[nsp] Bogon Addresses
Matthew Crocker
matthew at crocker.com
Wed Oct 22 16:58:34 EDT 2003
On Wednesday, October 22, 2003, at 04:46 PM, Gert Doering wrote:
> Hi,
>
> On Wed, Oct 22, 2003 at 08:06:59AM +0300, M.Palis wrote:
>> What I am interesting about is whether their is a way to get some
>> statistics on my routers about the traffic that is dropped due to
>> bogon
>> addresses.
>> Does someone of you get such statistics and if yes how?
>
> Send the traffic to a loopback interface (give the loopback an ip
> network, "set ip next-hop <other ip from that loopback network>")
> and have an outgoing ACL on the loopback that does "deny ip any any
> log"
> (or just counts it without logging).
>
> Watch out for CPU load when doing deny/log.
>
Cant you just look at the 'show int loop' counters to get an idea of
the traffic? Or the null0 interface for that matter. What other stuff
gets routed to Null0?
-Matt
> gert
>
> --
> USENET is *not* the non-clickable part of WWW!
>
> //www.muc.de/~gert/
> Gert Doering - Munich, Germany
> gert at greenie.muc.de
> fax: +49-89-35655025
> gert at net.informatik.tu-muenchen.de
> _______________________________________________
> cisco-nsp mailing list cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
>
>
--
Matthew S. Crocker
Crocker Communications, Inc.
Vice President
PO BOX 710
Greenfield, MA 01302
P: 413-746-2760
F: 413-746-3704
W: http://www.crocker.com
E: matthew at crocker.com
More information about the cisco-nsp
mailing list