I think this is advanced. I have about a dozen or so routers all interconnected through ospf with one router as the gateway to my fiber. I'd like to put in a rule at the border router to protect all the routers behind it from things like ssh, telnet etc. But all of the routers have multiple public gateway Ips so I'd have to manually create a large database of IP's and change it everytime I add or take away a subnet somewhere (which is all the time; we are an ISP).

So my question, is there a way the border router could automatically create a dynamic list of IP's from each router and protect them that way? If so how?

I think this is advanced. I have about a dozen or so routers all interconnected through ospf with one router as the gateway to my fiber. I'd like to put in a rule at the border router to protect all the routers behind it from things like ssh, telnet etc. But all of the routers have multiple public gateway Ips so I'd have to manually create a large database of IP's and change it everytime I add or take away a subnet somewhere (which is all the time; we are an ISP).

So my question, is there a way the border router could automatically create a dynamic list of IP's from each router and protect them that way? If so how?

If you look at the LSA list in ospf it should show you all routers that ospf knows about or that participate in your ospf?

would this be what you are after?