415 lines
11 KiB
Plaintext
415 lines
11 KiB
Plaintext
interfaces {
|
|
ethernet eth0 {
|
|
address 5.196.146.57/24
|
|
address 2a0c:b641:4c0::1/64
|
|
}
|
|
loopback lo {
|
|
}
|
|
tunnel tun0 {
|
|
address 2a09:4c0:57e0:bd::2/64
|
|
description "[upstream] Securebit"
|
|
encapsulation sit
|
|
multicast disable
|
|
remote 185.232.117.249
|
|
source-address 5.196.146.57
|
|
}
|
|
tunnel tun1 {
|
|
address 2602:feda:3:4f::2/64
|
|
description "[upstream] Nato"
|
|
encapsulation sit
|
|
multicast disable
|
|
remote 45.152.127.173
|
|
source-address 5.196.146.57
|
|
}
|
|
tunnel tun2 {
|
|
address 2a01:20e:1001:115::2/64
|
|
description "[upstream] Openfactory"
|
|
encapsulation gre
|
|
multicast disable
|
|
remote 45.92.40.8
|
|
source-address 5.196.146.57
|
|
}
|
|
tunnel tun3 {
|
|
address 2a0c:9a40:100f:4c1::2/64
|
|
description "[upstream] iFog GmbH"
|
|
encapsulation gre
|
|
multicast disable
|
|
remote 193.148.249.44
|
|
source-address 5.196.146.57
|
|
}
|
|
tunnel tun4 {
|
|
address 2a0c:b641:7c0:ee::75/127
|
|
description "[upstream] Gregory Falla"
|
|
encapsulation gre
|
|
multicast disable
|
|
remote 194.28.98.75
|
|
source-address 5.196.146.57
|
|
}
|
|
tunnel tun5 {
|
|
address 2a0e:97c0:210::212:224:262/126
|
|
description "[upstream] C1VHosting"
|
|
encapsulation gre
|
|
multicast disable
|
|
remote 152.89.170.250
|
|
source-address 5.196.146.57
|
|
}
|
|
tunnel tun6 {
|
|
address 2a0e:46c4:102::212:756:1/64
|
|
description "[ix] PyramIX"
|
|
encapsulation gretap
|
|
multicast disable
|
|
remote 91.201.67.183
|
|
source-address 5.196.146.57
|
|
}
|
|
tunnel tun11 {
|
|
address 2a0c:b641:4c0:8:1::1:1/124
|
|
description "[internal] Core - MAR1"
|
|
encapsulation gre
|
|
multicast disable
|
|
remote 185.73.232.247
|
|
source-address 5.196.146.57
|
|
}
|
|
tunnel tun12 {
|
|
address 2a0c:b641:4c0:8:1::2:1/124
|
|
description "[internal] Core - MAR2"
|
|
encapsulation gre
|
|
multicast disable
|
|
remote 92.118.96.240
|
|
source-address 5.196.146.57
|
|
}
|
|
tunnel tun13 {
|
|
address 2a0c:b641:4c0:8:1::3:1/124
|
|
description "[internal] Core - MAR3"
|
|
encapsulation gre
|
|
multicast disable
|
|
remote 92.118.96.113
|
|
source-address 5.196.146.57
|
|
}
|
|
tunnel tun14 {
|
|
address 2a0c:b641:4c0:8:1::4:1/124
|
|
description "[internal] Edge - PAR1"
|
|
encapsulation gre
|
|
multicast disable
|
|
remote 45.32.150.175
|
|
source-address 5.196.146.57
|
|
}
|
|
tunnel tun15 {
|
|
address 2a0c:b641:4c0:8:1::5:1/124
|
|
description "[internal] Edge - HAA1"
|
|
encapsulation gre
|
|
multicast disable
|
|
remote 46.148.123.147
|
|
source-address 5.196.146.57
|
|
}
|
|
}
|
|
policy {
|
|
prefix-list6 as-out {
|
|
