Never mind, it just crashed again :p
Jan 8 15:45:32 rr3 bird: Assertion '!old' failed at nest/rt-table.c:1497
Do you want a new coredump?
On Wed 08 Jan 2025 09:43:32 GMT, Alarig Le Lay via Bird-users wrote:
> Hello Maria,
>
> Thanks a lot, I confirm that it works well for me
Hello Maria,
Thanks a lot, I confirm that it works well for me now :)
On Tue 07 Jan 2025 22:06:31 GMT, Maria Matejka via Bird-users wrote:
> Hello Alarig,
>
> this was indeed a problem (and there was some more to fix) and if
> I haven't missed anything (but it now looks OK f
med metric on;
#deterministic med on;
On Mon 30 Dec 2024 22:35:02 GMT, Alarig Le Lay wrote:
> Hello David,
>
> Here is the coredump:
> https://herbizarre.swordarmor.fr/garbage/core-bird.29074.rr3.swordarmor.fr.1735592879
> And here is the config:
> https://herbizarre.sw
ate to ask me if you need anything else.
Happy new year to you too!
Alarig
On Mon 30 Dec 2024 16:49:41 GMT, David Petera wrote:
> Hello Alarig,
>
> thanks for reporting!
>
> The coredump and config would be much appreciated, so I can try to
> reproduce it.
> Also would you
0f 85 e3 8c f6 ff 48 8b 90 b0 01 00 00 8b 8a 10 01
00 00 89 4c 24 24 85 c9 0f 84 d6 00 00 00 4d 85 ff 0f 84 e0 00 00 00 <41> 0f b6
44 24 08 89 c2 83 e2 01 4d 85 ed 75 15 83 c8 01 41 88 44
I can generate a coredump and share my configuration if needed.
Alarig
On Thu 19 Dec 2024 16:14:
?
>
>
> Also it is funny that Routinator answered with:
> 'only versions 0 up to and including MAX_VERSION supported'
> without stating what is the MAX_VERSION.
You tell me, that’s not a very useful error message :p
--
Alarig
at; };
remote "rr3.swordarmor.fr";
min version 2;
max version 2;
disabled;
}
--
Alarig
(IP): ::
Backup designated router (ID): 0.0.0.0
Backup designated router (IP): ::
edge03-stolon ~ #
Is it really something that is really wanted? Adding a useless link-local just
to have my loopback into my IGP sounds a bit odd to me.
Thanks a lot for the trick!
--
Alarig
Backup designated router (ID): 0.0.0.0
Backup designated router (IP): 0.0.0.0
It looks like a bug to me, but perhaps I missed something.
--
Alarig
8-clouvider bird: Netlink: File exists
Apr 21 11:29:12 edge08-clouvider bird: Netlink: File exists
Apr 21 11:29:12 edge08-clouvider bird: ...
Apr 21 11:29:13 edge08-clouvider bird: I/O loop cycle took 6705.334 ms for 4
events
Apr 21 11:29:13 edge08-clouvider bird: Kernel dropped some netlink messages,
will resync on next scan.
Regards,
--
Alarig
use_vmac
vmac_xmit_base
notify /usr/local/bin/keepalivednotify.sh
virtual_ipaddress {
FE80:0:0:0:204:92:100:1/128
}
}
--
Alarig
On Thu 24 Mar 2022 07:43:03 GMT, Douglas Fischer wrote:
> I know that it is not the focus of your question, and also is not the focus
> on this mail list, but...
>
> To that kind of automation, the best BGP engine you will find is ExaBGP. It
> is not focuses in been in compliance with all the conc
Hello,
Thanks for giving me the original patch! I backported it along with some
of the following commits to 2.0.8 and it seems to work too.
The whole diff is
https://git.grifon.fr/alarig/SwordArMor-gentoo-overlay/src/branch/master/net-misc/bird/files/bird-2.0.8-linux-netlink-filters.patch
I
stable. Before, the logs were
flooded within an hour.
On Fri 24 Sep 2021 23:29:25 GMT, Alarig Le Lay wrote:
> Hello,
>
> Now that the IPv6 bug is supposed to be resolved since 5.8, I tried to
> upgrade a router from 4.14 to 5.10
>
> Bird starts, however while inserting routes t
Hello,
I tried the snapshot of 2.0.9 (git hash
71c9484b00b4428ae6c7d7c8eea6d96073683a54) and I don’t have any netlink
error messages on 5.x anymore. The exact version is 5.15.23-gentoo.
On Sat 10 Oct 2020 15:32:58 GMT, Sasha Romijn wrote:
> Hello,
>
> I narrowed it down to being introduced in 5.
rd.network.cz/?get_doc&v=20&f=bird-6.html#direct-check-link
Ah yes, indeed, the route has now disappeared, thanks!
May I ask why it’s not enabled by default? I don’t see why one would to
announce an down link without an explicit configuration for it.
Regards,
--
Alarig
Hello Ondrej,
On Mon 18 Oct 2021 17:39:44 GMT, Ondrej Zajicek wrote:
> On Mon, Oct 11, 2021 at 01:20:52PM +0200, Alarig Le Lay wrote:
> > Hi,
> >
> > On one router I have an interface that used to be connected to another
> > machine, so the state is NO-CARRIER:
>
e rather than keeping it into OSPF.
Regards,
--
Alarig Le Lay
,
--
Alarig Le Lay
Hi,
Just FYI, I pushed it to the gentoo tree:
https://github.com/gentoo/gentoo/pull/20196
Alarig
On Wed 24 Mar 2021 07:03:57 GMT, Skyler Mäntysaari wrote:
> Hi,
>
> Who is responsible for the Debian packages at the moment?
> I couldn't find the build scripts for those at
Thanks a lot for the new release!
I’ve upgraded a RR and a router, the build and the restart didn’t hit
any issue so far.
Cheers,
--
Alarig
.
The router has an uptime 147 days, so bird was pretty close to that. I’m
running a 4.14.x kernel.
Regards,
--
Alarig Le Lay
memory release algorithms, anyway all of
> this magic is mostly just a cargo cult.
>
> Maria
>
> On 1/25/21 8:08 AM, Alarig Le Lay wrote:
> > Hi,
> >
> > On one of my routers, I needed to free some RAM temporally, so I shut
> > all my BGP sessions. Wi
s:399 MB
Route attributes: 528 MB
Protocols: 102 MB
Total:1029 MB
Perhaps bird thinks that some RAM has been freed while it’s not actually
the case?
--
Alarig
I wrongly pasted your errors, but 78.150.32.0/20 and 78.150.44.0/22 are
the correct ones.
--
Alarig
abiano
I don’t know how you endded up to this data, but the /20 should be
78.150.40.0/20 and the /22 78.150.45.0/22. Also 64513 is a private ASN,
so announcing public space from a private ASN will be invalid, whatever
you try to do.
--
Alarig
re-sent to the kernel if I remove the "import all".
Regards,
--
Alarig
ock;
import filter {
[…]
}
Regards,
--
Alarig
it known that for the ipv6 the RPKI
> channeling is not compatible, you guys?
>
> Thanks a lot in advance!
>
> Cheers!
> Irene
You may have hit the same bug as me, this commit fixed it.
https://gitlab.labs.nic.cz/labs/bird/-/commit/4e23b499696da81acf0ed5ad181573b94ccdb9a3
Regards,
--
Alarig Le Lay
nks also for the advices on the configuration. It dates from some
times ago now and has endured many modifications ;)
Kind regards,
--
Alarig Le Lay
mmunity from the
filters, but we do not receive it on the other side (tried with another
BIRD too).
Is it an expected behaviour or am I missing something obvious there?
Thanks,
--
Alarig Le Lay
On Fri 01 May 2020 21:12:10 GMT, Ondrej Zajicek wrote:
> On Fri, May 01, 2020 at 07:46:54PM +0200, Alarig Le Lay wrote:
> > Hi,
> >
> > It’s the first time I try to do such a configuration, but I can’t find
> > the right syntax.
> >
> > route 2a00:5884
syntax error, unexpected INTERFACE
route 2a00:5884:105::/48 via fe80::ae1f:6bff:fead:2ed8 "enp3s0f1.30"
→ syntax error, unexpected TEXT
And https://bird.network.cz/?get_doc&v=20&f=bird-6.html#ss6.14 only
shows examples about IPv4.
What is the correct syntax?
Thanks,
--
Alarig Le Lay
it and it works, thank you very much :)
--
Alarig
ce prefix, protocol,
ports, etc. This NLRI is treated as an opaque bit string prefix by
BGP. Each bit string identifies a key to a database entry with which
a set of attributes can be associated.
As it’s “may”, I would say that it’s not mendatory. The sessions toward
ASR9K routers accept the annoucement.
Regards,
--
Alarig
want to check ROA against another ASN in the
aggregated path.
--
Alarig
network, so it might be a
kernel bug and not a bird one. But on the other hand, I was clearly
seeing the bird process using a whole CPU core with htop.
I can share my .conf for each kernel if it’s helpful.
Regards,
--
Alarig
Hi,
Here `net.ipv6.route.gc_thresh = -1` seems to be sufficent.
Thanks for the idea!
Alarig
On lun. 16 mars 22:10:28 2020, Clément Guivy wrote:
> Thanks.
>
> I found a solution which seems to be working so far, with regular Debian
> 4.19 kernel, on my 2 edge routers.
>
> I
resolved it by setting a MTU of 1514 on my side (which should have
been since always).
Also, note that I’m not directly connected to the IXP, I’m using a
reseller.
Regards,
--
Alarig
It worked, thanks a lot!
Alarig
On mar. 18 févr. 14:59:23 2020, Daniel Suchy wrote:
> try this: $ apt-key adv --keyserver ha.pool.sks-keyservers.net
> --recv-keys B188E2B695BD4743
>
> More informations are here -
> https://www.patreon.com/posts/dpa-new-signing-25451165
>
&g
efore
disabled by default.
N: See apt-secure(8) manpage for repository creation and user configuration
details.
Did you changed you key?
--
Alarig
On mar. 11 févr. 18:27:43 2020, Joakim Tjernlund wrote:
> On Tue, 2020-02-11 at 18:18 +0100, Alarig Le Lay wrote:
> > CAUTION: This email originated from outside of the organization. Do
> > not click links or open attachments unless you recognize the sender
> > and kno
valid_lft forever preferred_lft forever
Don’t put fe80 addresses by hand and definitely not with /128, let your
kernel handles this.
--
Alarig
0 17884
Import withdraws:0 0--- 0 0
Export updates: 0 0 0--- 0
Export withdraws:0--------- 0
--
Alarig
rotocol only established when I put the IP address directly.
Plus, not having the brackets over the literal IPv6 address is a bit
confusing. The IP isn’t 2a0e:f42::1:323.
Regards,
--
Alarig
ric 65535
router 45.91.126.254
distance 0
network 45.91.126.232/29 metric 10
xnetwork 10.0.4.0/31 metric 10
xnetwork 45.91.126.96/31 metric 10
xrouter 10.0.4.0 metric 10
xrouter 45.91.126.96 metric 10
--More--
--
Alarig
very complex, but every interface in area 0 (on a
soft router you will have more than enough CPU for this) and you’re
done. This way, you will not have to deal with stubby and not-so-stubby
areas.
--
Alarig
iBGP ones if
the routes are equals. https://tools.ietf.org/html/rfc1771#section-9.1
BTW, using classical iBGP, RRs and an IGP will solve many of this kind
of problems.
--
Alarig
15
> 16 protocol static {
> 17 route 2a0f:85c0:920::/48 reject;
> 18 }
> 19
> 20 protocol device {
> 21 scan time 10;
> 22 }
You have to add this before 'route blah reject':
ipv6 {
import all;
};
PS: I suggest you to add more filters, feel free to ping if you want
some inputs
Regards,
--
Alarig
9 7:05:49 PM GMT+01:00, Alarig Le Lay
> wrote:
>>On 03/12/2019 14:16, Vincent Bernat wrote:
>>> The information needs to be stored somewhere.
