Merge pull request #6164 from ton31337/feature/rfc8212_enabled_traditional_profile

bgpd: Enable rfc8212 by default except datacenter profile
2025-08-14 06:50:17 +00:00 · 2020-04-18 15:06:04 -04:00 · 2020-04-18 15:06:04 -04:00 · 8b1e4f30ba
commit 8b1e4f30ba
parent 034cb57fd2 8971c2d828
108 changed files with 159 additions and 86 deletions
--- a/bgpd/bgp_route.c
+++ b/bgpd/bgp_route.c
@ -1925,8 +1925,7 @@ bool subgroup_announce_check(struct bgp_node *rn, struct bgp_path_info *pi,
 	 * benefit from consistent behavior across different BGP
 	 * implementations.
 	 */
-	if (peer->bgp->ebgp_requires_policy
-	    == DEFAULT_EBGP_POLICY_ENABLED)
+	if (CHECK_FLAG(bgp->flags, BGP_FLAG_EBGP_REQUIRES_POLICY))
 		if (!bgp_outbound_policy_exists(peer, filter))
 			return false;

@ -3413,7 +3412,7 @@ int bgp_update(struct peer *peer, const struct prefix *p, uint32_t addpath_id,
 	 * benefit from consistent behavior across different BGP
 	 * implementations.
 	 */
-	if (peer->bgp->ebgp_requires_policy == DEFAULT_EBGP_POLICY_ENABLED)
+	if (CHECK_FLAG(bgp->flags, BGP_FLAG_EBGP_REQUIRES_POLICY))
 		if (!bgp_inbound_policy_exists(peer,
 					       &peer->filter[afi][safi])) {
 			reason = "inbound policy missing";
--- a/bgpd/bgp_vty.c
+++ b/bgpd/bgp_vty.c
@ -100,6 +100,11 @@ FRR_CFG_DEFAULT_ULONG(BGP_KEEPALIVE,
 	{ .val_ulong = 3, .match_profile = "datacenter", },
 	{ .val_ulong = 60 },
 )
+FRR_CFG_DEFAULT_BOOL(BGP_EBGP_REQUIRES_POLICY,
+	{ .val_bool = false, .match_profile = "datacenter", },
+	{ .val_bool = false, .match_version = "< 7.4", },
+	{ .val_bool = true },
+)

 DEFINE_HOOK(bgp_inst_config_write,
 		(struct bgp *bgp, struct vty *vty),
@ -417,6 +422,8 @@ int bgp_get_vty(struct bgp **bgp, as_t *as, const char *name,
 			SET_FLAG((*bgp)->flags, BGP_FLAG_LOG_NEIGHBOR_CHANGES);
 		if (DFLT_BGP_DETERMINISTIC_MED)
 			SET_FLAG((*bgp)->flags, BGP_FLAG_DETERMINISTIC_MED);
+		if (DFLT_BGP_EBGP_REQUIRES_POLICY)
+			SET_FLAG((*bgp)->flags, BGP_FLAG_EBGP_REQUIRES_POLICY);

 		ret = BGP_SUCCESS;
 	}
@ -2036,7 +2043,7 @@ DEFUN(bgp_ebgp_requires_policy, bgp_ebgp_requires_policy_cmd,
      "Require in and out policy for eBGP peers (RFC8212)\n")
 {
 	VTY_DECLVAR_CONTEXT(bgp, bgp);
-	bgp->ebgp_requires_policy = DEFAULT_EBGP_POLICY_ENABLED;
+	SET_FLAG(bgp->flags, BGP_FLAG_EBGP_REQUIRES_POLICY);
 	return CMD_SUCCESS;
 }

@ -2047,7 +2054,7 @@ DEFUN(no_bgp_ebgp_requires_policy, no_bgp_ebgp_requires_policy_cmd,
      "Require in and out policy for eBGP peers (RFC8212)\n")
 {
 	VTY_DECLVAR_CONTEXT(bgp, bgp);
-	bgp->ebgp_requires_policy = DEFAULT_EBGP_POLICY_DISABLED;
+	UNSET_FLAG(bgp->flags, BGP_FLAG_EBGP_REQUIRES_POLICY);
 	return CMD_SUCCESS;
 }

