Subject: Re: OpenBGPD via (WG?) Tunnel Not Learning Routes
On Wed, Jul 13, 2022 at 11:01:09AM -, Stuart Henderson wrote:
> On 2022-07-13, Tobias Fiebig wrote:
> > Heho,
> >
> > When doing what i described in my message, I get the below messages.
> >
> > When I se
On Wed, Jul 13, 2022 at 11:01:09AM -, Stuart Henderson wrote:
> On 2022-07-13, Tobias Fiebig wrote:
> > Heho,
> >
> > When doing what i described in my message, I get the below messages.
> >
> > When I set static routes, packet forwarding works fine, i.e.:
> >
> > gw02.dus01.as59645.net ~ # ro
Heho,
As mentioned, I gave it a shot with eoip, and that worked as intended. What I
noticed though, is that wg0 seems to stick around in bgpd, even after an
ifconfig wg0 destroy; I fixed this by using another ip range for transfer and
rebooting the downstream to make sure; In any case, with an
On 2022-07-13, Tobias Fiebig wrote:
> Heho,
>
> When doing what i described in my message, I get the below messages.
>
> When I set static routes, packet forwarding works fine, i.e.:
>
> gw02.dus01.as59645.net ~ # route add -inet6 2a06:d1c2::/48
> 2a06:d1c0::dead:beef:c02
> add net 2a06:d1c2::/4
1 connected wg0
(UP, unknown)
-Original Message-
From: owner-m...@openbsd.org On Behalf Of Stuart
Henderson
Sent: Wednesday, 13 July 2022 08:14
To: misc@openbsd.org
Subject: Re: OpenBGPD via (WG?) Tunnel Not Learning Routes
On 2022-07-13, Tobias Fiebig wrote:
> Heho,
>
On 2022-07-13, Tobias Fiebig wrote:
> Heho,
> I am running OpenBGPd (on 7.1+binpatches), and have some tunnel links between
> hosts and up/downstreams over wg tunnels.
>
> I am basically wondering whether the behavior is known/normal and/or happened
> to others, or if it is w
valid..
I hope this helps,
Tom Smyth
On Wed, 13 Jul 2022 at 02:38, Tobias Fiebig <
tob...@reads-this-mailinglist.com> wrote:
> Heho,
> I am running OpenBGPd (on 7.1+binpatches), and have some tunnel links
> between hosts and up/downstreams over wg tunnels.
>
> I am basically
Heho,
I am running OpenBGPd (on 7.1+binpatches), and have some tunnel links between
hosts and up/downstreams over wg tunnels.
I am basically wondering whether the behavior is known/normal and/or happened
to others, or if it is worth it to setup a test-setup to properly debug the
issue/document
Le 04/04/2022 à 15:43, Claudio Jeker a écrit :
You should really use as-set for this:
as-set ru-set { 2148 2585 2587 ... }
And also not match any (at least I think you don't really want that to
match on ibgp sessions):
match from ebgp AS as-set ru-set set { localpref 250 nexthop blackhole }
Le 04/04/2022 à 15:43, Claudio Jeker a écrit :
On Tue, Mar 29, 2022 at 09:53:56AM +0200, Laurent CARON wrote:
Hi,
I'm happily running several OpenBGPd routers (Openbsd 7.0).
After having applied the folloxing filters (to blackhole traffic from
certain countries):
include "/etc
On Tue, Mar 29, 2022 at 09:53:56AM +0200, Laurent CARON wrote:
> Hi,
>
> I'm happily running several OpenBGPd routers (Openbsd 7.0).
>
> After having applied the folloxing filters (to blackhole traffic from
> certain countries):
>
> include "/etc/bgpd/deny-asn.
On Mon, Apr 04, 2022 at 03:14:35PM +0200, Laurent CARON wrote:
>
> Le 01/04/2022 à 14:38, Claudio Jeker a écrit :
> >
> > The numbers look reasonable with maybe the exception of prefix and BGP
> > path attrs. Unless this system is pushing or pulling lots of full feeds to
> > peers I would not exp
Le 01/04/2022 à 14:38, Claudio Jeker a écrit :
The numbers look reasonable with maybe the exception of prefix and BGP
path attrs. Unless this system is pushing or pulling lots of full feeds to
peers I would not expect such a high number of prefixes. Also the number
of path attributes is high b
Le 29/03/2022 à 14:50, Stuart Henderson a écrit :
Also: check the values for bgpd's login class (as root, "su -c bgpd -"
then "ulimit -a"), and are you starting bgpd from the rc-script or by hand?
Hi Stuart,
# ulimit -a
time(cpu-seconds) unlimited
file(blocks) unlimited
coredum
On Thu, Mar 31, 2022 at 09:06:05PM +0200, Laurent CARON wrote:
> Le 29/03/2022 à 12:10, Claudio Jeker a écrit :
> > I doubt it is the filters. You run into some sort of memory leak. Please
> > monitor 'bgpctl show rib mem' output. Also check ps aux | grep bgpd output
> > to see why and when the mem
Le 29/03/2022 à 12:10, Claudio Jeker a écrit :
I doubt it is the filters. You run into some sort of memory leak. Please
monitor 'bgpctl show rib mem' output. Also check ps aux | grep bgpd output
to see why and when the memory starts to go up.
With that information it may be possible to figure out
Le 29/03/2022 à 12:10, Claudio Jeker a écrit :
I doubt it is the filters. You run into some sort of memory leak. Please
monitor 'bgpctl show rib mem' output. Also check ps aux | grep bgpd output
to see why and when the memory starts to go up.
With that information it may be possible to figure out
On 2022-03-29, Claudio Jeker wrote:
> On Tue, Mar 29, 2022 at 09:53:56AM +0200, Laurent CARON wrote:
>> Hi,
>>
>> I'm happily running several OpenBGPd routers (Openbsd 7.0).
>>
>> After having applied the folloxing filters (to blackhole traffic from
>&
On Tue, Mar 29, 2022 at 09:53:56AM +0200, Laurent CARON wrote:
> Hi,
>
> I'm happily running several OpenBGPd routers (Openbsd 7.0).
>
> After having applied the folloxing filters (to blackhole traffic from
> certain countries):
>
> include "/etc/bgpd/deny-asn.
Hi,
I'm happily running several OpenBGPd routers (Openbsd 7.0).
After having applied the folloxing filters (to blackhole traffic from
certain countries):
include "/etc/bgpd/deny-asn.ru.bgpd"
include "/etc/bgpd/deny-asn.by.bgpd"
include "/etc/bgpd/deny-asn.ua
Hello Stuart,
I see not that I have not been entirely clear on my setup.
Traditionally I used carp on both upstream interfaces (to have a common
nexthop address in BGP routing) and also on my downstream interfaces (to
have a floating default gateway for my hosts). As it stands now I cannot
use a
On 2021-06-11, open...@kene.nu wrote:
> Hello Stuart,
>
> I do set the carp address as nexthop. This works in a "traditional" L2
> environment as expected. However, to make a long story short, in a vxlan
> environment L2 redundancy protocols like carp that rely on gARP do not work
> as expected.
>
t would pose as my intent or is it actually already
> > possible to achieve this?
>
> It's not yet implemented.
>
> I didn't quite work out from your description what you'd like openbgpd
> to do, but are you aware that you don't have to distribute a route which
>
this?
It's not yet implemented.
I didn't quite work out from your description what you'd like openbgpd
to do, but are you aware that you don't have to distribute a route which
points at "this router's IP address"? Some situations involving carp
routes can b
plementing a few DCs that
>> > use vxlan symmetric routing and hence, layer2 redundancy protocols like
>> > CARP (and VRRP/HSRP) do not work as intended due to evpn layer2 being
>> the
>> > technology of choice to announce ARP entries.
>> >
>> &g
few DCs that
> > use vxlan symmetric routing and hence, layer2 redundancy protocols like
> > CARP (and VRRP/HSRP) do not work as intended due to evpn layer2 being the
> > technology of choice to announce ARP entries.
> >
> > This led me to try out the "depend on car
pn layer2 being the
> technology of choice to announce ARP entries.
>
> This led me to try out the "depend on carp" functionality that is available
> on openbgpd. It does what I want, partially. It would be much more usable
> if you cold define what this functionali
the "depend on carp" functionality that is available
on openbgpd. It does what I want, partially. It would be much more usable
if you cold define what this functionality does in case of a CARP backup
state. Currently it puts the bgp neighbor into Idle state. However, it
would be better if
On 2020-09-23, Alex Naumov wrote:
> Hi,
> there is a typo on the ftp.html page.
> OpenBGPD 6.7p0 was released in 2020, not 2019.
>
> Cheers,
> Alex
>
Thanks, fixed.
Hi,
there is a typo on the ftp.html page.
OpenBGPD 6.7p0 was released in 2020, not 2019.
Cheers,
Alex
Le 30/06/2020 à 11:56, Claudio Jeker a écrit :
Can you check and monitor with ps aux | grep bgpd and or top the VSZ and
RSS of the RDE process. What is the maximum you notice. Also how do you
start bgpd? Make sure the limits from login.conf are actually applied
(using rcctl start should do that w
On Tue, Jun 30, 2020 at 10:23:07AM +0200, Laurent CARON wrote:
> Hi,
>
>
> I'm running a pretty busy OpenBGPd router (~250 bgp sessions) with 4 IPv4
> and 4 IPv6 full views, plus a few IX sessions.
>
>
> # bgpctl show rib mem
> RDE memory statistics
>
Hi,
I'm running a pretty busy OpenBGPd router (~250 bgp sessions) with 4
IPv4 and 4 IPv6 full views, plus a few IX sessions.
# bgpctl show rib mem
RDE memory statistics
820983 IPv4 unicast network entries using 31.3M of memory
203228 IPv6 unicast network entries using 10.
e says it would be wrong to add 0.0.0.0/0 network
> > (although if memory serves me correctly previous versions of OpenBGPd
> > would politely decline to do that :) and filter the crap out of that
> > for upstream Transit and Peers (non Customers ) ...
> >
>
> Adding to ne
to migrate from default
> routing to full table without contacting me ...
>
> something inside me says it would be wrong to add 0.0.0.0/0 network
> (although if memory serves me correctly previous versions of OpenBGPd
> would politely decline to do that :) and filter the crap out of t
says it would be wrong to add 0.0.0.0/0 network
(although if memory serves me correctly previous versions of OpenBGPd
would politely decline to do that :) and filter the crap out of that
for upstream Transit and Peers (non Customers ) ...
--
Kindest regards,
Tom Smyth.
> Sent: Monday, July 15, 2019 at 11:52 PM
> From: "Claudio Jeker"
> To: "BSD user"
> Cc: misc@openbsd.org
> Subject: Re: Moving from Bird to OpenBGPD
>
> On Mon, Jul 15, 2019 at 11:33:45PM -0700, BSD user wrote:
> >
> >
> > On 7/14/1
tanota for
> > > > > use on an international mailing list such as this one. I hope you
> > > > > guys will give me one more chance.
> > > > >
> > > > > My (hopefully) unmangled message is below.
> > > > >
> > > >
> > &
will give me one more chance.
My (hopefully) unmangled message is below.
You did not include which version you are running, I'll assume this is
6.5. It seems you do not have any filter, OpenBGPD denies everything
by default.
Thanks for the reply Denis. You were right, I was missing my a
y rookie mistake choosing Tutanota for
> > > use on an international mailing list such as this one. I hope you
> > > guys will give me one more chance.
> > >
> > > My (hopefully) unmangled message is below.
> > >
> >
> > You did not include
On 7/14/19 12:38 PM, Rudy Baker wrote:
It's sad how hostile this mailing list is that you need to beg forgiveness
for using a different email client because you may have triggered some of
these people. 🙄
I'm not too concerned. I'm grateful for the fact that the OpenBSD
community has high st
rsion you are running, I'll assume this is 6.5.
It seems you do not have any filter, OpenBGPD denies everything by default.
Thanks for the reply Denis. You were right, I was missing my allow
rules. After setting "allow from any AS 64515" and "allow to any" rules,
everythi
Hi Rudy,
Rudy Baker wrote on Sun, Jul 14, 2019 at 03:38:03PM -0400:
> It's sad how hostile this mailing list is
It is true that some people on this list are sometimes hostile
and everybody is indeed invited to refrain from gratuitious attacks, ...
