Hi folks,
I'm wondering if it is possible to dynamically build a firewall filter
from routes learned via BGP, based on a community or just routes learned
from a peer.
The use case here is to take a Team Cymru BGP bogons feed and build a
"deny anything from these sources" firewall that can then be applied to
both customer and peer interfaces.
This could, of course, be scripted but I'm wondering if there isn't some
kind of magic that we can use to get the router to do it natively.
Thanks
Paul.
--
Paul Thornton