@ -10149,14 +10156,14 @@ static void bgp_show_peer_afi(struct vty *vty, struct peer *p, afi_t afi,
 				filter->map[RMAP_OUT].name);

 		/* ebgp-requires-policy (inbound) */
-		if (p->bgp->ebgp_requires_policy == DEFAULT_EBGP_POLICY_ENABLED
+		if (CHECK_FLAG(p->bgp->flags, BGP_FLAG_EBGP_REQUIRES_POLICY)
 		    && !bgp_inbound_policy_exists(p, filter))
 			json_object_string_add(
 				json_addr, "inboundEbgpRequiresPolicy",
 				"Inbound updates discarded due to missing policy");

 		/* ebgp-requires-policy (outbound) */
-		if (p->bgp->ebgp_requires_policy == DEFAULT_EBGP_POLICY_ENABLED
+		if (CHECK_FLAG(p->bgp->flags, BGP_FLAG_EBGP_REQUIRES_POLICY)
 		    && (!bgp_outbound_policy_exists(p, filter)))
 			json_object_string_add(
 				json_addr, "outboundEbgpRequiresPolicy",
@ -10445,13 +10452,13 @@ static void bgp_show_peer_afi(struct vty *vty, struct peer *p, afi_t afi,
 				filter->map[RMAP_OUT].name);

 		/* ebgp-requires-policy (inbound) */
-		if (p->bgp->ebgp_requires_policy == DEFAULT_EBGP_POLICY_ENABLED
+		if (CHECK_FLAG(p->bgp->flags, BGP_FLAG_EBGP_REQUIRES_POLICY)
 		    && !bgp_inbound_policy_exists(p, filter))
 			vty_out(vty,
 				"  Inbound updates discarded due to missing policy\n");

 		/* ebgp-requires-policy (outbound) */
-		if (p->bgp->ebgp_requires_policy == DEFAULT_EBGP_POLICY_ENABLED
+		if (CHECK_FLAG(p->bgp->flags, BGP_FLAG_EBGP_REQUIRES_POLICY)
 		    && !bgp_outbound_policy_exists(p, filter))
 			vty_out(vty,
 				"  Outbound updates discarded due to missing policy\n");
@ -15066,9 +15073,13 @@ int bgp_config_write(struct vty *vty)
 			vty_out(vty, " bgp always-compare-med\n");

 		/* RFC8212 default eBGP policy. */
-		if (bgp->ebgp_requires_policy
-		    == DEFAULT_EBGP_POLICY_ENABLED)
-			vty_out(vty, " bgp ebgp-requires-policy\n");
+		if (!!CHECK_FLAG(bgp->flags, BGP_FLAG_EBGP_REQUIRES_POLICY)
+		    != SAVE_BGP_EBGP_REQUIRES_POLICY)
+			vty_out(vty, " %sbgp ebgp-requires-policy\n",
+				CHECK_FLAG(bgp->flags,
+					   BGP_FLAG_EBGP_REQUIRES_POLICY)
+					? ""
+					: "no ");

 		/* draft-ietf-idr-deprecate-as-set-confed-set */
 		if (bgp->reject_as_sets == BGP_REJECT_AS_SETS_ENABLED)
--- a/bgpd/bgpd.c
+++ b/bgpd/bgpd.c
@ -2972,7 +2972,6 @@ static struct bgp *bgp_create(as_t *as, const char *name,
 	bgp->dynamic_neighbors_count = 0;
 	bgp->lb_ref_bw = BGP_LINK_BW_REF_BW;
 	bgp->lb_handling = BGP_LINK_BW_ECMP;
-	bgp->ebgp_requires_policy = DEFAULT_EBGP_POLICY_DISABLED;
 	bgp->reject_as_sets = BGP_REJECT_AS_SETS_DISABLED;
 	bgp_addpath_init_bgp_data(&bgp->tx_addpath);

