![[BACK]](/icons/back.gif){kind=icon}
Up to [local] / src / usr.sbin / bgpd
Request diff between arbitrary revisions
Default branch: MAIN
Revision 1.240 / (download) - annotate - [select for diffs], Wed Apr 24 10:41:34 2024 UTC (6 weeks, 3 days ago) by claudio
Branch: MAIN
CVS Tags: HEAD
Changes since 1.239: +2 -13 lines
Diff to previous 1.239 (colored)
Remove 'announce capabilities' as neighbor config stanza. There is no need to have an easy knob to get outdated or crappy implementations to limp along. Instead the various default on capabilities just need to be disabled (e.g. announce as-4byte no). OK tb@
Revision 1.239 / (download) - annotate - [select for diffs], Tue Apr 9 09:03:18 2024 UTC (2 months ago) by claudio
Branch: MAIN
Changes since 1.238: +29 -10 lines
Diff to previous 1.238 (colored)
Allow operators to enforce the presence of certain capabilities on sessions. For simple capabilities this just adds enforce to the yes/no option of the announce statement. For multi-protocol capabilities and add-path there is an extra keyword. On top of this for add-path the enforcement requires the neighbor to send a matching capability, e.g 'announce add-path recv enforce' requires the other side to send any 'announce add-path send XYZ' capability. This is mainly to enforce as-4byte and extra multi-protocol capabilities. OK denis@ tb@
Revision 1.238 / (download) - annotate - [select for diffs], Mon Mar 18 10:16:50 2024 UTC (2 months, 3 weeks ago) by claudio
Branch: MAIN
Changes since 1.237: +5 -3 lines
Diff to previous 1.237 (colored)
Use same markup for origin-set arguments as for roa-set. The maxlen argument is optional. OK tb@
Revision 1.237 / (download) - annotate - [select for diffs], Fri Oct 13 07:37:35 2023 UTC (7 months, 3 weeks ago) by claudio
Branch: MAIN
CVS Tags: OPENBSD_7_5_BASE,
OPENBSD_7_5
Changes since 1.236: +3 -3 lines
Diff to previous 1.236 (colored)
Add missing Ns in argument list of announce (IPv4|IPv6) ...
Revision 1.236 / (download) - annotate - [select for diffs], Wed Aug 16 08:38:40 2023 UTC (9 months, 3 weeks ago) by job
Branch: MAIN
CVS Tags: OPENBSD_7_4_BASE,
OPENBSD_7_4
Changes since 1.235: +3 -4 lines
Diff to previous 1.235 (colored)
ASPAs are AFI-agnostic OK claudio@
Revision 1.235 / (download) - annotate - [select for diffs], Thu Apr 20 12:44:28 2023 UTC (13 months, 2 weeks ago) by claudio
Branch: MAIN
Changes since 1.234: +125 -10 lines
Diff to previous 1.234 (colored)
Document flowspec in bgpd.conf.5 Input and OK jmc@ tb@
Revision 1.234 / (download) - annotate - [select for diffs], Mon Apr 3 10:48:00 2023 UTC (14 months ago) by claudio
Branch: MAIN
Changes since 1.233: +6 -4 lines
Diff to previous 1.233 (colored)
Add first step of flowspec support. This adds the bits to establish a connection with SAFI 133. Right now any sent UPDATE with SAFI 133 is simply ignored. At the moment SAFI 134 (flowspec for L3VPN) is unsupported. OK tb@
Revision 1.233 / (download) - annotate - [select for diffs], Mon Mar 13 18:31:54 2023 UTC (14 months, 3 weeks ago) by jmc
Branch: MAIN
CVS Tags: OPENBSD_7_3_BASE,
OPENBSD_7_3
Changes since 1.232: +3 -3 lines
Diff to previous 1.232 (colored)
typo fix; ok claudio
Revision 1.232 / (download) - annotate - [select for diffs], Mon Mar 13 16:39:29 2023 UTC (14 months, 3 weeks ago) by claudio
Branch: MAIN
Changes since 1.231: +6 -2 lines
Diff to previous 1.231 (colored)
Try to explain that the neighor role is required to enable both ASPA validation and RFC9234 OTC leak detection and role capability. The role on iBGP peers is forced to 'none' since it makes no sense there. After input from benno@
Revision 1.231 / (download) - annotate - [select for diffs], Thu Mar 2 17:09:53 2023 UTC (15 months, 1 week ago) by jmc
Branch: MAIN
Changes since 1.230: +3 -3 lines
Diff to previous 1.230 (colored)
improve the Nd lines such that the format is consistent for the various *d, *conf, *ctl files (where relevant) and simple; also makes "man -k routing" more useful; help from claudio and florian ok claudio florian millert
Revision 1.230 / (download) - annotate - [select for diffs], Tue Jan 24 14:13:11 2023 UTC (16 months, 2 weeks ago) by claudio
Branch: MAIN
Changes since 1.229: +10 -2 lines
Diff to previous 1.229 (colored)
Implement filter and control message matching for ASAP. This adds avs (ASPA validation state) which can be 'unknown', 'valid' or 'invalid'. It behaves similar to ovs but the ASPA validation state of paths from iBGP sessions is 'unknown' and the role of the ebgp session is important to get the right validation state. OK tb@
Revision 1.229 / (download) - annotate - [select for diffs], Fri Jan 20 15:41:33 2023 UTC (16 months, 2 weeks ago) by claudio
Branch: MAIN
Changes since 1.228: +31 -3 lines
Diff to previous 1.228 (colored)
Document the aspa-set table. While there remove the superfluous 'allow' keyword. OK tb@
Revision 1.228 / (download) - annotate - [select for diffs], Wed Jan 4 14:33:30 2023 UTC (17 months ago) by claudio
Branch: MAIN
Changes since 1.227: +21 -13 lines
Diff to previous 1.227 (colored)
Add a per eBGP session role to the config. This somewhat replaces the RFC 9234 open policy role. This is done because ASPA requires the same role to be present to properly validate paths. For iBGP sessions the role is forced to ROLE_NONE. If no role is set on an ebgp session then 'announce policy' is forced to 'no'. Also make sure the the role capability is only added if the role is set. OK tb@
Revision 1.227 / (download) - annotate - [select for diffs], Thu Dec 22 19:53:24 2022 UTC (17 months, 2 weeks ago) by kn
Branch: MAIN
Changes since 1.226: +3 -3 lines
Diff to previous 1.226 (colored)
Denote multiple arguments with 'arg ...' not 'args' A few programs used the plural in their synopsis which doesn't read as clear as the obvious triple-dot notation. mdoc(7) .Ar defaults to "file ..." if no arguments are given and consistent use of 'arg ...' matches that behaviour. Cleanup a few markups of the same argument so the text keeps reading naturally; omit unhelpful parts like 'if optional arguments are given, they are passed along' for tools like time(1) and timeout(1) that obviously execute commands with whatever arguments where given -- just like doas(1) which doesn't mention arguments in its DESCRIPTION in the first place. For expr(1) the difference between 'expressions' and 'expression ...' is crucial, as arguments must be passed as individual words. Feedback millert jmc schwarze deraadt OK jmc
Revision 1.226 / (download) - annotate - [select for diffs], Thu Jul 21 12:34:19 2022 UTC (22 months, 2 weeks ago) by claudio
Branch: MAIN
CVS Tags: OPENBSD_7_2_BASE,
OPENBSD_7_2
Changes since 1.225: +6 -1 lines
Diff to previous 1.225 (colored)
Relax the config of add-path send and rde evaluate all add-path send is kind of like rde evaluate all (at least if plus is used) and so it kind of implies 'rde evaluate all' in that case. Removing the check in neighbor_consistent() allows to setup sessions so that 'either or' are used. This makes sense since peers may opt out of add-path by disabling the capability on their side. Based on report from Pier Carlo Chiodi OK tb@ cvs: ----------------------------------------------------------------------
Revision 1.225 / (download) - annotate - [select for diffs], Tue Jul 12 17:49:33 2022 UTC (22 months, 4 weeks ago) by tb
Branch: MAIN
Changes since 1.224: +3 -3 lines
Diff to previous 1.224 (colored)
Zap trailing whitespace on one line to appease mandoc -Tlint
Revision 1.224 / (download) - annotate - [select for diffs], Tue Jul 12 17:30:57 2022 UTC (22 months, 4 weeks ago) by claudio
Branch: MAIN
Changes since 1.223: +54 -2 lines
Diff to previous 1.223 (colored)
Document announce add-path send With input from jmc@ and sthen@
Revision 1.223 / (download) - annotate - [select for diffs], Tue Jun 28 11:52:24 2022 UTC (23 months, 1 week ago) by claudio
Branch: MAIN
Changes since 1.222: +26 -2 lines
Diff to previous 1.222 (colored)
Try to document 'announce policy' and add RFC 9234 to the list in bgpd.8 How RFC 9234 support will work in the long run may still change but for now at least tell people how to use it.
Revision 1.222 / (download) - annotate - [select for diffs], Tue Jun 28 04:36:29 2022 UTC (23 months, 1 week ago) by jsg
Branch: MAIN
Changes since 1.221: +2 -2 lines
Diff to previous 1.221 (colored)
spelling
Revision 1.221 / (download) - annotate - [select for diffs], Tue May 31 20:12:24 2022 UTC (2 years ago) by jmc
Branch: MAIN
Changes since 1.220: +3 -3 lines
Diff to previous 1.220 (colored)
fix spacing;
Revision 1.220 / (download) - annotate - [select for diffs], Tue May 31 09:45:33 2022 UTC (2 years ago) by claudio
Branch: MAIN
Changes since 1.219: +15 -2 lines
Diff to previous 1.219 (colored)
Implement a max communities filter match When max-communities X is set on a filterrule the filter will match when more than X communities are present in the path. In other words max-communities 0 means no communities are allowed and max-communities 3 limits it up to 3 communities. There is max-communities, max-ext-communities and max-large-communities for each of the 3 community attributes. These three max checks can be used together. OK tb@ job@
Revision 1.219 / (download) - annotate - [select for diffs], Thu Mar 31 17:27:29 2022 UTC (2 years, 2 months ago) by naddy
Branch: MAIN
CVS Tags: OPENBSD_7_1_BASE,
OPENBSD_7_1
Changes since 1.218: +10 -10 lines
Diff to previous 1.218 (colored)
man pages: add missing commas between subordinate and main clauses jmc@ dislikes a comma before "then" in a conditional, so leave those untouched. ok jmc@
Revision 1.218 / (download) - annotate - [select for diffs], Thu Mar 10 01:45:30 2022 UTC (2 years, 3 months ago) by jsg
Branch: MAIN
Changes since 1.217: +3 -3 lines
Diff to previous 1.217 (colored)
immediatly -> immediately
Revision 1.217 / (download) - annotate - [select for diffs], Wed Feb 23 11:20:35 2022 UTC (2 years, 3 months ago) by claudio
Branch: MAIN
Changes since 1.216: +15 -4 lines
Diff to previous 1.216 (colored)
Make it possible to bind and connect to non-default ports. This is mainly for testing. Using alternate ports does not work for session using ipsec. OK tb@ deraadt@
Revision 1.216 / (download) - annotate - [select for diffs], Tue Feb 22 12:08:22 2022 UTC (2 years, 3 months ago) by job
Branch: MAIN
Changes since 1.215: +23 -5 lines
Diff to previous 1.215 (colored)
Clarify RTR and roa-set sections OK claudio@
Revision 1.215 / (download) - annotate - [select for diffs], Wed Sep 1 15:06:47 2021 UTC (2 years, 9 months ago) by job
Branch: MAIN
CVS Tags: OPENBSD_7_0_BASE,
OPENBSD_7_0
Changes since 1.214: +6 -4 lines
Diff to previous 1.214 (colored)
Clarify maxlen is optional in roa-set OK claudio@
Revision 1.214 / (download) - annotate - [select for diffs], Wed Sep 1 12:39:52 2021 UTC (2 years, 9 months ago) by claudio
Branch: MAIN
Changes since 1.213: +6 -3 lines
Diff to previous 1.213 (colored)
Implement roa-set data expiry. Every prefix in a roa-set can specify an optional expires timestamp. The rtr process is walking the roa-set every 5min and removes every prefix that is expired. With this stale RPKI data will slowly disapear and not linger around. OK job@
Revision 1.213 / (download) - annotate - [select for diffs], Mon Aug 9 08:15:34 2021 UTC (2 years, 10 months ago) by claudio
Branch: MAIN
Changes since 1.212: +13 -2 lines
Diff to previous 1.212 (colored)
Implement reception of multiple paths per BGP session. This is one side of RFC7911 and the send portion will follow. The path-id is extracted from the NLRI encoding an put into struct prefix. To do this the prefix_by_peer() function gets a path-id argument. If a session is not path-id enabled this argument will be always 0. If a session is path-id enabled the value is taken from the NLRI and can be anything, including 0. The value has no meaning in itself. Still to make sure the decision process is able to break a tie the path-id is checked as the last step (this is not part of the RFC but required). OK benno@
Revision 1.212 / (download) - annotate - [select for diffs], Tue Jul 13 08:44:18 2021 UTC (2 years, 10 months ago) by claudio
Branch: MAIN
Changes since 1.211: +3 -3 lines
Diff to previous 1.211 (colored)
Order the MRT table dump versions by preference also the text refers to the latter two (table-mp and table) to be only available for compatibility. People should really only use table-v2 since it is the only method which will properly dump everything.
Revision 1.211 / (download) - annotate - [select for diffs], Thu Jun 17 16:05:25 2021 UTC (2 years, 11 months ago) by claudio
Branch: MAIN
Changes since 1.210: +12 -2 lines
Diff to previous 1.210 (colored)
Implement RFC 7313 enhanced route refresh. It is off by default and can be enabled with 'announce enhanced refresh yes' Similar to graceful restart this allows to mark routes as stale, refresh them and the flush out routes that are still stale. Enhanced route refresh uses a begin of rr and a end of rr message to signal the various stages. A future enhancement would be the addition of a timeout in case the EoRR message is not sent in reasonable time. OK denis@ job@
Revision 1.210 / (download) - annotate - [select for diffs], Thu May 6 09:21:35 2021 UTC (3 years, 1 month ago) by claudio
Branch: MAIN
Changes since 1.209: +2 -5 lines
Diff to previous 1.209 (colored)
It is no longer required to reset a session when export is changed.
Revision 1.209 / (download) - annotate - [select for diffs], Tue Mar 2 09:45:07 2021 UTC (3 years, 3 months ago) by claudio
Branch: MAIN
CVS Tags: OPENBSD_6_9_BASE,
OPENBSD_6_9
Changes since 1.208: +28 -5 lines
Diff to previous 1.208 (colored)
Introduce 'rde evaluate all' a mode to work around path hiding in IXP route-server environments. By default only the best path is sent to peers and if that path is filtered then the path is hidden for that peer. On route-servers this is sometimes not desried. For this 'rde evaluate all' will cause the evaluation process to fall back to alternate routes and will redistribute the first non-filtered path to the peer. This is very similar to per-peer RIBs but accomplishes the same effect without the massive increase in memory usage. Compared to the default mode this requires more CPU resources but it is probably less than what per-peer RIBs would require. 'rde evaluate all' can be set and reset globally, on groups and on idividual neighbors. It is not limited to route-server configs but route loops are possible if not properly used. OK benno@
Revision 1.208 / (download) - annotate - [select for diffs], Tue Feb 16 08:29:16 2021 UTC (3 years, 3 months ago) by claudio
Branch: MAIN
Changes since 1.207: +35 -2 lines
Diff to previous 1.207 (colored)
Add RTR support to OpenBGPD. Add basic support for the protocol. The RTR client runs in a new process where the protocol handling is done and when new data is available all sources are merged into one ROA set which is then loaded into the RDE. The roa-set from the config is also handled by the new RTR engine. Tested by and ok job@
Revision 1.207 / (download) - annotate - [select for diffs], Wed Jan 27 14:57:29 2021 UTC (3 years, 4 months ago) by jmc
Branch: MAIN
Changes since 1.206: +4 -4 lines
Diff to previous 1.206 (colored)
spelling fixes;
Revision 1.206 / (download) - annotate - [select for diffs], Mon Jan 25 09:15:23 2021 UTC (3 years, 4 months ago) by claudio
Branch: MAIN
Changes since 1.205: +31 -2 lines
Diff to previous 1.205 (colored)
RFC6472 discourages the use of AS_SET segements in ASPATH attributes.
The main reason is that AS_SET does not play nice with RPKI ROA.
Introduce a per neighbor and global config option
'reject as-set yes' and 'reject as-set no'
If set to yes received UPDATES with AS_SET segements are rejected.
This is done the same way other ASPATH soft-errors are handled. The UPDATE
is marked invalid and all prefixes are treated as withdraws.
`bgpctl show rib in error` can be used to show prefixes that where denied
and treated as withdraws because of errors.
By default this feature is off.
OK benno@
Revision 1.205 / (download) - annotate - [select for diffs], Sat May 16 16:58:11 2020 UTC (4 years ago) by jmc
Branch: MAIN
CVS Tags: OPENBSD_6_8_BASE,
OPENBSD_6_8
Changes since 1.204: +3 -3 lines
Diff to previous 1.204 (colored)
list example files in FILES with a short description: generally, "Example configuration file.", but occasionally something else fit better; at the same time, try to make the format for FILES more consistent; original diff from clematis
Revision 1.204 / (download) - annotate - [select for diffs], Thu Apr 23 21:28:09 2020 UTC (4 years, 1 month ago) by jmc
Branch: MAIN
CVS Tags: OPENBSD_6_7_BASE,
OPENBSD_6_7
Changes since 1.203: +11 -11 lines
Diff to previous 1.203 (colored)
ce examples of "Ar arg Ar arg" with "Ar arg arg" and stop the spread;
Revision 1.203 / (download) - annotate - [select for diffs], Thu Apr 23 21:10:53 2020 UTC (4 years, 1 month ago) by jmc
Branch: MAIN
Changes since 1.202: +8 -8 lines
Diff to previous 1.202 (colored)
replace examples of "Ic arg Ic arg" with "Ic arg arg" and stop the spread;
Revision 1.202 / (download) - annotate - [select for diffs], Thu Apr 23 16:17:48 2020 UTC (4 years, 1 month ago) by claudio
Branch: MAIN
Changes since 1.201: +5 -2 lines
Diff to previous 1.201 (colored)
Try to document 'no local-address'
Revision 1.201 / (download) - annotate - [select for diffs], Sun Feb 16 22:10:47 2020 UTC (4 years, 3 months ago) by kn
Branch: MAIN
Changes since 1.200: +4 -2 lines
Diff to previous 1.200 (colored)
Tag "neighbor" and "group" keywords at their definitions mdoc(7) auto-tagging delivered false positives leading tag users to usages somewhere in manual; add ".Tg" markup for both keywords in the "NEIGHBORS AND GROUPS" section where the concepts are introduced. Feedback and OK schwarze
Revision 1.200 / (download) - annotate - [select for diffs], Sun Feb 9 14:21:26 2020 UTC (4 years, 3 months ago) by schwarze
Branch: MAIN
Changes since 1.199: +5 -3 lines
Diff to previous 1.199 (colored)
mention /etc/examples/bgpd.conf; tweak and OK jmc@, OK benno@
Revision 1.199 / (download) - annotate - [select for diffs], Sat Jan 25 12:07:28 2020 UTC (4 years, 4 months ago) by jmc
Branch: MAIN
Changes since 1.198: +2 -3 lines
Diff to previous 1.198 (colored)
kill double .Pp;
Revision 1.198 / (download) - annotate - [select for diffs], Fri Jan 24 05:44:05 2020 UTC (4 years, 4 months ago) by claudio
Branch: MAIN
Changes since 1.197: +17 -2 lines
Diff to previous 1.197 (colored)
Implement 'max-prefix NUM out' to limit the number of announced prefixes. This is an easy safety switch to not leak full tables to upstreams and peers. If the limit is hit a Cease notification is sent and the session is closed. This implements most of https://tools.ietf.org/html/draft-sa-idr-maxprefix-00 OK job@
Revision 1.197 / (download) - annotate - [select for diffs], Thu Oct 31 09:09:04 2019 UTC (4 years, 7 months ago) by benno
Branch: MAIN
Changes since 1.196: +3 -3 lines
Diff to previous 1.196 (colored)
Administrative Shutdown messages can be 255 byte long. ok claudio@
Revision 1.196 / (download) - annotate - [select for diffs], Fri Oct 4 19:51:27 2019 UTC (4 years, 8 months ago) by procter
Branch: MAIN
CVS Tags: OPENBSD_6_6_BASE,
OPENBSD_6_6
Changes since 1.195: +128 -139 lines
Diff to previous 1.195 (colored)
Buff; also, specify router-id per rfc6286. MPLS VPN cluesticks supplied by Dylan Hall ok claudio@ jmc@
Revision 1.195 / (download) - annotate - [select for diffs], Wed Aug 28 20:12:02 2019 UTC (4 years, 9 months ago) by procter
Branch: MAIN
Changes since 1.194: +128 -117 lines
Diff to previous 1.194 (colored)
Polish; also, document defaults for 'listen on' and 'rde rib'. input and ok claudio@ jmc@
Revision 1.194 / (download) - annotate - [select for diffs], Thu Aug 8 20:37:08 2019 UTC (4 years, 10 months ago) by fcambus
Branch: MAIN
Changes since 1.193: +4 -4 lines
Diff to previous 1.193 (colored)
Fix a bunch of typos in various man pages.
Revision 1.193 / (download) - annotate - [select for diffs], Thu Aug 8 09:15:13 2019 UTC (4 years, 10 months ago) by procter
Branch: MAIN
Changes since 1.192: +4 -3 lines
Diff to previous 1.192 (colored)
Describe what "disabling the decision process" entails for the "no evaluate" flag ok claudio@
Revision 1.192 / (download) - annotate - [select for diffs], Wed Aug 7 10:26:41 2019 UTC (4 years, 10 months ago) by claudio
Branch: MAIN
Changes since 1.191: +2 -12 lines
Diff to previous 1.191 (colored)
Improve RIB reload behaviour. Especially when the rtable changes or the route evaluation is modified. In both cases the softreconfig code will now walk the RIB and ensure that everything is in proper sync. Additionally remove 'route-collector yes|no' from the bgpd config, instead use 'rde rib Loc-RIB no evaluate' with the benefit that you can alter the setting now during runtime. Tested and OK benno@
Revision 1.191 / (download) - annotate - [select for diffs], Mon Jun 17 14:00:45 2019 UTC (4 years, 11 months ago) by claudio
Branch: MAIN
Changes since 1.190: +5 -5 lines
Diff to previous 1.190 (colored)
Replace spaces with tab for text indent
Revision 1.190 / (download) - annotate - [select for diffs], Fri Jun 7 09:45:48 2019 UTC (5 years ago) by claudio
Branch: MAIN
Changes since 1.189: +22 -9 lines
Diff to previous 1.189 (colored)
Refactor up_get_nexthop() to work for all AFI/SAFI cases. Additionally
clean up the possible nexthop overrides to better match the RFC.
- set nexthop self is still overriding all other decisions
- set nexthop no-modify has only relevance for ebgp multihop links
Instead of using the router locall address the nexthop is passed unmodified
- set nexthop <address> depends on BGP session type
* for IBGP sessions the address will be used unless it is the same as the
remote peers address
* for directly connected EBGP sessions the address is only used if the IP
is part of the connected network (no matter what other flags are used).
* for multihop EBGP sessions it depends if no-modify was also set
Adjust manual page to explain this properly.
