Which method is NOT typically used to filter BGP routing updates?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $24.99Unlock all

Master RIPE BGP Security with our comprehensive test. Understand the Border Gateway Protocol, explore multiple choice questions, and get ready for your exam with detailed hints and explanations.

Multiple Choice

Which method is NOT typically used to filter BGP routing updates?

Explanation:
Filtering BGP routing updates relies on mechanisms that examine BGP attributes and make policy decisions about which routes to accept, advertise, or modify. Prefix lists are used to permit or deny routes based on destination prefixes, making them a straightforward way to control which updates travel in or out. Route maps add flexibility by matching on a range of BGP attributes such as AS_PATH, origin, MED, and communities, then applying actions like permit/deny or even rewriting attributes. Filter lists (distribute-list) employ ACLs to filter routes by prefix patterns and can be applied to inbound or outbound updates. IPsec filters do not fit this role. IPsec operates at the IP layer to secure traffic between devices, providing confidentiality, integrity, and authentication of the data stream. While IPsec can protect the BGP session itself or the transport of traffic between peers, it does not filter BGP updates based on routing attributes. Therefore, IPsec filters are not the typical method used to filter BGP routing updates.

Filtering BGP routing updates relies on mechanisms that examine BGP attributes and make policy decisions about which routes to accept, advertise, or modify. Prefix lists are used to permit or deny routes based on destination prefixes, making them a straightforward way to control which updates travel in or out. Route maps add flexibility by matching on a range of BGP attributes such as AS_PATH, origin, MED, and communities, then applying actions like permit/deny or even rewriting attributes. Filter lists (distribute-list) employ ACLs to filter routes by prefix patterns and can be applied to inbound or outbound updates.

IPsec filters do not fit this role. IPsec operates at the IP layer to secure traffic between devices, providing confidentiality, integrity, and authentication of the data stream. While IPsec can protect the BGP session itself or the transport of traffic between peers, it does not filter BGP updates based on routing attributes. Therefore, IPsec filters are not the typical method used to filter BGP routing updates.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy