proxmox-mirrors/mirror_frr
1
0
Fork 0
mirror of https://git.proxmox.com/git/mirror_frr synced 2025-04-28 17:01:51 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

topotests: add bgp ecommunity-list match test

Browse Source 
Add a test suite that checks that it is possible to filter out
BGP updates based on the extcommunity-list match operation of the
route-map. Check also the extcommunity-limit option.

Signed-off-by: Philippe Guibert <philippe.guibert@6wind.com>
This commit is contained in:
Philippe Guibert 2025-02-14 10:47:23 +01:00
parent 52b1db86dc
commit 2b71dc2d91
4 changed files with 307 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

51
tests/topotests/bgp_ecomm_list_match/r1/frr.conf Normal file
View File

@ -0,0 +1,51 @@
!
interface lo
ip address 172.16.255.1/32
ip address 172.16.255.2/32
ip address 172.16.255.3/32
ip address 172.16.255.4/32
ip address 172.16.255.5/32
ip address 172.16.255.6/32
!
interface r1-eth0
ip address 192.168.0.1/24
!
ip forwarding
!
router bgp 65001
no bgp ebgp-requires-policy
neighbor 192.168.0.2 remote-as external
neighbor 192.168.0.2 timers 1 3
neighbor 192.168.0.2 timers connect 1
address-family ipv4
redistribute connected
neighbor 192.168.0.2 route-map r2 out
exit-address-family
!
ip prefix-list p1 seq 5 permit 172.16.255.1/32
ip prefix-list p3 seq 5 permit 172.16.255.3/32
ip prefix-list p4 seq 5 permit 172.16.255.4/32
ip prefix-list p5 seq 5 permit 172.16.255.5/32
ip prefix-list p6 seq 5 permit 172.16.255.6/32
!
route-map r2 permit 10
match ip address prefix-list p1
set extcommunity rt 65001:1 65001:2
route-map r2 permit 20
match ip address prefix-list p3
set extcommunity rt 65001:3
route-map r2 permit 30
match ip address prefix-list p4
set extcommunity rt 65001:10 65001:12 65001:13
exit
route-map r2 permit 40
match ip address prefix-list p5
set extcommunity rt 65001:13 65001:14
exit
route-map r2 permit 50
match ip address prefix-list p6
set extcommunity rt 65001:16 65001:17 65001:18 65001:19
exit
route-map r2 permit 60
exit
!

32
tests/topotests/bgp_ecomm_list_match/r2/frr.conf Normal file
View File

@ -0,0 +1,32 @@
!
interface r2-eth0
ip address 192.168.0.2/24
!
interface r2-eth1
ip address 192.168.1.2/24
!
ip forwarding
!
!debug bgp updates
!
router bgp 65002
no bgp ebgp-requires-policy
neighbor 192.168.0.1 remote-as external
neighbor 192.168.0.1 timers 1 3
neighbor 192.168.0.1 timers connect 1
neighbor 192.168.1.3 remote-as external
neighbor 192.168.1.3 timers 1 3
neighbor 192.168.1.3 timers connect 1
address-family ipv4
neighbor 192.168.0.1 route-map r1 in
neighbor 192.168.0.1 soft-reconfiguration inbound
exit-address-family
!
bgp extcommunity-list 1 seq 5 permit rt 65001:1 rt 65001:2
bgp extcommunity-list 1 seq 10 permit rt 65001:3
!
route-map r1 deny 10
match extcommunity 1
route-map r1 permit 20
exit
!

26
tests/topotests/bgp_ecomm_list_match/r3/frr.conf Normal file
View File

@ -0,0 +1,26 @@
!
interface r3-eth0
ip address 192.168.1.3/24
!
ip forwarding
!
!debug bgp updates
!
router bgp 65003
no bgp ebgp-requires-policy
neighbor 192.168.1.2 remote-as external
neighbor 192.168.1.2 timers 1 3
neighbor 192.168.1.2 timers connect 1
address-family ipv4
neighbor 192.168.1.2 route-map r1 in
neighbor 192.168.1.2 soft-reconfiguration inbound
exit-address-family
!
bgp extcommunity-list 2 seq 10 permit rt 65001:12
!
route-map r1 deny 10
match extcommunity 2 any
exit
route-map r1 permit 20
exit
!

