Hi,
My policy for BGP sanity on the border routers is like this:
[edit policy-options]
policy-statement bgp_sanity {
term no_shorts {
from {
route-filter 0.0.0.0/0 prefix-length-range /25-/32;
}
then reject;
}
term rfc1918 {
from {
prefix-list-filter rfc1918 orlonger;
}
then reject;
}
}
prefix-list rfc1918 {
10.0.0.0/8;
172.16.0.0/12;
192.168.0.0/16;
}
I apply it as import policy on BGP neighbours as first policy, if there are more.