mirror/bauen1-dn42-roagen
1
0
Fork 0
mirror of https://gitlab.com/bauen1/dn42-roagen synced 2024-05-11 05:55:36 +00:00
Code Releases Activity
bauen1-dn42-roagen/README.md

852 B
Raw Permalink Blame History

dn42-roagen

Generate bird 2.0 roa entries from the dn42 registry.

Build

  1. Install cargo-deb: cargo install cargo-deb
  2. Build dpkg: cargo deb

Usage

After Installtion add the ssh public key from /etc/dn42-roagen/id_ed25591.pub to your account on git.dn42.dev

Add


roa4 table dn42_roa4;
roa6 table dn42_roa6;

protocol static {
    roa4 {
        table dn42_roa4;
    };
    include "/var/lib/bird/dn42-roa4.conf";
};

protocol static {
    roa6 {
        table dn42_roa6;
    };
    include "/var/lib/bird/dn42-roa6.conf";
};

to your bird config. You can now use

if (roa_check(dn42_roa4, net, bgp_path.last) != ROA_VALID) then {
    reject;
}

if (roa_check(dn42_roa6, net, bgp_path.last) != ROA_VALID) then {
    reject;
}

to reject any routes without a matching and valid roa entry.