BGP - JUNIPER TTL SECURITY

Session dedicated to show you how to implement TTL security on Juniper JUNOS devices. On this platform you have to manually build a firewall filter to implement this security feature, here we discuss how to do it and how to verify its operation

Loading video...

NOTE: You can only see a limited low resolution version of the video, if you want to view the full version please sign up and get any of our plans!

Video Description

Configuration:

firewall {
    filter filter-name {
        term term-name {
            from {
                source
                }
                protocol tcp;
                ttl-except 254;
                destination-port 179;
            }
            then {
                discard;
            }}
        term term-name {
            then accept;
        }}}


    lo0 {
        unit 0 {
            family inet {
                filter {
                    input  filter-name;
                }

Verification:

show bgp neighbors
show bgp summary
show route protocol bgp
monitor traffic interface 

Rating

Global

Watch video in playlist

comments powered by Disqus