Re: BFD and Juniper?

On Sat, Aug 15, 2015 at 02:42:11PM +, Leighton, Russell wrote: I'm trying to get bird 1.5.0 to have BFD work with Juniper MX Routers. Sessions get stuck in Init state with the Juniper side in Down state. Any suggestions? On the BIRD box, set this in sysctl.conf:

Re: MRT rib dump support

On Thu, Nov 12, 2015 at 04:55:50PM +0100, Ondrej Zajicek wrote: > On Wed, Nov 11, 2015 at 11:46:17AM -0800, Evelio VILA wrote: > > Hello, > > > > I just came across this commit > > > > https://gitlab.labs.nic.cz/labs/bird/blob/3e3e381b98fe8809b560da7cd5dc95641102f1cd/nest/mrtdump.c > > > > Any

pattern matching for bgp communities

Hi all, Is there a way to do pattern matching or regex matching on the BGP communities associated with a prefix? The use-case I have: an eBGP peer attaches communties which inform me both about the geographical point of origin and the type of relation my eBGP peer has with the remote network

Re: New "channels" feature in future version of Bird?

On Fri, Jun 17, 2016 at 01:40:45PM +0200, Jan Matejka wrote: > If one of our crazy ideas comes true, we may add Lua as a possible > language to write filters in (in several years' perspective) and maybe > also deprecate the current, then-legacy filter language in far future. YES!!! that would be

Re: integration with Fastnetmon

On Mon, Feb 01, 2016 at 08:48:15AM +, Neil Morris wrote: > I have just started looking into BIRD for use with Fastnetmon for DDoS > mitigation. I see that ExaBGP is aready integrated with Fastnetmon, > but was interested to hear from anyone who has used BIRD. I've intergrated BIRD and

Re: Version 1.6.0

Hi Ondrej, On Fri, Apr 29, 2016 at 06:35:33PM +0200, Ondrej Filip wrote: > Dear Bird users, > the long expected version is out: > > Version 1.6.0 (2016-04-29) > o Major RIP protocol redesign > o New Babel routing protocol > o BGP multipath support > o KRT: Add support for plenty of

filters, line 1360: ~ applied on unknown type pair

Hi all, I see the following pop up in the syslog, over and over again: root@eunetworks-2:/etc/bird# tail -F /var/log/syslog | grep filters Feb 24 19:34:32 eunetworks-2 bird: filters, line 1360: ~ applied on unknown type pair Feb 24 19:34:32 eunetworks-2 bird: filters,

Re: MRTdump (Was: Re: New in BIRD)

collector with 41,000,000 routes in RIB, which i'd like to dump into long term archives for research purposes, but without file rotation that will be hard to do. Kind regards, Job On Fri, May 30, 2014 at 08:57:39AM +0200, Job Snijders wrote: > On Thu, May 29, 2014 at 11:21:01PM +0200, Ondrej Zaji

Re: Version 1.6.2

Hi Ondrej, On Thu, Sep 29, 2016 at 05:16:24PM +0200, Ondrej Filip wrote: > a new version of the 1.6.x branch is out: > > Version 1.6.2 (2016-09-29) > o Fixes serious bug introduced in the previous version > > Upgrade from 1.6.1 is highly recommended. Thank you! When will Debian packages for

Re: BLACKHOLE community RFC7999

On Fri, Oct 21, 2016 at 10:24:25AM +, Thomas King wrote: > Hi all, > > > We could add option 'interpret blackhole' (disabled by default), > > which could be used to enable RFC 7999 behavior. > > I would prefer to have a 'interpret blackhole' switch because it makes > it really easy to use.