--- a/bgpd/bgpd.h
+++ b/bgpd/bgpd.h
@ -446,6 +446,7 @@ struct bgp {
 #define BGP_FLAG_DELETE_IN_PROGRESS       (1 << 22)
 #define BGP_FLAG_SELECT_DEFER_DISABLE     (1 << 23)
 #define BGP_FLAG_GR_DISABLE_EOR           (1 << 24)
+#define BGP_FLAG_EBGP_REQUIRES_POLICY (1 << 25)

 	enum global_mode GLOBAL_GR_FSM[BGP_GLOBAL_GR_MODE]
 				      [BGP_GLOBAL_GR_EVENT_CMD];
@ -593,11 +594,6 @@ struct bgp {
 	/* EVPN enable - advertise local VNIs and their MACs etc. */
 	int advertise_all_vni;

-	/* RFC 8212 - prevent route leaks. */
-	int ebgp_requires_policy;
-#define DEFAULT_EBGP_POLICY_DISABLED 0
-#define DEFAULT_EBGP_POLICY_ENABLED 1
-
 	/* draft-ietf-idr-deprecate-as-set-confed-set
 	 * Reject aspaths with AS_SET and/or AS_CONFED_SET.
 	 */
--- a/doc/user/bgp.rst
+++ b/doc/user/bgp.rst
@ -414,7 +414,11 @@ Require policy on EBGP
 .. index:: [no] bgp ebgp-requires-policy
 .. clicmd:: [no] bgp ebgp-requires-policy

-   This command requires incoming and outgoing filters to be applied for eBGP sessions. Without the incoming filter, no routes will be accepted. Without the outgoing filter, no routes will be announced.
+   This command requires incoming and outgoing filters to be applied
+   for eBGP sessions. Without the incoming filter, no routes will be
+   accepted. Without the outgoing filter, no routes will be announced.
+
+   This is enabled by default.

 Reject routes with AS_SET or AS_CONFED_SET types
 ------------------------------------------------
--- a/tests/topotests/all-protocol-startup/r1/bgpd.conf
+++ b/tests/topotests/all-protocol-startup/r1/bgpd.conf
@ -4,6 +4,7 @@ log file bgpd.log
 router bgp 100
 bgp router-id 192.168.0.1
 bgp log-neighbor-changes
+ no bgp ebgp-requires-policy
 neighbor 192.168.7.10 remote-as 100
 neighbor 192.168.7.20 remote-as 200
 neighbor fc00:0:0:8::1000 remote-as 100
--- a/tests/topotests/bfd-bgp-cbit-topo3/r1/bgpd.conf
+++ b/tests/topotests/bfd-bgp-cbit-topo3/r1/bgpd.conf
@ -1,6 +1,7 @@
 debug bgp neighbor-events
 router bgp 101
 bgp router-id 10.254.254.1
+ no bgp ebgp-requires-policy
 timers bgp 8 24
 bgp graceful-restart
 neighbor 2001:db8:4::1 remote-as 102
@ -14,7 +15,7 @@ router bgp 101
 exit-address-family
 address-family ipv6 unicast
  network 2001:db8:8::/64
-  network 2001:db8:9::/64 
+  network 2001:db8:9::/64
  neighbor 2001:db8:4::1 activate
 exit-address-family
 !
--- a/tests/topotests/bfd-bgp-cbit-topo3/r3/bgpd.conf
+++ b/tests/topotests/bfd-bgp-cbit-topo3/r3/bgpd.conf
@ -1,6 +1,7 @@
 debug bgp neighbor-events
 router bgp 102
 bgp router-id 10.254.254.3
+ no bgp ebgp-requires-policy
 timers bgp 20 60
 bgp graceful-restart
 ! simulate NSF machine
--- a/tests/topotests/bfd-topo1/r1/bgpd.conf
+++ b/tests/topotests/bfd-topo1/r1/bgpd.conf
@ -1,4 +1,5 @@
 router bgp 101
+ no bgp ebgp-requires-policy
 neighbor 192.168.0.2 remote-as 102
 neighbor 192.168.0.2 bfd
 address-family ipv4 unicast
--- a/tests/topotests/bfd-topo1/r2/bgpd.conf
+++ b/tests/topotests/bfd-topo1/r2/bgpd.conf
@ -1,4 +1,5 @@
 router bgp 102
+ no bgp ebgp-requires-policy
 neighbor 192.168.0.1 remote-as 101
 neighbor 192.168.0.1 bfd
 neighbor 192.168.1.1 remote-as 103
--- a/tests/topotests/bfd-topo1/r3/bgpd.conf
+++ b/tests/topotests/bfd-topo1/r3/bgpd.conf
@ -1,4 +1,5 @@
 router bgp 103
+ no bgp ebgp-requires-policy
 neighbor 192.168.1.2 remote-as 102
 neighbor 192.168.1.2 bfd
 address-family ipv4 unicast
--- a/tests/topotests/bfd-topo1/r4/bgpd.conf
+++ b/tests/topotests/bfd-topo1/r4/bgpd.conf
@ -1,4 +1,5 @@
 router bgp 104
+ no bgp ebgp-requires-policy
 neighbor 192.168.2.2 remote-as 102
 neighbor 192.168.2.2 bfd
 address-family ipv4 unicast
--- a/tests/topotests/bfd-topo2/r1/bgpd.conf
+++ b/tests/topotests/bfd-topo2/r1/bgpd.conf
@ -1,5 +1,6 @@
 router bgp 101
 bgp router-id 10.254.254.1
+ no bgp ebgp-requires-policy
 neighbor r2g peer-group
 neighbor r2g remote-as external
 neighbor r2g bfd
--- a/tests/topotests/bfd-topo2/r2/bgpd.conf
+++ b/tests/topotests/bfd-topo2/r2/bgpd.conf
@ -1,5 +1,6 @@
 router bgp 102
 bgp router-id 10.254.254.2
+ no bgp ebgp-requires-policy
 neighbor r2g peer-group
 neighbor r2g remote-as external
 neighbor r2g bfd
--- a/tests/topotests/bfd-vrf-topo1/r1/bgpd.conf
+++ b/tests/topotests/bfd-vrf-topo1/r1/bgpd.conf
@ -1,4 +1,5 @@
 router bgp 101 vrf r1-cust1
+ no bgp ebgp-requires-policy
 neighbor 192.168.0.2 remote-as 102
 ! neighbor 192.168.0.2 ebgp-multihop 10
 neighbor 192.168.0.2 bfd
--- a/tests/topotests/bfd-vrf-topo1/r2/bgpd.conf
+++ b/tests/topotests/bfd-vrf-topo1/r2/bgpd.conf
@ -1,4 +1,5 @@
 router bgp 102 vrf r2-cust1
+ no bgp ebgp-requires-policy
 neighbor 192.168.0.1 remote-as 101
 neighbor 192.168.0.1 bfd
 neighbor 192.168.1.1 remote-as 103
--- a/tests/topotests/bfd-vrf-topo1/r3/bgpd.conf
+++ b/tests/topotests/bfd-vrf-topo1/r3/bgpd.conf
@ -1,4 +1,5 @@
 router bgp 103 vrf r3-cust1
+ no bgp ebgp-requires-policy
 neighbor 192.168.1.2 remote-as 102
 neighbor 192.168.1.2 bfd
 address-family ipv4 unicast
--- a/tests/topotests/bfd-vrf-topo1/r4/bgpd.conf
+++ b/tests/topotests/bfd-vrf-topo1/r4/bgpd.conf
@ -1,4 +1,5 @@
 router bgp 104 vrf r4-cust1
+ no bgp ebgp-requires-policy
 neighbor 192.168.2.2 remote-as 102
 neighbor 192.168.2.2 bfd
 address-family ipv4 unicast
--- a/tests/topotests/bgp-ecmp-topo1/r1/bgpd.conf
+++ b/tests/topotests/bgp-ecmp-topo1/r1/bgpd.conf
@ -5,6 +5,7 @@ log file bgpd.log
 router bgp 100
 bgp router-id 10.0.255.1
 bgp bestpath as-path multipath-relax
+ no bgp ebgp-requires-policy
 neighbor 10.0.1.101 remote-as 99
 neighbor 10.0.1.102 remote-as 99
 neighbor 10.0.1.103 remote-as 99
--- a/tests/topotests/bgp-vrf-route-leak-basic/r1/bgpd.conf
+++ b/tests/topotests/bgp-vrf-route-leak-basic/r1/bgpd.conf
@ -1,14 +1,16 @@
 hostname r1

