D-Link DGS-6608 — управление BGP: Команда enforce-first-as для маршрутизаторов [90/1106]
Макгруп McGrp.ru

D-Link DGS-6608 — управление BGP: Команда enforce-first-as для маршрутизаторов [90/1106]

Превью страниц Страница 90 / 1106
D-Link DGS-6604 [90/1106] Example
DGS-6600 Series Switch bgp enforce-first-as
CLI Reference Guide
80
bgp enforce-first-as
Use this command to enforce the first AS for the eBGP routes. To disable this
feature, use the no form of this command.
bgp enforce-first-as
no bgp enforce-first-as
Syntax None.
Default Disabled.
Command Mode Router configuration.
Usage Guideline This command specifies that any updates received from an external neighbor
that do not have the neighbor’s configured Autonomous System (AS), at the
beginning of the AS path, in the received update must be denied. Enabling this
feature adds to the security of the BGP network by not allowing traffic from
unauthorized systems.
Example This example shows how to enable the security of the BGP network for
autonomous system 65534. All incoming updates from eBGP peers are
examined to ensure that the first AS number in the AS path is the local AS
number of the transmitting peer:
Switch(config)# router bgp 65534
Switch(config-router)# bgp enforce-first-as

Содержание

4839

Похожие устройства

Изучите команду bgp enforce-first-as для обеспечения безопасности BGP. Узнайте, как она помогает блокировать нежелательные обновления от внешних соседей.