Italiano English
Edit History Actions

Diff for "BIRD"

Differences between revisions 1 and 3 (spanning 2 versions)
Revision 1 as of 2014-11-07 01:07:36
Size: 1211
Editor: leonaard
Comment: created
Revision 3 as of 2014-11-09 23:06:01
Size: 1050
Editor: leonaard
Comment: added link to rp_filter
Deletions are marked like this. Additions are marked like this.
Line 4: Line 4:
Questo è il mio `/etc/bird.conf`, il demone BGP è sullo stesso host a cui è assegnata la subnet pubblica annunciata. Esempio di configurazione (`/etc/bird.conf`) per usare BIRD come [[RouterBgpRouteReflectorClient | BGP route reflector client]], se la subnet pubblica e' assegnata allo stesso host su cui gira il demone BGP:
Line 7: Line 7:
# This pseudo-protocol performs synchronization between BIRD's routing
# tables and the kernel.
protocol device {
        scan time 10;
}
Line 10: Line 12:
        scan time 20; # Scan kernel routing table every 20 seconds         scan time 20;
Line 12: Line 14:
                krt_prefsrc = 176.62.53.27; # Set SRC for routes added by BIRD                 krt_prefsrc = 176.62.53.X;
Line 17: Line 19:
# This pseudo-protocol watches all interface up/down events.
protocol device {
        scan time 10; # Scan interfaces every 10 seconds
protocol direct {
        interface "peering-vpn";
Line 22: Line 23:
# Learn routes from specified interface
protocol direct {
        interface "ninux-peering-vpn";
}

filter ninux_bgp_export_filter { # Announce (only) our public subnet
        if ( net = 176.62.53.27/32 ) then {
filter ninux_bgp_filter { # Announce (only) our public subnet
        if ( net = 176.62.53.X/32 ) then {
Line 36: Line 32:
        local 10.6.6.10 as 197835; # My BGP         local 10.6.6.X as 197835;
Line 39: Line 35:
        export filter ninux_bgp_export_filter;         export filter ninux_bgp_filter;
Line 42: Line 38:

Verificare di avere [[Reverse Path Filter | rp_filter]] a `0` o a `2` sulle interfaccie di rete interessate.

BIRD e` un demone di routing multi protocollo.

BGP route reflector client

Esempio di configurazione (/etc/bird.conf) per usare BIRD come BGP route reflector client, se la subnet pubblica e' assegnata allo stesso host su cui gira il demone BGP:

protocol device {
        scan time 10;
}

protocol kernel {
        scan time 20;
        export filter {
                krt_prefsrc = 176.62.53.X;
                accept;
        };
}

protocol direct {
        interface "peering-vpn";
}

filter ninux_bgp_filter { # Announce (only) our public subnet
        if ( net = 176.62.53.X/32 ) then {
                accept;
        } else {
                reject;
        }
}

protocol bgp {
        local 10.6.6.X as 197835;
        neighbor 10.6.6.1 as 197835;
        import all;
        export filter ninux_bgp_filter;
}

Verificare di avere rp_filter a 0 o a 2 sulle interfaccie di rete interessate.