So I ran into a weird issue this week. I am running a Cisco ASR 1002 and I am trying to set up BGP blackholing by using uRPF. I set it up and it worked great in my test environment, but for some reason, it is not logging or showing acl hits on the acl associated with the ip verify statement. Anyone have any ideas?
Here is the interface config -
interface gi x/x/x
ip access-group internet-rtr-new in
ip access-group internet-out out
no ip unreachables
ip verify unicast reverse-path 100
ip flow ingress
load-interval 30
no negotiation auto
end
ip access-list extended 100
deny ip any any log