From 7d69b4221866498a841dc16a796d844d4f818206 Mon Sep 17 00:00:00 2001
From: uvok cheetah
Date: Mon, 24 Jun 2024 19:12:32 +0200
Subject: Don't break *default* default route

the one without conditions in ip rule...
---
 roles/uvok_bird/templates/clearnet.conf.j2 | 5 +++++
 1 file changed, 5 insertions(+)

(limited to 'roles')

diff --git a/roles/uvok_bird/templates/clearnet.conf.j2 b/roles/uvok_bird/templates/clearnet.conf.j2
index ac7af56..ff6674b 100644
--- a/roles/uvok_bird/templates/clearnet.conf.j2
+++ b/roles/uvok_bird/templates/clearnet.conf.j2
@@ -134,6 +134,7 @@ protocol pipe {
     };
 }
 
+# BGP *internal* table
 protocol kernel p_myas_i {
 #    scan time 20;
     kernel table 150;
@@ -146,6 +147,10 @@ protocol kernel p_myas_i {
                 print "SHOULD NOT HAPPEN: export babel to kernel: ", net, " from", source;
                 reject;
             }
+            # DO NOT PUT DEFAULT ROUTE INTO TABLE 150!!
+            # This will completely replace *the default route for non-my-AS-traffic* !!!
+            # will be copied into "BGP table" anyway.
+            if is_default_route() then reject;
             krt_prefsrc = CLEARNET_PREFIP;
             accept;
         };
-- 
cgit v1.2.3