Browse Source

Filter the IPv6 Discard-Only Prefix because it should not be globally

routable. See RFC6666. Diff by Gleydson Soares.
OPENBSD_5_5
claudio 11 years ago
parent
commit
938c939dfe
1 changed files with 2 additions and 1 deletions
  1. +2
    -1
      src/etc/bgpd.conf

+ 2
- 1
src/etc/bgpd.conf View File

@ -1,4 +1,4 @@
# $OpenBSD: bgpd.conf,v 1.14 2013/06/02 14:11:38 florian Exp $
# $OpenBSD: bgpd.conf,v 1.15 2013/08/14 21:25:43 claudio Exp $
# sample bgpd configuration file # sample bgpd configuration file
# see bgpd.conf(5) # see bgpd.conf(5)
@ -103,6 +103,7 @@ deny from any prefix 240.0.0.0/4 prefixlen >= 4 # reserved
# filter bogus IPv6 networks according to IANA # filter bogus IPv6 networks according to IANA
deny from any prefix ::/8 prefixlen >= 8 deny from any prefix ::/8 prefixlen >= 8
deny from any prefix 0100::/64 prefixlen >= 64 # Discard-Only [RFC6666]
deny from any prefix 2001:2::/48 prefixlen >= 48 # BMWG [RFC5180] deny from any prefix 2001:2::/48 prefixlen >= 48 # BMWG [RFC5180]
deny from any prefix 2001:10::/28 prefixlen >= 28 # ORCHID [RFC4843] deny from any prefix 2001:10::/28 prefixlen >= 28 # ORCHID [RFC4843]
deny from any prefix 2001:db8::/32 prefixlen >= 32 # docu range [RFC3849] deny from any prefix 2001:db8::/32 prefixlen >= 32 # docu range [RFC3849]


Loading…
Cancel
Save