initial commit

author: Emil Renner Berthing <esmil@labitat.dk> 2017-11-07 16:27:49 +0100
committer: Emil Renner Berthing <esmil@labitat.dk> 2017-11-12 14:56:32 +0100
commit: e8cdba85c48dcbbd42e6fcb5be3aa2912008cb84 (patch)
tree: 41ba5163cf6f110521f2ebc9035f77d2754796a0 /roles/space_server/files/bird/filter.conf
download: labitat-ansible-e8cdba85c48dcbbd42e6fcb5be3aa2912008cb84.tar.gz
labitat-ansible-e8cdba85c48dcbbd42e6fcb5be3aa2912008cb84.tar.xz
labitat-ansible-e8cdba85c48dcbbd42e6fcb5be3aa2912008cb84.zip
1 files changed, 31 insertions, 0 deletions
diff --git a/roles/space_server/files/bird/filter.conf b/roles/space_server/files/bird/filter.conf
new file mode 100644
index 0000000..3edc053
--- /dev/null
+++ b/roles/space_server/files/bird/filter.conf
@@ -0,0 +1,31 @@
+function accept_default_route()
+{
+	if net = DEFAULT_ROUTE then {
+		accept;
+	}
+}
+
+function accept_prefixes(prefix set prefixes)
+{
+	if net ~ prefixes then {
+		accept;
+	}
+}
+
+filter fallback_filter {
+	reject "WARNING!! no filter set, all routes will be rejected";
+}
+
+filter transit_import
+{
+	accept_default_route();
+
+	reject;
+}
+
+filter transit_export
+{
+	accept_prefixes(LABITAT_PREFIXES);
+
+	reject;
+}
author	Emil Renner Berthing <esmil@labitat.dk>	2017-11-07 16:27:49 +0100
committer	Emil Renner Berthing <esmil@labitat.dk>	2017-11-12 14:56:32 +0100
commit	e8cdba85c48dcbbd42e6fcb5be3aa2912008cb84 (patch)
tree	41ba5163cf6f110521f2ebc9035f77d2754796a0 /roles/space_server/files/bird/filter.conf
download	labitat-ansible-e8cdba85c48dcbbd42e6fcb5be3aa2912008cb84.tar.gz labitat-ansible-e8cdba85c48dcbbd42e6fcb5be3aa2912008cb84.tar.xz labitat-ansible-e8cdba85c48dcbbd42e6fcb5be3aa2912008cb84.zip