Go to:
Gentoo Home
Documentation
Forums
Lists
Bugs
Planet
Store
Wiki
Get Gentoo!
Gentoo's Bugzilla – Attachment 658218 Details for
Bug 740252
net-misc/bird: Not binding BGP socket on ARM64
Home
|
New
–
[Ex]
|
Browse
|
Search
|
Privacy Policy
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
aarch64_bird config
bird.conf (text/x-matlab), 3.15 KB, created by
Skyler Mäntysaari
on 2020-09-03 21:25:41 UTC
(
hide
)
Description:
aarch64_bird config
Filename:
MIME Type:
Creator:
Skyler Mäntysaari
Created:
2020-09-03 21:25:41 UTC
Size:
3.15 KB
patch
obsolete
>################################################ ># Variable header # >################################################ > >define OWNAS = 4242423347; >define OWNIPv6 = fdfd:00df:5b67::1; >define OWNNETv6 = fdfd:00df:5b67::/48; >define OWNNETSETv6 = [fdfd:00df:5b67::/48+]; >define DN42_REGION = 41; > >################################################ ># Header end # >################################################ > >router id 192.168.1.14; > >log syslog all; >debug protocols { events }; >#debug { events }; > >protocol device { > scan time 10; >} > >/* > * Utility functions > */ > >function is_self_net_v6() { > return net ~ OWNNETSETv6; >} > >function is_valid_network() { > return net ~ [ > 172.20.0.0/14{21,29}, # dn42 > 172.20.0.0/24{28,32}, # dn42 Anycast > 172.21.0.0/24{28,32}, # dn42 Anycast > 172.22.0.0/24{28,32}, # dn42 Anycast > 172.23.0.0/24{28,32}, # dn42 Anycast > 172.31.0.0/16+, # ChaosVPN > 10.100.0.0/14+, # ChaosVPN > 10.127.0.0/16{16,32}, # neonetwork > 10.0.0.0/8{15,24} # Freifunk.net > ]; >} > >roa4 table dn42_roa; >roa6 table dn42_roa_v6; > >protocol static { > roa4 { table dn42_roa; }; > include "/etc/bird/dn42_roa.conf"; >}; > >protocol static { > roa6 { table dn42_roa_v6; }; > include "/etc/bird/dn42_roa_v6.conf"; >}; > >function is_valid_network_v6() { > return net ~ [ > fd00::/8{44,64} # ULA address space as per RFC 4193 > ]; >} > >protocol kernel { > scan time 20; > > ipv6 { > import none; > export filter { > if source = RTS_STATIC then reject; > krt_prefsrc = OWNIPv6; > accept; > }; > }; >}; > >#protocol kernel { ># scan time 20; > ># ipv4 { ># import none; ># export filter { ># if source = RTS_STATIC then reject; ># krt_prefsrc = OWNIP; ># accept; ># }; ># }; >#} > >protocol static { > #route OWNNET reject; > > ipv4 { > import all; > export none; > }; >} > >protocol static { > route OWNNETv6 reject; > > ipv6 { > import all; > export none; > }; >} > >template bgp dnpeers { > local as OWNAS; > path metric 1; > > ipv4 { > import filter { > if is_valid_network() then { > if (roa_check(dn42_roa, net, bgp_path.last) != ROA_VALID) then { > print "[dn42] ROA check failed for ", net, " ASN ", bgp_path.last; > reject; > } else accept; > } else reject; > }; > > export filter { if is_valid_network() && source ~ [RTS_STATIC, RTS_BGP] then accept; else reject; }; > import limit 1000 action block; > }; > > ipv6 { > import filter { > if is_valid_network_v6() && !is_self_net_v6() then { > if (roa_check(dn42_roa_v6, net, bgp_path.last) != ROA_VALID) then { > print "[dn42] ROA check failed for ", net, " ASN ", bgp_path.last; > reject; > } else accept; > } else reject; > }; > export filter { if is_valid_network_v6() && source ~ [RTS_STATIC, RTS_BGP] then accept; else reject; }; > import limit 1000 action block; > }; >} > > >include "/etc/bird/community_filters.conf"; >include "/etc/bird/peers/*";
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=658218">View the attachment on a separate page</a>.</b>
View Attachment As Raw
Actions:
View
Attachments on
bug 740252
: 658218 |
658220