"probably OK" job@
Revision 1.189 / (download) - annotate - [select for diffs], Wed May 29 11:13:23 2019 UTC (5 years ago) by claudio
Branch: MAIN
Changes since 1.188: +8 -2 lines
Diff to previous 1.188 (colored)
Document the few neighbor options that need a reset (bgpctl nei X clear) to be picked up after a reload. With and OK jmc@, sthen@
Revision 1.188 / (download) - annotate - [select for diffs], Thu Mar 28 19:44:59 2019 UTC (5 years, 2 months ago) by jmc
Branch: MAIN
CVS Tags: OPENBSD_6_5_BASE,
OPENBSD_6_5
Changes since 1.187: +4 -4 lines
Diff to previous 1.187 (colored)
zap trailing whitespace;
Revision 1.187 / (download) - annotate - [select for diffs], Wed Mar 27 21:23:13 2019 UTC (5 years, 2 months ago) by benno
Branch: MAIN
Changes since 1.186: +2 -19 lines
Diff to previous 1.186 (colored)
remove documentation for obsolete announce all|none|default-route, see parse.y rev 1.381 2019/02/27 ok sthen@
Revision 1.186 / (download) - annotate - [select for diffs], Tue Feb 26 10:49:15 2019 UTC (5 years, 3 months ago) by claudio
Branch: MAIN
Changes since 1.185: +41 -10 lines
Diff to previous 1.185 (colored)
Add support for '*', local-as and neighbor-as for ext-community matching
and setting. This allows rules like:
ext-community * * # delete any ext-community
ext-community ovs * # delete any ext-community of specified type
ext-community rt 1.2.3.4:*
and
ext-community rt 65001:local-as
ext-community rt local-as:11111
Note: Sometimes the type of the ext-community is underspecified when using
wildchars or expands. So 'ext-community rt *' or 'ext-community soo *' will
match for any of the 3 possible types (2-byte AS, 4-byte AS and IP address).
If local-as/neighbor-as is used as an expand of as-number like
ext-community rt local-as:11111
then bgpd will default to the 4-byte AS type to encode the community.
OK benno@
Revision 1.185 / (download) - annotate - [select for diffs], Mon Feb 11 17:45:59 2019 UTC (5 years, 3 months ago) by jmc
Branch: MAIN
Changes since 1.184: +4 -4 lines
Diff to previous 1.184 (colored)
spelling and Xr fixes;
Revision 1.184 / (download) - annotate - [select for diffs], Mon Feb 11 15:44:25 2019 UTC (5 years, 3 months ago) by claudio
Branch: MAIN
Changes since 1.183: +42 -23 lines
Diff to previous 1.183 (colored)
The definition of VPNs in bgpd was never super elegant. The 'depend on
mpeX' config was a bit redundant. Also to make it more flexible (e.g. having
more than one mpeX interface per rdomain the syntax was changed.
To make this possible especially the network distribution logic had to be
adjusted and cleaned up. This should in general make network statements
well defined and conflicts between 'network A.B.C.D/N' and e.g. 'network static'
are handled in a well defined way ('network A.B.C.D/N' has preference).
With and OK dlg@, OK denis@
Revision 1.183 / (download) - annotate - [select for diffs], Mon Feb 4 20:32:23 2019 UTC (5 years, 4 months ago) by jmc
Branch: MAIN
Changes since 1.182: +3 -3 lines
Diff to previous 1.182 (colored)
spelling;
Revision 1.182 / (download) - annotate - [select for diffs], Mon Feb 4 18:53:10 2019 UTC (5 years, 4 months ago) by claudio
Branch: MAIN
Changes since 1.181: +15 -2 lines
Diff to previous 1.181 (colored)
Implement as-override, a feature where the neighbor AS is replaced by the
local AS in AS paths. This is sometimes needed in bigger transport networks
where private AS numbers are used in multiple locations.
The implementation is done using a filterset which modifies the AS path -
somewhat inspired by the set attribute code. Setting as-override yes will add
match from <neighbor> set { as-override }
to the start of the filter rules. Since this is filters the Adj-RIB-In still
holds the original path and so reloads changing the setting just work.
With and OK markus@
Revision 1.181 / (download) - annotate - [select for diffs], Sat Oct 6 13:59:32 2018 UTC (5 years, 8 months ago) by jmc
Branch: MAIN
CVS Tags: OPENBSD_6_4_BASE,
OPENBSD_6_4
Changes since 1.180: +6 -6 lines
Diff to previous 1.180 (colored)
some minor fixes;
Revision 1.180 / (download) - annotate - [select for diffs], Thu Oct 4 08:52:04 2018 UTC (5 years, 8 months ago) by claudio
Branch: MAIN
Changes since 1.179: +188 -135 lines
Diff to previous 1.179 (colored)
Rework man page a bit. Add 2 new sections for Set Configuration and Network Announcements. Move stuff accordingly and add some missing bits. Input and OK sthen@ OK benno@ just push ahead jmc@
Revision 1.179 / (download) - annotate - [select for diffs], Wed Oct 3 06:57:36 2018 UTC (5 years, 8 months ago) by denis
Branch: MAIN
Changes since 1.178: +24 -1 lines
Diff to previous 1.178 (colored)
Update manual to reflect ROA changes With input from claudio@, sthen@ and jmc@ OK claudio@ sthen@
Revision 1.178 / (download) - annotate - [select for diffs], Sun Sep 9 17:11:26 2018 UTC (5 years, 9 months ago) by jmc
Branch: MAIN
Changes since 1.177: +3 -2 lines
Diff to previous 1.177 (colored)
missing Xc;
Revision 1.177 / (download) - annotate - [select for diffs], Sun Sep 9 11:00:51 2018 UTC (5 years, 9 months ago) by benno
Branch: MAIN
Changes since 1.176: +8 -1 lines
Diff to previous 1.176 (colored)
Add network prefix-set <name> syntax to announce networks in a prefix-set. feature discussed with deraadt@ and job@, ok claudio@
Revision 1.176 / (download) - annotate - [select for diffs], Sat Sep 8 15:54:41 2018 UTC (5 years, 9 months ago) by jmc
Branch: MAIN
Changes since 1.175: +3 -2 lines
Diff to previous 1.175 (colored)
missing Ed;
Revision 1.175 / (download) - annotate - [select for diffs], Sat Sep 8 15:25:27 2018 UTC (5 years, 9 months ago) by benno
Branch: MAIN
Changes since 1.174: +9 -8 lines
Diff to previous 1.174 (colored)
implement or-longer filter op for prefix-sets. Allows one two write rules like deny from any prefix-set mynetworks or-longer ok claudio, feature discussed with job and deraadt
Revision 1.174 / (download) - annotate - [select for diffs], Fri Sep 7 10:59:16 2018 UTC (5 years, 9 months ago) by claudio
Branch: MAIN
Changes since 1.173: +3 -2 lines
Diff to previous 1.173 (colored)
Some space fixes mentioned by benno@
Revision 1.173 / (download) - annotate - [select for diffs], Fri Sep 7 06:33:05 2018 UTC (5 years, 9 months ago) by jmc
Branch: MAIN
Changes since 1.172: +3 -4 lines
Diff to previous 1.172 (colored)
tweak previous;
Revision 1.172 / (download) - annotate - [select for diffs], Fri Sep 7 05:43:33 2018 UTC (5 years, 9 months ago) by claudio
Branch: MAIN
Changes since 1.171: +28 -6 lines
Diff to previous 1.171 (colored)
Implement as-set a fast lookup table to be used instead of long list of AS numbers in source-as, AS and transit-as filterstatements. These table use bsearch to quickly verify if an AS is in the set or not. The filter syntax is not fully set in stone yet. OK denis@ benno@ and previously OK deraadt@
Revision 1.171 / (download) - annotate - [select for diffs], Wed Jul 11 14:08:46 2018 UTC (5 years, 11 months ago) by benno
Branch: MAIN
Changes since 1.170: +12 -2 lines
Diff to previous 1.170 (colored)
add option "network ... priority number" to announce prefixes from the kernel routing table selected by priority. For example to import all ospfd/ospf6d routes into bgp. tested by remi@ ok remi@ henning@ and maybe a little claudio@
Revision 1.170 / (download) - annotate - [select for diffs], Thu Jul 5 19:51:35 2018 UTC (5 years, 11 months ago) by jmc
Branch: MAIN
Changes since 1.169: +6 -5 lines
Diff to previous 1.169 (colored)
reword;
Revision 1.169 / (download) - annotate - [select for diffs], Mon Jun 18 06:04:25 2018 UTC (5 years, 11 months ago) by jmc
Branch: MAIN
Changes since 1.168: +3 -3 lines
Diff to previous 1.168 (colored)
remove the SECTIONS header, since a one line DESCRIPTION is a bit silly; use a more general text for the sections, and avoid the catchup issue that was trying to document how many there were; ok benno rob
Revision 1.168 / (download) - annotate - [select for diffs], Wed Jun 13 10:43:03 2018 UTC (5 years, 11 months ago) by jmc
Branch: MAIN
Changes since 1.167: +2 -2 lines
Diff to previous 1.167 (colored)
separate arg name and punctuation with whitespace;
Revision 1.167 / (download) - annotate - [select for diffs], Wed Jun 13 09:44:59 2018 UTC (5 years, 11 months ago) by job
Branch: MAIN
Changes since 1.166: +18 -2 lines
Diff to previous 1.166 (colored)
Provide backwards compatibility for some of the announce directives OK sthen@
Revision 1.166 / (download) - annotate - [select for diffs], Wed Jun 13 09:33:51 2018 UTC (5 years, 11 months ago) by claudio
Branch: MAIN
Changes since 1.165: +17 -36 lines
Diff to previous 1.165 (colored)
Deprecate announce (all|self|none|default-route) The announce keyword was overloaded and confused a lot of operators, time to clean it up and while there incorporate RFC8212 guideline for propagation. - `announce all` is the new default but the default deny filter will make sure that by default nothing is leaked - `announce self` is no more and results in syntax error - `announce none` is now `export none` - `announce default-route` becomes `export default-route` - the filters are switched to a default deny rule both incoming and outgoing You most certainly need to adjust your config! Best is to change the config in advance by using `announce all` explicitly on all neighbors and adding `deny from any` and `deny to any` at the start of your filters and adjust the rest of the filters to still produce the same result. `bgpd -nv -f bgpd.conf ` and `bgpctl show rib out nei foo` are good tools to verify the changes. Lots of discussions with job@, deraadt@, sthen@ OK job@
Revision 1.165 / (download) - annotate - [select for diffs], Sat Feb 10 11:19:09 2018 UTC (6 years, 3 months ago) by jmc
Branch: MAIN
CVS Tags: OPENBSD_6_3_BASE,
OPENBSD_6_3
Changes since 1.164: +4 -5 lines
Diff to previous 1.164 (colored)
less macro; ok benno
Revision 1.164 / (download) - annotate - [select for diffs], Sat Feb 10 01:24:28 2018 UTC (6 years, 3 months ago) by benno
Branch: MAIN
Changes since 1.163: +51 -2 lines
Diff to previous 1.163 (colored)
Add prefix-sets, lists of prefixes which can be used in place of a prefix in a filter rule. Initial idea hashed out with job@ in Toronto. This is WIP, i'm commiting it now so we can work on it in the tree. ok florian@ claudio@
Revision 1.163 / (download) - annotate - [select for diffs], Sat Aug 12 17:39:51 2017 UTC (6 years, 9 months ago) by job
Branch: MAIN
CVS Tags: OPENBSD_6_2_BASE,
OPENBSD_6_2
Changes since 1.162: +10 -2 lines
Diff to previous 1.162 (colored)
Add manpage update for new grouping feature '{from,to} {i,e}bgp'
OK phessler@
Revision 1.162 / (download) - annotate - [select for diffs], Fri Aug 11 16:02:53 2017 UTC (6 years, 9 months ago) by claudio
Branch: MAIN
Changes since 1.161: +2 -21 lines
Diff to previous 1.161 (colored)
softreconfig in and out are on by default for ever and machines now have enough memory that it does not make sense to provide these knobs anymore. They just make the code more complex for no much gain. OK phessler@, benno@
Revision 1.161 / (download) - annotate - [select for diffs], Mon Jun 26 10:05:57 2017 UTC (6 years, 11 months ago) by phessler
Branch: MAIN
Changes since 1.160: +4 -2 lines
Diff to previous 1.160 (colored)
add support for the "graceful shutdown" well-known community as described in draft-ietf-grow-bgp-gshut from Job Snijders ok phessler@ benno@
Revision 1.160 / (download) - annotate - [select for diffs], Wed May 31 10:49:10 2017 UTC (7 years ago) by claudio
Branch: MAIN
Changes since 1.159: +29 -4 lines
Diff to previous 1.159 (colored)
Man page bits for ext-community which grew a few more subtypes. Based on a diff from Job Snijders
Revision 1.159 / (download) - annotate - [select for diffs], Mon May 29 20:23:18 2017 UTC (7 years ago) by benno
Branch: MAIN
Changes since 1.158: +4 -4 lines
Diff to previous 1.158 (colored)
change section title in bgpd.conf talking about MPLS, add a bit about working with multiple bgpds in rdomains in bgpctl. shouting from claudio@ and help from jmc@
Revision 1.158 / (download) - annotate - [select for diffs], Mon May 29 09:56:33 2017 UTC (7 years ago) by benno
Branch: MAIN
Changes since 1.157: +6 -3 lines
Diff to previous 1.157 (colored)
change bgpd's control socket from /var/run/bgpd.sock to /var/run/bgpd.sock.<rdomain> in both bgpd and bgpctl. makes life easier for admins. ok phessler, claudio, henning, feedback from Job Snijders
Revision 1.157 / (download) - annotate - [select for diffs], Sun May 28 16:52:27 2017 UTC (7 years ago) by jmc
Branch: MAIN
Changes since 1.156: +3 -3 lines
Diff to previous 1.156 (colored)
tweak previous;
Revision 1.156 / (download) - annotate - [select for diffs], Sun May 28 15:16:52 2017 UTC (7 years ago) by henning
Branch: MAIN
Changes since 1.155: +12 -7 lines
Diff to previous 1.155 (colored)
we're not hardcoded to table 0 any more
Revision 1.155 / (download) - annotate - [select for diffs], Sat May 27 18:12:23 2017 UTC (7 years ago) by phessler
Branch: MAIN
Changes since 1.154: +15 -1 lines
Diff to previous 1.154 (colored)
Allow an administrator to disable the bgp loop detection algorithm, which is useful in very limited situations. Angry dragons and grues will hunt for you, if you use it. OK claudio@ sthen@ benno@
Revision 1.154 / (download) - annotate - [select for diffs], Sat May 27 10:33:15 2017 UTC (7 years ago) by phessler
Branch: MAIN
Changes since 1.153: +13 -2 lines
Diff to previous 1.153 (colored)
Allow OpenBGPD to selectively choose which local ASN to use per-peer. This is intended to be used for ASN migrations, not for permanent use. You MUST use filters to protect yourself from receiving your own routes. There be dragons and grues. OK claudio@ benno@
Revision 1.153 / (download) - annotate - [select for diffs], Sat May 27 10:24:44 2017 UTC (7 years ago) by phessler
Branch: MAIN
Changes since 1.152: +11 -5 lines
Diff to previous 1.152 (colored)
allow us to use 'local-as' in the filter language "match in from any set community local-as:neighbor-as" OK claudio@
Revision 1.152 / (download) - annotate - [select for diffs], Fri Jan 13 18:59:12 2017 UTC (7 years, 4 months ago) by phessler
Branch: MAIN
CVS Tags: OPENBSD_6_1_BASE,
OPENBSD_6_1
Changes since 1.151: +12 -3 lines
Diff to previous 1.151 (colored)
Add support for draft-ietf-idr-shutdown
BGP state = Idle, marked down with shutdown reason "goodbye, we are
upgrading to openbsd 6.1", down for 00:00:17
developed by Peter van Dijk <peter.van.dijk@powerdns.com> and Job
Snijders <job@ntt.net>, thank you!
OK benno@
Revision 1.151 / (download) - annotate - [select for diffs], Sun Oct 30 16:50:22 2016 UTC (7 years, 7 months ago) by phessler
Branch: MAIN
Changes since 1.150: +3 -3 lines
Diff to previous 1.150 (colored)
large-community needs to have an argument
Revision 1.150 / (download) - annotate - [select for diffs], Tue Oct 18 19:47:52 2016 UTC (7 years, 7 months ago) by benno
Branch: MAIN
Changes since 1.149: +4 -4 lines
Diff to previous 1.149 (colored)
"Terminate the session after number prefixes have been received" means that max-prefix 1 will close the session on the first prefix which is off by one to what one would expect. Change it to No. received > max-prefix, which is also in line with other implementations. Found by jbg@ and deraadt@. ok phessler@ deraadt@ henning@ claudio@
Revision 1.149 / (download) - annotate - [select for diffs], Sat Oct 15 12:35:19 2016 UTC (7 years, 7 months ago) by jmc
Branch: MAIN
Changes since 1.148: +4 -3 lines
Diff to previous 1.148 (colored)
add missing Xc, and macro fix;
Revision 1.148 / (download) - annotate - [select for diffs], Fri Oct 14 16:05:35 2016 UTC (7 years, 7 months ago) by phessler
Branch: MAIN
Changes since 1.147: +62 -2 lines
Diff to previous 1.147 (colored)
Add support for draft-ietf-idr-large-community Joint work with Job Snijders, many thanks! OK benno@ deraadt@
Revision 1.147 / (download) - annotate - [select for diffs], Wed Oct 5 07:38:06 2016 UTC (7 years, 8 months ago) by phessler
Branch: MAIN
Changes since 1.146: +11 -1 lines
Diff to previous 1.146 (colored)
Let bgpd announce routes based on a route-label. OK henning@ benno@
Revision 1.146 / (download) - annotate - [select for diffs], Wed Aug 17 08:14:40 2016 UTC (7 years, 9 months ago) by phessler
Branch: MAIN
Changes since 1.145: +3 -3 lines
Diff to previous 1.145 (colored)
pluralize a word
Revision 1.145 / (download) - annotate - [select for diffs], Wed Aug 17 08:13:52 2016 UTC (7 years, 9 months ago) by phessler
Branch: MAIN
Changes since 1.144: +12 -7 lines
Diff to previous 1.144 (colored)
The man page is a bit confusing for how we can control which address families we support during capabilities negotiation. Re-organize the man page to be more clear, and explicitly state what the default is. OK sthen@ benno@
Revision 1.144 / (download) - annotate - [select for diffs], Tue Jun 28 16:59:14 2016 UTC (7 years, 11 months ago) by jca
Branch: MAIN
CVS Tags: OPENBSD_6_0_BASE,
OPENBSD_6_0
Changes since 1.143: +2 -6 lines
Diff to previous 1.143 (colored)
Use IPV6_MINHOPCOUNT to finish implementing ttl-security for IPv6. ok renato@ deraadt@
Revision 1.143 / (download) - annotate - [select for diffs], Sat Jun 11 11:43:02 2016 UTC (7 years, 11 months ago) by tobias
Branch: MAIN
Changes since 1.142: +2 -2 lines
Diff to previous 1.142 (colored)
Fixed "then" vs "than" typo. ok jmc
Revision 1.142 / (download) - annotate - [select for diffs], Fri Jun 3 20:58:13 2016 UTC (8 years ago) by jmc
Branch: MAIN
Changes since 1.141: +3 -3 lines
Diff to previous 1.141 (colored)
grammar fix;
Revision 1.141 / (download) - annotate - [select for diffs], Fri Jun 3 17:36:37 2016 UTC (8 years ago) by benno
Branch: MAIN
Changes since 1.140: +30 -10 lines
Diff to previous 1.140 (colored)
Add operators =, !=, - (range), >< (exclsive range) to the as-path filters (AS, peer-as, source-as, transit-as). Add a use case (block illegal AS numbers) to the bgpd.conf example. feedback from claudio, sthen, florian, ok florian@ phessler@
Revision 1.140 / (download) - annotate - [select for diffs], Thu Jan 7 18:41:41 2016 UTC (8 years, 5 months ago) by florian
Branch: MAIN
CVS Tags: OPENBSD_5_9_BASE,
OPENBSD_5_9
Changes since 1.139: +4 -4 lines
Diff to previous 1.139 (colored)
If transparent-as is set to no AS paths are prepended with the local AS not "their" AS. Which would be silly, the peer would just reject the prefix because the AS path contains its own AS. Pointed out by Colin Petrie cpetrie AT ripe DOT net, thanks! OK phessler, sthen, benno, jmc
Revision 1.139 / (download) - annotate - [select for diffs], Sun Oct 11 19:30:12 2015 UTC (8 years, 8 months ago) by phessler
Branch: MAIN
Changes since 1.138: +2 -1 lines
Diff to previous 1.138 (colored)
standardize a community that has been independently created by nearly every single AS on the planet: the blackhole OK benno@, claudio@, sthen@
Revision 1.138 / (download) - annotate - [select for diffs], Mon Sep 21 10:06:47 2015 UTC (8 years, 8 months ago) by jmc
Branch: MAIN
Changes since 1.137: +5 -5 lines
Diff to previous 1.137 (colored)
sort;
Revision 1.137 / (download) - annotate - [select for diffs], Mon Sep 21 09:47:15 2015 UTC (8 years, 8 months ago) by phessler
Branch: MAIN
Changes since 1.136: +7 -1 lines
Diff to previous 1.136 (colored)
Let us log all updates sent from an individual peer. Since this can be applied to a group, also let us disable logging on a sub-member of the group. Very handy for debugging naughty peers on a router with multiple peers. OK benno@
Revision 1.136 / (download) - annotate - [select for diffs], Sun Jul 19 14:35:41 2015 UTC (8 years, 10 months ago) by jmc
Branch: MAIN
CVS Tags: OPENBSD_5_8_BASE,
OPENBSD_5_8
Changes since 1.135: +17 -17 lines
Diff to previous 1.135 (colored)
knock out "Ns Li" before colons - the Li was being ignored anyway, and i don;t think the colon needs marked up.
