using the ipv6 address auto link-local command.

The undo ipv6 address auto link-local command deletes only the link-local addresses generated through the ipv6 address auto link-local command. If the undo command is executed on an interface with an IPv6 global unicast address configured, the interface still has a link-local address.

You can also manually assign an IPv6 link-local address for an interface by using the ipv6 address link-local command. Manual assignment takes precedence over automatic generation for IPv6 link-local addresses.

· If you first use automatic generation and then manual assignment, the manually assigned link-local address overwrites the automatically generated address.

· If you first use manual assignment and then automatic generation, both of the following occur:

¡ The automatically generated link-local address does not take effect.

¡ The link-local address of an interface is still the manually assigned address.

If you delete the manually assigned address, the automatically generated link-local address takes effect.

Examples

# Configure GigabitEthernet 1/0/1 to automatically generate a link-local address.

<Sysname> system-view

[Sysname] interface gigabitethernet 1/0/1

[Sysname-GigabitEthernet1/0/1] ipv6 address auto link-local

Related commands

ipv6 address link-local

ipv6 address eui-64

Use ipv6 address eui-64 to configure an EUI-64 IPv6 address for an interface.

Use undo ipv6 address eui-64 to delete an EUI-64 IPv6 address from an interface.

Syntax

ipv6 address { ipv6-address prefix-length | ipv6-address/prefix-length } eui-64

undo ipv6 address { ipv6-address prefix-length | ipv6-address/prefix-length } eui-64

Default

No EUI-64 IPv6 address is configured for an interface.

Views

Interface view

Predefined user roles

network-admin

Parameters

ipv6-address prefix-length: Specifies an IPv6 address and IPv6 prefix length. The ipv6-address and prefix-length arguments specify the prefix of an EUI-64 IPv6 address. The value range for the prefix-length argument is 1 to 64. The IPv6 address and IPv6 prefix length support the following formats:

· ipv6-address/prefix-length. For example: 2001::1/64.

· ipv6-address prefix-length. For example: 2001::1 64.

Usage guidelines

An EUI-64 IPv6 address is generated based on the specified prefix and the automatically generated interface ID. To display the EUI-64 IPv6 address, use the display ipv6 interface command.

The prefix length of an EUI-64 IPv6 address cannot be greater than 64.

Examples

# Configure an EUI-64 IPv6 address for interface GigabitEthernet 1/0/1. The prefix of the address is the same as that of 2001::1/64, and the interface ID is generated based on the MAC address of the device.

Method 1:

<Sysname> system-view

[Sysname] interface gigabitethernet 1/0/1

[Sysname-GigabitEthernet1/0/1] ipv6 address 2001::1/64 eui-64

Method 2:

<Sysname> system-view

[Sysname] interface gigabitethernet 1/0/1

[Sysname-GigabitEthernet1/0/1] ipv6 address 2001::1 64 eui-64

Related commands

display ipv6 interface

ipv6 address link-local

Use ipv6 address link-local to configure a link-local address for the interface.

Use undo ipv6 address link-local to restore the default.

Syntax

ipv6 address { ipv6-address [ prefix-length ] | ipv6-address/prefix-length } link-local

undo ipv6 address { ipv6-address [ prefix-length ] | ipv6-address/prefix-length } link-local

Default

No link-local address is configured for the interface.

Views

Interface view

Predefined user roles

network-admin

Parameters

ipv6-address: Specifies an IPv6 link-local address. The first 10 bits of an address must be 1111111010 (binary). The first group of hexadecimals in the address must be FE80 to FEBF.

prefix-length: Specifies the prefix length. The value range is 1 to 128.

Usage guidelines

Application scenarios

Link-local addresses are used for communication among link-local nodes for neighbor discovery and stateless autoconfiguration. Packets with link-local source or destination addresses are not forwarded to other links. You can use this command to configure a link-local address for an interface.

Operating mechanism

Manual assignment takes precedence over automatic generation.

If you use automatic generation, and then use manual assignment, the manually assigned link-local address overwrites the one that is automatically generated.

If you use manual assignment and then use automatic generation, both of the following occur:

· The automatically generated link-local address does not take effect.

· The manually assigned link-local address of an interface remains.

After you delete the manually assigned address, the automatically generated link-local address takes effect. For automatic generation of an IPv6 link-local address, see the ipv6 address auto link-local command.

Restrictions and guidelines

When you configure a link-local address, make sure the prefix length is equal to or greater than 10. Otherwise, the configuration fails.

Examples

# Configure a link-local address for GigabitEthernet 1/0/1.

<Sysname> system-view

[Sysname] interface gigabitethernet 1/0/1

[Sysname-GigabitEthernet1/0/1] ipv6 address fe80::1 link-local

# Configure a link-local address for GigabitEthernet 1/0/1 and set the prefix length to 64.

<Sysname> system-view

[Sysname] interface gigabitethernet 1/0/1

[Sysname-GigabitEthernet1/0/1] ipv6 address fe80::1 64 link-local

Related commands

ipv6 address auto link-local

ipv6 address prefix-number

Use ipv6 address prefix-number to specify an IPv6 prefix for an interface to automatically generate an IPv6 global unicast address and advertise the prefix.

Use undo ipv6 address prefix-number to restore the default.

