Re: [j-nsp] DDoS to core interface - mitigation

Hi, yes - there's "advertise-inactive" option in BGP, which might help in such case (in combination with FIB filters): "The advertise-inactive statement causes Junos OS to advertise the best BGP route that is inactive because of IGP preference." You cannot modify preference of directly-connected n

Re: [j-nsp] ssh-key issue / MX 16.1R5

Looks like you have some problems with key stored within ~/.ssh/authorized_keys (which is createdy by junos from router config), probably there'll be bad permissions on that file (or something changes them during random time period). On 01/30/2018 12:06 PM, Theo Voss wrote: > Hi all, > > we're fa

Re: [j-nsp] Meltdown and Spectre

Hello, Cisco&Juniper has official advisory for that... https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180104-cpusidechannel https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10842&cat=SIRT_1&actp=LIST In general, if you have properly protected control p