Revision 1.135 / (download) - annotate - [select for diffs], Sun Jul 19 04:54:53 2015 UTC (8 years, 10 months ago) by benno
Branch: MAIN
Changes since 1.134: +9 -3 lines
Diff to previous 1.134 (colored)
clarify how inet|inet6 work in filters mofified version by jmc@, ok phessler@ and claudio@ is fine with it (but notes that the details are more complicated)
Revision 1.134 / (download) - annotate - [select for diffs], Sat Apr 25 15:28:18 2015 UTC (9 years, 1 month ago) by phessler
Branch: MAIN
Changes since 1.133: +4 -2 lines
Diff to previous 1.133 (colored)
allow us to write rules that match directly on the peer AS ... allow from AS 1 prefix 192.0.2.0/24 ... Also adjust the IRR ruleset output to include the declared peer AS, instead of hoping they listed their neighbor IP address! OK benno@ older version OK: claudio@ henning@
Revision 1.133 / (download) - annotate - [select for diffs], Sat Feb 28 21:51:57 2015 UTC (9 years, 3 months ago) by bentley
Branch: MAIN
CVS Tags: OPENBSD_5_7_BASE,
OPENBSD_5_7
Changes since 1.132: +5 -12 lines
Diff to previous 1.132 (colored)
Reduce usage of predefined strings in manpages. Predefined strings are not very portable across troff implementations, and they make the source much harder to read. Usually the intended character can be written directly. No output changes, except for two instances where the incorrect escape was used in the first place. tweaks + ok schwarze@
Revision 1.132 / (download) - annotate - [select for diffs], Mon Nov 10 20:48:33 2014 UTC (9 years, 7 months ago) by miod
Branch: MAIN
Changes since 1.131: +3 -3 lines
Diff to previous 1.131 (colored)
Fix horrible spelling mistake introduced in r1.17
Revision 1.131 / (download) - annotate - [select for diffs], Tue May 20 23:41:36 2014 UTC (10 years ago) by dlg
Branch: MAIN
CVS Tags: OPENBSD_5_6_BASE,
OPENBSD_5_6
Changes since 1.130: +3 -3 lines
Diff to previous 1.130 (colored)
destinct is spelled distinct. ok henning@ jmc@
Revision 1.130 / (download) - annotate - [select for diffs], Wed Nov 13 09:14:48 2013 UTC (10 years, 6 months ago) by florian
Branch: MAIN
CVS Tags: OPENBSD_5_5_BASE,
OPENBSD_5_5
Changes since 1.129: +7 -2 lines
Diff to previous 1.129 (colored)
Knob to set priority with which bgpd inserts routes into the kernel routing table. Need for it in "special" setups pointed out by Loic Blot (loic.blot _AT_ unix-experience _DOT_ fr) on tech. OK benno, henning
Revision 1.129 / (download) - annotate - [select for diffs], Sat Oct 19 15:04:25 2013 UTC (10 years, 7 months ago) by claudio
Branch: MAIN
Changes since 1.128: +14 -24 lines
Diff to previous 1.128 (colored)
Merge the prefix and prefixlen filter bits into one filter. Change the filter expansion so that rules are grouped by prefixes last. The RDE will then be able to optimize the rules into table lookups but that is a later step. As additional goodies it is now possible to use inet and inet6 on their own and or-longer can be used as a shorthand for prefixlen >= len. OK henning@ sthen@ florian@
Revision 1.128 / (download) - annotate - [select for diffs], Thu Oct 17 09:14:02 2013 UTC (10 years, 7 months ago) by blambert
Branch: MAIN
Changes since 1.127: +3 -3 lines
Diff to previous 1.127 (colored)
Less ambiguous wording concerning control socket configuration options. requested by and ok deraadt@
Revision 1.127 / (download) - annotate - [select for diffs], Wed Oct 16 21:17:27 2013 UTC (10 years, 7 months ago) by jmc
Branch: MAIN
Changes since 1.126: +5 -3 lines
Diff to previous 1.126 (colored)
some .Pa;
Revision 1.126 / (download) - annotate - [select for diffs], Tue Sep 10 07:29:12 2013 UTC (10 years, 9 months ago) by weerd
Branch: MAIN
Changes since 1.125: +11 -2 lines
Diff to previous 1.125 (colored)
Document that wildcards can also be used when deleting communities. After a discussion with sthen@ and claudio@; wording help from sthen@. OK claudio@, sthen@, jmc@
Revision 1.125 / (download) - annotate - [select for diffs], Thu May 30 10:13:58 2013 UTC (11 years ago) by sthen
Branch: MAIN
CVS Tags: OPENBSD_5_4_BASE,
OPENBSD_5_4
Changes since 1.124: +6 -2 lines
Diff to previous 1.124 (colored)
Add partial support to bgpd for the ttl hack with ipv6. This sends the correct ttl on outgoing packets so peer sessions can come up correctly if both sides use ttl-security, but the kernel side is not yet implemented so incoming packets aren't verified (note added to manual for this). ok henning@
Revision 1.124 / (download) - annotate - [select for diffs], Wed Jan 2 15:06:46 2013 UTC (11 years, 5 months ago) by florian
Branch: MAIN
CVS Tags: OPENBSD_5_3_BASE,
OPENBSD_5_3
Changes since 1.123: +4 -4 lines
Diff to previous 1.123 (colored)
man page bits for "announce restart yes" default ok sthen@
Revision 1.123 / (download) - annotate - [select for diffs], Tue Nov 13 14:26:26 2012 UTC (11 years, 6 months ago) by jmc
Branch: MAIN
Changes since 1.122: +3 -4 lines
Diff to previous 1.122 (colored)
macro tweaking;
Revision 1.122 / (download) - annotate - [select for diffs], Tue Nov 13 09:47:20 2012 UTC (11 years, 6 months ago) by claudio
Branch: MAIN
Changes since 1.121: +15 -2 lines
Diff to previous 1.121 (colored)
Allow filtering based on the NEXTHOP attribute. This allows to build rules like: allow from any nexthop neighbor (to allow only prefixes that use the routers IP address as nexthop). Lots of testing, input and OK florian@
Revision 1.121 / (download) - annotate - [select for diffs], Fri Aug 24 17:04:06 2012 UTC (11 years, 9 months ago) by jmc
Branch: MAIN
Changes since 1.120: +3 -3 lines
Diff to previous 1.120 (colored)
rfc 4456 replaces rfc 2796; ok claudio
Revision 1.120 / (download) - annotate - [select for diffs], Sat Jul 7 08:22:57 2012 UTC (11 years, 11 months ago) by claudio
Branch: MAIN
CVS Tags: OPENBSD_5_2_BASE,
OPENBSD_5_2
Changes since 1.119: +4 -6 lines
Diff to previous 1.119 (colored)
Explain the bgpd decision process in the man page. I'm tired of looking at the C code over and over again. With and OK sthen@, henning@, jmc@
Revision 1.119 / (download) - annotate - [select for diffs], Tue Jun 19 08:22:27 2012 UTC (11 years, 11 months ago) by sthen
Branch: MAIN
Changes since 1.118: +3 -3 lines
Diff to previous 1.118 (colored)
There are five main sections, not four, since routing domain support was added. From Rod Whitworth.
Revision 1.118 / (download) - annotate - [select for diffs], Tue Apr 24 14:56:09 2012 UTC (12 years, 1 month ago) by jmc
Branch: MAIN
Changes since 1.117: +7 -4 lines
Diff to previous 1.117 (colored)
take a stab at documenting when arguments need quoted, and valid macro characters; prompted by a diff from robert peichaer org thanks gilles and henning for feedback ok deraadt zinke
Revision 1.117 / (download) - annotate - [select for diffs], Sat Apr 7 17:25:51 2012 UTC (12 years, 2 months ago) by claudio
Branch: MAIN
Changes since 1.116: +7 -7 lines
Diff to previous 1.116 (colored)
The Route Distinguishers should not be used to control distribution. Found by and fix tested by Rimi Philippe
Revision 1.116 / (download) - annotate - [select for diffs], Sat Sep 17 16:29:44 2011 UTC (12 years, 8 months ago) by claudio
Branch: MAIN
CVS Tags: OPENBSD_5_1_BASE,
OPENBSD_5_1
Changes since 1.115: +11 -7 lines
Diff to previous 1.115 (colored)
Implement new mrt table dump format as specified in draft-ietf-grow-mrt. Tested with IP and IPv6 sessions and against the libbgpdump parser. OK henning@
Revision 1.115 / (download) - annotate - [select for diffs], Thu Jun 23 20:35:22 2011 UTC (12 years, 11 months ago) by sthen
Branch: MAIN
CVS Tags: OPENBSD_5_0_BASE,
OPENBSD_5_0
Changes since 1.114: +6 -2 lines
Diff to previous 1.114 (colored)
Use a common text explaining how the various configuration parsers using the standard OpenBSD-style parse.y handle continuing lines with backslashes, paying particular attention to how comments are handled (which can cause nasty side-effects if you're not expecting it). Most wording from jmc@, with suggestions from fgsch@, marc@, Richard Toohey, patrick keshishian and Florian Obser, ok jmc@.
Revision 1.114 / (download) - annotate - [select for diffs], Sat Apr 30 07:52:33 2011 UTC (13 years, 1 month ago) by sthen
Branch: MAIN
Changes since 1.113: +32 -32 lines
Diff to previous 1.113 (colored)
no need to escape |, pointed out by jmc@ "it's worth killing, if just to stop it being copied all over the place"
Revision 1.113 / (download) - annotate - [select for diffs], Sat Oct 23 16:44:56 2010 UTC (13 years, 7 months ago) by sthen
Branch: MAIN
CVS Tags: OPENBSD_4_9_BASE,
OPENBSD_4_9
Changes since 1.112: +4 -5 lines
Diff to previous 1.112 (colored)
Reorder the wording where we talk about tagging kernel route table prefixes, following misc@ discussion with Tony Sarendal. ok phessler@
Revision 1.112 / (download) - annotate - [select for diffs], Wed Oct 13 21:04:13 2010 UTC (13 years, 7 months ago) by sthen
Branch: MAIN
Changes since 1.111: +2 -2 lines
Diff to previous 1.111 (colored)
'socket "path" [restricted]' needs quotes around path; make it clear in the manual. Help from jmc@.
Revision 1.111 / (download) - annotate - [select for diffs], Sun Jun 27 21:01:49 2010 UTC (13 years, 11 months ago) by jmc
Branch: MAIN
CVS Tags: OPENBSD_4_8_BASE,
OPENBSD_4_8
Changes since 1.110: +3 -3 lines
Diff to previous 1.110 (colored)
right way round for macros;
Revision 1.110 / (download) - annotate - [select for diffs], Sun Jun 27 19:53:34 2010 UTC (13 years, 11 months ago) by claudio
Branch: MAIN
Changes since 1.109: +9 -1 lines
Diff to previous 1.109 (colored)
Instead of specifying the control sockets on the command line have them in bgpd.conf. This allows to add/modify restricted control sockets on runtime. Feature request by a few people how often forgot to add -r path when restarting bgpd (including myself). NOTE: this removes the -s and -r arguments from bgpd so pay attention when updateing. jajaja sthen@, OK henning@
Revision 1.109 / (download) - annotate - [select for diffs], Mon May 17 17:46:22 2010 UTC (14 years ago) by jmc
Branch: MAIN
Changes since 1.108: +6 -6 lines
Diff to previous 1.108 (colored)
tweak previous;
Revision 1.108 / (download) - annotate - [select for diffs], Mon May 17 16:08:20 2010 UTC (14 years ago) by claudio
Branch: MAIN
Changes since 1.107: +20 -2 lines
Diff to previous 1.107 (colored)
Implement two new filters, max-as-len and max-as-seq. The first is limiting the length of an AS path (matches if the path is longer then the specified lenght) the second matches when a sequence of the same AS number is longer then the specified length). max-as-len is good to protect crappy comercial bgp boxes from other crappy comercial bgp boxes. max-as-seq was a feature request from SwissIX and maybe EuroIX to find and filter prepends. Additinal testing and OK sthen@
Revision 1.107 / (download) - annotate - [select for diffs], Mon May 17 15:49:29 2010 UTC (14 years ago) by claudio
Branch: MAIN
Changes since 1.106: +117 -7 lines
Diff to previous 1.106 (colored)
Last bits of MPLS VPN support. Hook kernel routing tables and RIB together.
This adds a bit of new config to specify the mapping between an rdomain and
the BGP MPLS VPN instance, example:
rdomain 1 {
descr "CUSTOMER1"
rd 65003:1
import-target rt 65003:3
export-target rt 65003:1
depend on mpe0
network 192.168.224/24
}
The "depend on mpe0" is a but ugly but for now this is the quickest way to
figure out which interface bgp should use to insert the MPLS routes.
A big side-effect of this diff is that networks are now internally
distributed through kroute.c.
This needs some kernel changes that will follow hopefully soon.
OK henning@
Revision 1.106 / (download) - annotate - [select for diffs], Tue May 4 07:37:56 2010 UTC (14 years, 1 month ago) by claudio
Branch: MAIN
Changes since 1.105: +19 -5 lines
Diff to previous 1.105 (colored)
Add some documentation about the last change (nexthop verification and extended rde rib syntax). OK sthen
Revision 1.105 / (download) - annotate - [select for diffs], Wed Apr 28 13:07:48 2010 UTC (14 years, 1 month ago) by claudio
Branch: MAIN
Changes since 1.104: +6 -2 lines
Diff to previous 1.104 (colored)
Allow neighbor-as in AS filter statements like: match from any source-as neighbor-as set localpref 1000 OK henning@
Revision 1.104 / (download) - annotate - [select for diffs], Fri Mar 5 15:25:00 2010 UTC (14 years, 3 months ago) by claudio
Branch: MAIN
CVS Tags: OPENBSD_4_7_BASE,
OPENBSD_4_7
Changes since 1.103: +27 -2 lines
Diff to previous 1.103 (colored)
Allow to filter for ext-community attributes. Currently only perfect matches work but that's already better then nothing. OK sthen@
Revision 1.103 / (download) - annotate - [select for diffs], Wed Dec 16 15:40:55 2009 UTC (14 years, 5 months ago) by claudio
Branch: MAIN
Changes since 1.102: +45 -3 lines
Diff to previous 1.102 (colored)
Implement "set ext-community [delete] subtype key:value" to set and delete extended communities as specified in RFC 4360. No matching implemented yet and stuff like * and neighbor-as are neither supported but will be soon. Looks good henning & sthen, manpage fixed by jmc
Revision 1.102 / (download) - annotate - [select for diffs], Thu Nov 26 13:40:43 2009 UTC (14 years, 6 months ago) by henning
Branch: MAIN
Changes since 1.101: +15 -1 lines
Diff to previous 1.101 (colored)
support for set origin; based on an initial diff from Sebastian Benoit <benoit-lists at fb12 dot de> who also tested this version claudio ok
Revision 1.101 / (download) - annotate - [select for diffs], Wed Oct 28 21:38:03 2009 UTC (14 years, 7 months ago) by jmc
Branch: MAIN
Changes since 1.100: +4 -4 lines
Diff to previous 1.100 (colored)
tweak previous;
Revision 1.100 / (download) - annotate - [select for diffs], Wed Oct 28 09:16:49 2009 UTC (14 years, 7 months ago) by claudio
Branch: MAIN
Changes since 1.99: +8 -2 lines
Diff to previous 1.99 (colored)
Document the "rib" filter parameter to specify the rib a rule applies to.
