[137922] in North American Network Operators' Group
Re: Howto for BGP black holing/null routing
daemon@ATHENA.MIT.EDU (Owen DeLong)
Tue Feb 22 18:58:59 2011
From: Owen DeLong <owen@delong.com>
In-Reply-To: <FCD26398C5EDE746BFC47F43EA52A17304E0EC14@dino.ad.hostasaurus.com>
Date: Tue, 22 Feb 2011 15:53:52 -0800
To: David Hubbard <dhubbard@dino.hostasaurus.com>
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
I can't give you a step-by-step with configuration examples off the top
of my head, but, hopefully this helps:
1. Create a static anchor route to a magic "next-hop" value
such as 192.168.99.99 or whatever you choose.
2. Configure all your routers to route 192.168.99.99 to null.
3. Advertise that into your iBGP mesh from the blackhole anchor
router.
Owen
On Feb 22, 2011, at 1:42 PM, David Hubbard wrote:
> I was wondering if anyone has a howto floating around on the
> step by step setup of having an internal bgp peer for sending
> quick updates to border routers to null route sources of
> undesirable traffic? I've seen it discussed on nanog from
> time to time, typically suggesting using Zebra, but could
> not search up a link on a step by step.
>
> Thanks,
>
> David