>>
>>Why has it to be stored? It’s not really my problem if someone else
>has
>>a non-stantard MTU and can’t do TCP-MSS or
On 03/12/2019 14:16, Vincent Bernat wrote:
> The information needs to be stored somewhere.
Why has it to be stored? It’s not really my problem if someone else has
a non-stantard MTU and can’t do TCP-MSS or PMTUd.
--
Alarig
On 03/12/2019 11:58, Vincent Bernat wrote:
> It's not unexpected. A cache entry is for a /128.
When I’m routing 80k prefixes I don’t want to have n /128 routes because
someone doesn’t have 1500 of MTU. Is their a way to disable this behaviour?
--
Alarig
c/net/rt6_stats; sleep 120; done
0 ()
1 (0001)
1 (0001)
regis ~ # ip -6 r | wc -l
77538
regis ~ # uname -a
Linux regis.swordarmor.fr 4.14.83-gentoo #2 SMP Sat Feb 2 16:50:41 CET
2019 x86_64 Intel(R) Xeon(R) CPU X3450 @ 2.67GHz GenuineIn
h `/proc/net/rt6_stats`.
core01-arendal ~ # cat /proc/net/rt6_stats
0048 002c 5e56 0050 0056 0020
It is supposed to be understandable? :D
--
Alarig
and net.ipv6.route.gc_thresh.
Do you know what are the risks when we raise those parameters? A bit
more RAM consumption?
Regards,
--
Alarig
On sam. 30 nov. 23:50:48 2019, Alarig Le Lay wrote:
> We are using “Intel Corporation 82576 Gigabit Network Connection” NICs.
And “Broadcom Limited NetXtreme II BCM5709 Gigabit Ethernet”, sorry I
forgot this box.
--
Alarig
rk Connection” NICs.
--
Alarig
I saw it in production with ~20 VMs, but I don’t know how much is needed
to trigger it.
On sam. 30 nov. 11:43:29 2019, Stefan Jakob wrote:
> Can anyone provide test configs?
>
> Is it testable inside two or three VMs?
>
> Could offer 5.3.X tests here.
>
> On Sat, Nov 23, 2
On jeu. 21 nov. 18:12:17 2019, Ondrej Zajicek wrote:
> Perhaps try kernel 5.2.x or 5.3.x from buster-backports?
I’m very interested by test results from newer kernels than 5.0.x
--
Alarig
this?
>>
>> Thanks
>
> The problem still exists. We are still running on kernel 4.14.x. I had
> no time to do any further debugging.
>
> Regards,
> Benedikt
>
>
I also had the problem with 5.x on proxmox 6. But I didn’t begin my
debugging either, E_NOTIME…
--
Alarig
Hi,
On 18/11/2019 16:04, Ondrej Zajicek wrote:
> On Wed, Nov 13, 2019 at 06:38:09PM +0100, Alarig Le Lay wrote:
>> Hi,
>>
>> bird> show route all 0.0.0.0/0
>> Table master4:
>> 0.0.0.0/0unicast [ospf_ipv4 12:15:31.798] I (150/30)
>> [89.2
the cost on the link as it’s the same L2 viewed from the
core router.
Is there a simple mean to achieve this or is it a better idea to switch
to BGP?
Thanks,
--
Alarig
n also use 'show route all export' to view the communities and
other attributes.
Regards,
--
Alarig
Hi Christoph,
On 04/10/2019 23:45, Christoph wrote:
> Hi Alarig,
>
> while searching a munin plugin for BIRD 2 I stumbled on your
> previous thread on this mailing list:
>
> https://bird.network.cz/pipermail/bird-users/2018-November/012894.html
>
> as you probably know
on Linux
either.
