Example for ND Snooping
- Tracy Yang
Networking Requirements
Building the corresponding network according to the topology diagram, and do the basic network connectivity configuration, configure the ND snooping function on Switch A, and after the correct configuration is completed, check the effective ND snooping binding table on Switch A.
Router1 gets an IP address through SLAAC (Stateless Address Autoconfiguration).
Router2 gets an IP through DHCP (Dynamic Host Configuration Protocol).
Figure 1. ND Snooping Configuration Example
Procedure
Switch A
Step 1 Add VLANs members to trunk ports.
admin@SwitchA# set interface gigabit-ethernet ge-1/1/13 family ethernet-switching native-vlan-id 2
admin@SwitchA# set interface gigabit-ethernet ge-1/1/13 family ethernet-switching port-mode trunk
admin@SwitchA# set interface gigabit-ethernet ge-1/1/13 family ethernet-switching vlan members 2
admin@SwitchA#set interface gigabit-ethernet ge-1/1/14 family ethernet-switching native-vlan-id 2
admin@SwitchA# set interface gigabit-ethernet ge-1/1/14 family ethernet-switching port-mode trunk
admin@SwitchA# set interface gigabit-ethernet ge-1/1/14 family ethernet-switching vlan members 2
admin@SwitchA# set interface gigabit-ethernet ge-1/1/15 family ethernet-switching native-vlan-id 2
admin@SwitchA# set interface gigabit-ethernet ge-1/1/15 family ethernet-switching port-mode trunk
admin@SwitchA# set interface gigabit-ethernet ge-1/1/15 family ethernet-switching vlan members 2
admin@SwitchA# set vlans vlan-id 2Step 2 Configure ge-1/1/14 as trust port and enable ND snooping on VLAN 2.
admin@SwitchA# set protocols neighbour snooping vlan 2 enable true
admin@SwitchA# set protocols neighbour snooping trust-port ge-1/1/14
admin@SwitchA# set protocols neighbour traceoptions disable false
admin@SwitchA# set system log-level traceStep 3 Commit the configurations.
admin@ SwitchA # commitVerifying the Configuration
The run show neighbor snooping binding command is used to view ND snooping dynamic management table entries on Switch A.
The run show neighbor snooping prefix command is used to view ND snooping prefix management table entries on Switch A.
The run show neighbor snooping command is used to view ND snooping configuration on Switch A.
View ND snooping dynamic management table entries.
admin@SwitchA # run show neighbor snooping binding
Total Snooping binding count: 2
MAC Address IPv6 Address Port VLAN ID Status Lease(sec)
-----------------------------------------------------------------------------
dc:b:9:65:6f:f7 3000::de0b:9ff:fe65:6ff7 ge-1/1/13 2 Valid 48/120
dc:b:9:65:6f:f7 fe80::de0b:9ff:fe65:6ff7 ge-1/1/13 2 Valid 27/120View ND snooping prefix management table entries.
admin@ SwitchA # run show neighbor snooping prefix
Total Snooping table prefix count: 1
Total Snooping table dynamic count: 1
Total Snooping table static count: 0
Prefix Length Port VLAN ID Valid-Time Prefix-Type
---------------------------------------------------------------------------
3000:: 64 ge-1/1/14 2 48/120 DynamicView ND snooping configuration.
admin SwitchA # run show neighbor snooping
ND Snooping enabled vlans: 1
ND Snooping trust-ports: ge-1/1/14
ND Snooping max-user-number: 9216Related content
Copyright © 2025 Pica8 Inc. All Rights Reserved.