Hello,
I'm trying to configure a SRX firewall with a route filter to filter incoming OSPF routes. The following is the route filter config:
policy-statement Greenland-OPSF-import {
term allow {
from {
protocol ospf;
route-filter 10.18.254.240/29 exact;
route-filter 10.18.95.0/24 exact;
route-filter 10.18.70.0/24 exact;
}
then accept;
}
term reject {
then reject;
}
}
I've applied this to OSPF:
user@FW# show protocols ospf
import Greenland-OPSF-import;
area 30.30.30.30 {
interface irb.50 {
passive;
}
interface st0.1;
}
Besides the 3 routes that I've put in the route filter list I'm also seeing a 10.118.95.0/24 route. Where is that coming from?
user@FW> show route protocol ospf
inet.0: 23 destinations, 26 routes (23 active, 0 holddown, 0 hidden)
+ = Active Route, - = Last Active, * = Both
10.18.70.0/24 *[OSPF/150] 00:12:30, metric 1, tag 209
> via st0.1
10.18.95.0/24 [OSPF/10] 00:12:30, metric 3
> via st0.1
10.18.254.240/29 *[OSPF/10] 00:12:30, metric 2
> via st0.1
10.118.95.0/24 [OSPF/10] 00:12:30, metric 3
> via st0.1
172.17.0.0/30 [OSPF/10] 00:12:30, metric 1
> via st0.1
224.0.0.5/32 *[OSPF/10] 01:55:37, metric 1
MultiRecv
#SRX#ospf#routefilter#routing