Re: Radv proto sending adverts on wrong interface

Hi, On 13-03-2023 05:52, d...@darkboxed.org wrote: It looks like made a mistake when testing my patch. It does in fact not fix the problem. I then did some more reading of the linux scriptures and it turns out PACKET_OUTGOING ("Out" in tcpdump) should actually be reliable so that meant that t

Re: Potential OSPF authentication issues with Mikrotik routers

Hi again, Good to hear it worked out! Cheers, Kees On 14-01-2023 01:06, Theera Kittichareonpot wrote: Thank you so much. Upgrading Mikrotik to 7.7 does fix the issue with simple authentication in OSPF. It does work now. ^^ However, md5 authentication still doesn't work. On Mikrotiks, OSPF ha

Re: Potential OSPF authentication issues with Mikrotik routers

Hi Theera, We're using Mikrotik extensively as well, in combination with BIRD2. In RouterOS 7 there's been quite some work done on OSPF specifically. The latest release 7.7 (see https://mikrotik.com/download/changelogs/stable) incorporates some fixes for yet another bugs in this context. Ap

Re: Feature request: CARP awareness in BIRD?

Just a thought: maybe use OSPF stub networking to detect the fail-overed address? Cheers, Kees On 02-06-2022 19:35, Thomas Steen Rasmussen wrote: On 6/2/22 7:04 PM, Marek Zarychta wrote: W dniu 2.06.2022 o 16:16, Thomas Steen Rasmussen pisze: Hello :) I am using BIRD on FreeBSD and it is

Re: OSPF timers

Good morning, In the end I configured for the specific networks: interface no_bfd_int_0 {     hello 2;     dead 8; }; Seems to work fine. Cheers, Kees On 10-05-2022 11:07, Kees Meijs | Nefos wrote: Hello fellow birdies, Not a BIRD question per se, but I'll ask it anyway: any advi

OSPF timers

Hello fellow birdies, Not a BIRD question per se, but I'll ask it anyway: any advice on changing OSPF (both v2 and v3) timers for faster convergence? Unfortunately I can't use BFD since the other end lacks support. Does it make sense to configure 2/8 for hello/dead or 1/4, or...? The transpo

Re: OSPFv3 between BIRD2 and RouterOS (Mikrotik)

Hi again, For future reference, it works like a charm! In addition, I had to add:     ipv6 {    export where source = RTS_STATIC;     }; Thanks a million! Cheers, Kees On 20-10-2021 07:58, Kees Meijs | Nefos wrote: Thanks, much appreciated! I'll look into the old threads fu

Re: OSPFv3 between BIRD2 and RouterOS (Mikrotik)

Hi Ondrej, Thanks, much appreciated! I'll look into the old threads further and will try what's proposed there. Regards, Kees On 19-10-2021 21:45, Ondrej Zajicek wrote: On Tue, Oct 19, 2021 at 07:55:08PM +0200, Kees Meijs | Nefos wrote: Hi list, First of all: I'm very so

OSPFv3 between BIRD2 and RouterOS (Mikrotik)

Hi list, First of all: I'm very sorry if this has been discussed before. Anyway, we're experiencing possible (configuration) incompatibiliy between BIRD2 and Mikrotik RouterOS. To be precise, we're on BIRD 2.0.7 and RouterOS 6.48.5 (Level 6). Configuration snippet from BIRD: protocol ospf

Re: Bird Debian Repository: v2.0.8

Hi Marvin, The version in Debian Backports is 2.0.7 as a result of the version in Bullseye (testing) being 2.0.7. It's frozen awaiting release so it cannot "just" be bumped to 2.0.8 I'm afraid. I guess it makes sense to report the RPKI bug (https://bugs.debian.org/bird2) so hopefully the patch av

Re: BGP with BIRD2 and MikroTik CCR1072-1G-8S+

18-06-2021 17:13, Ondrej Zajicek wrote: On Fri, Jun 18, 2021 at 11:12:39AM +0200, Kees Meijs | Nefos wrote: Hi list, Using tcpdump(8) I was able to pin point the issue. Please note the difference (BIRD): Optional parameters, length: 8    Option Capabilities Advertisement (2), leng

Re: BGP with BIRD2 and MikroTik CCR1072-1G-8S+

)         0x:  0002 0001       32-Bit AS Number (65), length: 4          4 Byte AS REDACTED         0x:  9b06 Is it possible to configure BIRD2 to enforce Multiprotocol Extensions when only IPv4 is in use? Cheers, Kees On 18-06-2021 09:57, Kees Meijs | Nefos wrote: Please advice what

BGP with BIRD2 and MikroTik CCR1072-1G-8S+

Hi list, I'm configuring a MikroTik CCR1072-1G-8S+ router (6.47.10) and BIRD2 (2.0.7) to do BGP. The initial configuration is was very simple: protocol bgp downstream {     local REDACTED as REDACTED;     neighbor REDACTED as REDACTED;     hold time 30;     keepalive time 60; } And:  0 

Re: BIRD packages in Gitlab CI

2.0.7 is now in backports for various architectures. Cheers, Kees On 21-05-2021 15:07, Jakub Ružička wrote: > Kees reported working on debian-backports some time ago in parallel to > my experimental/stable efforts (in progress), so perhaps he has some news?

BIRD2 in Debian Backports

Hi list, For those Debian purists like myself: BIRD2 is in Debian Backports! Unfortunately it's version 2.0.7 and not 2.0.8 but it's a leap forward I guess. Please see https://packages.debian.org/buster-backports/bird2 Cheers, Kees -- https://nefos.nl/contact Nef

Re: BIRD 2.0.8

Hi guys, Just posted the .dsc for Backports (buster) based on 2.0.7-4.1 for acceptance review. Given discussion about the version freeze in Debian I decided to await the outcome. Cheers, Kees On 10-04-2021 11:00, Kees Meijs | Nefos wrote: > Good news: I found a sponsor willing to backport BI

Re: BIRD 2.0.8

And... if it all an option: https://salsa.debian.org/keesm as well... :-) On 12-04-2021 16:08, Jakub Ružička wrote: I don't have permissions to push into bird2 [salsa]. [salsa]:https://salsa.debian.org/debian/bird2 Ondřej agreed to me taking over bird Maintenance but he didn't give me salsa pe

Re: BIRD 2.0.8

gt; Am Samstag, den 10.04.2021, 11:56 +0200 schrieb Vincent Bernat: >>  ❦ 10 avril 2021 11:00 +02, Kees Meijs | Nefos: >> >>> Over the weekend I'll try to further prepare a .dsc that gets through >>> lintian. >>> >>> Formally only packages (and versi

Re: BIRD 2.0.8

Hi Jakub, Good news: I found a sponsor willing to backport BIRD2 in Debian. Over the weekend I'll try to further prepare a .dsc that gets through lintian. Formally only packages (and versions) in testing are allowed in Backports. That is: 2.0.7-4.1 and not 2.0.8. I'll go for both versions and w

Re: BIRD 2.0.8

Hi Jakub, Nice, good job! Trying to prevent needless double work: are you in contact with Ondřej and Benjamin, or maybe others? And... how does your fork relate to https://salsa.debian.org/debian/bird2/ and other forks? I found other BIRD2 forks on Salsa, which surprises me a little. Last

Re: BIRD 2.0.8

Agreed. That's why I'll put effort in updating the original Salsa and go for backports. On 08-04-2021 10:07, Skyler Mäntysaari wrote: > I'm trying to avoid using a PPA for it, but I will setup a CI for the > package when I do get it working without dep issues.

Re: BIRD 2.0.8

In addition: I'll set up a build environment and test with amd64 (x86_64) at least. What other architectures are "urgent" targets? On 08-04-2021 09:47, Kees Meijs | Nefos wrote: > I completely agree. Very likely it's just downloading > https://salsa.debian.org/debia

Re: BIRD 2.0.8

I completely agree. Very likely it's just downloading https://salsa.debian.org/debian/bird2/ and replace where needed and issue dpkg-buildpackage or alike. K. On 08-04-2021 09:45, Justin Cattle wrote: > The source packages are in the PPA, so it should be pretty easy to > just bump the upstream an

Re: BIRD 2.0.8

Hi again, Just contacted Ondřej Surý and Benjamin Drung (he did the last commit) about helping out to bump https://salsa.debian.org/debian/bird2/ to 2.0.8. In parallel asked the backports list about adopting BIRD2 in Debian Backports. To be continued... Regards, Keee On 08-04-2021 09:06, Kees

Re: BIRD 2.0.8

Hi again, It seems I found a Debian developer to sponsor me at the time but that didn't go through. I'll give it another try. Cheers, Kees On 08-04-2021 09:00, Kees Meijs | Nefos wrote: > I would like to help as well. In September 2019 I contacted Ondřej > Surý about releasing

Re: BIRD 2.0.8

Hi, I would like to help as well. In September 2019 I contacted Ondřej Surý about releasing BIRD2 via Debian Backports (a prerequisite is having it in testing in the beginning). Not sure what happened (very likely I am to blame myself, but it's been a while...) but the contact stopped at some poi

Re: CentOS to Debian migration issue

Hi Pavlo, Please refer to the sysctl settings in a previous thread about CentOS8 replacement; maybe there's more to check out. K. On 22-03-2021 22:02, Pavlo Astakhov wrote: > Thank you a lot, just set net.ipv6.route.max_size = 1073741824, will > look at it now.

Re: Bird Centos 8 Replacement recommendations request

Hi Marco, Thanks for pointing out the issue. I'll look into that. However there's no NAT applicable in our specific case. In addition: no trouble so far. But again, good to re-investigate. Maybe it's a nice side thread on the list as well. I'm curious about real life kernel tweaking at othe

Re: Bird Centos 8 Replacement recommendations request

Hi, On 17-03-2021 11:53, W Templeton wrote: 1.your OS version Sure: $ cat /etc/debian_version 10.8 Basicly: Debian stable with current updates. 2.Debian kernel tweaking Sure: # cat 99-router.conf # Enable IP forwarding for IPv4 and IPv6 AF. net.ipv4.conf.all.forwarding = 1 net.ipv6.con

Re: Bird Centos 8 Replacement recommendations request

Hi Will, We proudly use BIRD2 on Debian stable in production with full feed BGP sessions and OSPF. Besides some kernel tweaking (needed in other distributions as well) no special requirements. Cheers, Kees On 17-03-2021 11:35, W Templeton wrote: Our draft shortlist is Debian 10.7 Buster Ubu

Re: MultiBird on L2 - A crazy idea for Fail Over y and Load Balancing

And what about multiple peering sessions with multipath routing? Cheers, Kees On 19-01-2021 15:17, Douglas Fischer wrote: As I mentioned initially, my focus was on "large environments of IXPs". Considering that, L3 anycast does not apply very well to that scenario. (I don't know any IXPs that u

Re: How much RAM for Full Internet tables

Hi Mehdi, Our setup consists of five full table routers (IPv6 as well) with multiple upstream transit peers. Memory used: 728 MiB. (We're still on 2.0.4 and yes we should upgrade.) I guess it makes sense to check what processes are using this huge amount of RAM. Maybe it's not BIRD but another p

Re: [BFD] BFD is Not working after system reboot.

      bfd on; > } > > protocol bgp as2 { >         import all; >         export all; > >         local [bird-server lo ip] as 65001; >         neighbor [swich B router-id] as 65001; >         hold time 30; >         enable route refresh off; >         bfd on; > } > > ==

Re: [BFD] BFD is Not working after system reboot.

Hi Seunghwan, Thanks. I'll take a look shortly. Cheers, Kees On 03-08-2020 03:56, seunghwan hwang wrote: > Sorry, I'm late. > Here is my full configuration >

Re: [BFD] BFD is Not working after system reboot.

Hi, Yes we have; multiple times. Could you please provide a full configuration? (Feel free to remove passwords and such, obviously.) Cheers, Kees On 29-07-2020 09:45, seunghwan hwang wrote: > Is not working. > Have you ever rebooted(# shutdown -r now) with your settings? > Still, only the BGP i

Re: avoid transit because of default route

Hi Julien, I would use packet filtering for that (i.e. iptables or alike). Regards, Kees On 27-07-2020 11:13, Julien Sansonnens wrote: > Dear list,  > > I only export three prefixes I own to my peers and upstreams.  > > In theory, nothing prevents one of my peers to choose my router as > default

Re: [BFD] BFD is Not working after system reboot.

Sorry, I was unable to respond yet. In our config I explicitely defined what interfaces should use bfd, for example: > protocol bfd { >     interface "eth0" { >     }; > >     interface "eth1" { >     }; > >     interface "eth4" { >         authentication keyed sha1; >         password "BLADIEBLA

Re: [BFD] BFD is Not working after system reboot.

Hi Seunghwan, If you're sure no packets were dropped, it might make sense to use tcpdump(8) or alike to ensure the BFD packets are really there. Regards, Kees On 17-07-2020 04:16, seunghwan hwang wrote: > Thanks for checking in this issue. > But, I can't understand. > If it was because of the ip

Re: [BFD] BFD is Not working after system reboot.

Hi Seunghwan, It might be your problem isn't BIRD but packet filter related. Please check the BFD packets are allowed in iptables c.q. netfilter using the correct ports and/or addresses. A possible reason why it starts working after a manual protocol restart is a ESTABLISHED, RELATED rule. Refe

Re: BIRD on physical / virtual server.

Hi Mike, Saso is correct; we bumped into that one too. However, as long as you're running BIRD in a VM and OVS is outside the VM there's no issue. K. On 08-07-2020 08:58, Saso Tavcar wrote: > Hi, > > There is a known issue with with Open vSwitch (OVS) performance with BGP. > Even without OVS we

Re: BIRD on physical / virtual server.

Hi Mike, Make sure you use paravirtualised network adapters and your hypervisor isn't overcommitted too much. And... good metrics. Carefully monitor iowait, load, memory and such in the VM and adjust specs as needed. Besides that you're fine. K. On 08-07-2020 08:05, Mike Neo wrote: > what is y

Re: Support for machine-readable status output

Hi Pascal, In short: as a BIRD2 user I would like to add it's a (very) good idea you propose. Probably other users feel this as well. Regards, Kees On 28-04-2020 09:17, Pascal Mathis wrote: > Hi everyone, > > I am wondering if the official maintainers would accept patches for > introducing machi

Re: BGP between VMs

That's fine. All I tried to point out is the guide is for the old branch but still could help you with the basics. If you read the guide you might figure out it teaches you as needed and you could think of not using BIRD2 using your learning course and upgrade later on. Just a thought. On 20-03-

Re: BGP between VMs

Hi Fabiano, Not sure if someone (or some documentation) already pointed out this guide: https://github.com/knorrie/network-examples/tree/master/bgp-intro The guide uses BIRD 1.4.5 but I guess as long as you're not using BIRD2 you should be fine while taking your first steps. In mean time, you co

Re: Disregard OSPF path

Hi Robert, Me too but maybe I could override it. At least I'm going to try. K. On 17-02-2020 13:22, Robert Sander wrote: > I always thought the OSPF cost represents the "physical" cost of a link. signature.asc Description: OpenPGP digital signature

Re: Disregard OSPF path

Hi Robert, The path I'm trying to avoid has the lowest OSPF cost but in the physical world the most... :-) I'll fiddle for a bit with OSPF cost. Seems a clean solution. Thanks! Regards, Kees On 17-02-2020 08:57, Robert Sander wrote: > Does it have a larger cost than the one you want to avoid?

Disregard OSPF path

Hi birdies, I'd like to disregard an (in the literal sense) expensive OSPF path. The preferred path is longer in terms of OSPF. All nodes in the network are running BIRD2 and are in our management so we're in full control. What would be the most elegant approach to do this? Thanks! Best regard

Re: BGP strict bind socket error

Hi, You could very likely mitigate this with: sysctl -w net.ipv4.ip_nonlocal_bind=1 K. On 7 January 2020 21:45:43 CET, Ben Tremblay wrote: >Hi all, > >I have encountered a problem with how BIRD opens the listening socket >for strict bind BGP. > >In particular, BIRD sometimes tries to open the

Re: OSPF over openvpn; adjacency problems

Hi Thorsten, I'm not very into BIRD code or OSPF as a protocol but I do know a thing or two about OpenVPN and general networking. According to your sample, it seems BIRD uses the IANA assigned multicast addresses to communicate and (try to) form an OSPF adjacency. Per default, OpenVPN uses the re

Re: Debian packages for BIRD 2

Hi list, Since our business is using BIRD (and Debian) a lot I just contact Ondřej Surý and volunteered for help in terms of maintaining the package. My goals are to (try to) get BIRD2 2.0.5 in stretch-backports and maybe BIRD 2.0.6 in the upcoming Debian Fasttrack project. Although it's very ea

Re: Debian packages for BIRD 2

Thank you very much guys! Cheers, Kees On 24-07-2019 17:25, Ondrej Zajicek wrote: > Several days ago i received info that BIRD 2.0.4 is now packaged > in Debian (unstable): > > https://packages.debian.org/sid/bird2 > > Thanks to Ondrej Sury and others.

Re: Prevent duplicate routes with OSPF

Hi there, Thank you very much. I was under the impression the routes were OSPF generated but it makes a lot of sense RTS_DEVICE is the culprit. I'll give it a try. Enjoy your day! Regards, Kees On 19-06-2019 21:46, bauen1 wrote: > The duplicate routes can most likely be filtered by ignoring ro

Prevent duplicate routes with OSPF

Hi list, This is probably a question that was answered many times before: how can I prevent duplicate routes originating from OSPF? For example, a routing table with BIRD2 shut down: > # ip r s > default via 192.168.255.1 dev eth0 > 192.168.255.0/24 dev eth0 proto kernel scope link src 192.168.2

Re: Debian packages for BIRD2

Hi Marco, Thank you for pointing that out and will do in a few weeks when Buster's stable. (Only checked in current stable and backports; didn't look in NEW.) I'm not sure how the process works exactly in terms of backports, but maybe it makes sense to provide the bird2 package via stretch-backp

Debian packages for BIRD2

Hi list, Yesterday I attended T-DOSE (http://t-dose.org/) and spoke to some other BIRD users, mostly on Debian. As a collective, we were a little surprised that https://bird.network.cz/?download&tdir=debian/pool/main/b/bird/ only shows BIRD 1.6 packages and not 2.0. Compiling 2.0 (at least for S

Re: 100% CPU load with device scanning enabled

he physical world from the routing process. If there's any future testing or debugging to do I'm glad to help and make a test lab. Regards, Kees On 07-05-19 07:22, Kees Meijs wrote: > Hopefully I'll be able to configure VRFs today and'll if that helps.

Re: 100% CPU load with device scanning enabled

Hi there, Just creating a bridge with no configuration and no ports attached is enough: > ~# ovs-vsctl add-br foobar Now host a BGP full feed and there's havoc. Hopefully I'll be able to configure VRFs today and'll if that helps. Cheers, Kees On 07-05-19 07:04, Maria Matějka wrote: > Fine! >

Re: 100% CPU load with device scanning enabled

Thanks Maria. I don't want to eat up your precious time so I'll try the VRF approach first. If that works we're good. K. On 06-05-19 23:04, Maria Matejka wrote: > Just shortly, I was trying BIRD in QEMUs connected via OVS bridges > several years ago. It was even worse, I went to some segfaults i

Re: 100% CPU load with device scanning enabled

Hi and thanks again. We're in need of VRF support and maybe it works without overloading when placing the full feed in another than default VRF (which is good practice anyway). Hopefully OVS only synchronises the default system tables. I'll post my findings. Regards, Kees On 06-05-19 21:33, Sas

Re: 100% CPU load with device scanning enabled

Hi Saso, Thank you very much. OVS is new in the mix (we're not replacing Quagga alone) as well. Obviously we didn't expect this to happen. I'll see if patching OVS in Debian in a similar way works for us or if another approach fits better (i.e. maybe not using OVS at all). If you'll know of a be

Re: 100% CPU load with device scanning enabled

a little of polling going on but it seems as every poll results in the socket being opened by ovs-vswitchd, for each route present. And again, and again. Regards, Kees On 06-05-19 20:22, Kees Meijs wrote: > Sorry: shouldn't happen. > > Meanwhile we tested BIRD 2.0.4 as well (compile

Re: 100% CPU load with device scanning enabled

gards, Kees On 06-05-19 19:30, Kees Meijs wrote: > This is unexpected behaviour. Maybe it's an implementation problem in > Open vSwitch or maybe in BIRD. Anyway, it should happen I guess.

100% CPU load with device scanning enabled

Hi list, We're in the process of replacing Quagga with BIRD but stumble upon a little problem. When device scanning is on (obviously default) our testing machine completely fills up a CPU core. The culprit isn't BIRD itself but an Open vSwitch daemon. After disabling the device protocol and rest