Re: Decode BGP Shutdown Communication messages (RFC 8203)

Spin #2 --- proto/bgp/bgp.c | 12 + proto/bgp/bgp.h | 2 ++ proto/bgp/packets.c | 73 ++--- 3 files changed, 61 insertions(+), 26 deletions(-) diff --git a/proto/bgp/bgp.c b/proto/bgp/bgp.c index f706e76..2a89c00 100644 ---

Re: show route

On Tue, Aug 01, 2017 at 09:26:29AM +0200, Luk wrote: > What is proper syntax for this kind of show route: > > bird> show route protocol ECO where net ~ 2.2.2.250/31 all > 2.2.2.250/31 via 1.1.1.66 on eth0.930 [ECO 08:53:25] * E2 (150/200/1) > [1.1.1.66] > Type: OSPF-E2 unicast univ

Re: bird: memory exhausted

On Mon, Aug 07, 2017 at 03:01:49AM +0200, Ondrej Zajicek wrote: > > > Any ideas how to increase the memory available to things on the stack? > > > > Looks like you're hitting the Bison parser stack limit. The default > > is 1, which is probably too low, looking at your sample config > > file.

Re: Version 1.6.2

Hi all, Apologies for bumping up an old thread On Fri, Sep 30, 2016 at 01:11:59AM +0200, Ondrej Zajicek wrote: > On Thu, Sep 29, 2016 at 05:33:44PM +0200, Job Snijders wrote: > > On Thu, Sep 29, 2016 at 05:16:24PM +0200, Ondrej Filip wrote: > > > a new version of the 1

Re: FreeBSD, OSPF & bird 1.6.0

Hi, Sorry to say, but best practice is to upgrade to latest stable release and test if the problem still exists. Between 1.6.0 and 1.6.3 there have been a number of bug fixes and new cool features. It makes little sense to debug an obsolete release :-) Kind regards, Job

Re: FreeBSD, OSPF & bird 1.6.0

Hi, Why are you using bird 1.6.0? The recommended version is 1.6.3. Kind regards, Job

Decode BGP Shutdown Communication messages (RFC 8203)

Hi all, Here is a patch to decode received BGP shutdown communication messages as specified in RFC 8203. In the following example scenario I'm sending a shutdown communication with openbgpd: $ bgpctl neighbor 94.142.241.204 down "TICKET-2331 we are upgrading, back in 30 min"

Re: Decode BGP Shutdown Communication messages (RFC 8203)

Hi, Peter van Dijk pointed me at valgrind. It appears I can improve this patch a bit more, stay tuned. Kind regards, Job On Thu, Jul 27, 2017 at 05:55:40PM +0200, Job Snijders wrote: > Hi all, > > Here is a patch to decode received BGP shutdown communication messages > as spec

bird: memory exhausted

Dear all, It appears I'm hitting some kind of limit in yacc stuff (on 1.6.3-1+trusty+1): router# bird -c rpki-match-roa-ipv4.conf -p bird: rpki-match-roa-ipv4.conf, line 4998: memory exhausted The error message is generated by generated code: $ grep -r 'memory

Re: Version 2.0.0-pre1

On Mon, May 01, 2017 at 11:45:58AM +0200, Ondrej Zajicek wrote: > On Sun, Apr 30, 2017 at 10:42:19AM +0200, Job Snijders wrote: > > On Sun, Apr 30, 2017 at 12:46:04AM +0200, Ondrej Filip wrote: > > > Let me announce a new addition to 2.0.x branch. > > > > Congratulat

Re: Decode BGP Shutdown Communication messages (RFC 8203)

bump? :-) On Fri, Jul 28, 2017 at 12:26:59PM +0200, Job Snijders wrote: > Spin #2 > > --- > proto/bgp/bgp.c | 12 + > proto/bgp/bgp.h | 2 ++ > proto/bgp/packets.c | 73 > ++--- > 3 files changed, 61 ins

Re: Decode BGP Shutdown Communication messages (RFC 8203)

Hi Ondrej, Thank you for your work on this patch. When sending in my code i realised it was a bit rough on the edges, and secretly hoped that a more experienced BIRD developer would take pity and polish it up. Appreciated! On Tue, Sep 26, 2017 at 02:22:20PM +0200, Ondrej Zajicek wrote: > On Tue,

Re: BIRD 2.0.0: RFC8097 extended communities and rpki-light

Dear all, On Tue, Dec 12, 2017 at 06:47:44PM +0100, Pier Carlo Chiodi wrote: > while I was running some tests on BIRD 2.0.0 I've noticed that the > handling of RFC8097 extended communities is different from 1.6.3. > > Scenario: > - AS10 announces a route to the route server; > - the route server

