relax-interface-isolation

Parameters

on

Accepts a packet on an interface other than the one bound to the destination address of the packet. This setting is the default value.

off

Allows only the interface that is bound to the destination address to accept the packet.

Guidelines

The relax-interface-isolation command controls whether to allow packets from a wrong interface when both interfaces are on the same subnet. As a security policy, the interface that receives a packet must be configured with the IP address that is the destination address of the packet. Enabling this option relaxes that restriction. The packet is allowed if the interface it arrives on contains an IP address in the same subnet as the destination address of the packet. Relax interface isolation, if destination-routing is enabled.