brnet/bird_config
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

更新外发BGP模板

Browse Source
This commit is contained in:
daxi20
2025-11-03 16:57:26 +08:00
parent d6c621f38d
commit 37842ed600
3 changed files with 47 additions and 13 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
bird/net/inet.conf
View File

@@ -6,6 +6,8 @@ template bgp tpl_bgp_up {
import filter { import filter {
if is_self_net() then reject; if is_self_net() then reject;
if is_bogon_prefix() || (bgp_path.len > 100) then reject; if is_bogon_prefix() || (bgp_path.len > 100) then reject;
bgp_large_community.empty;
bgp_large_community.add((LOCAL_ASN,200,0));# 传输到Ebgp
accept; accept;
}; };
export filter { export filter {
@@ -22,6 +24,8 @@ template bgp tpl_bgp_up {
import filter { import filter {
if is_self_net_v6() then reject; if is_self_net_v6() then reject;
if is_bogon_prefix() || (bgp_path.len > 100) then reject; if is_bogon_prefix() || (bgp_path.len > 100) then reject;
bgp_large_community.empty;
bgp_large_community.add((LOCAL_ASN,200,0));# 传输到Ebgp
accept; accept;
}; };
export filter { export filter {

49
bird/net/unet.conf
View File

@@ -4,19 +4,37 @@ template bgp unet_bgp_up0 {
ipv4 { ipv4 {
table unet4; table unet4;
import filter { import filter {
if unet_is_valid_network_v4_allnet() && !unet_is_self_net() then accept; if !unet_is_valid_network_v4_allnet() then reject;
reject; if unet_is_self_net() then reject;
bgp_large_community.empty;
bgp_large_community.add((UNET_ASN,200,0));# 传输到Ebgp
accept;
};
export filter {
if !unet_is_valid_network_v4_allnet() then reject;
if source !~ [RTS_STATIC, RTS_BGP] then reject;
if bgp_large_community !~ [(UNET_ASN, 200,0)] then reject;
bgp_large_community.empty;
accept;
}; };
export filter { if unet_is_valid_network_v4_allnet() && source ~ [RTS_STATIC, RTS_BGP] then accept; else reject; };
import limit 9000 action block; import limit 9000 action block;
}; };
ipv6 { ipv4 {
table unet6; table unet4;
import filter { import filter {
if unet_is_voalid_net_v6() && !unet_is_self_net_v6() then accept; if !unet_is_voalid_net_v6() then reject;
reject; if unet_is_self_net_v6() then reject;
bgp_large_community.empty;
bgp_large_community.add((UNET_ASN,200,0));# 传输到Ebgp
accept;
};
export filter {
if !unet_is_voalid_net_v6() then reject;
if source !~ [RTS_STATIC, RTS_BGP] then reject;
if bgp_large_community !~ [(UNET_ASN, 200,0)] then reject;
bgp_large_community.empty;
accept;
}; };
export filter { if unet_is_voalid_net_v6() && source ~ [RTS_STATIC, RTS_BGP] then accept; else reject; };
import limit 9000 action block; import limit 9000 action block;
}; };
} }
@@ -27,10 +45,19 @@ template bgp unet_bgp_up1 {
ipv4 { ipv4 {
table unet4; table unet4;
import filter { import filter {
if unet_is_valid_network_v4() && !unet_is_self_net() then accept; if !unet_is_valid_network_v4() then reject;
reject; if unet_is_self_net() then reject;
bgp_large_community.empty;
bgp_large_community.add((UNET_ASN,200,0));# 传输到Ebgp
accept;
};
export filter {
if !unet_is_valid_network_v4() then reject;
if source !~ [RTS_STATIC, RTS_BGP] then reject;
if bgp_large_community !~ [(UNET_ASN, 200,0)] then reject;
bgp_large_community.empty;
accept;
}; };
export filter { if unet_is_valid_network_v4() && source ~ [RTS_STATIC, RTS_BGP] then accept; else reject; };
import limit 9000 action block; import limit 9000 action block;
}; };
} }

7
update.sh
View File

@@ -1,7 +1,10 @@
#!/bin/bash #!/bin/bash
rm /etc/bird/function/unet.conf rm /etc/bird/net/unet.conf
curl https://git.nia.ink/brnet/bird_config/raw/branch/master/bird/function/unet.conf > /etc/bird/function/unet.conf curl https://git.nia.ink/brnet/bird_config/raw/branch/master/bird/net/unet.conf > /etc/bird/net/unet.conf
rm /etc/bird/net/inet.conf
curl https://git.nia.ink/brnet/bird_config/raw/branch/master/bird/net/inet.conf > /etc/bird/net/inet.conf
chmod -R 755 /etc/bird chmod -R 755 /etc/bird