RPKI doesn’t work with a FQDN
Ondrej Zajicek
santiago at crfreenet.org
Sat Jan 11 18:08:37 CET 2020
On Sat, Jan 11, 2020 at 04:04:09PM +0100, Alarig Le Lay wrote:
> Hi,
>
> I have this configuration:
> asbr02 ~ # cat /etc/bird.conf.d/protocol_rpki/*
> protocol rpki rpki_alarig {
> roa4 { table r4; };
> roa6 { table r6; };
>
> #remote "msi.no.swordarmor.fr";
> remote 2a0e:f42::1;
> }
> protocol rpki rpki_conan {
> roa4 { table r4; };
> roa6 { table r6; };
>
> remote "conan.grifon.fr";
> }
>
> The first protocol establish with the second fails
Hi
Yes, DNS resolving for IPv6 is broken in released versions, see this patch:
https://gitlab.labs.nic.cz/labs/bird/commit/4e23b499696da81acf0ed5ad181573b94ccdb9a3
> Plus, not having the brackets over the literal IPv6 address is a bit
> confusing. The IP isn’t 2a0e:f42::1:323.
You are right, we should move port to a separate line and perhaps print
it only if non-default value is used.
--
Elen sila lumenn' omentielvo
Ondrej 'Santiago' Zajicek (email: santiago at crfreenet.org)
OpenPGP encrypted e-mails preferred (KeyID 0x11DEADC3, wwwkeys.pgp.net)
"To err is human -- to blame it on a computer is even more so."
More information about the Bird-users
mailing list