cancel
Showing results for 
Search instead for 
Did you mean: 

Trying to create antispoofing - BCP 38

Trying to create antispoofing - BCP 38

alexandreb
New Contributor
Hi,

I'm trying to create a antispoofing rule like for BCP  38 but it's not working, could someone help me?

Police: ipcorpantispoof.pol

entry IPcorporativo { if { source-address x.x.x.x/22; } then {permit;}}
entry IPcorporativo1 { if { source-address x.x.x.x/22; } then {permit;}}
entry IPcorporativo2 { if { source-address x.x.x.x/24; } then {permit;}}
Entry Deny-TheRest { If {source-address 0.0.0.0/0;} then {deny;}}

1 - configure access-list ipcorpantispoof ports 4:18 ingress 
2 - port 4:18 is a LAG
3 - I already tried to create the rule in the CPE and at CP (changing do ingress and egress but no success).

Regards,
Alexandre
2 REPLIES 2

FreyaF
New Contributor
I am looking for the same, did you found any solution?

alexandreb
New Contributor
Anyone can help?
GTM-P2G8KFN