ip prefix-list sanity seq 5 deny 0.0.0.0/0 ip prefix-list sanity seq 10 deny 10.0.0.0/8 le 32 ip prefix-list sanity seq 15 deny 127.0.0.0/8 le 32 ip prefix-list sanity seq 20 deny 172.16.0.0/12 le 32 ip prefix-list sanity seq 25 deny 192.0.2.0/24 le 32 ip prefix-list sanity seq 30 deny 192.168.0.0/16 le 32 ip prefix-list sanity seq 35 deny 169.254.0.0/16 le 32 ip prefix-list sanity seq 40 permit 0.0.0.0/0 le 32
if you are going to get into bogon filtering, you may want to look at draft-manning-dsua-03.txt fyi, this week our bogon filter looks like /* Filter some bogon routes. */ policy-statement bogon { term drop-bogons { from { /* Default */ route-filter 0/0 exact reject; /* Prefix is 0, any mask. */ route-filter 0/8 orlonger reject; /* 0/* May also want to reject ?/[0-6] */ route-filter 0/0 through 0.0.0.0/32 reject; /* Loopback */ route-filter 127/8 orlonger reject; /* Private */ route-filter 10/8 orlonger reject; route-filter 172.16/12 orlonger reject; route-filter 192.168/16 orlonger reject; /* Link local */ route-filter 169.254/16 orlonger reject; /* 1st and last B/C */ route-filter 128.0/16 orlonger reject; route-filter 191.255/16 orlonger reject; route-filter 192.0.0/24 orlonger reject; route-filter 223.255.255/24 orlonger reject; /* Test */ route-filter 192.0.2/24 orlonger reject; /* Multicast & higher */ route-filter 224/3 orlonger reject; } then reject; } } randy