In which two ways does the IPv6 First-Hop Security Binding Table operate? (Choose two.)
Click on the arrows to vote for the correct answer
A. B. C. D. E.BC.
The IPv6 First-Hop Security Binding Table is a security feature that operates at Layer 2 in IPv6 networks. It provides protection against attacks that can occur on the first-hop router or switch. The Binding Table contains the mapping of IPv6 addresses to link-layer addresses of the devices that are authorized to be first-hop routers for specific IPv6 prefixes. The Binding Table can operate in the following ways:
Validate data link layer addresses: The Binding Table operates by various IPv6 guard features to validate the data link layer address. The guard features include IPv6 Source Guard, IPv6 Destination Guard, and IPv6 Router Advertisement Guard. These features validate the source and destination addresses of the IPv6 packets and ensure that they correspond to the authorized devices in the Binding Table. The IPv6 Router Advertisement Guard validates the authenticity of router advertisements and protects against rogue router advertisements.
Recover the binding table in the event of a device reboot: The Binding Table also operates with a recovery mechanism to recover the Binding Table in the event of a device reboot. This mechanism ensures that the Binding Table is not lost during a device reboot and the authorized devices are still considered as first-hop routers for their respective IPv6 prefixes.
Therefore, the correct answers are B and C: B. The Binding Table operates by various IPv6 guard features to validate the data link layer address. C. The Binding Table operates with a recovery mechanism to recover the Binding Table in the event of a device reboot.