回覆: Question: ROA verification does not work properly on bird 2.0.11

haima haima at moebee.net
Mon Jan 23 15:51:07 CET 2023


Oh, I found that the translation tool seems to delete the semicolon in the function configuration, but it actually exists.
________________________________
寄件者: haima
寄件日期: 2023年1月23日 22:44
收件者: bird-users at network.cz <bird-users at network.cz>
主旨: Question: ROA verification does not work properly on bird 2.0.11

Hello dear community members,

I am configuring RPKI verification for my network, but I have encountered a strange syntax error problem.

My configuration is as follows:

roa4 table roa_table4;
roa6 table roa_table6;

protocol rpki Cloudflare_RPKI {
        roa4 { table roa_table4; };
        roa6 { table roa_table6; };

        remote "172.65.0.2" port 8282;

        retry keep 90;
        refresh keep 900;
        expire keep 172800;
}

function is_rpki_invalid () { }
        if roa_check(roa_table4, net, bgp_path.last) = ROA_INVALID then return true
        if roa_check(roa_table6, net, bgp_path.last) = ROA_INVALID then return true;
        return false;
}



bird will return the following error: /etc/bird/function.conf:59:22 Syntax error, unexpected CF_SYM_UNDEFINED, expecting CF_SYM_KNOWN

This error is also returned by the example configuration provided in the documentation.

PS: RPKI session placed in bird.conf
PS: Function placed in function.conf

Regards,

Haima

MoeBee Network
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://trubka.network.cz/pipermail/bird-users/attachments/20230123/21e280a4/attachment.htm>


More information about the Bird-users mailing list