Re: BGP manage advertisement

On Wed, May 09, 2018 at 04:35:11PM +0200, Mattia Milani wrote: > > No. Perhaps sometimes in the future, but no definite plan. > > yeah but on your site, > http://bird.network.cz/?get_doc=20=bird-6.html#ss6.3 > that is the user's guide 2.0, there is this written: > > Supported standards > >

Re: BGP manage advertisement

On Wed, May 09, 2018 at 04:12:12PM +0200, Mattia Milani wrote: > > Why do you need (configurable) MRAI timers? > > Because i'm studing a way to programmaticaly decide the MRAI timer in way > to reduce the convergence of BGP after a node fail, so i need a MRAI > configurable or at least

Re: bgp_next_hop check?

On Tue, May 29, 2018 at 7:56 PM, Maria Jan Matějka wrote: > On May 29, 2018 8:42:22 PM GMT+02:00, Job Snijders wrote: >>On https://gitlab.labs.nic.cz/labs/bird/wikis/BGP_filtering I see the >>following curious snippet: >> >>function xx() >>{ >&g

bgp_next_hop check?

Dear BIRD devs, On https://gitlab.labs.nic.cz/labs/bird/wikis/BGP_filtering I see the following curious snippet: function xx() { ... if bgp_next_hop != from then return false; ... } What in the above example does "from" mean? Is "from" some kind of magic

Re: what is this ( graceful restart on) does??

On Wed, Feb 14, 2018 at 07:51:05PM +, ABBAS, KASHIF wrote: > Need to understand what is the functionality of graceful restart…. > Can anybody please explain this graceful restart feature working in > BIRD.. https://tools.ietf.org/html/rfc4724 Kind regards, Job

Re: Community for small IX

Dear Peter, I strongly recommend to use a framework that generates your routeserver configuration. By leveraging an existing framework you pull in important features like prefix filtering and you leverage the work that others have done before you. I've had good success with arouteserver:

Re: BIRD not redistributing iBGP routes

On Tue, Jul 31, 2018 at 01:57:53PM +0200, Matthias Merkel wrote: > I have three BIRD routers: > A uses iBGP only > B also only uses iBGP > C uses eBGP and iBGP > > They are connected as follows: > A<->B<->C (all via iBGP) > > The goal is to allow A to announce routes to B, have B redistribute >

Re: How to show community value

Try adding quotes, like so: $ birdc ‘show route where net ~ x.x.x.0/24 all‘ On Thu, 12 Jul 2018 at 11:35, Isaac HO wrote: > sh ip bgp x.x.x.0/24 <-- Cisco > > birdc show route where net ~ x.x.x.0/24 all > BIRD 1.6.4 ready. > root: variable expected. <-- Can't see any information. > > May I

Re: BIRD version route server example

instead of looking at the arouteserver examples, I strongly recommend to just use arouteserver to generate the BIRD configurations. IXP route servers need to do prefix filtering to ensure the safety for all participants, and the arouteserver software can help you do this. Kind regards, Job On

Re: Authentication in OSPFv3

On Thu, Mar 15, 2018 at 10:45:09AM +, Stuart Henderson wrote: > On 2018/03/15 08:45, Derek Pan wrote: > > when I create a ospfv3 instance with authentication info, and I get > > the output: “Authentication not supported in OSPFv3” > > > > do you have a plan to support it or not ? > > It's

Re: BGP.as_path parameter with '{' or '}'

Dear all, On Mon, Mar 19, 2018 at 12:46 PM, Mattia Milani wrote: > But Alexander route aggregation is marked like "future work" on the guide > for version 1.6.3 and version 2.0, so how it's possible to have aggregation? This is other people doing route

Re: Help with AS-Path manipulation

Dear Marcio, What is your use case for extensive manipulation of the AS_PATH? Kind regards, Job On Fri, 14 Sep 2018 at 16:02, Marcio wrote: > Dear, > > Could you help me with an information? Is there a way to generate an > announce modifying the AS Path field using BIRD? For example, i´d