Syntax

ipv6 address prefix-number sub-prefix/prefix-length

undo ipv6 address prefix-number

Default

No IPv6 prefix is specified for IPv6 address autoconfiguration.

Views

Interface view

Predefined user roles

network-admin

Parameters

prefix-number: Specifies an IPv6 prefix by its ID in the range of 1 to 1024. The specified IPv6 prefix can be manually configured or obtained through DHCPv6.

sub-prefix: Specifies the sub-prefix bit and host bit for the IPv6 global unicast address.

prefix-length: Specifies the sub-prefix length in the range of 1 to 128.

Usage guidelines

This command enables an interface to automatically generate an IPv6 global unicast address based on the specified IPv6 prefix, sub-prefix bit, and host bit.

An interface can generate only one IPv6 global unicast address based on the prefix specified by using the ipv6 address command. To configure the interface to generate a new IPv6 address, execute the undo ipv6 address command to delete the configuration, and then execute the ipv6 address command.

Examples

# Configure a static IPv6 prefix AAAA::/16 and assign ID 1 to the prefix. Configure GigabitEthernet 1/0/1 to use this prefix to generate the IPv6 address AAAA:CCCC:DDDD::10/32 and advertise this prefix.

<Sysname> system-view

[Sysname] ipv6 prefix 1 AAAA::/16

[Sysname] interface gigabitethernet 1/0/1

[Sysname-GigabitEthernet1/0/1] ipv6 address 1 BBBB:CCCC:DDDD::10/32

# Configure GigabitEthernet 1/0/2 to obtain an IPv6 prefix through DHCPv6 and assign ID 2 to the obtained prefix. Configure GigabitEthernet 1/0/1 to use the obtained prefix to generate the IPv6 address AAAA:CCCC:DDDD::10/32 and advertise the prefix.

<Sysname> system-view

[Sysname] interface gigabitethernet 1/0/2

[Sysname-GigabitEthernet1/0/2] ipv6 dhcp client pd 2 rapid-commit option-group 1

[Sysname-GigabitEthernet1/0/2] quit

[Sysname] interface gigabitethernet 1/0/1

[Sysname-GigabitEthernet1/0/1] ipv6 address 2 BBBB:CCCC:DDDD::10/32

Related commands

ipv6 prefix

ipv6 dhcp client pd

ipv6 bandwidth-based-sharing

Use ipv6 bandwidth-based-sharing to enable IPv6 load sharing based on bandwidth.

Use undo ipv6 bandwidth-based-sharing to disable IPv6 loading sharing based on bandwidth.

Syntax

ipv6 bandwidth-based-sharing

undo ipv6 bandwidth-based-sharing

Default

IPv6 load sharing based on bandwidth is disabled.

Views

System view

Predefined user roles

network-admin

Usage guidelines

This feature load shares IPv6 traffic among multiple output interfaces based on their load percentages. The device calculates the load percentage for each output interface in terms of the interface expected bandwidth.

For devices that run load sharing protocols, they implement load sharing based on the ratios defined by these protocols.

Examples

# Enable IPv6 load sharing based on bandwidth.

<Sysname> system-view

[Sysname] ipv6 bandwidth-based-sharing

ipv6 extension-header drop enable

Use ipv6 extension-header drop enable to enable a device to discard IPv6 packets that contain extension headers.

Use undo ipv6 extension-header drop enable to disable a device from discarding IPv6 packets that contain extension headers.

Syntax

ipv6 extension-header drop enable

undo ipv6 extension-header drop enable

Default

A device does not discard IPv6 packets that contain extension headers.

Views

System view

Predefined user roles

network-admin

Usage guidelines

This feature enables a device to discard a received IPv6 packet in which the extension headers cannot be processed by the device.

Examples

# Enable the device to discard IPv6 packets that contain extension headers.

<Sysname> system-view

[Sysname] ipv6 extension-header drop enable

ipv6 forwarding

Use ipv6 forwarding to enable IPv6 packet forwarding on an interface that has no IPv6 address configured.

Use undo ipv6 forwarding to disable IPv6 packet forwarding on an interface that has no IPv6 address configured.

Syntax

ipv6 forwarding

undo ipv6 forwarding

Default

If an interface has no IPv6 address configured, it cannot forward IPv6 packets.

Views

Interface view

Predefined user roles

network-admin

Usage guidelines

On a device that supports both IPv4 and IPv6, the next hop of an IPv6 packet might be an IPv4 address or an IPv6 address. If the output interface has no IPv6 address configured, the interface cannot forward the IPv6 packet. To solve this problem, execute this command on the interface. This feature allows the interface to forward IPv6 packets even though the interface has no IPv6 address configured.

Examples

# Enable IPv6 packet forwarding on GigabitEthernet 1/0/1 that has no IPv6 address configured.

<Sysname> system-view

[Sysname] interface gigabitethernet 1/0/1

[Sysname-GigabitEthernet1/0/1] ipv6 forwarding

ipv6 hop-limit

Use ipv6 hop-limit to set the Hop Limit field in the IPv6 header.

Use undo ipv6 hop-limit to restore the default.

Syntax

ipv6 hop-limit value

undo ipv6 hop-limit

Default

The hop limit is 64.

Views

System view

Predefined user roles

network-admin

Parameters

value: Specifies the number of hops, in the range of 1 to 255.

