avoid transit because of default route
Julien Sansonnens
julien at jsansonnens.ch
Mon Jul 27 11:13:53 CEST 2020
Dear list,
I only export three prefixes I own to my peers and upstreams.
In theory, nothing prevents one of my peers to choose my router as default
route (without my consent), and to pass his packets through my network
(only in output, therefore).
How to prevent this abuse? It doesn't depend on the BGP layer, but on the
IP kernel isn't it ?
Is it common to filter incoming IP packets according to their destination?
Cheers, julien
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://trubka.network.cz/pipermail/bird-users/attachments/20200727/37643741/attachment.htm>
More information about the Bird-users
mailing list