Hi! I want to be able to set a router prefix via bgp to blackhole. What I have is this: if ((my_as, 666) ~ bgp_community) then { print "blackhole '", net, "' from AS", bgp_path.last, " via AS", bgp_path.first, " [", proto, "]"; # set nexthop blackhole; # bgp_next_hop blackhole; bgp_community.delete((my_as, 666 )); return false; } but either set nexthop or bgp_next_hop works. Is this possible in bird? -- //fredan
Am 27.02.12 16:58, schrieb fredrik danerklint:
Hi!
I want to be able to set a router prefix via bgp to blackhole.
What I have is this:
if ((my_as, 666) ~ bgp_community) then { print "blackhole '", net, "' from AS", bgp_path.last, " via AS", bgp_path.first, " [", proto, "]"; # set nexthop blackhole; # bgp_next_hop blackhole; bgp_community.delete((my_as, 666 )); return false; }
but either set nexthop or bgp_next_hop works.
bgp_next_hop = 192.0.2.1; doesn't work? Rgds, Stefan -- Stefan Jakob e-mail: stefan.jakob@de-cix.net DE-CIX Management GmbH Phone: +49 69 1730 902-32 Lindleystr. 12, 60314 Frankfurt Mobile: +49 172 695 8467 Geschaeftsfuehrer Harald A. Summa Fax: +49 69 4056 2716 Registergericht AG Koeln, HRB 51135 http://www.de-cix.net
On Mon, Feb 27, 2012 at 04:58:01PM +0100, fredrik danerklint wrote:
Hi!
I want to be able to set a router prefix via bgp to blackhole.
What I have is this:
if ((my_as, 666) ~ bgp_community) then { print "blackhole '", net, "' from AS", bgp_path.last, " via AS", bgp_path.first, " [", proto, "]"; # set nexthop blackhole; # bgp_next_hop blackhole; bgp_community.delete((my_as, 666 )); return false; }
but either set nexthop or bgp_next_hop works.
Is this possible in bird?
You could use bgp_next_hop = 1.2.3.4; for setting a nexthop IP, but this cannot be used to change a 'class' of nexthop (router, device, multipath, kinds of blackhole). A 'class' is in property named 'dest', which can contain values RTD_ROUTER, RTD_DEVICE, RTD_BLACKHOLE, ... , but this is currently read-only, so it cannot be changed. -- Elen sila lumenn' omentielvo Ondrej 'SanTiago' Zajicek (email: santiago@crfreenet.org) OpenPGP encrypted e-mails preferred (KeyID 0x11DEADC3, wwwkeys.pgp.net) "To err is human -- to blame it on a computer is even more so."
participants (3)
-
fredrik danerklint -
Ondrej Zajicek -
Stefan Jakob