I believe this has been resolved. The following (below) seems to work. Originally, I had the 'accept' rule at the top of the filter set, not the bottom. Placing it at the bottom seemed to resolve the trouble I experienced. I've placed this code into it's own 'routing filter rule', and attached it to the chain OSPF-OUT.
Code:
if ( dst in 192.168.0.0/16 && dst-len>16 ) { reject }if ( dst in 10.0.0.0/8 && dst-len>8 ) { reject }if ( dst in 172.16.0.0/12 && dst-len>12 ) { reject }if ( dst-len > 0 ) { accept}Statistics: Posted by checkwire — Sat Jan 06, 2024 10:30 pm