description "as212756 out to upstreams and peering"
|
|
rule 5 {
|
|
action permit
|
|
prefix 2a0c:b641:4c0::/44
|
|
}
|
|
rule 10 {
|
|
action permit
|
|
prefix 2a0e:b107:fa0::/44
|
|
}
|
|
rule 15 {
|
|
action permit
|
|
description "Customer : Matis Gagneux"
|
|
prefix 2a0e:8f02:f008::/48
|
|
}
|
|
rule 20 {
|
|
action deny
|
|
prefix ::/0
|
|
}
|
|
}
|
|
prefix-list6 fullview {
|
|
description "Fullview to customers and internal routers"
|
|
rule 5 {
|
|
action permit
|
|
prefix ::/0
|
|
}
|
|
}
|
|
}
|
|
protocols {
|
|
bgp 212756 {
|
|
address-family {
|
|
ipv6-unicast {
|
|
network 2a0c:b641:4c0::/44 {
|
|
}
|
|
network 2a0e:b107:fa0::/44 {
|
|
}
|
|
}
|
|
}
|
|
neighbor 2a0c:9a40:100f:4c1::1 {
|
|
address-family {
|
|
ipv6-unicast {
|
|
prefix-list {
|
|
export as-out
|
|
}
|
|
soft-reconfiguration {
|
|
inbound
|
|
}
|
|
}
|
|
}
|
|
description "[upstream] iFog GmbH"
|
|
ebgp-multihop 255
|
|
remote-as 34927
|
|
}
|
|
neighbor 2a0c:b641:4c0:8:1::1:2 {
|
|
address-family {
|
|
ipv6-unicast {
|
|
nexthop-self {
|
|
}
|
|
soft-reconfiguration {
|
|
inbound
|
|
}
|
|
}
|
|
}
|
|
description "[internal] Core - MAR1"
|
|
remote-as 212756
|
|
}
|
|
neighbor 2a0c:b641:4c0:8:1::2:2 {
|
|
address-family {
|
|
ipv6-unicast {
|
|
nexthop-self {
|
|
}
|
|
soft-reconfiguration {
|
|
inbound
|
|
}
|
|
}
|
|
}
|
|
description "[internal] Core - MAR2"
|
|
remote-as 212756
|
|
}
|
|
neighbor 2a0c:b641:4c0:8:1::3:2 {
|
|
address-family {
|
|
ipv6-unicast {
|
|
nexthop-self {
|
|
}
|
|
soft-reconfiguration {
|
|
inbound
|
|
}
|
|
}
|
|
}
|
|
description "[internal] Core - MAR3"
|
|
remote-as 212756
|
|
}
|
|
neighbor 2a0c:b641:4c0:8:1::4:2 {
|
|
address-family {
|
|
ipv6-unicast {
|
|
nexthop-self {
|
|
}
|
|
soft-reconfiguration {
|
|
inbound
|
|
}
|
|
}
|
|
}
|
|
description "[internal] Edge - PAR1"
|
|
remote-as 212756
|
|
}
|
|
neighbor 2a0c:b641:4c0:8:1::5:2 {
|
|
address-family {
|
|
ipv6-unicast {
|
|
nexthop-self {
|
|
}
|
|
soft-reconfiguration {
|
|
inbound
|
|
}
|
|
}
|
|
}
|
|
description "[internal] Edge - HAA1"
|
|
remote-as 212756
|
|
shutdown
|
|
}
|
|
neighbor 2a0c:b641:7c0:ee::74 {
|
|
address-family {
|
|
ipv6-unicast {
|
|
prefix-list {
|
|
export as-out
|
|
}
|
|
soft-reconfiguration {
|
|
inbound
|
|
}
|
|
}
|
|
}
|
|
description "[upstream] Gregory Falla"
|
|
ebgp-multihop 255
|
|
remote-as 206639
|
|
}
|
|
neighbor 2a0e:46c4:102::1 {
|
|
address-family {
|
|
ipv6-unicast {
|
|
prefix-list {
|
|
export as-out
|
|
}
|
|
soft-reconfiguration {
|
|
inbound
|
|
}
|
|
}
|
|
}
|
|
description "[ix] PyramIX - RS1"
|
|
ebgp-multihop 255
|
|
remote-as 141702
|
|
}
|
|
neighbor 2a0e:46c4:102::2 {
|
|
address-family {
|
|
