Converting OpenBGP to FRR
-
Hey friends, I am really struggling here. I had a working OpenBGPd configuration that I have been using for black holing various bad actors. Basically there are a few services that provide BGP feeds of routes that should have all packets dropped. I didn't realize (my fault) that OpenBGPd was being depreciated (I honestly wouldn't have updated if I knew) so I updated to 2.5 this weekend. I have been fighting with setting this up now for hours and am getting no where.
Does anyone have any suggestions for how to recreate the following OpenBGPd config in FRR? The closest I can get is peering with one of the BGP servers. I see the routes listed in the BGP routes, but nothing shows up in the Zebra routes, and then even if I did, I have no clue how to get it to set those packets to be rejected (which was super simple in OpenBGPd)
AS 65257 fib-update yes listen on 192.168.50.1 router-id 68.225.85.26 network inet static neighbor 192.168.50.25 { descr "Local ExaBGB" announce none # We need to set it to a local IP otherwise it will be ignored completely. This is overridden by global reject set nexthop 192.168.2.1 remote-as 65332 local-address 68.225.85.26 } match from any set nexthop reject # Filter out local stuff deny from any prefix {10.0.16.1/32} # next hop router deny from any prefix {69.20.29.196/32} deny from any prefix {198.49.23.145/32} deny from any prefix {192.168.42.0/24} deny from any prefix {192.168.40.0/24} deny from any prefix {192.168.2.0/24} deny from any prefix {192.168.50.0/24} deny from any prefix {192.168.101.0/24} deny from any prefix {192.168.100.0/24} allow from 192.168.50.25 allow from 173.166.233.21 allow from 38.229.6.20 deny to any