[afnog] Private IP Filters in bgp
Yasini Kilima
ykilima at tra.go.tz
Fri May 25 13:43:25 UTC 2012
Thank you very much I will try it and will feedback as well
cheers
-----Original Message-----
From: afnog-bounces at afnog.org [mailto:afnog-bounces at afnog.org] On Behalf Of Nishal Goburdhan
Sent: Friday, May 25, 2012 2:58 PM
To: afnog at afnog.org
Subject: Re: [afnog] Private IP Filters in bgp
On May 25, 2012, at 3:14 PM, Yasini Kilima wrote:
> Hello Gurus,
[snip]
> ip prefix-list DENY-PRIVATE permit any
try:
ip prefix-list DENY-PRIVATE permit 0.0.0.0/0 le 32
you might find http://ws.afnog.org/afnog2012/sie/detail.html to be useful as well.
remember that this just means your router won't listen to bgp announcements for these networks.
that's *not* the same as your network will not trying to send traffic to these; so hopefully, in addition to not listening to these adverts, (which is good!) you're also filtering traffic *to* those destinations.
--n.
_______________________________________________
afnog mailing list
http://afnog.org/mailman/listinfo/afnog
________________________________
DISCLAIMER: This e-mail and any attachments are proprietary to TANZANIA REVENUE AUTHORITY.Any unauthorized use or interception is illegal. The views and opinions expressed are those of the sender, unless clearly stated as being those of TANZANIA REVENUE AUTHORITY. This e-mail is only addressed to the addressee and TANZANIA REVENUE AUTHORITY shall not be responsible for any further publication of the contents of this e-mail. If this e-mail is not addressed to you, you may not copy, print, distribute or disclose the contents to anyone nor act on its contents. If you received this in error, please inform the sender and delete this e-mail from your computer.
More information about the afnog
mailing list