[rbak-nsp] today's BGP issue...
Marcin Kuczera
marcin at leon.pl
Fri Dec 2 07:22:48 EST 2011
Voigt, Thomas wrote:
> Hi all,
>
> Jeff Tantsura wrote:
>
>> Why don't you read RFC4271, the only method to notify a peer about
> error condition is to send a Notification and reset the session.
>
> After doing some reading the mentioned RFCs and drafts i see that this
> is also a strict RFC behaviour in SEOS.
>
> But instead of waiting until it is implemented in SEOS, how can we
> protect our routers against those malformed updates in the future?
> Has anyone found a solution for this?
>
> --
> Greetings from Weimar
>
>
> Thomas Voigt
>
> p.s.:
> We had the same problem hiere with SEOS 6.4.1.2.
1. Use 6.2.1.4 - no aggregator/AS0 sanity checks implemented here (but
route servers need to prepend)
2. Ask your upstream provider to clean up all communities on link
towards you.
3. Ask your upstream provider to send you only default route.
Regards,
Marcin
More information about the redback-nsp
mailing list