Usage guidelines

The hop limit determines the number of hops that an IPv6 packet generated by the device can travel.

The device advertises the hop limit in RA messages. All RA message receivers use the advertised value to fill in the Hop Limit field for IPv6 packets to be sent. To disable the device from advertising the hop limit, use the ipv6 nd ra hop-limit unspecified command. For more information about the ipv6 nd ra hop-limit unspecified command, see IPv6 neighbor discovery commands in Layer 3—IP Services Command Reference.

Examples

# Set the maximum number of hops to 100.

<Sysname> system-view

[Sysname] ipv6 hop-limit 100

Related commands

ipv6 nd ra hop-limit unspecified

ipv6 hoplimit-expires enable

Use ipv6 hoplimit-expires enable to enable sending ICMPv6 time exceeded messages.

Use undo ipv6 hoplimit-expires to disable sending ICMPv6 time exceeded messages.

Syntax

ipv6 hoplimit-expires enable

undo ipv6 hoplimit-expires enable

Default

Sending ICMPv6 time exceeded messages is enabled.

Views

System view

Predefined user roles

network-admin

Usage guidelines

ICMPv6 time exceeded messages are sent to the source of IPv6 packets after the device discards IPv6 packets because hop or reassembly times out.

To prevent too many ICMPv6 error messages from affecting device performance, disable this feature. Even with the feature disabled, the device still sends fragment reassembly time exceeded messages.

Examples

# Disable sending ICMPv6 time exceeded messages.

<Sysname> system-view

[Sysname] undo ipv6 hoplimit-expires enable

ipv6 icmpv6 error-interval

Use ipv6 icmpv6 error-interval to set the bucket size and the interval for tokens to arrive in the bucket for ICMPv6 error messages.

Use undo ipv6 icmpv6 error-interval to restore the default.

Syntax

ipv6 icmpv6 error-interval interval [ bucketsize ]

undo ipv6 icmpv6 error-interval

Default

The bucket allows a maximum of 10 tokens, and a token is placed in the bucket every 100 milliseconds.

Views

System view

Predefined user roles

network-admin

Parameters

interval: Specifies the interval for tokens to arrive in the bucket. The value range is 0 to 2147483647 milliseconds. To disable the ICMPv6 rate limit, set the value to 0.

bucketsize: Specifies the maximum number of tokens allowed in the bucket. The value range is 1 to 200.

Usage guidelines

This command limits the rate at which ICMPv6 error messages are sent. Use this command to prevent network congestion caused by excessive ICMPv6 error messages generated within a short period. A token bucket algorithm is used with one token representing one ICMPv6 error message.

A token is placed in the bucket at intervals until the maximum number of tokens that the bucket can hold is reached.

A token is removed from the bucket when an ICMPv6 error message is sent. When the bucket is empty, ICMPv6 error messages are not sent until a new token is placed in the bucket.

Examples

# Set the bucket size to 40 tokens and the interval for tokens to arrive in the bucket to 200 milliseconds for ICMPv6 error messages.

<Sysname> system-view

[Sysname] ipv6 icmpv6 error-interval 200 40

ipv6 icmpv6 multicast-echo-reply enable

Use ipv6 icmpv6 multicast-echo-reply enable to enable replying to multicast echo requests.

Use undo ipv6 icmpv6 multicast-echo-reply to restore the default.

Syntax

ipv6 icmpv6 multicast-echo-reply enable

undo ipv6 icmpv6 multicast-echo-reply enable

Default

The device is disabled from replying to multicast echo requests.

Views

System view

Predefined user roles

network-admin

Usage guidelines

If a host is configured to reply to multicast echo requests, an attacker can use this mechanism to attack the host. For example, the attacker can send an echo request to a multicast address with Host A as the source. All hosts in the multicast group will send echo replies to Host A.

To prevent attacks, do not enable the device to reply to multicast echo requests unless necessary.

Examples

# Enable replying to multicast echo requests.

<Sysname> system-view

[Sysname] ipv6 icmpv6 multicast-echo-reply enable

ipv6 icmpv6 receive enable

Use ipv6 icmpv6 receive enable to enable the device to receive a specific type of ICMPv6 messages.

Use undo ipv6 icmpv6 receive enable to disable the device from receiving a specific type of ICMPv6 messages.

Syntax

ipv6 icmpv6 { name name | type type code code } receive enable

undo ipv6 icmpv6 { name name | type type code code } receive enable

Default

The device can receive all types of ICMPv6 messages.

Views

System view

Predefined user roles

network-admin

Parameters

name name: Specifies an ICMPv6 message name.

type type: Specifies an ICMPv6 message type. The value range for the type argument is 0 to 255.

code code: Specifies an ICMPv6 message code. The value range for the code argument is 0 to 255.

Usage guidelines

CAUTION:

Disabling receiving ICMPv6 messages of a specific type might affect network operation. Please use this feature with caution.

‌

By default, the device receives all types of ICMPv6 messages. Such a setting might affect device performance if a large number of ICMPv6 responses are received within a short time. To solve this issue, you can use this command to disable the device from receiving a specific type of ICMPv6 messages.

Table 19 shows common ICMPv6 messages and their meanings.

