ndpd-host Daemon

Purpose

Neighbor Discovery Protocol (NDP) daemon for a host.

Syntax

ndpd-host [ -d] [ -v] [ -t] [ -c conffile][-r [ValidLifetime PreferredLifetime]] [-g]

Description

The ndpd-host command manages the Neighbor Discovery Protocol (NDP) for nonkernel activities, such as Router Discovery, Prefix Discovery, Parameter Discovery, and Redirects. The ndpd-host command handles the default route, which includes the default router, the default interface, and the default interface address. However, the ndpd-host command does not overwrite the static default routes that are set on the host. When the daemon is stopped, the daemon cleans up the prefix addresses and the routes that are created during its lifetime.

Interfaces

The ndpd-host command knows about IEEE and CTI point to point interfaces. The ndpd-host command exchanges packets on all the known interfaces UP with a Link-Local Address. Any change of status of an interface is detected. If an interface goes down or loses its Link-Local address, the NDP processing is stopped on this interface. If an interface goes up, the NDP processing is started.

The IEEE interfaces are configured by using the autoconf6 command. The PPP interfaces are configured by using the pppd daemon. The token negotiation defines the Link-Local addresses. To send the Router Advertisements over a CTI configured tunnel, it must have local and distant Link-Local addresses.

ndpd-host can generate Temporary Addresses as per RFC 4941. You can enable or disable temporary address generation for a particular prefix or interface by configuring the daemon in the tempaddr.conf file format. You can set the default preferred and valid lifetimes of Temporary Addresses by using the -r option.

Note: For all the up point to point interfaces, ndpd-host sets a local route through the lo0 for local addresses.

Flags

Item Description
-cconffile Specifies the SEND configuration file. By default, the configuration file is the /etc/ndpd/ndpdh.cnf file. To enable the SEND option, you must install the clic.rte fileset and OpenSSL.
-d Enables debugging (exceptional conditions and dump).
-g Allows the ndpd-host command to retain all the static global IPv6 address during initialization.
-r [ValidLifetime PreferredLifetime] Enables Temporary Address generation. Along with -r flag, user can optionally specify default valid and preferred lifetimes for Temporary Addresses generated. By default, Temporary addresses are not generated, if this flag is not given.
-t Adds a time stamp in each log.
-v Logs all interesting events (daemon.info and console).

Signals

Item Description
SIGUSR1 Turns on verbose.
SIGUSR2 Turns off verbose.
SIGINT Dumps the current state of ndpd-host to syslog or stdout.
SIGTERM Cleans up ndpd-host and exits.

Security

Attention RBAC users and Trusted AIX users: This command can perform privileged operations. Only privileged users can run privileged operations. For more information about authorizations and privileges, see Privileged Command Database in Security. For a list of privileges and the authorizations that are associated with this command, see the lssecattr command or the getcmdattr subcommand.

Files

Item Description
/etc/ndpd/ndpdh.cnf Specifies the SEND file locations.
/etc/ndpd/cgaparams.sec Specifies the configuration for each interface by using the SEND option.
/etc/ndpd/sendh_anchor Specifies the trusted anchor values necessary for the SEND option.
/etc/ndpd/tempaddr.conf Specifies whether the generation of the Temporary Address for the router prefixes must be denied or allowed. The contents of the file are read only when ndpd-host is started with the -r flag.