Chris Adams wrote on 11/02/2020 17:30:
> Just curious what others do... I always assumed AS path filtering to
> customer (and their downstream customers) AS was a standard best
> practice.
It is.
Then again, there exists every exception to the rule you can think of.
If the exception has not
Anyone that is using blackhole communities should have enough Clue-fu
to adjust announcements along each pathway to have the correct sequence
of ASNs. Passing a route with a different upstream's ASN as the origin,
instead
of their own, is just *asking* for "blackhole leakage", where they
One of our multihomed customers is set up with some type of security
system from another upstream that can announce blackhole routes for
targeted IPs. They have a BGP policy to take those blackhole routes and
add our blackhole community string so that we can drop the traffic (and
we in turn
3 matches
Mail list logo