Bird for RTBH trigger

Jason Kopacko jason at kopacko.com
Wed Oct 4 03:04:49 CEST 2017 

I've got a multi site BIRD cluster setup in a master slave deployment. My
master server is where I apply static routes with tags. Based on the tag
certain communities get added during propagation. From those communities I
can specify one site, several sites, or all sites receive the route. Also I
have my routers and firewalls setup so that they peer with their local BIRD
server. From there the route sent could blackhole, force traffic across my
WAN, or force traffic out the local site Internet.

Sent from my Verizon Wireless 4G LTE Samsung Galaxy S5.

On Oct 3, 2017 19:16, "Robert Blayzor" <rblayzor.bulk at inoc.net> wrote:

> I am attempting to setup Bird on a VM to act as a RTBH trigger…
>
> Bird 1.6.0 on FreeBSD 11.1
>
>
> Is there a alternative way to advertise null routes from Bird rather than
> using a kernel table?
>
>
> I have tried using static routes, but because assuming the next hop is not
> reachable, the routes do not export. I guess I’m looking for a way you
> would normally do something like a null route in Cisco and get that route
> into BGP. Using the kernel table at the moment is not desirable…  Also
> other than other routing protocol peering sessions or the kernel, is there
> another way to get a static null route into Bird?
>
>
>
> protocol static trig1 {
>         route 192.0.2.0/24 blackhole;
>         route 192.168.255.254/32 via 192.0.2.1;
>         import none;
>         export all;
> }
>
>
> bird> show static
> 192.0.2.0/24 blackhole
> 192.168.255.254/32 via 192.0.2.1 (dormant)
>
>
> name     proto    table    state  since       info
> trig1    Static   master   up     00:02:27
>   Preference:     200
>   Input filter:   REJECT
>   Output filter:  ACCEPT
>   Routes:         0 imported, 0 exported, 0 preferred
>   Route change stats:     received   rejected   filtered    ignored
>  accepted
>     Import updates:              1          0          1          0
>   0
>     Import withdraws:            0          0        ---          1
>   0
>     Export updates:              0          0          0        ---
>   0
>     Export withdraws:            0        ---        ---        —
> 0
>
>
>
>
> --
> inoc.net!rblayzor
> XMPP: rblayzor.AT.inoc.net
> PGP:  https://inoc.net/~rblayzor/
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://trubka.network.cz/pipermail/bird-users/attachments/20171003/1c7a205a/attachment.html>

More information about the Bird-users mailing list