roa_check not re-evaluating after roa table update

Stefan Plug spl at ecix.net
Fri Jun 9 14:45:36 CEST 2017


Thanks for the info!

Then I'll keep the implementation of this on hold for now :(

Stefan

On 09.06.2017 14:36, Jan Matejka wrote:
> Hi!
> 
> On 06/09/2017 01:17 PM, Stefan Plug wrote:
>> Bird 1.6.3
>>
>> Just testing about with the RPKI roa_check and it seems that my routes are not being re-evaluated after a "configure" when my roa table is updated.
>> I do this check during the import phase so the routes are already in the table once I update the roa table.
>>
>> When I now reconfigure BIRD this makes no changes at all. If I restart BIRD and thus the routes get re-sent then they do both get through the check as
>> expected. when adding/deleting roa entries using the command line I see the same behaviour.
>>
>> Do note when I change the "hardFilterRPKI" which decides to actually filter or not, then the routes DO get re-evaluated like they should.
>>
>> Can anyone else also confirm this behaviour? Am I doing something wrong?
> 
> This is true, we know about that, there are plans to fix it in v2.0, maybe v2.1
> – it is not trivial to implement w.r.t. Bird's guts.
> 
> MQ
> 



More information about the Bird-users mailing list