Tips on security of RIP routing udates to MPLS VPN sent from customer.
we are going to create a MPLS VPN for our customer, and are planning to exchange routes between our PE routers and customer CE routers using RIPv2, redistributed then to BGP at PE. We have thought of various security scenarios (like telnet access on customer ports, etc), but we are a little bit afraid of customer sending RIP updates to PE, which are then distributed to all VRFs at all PEs which the customer is connected to.
What are possible risks for PEs (router stability when many updates sent) and MPLS VPN as such, and if any, are there some hand-on commands to solve it (at least partially)?
Thanks you so much for any idea, hint or reference to other interesting place.
We are pleased to announce availability of Beta software for 16.6.3. 16.6.3 will be the second rebuild on the 16.6 release train targeted towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are looking for early feedback from custome...