I'm looking for a way to blackhole traffic to particular IPs announced by a BGP daemon.
I have four interconnected routers and I use OSPF for internal routing. BGP is used here only to allow a server to announce IPs to blackhole to the network (the server is a log collector and base its decision to blackhole a particular IP based on logs received from each router/server of the network). My idea is to create a blackhole route on each router, for example:
Code: Select all
/ip route add type=blackhole dst-address=10.255.255.255
The problem is that it does't work, because the bgp announced route never use my blackhole route as nexthop, but my default route, eg:
Code: Select all
[...]
19 A SB dst-address=10.255.255.255/32 type=blackhole distance=1
[...]
21 ADb dst-address=1.2.3.4/32 gateway=10.255.255.255 gateway-status=10.255.255.255 recursive via <isp gw> <isp_if> distance=200 scope=40 target-scope=30 bgp-local-pref=100 bgp-origin=igp received-from=<bgp_peer>
Thanks for any help,
Antoine.