07-16-2008 09:19 PM - edited 03-03-2019 10:46 PM
we are going to configure the router running BGP with ISP for Internet connection, what is the best practrise to condifure that router in terms of security?
07-17-2008 05:34 AM
07-18-2008 05:54 AM
Hi,
First and foremost, perimeter devices should be configured with out-of-the box security. Confgure your switch/router with the following:
Block/deny traffic originating from external network using these addresses 10.0.0.0/8, 127.0.0.0, 172.16.0.0/and 192.168.0.0 towards your perimeter devices.
With regards to BGP, routes that should not be advertised nor accepted should be filtered. This is done by configuring filter-lists.
Thanks,
k0rg
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: