OpenBSD 5.[8-9] and Quagga rip(ng)d ?

Tue, 12 Apr 2016 13:38:36 -0700 

Hello there,

(don't really know if it is misc@ or tech@ , sorry :) ).
Upgrading and old 4.8 (quagga running) OpenBSD to 5.9 was "in fine" quite easy . 

copied /etc/hostname.* from old to new => OK
/etc/mygate, the same. => OK
/etc/pf.conf , only two rules to adapt (from about 1000) => OK.

The only problem I encounter is quagga package :
It was in 0.99.16 (in 4.8 release) ; migrating in 0.99.24p1 (from OpenBSD packages for 5.9).
This config speaks only RIPv2 and RIPng , but with quite specific configuration about route distribution : distribute only one prefix on one interface, distribute all except this on other interface, and so on ... 

The need is (for instance) :

In RIPv2 :
"redistribute connected" (for most of all network interfaces)

but on interface vlan210 and vlan211 (only these) :
"no redistribute 172.18.1.0/24"
"no redistribute 172.18.8.0/23"
but
"redistribute 172.18.0.0/16"

acheived in quagga/vtysh (while using 4.8 obsd and 0.99.16 quagga) by :

_____

router rip
 version 2
 timers basic 60 120 60
 redistribute connected
 network trunk0
 network vlan210
 network vlan211
 network vlan212
 network vlan3
 network vlan200
 network vlan201
 network vlan202
 [...]
 network vlan255

 [...]
 distribute-list 11 out vlan210
 distribute-list 11 out vlan211
 distance 10
!
access-list 11 remark Filter routing announces on only local network (for vlan21[01]) 
access-list 11 deny 172.18.1.0 0.0.0.255
access-list 11 deny 172.18.8.0 0.0.1.255
access-list 11 permit 172.18.0.0 0.0.255.255
access-list 11 deny any
____
If using 5.9 obsd and 0.99.24p1 quagga absolutely nothing works about RIPv2 : 

quagga's ripd complains about (on all network interfaces) :

RIP: can't setsockopt IP_ADD_MEMBERSHIP Can't assign requested address
Tried to implement OpenBSD's ripd, but can't find a way to restrict output updates for one or seveval network interfaces (meaning "don't redistribute this prefix on this interface"). This ends with a syntax error (and while browsing man and parse.yy of ripd, seems not possible). 

Any clue to solve this dilemma ?

RIPng : it's about the same :( .
Found a way by using "route6d -O 2a01:dead:bef1::/48,vlan210,vlan211 -O 2a01:dead:bef2::/48,vlan210,vlan211" but not realy as clever as "the good old" quagga was able to do ... 

Thanks for reading :)
Christophe.

Reply via email to