--
Alarig
Hi Ondrej,
On 30/09/2019 01:52, Ondrej Zajicek wrote:
> On Sun, Sep 29, 2019 at 08:49:57PM +0200, Alarig Le Lay wrote:
>> Hello,
>>
>> It seems that bird can’t resolve the next-hop in that case. But there is
>> no issue when the next-hop is announced by OSPF.
>
&g
via "bgp 204092", distance 200, metric 150, type internal
Last update from 89.234.186.40 01:13:29 ago
Routing Descriptor Blocks:
* 89.234.186.40, from 89.234.186.40, 01:13:29 ago
Route metric is 150, traffic share count is 1
AS Hops 0
MPLS label: none
Am I missing something?
Regards,
--
Alarig
03:94e0:feff::
Table master6:
2a03:94e0:feff::/128 unicast [static_terrahost_ipv6 2019-09-12] * (200)
via 2a03:94e0:17ff::1 on eno1
Type: static univ
--
Alarig
TREAM_IPv6 {
258 description "terrahost";
259 neighbor 2a03:94e0:feff:: as 203629;
260 multihop 3;
261
262 ipv6 {
263 import filter bgp_filter_terrahost_in_ipv6;
264 };
265 }
Regards,
--
Alarig
P peerings on this router and then it forwarded to another router
> learned via OSPF for IPv6 without issues.
>
> Has anyone seen such a behaviour?
I’ve seen this with 4.19 on gentoo. For now I’m still running 4.14.
https://archives.gentoo.org/gentoo-user/message/fab628cc53e4a55589410f9dff6abd23
--
Alarig
Hi,
Why do you want to prepend with an ASN that’s not yours?
--
Alarig
Hello,
It’s a bug, see the archives (or the commits), it’s already patched in
master ;)
--
Alarig
or Ubuntu, using the package sources currently on Salsa. I am
> already doing such a thing for HAProxy (see haproxy.debian.net) and it
> doesn't take much time.
I’m also interested by bird2 packages for debian.
--
Alarig
gt; AFAIK autoconf in Debian Stable (and newer) is OK.
I used 2.69, it’s the last in the Gentoo tree.
--
Alarig
he C compiler works... yes
[…]
--
Alarig
/bird.network.cz/debian stretch/main amd64 Packages
100 /var/lib/dpkg/status
1.6.3-2 500
500 http://mirror.grifon.fr/debian stretch/main amd64 Packages
So, what’s the best way to get bird2 on debian without compiling it on
each server?
Thanks,
--
Alarig
Hi Ondrej,
>From which URL can I fetch the code at this commit?
The “download” link on
https://gitlab.labs.nic.cz/labs/bird/commit/6e8fb66859a17b295cd9246264221a75cdbe6c55
is disabled.
--
Alarig
Hi Ondrej,
On mar. 29 janv. 19:08:12 2019, Ondrej Zajicek wrote:
> On Tue, Jan 29, 2019 at 05:27:27PM +0100, Alarig Le Lay wrote:
> > Hi,
> >
> > Just FYI, I had the same issue with a BGP session today:
>
> BTW, it is possible that it is triggered by change/reconfig
ort updates: 146559 8 146531--- 20
Export withdraws:3--------- 0
--
Alarig
tes for 737544 networks in table master4
bird> show route count protocol ospf_ipv6
19 of 239272 routes for 63565 networks in table master6
bird> show route count export ospf_ipv4
9 of 2461477 routes for 737544 networks in table master4
bird> show route count export ospf_ipv6
10 of 239279 routes for 63564 networks in table master6
--
Alarig
birdc 'show route count table master6'
BIRD 2.0.3 ready.
239266 of 239266 routes for 63527 networks in table master6
I already tried to restart the protocols, but it doesn’t change
anything.
Any idea?
Thanks,
--
Alarig
Hi,
Why are you doing iBGP between your RS in an IXP context?
--
Alarig
Hi,
With bird1, I can know how much routes are used for each protocol just
by parsing birdc:
[alarig@nominoe ~]$ birdc show protocols all bgp_breizhix | grep 'Routes:'
Routes: 75 imported, 0 filtered, 4 exported, 73 preferred
With bird2, I don’t see this information:
[al
hen added
IPv6 channel and reconfigured. I don’t have any IPv4 on this node.
