I tried it again on JUNOS 21.4R3-S3.4 hit some bugs that crashed rpd
daemon and I gave up.
We will try it again later this year. If update threading / rib-sharding
works as expected it will be better than having non stop routing running.
Last time we had an issue caused by bgp routing update, it
ent
> So I don't understand why it send filter that match udp port 0 ?
> Did you change the default one ?
>
> Nitzan
>
> On Sun, Sep 18, 2022 at 10:06 PM Gustavo Santos via juniper-nsp <
> juniper-nsp@puck.nether.net> wrote:
>
>> Hi Alexandre,
>>
>> The
, Alexandre Snarskii
escreveu:
> On Sat, Sep 17, 2022 at 11:41:58AM -0300, Gustavo Santos via juniper-nsp
> wrote:
> > Hi Saku,
> >
> > PS: Real ASN was changed to 65000 on the configuration snippet.
> >
> >
> >
> > show route table inetflow.0 extensive
&
t; gustavo@MX10K3# edit policy-options policy-statement flowspec-import
> > >
> > > {master}[edit policy-options policy-statement flowspec-import]
> > > gustavo@MX10K3# show
> > > term 1 {
> > > then accept;
> > > }
> > >
> >
;
}
sampling {
input;
}
address x.x.x.x.x/31;
}
Em sáb., 17 de set. de 2022 às 03:00, Saku Ytti escreveu:
> Can you provide some output.
>
> Like 'show route table inetflow.0 extensive' and config.
>
> On Sat, 17 Sept 2022 at 05:05, Gustavo Santos via juniper-nsp
>
Hi,
We have noticed that flowspec is not working or filtering as expected.
Trying a DDoS detection and rule generator tool, and we noticed that the
flowspec rule is installed,
the filter counter is increasing , but no filtering at all.
For example DDoS traffic from source port UDP port 123 is
Hi,
I think that I was the only one with this issue.
Even with a RE-S-X6-64G. We have very slow outbound updates. sending a
lot of fullrouting tables to customers may take upto 60 minutes or more
when you
have a lot of BGP groups , for instance, one group per customer ... and if
the we have an
7 matches
Mail list logo
