Bird 2 debugging, connections getting rejected
Skyler Mäntysaari
sm at samip.fi
Mon Aug 3 22:59:29 CEST 2020
Hello,
I'm trying to get IBGP session to work between Bird 2 and FFRouting (EdgeRouter).
They are using Wireguard for the link, and I can ping them fine. BGP port is also open on both.
What's happening here?
Errors I'm getting:
--------
2020-08-03 23:51:56.870 <TRACE> ibgp_tku: Incoming connection from 2001:67c:1104:1a00::1 (port 46843) rejected
--------
Full bird config:
----------------------------------------------------------------------------------------------------------------------------------------
# Configure logging
#log syslog all;
#log "/var/log/bird.log" { debug, trace, info, remote, warning, error, auth, fatal, bug };
log "/var/log/bird.log" all;
#log syslog all;
debug protocols { events, states };
# Set router ID. It is a unique identification of your router, usually one of
# IPv4 addresses of the router. It is recommended to configure it explicitly.
router id 45.92.40.5;
# Turn on global debugging of all protocols (all messages or just selected classes)
#debug protocols all;
# debug protocols { events, states };
# Turn on internal watchdog
# watchdog warning 5 s;
# watchdog timeout 30 s;
# You can define your own constants
define my_asn = 213021;
# define my_addr = 198.51.100.1;
# Tables master4 and master6 are defined by default
ipv4 table master4;
ipv6 table master6;
# Define more tables, e.g. for policy routing or as MRIB
ipv4 table mrib4;
ipv6 table mrib6;
# The Device protocol is not a real routing protocol. It does not generate any
# routes and it only serves as a module for getting information about network
# interfaces from the kernel. It is necessary in almost any configuration.
protocol device {
scan time 5;
}
protocol direct DIRECT { ipv4; ipv6; }
protocol kernel KERNEL4 { ipv4 { export all; import none; }; }
protocol kernel KERNEL6 { ipv6 { export all; import none; }; }
protocol static STATIC6 {
ipv6;
route 2a0b:a700:3::2/128 via 2a07:22c0:c100::;
#route 2001:67c:1104:1a00::1 dev wg0;
#route 2a01:4f9:2b:f800::2 via 2a07:22c0:c100::;
#route 2a01:4f8::/29 via 2001:7f8:33::a105:8299:1;
}
filter internal_nets_v6 {
if net ~ [ 2a0e:b107:6ec::/48,2a0e:8f02:2010::/44,2001:67c:1104::/48 ] then accept;
reject;
}
filter no_export_internal_nets {
if net ~ [ 2a0e:b107:6ec::/48,2a0e:8f02:2010::/44,2001:67c:1104::/48 ] then {
bgp_community.add((65535:65281));
accept;
}
reject;
}
filter internal_route {
if net ~ [ 2a07:22c0:c100::/64 ] then reject;
accept;
}
template bgp T_SELF {
local 2001:67c:1104:1a00::2 as 213021;
ipv6 {
import filter internal_nets_v6;
export filter internal_route;
};
}
protocol bgp ibgp_tku from T_SELF {
neighbor 2001:67c:1104:1a00::1 as 213021;
#neighbor fe80::21b:21ff:febb:5db0%wg0 as 213021;
direct;
ipv6 {
import filter internal_nets_v6;
export all;
next hop self;
};
}
protocol bgp ibgp_de from T_SELF {
local 2001:67c:1104:1a01::1 as 213021;
neighbor 2001:67c:1104:1a01::2 as 213021;
direct;
ipv6 {
import all;
export all;
next hop self;
};
}
----------------------------------------------------------------------------------------------------------------------------------------
EdgeRouter side:
----------------------------------------------------------------------------------------------------------------------------------------
address-family {
ipv6-unicast {
prefix-list {
export ANNOUNCE-THESE
}
soft-reconfiguration {
inbound
}
}
}
description "Frankfurt, DE"
remote-as 213021
update-source 2001:67c:1104:1a00::1
----------------------------------------------------------------------------------------------------------------------------------------
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://trubka.network.cz/pipermail/bird-users/attachments/20200803/a435ca8a/attachment.htm>
More information about the Bird-users
mailing list