OSPF: Route attribute "ospf_tag" lost between different OSPF instances

markus/grundmann markus at grundmann.email
Tue Dec 27 19:38:35 CET 2016


Hello!

I believe that I'm a user with BIRD experiences but current I have no
idea why the attribute "ospf_tag" from one OSPF instance to another is
unavailable.

In this real life example you can see that I receive a default route
from my ISP that is tagged with "7b". This tag is not visible on the VPN
client.

I use for each VPN network a OSPF instance with some filter rules but
only static routes (Core VPN) with a "ospf_tag" are usable to filter
like "if ospf_tag = xyz then ..."

How can I exchange routes based on a "ospf_tag" between two or more OSPF
router instances?

[Core VPN Router]
BIRD 1.6.0 ready.
0.0.0.0/0          via 82.206.X.33 on lagg0 [titan 2016-12-25] * E2 (150/5/10) [7b] [217.173.X.190]

[VPN Client]
BIRD 1.6.0 ready.
0.0.0.0/0          via 10.82.16.1 on tun2 [lte 00:28:10] * E1 (150/5) [82.206.X.34]
                   via 10.82.17.1 on tun3 [umts 00:28:11] E1 (150/10) [82.206.X.34]

-- Static-Tagging Works Fine ---

route 11.0.0.0/8 via 82.206.X.33 { ospf_tag=16170; };

filter openvpn9x16171_export {

        if net = 0.0.0.0/0 then {
           ospf_metric1 = SEC_M1_VPN;
           ospf_metric2 = SEC_M2_VPN;
           accept;
        }

	// [...]

        if ospf_tag = 16171 then {   <== WORKS FINE because static route
           ospf_metric1 = SEC_M1_VPN;
           ospf_metric2 = SEC_M2_VPN;
           accept;
        }

        reject;
}

-- 
Best regards,
Markus



-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: OpenPGP digital signature
URL: <http://trubka.network.cz/pipermail/bird-users/attachments/20161227/5198d0ff/attachment.asc>


More information about the Bird-users mailing list