Table 19 Common ICMPv6 messages

Name	Type	Code	Description
echo	128	0	Echo request used to ping a target node.
echo-reply	129	0	Echo reply sent by a target node after receiving an echo request.
err-header-field	4	0	Erroneous header field was found.
frag-time-exceeded	3	1	Fragment reassembly timed out.
hop-limit-exceeded	3	0	Hop limit decreased to 0 in transit.
host-admin-prohib	1	1	Communication with the target host was prohibited by the admin policy.
host-unreachable	1	3	The target host address was unreachable.
neighbor-advertisement	136	0	Neighbor advertisement for IPv6 neighbor discovery.
neighbor-solicitation	135	0	Neighbor solicitation for IPv6 neighbor discovery.
network-unreachable	1	0	No route to destination exists.
packet-too-big	2	0	Packet forwarding failed because the packet length was longer than the MTU.
port-unreachable	1	4	The target port was unreachable.
redirect	137	0	Route redirection message.
router-advertisement	134	0	IPv6 router advertisement.
router-solicitation	133	0	IPv6 router solicitation.
unknown-ipv6-opt	4	2	Unknown IPv6 option.
unknown-next-hdr	4	1	Unknown IPv6 Next Header field.

‌

Examples

# Disable the device from receiving ICMPv6 echo reply messages.

<Sysname> system-view

[Sysname] undo ipv6 icmpv6 name echo-reply receive enable

ipv6 icmpv6 send enable

Use ipv6 icmpv6 send enable to enable the device to send a specific type of ICMPv6 messages.

Use undo ipv6 icmpv6 send enable to disable the device from sending a specific type of ICMPv6 messages.

Syntax

ipv6 icmpv6 { name name | type type code code } send enable

undo ipv6 icmpv6 { name name | type type code code } send enable

Default

The device sends all types of ICMPv6 messages except Destination Unreachable and Redirect messages.

Views

System view

Predefined user roles

network-admin

Parameters

name name: Specifies an ICMPv6 message name.

type type: Specifies an ICMPv6 message type. The value range for the type argument is 0 to 255.

code code: Specifies an ICMPv6 message code. The value range for the code argument is 0 to 255.

Usage guidelines

CAUTION:

Disabling sending ICMPv6 messages of a specific type might affect network operation. Please use this feature with caution.

‌

By default, the device sends all types of ICMPv6 messages except Destination Unreachable and Redirect messages. Attackers might obtain device information from specific types of ICMPv6 messages, causing security issues.

For security purposes, you can use this command to disable the device from sending specific types of ICMPv6 messages.

To enable sending Destination Unreachable, Time Exceeded, or Redirect messages, you can perform one of the following tasks:

· Execute the ipv6 icmpv6 send enable command.

· Execute one of the following commands as needed:

¡ ipv6 unreachables enable

¡ ipv6 hoplimit-expires enable

¡ ipv6 redirects enable

Table 19 shows common ICMPv6 messages and their meanings.

Examples

# Disable the device from sending ICMPv6 echo reply messages.

<Sysname> system-view

[Sysname] undo ipv6 icmpv6 name echo-reply send enable

Related commands

ipv6 unreachables enable

ipv6 hoplimit-expires enable

ipv6 redirects enable

ipv6 icmpv6 source

Use ipv6 icmpv6 source to specify an IPv6 address as the source address for outgoing ICMPv6 packets.

Use undo ipv6 icmpv6 source to remove the specified IPv6 source address for outgoing ICMPv6 packets.

Syntax

ipv6 icmpv6 source [ vpn-instance vpn-instance-name ] ipv6-address

undo ipv6 icmpv6 source [ vpn-instance vpn-instance-name ]

Default

No IPv6 source address for outgoing ICMPv6 packets is specified. The device uses the IPv6 address of the sending interface as the source IPv6 address for outgoing ICMPv6 packets.

Views

System view

Predefined user roles

network-admin

Parameters

vpn-instance vpn-instance-name: Specifies an MPLS L3VPN instance to which the specified address belongs. The vpn-instance-name argument represents the VPN instance name, a case-sensitive string of 1 to 31 characters. If you do not specify a VPN instance, the ipv6-address argument specifies an IPv6 address on the public network. The specified VPN instance must already exist.

ipv6-address: Specifies an IPv6 address.

Usage guidelines

It is a good practice to specify the IPv6 address of the loopback interface as the source IPv6 address for outgoing ping echo request and ICMPv6 error messages. This feature helps users to easily locate the sending device.

Examples

# Specify IPv6 address 1::1 as the source address for outgoing ICMPv6 packets.

<Sysname> system-view

[Sysname] ipv6 icmpv6 source 1::1

ipv6 last-hop hold

Use ipv6 last-hop hold to enable IPv6 last hop holding.

Use undo ipv6 last-hop hold to disable IPv6 last hop holding.

Syntax

ipv6 last-hop hold

undo ipv6 last-hop hold

Default

IPv6 last hop holding is disabled.

Views

Layer 3 Ethernet interface view

Layer 3 Ethernet subinterface view

Dialer interface view

Eth-channel interface view

Serial interface view

Predefined user roles

network-admin

Usage guidelines

Last hop holding implements symmetric routing.

When the interface enabled with this feature receives the first IPv6 packet of a forward flow, this feature implements the following operations:

· Obtains the forward flow information and last hop information of the packet.

· Based on the information, creates an IPv6 fast forwarding entry for the reverse flow.

When packets of the reverse flow arrive at the device, the device forwards those packets based on the entry.