 router bgp 99 vrf DONNA
+  no bgp ebgp-requires-policy
  address-family ipv4 unicast
    redistribute connected
    import vrf EVA
  !
 !
 router bgp 99 vrf EVA
+  no bgp ebgp-requires-policy
  address-family ipv4 unicast
    redistribute connected
    import vrf DONNA
  !
-!
+!
--- a/tests/topotests/bgp_aggregate-address_origin/r1/bgpd.conf
+++ b/tests/topotests/bgp_aggregate-address_origin/r1/bgpd.conf
@ -1,4 +1,5 @@
 router bgp 65000
+  no bgp ebgp-requires-policy
  neighbor 192.168.255.2 remote-as 65001
  address-family ipv4 unicast
    redistribute connected
--- a/tests/topotests/bgp_aggregate-address_origin/r2/bgpd.conf
+++ b/tests/topotests/bgp_aggregate-address_origin/r2/bgpd.conf
@ -1,4 +1,5 @@
 router bgp 65001
+  no bgp ebgp-requires-policy
  neighbor 192.168.255.1 remote-as 65000
  exit-address-family
 !
--- a/tests/topotests/bgp_aggregate-address_route-map/r1/bgpd.conf
+++ b/tests/topotests/bgp_aggregate-address_route-map/r1/bgpd.conf
@ -1,4 +1,5 @@
 router bgp 65000
+  no bgp ebgp-requires-policy
  neighbor 192.168.255.2 remote-as 65001
  address-family ipv4 unicast
    redistribute connected
--- a/tests/topotests/bgp_aggregate-address_route-map/r2/bgpd.conf
+++ b/tests/topotests/bgp_aggregate-address_route-map/r2/bgpd.conf
@ -1,4 +1,5 @@
 router bgp 65001
+  no bgp ebgp-requires-policy
  neighbor 192.168.255.1 remote-as 65000
  exit-address-family
 !
--- a/tests/topotests/bgp_as_wide_bgp_identifier/r1/bgpd.conf
+++ b/tests/topotests/bgp_as_wide_bgp_identifier/r1/bgpd.conf
@ -1,5 +1,6 @@
 ! exit1
 router bgp 65001
  bgp router-id 10.10.10.10
+  no bgp ebgp-requires-policy
  neighbor 192.168.255.1 remote-as 65002
 !
--- a/tests/topotests/bgp_as_wide_bgp_identifier/r2/bgpd.conf
+++ b/tests/topotests/bgp_as_wide_bgp_identifier/r2/bgpd.conf
@ -1,6 +1,7 @@
 ! spine
 router bgp 65002
  bgp router-id 10.10.10.10
+  no bgp ebgp-requires-policy
  neighbor 192.168.255.2 remote-as 65001
  neighbor 192.168.255.3 remote-as 65002
 !
--- a/tests/topotests/bgp_as_wide_bgp_identifier/r3/bgpd.conf
+++ b/tests/topotests/bgp_as_wide_bgp_identifier/r3/bgpd.conf
@ -1,5 +1,6 @@
 ! exit2
 router bgp 65002
  bgp router-id 10.10.10.10
+  no bgp ebgp-requires-policy
  neighbor 192.168.255.1 remote-as 65002
 !
--- a/tests/topotests/bgp_comm-list_delete/r1/bgpd.conf
+++ b/tests/topotests/bgp_comm-list_delete/r1/bgpd.conf
@ -1,4 +1,5 @@
 router bgp 65000
+  no bgp ebgp-requires-policy
  neighbor 192.168.255.2 remote-as 65001
  address-family ipv4 unicast
    redistribute connected route-map r2-out
--- a/tests/topotests/bgp_comm-list_delete/r2/bgpd.conf
+++ b/tests/topotests/bgp_comm-list_delete/r2/bgpd.conf
@ -1,4 +1,5 @@
 router bgp 65001
+  no bgp ebgp-requires-policy
  neighbor 192.168.255.1 remote-as 65000
