[137908] in North American Network Operators' Group
Re: Howto for BGP black holing/null routing
daemon@ATHENA.MIT.EDU (=?ISO-8859-2?Q?=A3ukasz_Bromirski?)
Tue Feb 22 16:54:11 2011
Date: Tue, 22 Feb 2011 22:54:04 +0100
From: =?ISO-8859-2?Q?=A3ukasz_Bromirski?= <lukasz@bromirski.net>
To: nanog@nanog.org
In-Reply-To: <FCD26398C5EDE746BFC47F43EA52A17304E0EC14@dino.ad.hostasaurus.com>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On 2011-02-22 22:42, David Hubbard wrote:
> I was wondering if anyone has a howto floating around on the
> step by step setup of having an internal bgp peer for sending
> quick updates to border routers to null route sources of
> undesirable traffic? I've seen it discussed on nanog from
> time to time, typically suggesting using Zebra, but could
> not search up a link on a step by step.
Take a look here for starters:
http://www.cisco.com/web/about/security/intelligence/blackhole.pdf
Searching through NANOG archives will return a couple of sessions
that went through the other vendor configs for such functionality.
--
"There's no sense in being precise when | Łukasz Bromirski
you don't know what you're talking | jid:lbromirski@jabber.org
about." John von Neumann | http://lukasz.bromirski.net