ipv6-unicast {
|
|
prefix-list {
|
|
export as-out
|
|
}
|
|
soft-reconfiguration {
|
|
inbound
|
|
}
|
|
}
|
|
}
|
|
description "[ix] PyramIX - RS2"
|
|
ebgp-multihop 255
|
|
remote-as 141702
|
|
}
|
|
neighbor 2a0e:97c0:210::212:224:261 {
|
|
address-family {
|
|
ipv6-unicast {
|
|
prefix-list {
|
|
export as-out
|
|
}
|
|
soft-reconfiguration {
|
|
inbound
|
|
}
|
|
}
|
|
}
|
|
description "[upstream] C1VHosting"
|
|
ebgp-multihop 255
|
|
remote-as 212271
|
|
}
|
|
neighbor 2a01:20e:1001:115::1 {
|
|
address-family {
|
|
ipv6-unicast {
|
|
prefix-list {
|
|
export as-out
|
|
}
|
|
soft-reconfiguration {
|
|
inbound
|
|
}
|
|
}
|
|
}
|
|
description "[upstream] Openfactory"
|
|
ebgp-multihop 255
|
|
remote-as 41051
|
|
}
|
|
neighbor 2a09:4c0:57e0:bd::1 {
|
|
address-family {
|
|
ipv6-unicast {
|
|
prefix-list {
|
|
export as-out
|
|
}
|
|
soft-reconfiguration {
|
|
inbound
|
|
}
|
|
}
|
|
}
|
|
description "[upstream] Securebit"
|
|
ebgp-multihop 255
|
|
remote-as 58057
|
|
}
|
|
neighbor 2602:feda:3:4f::1 {
|
|
address-family {
|
|
ipv6-unicast {
|
|
prefix-list {
|
|
export as-out
|
|
}
|
|
soft-reconfiguration {
|
|
inbound
|
|
}
|
|
}
|
|
}
|
|
description "[upstream] Nato"
|
|
ebgp-multihop 255
|
|
remote-as 46997
|
|
}
|
|
parameters {
|
|
bestpath {
|
|
as-path {
|
|
confed
|
|
}
|
|
}
|
|
default {
|
|
no-ipv4-unicast
|
|
}
|
|
graceful-restart {
|
|
stalepath-time 60
|
|
}
|
|
log-neighbor-changes
|
|
router-id 5.196.146.57
|
|
}
|
|
}
|
|
static {
|
|
route 0.0.0.0/0 {
|
|
next-hop 5.196.146.254 {
|
|
}
|
|
}
|
|
route6 2a0c:b641:4c2::/48 {
|
|
next-hop 2a0c:b641:4c0:8:1:0:2:2 {
|
|
}
|
|
}
|
|
}
|
|
}
|
|
service {
|
|
ssh {
|
|
}
|
|
}
|
|
system {
|
|
config-management {
|
|
commit-revisions 100
|
|
}
|
|
console {
|
|
device ttyS0 {
|
|
speed 115200
|
|
}
|
|
}
|
|
domain-name as212756.net
|
|
host-name vyos.edge.gra1
|
|
login {
|
|
banner {
|
|
pre-login |
|
|
}
|
|
user lynqo_noc {
|
|
authentication {
|
|
encrypted-password <A WONDERFUL PASSWORD>
|
|
public-keys pubkey {
|
|
key AAAAB3N[..]ZIyUgqbz8=
|
|
type ssh-rsa
|
|
}
|
|
}
|
|
full-name "Lynqo - Network Operations Center"
|
|
}
|
|
}
|
|
name-server 1.1.1.1
|
|
name-server 1.0.0.1
|
|
name-server 8.8.8.8
|
|
name-server 8.8.4.4
|
|
name-server 2001:4860:4860::8888
|
|
name-server 2001:4860:4860::8844
|
|
name-server 2606:4700:4700::1111
|
|
name-server 2606:4700:4700::1001
|
|
ntp {
|
|
server 0.pool.ntp.org {
|
|
}
|
|
server 1.pool.ntp.org {
|
|
}
|
|
server 2.pool.ntp.org {
|
|
}
|
|
}
|
|
syslog {
|
|
global {
|
|
facility all {
|
|
level info
|
|
}
|
|
facility protocols {
|
|
level debug
|
|
}
|
|
}
|
|
}
|
|
time-zone Europe/Paris
|
|
}
|