Update bird/bird.conf.tmpl, tinc/lixonet/hosts/inwwv_nurd_lixo, tinc/lixonet/hosts/manva_nurd_lixo files

This commit is contained in:
sump pump 2020-05-21 18:53:19 +00:00
parent e939cf8f8e
commit 04b4a53ae4
3 changed files with 21 additions and 21 deletions

View File

@ -21,32 +21,32 @@ roa4 table r4; # ROA RPKI
# RPKI
# See: https://brooks.sh/2019/11/11/validating-bgp-routes-with-rpki-in-bird/
protocol rpki {
roa4 { table r4; };
#protocol rpki {
# roa4 { table r4; };
{{ range files "bird/rpki/hosts" }} # {{.}}
{{ file (print "bird/rpki/hosts/" .) }}
{{ end }}
# {{ range files "bird/rpki/hosts" }} # {{.}}
# {{ file (print "bird/rpki/hosts/" .) }}
# {{ end }}
# Time period in seconds between a failed query the next attempt
retry keep ${bgp_rpki_retry:-90};
# # Time period in seconds between a failed query the next attempt
# retry keep ${bgp_rpki_retry:-90};
# Tells how long to wait before attempting to poll the cache
refresh keep ${bgp_rpki_refresh:-900};
# # Tells how long to wait before attempting to poll the cache
# refresh keep ${bgp_rpki_refresh:-900};
# How long to keep any records locally cached before they are deleted
# The "refresh" interval will control how often records are refreshed
# and not considered expired.
expire keep ${bgp_rpki_expire:-172800};
# # How long to keep any records locally cached before they are deleted
# # The "refresh" interval will control how often records are refreshed
# # and not considered expired.
# expire keep ${bgp_rpki_expire:-172800};
# Enable SSH transport, disable TCP transport (insecure)
port 22;
transport ssh {
remote public key "${bgp_rpki_known_hosts:-/etc/bird/rpki/known_hosts}";
user "lixonet";
#bird private key "</path/to/id_rsa>";
};
}
# # Enable SSH transport, disable TCP transport (insecure)
# port 22;
# transport ssh {
# remote public key "${bgp_rpki_known_hosts:-/etc/bird/rpki/known_hosts}";
# user "lixonet";
# #bird private key "</path/to/id_rsa>";
# };
#}
# Filters
# Define a series of filters for Lixonet routing policies: