Hi all! In version 1.x I used rtconfig for build import/export BGP check. It was separate files for every protocol included in main config file. roa4 table isp1_v4 { roa4 95.174.96.0/19 max 24 as 49037; roa4 185.230.240.0/22 max 24 as 49037; roa4 185.9.184.0/22 max 24 as 49037; } And after I use filter: if roa_check(isp1_v4, net, 1) = ROA_VALID then return true; Now I find new protocol RPKI, but I don't understand how can add/delete ROA in table. -- Regards, Mikhail V. Majorov Megalink Company, Director of engineering 318, Chehova street, Taganrog, Russia, 347932 tel work: +7 8634 431431 (ext 101) tel mobile: +7 918 5565520 sip: 000101@tagan.ru www.tagan.ru
On Mon, May 07, 2018 at 02:35:17PM +0300, Mikhail Mayorov wrote:
Hi all!
In version 1.x I used rtconfig for build import/export BGP check. It was separate files for every protocol included in main config file.
roa4 table isp1_v4 { roa4 95.174.96.0/19 max 24 as 49037; roa4 185.230.240.0/22 max 24 as 49037; roa4 185.9.184.0/22 max 24 as 49037; }
And after I use filter: if roa_check(isp1_v4, net, 1) = ROA_VALID then return true;
Now I find new protocol RPKI, but I don't understand how can add/delete ROA in table.
HI There are no explicit commands to add/delete ROA records dynamically by birdc. For static ROA records like in your example you can use a static protocol connected to roa4 table to fill static ROA records. -- Elen sila lumenn' omentielvo Ondrej 'Santiago' Zajicek (email: santiago@crfreenet.org) OpenPGP encrypted e-mails preferred (KeyID 0x11DEADC3, wwwkeys.pgp.net) "To err is human -- to blame it on a computer is even more so."
I think this is what I need. Please give an example of how to do this. 09.05.2018 16:22, Ondrej Zajicek пишет:
On Mon, May 07, 2018 at 02:35:17PM +0300, Mikhail Mayorov wrote:
Hi all!
In version 1.x I used rtconfig for build import/export BGP check. It was separate files for every protocol included in main config file.
roa4 table isp1_v4 { roa4 95.174.96.0/19 max 24 as 49037; roa4 185.230.240.0/22 max 24 as 49037; roa4 185.9.184.0/22 max 24 as 49037; }
And after I use filter: if roa_check(isp1_v4, net, 1) = ROA_VALID then return true;
Now I find new protocol RPKI, but I don't understand how can add/delete ROA in table.
HI
There are no explicit commands to add/delete ROA records dynamically by birdc. For static ROA records like in your example you can use a static protocol connected to roa4 table to fill static ROA records.
-- Regards, Mikhail V. Majorov Megalink Company, Director of engineering 318, Chehova street, Taganrog, Russia, 347932 tel work: +7 8634 431431 (ext 101) tel mobile: +7 918 5565520 sip: 000101@tagan.ru www.tagan.ru
On Fri, May 11, 2018 at 11:14:47PM +0300, Mikhail Mayorov wrote:
HI
There are no explicit commands to add/delete ROA records dynamically by birdc. For static ROA records like in your example you can use a static protocol connected to roa4 table to fill static ROA records.
I think this is what I need. Please give an example of how to do this.
Something like: protocol static { roa4 { table isp1_v4; }; route 95.174.96.0/19 max 24 as 49037; route 185.230.240.0/22 max 24 as 49037; route 185.9.184.0/22 max 24 as 49037; } -- Elen sila lumenn' omentielvo Ondrej 'Santiago' Zajicek (email: santiago@crfreenet.org) OpenPGP encrypted e-mails preferred (KeyID 0x11DEADC3, wwwkeys.pgp.net) "To err is human -- to blame it on a computer is even more so."
participants (2)
-
Mikhail Mayorov -
Ondrej Zajicek