> that you need to beg forgiveness for using a
ernational mailing list such as this one. I hope you guys will
> give me one more chance.
>
> My (hopefully) unmangled message is below.
>
>
> --
>
>
> Hello,
>
>
> I’m having some trouble configuring OpenBGPD to replace my Bird
u did not include which version you are running, I'll assume this is 6.5.
It seems you do not have any filter, OpenBGPD denies everything by default.
>
> --
>
>
> Hello,
>
>
> I’m having some trouble configuring OpenBGPD to replace my B
osing Tutanota for use
on an international mailing list such as this one. I hope you guys will
give me one more chance.
My (hopefully) unmangled message is below.
--
Hello,
I’m having some trouble configuring OpenBGPD to replace my Bird deployment.
I’m tryi
I just realized my email was likely totally mangled as plain text formatting
was not enabled in my tutanota settings. Here's a (hopefully) non-mangled
version.
---
Hello,
I’m having sometrouble configuring OpenBGPD, to replace my Bird deplo
Hello,
I’m having sometrouble configuring OpenBGPD, to replace my Bird deployment.
I’m trying to setup redundant web infrastructure for a few websites I host with
Vultr.To do so, I followed this guide:
https://www.vultr.com/docs/high-availability-on-vultr-with-floating-ip-and-bgp
; >
> > > > > That would unforunately affect all the prefixes announced to the edge
> > > > > router from the internal router. I need it to be only prefixes
> > > > > announced to my peering partners.
> > > > >
> > > >
On 2019-03-31, Remi Locherer wrote:
> On Sun, Mar 31, 2019 at 01:09:06PM +0200, Claudio Jeker wrote:
>> On Fri, Mar 29, 2019 at 08:36:26AM +0100, open...@kene.nu wrote:
>> > I forgot to add to my previous email. One thing that could be useful
>> > in this case is to mimic the Cisco option "neighbo
nounced to my peering partners.
> > > > >
> > > > > /Oscar
> > > > >
> > > > > On Tue, Mar 26, 2019 at 3:50 PM Denis Fondras
> > > > > wrote:
> > > > > >
> > > > > > On Tue,
gt; announced to my peering partners.
> > > >
> > > > /Oscar
> > > >
> > > > On Tue, Mar 26, 2019 at 3:50 PM Denis Fondras
> > > > wrote:
> > > > >
> > > > > On Tue, Mar 26, 2019 at 02:54:38PM +0100, open...
On 2019-03-29, Sebastian Benoit wrote:
> open...@kene.nu(open...@kene.nu) on 2019.03.29 08:36:26 +0100:
>> I forgot to add to my previous email. One thing that could be useful
>> in this case is to mimic the Cisco option "neighbor x.x.x.x
>> remove-private-as" which removes any private ASes from t
open...@kene.nu(open...@kene.nu) on 2019.03.29 08:36:26 +0100:
> I forgot to add to my previous email. One thing that could be useful
> in this case is to mimic the Cisco option "neighbor x.x.x.x
> remove-private-as" which removes any private ASes from the path on any
> updates to a peer. Just thr
uter. I need it to be only prefixes
> > > announced to my peering partners.
> > >
> > > /Oscar
> > >
> > > On Tue, Mar 26, 2019 at 3:50 PM Denis Fondras wrote:
> > > >
> > > > On Tue, Mar 26, 2019 at 02:54:38PM +0100, open...@kene.nu
at 3:50 PM Denis Fondras wrote:
> > >
> > > On Tue, Mar 26, 2019 at 02:54:38PM +0100, open...@kene.nu wrote:
> > > > Hello,
> > > >
> > > > Is there a way to make openbgpd strip private ASNs from updates it
> > > > sends to certain n
ue, Mar 26, 2019 at 3:50 PM Denis Fondras wrote:
> >
> > On Tue, Mar 26, 2019 at 02:54:38PM +0100, open...@kene.nu wrote:
> > > Hello,
> > >
> > > Is there a way to make openbgpd strip private ASNs from updates it
> > > sends to certain neighbors?
&
, open...@kene.nu wrote:
> > Hello,
> >
> > Is there a way to make openbgpd strip private ASNs from updates it
> > sends to certain neighbors?
> > I am using openbgpd on my edge routers and distribute routes generated
> > internally to the rest of the world. However, the
On Tue, Mar 26, 2019 at 02:54:38PM +0100, open...@kene.nu wrote:
> Hello,
>
> Is there a way to make openbgpd strip private ASNs from updates it
> sends to certain neighbors?
> I am using openbgpd on my edge routers and distribute routes generated
> internally to the rest of
Hello,
Is there a way to make openbgpd strip private ASNs from updates it
sends to certain neighbors?
I am using openbgpd on my edge routers and distribute routes generated
internally to the rest of the world. However, the internal routers use
private ASNs and this is obviously frowned upon by my
e
work you just put into OpenBGPD I wanted to put it to the task.
Thanks so much for your help! It is working now:
RR$ bgpctl show ip bgp nei 100.92.127.37 out
flags: * = Valid, > = Selected, I = via IBGP, A = Announced,
S = Stale, E = Error
On Thu, Dec 20, 2018 at 04:52:34PM -0500, Henry Bonath wrote:
> Hello, I am having an issue with some route-reflectors I set up to try
> to support a new MPLS backbone.
> The majority of the MPLS Routers are Cisco IOS, with some of the PE
> devices running OpenBSD.
> The Route Reflectors are OpenBS
Hello, I am having an issue with some route-reflectors I set up to try
to support a new MPLS backbone.
The majority of the MPLS Routers are Cisco IOS, with some of the PE
devices running OpenBSD.
The Route Reflectors are OpenBSD 6.4. The route reflectors are not
neighbors of each other.
Here is my
rking within a datacenter. At this point I'm expecting to
> > condense
> > > > > down to two 10 Gbps full feed IPv4+IPv6 transit links plus a 10
> Gbps
> > > > > link
> > > > > to the peering fabric. Total 95th percentile transit averages in
&
ransit averages in the
> > > > 3-4
> > > > Gbps range with bursts into the 6-7 Gbps (outside of the rare DDoS
> then
> > > > everything just catches on fire until provider mitigation kicks in).
> > > >
> > > > With the exception of the
tty simple requirement.
> > > There's plenty of options to purchase a new TOR device(s) that could
> > > take
> > > the full tables, but I'd just rather not commit the budget for it. Plus
> > > this feels like the perfect time to do what I've wanted for a whi
of options to purchase a new TOR device(s) that could
> > take
> > the full tables, but I'd just rather not commit the budget for it. Plus
> > this feels like the perfect time to do what I've wanted for a while,
> > and
> > deploy an OpenBSD & OpenBGPD edge.
&g
arista) these switches BGP peer directly with the exchange
what is nice about the above setup... is the 2x L3 switches are doing
the heavy lifting
interms of packet forwarding ... but OpenBSD +OpenBGPD are injecting routes
into the two Layer 3 Switches via IBGPso im using openBSD to do
the
could take
the full tables, but I'd just rather not commit the budget for it. Plus
this feels like the perfect time to do what I've wanted for a while, and
deploy an OpenBSD & OpenBGPD edge.
I should probably ask first - am I crazy?
With that out of the way I could either land
Mike Hammett [openbsd-m...@ics-il.net] wrote:
> Why worry about HTTPS? What's to gain?
>
> Job's Twitter is very promising.
>
Aside from getting exploited by the latest OpenSSL bug (ok, LibreSSL has
done a great job lowering this probability!), the other big benefit is
that crappy providers an
org
Sent: Wednesday, November 28, 2018 8:21:42 AM
Subject: OpenBGPD - Adding Diversity to the Route Server Landscape (ripe.net)
Hello,
1) fyi: https://news.ycombinator.com/item?id=18549983
->
https://labs.ripe.net/Members/claudio_jeker/openbgpd-adding-diversity-to-route-server-landscape
Hello,
1) fyi: https://news.ycombinator.com/item?id=18549983
->
https://labs.ripe.net/Members/claudio_jeker/openbgpd-adding-diversity-to-route-server-landscape
2) why the heck isn't there a https://openbgpd.org/ ? why is it only via plain
http? I know httpS is not a holy grail, but
Auto answering myself because the answer was alrady in the mailling
lists :
Just set nexthop=127.0.0.1 on the neighbor, then you can blackhole.
