I’m researching feature parity and don’t have a VyOs instance to test with yet. My sample configuration declares a static route for the entire 192.0.2.0/24 subnet which covers 192.0.2.1.
My interest is whether or not anyone has confirmed if VyOS discards traffic originating from a route which recursively resolves to a blackhole, if the receiving interface has RPF enabled in either loose or strict mode.
It could also simply be the following:
set protocols static route 169.254.0.0/16 next-hop 192.0.2.1
set protocols static route 192.0.2.0/24 blackhole
PS: A BGP route-map can’t set a prefix to target a blackhole directly, one has to accept them and set the next hop as a destination which then routes to a network sink, ideally local to the router.
ie: Does the kernel have sufficient ‘foresight’ to lookup and cache that the ultimate destination for 169.254.0.0/16 is a blackhole and does RPF then subsequently drop any packets, on interfaces where RPF is set to ‘loose’ mode, when their source originates from 169.254.0.0/16?
Regards
David Herselman