Re: 2 upstreams 1 downstream BGP configuration optimization

Dear Kevin, On Tue, Jun 04, 2019 at 03:00:53PM +, Kevin B wrote: > I have 2 upstream transit providers and 1 downstream customer we provide > transit to - http://paste.debian.net/1086030/ (full Bird configuration with > explanation) > > There is a problem: Bird is exporting all the imported

Re: 2 upstreams 1 downstream BGP configuration optimization

83868 0--- 783864 4 > Export updates: 10916109 28 0 --- 10916081 > Export withdraws: 710987------ --- 710999 > > On 6/4/19 3:14 PM, Job Snijders wrote: > > Dear Kevin, > > > >

Re: Invalid ROA

Hi, On Sun, Apr 19, 2020, at 19:09, Fabiano D'Agostino wrote: > how can I check which prefixes are not valid and so rejected? It seems > the rpki is working, but I'd like to be sure. I have this: > if (roa_check(r4, net, bgp_path.last) = ROA_INVALID) then > { > print "Ignore RPKI invalid ", net,

Re: BIRD unknown character using text editor

have you tried running the file through the 'dos2unix' utility to remove Windows specific quirks from the file? Kind regards, Job On Tue, Jun 2, 2020, at 11:55, Fabiano D'Agostino wrote: > I am using a text editor on Windows to edit the bird.conf. When I get > my bird.conf in my linux machine

Re: export filter matches, but not announced

On Thu, Jul 23, 2020 at 03:48:15PM -0400, micah anderson wrote: > Alexander Zubkov writes: > > Please show the output of: > > show route export nullroute > > This produces nothing: > > bird> show route export nullroute > bird> > > > And why do you think it is not exported? > > Besides the

Re: [PATCH] BGP: Add support for BGP hostname capability

Dear Vincent, Thank you for your contribution, running code always is an excellent way to move specifications for the purpose of interopability forward. I'd like to comment on my favorite topic... *** DEFAULTS :-) On Wed Feb 3 19:19:50 CET 202, you wrote: > > However, maybe the capability

Re: ignore max length as an argument of roa_check

On Wed, Mar 31, 2021 at 04:34:12AM +0200, Ondrej Zajicek wrote: > So my point/idea is that if this case is valid, then using RPKI-style > checking for BLACKHOLE is broken idea anyway, Yes, the design pattern of using ROAs for blackholing appears problematic. Mangling ROAs and then using the

Re: Expiration for ROA tables until when the VRP is valid?

Hi all, On Sun, Sep 19, 2021 at 01:07:36AM +0200, Robert Scheck wrote: > rpki-client recently implemented the "expires" instruction for roa-sets > that OpenBGPD provides [1][2]. As of writing, BIRD does not seem to have > something similar...any chance for it? From my understanding this only >

Re: Expiration for ROA tables until when the VRP is valid?

On Sun, Sep 19, 2021 at 12:38:28PM +0200, Job Snijders wrote: > The OpenBSD RPKI validator (which can generate BIRD config snippets!) > calculates the "transitive expiration moment". This is the 'nearest' > moment a given ROA no longer should be considered when validating BGP &

[patch] Add contextual out-of-bound checks in RTR Prefix PDU handler

Hi, A broken RPKI Cache could contextually underflow or overflow the Max Length value in RTR IPv4 / IPv6 Prefix PDUs. Below is a changeset proposal which adds specific out-of-bounds checks and schedules a reconnect for a later moment. This aligns BIRD's behavior with other COTS BGP

Re: [patch] Add contextual out-of-bound checks in RTR Prefix PDU handler

Here is an updated version of the changeset. The problematic PDU is now in the correct order echoed to the RTR Cache server, making troubleshooting with tcpdump/wireshark more productive! :) Kind regards, Job diff --git proto/rpki/packets.c proto/rpki/packets.c index dd11f997..3d024504 100644

