diff options
-rw-r--r-- | doc/bird.sgml | 75 | ||||
-rw-r--r-- | nest/rt-dev.c | 41 | ||||
-rw-r--r-- | nest/rt-dev.h | 3 | ||||
-rw-r--r-- | nest/rt-table.c | 12 |
4 files changed, 99 insertions, 32 deletions
diff --git a/doc/bird.sgml b/doc/bird.sgml index 5ed816e8..2ca44e38 100644 --- a/doc/bird.sgml +++ b/doc/bird.sgml @@ -293,6 +293,20 @@ routes are: <item>Route next hops (see below) </itemize> +<sect1>IPv6 source-specific routes +<label id="ip-sadr-routes"> + +<p>The IPv6 routes containing both destination and source prefix. They are used +for source-specific routing (SSR), also called source-address dependent routing +(SADR), see <rfc id="8043">. Currently limited mostly to the Babel protocol. +Configuration keyword is <cf/ipv6 sadr/. + +<itemize> + <item>(PK) Route destination (IP prefix together with its length) + <item>(PK) Route source (IP prefix together with its length) + <item>Route next hops (see below) +</itemize> + <sect1>VPN IPv4 and IPv6 routes <label id="vpn-routes"> @@ -1239,6 +1253,12 @@ foot). pair, and <cf/.len/, which separates prefix length from the pair. So <cf>1.2.0.0/16.len = 16</cf> is true. + <cf/NET_IP6_SADR/ nettype holds both destination and source IPv6 + prefix. The literals are written as <cf><m/ipaddress//<m/pxlen/ from + <m/ipaddress//<m/pxlen/</cf>, where the first part is the destination + prefix and the second art is the source prefix. They support the same + operators as IP prefixes, but just for the destination part. + <cf/NET_VPN4/ and <cf/NET_VPN6/ prefixes hold an IP prefix with VPN Route Distinguisher (<rfc id="4364">). They support the same special operators as IP prefixes, and also <cf/.rd/ which extracts the Route @@ -1459,6 +1479,7 @@ foot). lclists, with LCs instead of pairs as arguments. </descrip> + <sect>Operators <label id="operators"> @@ -1651,19 +1672,25 @@ cases desirable. routes over the same IPv6 transport. For sending and receiving Babel packets, only a link-local IPv6 address is needed. -<p>BIRD does not implement any Babel extensions, but will coexist with -implementations using extensions (and will just ignore extension messages). +<p>BIRD implements an extension for IPv6 source-specific routing (SSR or SADR), +but must be configured accordingly to use it. SADR-enabled Babel router can +interoperate with non-SADR Babel router, but the later would ignore routes +with specific (non-zero) source prefix. <sect1>Configuration <label id="babel-config"> -<p>Babel supports no global configuration options apart from those common to all -other protocols, but supports the following per-interface configuration options: +<p>The Babel protocol support both IPv4 and IPv6 channels; both can be +configured simultaneously. It can also be configured with <ref +id="ip-sadr-routes" name="IPv6 SADR"> channel instead of regular IPv6 +channel, in such case SADR support is enabled. Babel supports no global +configuration options apart from those common to all other protocols, but +supports the following per-interface configuration options: <code> protocol babel [<name>] { ipv4 { <channel config> }; - ipv6 { <channel config> }; + ipv6 [sadr] { <channel config> }; interface <interface pattern> { type <wired|wireless>; rxcost <number>; @@ -1683,8 +1710,8 @@ protocol babel [<name>] { </code> <descrip> - <tag><label id="babel-channel">ipv4|ipv6 <m/channel config/</tag> - The supported channels are IPv4 and IPv6. + <tag><label id="babel-channel">ipv4 | ipv6 [sadr] <m/channel config/</tag> + The supported channels are IPv4, IPv6, and IPv6 SADR. <tag><label id="babel-type">type wired|wireless </tag> This option specifies the interface type: Wired or wireless. On wired @@ -2118,22 +2145,24 @@ to set routing policy and all the other parameters differently for each neighbor using the following configuration parameters: <descrip> - <tag><label id="bgp-local">local [<m/ip/] as <m/number/</tag> + <tag><label id="bgp-local">local [<m/ip/] [port <m/number/] [as <m/number/]</tag> Define which AS we are part of. (Note that contrary to other IP routers, BIRD is able to act as a router located in multiple AS'es simultaneously, but in such cases you need to tweak the BGP paths manually in the filters to get consistent behavior.) Optional <cf/ip/ argument specifies a source - address, equivalent to the <cf/source address/ option (see below). This - parameter is mandatory. + address, equivalent to the <cf/source address/ option (see below). + Optional <cf/port/ argument specifies the local BGP port instead of + standard port 179. The parameter may be used multiple times with + different sub-options (e.g., both <cf/local 10.0.0.1 as 65000;/ and + <cf/local 10.0.0.1; local as 65000;/ are valid). This parameter is + mandatory. <tag><label id="bgp-neighbor">neighbor [<m/ip/] [port <m/number/] [as <m/number/]</tag> Define neighboring router this instance will be talking to and what AS it is located in. In case the neighbor is in the same AS as we are, we automatically switch to iBGP. Optionally, the remote port may also be - specified. The parameter may be used multiple times with different - sub-options (e.g., both <cf/neighbor 10.0.0.1 as 65000;/ and - <cf/neighbor 10.0.0.1; neighbor as 65000;/ are valid). This parameter is - mandatory. + specified. Like <cf/local/ parameter, this parameter may also be used + multiple times with different sub-options. This parameter is mandatory. <tag><label id="bgp-iface">interface <m/string/</tag> Define interface we should use for link-local BGP IPv6 sessions. @@ -2743,16 +2772,17 @@ protocol device { <p>The Direct protocol is a simple generator of device routes for all the directly connected networks according to the list of interfaces provided by the kernel via the Device protocol. The Direct protocol supports both IPv4 and IPv6 -channels. +channels; both can be configured simultaneously. It can also be configured with +<ref id="ip-sadr-routes" name="IPv6 SADR"> channel instead of regular IPv6 +channel in order to be used together with SADR-enabled Babel protocol. <p>The question is whether it is a good idea to have such device routes in BIRD routing table. OS kernel usually handles device routes for directly connected networks by itself so we don't need (and don't want) to export these routes to the kernel protocol. OSPF protocol creates device routes for its interfaces -itself and BGP protocol is usually used for exporting aggregate routes. Although -there are some use cases that use the direct protocol (like abusing eBGP as an -IGP routing protocol), in most cases it is not needed to have these device -routes in BIRD routing table and to use the direct protocol. +itself and BGP protocol is usually used for exporting aggregate routes. But the +Direct protocol is necessary for distance-vector protocols like RIP or Babel to +announce local networks. <p>There is one notable case when you definitely want to use the direct protocol -- running BIRD on BSD systems. Having high priority device routes for directly @@ -2827,8 +2857,10 @@ kernel protocols to the same routing table and changing route destination (gateway) in an export filter of a kernel protocol does not work. Both limitations can be overcome using another routing table and the pipe protocol. -<p>The Kernel protocol supports both IPv4 and IPv6 channels; only one of them -can be configured in each protocol instance. +<p>The Kernel protocol supports both IPv4 and IPv6 channels; only one channel +can be configured in each protocol instance. On Linux, it also supports <ref +id="ip-sadr-routes" name="IPv6 SADR"> and <ref id="mpls-routes" name="MPLS"> +channels. <sect1>Configuration <label id="krt-config"> @@ -4279,6 +4311,7 @@ protocol rip { <sect>RPKI +<label id="rpki"> <sect1>Introduction diff --git a/nest/rt-dev.c b/nest/rt-dev.c index 718c4578..66f458e7 100644 --- a/nest/rt-dev.c +++ b/nest/rt-dev.c @@ -31,6 +31,7 @@ dev_ifa_notify(struct proto *P, uint flags, struct ifa *ad) struct rt_dev_proto *p = (void *) P; struct rt_dev_config *cf = (void *) P->cf; struct channel *c; + net_addr *net = &ad->prefix; if (!EMPTY_LIST(cf->iface_list) && !iface_patt_find(&cf->iface_list, ad->iface, ad)) @@ -53,13 +54,20 @@ dev_ifa_notify(struct proto *P, uint flags, struct ifa *ad) if (!c) return; + /* For IPv6 SADR, replace regular prefix with SADR prefix */ + if (c->net_type == NET_IP6_SADR) + { + net = alloca(sizeof(net_addr_ip6_sadr)); + net_fill_ip6_sadr(net, net6_prefix(&ad->prefix), net6_pxlen(&ad->prefix), IP6_NONE, 0); + } + if (flags & IF_CHANGE_DOWN) { DBG("dev_if_notify: %s:%I going down\n", ad->iface->name, ad->ip); /* Use iface ID as local source ID */ struct rte_src *src = rt_get_source(P, ad->iface->index); - rte_update2(c, &ad->prefix, NULL, src); + rte_update2(c, net, NULL, src); } else if (flags & IF_CHANGE_UP) { @@ -85,7 +93,7 @@ dev_ifa_notify(struct proto *P, uint flags, struct ifa *ad) a = rta_lookup(&a0); e = rte_get_temp(a); e->pflags = 0; - rte_update2(c, &ad->prefix, e, src); + rte_update2(c, net, e, src); } } @@ -107,16 +115,32 @@ dev_if_notify(struct proto *p, uint c, struct iface *iface) } } +static void +dev_postconfig(struct proto_config *CF) +{ + struct rt_dev_config *cf = (void *) CF; + struct channel_config *ip4, *ip6, *ip6_sadr; + + ip4 = proto_cf_find_channel(CF, NET_IP4); + ip6 = proto_cf_find_channel(CF, NET_IP6); + ip6_sadr = proto_cf_find_channel(CF, NET_IP6_SADR); + + if (ip6 && ip6_sadr) + cf_error("Both ipv6 and ipv6-sadr channels"); + + cf->ip4_channel = ip4; + cf->ip6_channel = ip6 ?: ip6_sadr; +} static struct proto * dev_init(struct proto_config *CF) { struct proto *P = proto_new(CF); struct rt_dev_proto *p = (void *) P; - // struct rt_dev_config *cf = (void *) CF; + struct rt_dev_config *cf = (void *) CF; - proto_configure_channel(P, &p->ip4_channel, proto_cf_find_channel(CF, NET_IP4)); - proto_configure_channel(P, &p->ip6_channel, proto_cf_find_channel(CF, NET_IP6)); + proto_configure_channel(P, &p->ip4_channel, cf->ip4_channel); + proto_configure_channel(P, &p->ip6_channel, cf->ip6_channel); P->if_notify = dev_if_notify; P->ifa_notify = dev_ifa_notify; @@ -136,8 +160,8 @@ dev_reconfigure(struct proto *P, struct proto_config *CF) return 0; return - proto_configure_channel(P, &p->ip4_channel, proto_cf_find_channel(CF, NET_IP4)) && - proto_configure_channel(P, &p->ip6_channel, proto_cf_find_channel(CF, NET_IP6)); + proto_configure_channel(P, &p->ip4_channel, n->ip4_channel) && + proto_configure_channel(P, &p->ip6_channel, n->ip6_channel); return 1; } @@ -162,9 +186,10 @@ struct protocol proto_device = { .name = "Direct", .template = "direct%d", .preference = DEF_PREF_DIRECT, - .channel_mask = NB_IP, + .channel_mask = NB_IP | NB_IP6_SADR, .proto_size = sizeof(struct rt_dev_proto), .config_size = sizeof(struct rt_dev_config), + .postconfig = dev_postconfig, .init = dev_init, .reconfigure = dev_reconfigure, .copy_config = dev_copy_config diff --git a/nest/rt-dev.h b/nest/rt-dev.h index 20b88a64..5d91242a 100644 --- a/nest/rt-dev.h +++ b/nest/rt-dev.h @@ -13,6 +13,9 @@ struct rt_dev_config { struct proto_config c; list iface_list; /* list of struct iface_patt */ int check_link; + + struct channel_config *ip4_channel; + struct channel_config *ip6_channel; }; struct rt_dev_proto { diff --git a/nest/rt-table.c b/nest/rt-table.c index 686d0e84..b885c6e3 100644 --- a/nest/rt-table.c +++ b/nest/rt-table.c @@ -2076,6 +2076,13 @@ rt_unlock_table(rtable *r) } } +static struct rtable_config * +rt_find_table_config(struct config *cf, char *name) +{ + struct symbol *sym = cf_find_symbol(cf, name); + return (sym && (sym->class == SYM_TABLE)) ? sym->def : NULL; +} + /** * rt_commit - commit new routing table configuration * @new: new configuration @@ -2101,11 +2108,10 @@ rt_commit(struct config *new, struct config *old) rtable *ot = o->table; if (!ot->deleted) { - struct symbol *sym = cf_find_symbol(new, o->name); - if (sym && sym->class == SYM_TABLE && !new->shutdown) + r = rt_find_table_config(new, o->name); + if (r && (r->addr_type == o->addr_type) && !new->shutdown) { DBG("\t%s: same\n", o->name); - r = sym->def; r->table = ot; ot->name = r->name; ot->config = r; |