Hello! Sorry, maybe my question is silly but I cannot find an analog of IOS "network" command (i.e. how can I to define my network address range to annouce?). -- WBR, Yury Bokhoncovich, Senior System Administrator, NOC of F1 Group. Phone: +7 (3832) 106228, ext.140, E-mail: byg@center-f1.ru. Unix is like a wigwam -- no Gates, no Windows, and an Apache inside.
On Thu, 10 Jul 2003, Yury Bokhoncovich wrote:
Hello!
Hello!
Sorry, maybe my question is silly but I cannot find an analog of IOS "network" command (i.e. how can I to define my network address range to annouce?).
Probably the best way is to setup a static route and to propagate it into a specific routing protocol. Feela
Hello!
Sorry, maybe my question is silly but I cannot find an analog of IOS "network" command (i.e. how can I to define my network address range to annouce?).
If you are addressing an address range to the outside world, you should also ensure that all locally unroutable packets for that range are correctly returned as nondeliverable. A static reject route does both quite neatly. Have a nice fortnight -- Martin `MJ' Mares <mj@ucw.cz> http://atrey.karlin.mff.cuni.cz/~mj/ Faculty of Math and Physics, Charles University, Prague, Czech Rep., Earth Minimalist definition of maximalism: `more!'.
Hello! On Fri, 11 Jul 2003, Martin Mares wrote:
IOS "network" command (i.e. how can I to define my network address range to annouce?).
If you are addressing an address range to the outside world, you should also ensure that all locally unroutable packets for that range are correctly returned as nondeliverable. A static reject route does both quite neatly.
That's well known. The problem is in "how to say I have these IPs as origin". I.e., make BIRD do the same as in example shown below. I can do this on a Cisco router (192.168 networks and 65535x ASNs shown for example only): =================== router bgp 65534 neighbor 192.168.33.33 remote-as 65533 network 192.168.2.0 mask 255.255.254.0 =================== This effectively announces 192.168.2.0/23 for my peer 65533 (and possibly for others). How to do this by BIRD? -- WBR, Yury Bokhoncovich, Senior System Administrator, NOC of F1 Group. Phone: +7 (3832) 106228, ext.140, E-mail: byg@center-f1.ru. Unix is like a wigwam -- no Gates, no Windows, and an Apache inside.
On Fri, 2003-07-11 at 03:21, Yury Bokhoncovich wrote:
Hello! router bgp 65534 neighbor 192.168.33.33 remote-as 65533 network 192.168.2.0 mask 255.255.254.0 =================== This effectively announces 192.168.2.0/23 for my peer 65533 (and possibly for others).
Use static protocol : protocol static { route 192.168.2.0/24 via ONEIPICANREACH; } then you can do : protocol bgp { local as 20; neighbor 192.131.131.31 as 17; export where source=RTS_STATIC; } And you just export the route you defined in STATIC BR, -- Eric Leblond <eleblond@init-sys.com> Alphalink
Hello! On 16 Jul 2003, Eric Leblond wrote:
Use static protocol :
protocol static { route 192.168.2.0/24 via ONEIPICANREACH; }
then you can do :
protocol bgp { local as 20; neighbor 192.131.131.31 as 17; export where source=RTS_STATIC; }
And you just export the route you defined in STATIC
Aha, I did catch this, ok, thanx. But I am unable to catch how to define one static route to announce worldwide via BGP (our IP block) and to deny this for another one 'cos it belongs to my ISP PA block. Though the latter should pass my router anyway. Sorry, I have a bit mess here: We're just trying to change ISP's addresses to our PI block. -- WBR, Yury Bokhoncovich, Senior System Administrator, NOC of F1 Group. Phone: +7 (3832) 106228, ext.140, E-mail: byg@center-f1.ru. Unix is like a wigwam -- no Gates, no Windows, and an Apache inside.
Aha, I did catch this, ok, thanx. But I am unable to catch how to define one static route to announce worldwide via BGP (our IP block) and to deny this for another one 'cos it belongs to my ISP PA block.
I did not really understand what you mean. Or you can split your statics route to omit the ISP PA block. Or you can create a more complex filter : if (source=RTS_STATIC ) then { if ( net ~ MYSIPNET/TADA ) then reject; else accept; } This exclude you ISP block
Though the latter should pass my router anyway. Sorry, I have a bit mess here: We're just trying to change ISP's addresses to our PI block.
-- Eric Leblond <eleblond@init-sys.com> Alphalink
Hello! On Tue, 19 Aug 2003, Eric Leblond wrote:
Aha, I did catch this, ok, thanx. But I am unable to catch how to define one static route to announce worldwide via BGP (our IP block) and to deny this for another one 'cos it belongs to my ISP PA block.
I did not really understand what you mean. Or you can split your statics route to omit the ISP PA block.
Now my turn to not understand you.:) Docs lack description of this trick so I'm fully unaware about how to do it.
Or you can create a more complex filter : if (source=RTS_STATIC ) then { if ( net ~ MYSIPNET/TADA ) then reject; else accept; } This exclude you ISP block
OK, I had been tried the latter before sending my last message but I miss the prefix so "in range" operator did not work. Now BIRD seems to be up. Thanks you very much to point this! -- WBR, Yury Bokhoncovich, Senior System Administrator, NOC of F1 Group. Phone: +7 (3832) 106228, ext.140, E-mail: byg@center-f1.ru. Unix is like a wigwam -- no Gates, no Windows, and an Apache inside.
participants (4)
-
Eric Leblond -
Martin Mares -
Ondrej Feela Filip -
Yury Bokhoncovich