Question: ROA verification does not work properly on bird 2.0.11
haima
haima at moebee.net
Mon Jan 23 15:44:49 CET 2023
Hello dear community members,
I am configuring RPKI verification for my network, but I have encountered a strange syntax error problem.
My configuration is as follows:
roa4 table roa_table4;
roa6 table roa_table6;
protocol rpki Cloudflare_RPKI {
roa4 { table roa_table4; };
roa6 { table roa_table6; };
remote "172.65.0.2" port 8282;
retry keep 90;
refresh keep 900;
expire keep 172800;
}
function is_rpki_invalid () { }
if roa_check(roa_table4, net, bgp_path.last) = ROA_INVALID then return true
if roa_check(roa_table6, net, bgp_path.last) = ROA_INVALID then return true;
return false;
}
bird will return the following error: /etc/bird/function.conf:59:22 Syntax error, unexpected CF_SYM_UNDEFINED, expecting CF_SYM_KNOWN
This error is also returned by the example configuration provided in the documentation.
PS: RPKI session placed in bird.conf
PS: Function placed in function.conf
Regards,
Haima
MoeBee Network
More information about the Bird-users
mailing list