commit ce3d44219c977f4a29bac336cd02538e6f50f1ec Author: Maxime H Date: Sun Jul 18 14:19:36 2021 +0000 HAA1 Configuration diff --git a/etc/bird/bird.conf b/etc/bird/bird.conf new file mode 100644 index 0000000..75926ef --- /dev/null +++ b/etc/bird/bird.conf @@ -0,0 +1,18 @@ +# +# Lynqo Network NOC - noc [at] lynqo [dot] fr +# + +# Router local configuraiton +include "/etc/bird/common/local.conf"; + +# Filters / Funcitons +include "/etc/bird/common/filters.conf"; + +# Kernel protocol +include "/etc/bird/common/kernel.conf"; + +# BGP Templates +include "/etc/bird/common/templates.conf"; + +# BGP Peers (Transit, Peering, Internal) +include "/etc/bird/peers/*"; \ No newline at end of file diff --git a/etc/bird/common/filters.conf b/etc/bird/common/filters.conf new file mode 100644 index 0000000..f5e9cc0 --- /dev/null +++ b/etc/bird/common/filters.conf @@ -0,0 +1,35 @@ +# +# Lynqo Network NOC - noc [at] lynqo [dot] fr +# + +filter as_out { +# if ( net = 2a0c:b641:4c0::/44 ) then accept; +# else + if ( net = 2a0e:b107:fa0::/44 ) then accept; + else + if ( net = 2a0c:b641:4c1::/48 ) then accept; + else + if ( net = 2a0c:b641:4c2::/48 ) then accept; + else + if ( net = 2a0c:b641:4c3::/48 ) then accept; + else + reject; +} + +filter mar1_in { + if ( net = 2a0c:b641:4c1::/48 ) then accept; + else + reject; +} + +filter mar2_in { + if ( net = 2a0c:b641:4c2::/48 ) then accept; + else + reject; +} + +filter mar3_in { + if ( net = 2a0c:b641:4c3::/48 ) then accept; + else + reject; +} \ No newline at end of file diff --git a/etc/bird/common/kernel.conf b/etc/bird/common/kernel.conf new file mode 100644 index 0000000..70f922c --- /dev/null +++ b/etc/bird/common/kernel.conf @@ -0,0 +1,32 @@ +# +# Lynqo Network NOC - noc [at] lynqo [dot] fr +# + +protocol device { + scan time 5; +} + +protocol direct { + ipv6 { + import filter as_out; + }; +} + +protocol kernel kernel_v4 { + learn; + scan time 60; + ipv4 { + import none; + export none; + }; + persist; +} + +protocol kernel kernel_v6 { + learn; + scan time 60; + ipv6 { + import filter as_out; + export none; + }; +} \ No newline at end of file diff --git a/etc/bird/common/local.conf b/etc/bird/common/local.conf new file mode 100644 index 0000000..9fc96bc --- /dev/null +++ b/etc/bird/common/local.conf @@ -0,0 +1,7 @@ +# +# Lynqo Network NOC - noc [at] lynqo [dot] fr +# + +log syslog all; + +router id 5.101.92.197; diff --git a/etc/bird/common/templates.conf b/etc/bird/common/templates.conf new file mode 100644 index 0000000..4889312 --- /dev/null +++ b/etc/bird/common/templates.conf @@ -0,0 +1,32 @@ +# +# Lynqo Network NOC - noc [at] lynqo [dot] fr +# + +template bgp tpl_upstream { + local as 212756; + graceful restart on; + multihop 255; +} + +template bgp tpl_routeservers { + local as 212756; + graceful restart on; + multihop 255; +} + +template bgp tpl_customers { + local as 212756; + graceful restart on; + multihop 255; + ipv6 { + next hop self; + }; +} + +template bgp tpl_internal { + local as 212756; + graceful restart on; + ipv6 { + next hop self; + }; +} \ No newline at end of file diff --git a/etc/bird/envvars b/etc/bird/envvars new file mode 100644 index 0000000..c7e1c00 --- /dev/null +++ b/etc/bird/envvars @@ -0,0 +1,3 @@ +BIRD_RUN_USER=bird +BIRD_RUN_GROUP=bird +#BIRD_ARGS= \ No newline at end of file diff --git a/etc/bird/peers/llix_rs1_v6.conf b/etc/bird/peers/llix_rs1_v6.conf new file mode 100644 index 0000000..0230f6c --- /dev/null +++ b/etc/bird/peers/llix_rs1_v6.conf @@ -0,0 +1,13 @@ +# +# Lynqo Network NOC - noc [at] lynqo [dot] fr +# + +protocol bgp llix_rs1_v6 from tpl_routeservers { + neighbor 2001:678:4fc::9 as 59947; + source address 2001:678:4fc::92:197; + description "LL-IX IPv6 RS1"; + ipv6 { + export filter as_out; + import all; + }; +} \ No newline at end of file diff --git a/etc/bird/peers/llix_rs2_v6.conf b/etc/bird/peers/llix_rs2_v6.conf new file mode 100644 index 0000000..f80597a --- /dev/null +++ b/etc/bird/peers/llix_rs2_v6.conf @@ -0,0 +1,13 @@ +# +# Lynqo Network NOC - noc [at] lynqo [dot] fr +# + +protocol bgp llix_rs2_v6 from tpl_routeservers { + neighbor 2001:678:4fc::2 as 59947; + source address 2001:678:4fc::92:197; + description "LL-IX IPv6 RS2"; + ipv6 { + export filter as_out; + import all; + }; +} \ No newline at end of file diff --git a/etc/bird/peers/lynqo_core_mar1_v6.conf b/etc/bird/peers/lynqo_core_mar1_v6.conf new file mode 100644 index 0000000..c8a37e1 --- /dev/null +++ b/etc/bird/peers/lynqo_core_mar1_v6.conf @@ -0,0 +1,13 @@ +# +# Lynqo Network NOC - noc [at] lynqo [dot] fr +# + +protocol bgp lynqo_core_mar1_v6 from tpl_internal { + neighbor 2a0c:b641:4c0:8:3::1:2 as 212756; + source address 2a0c:b641:4c0:8:3::1:1; + description "Lynqo MAR1 Core IPv6"; + ipv6 { + export all; + import filter mar1_in; + }; +} \ No newline at end of file diff --git a/etc/bird/peers/lynqo_core_mar2_v6.conf b/etc/bird/peers/lynqo_core_mar2_v6.conf new file mode 100644 index 0000000..aaf4a87 --- /dev/null +++ b/etc/bird/peers/lynqo_core_mar2_v6.conf @@ -0,0 +1,13 @@ +# +# Lynqo Network NOC - noc [at] lynqo [dot] fr +# + +protocol bgp lynqo_core_mar2_v6 from tpl_internal { + neighbor 2a0c:b641:4c0:8:3::2:2 as 212756; + source address 2a0c:b641:4c0:8:3::2:1; + description "Lynqo MAR2 Core IPv6"; + ipv6 { + export all; + import filter mar2_in; + }; +} \ No newline at end of file diff --git a/etc/bird/peers/lynqo_core_mar3_v6.conf b/etc/bird/peers/lynqo_core_mar3_v6.conf new file mode 100644 index 0000000..efee43f --- /dev/null +++ b/etc/bird/peers/lynqo_core_mar3_v6.conf @@ -0,0 +1,13 @@ +# +# Lynqo Network NOC - noc [at] lynqo [dot] fr +# + +protocol bgp lynqo_core_mar3_v6 from tpl_internal { + neighbor 2a0c:b641:4c0:8:3::3:2 as 212756; + source address 2a0c:b641:4c0:8:3::3:1; + description "Lynqo MAR3 Core IPv6"; + ipv6 { + export all; + import filter mar3_in; + }; +} \ No newline at end of file diff --git a/etc/bird/peers/lynqo_edge_gra1_v6.conf b/etc/bird/peers/lynqo_edge_gra1_v6.conf new file mode 100644 index 0000000..95cd2fe --- /dev/null +++ b/etc/bird/peers/lynqo_edge_gra1_v6.conf @@ -0,0 +1,13 @@ +# +# Lynqo Network NOC - noc [at] lynqo [dot] fr +# + +protocol bgp lynqo_edge_gra1_v6 from tpl_internal { + neighbor 2a0c:b641:4c0:8:1::5:1 as 212756; + source address 2a0c:b641:4c0:8:1::5:2; + description "Lynqo GRA1 Edge IPv6"; + ipv6 { + export all; + import all; + }; +} diff --git a/etc/bird/peers/lynqo_edge_par1_v6.conf b/etc/bird/peers/lynqo_edge_par1_v6.conf new file mode 100644 index 0000000..15f6bd2 --- /dev/null +++ b/etc/bird/peers/lynqo_edge_par1_v6.conf @@ -0,0 +1,13 @@ +# +# Lynqo Network NOC - noc [at] lynqo [dot] fr +# + +protocol bgp lynqo_edge_par1_v6 from tpl_internal { + neighbor 2a0c:b641:4c0:8:3::5:2 as 212756; + source address 2a0c:b641:4c0:8:3::5:1; + description "Lynqo PAR1 Edge IPv6"; + ipv6 { + export all; + import all; + }; +} \ No newline at end of file diff --git a/motd b/motd new file mode 100644 index 0000000..f220f34 --- /dev/null +++ b/motd @@ -0,0 +1,20 @@ + _,met$$$$$gg. + ,g$$$$$$$$$$$$$$$P. + ,g$$P" """Y$$.". + :.-::////. ,$$P' `$$$. + ::+shmNMMMNMMMMMM- + ------------------------------ + ',$$P ,ggs. `$$b: + :/ymMMMNho/-: yMMMMMy + AS212756 - LynqoNET + `d$$' ,$P"' . $$$ + .yMMMMm+. .MMMMMM. + --+--=|=--+-- + $$P d$' , $$P ++MMMMN/ yMMMMMs + noc@lynqo.fr + $$: $$. - ,d$$' +MMMMMo -MMMMMM. + + $$; Y$b._ _,d$P' +dMMMMd: hMMMMMs + Routeur : + Y$$. `.`"Y$$$$P"' +:sMMMMm/: -MMMMMN: + - HAA1 : 46.148.123.147 + `$$b "-.__ + :+dMMMMho dMMMMMh::::::::: + + `Y$$ + ::ohmd :MMMMMMMMMMMMMMMh + ------------------------------ + `Y$$. + -///////////////. `$$b. + `Y$$b. + `"Y$b._ + `""" + Article 323-1 et suivants du code penal Le fait d'acceder ou de se maintenir, frauduleusement, + dans tout ou partie d'un systeme de traitement automatise de donnees est puni de deux ans + d'emprisonnement et de 30 000 euros d'amende.