summaryrefslogtreecommitdiff
path: root/roles/uvok_bird
diff options
context:
space:
mode:
Diffstat (limited to 'roles/uvok_bird')
-rw-r--r--roles/uvok_bird/templates/clearnet.conf.j214
1 files changed, 14 insertions, 0 deletions
diff --git a/roles/uvok_bird/templates/clearnet.conf.j2 b/roles/uvok_bird/templates/clearnet.conf.j2
index 95adec4..7abb0cd 100644
--- a/roles/uvok_bird/templates/clearnet.conf.j2
+++ b/roles/uvok_bird/templates/clearnet.conf.j2
@@ -25,6 +25,16 @@ protocol static myprefix {
};
}
+# blackhole everything else - activates RPKI filter!
+protocol static default6 {
+ route ::/0 reject;
+ ipv6 {
+ table t_myas_trs;
+ import all;
+ export none;
+ };
+}
+
protocol direct {
ipv6 { table t_myas_babel; };
interface "myas_int";
@@ -153,6 +163,10 @@ protocol kernel pk_myas_out {
if (source = RTS_BGP) then {
accept;
}
+ # default route
+ if (source = RTS_STATIC) then {
+ accept;
+ }
{% if uvok_bird_opts.use_fallback %}
if (proto = "myas_def_fallb") then {
accept;