Salut.
Je viens d'ajouter le support de FlowSpec (RFC5575) a mon injecteur de route
BGP http://bgp.exa.org.uk/
Comme ne ne connais pas d'autre projet en Open Source (BSD 3-clauses)
permettant la génération de flow, je me permet d'en informer la liste.
Le code est accessible via SVN: http:/svn.exa.org.uk/bgp/trunk/
Les infos sur l'installation sont sur le wiki.
Le code va encore changer avant la prochaine version "stable" (grand mot) mais
la branche trunk de SVN devrait rester fonctionnelle.
Si cela vous intéresse, avez des questions, ou avez besoin d'une fonction
manquante, faites moi signe :)
Thomas
---------
neighbor 82.219.123.221 {
[....]
flow {
route {
match {
source 10.0.0.1/32;
destination 192.168.0.1/32;
port =80;
destination-port =3128 >8080&<8088;
source-port >1024;
protocol tcp;
}
then {
discard;
}
}
}
}
[email protected]> show configuration logical-routers trap
protocols bgp
local-as 30740;
group flow {
type external;
multihop;
local-preference 100;
local-address 82.219.123.221;
import no-export;
export deny-all;
peer-as 65500;
neighbor 82.219.131.242 {
traceoptions {
file bgp;
flag all;
}
family inet {
unicast;
flow {
no-validate everything;
}
}
family inet6 {
unicast;
}
}
}
[email protected]> show configuration logical-routers trap
policy-options policy-statement everything
then accept;
# env PYTHONPATH=~/source/bgp/lib/ python daemon/bgpd etc/bgp/m7i-service.txt
033 12:28:13 Supervisor/ performing reload
033 12:28:13 Supervisor/ New Peer 82.219.123.221
033 12:28:14 82.219.123.221/ 30740 -> OPEN version=4 asn=65500
hold_time=180 router_id=82.219.131.242 capabilities=[Graceful Restart Flags 0x8
Time 5 IPv4/flow-ipv4=0x80 IPv4/unicast=0x80 IPv6/unicast=0x80, Multiprotocol
IPv4 unicast IPv6 unicast IPv4 flow-ipv4]
033 12:28:15 82.219.123.221/ 30740 <- OPEN version=4 asn=30740 hold_time=90
router_id=82.219.123.221 capabilities=[Cisco Route Refresh (unparsed),
Multiprotocol IPv4 unicast IPv6 unicast IPv4 flow-ipv4, Route Refresh
(unparsed)]
033 12:28:16 82.219.123.221/ 30740 -> KEEPALIVE
033 12:28:17 82.219.123.221/ 30740 <- KEEPALIVE
announcing IPv6 unicast 2a02:b80:0:6:50::1/128 next-hop
2a02:b80::90:0:52e:0:1 med 100
announcing IPv4 flow-ipv4 destination 192.168.0.1/32,source
10.0.0.1/32,protocol =TCP,port =80,destination-port =3128
>8080&<8088,source-port >1024 extended community [ 0x80 0x6 0x0 0x0 0x0 0x0 0x0
0x0 ]
announcing IPv4 unicast 82.219.4.100/32 next-hop 82.219.4.101 med 100
033 12:28:17 82.219.123.221/ 30740 -> UPDATE (3)
033 12:28:17 82.219.123.221/ 30740 <- KEEPALIVE
[email protected]> show route logical-router trap table inetflow.0
extensive
inetflow.0: 1 destinations, 1 routes (1 active, 0 holddown, 0 hidden)
192.168.0.1,10.0.0.1,proto=6,port=80,dstport=3128,>8080&<8088,srcport>1024/256
(1 entry, 0 announced)
*BGP Preference: 170/-101
Next hop type: Fictitious
Next-hop reference count: 1
State: <Active Ext>
Peer AS: 65500
Age: 1:13
Task: BGP_65500_30740.82.219.131.242+32319
AS path: 65500 I
Communities: no-export traffic-rate:0:0
Localpref: 100
Router ID: 82.219.131.242
---------------------------
Liste de diffusion du FRnOG
http://www.frnog.org/