https://misc.openbsd.narkive.com/7jcjKEkQ/openbgpd-match-clause-with-multihop-bgp-session
Le 2018-11-23 16:16, Arnaud BRAND a écrit :
Hi misc
Hi misc@ readers,
I have a question regarding the "set nexthop blackhole" nexthop
qualification in OpenBGPD 6.4 stable.
It looks like I have to add "nexthop qualify via default" in order for
the blackholed route to make it from the rib to the fib.
I understand this i
Hi Stuart, all
please find my responses below,
On Tue, 18 Sep 2018 at 11:14, Stuart Henderson wrote:
>
> On 2018-09-18, Claudio Jeker wrote:
> >
> > I recomend using the default especially against ebgp peers.
>
> MikroTik in particular are known to be bad at keeping up with BGP timers.
>
Yes we h
esources,
>>
>> If you are running approx 60 Peers on one and 30 Peers on another router,
>>
>> Im also running Arista 7050 Switches with BGP sessions to the OpenBGPd
>> Routers.
>>
>> I would really apprecate any one elses real world experience on this
to detect an issue with
> peers that dont support BFD quicker,
> but I dont want to set it to a value that would overly tax the system
> resources,
>
> If you are running approx 60 Peers on one and 30 Peers on another router,
>
> Im also running Arista 7050 Switches w
,
If you are running approx 60 Peers on one and 30 Peers on another router,
Im also running Arista 7050 Switches with BGP sessions to the OpenBGPd Routers.
I would really apprecate any one elses real world experience on this
matter before I go lowering the default values in our production
Thanks for your reply.
>
> If you are configuring a route server, you don't want "route-collector yes".
> Or if you want a route collector, it won't advertise any route so your
> concerns
> are null.
Interesting point. My understanding was that a route server did not make any
best-path decis
On Thu, Aug 30, 2018 at 03:29:50PM +, Bob Smith wrote:
> Hi,
>
> I'm trying to figure out the most suitable config params transform OpenBGPD
> into a route server.
>
> So far I have :
> route-collector yes
If you are configuring a route server, you don't wa
Hi,
I'm trying to figure out the most suitable config params transform OpenBGPD
into a route server.
So far I have :
route-collector yes
transparent-as yes
But my concern is more in the area of suitable filters to prevent loops.
I'm thinking I need something along the lines of :
al
On Thu, Aug 23, 2018 at 10:05:30AM +0200, Pietro Stäheli wrote:
> Hi,
>
> openBGPd is running at an internet exchange, two openBSD route servers
> (rs3 on openBSD 6.3 and rs4 on openBSD 6.2, both virtual machines on
> different hypervisors in different locations) connect with peer
Hi,
openBGPd is running at an internet exchange, two openBSD route servers
(rs3 on openBSD 6.3 and rs4 on openBSD 6.2, both virtual machines on
different hypervisors in different locations) connect with peering
customers.
We've experienced crashes in openBGPd twice in the past two weeks.
Hello,
as read here http://www.openbgpd.org/users.html, here is our testimonial
of OpenBGPd users.
Aquilenet (www.aquilenet.fr) member of the FFDN (www.ffdn.org), France
Aquilenet is a non profit organisation and a "do it yourself ISP",
member of a Federation of similar ISP in Fra
Mike Hammett(openbsd-m...@ics-il.net) on 2018.03.26 10:34:24 -0500:
> Did the config for openbgpd change from 5 to 6? I copied a config file
Yes.
> over and it complains about a line I have, `softreconfig in yes`. It
> doesn't show in https://man.openbsd.org/bgpd.co
Did the config for openbgpd change from 5 to 6? I copied a config file over and
it complains about a line I have, `softreconfig in yes`. It doesn't show in
https://man.openbsd.org/bgpd.conf but https://man.openbsd.org/bgpctl references
it.
