RP Filter

meetriks2 · September 15, 2014, 10:02am

Hi All,

I’m implementing RP Filter on Routeros v6 and I’m looking for ways to debug it.

I know i can use firewall rules with logging, and use packet capture to see there really being sent.
But I want a easy way of debugging it.

On Cisco and Juniper gear I have counters where I can see its dropping pakets.
Linux kernel documentation says: http://tldp.org/HOWTO/Adv-Routing-HOWTO/lartc.kernel.rpf.html

Any one know how if this can be done with routeros?

Cheers!

jarda · September 15, 2014, 4:01pm

Ros has also counters on firewall rules counting each hit. If you need big testing you need to build lab either physically or virtually. If I am right, you can run virtual ros without license for 24 hours for free.

meetriks2 · September 15, 2014, 4:46pm

Hi

Thanks. I know. From production point of view it’s nice to see if a certain feature drops packets.

Use the RP Filter saves me from many firewall rules.
Linux kernel seems to be able to log what is dropped by RP.

Cheers