|
1
|
# BGP - Border Gateway Protocol - RFC 1771
|
|
2
|
# Pattern attributes: ok veryfast fast
|
|
3
|
# Protocol groups: networking ietf_draft_standard
|
|
4
|
# Wiki: http://www.protocolinfo.org/wiki/BGP
|
|
5
|
# Copyright (C) 2008 Matthew Strait, Ethan Sommer; See ../LICENSE
|
|
6
|
#
|
|
7
|
# This pattern is UNTESTED.
|
|
8
|
|
|
9
|
bgp
|
|
10
|
# "After a transport protocol connection is established, the first
|
|
11
|
# message sent by each side is an OPEN message."
|
|
12
|
# "If the Type of the message is OPEN, or if the Authentication Code used
|
|
13
|
# in the OPEN message of the connection is zero, then the Marker must be
|
|
14
|
# all ones."
|
|
15
|
# Then the 2 byte length field, then the 1 byte type field (1 = OPEN).
|
|
16
|
# Then the BGP version: 3 was RFC'd in 1991, 4 was RFC'd in 1995.
|
|
17
|
# Could keep going, but that should be sufficient.
|
|
18
|
^\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff..?\x01[\x03\x04]
|
|
19
|
|