Last hop holding is based on IPv6 fast forwarding entries. If the MAC address of a last hop changes on an Ethernet link, this feature can function correctly only after the fast forwarding entry is updated for the MAC address.

Examples

# Enable the IPv6 last hop holding feature on GigabitEthernet 1/0/1.

<Sysname> system-view

[Sysname] interface gigabitethernet 1/0/1

[Sysname-GigabitEthernet1/0/1] ipv6 last-hop hold

This operation will degenerate performance badly. Continue? [Y/N]:y

# Enable the IPv6 last hop holding feature on Dialer 0.

<Sysname> system-view

[Sysname] interface dialer 0

[Sysname-Dialer0] ipv6 last-hop hold

This operation will degenerate performance badly. Continue? [Y/N]:y

# Enable the IPv6 last hop holding feature on Eth-channel interface 2/4/0:0.

<Sysname> system-view

[Sysname] interface eth-channel 2/4/0:0

[Sysname-Eth-channel2/4/0:0] ipv6 last-hop hold

This operation will degenerate performance badly. Continue? [Y/N]:y

# Enable the IPv6 last hop holding feature on Serial 2/0/5.

<Sysname> system-view

[Sysname] interface serial 2/0/5

[Sysname-Serial2/0/5] ipv6 last-hop hold

This operation will degenerate performance badly. Continue? [Y/N]:y

ipv6 mtu

Use ipv6 mtu to set the interface MTU for IPv6 packets.

Use undo ipv6 mtu to restore the default.

Syntax

ipv6 mtu size

undo ipv6 mtu

Default

The interface MTU is 1280 bytes.

Views

Interface view

Predefined user roles

network-admin

Parameters

size: Specifies the MTU size in bytes. The value range for this argument is 1280 to 9600.

Usage guidelines

After an intermediate device receives an IPv6 packet, if the packet size is larger than the MTU of the forwarding interface, the device discards the packet. Meanwhile, the device sends the MTU to the source host through an ICMPv6 packet — Packet Too Big message.

To reduce the extra flow overhead resulting from packet drops, set an appropriate interface MTU for your network.

Examples

# Set the interface MTU for IPv6 packets to 1280 bytes on GigabitEthernet 1/0/1.

<Sysname> system-view

[Sysname] interface gigabitethernet 1/0/1

[Sysname-GigabitEthernet1/0/1] ipv6 mtu 1280

# Set the interface MTU for IPv6 packets to 1280 bytes on VSI-interface 10.

<Sysname> system-view

[Sysname] interface vsi-interface 10

[Sysname-Vsi-interface10] ipv6 mtu 1280

ipv6 pathmtu

Use ipv6 pathmtu to set a static Path MTU for an IPv6 address.

Use undo ipv6 pathmtu to delete the Path MTU configuration for an IPv6 address.

Syntax

ipv6 pathmtu [ vpn-instance vpn-instance-name ] ipv6-address value

undo ipv6 pathmtu [ vpn-instance vpn-instance-name ] ipv6-address

Default

No static Path MTU is set.

Views

System view

Predefined user roles

network-admin

Parameters

vpn-instance vpn-instance-name: Specifies an MPLS L3VPN instance to which the Path MTU belongs. The vpn-instance-name argument represents the VPN instance name, a case-sensitive string of 1 to 31 characters. If you do not specify a VPN instance, this command sets the Path MTU for the public network.

ipv6-address: Specifies an IPv6 address.

value: Specifies the Path MTU of the specified IPv6 address, in the range of 1280 to 10240 bytes.

Usage guidelines

When a source device sends a packet to the destination, it identities whether the destination IPv6 address has a static path MTU. If the destination IPv6 address has a static path MTU, the source device compares the sending interface MTU and the static path MTU with the packet size.

· If the packet size is smaller than or equal to the smaller one of the two MTU values, the device sends the packet directly.

· If the packet size is larger than the smaller one of the two values, the device fragments the packet according to the smaller value.

During the sending process, if the source device receives a Packet Too Big message from an intermediate device, the packet sending fails.

The priority of the static Path MTU is higher than the dynamic Path MTU, and the static Path MTU never ages out.

Examples

# Set a static Path MTU for an IPv6 address.

<Sysname> system-view

[Sysname] ipv6 pathmtu fe80::12 1300

Related commands

display ipv6 pathmtu

reset ipv6 pathmtu

ipv6 pathmtu age

Use ipv6 pathmtu age to set the aging time for a dynamic Path MTU.

Use undo ipv6 pathmtu age to restore the default.

Syntax

ipv6 pathmtu age age-time

undo ipv6 pathmtu age

Default

The aging time for dynamic Path MTU is 10 minutes.

Views

System view

Predefined user roles

network-admin

Parameters

age-time: Specifies the aging time for Path MTU in minutes, in the range of 10 to 100.

Usage guidelines

After the path MTU from a source host to a destination host is dynamically determined, the source host sends subsequent packets to the destination host based on this MTU. After the aging time expires, the following events occur:

· The dynamic Path MTU is removed.

· The source host determines a dynamic path MTU through the Path MTU mechanism again.

The aging time is invalid for a static Path MTU.

Examples

# Set the aging time for a dynamic Path MTU to 40 minutes.

<Sysname> system-view

[Sysname] ipv6 pathmtu age 40

Related commands

display ipv6 pathmtu

ipv6 prefer temporary-address

Use ipv6 prefer temporary-address to enable the system to preferentially use the temporary IPv6 address of the sending interface as the source address of a packet.

Use undo ipv6 prefer temporary-address to disable the system to preferentially use the temporary IPv6 address of the sending interface as the source address of a packet.

Syntax

ipv6 prefer temporary-address

undo ipv6 prefer temporary-address

Default

The system is disabled to preferentially use the temporary IPv6 address of the sending interface as the source address of a packet.

Views

System view

Predefined user roles

network-admin

Usage guidelines

The temporary address feature enables the system to generate and preferentially use the temporary IPv6 address of the sending interface as the source address of a packet. If the temporary IPv6 address cannot be used because of a DAD conflict, the system uses the public IPv6 address.

Examples

# Enable the system to preferentially use the temporary IPv6 address of the sending interface as the source address of the packet.

<Sysname> system-view

[Sysname] ipv6 prefer temporary-address

Related commands

ipv6 address auto

ipv6 nd ra prefix

ipv6 temporary-address

ipv6 prefix

Use ipv6 prefix to configure a static IPv6 prefix.

Use undo ipv6 prefix to delete a static IPv6 prefix.

Syntax

ipv6 prefix prefix-number ipv6-prefix/prefix-length

undo ipv6 prefix prefix-number

Default

No static IPv6 prefix is configured.

Views

System view

Predefined user roles

network-admin

Parameters

prefix-number: Specifies a prefix ID in the range of 1 to 1024.

ipv6-prefix/prefix-length: Specifies a prefix and its length. The value range for the prefix-length argument is 1 to 128.

Usage guidelines

To modify an existing static prefix, execute the undo ipv6 prefix command to delete the existing static prefix, and then execute the ipv6 prefix command.

Dynamic IPv6 prefixes obtained from DHCPv6 servers cannot be manually removed or modified.

A static IPv6 prefix can have the same prefix ID with a dynamic IPv6 prefix, but the static one takes precedence over the dynamic one.

Examples

# Create static IPv6 prefix 2001:0410::/32 with prefix ID 1.

<Sysname> system-view

[Sysname] ipv6 prefix 1 2001:0410::/32

Related commands

display ipv6 prefix

ipv6 reassemble local enable

Use ipv6 reassemble local enable to enable IPv6 local fragment reassembly.

Use undo ipv6 reassemble local enable to disable IPv6 local fragment reassembly.

Syntax

ipv6 reassemble local enable

undo ipv6 reassemble local enable

Default

IPv6 local fragment reassembly is disabled.

Views

System view

Predefined user roles

network-admin

Usage guidelines

By default, an LPU delivers received packet fragments to the active MPU for centralized fragment reassembly. To improve fragment reassembly efficiency, use this command on the distributed device to enable IPv6 local fragment reassembly. When an LPU receives fragments of an IPv6 packet, it reassembles them directly.

Enable IPv6 local fragment reassembly with caution, because fragment reassembly fails on an LPU when the fragments of an IPv6 packet are received on different LPUs.

Examples

# Enable IPv6 local fragment reassembly.

<Sysname> system-view

[Sysname] ipv6 reassemble local enable

ipv6 redirects enable

Use ipv6 redirects enable to enable sending ICMPv6 redirect messages.

Use undo ipv6 redirects enable to disable sending ICMPv6 redirect messages.

Syntax

ipv6 redirects enable

undo ipv6 redirects enable

Default

Sending ICMPv6 redirect messages is disabled.

Views

System view

Predefined user roles

network-admin

Usage guidelines

The default gateway sends an ICMPv6 redirect message to the source of an IPv6 packet to inform the source of a better first hop.

Sending ICMPv6 redirect messages enables hosts that hold few routes to establish routing tables and find the best route. Because this feature adds host routes into the routing tables, host performance degrades when there are too many host routes. As a result, sending ICMPv6 redirect messages is disabled by default.

Examples

# Enable sending ICMPv6 redirect messages.

<Sysname> system-view

[Sysname] ipv6 redirects enable

ipv6 router-renumber enable

Use ipv6 router-renumber enable to enable router renumbering on an interface.

Use undo ipv6 router-renumber enable to disable router renumbering on an interface.

Syntax

ipv6 router-renumber enable

undo ipv6 router-renumber enable

Default

Router renumbering is disabled.

Views

Interface view

Predefined user roles

network-admin

Usage guidelines

When a device receives a legitimate router renumbering message, it renumbers the prefixes and IP addresses of all Layer 3 interfaces that are enabled with the router renumbering feature.

Examples

# Enable router renumbering on GigabitEthernet 1/0/1.

<Sysname> system-view

[Sysname] interface gigabitethernet 1/0/1

[Sysname-GigabitEthernet1/0/1] ipv6 router-renumber enable

ipv6 tcp-proxy congestion-method

Use ipv6 tcp-proxy congestion-method to specify a TCP congestion control algorithm for IPv6 TCP proxy.

Use undo ipv6 tcp-proxy congestion-method to restore the default.

Syntax

ipv6 tcp-proxy congestion-method { bbrv1 | bbrv2 | bic | reno }

undo ipv6 tcp-proxy congestion-method

Default

The TCP congestion control algorithm is Reno for IPv6 TCP proxy.

Views

System view

Predefined user roles

network-admin

Parameters

bbrv1: Specifies BBRv1 as the TCP congestion control algorithm.

bbrv2: Specifies BBRv2 as the TCP congestion control algorithm.

bic: Specifies BIC as the TCP congestion control algorithm.

reno: Specifies Reno as the TCP congestion control algorithm.

Usage guidelines

This command does not take effect on the modules that support TCP congestion control algorithm configuration. The TCP congestion control algorithm used by such a module depends on its configuration. For example, in the WAAS module, you can use the waas tfo congestion-method command to specify a TCP congestion control algorithm for the WAN side.

The modules that do not support TCP congestion control algorithm configuration use the same algorithm as the TCP proxy module.

When you use this command, you can configure one of the following TCP congestion control algorithms:

· Reno—Use this algorithm in scenarios with low latency and low bandwidth. In scenarios with high latency and high bandwidth, the speed of data transmission takes a long time to reach the maximum and thus the bandwidth utilization rate is low.

Reno is an early TCP congestion control algorithm that increases the number of congestion windows on receipt of ACK messages.

· BIC—Use this algorithm in scenarios with high bandwidth and low packet loss ratio.

BIC can make good use of remaining bandwidth resources and improve throughput, because this algorithm does not slow down packet sending as long as no packet loss occurs. However, the transmission latency of this algorithm is high. This algorithm will reduce the number of congestion windows once transmission errors cause packet loss.

· BBR—Use this algorithm in scenarios with high bandwidth, high latency, and packet loss.

BBR does not use packet loss as a congestion signal. In a scenario with high packet loss ratio, this algorithm can ensure high throughput and reduce transmission latency effectively. BBRv2 improves intra-protocol fairness by balancing aggressiveness.

Examples

# Specify Reno as the TCP congestion control algorithm for IPv6 TCP proxy.

<Sysname> system-view

[Sysname] ipv6 tcp-proxy congestion-method reno

Related commands

waas tfo congestion-method

ipv6 temporary-address

Use ipv6 temporary-address to enable the temporary IPv6 address feature.

Use undo ipv6 temporary-address to restore the default.

Syntax

ipv6 temporary-address [ valid-lifetime preferred-lifetime ]

undo ipv6 temporary-address

Default

The system does not generate any temporary IPv6 address.

Views

System view

Predefined user roles

network-admin

Parameters

valid-lifetime: Specifies the valid lifetime for temporary IPv6 addresses, in the range of 600 to 4294967295 seconds. The default valid lifetime is 604800 seconds (7 days).

preferred-lifetime: Specifies the preferred lifetime for temporary IPv6 addresses, in the range of 600 to 4294967295 seconds. The default preferred lifetime is 86400 seconds (1 day).

Usage guidelines

You must enable stateless autoconfiguration before enabling the temporary address feature.

The valid lifetime for temporary IPv6 addresses must be greater than or equal to the preferred lifetime for temporary IPv6 addresses.

In stateless address autoconfiguration, an interface automatically generates an IPv6 global unicast address by using the address prefix in the received RA message and the interface ID. On an IEEE 802 interface (such as an Ethernet interface or a VLAN interface), the interface ID is generated based on the interface's MAC address and is globally unique. An attacker can exploit this rule to easily identify the sending device.

To fix the vulnerability, you can enable the temporary address feature. An IEEE 802 interface generates the following addresses:

· Public IPv6 address—Includes an address prefix in the RA message and a fixed interface ID generated based on the interface's MAC address.

· Temporary IPv6 address—Includes an address prefix in the RA message and a random interface ID generated through MD5.

When the valid lifetime of a temporary IPv6 address expires, the system deletes the address and generates a new one. This enables the system to send packets with different source addresses through the same interface. The preferred lifetime and valid lifetime for a temporary IPv6 address are determined as follows:

· The preferred lifetime of a temporary IPv6 address takes the smaller of the following values:

¡ The preferred lifetime of the address prefix in the RA message.

¡ The preferred lifetime configured for temporary IPv6 addresses minus DESYNC_FACTOR (a random number in the range of 0 to 600 seconds).

· The valid lifetime of a temporary IPv6 address takes the smaller of the following values:

¡ The valid lifetime of the address prefix.

¡ The valid lifetime configured for temporary IPv6 addresses.

Examples

# Enable the system to generate a temporary IPv6 address.

<Sysname> system-view

[Sysname] ipv6 temporary-address

Related commands

ipv6 address auto

ipv6 nd ra prefix

ipv6 prefer temporary-address

ipv6 unreachables enable

Use ipv6 unreachables enable to enable sending ICMPv6 destination unreachable messages.

Use undo ipv6 unreachables to disable sending ICMPv6 destination unreachable messages.

Syntax

ipv6 unreachables enable

undo ipv6 unreachables enable

Default

Sending ICMPv6 destination unreachable messages is disabled.

Views

System view

Predefined user roles

network-admin

Usage guidelines

If the device fails to forward a received IPv6 packet because of a destination unreachable error, it performs the following operations:

· Drops the packet.

· Sends an ICMPv6 destination unreachable message to the source.

If the device is generating ICMPv6 destination unreachable messages incorrectly, disable sending ICMPv6 destination unreachable messages to prevent attack risks.