--
Alarig
bird>
Thanks a lot :)
(but strange behavior BTW)
--
Alarig
efault route.
> > I don’t see anything in the documentation to force a channel to be up.
> > What am I missing?
>
> It should be UP by default when a protocol is enabled.
The protocol is up, but not the channel is not.
--
Alarig
018-08-18] * (100)
[AS112i]
I just displayed one route in my example, but it’s the same for the others.
--
Alarig
c 3 pref medium
I don’t see anything in the documentation to force a channel to be up.
What am I missing?
Cheers,
--
Alarig
he route server.
>
>
> https://github.com/pierky/arouteserver/blob/master/examples/bird_hooks/bird4.conf
I set up a routes server some times ago, my configuration is explained
here:
https://www.swordarmor.fr/comment-monter-un-point-dechange-partie-technique-un-serveur-de-routes-avec-bird.html
--
Alarig Le Lay
pport-for-dual-as-configuration-for-network-as-migrations.html?
>
> I know it can be achieved by functions, but maybe there is already
> simplier way to get this done.
Hi,
You can choose the local AS on each BGP protocol instance, is it
sufficient?
--
alarig
signature.asc
Description: PGP signature
lob/017da76b729cc36c4a3416995b06386235660f42/filter/filter.c#L1561
Is it possible to release 1.6.4 or something like that in order to ask
the FreeBSD maintainer to update the package and fix the bug by the way?
Regards,
--
alarig
signature.asc
Description: PGP signature
# Export to the kernel.
export all;
preference 110;
}
As I’m not importing any route from it, is it possible (or a good idea)
to completely disable this scan with 'scan interval' or to put a very
huge parameter?
--
alarig
signature.asc
Description: PGP signature
l receiving it via iBGP during this time) but it
didn’t change anything.
Also, I don’t see the router droping packet nor routes; I just see the
message in the logs.
What can I do to avoid it? (other than increasing the timeout)
Thanks,
--
alarig
signature.asc
Description: PGP signature
.31: MASTER -> BACKUP (more frequent
advertisement received)
And, a each time the status change, the routes on the device protocol
are reinitialised (the timestamp on 'show route' changes)
For now, I forced nominoe to be the master and the session is stable
again.
Is it a known behavi
CONFIG_NF_CT_NETLINK=y
# CONFIG_NF_CT_NETLINK_TIMEOUT is not set
# CONFIG_NETFILTER_NETLINK_GLUE_CT is not set
# CONFIG_NETLINK_DIAG is not set
# CONFIG_SCSI_NETLINK is not set
--
alarig
signature.asc
Description: PGP signature
igured the same maner at the edge side:
template bgp DOWNSTREAM {
export all;
import keep filtered;
}
protocol bgp bgp_alarig from DOWNSTREAM {
local as 204092;
description "BGP for alarig";
neighbor 89.234.186.100 as 65000;
import keep filt
er doesn’t have any communities you can’t deal with it;
you will be announced on all its upstreams.
And please, do IPv6 too, we’re in 2017 ;)
--
alarig
signature.asc
Description: PGP signature
this range were silently
> ignored.
Hi,
Because this range is not aimed to be routed or added to any host, cf.
https://tools.ietf.org/html/rfc1112 section 4.
You need to be part of a multicast group to use those addresses, as said
in https://en.wikipedia.org/wiki/IP_multicast#Routing
(100)
[AS206155i]
Type: BGP unicast univ
BGP.origin: IGP
BGP.as_path: 204092 206155
BGP.next_hop: 2a06:e040:3501:101:2::2
BGP.local_pref: 200
BGP.large_community: (206155, 200, 0)
--
alarig
signature.asc
Description: PGP signature
lazy, but
the comments inside the script are in english, so feel free to share an
modify it :)
--
alarig
signature.asc
Description: PGP signature
1 - 100 of 105 matches
Mail list logo
