nanog mailing list archives

Re: Howto for BGP black holing/null routing


From: Jared Mauch <jared () puck nether net>
Date: Tue, 22 Feb 2011 16:57:21 -0500

Also:

http://docs.as701.net/tmp/CustomerBlackhole.txt

Remember to set eBGP multihop on sessions for the next-hop rewrite capability :)

- Jared

On Feb 22, 2011, at 4:54 PM, Łukasz Bromirski wrote:

On 2011-02-22 22:42, David Hubbard wrote:
I was wondering if anyone has a howto floating around on the
step by step setup of having an internal bgp peer for sending
quick updates to border routers to null route sources of
undesirable traffic?  I've seen it discussed on nanog from
time to time, typically suggesting using Zebra, but could
not search up a link on a step by step.

Take a look here for starters:
http://www.cisco.com/web/about/security/intelligence/blackhole.pdf

Searching through NANOG archives will return a couple of sessions
that went through the other vendor configs for such functionality.

-- 
"There's no sense in being precise when |               Łukasz Bromirski
you don't know what you're talking     |      jid:lbromirski () jabber org
about."               John von Neumann |    http://lukasz.bromirski.net



Current thread: