Project

General

Profile

Actions
Copy link

Bug #12815

closed

invalid IPv6 ACCEPTFILTER prefix-list

Added by Viktor Gurov about 2 years ago. Updated about 2 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
Viktor Gurov
Category:
FRR
Target version:
-
Start date:
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Affected Version:
Affected Plus Version:
Affected Architecture:

Description

frr code does not create correct IPv6 prefix-list for IPv6 ACCEPTFILTER entries and does not have explicit 'permit any' at the end
/var/etc/frr/frr.conf fragment:

ip prefix-list ACCEPTFILTER seq 10 deny 192.168.88.0/24
ip prefix-list ACCEPTFILTER seq 20 deny 192.168.88.100/32
ip prefix-list ACCEPTFILTER seq 30 deny 192.168.45.0/24
ip prefix-list ACCEPTFILTER seq 40 deny 192.168.45.100/32
ip prefix-list ACCEPTFILTER seq 50 deny fc00:1234::/64
ip prefix-list ACCEPTFILTER seq 60 deny 3.3.3.0/24
ip prefix-list ACCEPTFILTER seq 70 permit any
!
route-map ACCEPTFILTER permit 10
 match ip address prefix-list ACCEPTFILTER
!
ip protocol bgp route-map ACCEPTFILTER
!
ip protocol ospf route-map ACCEPTFILTER
!
ipv6 protocol bgp route-map ACCEPTFILTER
!
ipv6 protocol ospf6 route-map ACCEPTFILTER

must be:

ipv6 prefix-list ACCEPTFILTER seq 10 deny fc00:1234::/64
ipv6 prefix-list ACCEPTFILTER seq 20 permit any

see https://forum.netgate.com/topic/169507/frr-bgp-not-distributing-ipv6

Actions
Copy link

Also available in: Atom PDF