On 2013-05-27 12:18, Zach Underwood wrote:
> I am using the
openbpgd package on pfsense 2.0.3 x64bit. The problem I am having it
that the full bgp table I am getting from ISP1 is sent to ISP2 as my
networks. ISP 2 is filtering so I don't break there network. Here is my
bgpd.conf file
>
> AS 11672
> fib-update yes
> holdtime 90
>
router-id 107.7.161.82
> network 216.105.159.0/24 [1]
> network
216.105.158.0/24 [2]
> network 216.105.157.0/24 [3]
> network
216.105.128.0/24 [4]
> network 216.105.135.0/24 [5]
> network
216.105.136.0/23 [6]
> network 216.105.141.0/24 [7]
> network
216.105.143.0/24 [8]
> network 216.105.144.0/22 [9]
> network
216.105.153.0/24 [10]
> network 216.105.155.0/24 [11]
> network
216.105.156.0/24 [12]
> network 216.105.151.0/24 [13]
> neighbor
107.7.161.81 {
> descr "earthlink"
> announce all
> remote-as 6983
>
local-address 107.7.161.82
> }
> neighbor 64.16.224.133 {
> descr
"ITO"
> announce all
> remote-as 18797
> local-address 64.16.224.134
> }
> deny from any
> deny to any
> allow from 107.7.161.81
> allow
to 107.7.161.81
> allow from 64.16.224.133
> allow to
64.16.224.133
Change the "announce all" statements to "announce self".
Announce all turns you into a transit provider. (Be thankful your
upstreams do filtering! FYI, they both must be filtering, or you would
still have broken [parts of] the internet.)
-Adam Thompson
[email protected]
Links:
------
[1] http://216.105.159.0/24
[2]
http://216.105.158.0/24
[3] http://216.105.157.0/24
[4]
http://216.105.128.0/24
[5] http://216.105.135.0/24
[6]
http://216.105.136.0/23
[7] http://216.105.141.0/24
[8]
http://216.105.143.0/24
[9] http://216.105.144.0/22
[10]
http://216.105.153.0/24
[11] http://216.105.155.0/24
[12]
http://216.105.156.0/24
[13] http://216.105.151.0/24
_______________________________________________
List mailing list
[email protected]
http://lists.pfsense.org/mailman/listinfo/list