198
tests/topotests/bgp_ecomm_list_match/test_bgp_ecomm_list_match.py Normal file
View File

@ -0,0 +1,198 @@
#!/usr/bin/env python
# SPDX-License-Identifier: ISC
#
# Copyright (c) 2025 by 6WIND
#
"""
Check if BGP extcommunity-list works as OR if multiple community entries specified,
like:
bgp extcommunity-list 1 seq 5 permit rt 65001:1 rt 65002:2
bgp community-list 1 seq 10 permit rt 65001:3
!
route-map test deny 10
match extcommunity 1
route-map test permit 20
Here, we should deny routes in/out if the path has:
(ty 65001:1 AND rt 65001:2) OR rt 65001:3.
"""
import os
import sys
import json
import pytest
import functools
CWD = os.path.dirname(os.path.realpath(__file__))
sys.path.append(os.path.join(CWD, "../"))
# pylint: disable=C0413
from lib import topotest
from lib.topogen import Topogen, TopoRouter, get_topogen, logger
from lib.common_config import step
pytestmark = [pytest.mark.bgpd]
def build_topo(tgen):
for routern in range(1, 4):
tgen.add_router("r{}".format(routern))
switch = tgen.add_switch("s1")
switch.add_link(tgen.gears["r1"])
switch.add_link(tgen.gears["r2"])
switch = tgen.add_switch("s2")
switch.add_link(tgen.gears["r3"])
switch.add_link(tgen.gears["r2"])
def setup_module(mod):
tgen = Topogen(build_topo, mod.__name__)
tgen.start_topology()
router_list = tgen.routers()
for rname, router in tgen.routers().items():
logger.info("Loading router %s" % rname)
router.load_frr_config(os.path.join(CWD, "{}/frr.conf".format(rname)))
# Initialize all routers.
tgen.start_router()
def teardown_module(mod):
tgen = get_topogen()
tgen.stop_topology()
def test_bgp_extcomm_list_match():
tgen = get_topogen()
if tgen.routers_have_failure():
pytest.skip(tgen.errors)
router = tgen.gears["r2"]
def _bgp_converge():
output = json.loads(
router.vtysh_cmd(
"show bgp ipv4 unicast neighbors 192.168.0.1 filtered-routes json"
)
)
expected = {
"receivedRoutes": {
"172.16.255.1/32": {
"path": "65001",
},
"172.16.255.3/32": {
"path": "65001",
},
}
}
return topotest.json_cmp(output, expected)
step("Initial BGP converge between R1 and R2")
test_func = functools.partial(_bgp_converge)
_, result = topotest.run_and_expect(test_func, None, count=60, wait=0.5)
assert result is None, "Failed to filter BGP UPDATES with community-list on R2"
def test_bgp_extcomm_list_match_any():
tgen = get_topogen()
if tgen.routers_have_failure():
pytest.skip(tgen.errors)
router = tgen.gears["r3"]
def _bgp_converge():
output = json.loads(
router.vtysh_cmd(
"show bgp ipv4 unicast neighbors 192.168.1.2 filtered-routes json"
)
)
expected = {
"receivedRoutes": {
"172.16.255.4/32": {
"path": "65002 65001",
},
}
}
return topotest.json_cmp(output, expected)
step("Initial BGP converge between R3 and R2")
test_func = functools.partial(_bgp_converge)
_, result = topotest.run_and_expect(test_func, None, count=60, wait=0.5)
assert result is None, "Failed to filter BGP UPDATES with community-list on R3"
def test_bgp_extcomm_list_limit_match():
tgen = get_topogen()
if tgen.routers_have_failure():
pytest.skip(tgen.errors)
router = tgen.gears["r3"]
router.vtysh_cmd(
"""
configure terminal
route-map r1 permit 20
match extcommunity-limit 3
"""
)
def _bgp_count():
output = json.loads(router.vtysh_cmd("show bgp ipv4 json"))
expected = {
"vrfName": "default",
"routerId": "192.168.1.3",
"localAS": 65003,
"totalRoutes": 3,
"totalPaths": 3,
}
return topotest.json_cmp(output, expected)
step("Check that 3 routes have been received on R3")
test_func = functools.partial(_bgp_count)
_, result = topotest.run_and_expect(test_func, None, count=60, wait=0.5)
assert result is None, "Failed to check that 3 routes have been received on R3"
def test_bgp_comm_list_reset_limit_match():
tgen = get_topogen()
if tgen.routers_have_failure():
pytest.skip(tgen.errors)
router = tgen.gears["r3"]
router.vtysh_cmd(
"""
configure terminal
route-map r1 permit 20
no match extcommunity-limit
"""
)
def _bgp_count_two():
output = json.loads(router.vtysh_cmd("show bgp ipv4 json"))
expected = {
"vrfName": "default",
"routerId": "192.168.1.3",
"localAS": 65003,
"totalRoutes": 4,
"totalPaths": 4,
}
return topotest.json_cmp(output, expected)
step("Check that 4 routes have been received on R3")
test_func = functools.partial(_bgp_count_two)
_, result = topotest.run_and_expect(test_func, None, count=60, wait=0.5)
assert result is None, "Failed to check that 4 routes have been received on R3"
if __name__ == "__main__":
args = ["-s"] + sys.argv[1:]
sys.exit(pytest.main(args))