Juniper configuration recommendations/BCP
adamv0025 at netconsultings.com
adamv0025 at netconsultings.com
Mon Oct 12 14:06:05 UTC 2020
Here's a fun one.
By default Junos accepts extended communities on any BGP session (not just
on MP-BGP sessions like it's the default case on cisco -unless explicitly
enabled).
Since most operators are not aware of this default Junos behaviour, one can
be importing routes to interesting places if one were so inclined.
-so yeah bleach unwanted communities on ingress (bleach those that would
interfere with the ones used by the AS internally -so called
"untaggable"/"untouchable" ).
adam
> -----Original Message-----
> From: NANOG <nanog-
> bounces+adamv0025=netconsultings.com at nanog.org> On Behalf Of
> Chriztoffer Hansen
> Sent: Thursday, October 8, 2020 11:05 AM
> To: nanog at nanog.org
> Subject: Juniper configuration recommendations/BCP
> Importance: Low
>
>
> On 08/10/2020 11:37, Forrest Christian (List Account) wrote:
> > Is there anything I should worry about which is Juniper-specific?
>
> JUNOS default ARP timeout: 20 min.
>
> If you connect to IXP's. Recommended ARP timeout: 4 hours.
More information about the NANOG
mailing list