Re: [patch] Add contextual out-of-bound checks in RTR Prefix PDU handler

Hi, I've aligned the text that is locally logged with the encapsulated error message sent to the broken RPKI cache. Also fixed a compiler warning that snuck into my previous patch: now passing the correct pointer (hton_pdu) to rpki_send_error_pdu(). Kind regards, Job diff --git

Re: [patch] Add contextual out-of-bound checks in RTR Prefix PDU handler

Ping :-) On Fri, 17 Sep 2021 at 21:34, Job Snijders wrote: > Hi, > > I've aligned the text that is locally logged with the encapsulated error > message sent to the broken RPKI cache. Also fixed a compiler warning > that snuck into my previous patch: now passing the correct poin

Re: Expiration for ROA tables until when the VRP is valid?

On Tue, Mar 07, 2023 at 01:01:36AM +0100, Robert Scheck wrote: > On Sun, 19 Sep 2021, Robert Scheck wrote: > > rpki-client recently implemented the "expires" instruction for roa-sets > > that OpenBGPD provides [1][2]. As of writing, BIRD does not seem to have > > something similar...any chance for

Re: Expiration for ROA tables until when the VRP is valid?

On Tue, Mar 07, 2023 at 12:52:16PM +0100, Ondrej Zajicek wrote: > If i understand it correctly, it is relevant just for static ROA > records? Correct > I assume these expiration records are based on wall-clock time instead > of relative time? Correct, wall-clock time expressed as number of

Re: Expiration for ROA tables until when the VRP is valid?

On Tue, Mar 07, 2023 at 01:00:40PM +0100, Job Snijders wrote: > On Tue, Mar 07, 2023 at 12:52:16PM +0100, Ondrej Zajicek wrote: > > If i understand it correctly, it is relevant just for static ROA > > records? > > Correct > > > I assume these expiration record

[patch] add 'source address' configuration option to RPKI protocols

Dear BIRD team, Greetings from Amsterdam! I'd like to be able to explicitly configure the source IP address for RPKI-To-Router sessions. Predictable source addresses are useful for minimizing the holes to be poked in ACLs. The below changeset adds a 'source address' configuration option to RPKI

[patch] SendHoldTimer BGP Error code

Dear all, IANA registered an "Early Allocation" BGP Error code for draft-ietf-idr-bgp-sendholdtimer, see https://www.iana.org/assignments/bgp-parameters/bgp-parameters.xhtml#bgp-parameters-3 The below changeset aligns bird with IANA's Border Gateway Protocol (BGP) Parameters registry. Kind

Re: Overloading RTR to load IRR (Was: Defines for mixed IPv6/IPv4)

On Thu, Jan 25, 2024 at 11:55:14AM +0100, Erin Shepherd wrote: > Spitballing slightly here, but could you avoid this problem by adding > 0.0.0.0/0+ ::0/0+ AS0 RoAs to the table and accepting ROA Unknowns? > > Obviously the disadvantage here is that if your IRR RTR server goes > down you're

Re: Overloading RTR to load IRR (Was: Defines for mixed IPv6/IPv4)

On Thu, Jan 25, 2024 at 11:41:25AM +0100, Job Snijders wrote: > On Thu, Jan 25, 2024 at 11:13:51AM +0100, Jeroen Massar via Bird-users wrote: > > a quick stab at generating the slurm file: > > why use SLURM though? SLURM doesn't have a 'maxLength' field like the > regular JS

Overloading RTR to load IRR (Was: Defines for mixed IPv6/IPv4)

On Thu, Jan 25, 2024 at 11:13:51AM +0100, Jeroen Massar via Bird-users wrote: > a quick stab at generating the slurm file: why use SLURM though? SLURM doesn't have a 'maxLength' field like the regular JSON input formatted in this style has: https://console.rpki-client.org/rpki.json - which might

Re: [patch] add 'source address' configuration option to RPKI protocols

On Thu, Feb 22, 2024 at 03:17:52PM +0100, Ondrej Zajicek wrote: > On Wed, Feb 21, 2024 at 07:14:18PM +0100, Job Snijders via Bird-users wrote: > > I'd like to be able to explicitly configure the source IP address > > for RPKI-To-Router sessions. Predictable source addre