On 02/05/2016 01:09 PM, Anand Buddhdev wrote:
Some Google searches later, I've discovered that Linux doesn't allow blackhole for IPv6 for some reason. I guess I will use "unreachable" instead of "blackhole" then.
That's probably a limitation of your linux kernel version. From the BIRD FAQ: https://gitlab.labs.nic.cz/labs/bird/wikis/FAQ#ipv6-blackhole-and-prohibit-r... ----------------------- IPv6 blackhole and prohibit routes do not work on Linux This is a limitation of older versions of the Linux kernel, which do not support that route targets for IPv6 routes. A commonly used alternative is to use unreachable route target. If you want to blackhole traffic without sending out ICMP errors on linux, you can use route to a dummy device. Just insert kernel module dummy, this will add a dummy0 interface to your system, so you can enable it and route traffic into it. In BIRD configuration this can be done using e.g. static route 2001:db8:1337::/48 via "dummy0". ----------------------- -- Hans van Kranenburg - System / Network Engineer T +31 (0)10 2760434 | hans.van.kranenburg@mendix.com | www.mendix.com