From be804f06dd8e064c3fc0658c570a53a53cf5b20c Mon Sep 17 00:00:00 2001 From: uvok cheetah Date: Wed, 26 Jun 2024 19:11:44 +0200 Subject: Add learning to BGP --- _posts/2024-03-17-further-learnings-from-running-my-as.md | 10 +++++++++- 1 file changed, 9 insertions(+), 1 deletion(-) (limited to '_posts') diff --git a/_posts/2024-03-17-further-learnings-from-running-my-as.md b/_posts/2024-03-17-further-learnings-from-running-my-as.md index 416d4e2..172168e 100644 --- a/_posts/2024-03-17-further-learnings-from-running-my-as.md +++ b/_posts/2024-03-17-further-learnings-from-running-my-as.md @@ -2,7 +2,7 @@ layout: post title: Further learnings from running my AS date: 2024-03-17 14:42 +0100 -last_modified_at: 2024-04-29 18:55 +02:00 +last_modified_at: 2024-06-26 19:08 +02:00 lang: en categories: ["tech"] --- @@ -106,3 +106,11 @@ Futher info: Only I wondered why *on my other VPS* suddenly a huge amount of routes preferred to go via IBGP. I facepalmed when I realized what I did. (BGP local pref attribute is sent via IBGP sessions). + +**Update 2024-06-26** + +- Ooops! Again. I should not accept *any* default route if I want to do filtering. + Assuming my upstream/transit *doesn't* do proper RPKI/bogon filtering. + Instead, I need to add a default blackhole. + (The filtered routes will not be in my routing table, and if I don't want to route + to them, I need to prevent the kernel from using the default upstream route). -- cgit v1.2.3