Examples

# Enable sending ICMPv6 destination unreachable messages.

<Sysname> system-view

[Sysname] ipv6 unreachables enable

ipv6 virtual-reassembly enable

Use ipv6 virtual-reassembly enable to enable IPv6 virtual fragment reassembly (VFR).

Use undo ipv6 virtual-reassembly enable to disable IPv6 virtual fragment reassembly.

Syntax

ipv6 virtual-reassembly enable

undo ipv6 virtual-reassembly enable

Default

IPv6 virtual fragment reassembly is disabled.

Views

System view

Predefined user roles

Usage guidelines

To prevent each service module from processing packet fragments that do not arrive in order, you can enable the IPv6 VFR feature. This feature virtually reassembles the fragments of an IPv6 datagram through caching, sequencing, and fragment check, ensuring fragments arrive at each service module in order.

IPv6 VFR drops fragments in the following conditions:

· If two consecutive incoming fragments are identical or overlap with each other, VFR discards all fragments within a fragment chain.

· If the fragments of a datagram (in a reassembly) are not reassembled within the timeout interval, VFR discards all the fragments of the reassembly.

The enabling status of IPv6 VFR can be managed at CLI or the enabling status of a service module that can call VFR. IPv6 VRF is enabled in either of the following conditions:

· A service module that can call it is enabled.

· The ipv6 virtual-reassembly enable command is executed. If fragment reassembly is required, but a service module cannot call it, execute this command at CLI.

The command enables the LPU to reassemble the IPv6 fragments of a packet if all the fragments arrive at it.

IPv6 VFR and the services that can call it require that all IPv6 fragments of an IPv6 packet must be received by the same card. If not, fragments are cached by different cards and will be discarded due to timeout.

Examples

# Enable IPv6 virtual fragment reassembly.

<Sysname> system-view

[Sysname] ip virtual-reassembly enable

reset ipv6 pathmtu

Use reset ipv6 pathmtu to clear the Path MTU information.

Syntax

reset ipv6 pathmtu { all | dynamic | static }

Views

User view

Predefined user roles

network-admin

Parameters

all: Clears all Path MTUs.

dynamic: Clears all dynamic Path MTUs.

static: Clears all static Path MTUs.

Examples

# Clear all Path MTUs.

<Sysname> reset ipv6 pathmtu all

Related commands

display ipv6 pathmtu

reset ipv6 router-renumber statistics

Use reset ipv6 router-renumber statistics to clear router renumbering statistics.

Syntax

reset ipv6 router-renumber statistics

Views

User view

Predefined user roles

network-admin

Usage guidelines

This command does not clear the sequence number, the reset sequence number, or the segment number.

Examples

# Clear router renumbering statistics.

<Sysname> reset ipv6 router-renumber statistics

Related commands

display ipv6 router-renumber statistics

reset ipv6 statistics

Use reset ipv6 statistics to clear IPv6 and ICMPv6 packet statistics.

Syntax

reset ipv6 statistics [ slot slot-number ]

Views

User view

Predefined user roles

network-admin

Parameters

slot slot-number: Specifies a card by its slot number. If you do not specify a cad, this command clears IPv6 and ICMPv6 packet statistics for all cards.

Examples

# Clear IPv6 and ICMPv6 packet statistics.

<Sysname> reset ipv6 statistics

Related commands

display ipv6 statistics

statistics l3-packet enable

Use statistics l3-packet enable to enable Layer 3 packet statistics collection.

Use undo statistics l3-packet enable to disable Layer 3 packet statistics collection.

Syntax

statistics l3-packet enable { inbound | outbound }

undo statistics l3-packet enable { inbound | outbound }

Default

Layer 3 packet statistics collection is disabled.

Views

Interface view

Predefined user roles

network-admin

Parameters

inbound: Enables statistics collection for incoming Layer 3 packets.

outbound: Enables statistics collection for outgoing Layer 3 packets.

broadcast: Enables statistics collection for broadcast packets.

multicast: Enables statistics collection for multicast packets.

unicast: Enables statistics collection for unicast packets.

Usage guidelines

With Layer 3 packet statistics collection enabled on an interface, the device counts incoming and outgoing IPv6 packets on the interface. To display the collected statistics, execute the display ipv6 statistics command.

When the interface is processing a large number of packets, enabling this feature will cause high CPU usage and degrade the forwarding performance. If the statistics are not necessary, disable this feature to ensure the device performance.

To enable or disable statistics collection for both incoming and outgoing IPv6 packets, do not specify the inbound or outbound keyword.

Examples

# Enable Layer 3 packet statistics collection for incoming packets on GigabitEthernet 1/0/1.

<Sysname> system-view

[Sysname] interface gigabitethernet 1/0/1

[Sysname-GigabitEthernet1/0/1] statistics l3-packet enable inbound

Related commands

display ip interface

display ip statistics

07-Layer 3—IP Services Command Reference

Application scenarios

Operating mechanism

Restrictions and guidelines

Application scenarios

Operating mechanism

Restrictions and guidelines

ipv6 icmpv6 multicast-echo-reply enable

Intelligent Terminal Products

Product Support Services

Technical Service Solutions

Resource Center

Policy

Online Help

Become a Partner

Partner Policy & Program

Global Learning

Partner Sales Resources

Service Business

News & Events

Contact Us