Fincer
/
openntpd-openbsd
mirror of https://github.com/Fincer/openntpd-openbsd
1
0
Fork 0
Code Issues 0 Projects 0 Releases 61 Wiki Activity
Browse Source

The deny all and allow from any inet prefixlen 8 - 24 will block the default 

route already so don't add an additional rule for that. Instead add a commented
allow rule. Idea from Mitja Muzenic (mitja at muzenic dot net)
OPENBSD_4_7
claudio 15 years ago
parent
2181a00810
commit
2e03005398
1 changed files with 3 additions and 3 deletions
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. +3
    -3
      src/etc/bgpd.conf

+ 3
- 3
src/etc/bgpd.conf View File

@ -1,4 +1,4 @@
# $OpenBSD: bgpd.conf,v 1.8 2007/03/29 13:37:35 claudio Exp $
# $OpenBSD: bgpd.conf,v 1.9 2009/11/20 19:51:05 claudio Exp $
# sample bgpd configuration file # sample bgpd configuration file
# see bgpd.conf(5) # see bgpd.conf(5)
@ -78,8 +78,8 @@ neighbor 10.2.1.1 {
deny from any deny from any
allow from any inet prefixlen 8 - 24 allow from any inet prefixlen 8 - 24
# do not accept a default route
deny from any prefix 0.0.0.0/0
# accept a default route (since the previous rule blocks this)
#allow from any prefix 0.0.0.0/0
# filter bogus networks # filter bogus networks
deny from any prefix 10.0.0.0/8 prefixlen >= 8 deny from any prefix 10.0.0.0/8 prefixlen >= 8


Write Preview
Loading…
Cancel
Save