Differences

This shows you the differences between two versions of the page.

--- network_stuff:flowspec [2022/11/17 09:49] – created jotasandoku
+++ network_stuff:flowspec [2023/11/02 14:38] (current) – external edit 127.0.0.1
@@ Line 1: / Line 1: @@
+__FLOWSPEC IN CISCO NCS5500__
+[[https://www.ciscolive.com/c/dam/r/ciscolive/emea/docs/2019/pdf/BRKSPG-3012.pdf]]
+  show bgp ipv4 flowspec summary    ! To see the current flowspec established sessions
+  !
+  show flowspec afi-all detail      ! To see what flowspec rules are currently applied
+  AFI: IPv4
+  Flow :Dest:25.1.102.1/32,Proto:=17,Length:>=500&<=1550
+  Actions :Nexthop: 25.3.9.3 (bgp.1)
+  Statistics (packets/bytes)
+  Matched : 0/0
+  Dropped : 0/0
+  !
+  show policy-map transient type pbr pmap-name
+  __bgpfs_default_IPv4
+  policy-map type pbr __bgpfs_default_IPv4
+  handle:0x36000002
+  table description: L3 IPv4 and IPv6
+  class handle:0x7600000a sequence 1024
+  match source-port 80
+  police rate 314152 bps
+  conform-action transmit
+  exceed-action drop
+Vanilla configuration CSR1000v
+  router bgp 65000
+   bgp router-id 10.10.10.1
+   bgp log-neighbor-changes
+   neighbor 10.10.11.143 remote-as 65000
+   ! !
+   address-family ipv4 flowspec
+    neighbor 10.100.11.143 activate
+    neighbor 10.100.11.143 send-community both
+   exit-address-family
+   !
@@ Line 7: / Line 41: @@
 To filter (apply actions) on flows instead of penalising whole prefix ranges.\\
-Actions to be done are transmitted via a BGP session from the controller (tells the router what to filter).SAFI 133.\\
+Actions to be done are transmitted via a BGP session from the controller (tells the router what to filter).[[https://infocenter.nokia.com/public/7750SR222R1A/index.jsp?topic=%2Fcom.nokia.Unicast_Guide%2Fmulti-protocol_-ai9exj5yje.html|SAFI]] 133.
+\\
 More specifically, actions are ''encoded in EXT-COMMUNITIES''

dokucama

User Tools

Site Tools

Differences

Page Tools