RARE user and assistance email list

["David Schmitz" <>]

Hi Csaba,

On Wed, 7 Jun 2023, mc36 wrote:

> Date: Wed, 7 Jun 2023 09:45:28 +0200
> From: mc36 <>
> To: , 
> Subject: Re: [freertr] Issues with actual FlowSpec filtering,
>     especially for rules announced via exabgp (fwd)
>
> hihi,
>
> On 6/7/23 08:26, David Schmitz wrote:
>
> > > a raw guess, have u tried cle ipv4 bgp 1 recompute instead of adding 
> > > exabgp?
> > That was indeed missing.
> > That fixes the issues of local rules (via conf policy-map/access-list)
> > not to be installed.
> >
> > Thanks for that.
> >
> >
> > It has the little disadvantage that it resets the counters of all rules,
> > but that is something we can address later on the long-term.
> actually its usually a bad idea to originate on the same node where u police 
> down...
>
> in the geant and fod case, they're not running python on their junipers do 
> they? XDDDD
Yes, you are right.
This was not realistic, from my side,

> > > at the moment acls are not directly binded/linked/etc to the bgp just to 
> > > the icmp cores,
> > Ok.
>
>
>
> > > so this or wait an bgp update interval is my guesss...
> > Waiting did not help, as far as I have experienced.
>
> hmmm i ntailed this, so the preiodic update-timer needs to be enabled, 
> rare/freerouter
>
> is fine on incremental recomputations for almost 4ever, see inline the 
> incr/full lines.... :)))))))))
>
> telnet lg.hbone.hu
>
> bmp.wdcvhpc#show ipv4 bgp 1955 bestpath
> category         value           addition
> asn              1955
> routerid         195.111.100.70
> version          188266
> ----------------------------------------------------------------
> full run         49              times
> full last        00:23:50        2023-06-07 09:19:44
> full time        2308            ms
> incr run         188216          times
> incr last        00:00:00        2023-06-07 09:43:34
> incr time        0               ms
> ---------------------------------------------------------------
> changes all      7282281
> changes now      1
> static peers     5
> dynamic peers    0
> groups           1               188265..188265
> rpki table       0
> unicast table    911970          0
> multicast table  854             0
> ouni table       0               0
> omlt table       0               0
> oflw table       0               0
> osrt table       0               0
> flowspec table   19              0
> vpnuni table     23659           0
> vpnmlt table     12              0
> vpnflw table     0               0
> ovpnuni table    7001            0
> ovpnmlt table    9               0
> ovpnflw table    0               0
> vpls table       74              0
> mspw table       0               0
> evpn table       10              0
> mdt table        0               0
> nsh table        0               0
> rpd table        0               0
> rtfilter table   2               0
> srte table       0               0
> linkstate table  0               0
> mvpn table       0               0
> omvpn table      0               0
>
> bmp.wdcvhpc#
I will keep this command in mind and investigate when needed.

Best Regards
David

> br,
>
> cs

--

David Schmitz

Boltzmannstrasse 1, 85748 Garching
Telefon:   +49 89 35831-8765
Leibniz-Rechenzentrum, Germany
Mail:  




-=-=-=-=-=-=-=-=-=-=-=-
Groups.io Links: You receive all messages sent to this group.
View/Reply Online (#1386): https://groups.io/g/freertr/message/1386
Mute This Topic: https://groups.io/mt/99364239/6413194
Group Owner: 
Unsubscribe: https://groups.io/g/freertr/unsub []
-=-=-=-=-=-=-=-=-=-=-=-