-
Mike Hammett
Intelligent Comp
Hello,
I am currently experimenting with OpenBGPD uing OpenBSD VMs on
VirtualBox.
I've noticed that, given interface em1 to which I've assigned address
192.168.1.1/24, if I either execute 'ifconfig em1 down' or virtually
unplug em1 from VirtualBox the following happens:
1
On Wed, Jan 31, 2018 at 11:58:19AM +, Job Snijders wrote:
> On Wed, Jan 31, 2018 at 09:41:55AM +, Stuart Henderson wrote:
> > Question is why the prefixlen is set this way...
> > [snip]
> > Type Code: MP_UNREACH_NLRI (15)
> > Length: 19
> > Address family identifier (AFI): IPv4
On Wed, Jan 31, 2018 at 09:41:55AM +, Stuart Henderson wrote:
> Question is why the prefixlen is set this way...
> [snip]
> Type Code: MP_UNREACH_NLRI (15)
> Length: 19
> Address family identifier (AFI): IPv4 (1)
> Subsequent address family identifier (SAFI): Labeled VPN Unicast
On 2018-01-31, Andrew Thrift wrote:
> Hi,
>
> I am testing OpenBGPD as a route-reflector, with a view to replacing
> our existing route reflectors. I have a test environment where I have
> multiple vendors equipment peered with OpenBGPD to ensure it can
> handle our use-cases.
Hi,
I am testing OpenBGPD as a route-reflector, with a view to replacing
our existing route reflectors. I have a test environment where I have
multiple vendors equipment peered with OpenBGPD to ensure it can
handle our use-cases.
I noticed that our Cisco IOS-XE devices have unstable BGP
2018 3:56 AM, "Andrew Thrift" wrote:
>
> Hi,
>
> I am using OpenBGPD and trying to specify a cluster-id in a route
> reflector setup.
>
>
> Configuration is:
>
> neighbor 43.231.192.241 {
> remote-as 132255
> passive
> route-reflector
> cluster-id 202
Hi Andrew
Try replacing
route-reflector
cluster-id 202.49.106.0
With
route-reflector 202.49.106.0
On 26 Jan 2018 3:56 AM, "Andrew Thrift" wrote:
Hi,
I am using OpenBGPD and trying to specify a cluster-id in a route
reflector setup.
Configuration is:
neighbor 43.231.192.241 {
Hi,
I am using OpenBGPD and trying to specify a cluster-id in a route
reflector setup.
Configuration is:
neighbor 43.231.192.241 {
remote-as 132255
passive
route-reflector
cluster-id 202.49.106.0
announce all
descr "ibgp1"
}
On startup bgpd spits a syntax error on the cluster-id lin
Hello,
is there a way to have OpenBGPD matching more than one BGP community in
a single statement?
I need to perform some actions only when 2 or more communities are
simultaneously attached to a route.
I've tried the following statements but all failed:
# syntax error
match from any comm
The Brothers WISP
- Original Message -
From: "Stuart Henderson"
To: misc@openbsd.org
Sent: Thursday, October 19, 2017 6:19:55 AM
Subject: Re: OpenBGPd Templates for IXP Manager
On 2017-10-16, Mike Hammett wrote:
> Here's a quick summary for those outside of the IX co
On 2017-10-16, Mike Hammett wrote:
> Here's a quick summary for those outside of the IX community.
>
> OpenBGPd used to be the spine of the IX route server community. Once IXes
> like AMS-IX and DE-CIX ran into scaling issues with the number of prefix
> filters, a ton of
Here's a quick summary for those outside of the IX community.
OpenBGPd used to be the spine of the IX route server community. Once IXes like
AMS-IX and DE-CIX ran into scaling issues with the number of prefix filters, a
ton of IXes moved with them over to BIRD. Most IXes will never se
n the same net of clients.
This is what I do (2001:db8:1:1::11 is a generic client address):
match to 2001:db8:1:1::11 community BLACKHOLE set community NO_EXPORT
match to 2001:db8:1:1::11 community BLACKHOLE set nexthop 2001:db8:1:1::66
OpenBGPD seems to like it...
bgpctl -n show rib
1 - 100 of 990 matches
Mail list logo
