mirror of
https://gitlab.labs.nic.cz/labs/bird.git
synced 2024-05-11 16:54:54 +00:00
65d2a88dd2
The RPKI protocol (RFC 6810) using the RTRLib
(http://rpki.realmv6.org/) that is integrated inside
the BIRD's code.
Implemeted transports are:
- unprotected transport over TCP
- secure transport over SSHv2
Example configuration of bird.conf:
...
roa4 table r4;
roa6 table r6;
protocol rpki {
debug all;
# Import both IPv4 and IPv6 ROAs
roa4 { table r4; };
roa6 { table r6; };
# Set cache server (validator) address,
# overwrite default port 323
remote "rpki-validator.realmv6.org" port 8282;
# Overwrite default time intervals
retry 10; # Default 600 seconds
refresh 60; # Default 3600 seconds
expire 600; # Default 7200 seconds
}
protocol rpki {
debug all;
# Import only IPv4 routes
roa4 { table r4; };
# Set cache server address to localhost,
# use default ports tcp => 323 or ssh => 22
remote 127.0.0.1;
# Use SSH transport instead of unprotected transport over TCP
ssh encryption {
bird private key "/home/birdgeek/.ssh/id_rsa";
remote public key "/home/birdgeek/.ssh/known_hosts";
user "birdgeek";
};
}
...
72 lines
1.2 KiB
C
72 lines
1.2 KiB
C
/*
|
|
* This file contains all system parameters automatically
|
|
* discovered by the configure script.
|
|
*/
|
|
|
|
/* System configuration file */
|
|
#define SYSCONF_INCLUDE ?
|
|
|
|
/* Include debugging code */
|
|
#undef DEBUGGING
|
|
|
|
/* 8-bit integer type */
|
|
#define INTEGER_8 ?
|
|
|
|
/* 16-bit integer type */
|
|
#define INTEGER_16 ?
|
|
|
|
/* 32-bit integer type */
|
|
#define INTEGER_32 ?
|
|
|
|
/* 64-bit integer type */
|
|
#define INTEGER_64 ?
|
|
|
|
/* CPU endianity */
|
|
#undef CPU_LITTLE_ENDIAN
|
|
#undef CPU_BIG_ENDIAN
|
|
|
|
/* Usual alignment for structures */
|
|
#define CPU_STRUCT_ALIGN 1
|
|
|
|
/* Characteristics of time_t */
|
|
#undef TIME_T_IS_64BIT
|
|
#undef TIME_T_IS_SIGNED
|
|
|
|
/* We have struct ip_mreqn in <netinet/in.h> */
|
|
#undef HAVE_STRUCT_IP_MREQN
|
|
|
|
/* Protocols compiled in */
|
|
#undef CONFIG_STATIC
|
|
#undef CONFIG_RIP
|
|
#undef CONFIG_RADV
|
|
#undef CONFIG_BFD
|
|
#undef CONFIG_BGP
|
|
#undef CONFIG_OSPF
|
|
#undef CONFIG_PIPE
|
|
#undef CONFIG_BABEL
|
|
#undef CONFIG_RPKI
|
|
|
|
/* We use multithreading */
|
|
#undef USE_PTHREADS
|
|
|
|
/* We have <syslog.h> and syslog() */
|
|
#undef HAVE_SYSLOG
|
|
|
|
/* We have <alloca.h> */
|
|
#undef HAVE_ALLOCA_H
|
|
|
|
/* Are we using dmalloc? */
|
|
#undef HAVE_LIBDMALLOC
|
|
|
|
/* Readline stuff */
|
|
#undef HAVE_RL_CRLF
|
|
#undef HAVE_RL_DING
|
|
|
|
/* struct sockaddr_in(6) */
|
|
#undef HAVE_SIN_LEN
|
|
|
|
/* We have stdint.h */
|
|
#undef HAVE_STDINT_H
|
|
|
|
#define CONFIG_PATH ?
|