Revision 1.99 / (download) - annotate - [select for diffs], Thu Oct 22 21:12:47 2009 UTC (14 years, 7 months ago) by sobrado
Branch: MAIN
Changes since 1.98: +4 -4 lines
Diff to previous 1.98 (colored)
fix two typos in documentation. ok claudio@
Revision 1.98 / (download) - annotate - [select for diffs], Tue Oct 13 09:51:53 2009 UTC (14 years, 7 months ago) by claudio
Branch: MAIN
Changes since 1.97: +5 -5 lines
Diff to previous 1.97 (colored)
Disable graceful restart for now. The EOR marker is sent in the wrong place and fixing this is not a two liner. Will be enabled again when I found out how to fix this.
Revision 1.97 / (download) - annotate - [select for diffs], Tue Oct 6 09:44:13 2009 UTC (14 years, 8 months ago) by claudio
Branch: MAIN
Changes since 1.96: +36 -2 lines
Diff to previous 1.96 (colored)
Add config knobs to enable/disable individual BGP capabilities per neighbor. e.g. announce refresh no. With this be more aggressive when announcing our capabilities and enable all of them by default. If there are troubles with some neighbors adding the following config lines should bring you back to the old behaviour: announce refresh yes # was already on by default announce restart no announce as-4byte no # was only set on sessions to peers with 4byte AS nums OK henning and sthen
Revision 1.96 / (download) - annotate - [select for diffs], Mon Sep 28 08:25:25 2009 UTC (14 years, 8 months ago) by sthen
Branch: MAIN
Changes since 1.95: +3 -3 lines
Diff to previous 1.95 (colored)
Fix typo (creat/create)
Revision 1.95 / (download) - annotate - [select for diffs], Mon Aug 31 09:08:04 2009 UTC (14 years, 9 months ago) by claudio
Branch: MAIN
Changes since 1.94: +3 -3 lines
Diff to previous 1.94 (colored)
Fix mandoc magic to make the command render correctly.
Revision 1.94 / (download) - annotate - [select for diffs], Sun Jun 7 00:31:22 2009 UTC (15 years ago) by claudio
Branch: MAIN
CVS Tags: OPENBSD_4_6_BASE,
OPENBSD_4_6
Changes since 1.93: +23 -3 lines
Diff to previous 1.93 (colored)
Initial documentation for the new stuff
Revision 1.93 / (download) - annotate - [select for diffs], Thu Jun 4 01:20:44 2009 UTC (15 years ago) by sthen
Branch: MAIN
Changes since 1.92: +10 -4 lines
Diff to previous 1.92 (colored)
Document that we accept ASPLAIN format 32-bit ASN.
Revision 1.92 / (download) - annotate - [select for diffs], Wed May 27 04:18:21 2009 UTC (15 years ago) by reyk
Branch: MAIN
Changes since 1.91: +7 -2 lines
Diff to previous 1.91 (colored)
add an option to change the "connect-retry" timer which defaults to 120s. this can be used to decrease the failover time in specific carp'ed IBGP setups. ok henning@
Revision 1.91 / (download) - annotate - [select for diffs], Sun Mar 22 22:34:59 2009 UTC (15 years, 2 months ago) by henning
Branch: MAIN
Changes since 1.90: +14 -2 lines
Diff to previous 1.90 (colored)
make transparent-as yes|no settable peer neighbor with the global setting acting as default. per-neighbor requested by arnold nipper @ decix, ok claudio
Revision 1.90 / (download) - annotate - [select for diffs], Fri Dec 19 18:58:12 2008 UTC (15 years, 5 months ago) by henning
Branch: MAIN
CVS Tags: OPENBSD_4_5_BASE,
OPENBSD_4_5
Changes since 1.89: +3 -2 lines
Diff to previous 1.89 (colored)
document the default localpref, from discussion with Mick Hohmann <mick at IM dot net>
Revision 1.89 / (download) - annotate - [select for diffs], Thu Oct 2 12:39:25 2008 UTC (15 years, 8 months ago) by jmc
Branch: MAIN
Changes since 1.88: +3 -3 lines
Diff to previous 1.88 (colored)
correct path for isakmpd/local.pub; from Matthew Dempsky
Revision 1.88 / (download) - annotate - [select for diffs], Sat Mar 22 08:38:38 2008 UTC (16 years, 2 months ago) by claudio
Branch: MAIN
CVS Tags: OPENBSD_4_4_BASE,
OPENBSD_4_4
Changes since 1.87: +4 -2 lines
Diff to previous 1.87 (colored)
Mention that softreconfig is on by default. From Matthew Dempsky
Revision 1.87 / (download) - annotate - [select for diffs], Sun Oct 21 21:34:14 2007 UTC (16 years, 7 months ago) by mk
Branch: MAIN
CVS Tags: OPENBSD_4_3_BASE,
OPENBSD_4_3
Changes since 1.86: +4 -2 lines
Diff to previous 1.86 (colored)
Being able to set the decision weight of prefixes is a nice feature, but when it's not really documented in what way it influences the decision process, people like myself will screw it up and assume that it gets added to the prefix path lenth, and thus that smaller weight wins. .. which is not the case. Document the actual behaviour. ok claudio, the general change agreed by henning. proofraed by jmc.
Revision 1.86 / (download) - annotate - [select for diffs], Thu May 31 19:20:22 2007 UTC (17 years ago) by jmc
Branch: MAIN
CVS Tags: OPENBSD_4_2_BASE,
OPENBSD_4_2
Changes since 1.85: +2 -2 lines
Diff to previous 1.85 (colored)
convert to new .Dd format;
Revision 1.85 / (download) - annotate - [select for diffs], Tue Apr 24 13:45:24 2007 UTC (17 years, 1 month ago) by claudio
Branch: MAIN
Changes since 1.84: +12 -2 lines
Diff to previous 1.84 (colored)
Try to document the new 4-byte AS numbers without being to invasive. "people will complain if it's unclear" jmc@
Revision 1.84 / (download) - annotate - [select for diffs], Thu Mar 29 13:10:32 2007 UTC (17 years, 2 months ago) by claudio
Branch: MAIN
Changes since 1.83: +9 -1 lines
Diff to previous 1.83 (colored)
Document the new inet and inet6 filter parameters. OK henning@
Revision 1.83 / (download) - annotate - [select for diffs], Tue Mar 6 16:52:48 2007 UTC (17 years, 3 months ago) by henning
Branch: MAIN
CVS Tags: OPENBSD_4_1_BASE,
OPENBSD_4_1
Changes since 1.82: +3 -1 lines
Diff to previous 1.82 (colored)
allow filtering on peer-as (leftmost AS in path), ok claudio
Revision 1.82 / (download) - annotate - [select for diffs], Sun Mar 4 17:41:40 2007 UTC (17 years, 3 months ago) by henning
Branch: MAIN
Changes since 1.81: +12 -1 lines
Diff to previous 1.81 (colored)
document include, and comments stolen from hostapd.conf.5
Revision 1.81 / (download) - annotate - [select for diffs], Sat Jan 27 08:08:54 2007 UTC (17 years, 4 months ago) by jmc
Branch: MAIN
Changes since 1.80: +3 -3 lines
Diff to previous 1.80 (colored)
use \(en for ranges e.g. 10 \(en 12
Revision 1.80 / (download) - annotate - [select for diffs], Fri Jan 26 23:17:18 2007 UTC (17 years, 4 months ago) by claudio
Branch: MAIN
Changes since 1.79: +12 -1 lines
Diff to previous 1.79 (colored)
Finally document announce capabilities (yes|no). With help from jmc@
Revision 1.79 / (download) - annotate - [select for diffs], Fri Jan 26 21:39:10 2007 UTC (17 years, 4 months ago) by claudio
Branch: MAIN
Changes since 1.78: +5 -1 lines
Diff to previous 1.78 (colored)
Document which AS are designated for private use and which are reserved for special stuff (4-byte AS support).
Revision 1.78 / (download) - annotate - [select for diffs], Tue Dec 5 12:08:13 2006 UTC (17 years, 6 months ago) by henning
Branch: MAIN
Changes since 1.77: +18 -1 lines
Diff to previous 1.77 (colored)
implement the ttl security hack. since the pc slaves fear the word hack, they call it "Generalized TTL Security Mechanism" officially, RFC 3682. manpage with help from jmc
Revision 1.77 / (download) - annotate - [select for diffs], Tue Nov 28 16:39:34 2006 UTC (17 years, 6 months ago) by henning
Branch: MAIN
Changes since 1.76: +9 -1 lines
Diff to previous 1.76 (colored)
allow bgpd to work on alternate routing tables, claudio ok, jmc manpage help
Revision 1.76 / (download) - annotate - [select for diffs], Tue Sep 12 13:39:37 2006 UTC (17 years, 9 months ago) by jmc
Branch: MAIN
CVS Tags: OPENBSD_4_0_BASE,
OPENBSD_4_0
Changes since 1.75: +8 -2 lines
Diff to previous 1.75 (colored)
for apps which use interface groups, point to the section of ifconfig(8) where they are explained; ok mcbride mpf henning
Revision 1.75 / (download) - annotate - [select for diffs], Thu Aug 31 18:44:48 2006 UTC (17 years, 9 months ago) by jmc
Branch: MAIN
Changes since 1.74: +2 -6 lines
Diff to previous 1.74 (colored)
knock out the cpp/m4 stuff from MACROS; after discussion with many...
Revision 1.74 / (download) - annotate - [select for diffs], Mon Aug 28 23:16:51 2006 UTC (17 years, 9 months ago) by stevesk
Branch: MAIN
Changes since 1.73: +2 -2 lines
Diff to previous 1.73 (colored)
use Forwarding Information Base vs. Forward Information Base; ok jmc@ claudio@
Revision 1.73 / (download) - annotate - [select for diffs], Fri Aug 4 12:01:48 2006 UTC (17 years, 10 months ago) by henning
Branch: MAIN
Changes since 1.72: +14 -4 lines
Diff to previous 1.72 (colored)
add "restart" to max-prefix, allows sessions suspended due to reaching max-prefix to be restarted automagically after a given number of minutes requested by "Sylwester S. Biernacki" <obeer@obeer.com>, manpage help jmc, ok claudio
Revision 1.72 / (download) - annotate - [select for diffs], Mon Jun 19 20:51:46 2006 UTC (17 years, 11 months ago) by jmc
Branch: MAIN
Changes since 1.71: +5 -3 lines
Diff to previous 1.71 (colored)
a little .Xr;
Revision 1.71 / (download) - annotate - [select for diffs], Sat Jun 17 14:06:09 2006 UTC (17 years, 11 months ago) by henning
Branch: MAIN
Changes since 1.70: +16 -1 lines
Diff to previous 1.70 (colored)
implement carp demotion control for bgpd. sessions can be configured to modify the carp demotion counter for a given interface group (usually, "carp", which has all carp interfaces) when the session is not established. once the session is established for 60 seconds, the demotion is cleared. this, used correctly, can prevent a bgpd-box which lost all sessions (and thus has no routes) to be carp master, while the backup has sessions. thought through and partially hacked on a drive from calgary to vancouver with ryan, ok claudio
Revision 1.70 / (download) - annotate - [select for diffs], Fri May 26 04:02:59 2006 UTC (18 years ago) by deraadt
Branch: MAIN
Changes since 1.69: +2 -2 lines
Diff to previous 1.69 (colored)
let us not talk about ipsecadm and vpn anymore; ok reyk
Revision 1.69 / (download) - annotate - [select for diffs], Tue Apr 4 12:39:19 2006 UTC (18 years, 2 months ago) by henning
Branch: MAIN
Changes since 1.68: +17 -5 lines
Diff to previous 1.68 (colored)
document set nexthop self, and improve that section whil eon it, claudio ok
Revision 1.68 / (download) - annotate - [select for diffs], Thu Mar 23 20:26:44 2006 UTC (18 years, 2 months ago) by claudio
Branch: MAIN
Changes since 1.67: +18 -1 lines
Diff to previous 1.67 (colored)
Document nexthop qualify via (bgp|default). OK henning, additional input jmc@
Revision 1.67 / (download) - annotate - [select for diffs], Wed Mar 8 13:20:25 2006 UTC (18 years, 3 months ago) by claudio
Branch: MAIN
Changes since 1.66: +9 -5 lines
Diff to previous 1.66 (colored)
Document "set community delete ..." and sync that section with the one from the PARAMETERS section. ok henning@
Revision 1.66 / (download) - annotate - [select for diffs], Tue Mar 7 17:54:08 2006 UTC (18 years, 3 months ago) by claudio
Branch: MAIN
Changes since 1.65: +7 -1 lines
Diff to previous 1.65 (colored)
"set attribute ..." in neighbor blocks needs better documentation. With input from jmc@ and ok henning@
Revision 1.65 / (download) - annotate - [select for diffs], Tue Mar 7 15:06:43 2006 UTC (18 years, 3 months ago) by claudio
Branch: MAIN
Changes since 1.64: +2 -2 lines
Diff to previous 1.64 (colored)
Use 65535 instead of 0xffff to specify the maximum number that can be used for the local part of communities.
Revision 1.64 / (download) - annotate - [select for diffs], Sat Feb 25 15:53:15 2006 UTC (18 years, 3 months ago) by claudio
Branch: MAIN
CVS Tags: OPENBSD_3_9_BASE,
OPENBSD_3_9
Changes since 1.63: +18 -1 lines
Diff to previous 1.63 (colored)
Document the softreconfig (in|out) switch. With help from jmc@
Revision 1.63 / (download) - annotate - [select for diffs], Sun Feb 5 11:06:01 2006 UTC (18 years, 4 months ago) by jmc
Branch: MAIN
Changes since 1.62: +3 -3 lines
Diff to previous 1.62 (colored)
tweaks; ok claudio
Revision 1.62 / (download) - annotate - [select for diffs], Sat Feb 4 13:16:44 2006 UTC (18 years, 4 months ago) by claudio
Branch: MAIN
Changes since 1.61: +8 -1 lines
Diff to previous 1.61 (colored)
Document the new special community part "neighbor-as". OK henning@
Revision 1.61 / (download) - annotate - [select for diffs], Wed Oct 19 10:42:06 2005 UTC (18 years, 7 months ago) by henning
Branch: MAIN
Changes since 1.60: +5 -1 lines
Diff to previous 1.60 (colored)
new keyword "down" in neighbor spec, when givenm, the session is not started on bgpd startup but stays in IDLE. requested by claudio
Revision 1.60 / (download) - annotate - [select for diffs], Wed Aug 10 09:00:16 2005 UTC (18 years, 10 months ago) by jmc
Branch: MAIN
CVS Tags: OPENBSD_3_8_BASE,
OPENBSD_3_8
Changes since 1.59: +3 -3 lines
Diff to previous 1.59 (colored)
- comapared -> compared - correct word order - grammar
Revision 1.59 / (download) - annotate - [select for diffs], Tue Aug 9 20:27:25 2005 UTC (18 years, 10 months ago) by claudio
Branch: MAIN
Changes since 1.58: +18 -1 lines
Diff to previous 1.58 (colored)
Introduce new route decision tunable "rde med compare (always|strict)". If set to always the med will also be compared between different AS. The default is strict which is the way the RFC specifies it. OK henning@
Revision 1.58 / (download) - annotate - [select for diffs], Thu Jul 28 20:32:33 2005 UTC (18 years, 10 months ago) by henning
Branch: MAIN
Changes since 1.57: +15 -1 lines
Diff to previous 1.57 (colored)
document the v4/v6 safi control buttons (and of course it is marc balmer who's spreading the kaesefondue here, not marcm) claudio ok
Revision 1.57 / (download) - annotate - [select for diffs], Wed Jun 29 09:43:25 2005 UTC (18 years, 11 months ago) by claudio
Branch: MAIN
Changes since 1.56: +7 -2 lines
Diff to previous 1.56 (colored)
rtlabel support via filter sets. Just use "set rtlabel foobar" in filters network and neighbor statements and the routes are labeled accordingly. While doing that fix some mem-leaks by introducing filterset_free() and remove the free on send option of send_filterset(). This took a bit longer because we need to carefully track the rtlabel id refcnts or bad things may happen on reloads. henning@ looks fine
Revision 1.56 / (download) - annotate - [select for diffs], Thu Jun 9 15:32:03 2005 UTC (19 years ago) by claudio
Branch: MAIN
Changes since 1.55: +11 -3 lines
Diff to previous 1.55 (colored)
Change the "network connected|static" statements to "network inet|inet6 connected|static" so that it is possible to distinguish between IPv4 and IPv6 addresses. "network connected|static" is considered deprecated but will be supported as an alias for "network inet connected|static" for some time (one release) to simplify upgrades. This also solve a nasty crash when using "network connected". OK henning@
Revision 1.55 / (download) - annotate - [select for diffs], Sat Jun 4 21:48:16 2005 UTC (19 years ago) by henning
Branch: MAIN
Changes since 1.54: +3 -2 lines
Diff to previous 1.54 (colored)
be more clear about route-age
Revision 1.54 / (download) - annotate - [select for diffs], Sun May 1 17:35:26 2005 UTC (19 years, 1 month ago) by david
Branch: MAIN
Changes since 1.53: +2 -2 lines
Diff to previous 1.53 (colored)
spelling
Revision 1.53 / (download) - annotate - [select for diffs], Thu Apr 28 13:54:45 2005 UTC (19 years, 1 month ago) by claudio
Branch: MAIN
Changes since 1.52: +9 -1 lines
Diff to previous 1.52 (colored)
Support for "network connected" and "network static" -- announce all directly connected respectively all static routes. The list is auto- matically adjusted as soon as a route changes. OK henning@
Revision 1.52 / (download) - annotate - [select for diffs], Mon Apr 18 11:19:39 2005 UTC (19 years, 1 month ago) by jmc
Branch: MAIN
Changes since 1.51: +8 -8 lines
Diff to previous 1.51 (colored)
tidy up AS section a little; ok henning@
Revision 1.51 / (download) - annotate - [select for diffs], Mon Apr 18 00:16:16 2005 UTC (19 years, 1 month ago) by henning
Branch: MAIN
Changes since 1.50: +5 -3 lines
Diff to previous 1.50 (colored)
AfriNIC has been established as RIR for Africa now
Revision 1.50 / (download) - annotate - [select for diffs], Wed Apr 13 20:05:12 2005 UTC (19 years, 2 months ago) by jmc
Branch: MAIN
Changes since 1.49: +2 -2 lines
Diff to previous 1.49 (colored)
tweak to make this use similar format to ospfd.conf.5 and hostapd.conf.5;
Revision 1.49 / (download) - annotate - [select for diffs], Tue Apr 12 21:53:38 2005 UTC (19 years, 2 months ago) by jmc
Branch: MAIN
Changes since 1.48: +4 -4 lines
Diff to previous 1.48 (colored)
tweaks; ok claudio@
Revision 1.48 / (download) - annotate - [select for diffs], Tue Apr 12 14:32:00 2005 UTC (19 years, 2 months ago) by claudio
Branch: MAIN
Changes since 1.47: +18 -1 lines
Diff to previous 1.47 (colored)
Introduce a per prefix weight. The weight is used to tip prefixes with equal long AS pathes in one or the other direction. It weights a prefix at a very late stage in the decision process. This is a nice bgpd feature to traffic engineer networks where most AS pathes are equally long. OK henning@
Revision 1.47 / (download) - annotate - [select for diffs], Tue Apr 12 14:22:46 2005 UTC (19 years, 2 months ago) by claudio
Branch: MAIN
Changes since 1.46: +2 -1 lines
Diff to previous 1.46 (colored)
set metric is an alias of set med since a long time. OK henning@
Revision 1.46 / (download) - annotate - [select for diffs], Tue Mar 15 23:41:52 2005 UTC (19 years, 2 months ago) by henning
Branch: MAIN
CVS Tags: OPENBSD_3_7_BASE,
OPENBSD_3_7
Changes since 1.45: +21 -1 lines
Diff to previous 1.45 (colored)
describe "depend on" you wouldn't guess how hard it was to get that right... initial diffs and lots of input from Jason Ackley and jaredy, ok claudio jaredy jmc deraadt
Revision 1.45 / (download) - annotate - [select for diffs], Tue Mar 15 09:24:05 2005 UTC (19 years, 2 months ago) by jmc
Branch: MAIN
Changes since 1.44: +11 -11 lines
Diff to previous 1.44 (colored)
tweaks; ok claudio@
Revision 1.44 / (download) - annotate - [select for diffs], Mon Mar 14 17:32:04 2005 UTC (19 years, 3 months ago) by claudio
Branch: MAIN
Changes since 1.43: +17 -1 lines
Diff to previous 1.43 (colored)
Allow to modify the metrics in a relative way by prepending the number with a '+' or '-'. e.g. set localpref +20. This is another gem from the FOSDEM lying around on my HD gathering dust. OK henning@
Revision 1.43 / (download) - annotate - [select for diffs], Fri Mar 11 12:54:19 2005 UTC (19 years, 3 months ago) by claudio
Branch: MAIN
Changes since 1.42: +20 -4 lines
Diff to previous 1.42 (colored)
Finally commit the transparent-as and nexthop no-modify stuff I wrote on the way to FOSDEM. With transparent-as set to ye bgpd will not prepend his own AS for sent updates. NB the neighbor needs to set "enforce neighbor-as no" or it will not like the received AS paths. With set nexthop no-modify bgpd will change the nexthop as done normaly. OK henning@ man page update with help of jmc@
Revision 1.42 / (download) - annotate - [select for diffs], Fri Dec 31 10:47:37 2004 UTC (19 years, 5 months ago) by jaredy
Branch: MAIN
Changes since 1.41: +3 -3 lines
Diff to previous 1.41 (colored)
document using neighbor descriptions to specify neighbors where applicable. ok henning, jmc
Revision 1.41 / (download) - annotate - [select for diffs], Fri Nov 19 10:06:33 2004 UTC (19 years, 6 months ago) by claudio
Branch: MAIN
Changes since 1.40: +4 -3 lines
Diff to previous 1.40 (colored)
Add NO_PEER to the list of well-known communities and use 65535 instead of 0xffff. OK henning@
Revision 1.40 / (download) - annotate - [select for diffs], Thu Nov 11 10:35:15 2004 UTC (19 years, 7 months ago) by claudio
Branch: MAIN
Changes since 1.39: +14 -1 lines
Diff to previous 1.39 (colored)
New config statement "rde route-age [evaluate|ignore]". If set to evaluate the best path selection will not only be based on the path attributes but also on the age of the prefix. This is an extension to the RFC. The default is ignore but previously it was implicitly set to evaluate. OK henning@ man page OK jaredy@ jmc@
Revision 1.39 / (download) - annotate - [select for diffs], Tue Nov 9 10:37:42 2004 UTC (19 years, 7 months ago) by henning
Branch: MAIN
Changes since 1.38: +9 -7 lines
Diff to previous 1.38 (colored)
in the list of RIRs: -add LACNIC -RIPE serves more than just europe, and ARIN more than north america -order alphabetically From: Klaus Steding-Jessen <jessen@nic.br>
Revision 1.38 / (download) - annotate - [select for diffs], Tue Sep 28 12:09:31 2004 UTC (19 years, 8 months ago) by claudio
Branch: MAIN
Changes since 1.37: +7 -1 lines
Diff to previous 1.37 (colored)
Add prepend-neighbor feature. Prepend the remote-as n times similar to prepend-self. Only for incomming UPDATEs. OK henning@
Revision 1.37 / (download) - annotate - [select for diffs], Fri Aug 20 14:56:09 2004 UTC (19 years, 9 months ago) by claudio
Branch: MAIN
CVS Tags: OPENBSD_3_6_BASE,
OPENBSD_3_6
Changes since 1.36: +7 -7 lines
Diff to previous 1.36 (colored)
foobar-AS -> foobar-as as already done in some places. mIXeD cASe keywords are not fluffy. OK henning@
Revision 1.36 / (download) - annotate - [select for diffs], Thu Aug 19 16:12:31 2004 UTC (19 years, 9 months ago) by hshoexer
Branch: MAIN
