From b4c80a07facb697b60b56b202e808aa47d4575f6 Mon Sep 17 00:00:00 2001 From: Luke Granger-Brown Date: Tue, 31 Aug 2021 16:39:23 +0000 Subject: [PATCH] blade-router: configure passive session towards AS62240 --- ops/nixos/lib/bgp.nix | 32 ++++++++++++++++---------------- ops/nixos/lib/blade-router.nix | 14 ++++++++++++++ 2 files changed, 30 insertions(+), 16 deletions(-) diff --git a/ops/nixos/lib/bgp.nix b/ops/nixos/lib/bgp.nix index f82445ec91..70838d9d70 100644 --- a/ops/nixos/lib/bgp.nix +++ b/ops/nixos/lib/bgp.nix @@ -304,22 +304,22 @@ in { protocol static export6 { ipv6 { import filter { - bgp_ext_community.add((ro, 205479, 1000)); - bgp_ext_community.add((ro, 205479, 2000)); - bgp_ext_community.add((ro, 205479, 2001)); - bgp_ext_community.add((ro, 205479, 2002)); - bgp_ext_community.add((ro, 205479, 2003)); - bgp_ext_community.add((ro, 205479, 3000)); - bgp_ext_community.add((ro, 205479, 4000)); - bgp_ext_community.add((ro, 205479, 4001)); - bgp_ext_community.add((ro, 205479, 4002)); - bgp_ext_community.add((ro, 205479, 5000)); - bgp_ext_community.add((ro, 205479, 5001)); - bgp_ext_community.add((ro, 205479, 5002)); - bgp_ext_community.add((ro, 205479, 5003)); - bgp_ext_community.add((ro, 205479, 5004)); - bgp_ext_community.add((ro, 205479, 5005)); - bgp_ext_community.add((ro, 205479, 5006)); + bgp_ext_community.add((ro, 205479, 1000)); # export + bgp_ext_community.add((ro, 205479, 2000)); # + bgp_ext_community.add((ro, 205479, 2001)); # + bgp_ext_community.add((ro, 205479, 2002)); # + bgp_ext_community.add((ro, 205479, 2003)); # + bgp_ext_community.add((ro, 205479, 3000)); # clouvider from clouvider-lon01 + bgp_ext_community.add((ro, 205479, 4000)); # frantech from frantech-nyc01/veloxserv from etheroute-lon01 + bgp_ext_community.add((ro, 205479, 4001)); # veloxserv from blade-tuvok/blade-paris + bgp_ext_community.add((ro, 205479, 4002)); # + bgp_ext_community.add((ro, 205479, 5000)); # linx route collector from blade-tuvok + bgp_ext_community.add((ro, 205479, 5001)); # linx route server from blade-tuvok + bgp_ext_community.add((ro, 205479, 5002)); # facebook from blade-tuvok + bgp_ext_community.add((ro, 205479, 5003)); # openpeering from blade-tuvok + bgp_ext_community.add((ro, 205479, 5004)); # freetransitnet from blade-tuvok + bgp_ext_community.add((ro, 205479, 5005)); # he from blade-tuvok + bgp_ext_community.add((ro, 205479, 5006)); # clouvider from blade-tuvok # do not export to facebook bgp_ext_community.add((rt, 0, 32934)); diff --git a/ops/nixos/lib/blade-router.nix b/ops/nixos/lib/blade-router.nix index 940dee485b..306effb698 100644 --- a/ops/nixos/lib/blade-router.nix +++ b/ops/nixos/lib/blade-router.nix @@ -240,6 +240,20 @@ in prefix_limit.v6 = 156000; }; }; + peering.clouvider = linx // { + remote = { + asn = 62240; + export_community = 5006; + passive = true; # pending + routers = [{ + enabled = cfg.linx.enable; + v4 = "195.66.227.14"; + v6 = "2001:7f8:4::f320:1"; + }]; + prefix_limit.v4 = 1000; + prefix_limit.v6 = 1000; + }; + }; export.v4 = [ "92.118.28.0/24" ]; export.v6 = [ "2a09:a441::/32" ]; };