Here's a fun one. By default Junos accepts extended communities on any BGP session (not just on MP-BGP sessions like it's the default case on cisco -unless explicitly enabled). Since most operators are not aware of this default Junos behaviour, one can be importing routes to interesting places if one were so inclined. -so yeah bleach unwanted communities on ingress (bleach those that would interfere with the ones used by the AS internally -so called "untaggable"/"untouchable" ). adam
-----Original Message----- From: NANOG <nanog- bounces+adamv0025=netconsultings.com@nanog.org> On Behalf Of Chriztoffer Hansen Sent: Thursday, October 8, 2020 11:05 AM To: nanog@nanog.org Subject: Juniper configuration recommendations/BCP Importance: Low
On 08/10/2020 11:37, Forrest Christian (List Account) wrote:
Is there anything I should worry about which is Juniper-specific?
JUNOS default ARP timeout: 20 min.
If you connect to IXP's. Recommended ARP timeout: 4 hours.