Changes since 1.35: +11 -10 lines
Diff to previous 1.35 (colored)
document use of "isakmpd -Ka" with bgpd. ok (and help) henning@ jmc@ jaredy@
Revision 1.35 / (download) - annotate - [select for diffs], Fri Aug 13 14:03:20 2004 UTC (19 years, 10 months ago) by claudio
Branch: MAIN
Changes since 1.34: +9 -2 lines
Diff to previous 1.34 (colored)
Fix minor issues with IPv6 dumps and add a function for dumping the RIB table protocol independent. This new dump format is not (yet) supported by the mrtd route_btoa tool. OK henning@
Revision 1.34 / (download) - annotate - [select for diffs], Mon Aug 9 16:29:18 2004 UTC (19 years, 10 months ago) by jaredy
Branch: MAIN
Changes since 1.33: +76 -24 lines
Diff to previous 1.33 (colored)
document new list expansion syntax & add examples reorganize the "to/from <peer>" filter rule parameter section add a few other various clarification bits and fix some mdoc macros ok henning
Revision 1.33 / (download) - annotate - [select for diffs], Fri Jul 30 22:50:49 2004 UTC (19 years, 10 months ago) by claudio
Branch: MAIN
Changes since 1.32: +8 -3 lines
Diff to previous 1.32 (colored)
Document "announce default-route" with a lot of help from jmc@
Revision 1.32 / (download) - annotate - [select for diffs], Tue Jul 13 18:27:57 2004 UTC (19 years, 11 months ago) by jaredy
Branch: MAIN
Changes since 1.31: +326 -235 lines
Diff to previous 1.31 (colored)
lots of cleanup and revising: - typo fixes, rewording, punctuation - better use of and more format macros - section reorganization in some places - list directives with their arguments - add some cross-refs ok jmc, henning, otto
Revision 1.31 / (download) - annotate - [select for diffs], Sun Jul 11 00:53:20 2004 UTC (19 years, 11 months ago) by jfb
Branch: MAIN
Changes since 1.30: +2 -2 lines
Diff to previous 1.30 (colored)
Fix a cross reference to bgpd in the FILES section ok jmc@, should make brad stop whining
Revision 1.30 / (download) - annotate - [select for diffs], Fri Jul 9 11:01:22 2004 UTC (19 years, 11 months ago) by henning
Branch: MAIN
Changes since 1.29: +17 -15 lines
Diff to previous 1.29 (colored)
various tweaks from the Frankfurt->Hamburg flight
Revision 1.29 / (download) - annotate - [select for diffs], Mon Jul 5 17:04:44 2004 UTC (19 years, 11 months ago) by henning
Branch: MAIN
Changes since 1.28: +7 -2 lines
Diff to previous 1.28 (colored)
new blackhole/reject nexthops
Revision 1.28 / (download) - annotate - [select for diffs], Mon May 24 08:45:04 2004 UTC (20 years ago) by jmc
Branch: MAIN
Changes since 1.27: +4 -4 lines
Diff to previous 1.27 (colored)
uppercase `id'; ok henning@
Revision 1.27 / (download) - annotate - [select for diffs], Sun May 23 23:05:31 2004 UTC (20 years ago) by jmc
Branch: MAIN
Changes since 1.26: +114 -106 lines
Diff to previous 1.26 (colored)
some readability fixes, mainly keeping things in alphabetical order; ok henning@
Revision 1.26 / (download) - annotate - [select for diffs], Fri May 21 15:36:40 2004 UTC (20 years ago) by claudio
Branch: MAIN
Changes since 1.25: +4 -1 lines
Diff to previous 1.25 (colored)
RFC 2796 bgp route reflector support. This is very useful in conjunction with templates. looks good, go for it henning@
Revision 1.25 / (download) - annotate - [select for diffs], Mon May 17 12:39:32 2004 UTC (20 years ago) by djm
Branch: MAIN
Changes since 1.24: +17 -1 lines
Diff to previous 1.24 (colored)
extend filter language to allow basic setting of COMMUNITIES attribute. ok claudio@
Revision 1.24 / (download) - annotate - [select for diffs], Sat May 8 20:18:45 2004 UTC (20 years, 1 month ago) by henning
Branch: MAIN
Changes since 1.23: +20 -1 lines
Diff to previous 1.23 (colored)
as bloody attempt to document neighbor cloning
Revision 1.23 / (download) - annotate - [select for diffs], Sat May 8 20:00:44 2004 UTC (20 years, 1 month ago) by henning
Branch: MAIN
Changes since 1.22: +62 -2 lines
Diff to previous 1.22 (colored)
a bloody attempt at documenting the ipsec fluff. this needs to be fleshed out and polished, but at least it is somewhat documented now...
Revision 1.22 / (download) - annotate - [select for diffs], Fri May 7 10:06:15 2004 UTC (20 years, 1 month ago) by djm
Branch: MAIN
Changes since 1.21: +6 -1 lines
Diff to previous 1.21 (colored)
add a filter option to dump prefixes learned in UPDATEs into a PF table, intended for building realtime BGP blacklists (e.g. with spamd); ok claudio & henning
Revision 1.21 / (download) - annotate - [select for diffs], Fri Apr 2 18:28:49 2004 UTC (20 years, 2 months ago) by henning
Branch: MAIN
Changes since 1.20: +2 -2 lines
Diff to previous 1.20 (colored)
spelink
Revision 1.20 / (download) - annotate - [select for diffs], Fri Mar 12 20:23:01 2004 UTC (20 years, 3 months ago) by henning
Branch: MAIN
CVS Tags: OPENBSD_3_5_BASE,
OPENBSD_3_5
Changes since 1.19: +12 -19 lines
Diff to previous 1.19 (colored)
tweak
Revision 1.19 / (download) - annotate - [select for diffs], Fri Mar 12 17:39:46 2004 UTC (20 years, 3 months ago) by claudio
Branch: MAIN
Changes since 1.18: +259 -4 lines
Diff to previous 1.18 (colored)
Update man page to reflect reality. Added filtering section and some new statements. OK jmc@ henning@
Revision 1.18 / (download) - annotate - [select for diffs], Wed Feb 25 21:15:01 2004 UTC (20 years, 3 months ago) by claudio
Branch: MAIN
Changes since 1.17: +22 -4 lines
Diff to previous 1.17 (colored)
Man page update for the mrt dump changes. OK henning@ jmc@
Revision 1.17 / (download) - annotate - [select for diffs], Sat Feb 7 20:40:47 2004 UTC (20 years, 4 months ago) by henning
Branch: MAIN
Changes since 1.16: +9 -1 lines
Diff to previous 1.16 (colored)
it's about time to document tcp md5sig ... jmc help and ok
Revision 1.16 / (download) - annotate - [select for diffs], Sun Feb 1 19:49:10 2004 UTC (20 years, 4 months ago) by claudio
Branch: MAIN
Changes since 1.15: +19 -3 lines
Diff to previous 1.15 (colored)
Update: document the network statement and update the announce description OK henning@
Revision 1.15 / (download) - annotate - [select for diffs], Sun Jan 18 07:35:30 2004 UTC (20 years, 4 months ago) by jmc
Branch: MAIN
Changes since 1.14: +73 -73 lines
Diff to previous 1.14 (colored)
sort options; ok claudio@ henning@
Revision 1.14 / (download) - annotate - [select for diffs], Tue Jan 13 14:31:18 2004 UTC (20 years, 5 months ago) by claudio
Branch: MAIN
Changes since 1.13: +24 -1 lines
Diff to previous 1.13 (colored)
Update manual for the new config statements. Spelling correction by jmc@ OK henning@
Revision 1.13 / (download) - annotate - [select for diffs], Wed Jan 7 12:33:15 2004 UTC (20 years, 5 months ago) by claudio
Branch: MAIN
Changes since 1.12: +44 -3 lines
Diff to previous 1.12 (colored)
Document mrt dump comands. Help by jmc@ OK henning@
Revision 1.12 / (download) - annotate - [select for diffs], Tue Jan 6 20:41:55 2004 UTC (20 years, 5 months ago) by henning
Branch: MAIN
Changes since 1.11: +7 -1 lines
Diff to previous 1.11 (colored)
allow holdtime and holdtime min to be configuered per peer ok claudio@
Revision 1.11 / (download) - annotate - [select for diffs], Tue Jan 6 03:43:50 2004 UTC (20 years, 5 months ago) by henning
Branch: MAIN
Changes since 1.10: +2 -2 lines
Diff to previous 1.10 (colored)
2004
Revision 1.10 / (download) - annotate - [select for diffs], Sat Dec 27 21:40:43 2003 UTC (20 years, 5 months ago) by henning
Branch: MAIN
Changes since 1.9: +6 -6 lines
Diff to previous 1.9 (colored)
bgpid -> router-id local-addr -> local-address
Revision 1.9 / (download) - annotate - [select for diffs], Sat Dec 27 18:43:36 2003 UTC (20 years, 5 months ago) by henning
Branch: MAIN
Changes since 1.8: +2 -2 lines
Diff to previous 1.8 (colored)
style
Revision 1.8 / (download) - annotate - [select for diffs], Sat Dec 27 14:42:59 2003 UTC (20 years, 5 months ago) by henning
Branch: MAIN
Changes since 1.7: +8 -3 lines
Diff to previous 1.7 (colored)
"no fib-update" -> "fib-update [yes|no]" makes more sense this way
Revision 1.7 / (download) - annotate - [select for diffs], Fri Dec 26 20:52:14 2003 UTC (20 years, 5 months ago) by jakob
Branch: MAIN
Changes since 1.6: +3 -1 lines
Diff to previous 1.6 (colored)
add option 'log updates' to log updates. ok henning@
Revision 1.6 / (download) - annotate - [select for diffs], Fri Dec 26 20:40:10 2003 UTC (20 years, 5 months ago) by henning
Branch: MAIN
Changes since 1.5: +2 -2 lines
Diff to previous 1.5 (colored)
yes, i have to admit that Wouter Clarie <rimshot@pandora.be> is right, The bgpd.conf program didn't first appear in OpenBSD 3.5, because, well, a config file is not a program.
Revision 1.5 / (download) - annotate - [select for diffs], Fri Dec 26 20:29:10 2003 UTC (20 years, 5 months ago) by jmc
Branch: MAIN
Changes since 1.4: +3 -3 lines
Diff to previous 1.4 (colored)
FILES before SEE ALSO;
Revision 1.4 / (download) - annotate - [select for diffs], Thu Dec 25 14:28:49 2003 UTC (20 years, 5 months ago) by henning
Branch: MAIN
Changes since 1.3: +3 -1 lines
Diff to previous 1.3 (colored)
implement "passive": do not attempt to open a tcp connection to the neighbor system
Revision 1.3 / (download) - annotate - [select for diffs], Wed Dec 24 13:49:21 2003 UTC (20 years, 5 months ago) by henning
Branch: MAIN
Changes since 1.2: +3 -1 lines
Diff to previous 1.2 (colored)
add option to not touch the kernel routing table
Revision 1.2 / (download) - annotate - [select for diffs], Wed Dec 24 11:38:56 2003 UTC (20 years, 5 months ago) by henning
Branch: MAIN
Changes since 1.1: +4 -4 lines
Diff to previous 1.1 (colored)
typos from jared apparently these were already fixed in the diff jmc@ sent me and I somehow screwed up when getting it in - sorry.
Revision 1.1 / (download) - annotate - [select for diffs], Tue Dec 23 17:06:32 2003 UTC (20 years, 5 months ago) by henning
Branch: MAIN
bloody attempt at the other manpage. this time with (non-bloody) help from jmc@