[j-nsp] ScreenOS bgp filtering
Mark Kamichoff
prox at prolixium.com
Thu Feb 21 09:45:45 EST 2008
On Tue, Feb 19, 2008 at 05:24:29AM +0200, Screen OS wrote:
> I have a screenOS device multihomed to two ISPs using BGP. I would
> like to only receive default route from one of them. When I configure
> an ACL to permit 0.0.0.0/0 screenOS treat this as all routes and not
> as the exact match of default route. How can I configure an ACL to
> only allow default route?
Yeah, 0/0 will match everything. ScreenOS has a special option to match
on 0/0 exact:
set access-list 1 permit default-route 1
- Mark
--
Mark Kamichoff
prox at prolixium.com
http://prolixium.com/
Rensselaer Polytechnic Institute, Class of 2004
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : https://puck.nether.net/pipermail/juniper-nsp/attachments/20080221/568ddfb5/attachment.bin
More information about the juniper-nsp
mailing list