[j-nsp] RTBH

Luis Balbinot luis at luisbalbinot.com
Fri Jan 15 12:36:17 EST 2016 

And remember that if you plan to accept prefixes from external
neighbors and send to the black hole route you need
"accept-remote-nexthop".

On Fri, Jan 15, 2016 at 3:20 PM, Johan Borch <johan.borch at gmail.com> wrote:
> Thanks
>
> Setting route preference helped :)
>
> Johan
>
> On Fri, Jan 15, 2016 at 12:23 AM, Charles van Niman <charles at phukish.com>
> wrote:
>
>> What route preference is your IGP route, and what IGP? I assume your
>> discard/static has a route preference of 5? Also, do you mind pasting
>> the show route extensive output? Is your static discard route in the
>> same routing-instance/VRF as the BGP prefix?
>>
>> /Charles
>>
>> On Thu, Jan 14, 2016 at 3:10 PM, Johan Borch <johan.borch at gmail.com>
>> wrote:
>> > Hi!
>> >
>> > I have implemented RTBH in my small network of 8 routers. DFZ is running
>> in
>> > a L3VPN and each router has an multihop ibgp-session with my RTBH-router
>> > and it works, but I have one thing that annoys me.
>> >
>> > If I announce an offending IP to be black holed, only one of the routers
>> > will point to the discard route. The other 7 will see the announced route
>> > via BGP från the one that got it first I guess and send the traffic to
>> that
>> > one where is is discarded. If I do show extensive on the route it is
>> prefer
>> > because of IGP. I can't figure out how to get each router to prefer the
>> > discard localy. If I do local pref on one router the other 7 will send
>> the
>> > traffic there instead.
>> >
>> > Every router has
>> >
>> >      route a.b.c.d/32 {
>> >             discard;
>> >             install;
>> >         }
>> >
>> > And from sending RTBH router, they are announced with next-hop a.b.c.d.
>> >
>> > Idéas? :)
>> >
>> > Regards
>> > Johan
>> > _______________________________________________
>> > juniper-nsp mailing list juniper-nsp at puck.nether.net
>> > https://puck.nether.net/mailman/listinfo/juniper-nsp
>>
> _______________________________________________
> juniper-nsp mailing list juniper-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/juniper-nsp

More information about the juniper-nsp mailing list