  address-family ipv4
    neighbor 192.168.255.1 route-map r1-in in
--- a/tests/topotests/bgp_default-route_route-map/r1/bgpd.conf
+++ b/tests/topotests/bgp_default-route_route-map/r1/bgpd.conf
@ -1,4 +1,5 @@
 router bgp 65000
+  no bgp ebgp-requires-policy
  neighbor 192.168.255.2 remote-as 65001
  address-family ipv4 unicast
    neighbor 192.168.255.2 default-originate route-map default
--- a/tests/topotests/bgp_default-route_route-map/r2/bgpd.conf
+++ b/tests/topotests/bgp_default-route_route-map/r2/bgpd.conf
@ -1,4 +1,5 @@
 router bgp 65001
+  no bgp ebgp-requires-policy
  neighbor 192.168.255.1 remote-as 65000
  address-family ipv4 unicast
    redistribute connected
--- a/tests/topotests/bgp_distance_change/r1/bgpd.conf
+++ b/tests/topotests/bgp_distance_change/r1/bgpd.conf
@ -1,4 +1,5 @@
 router bgp 65000
+  no bgp ebgp-requires-policy
  neighbor 192.168.255.2 remote-as 65001
  exit-address-family
 !
--- a/tests/topotests/bgp_distance_change/r2/bgpd.conf
+++ b/tests/topotests/bgp_distance_change/r2/bgpd.conf
@ -1,4 +1,5 @@
 router bgp 65001
+  no bgp ebgp-requires-policy
  neighbor 192.168.255.1 remote-as 65000
  address-family ipv4
    redistribute connected
--- a/tests/topotests/bgp_ebgp_requires_policy/r1/bgpd.conf
+++ b/tests/topotests/bgp_ebgp_requires_policy/r1/bgpd.conf
@ -1,5 +1,4 @@
 router bgp 65000
-  bgp ebgp-requires-policy
  neighbor 192.168.255.2 remote-as 1000
  neighbor 192.168.255.2 local-as 500
  address-family ipv4 unicast
--- a/tests/topotests/bgp_ebgp_requires_policy/r2/bgpd.conf
+++ b/tests/topotests/bgp_ebgp_requires_policy/r2/bgpd.conf
@ -1,2 +1,3 @@
 router bgp 1000
+  no bgp ebgp-requires-policy
  neighbor 192.168.255.1 remote-as 500
--- a/tests/topotests/bgp_ebgp_requires_policy/r3/bgpd.conf
+++ b/tests/topotests/bgp_ebgp_requires_policy/r3/bgpd.conf
@ -1,5 +1,4 @@
 router bgp 65000
-  bgp ebgp-requires-policy
  neighbor 192.168.255.2 remote-as 1000
  neighbor 192.168.255.2 local-as 500
  address-family ipv4 unicast
--- a/tests/topotests/bgp_ebgp_requires_policy/r4/bgpd.conf
+++ b/tests/topotests/bgp_ebgp_requires_policy/r4/bgpd.conf
@ -1,2 +1,3 @@
 router bgp 1000
+  no bgp ebgp-requires-policy
  neighbor 192.168.255.1 remote-as 500
--- a/tests/topotests/bgp_ebgp_requires_policy/r5/bgpd.conf
+++ b/tests/topotests/bgp_ebgp_requires_policy/r5/bgpd.conf
@ -1,4 +1,5 @@
 router bgp 65000
+  no bgp ebgp-requires-policy
  neighbor 192.168.255.2 remote-as 65000
  address-family ipv4 unicast
    redistribute connected
--- a/tests/topotests/bgp_ebgp_requires_policy/r6/bgpd.conf
+++ b/tests/topotests/bgp_ebgp_requires_policy/r6/bgpd.conf
@ -1,3 +1,2 @@
 router bgp 65000
-  bgp ebgp-requires-policy
  neighbor 192.168.255.1 remote-as 65000
--- a/tests/topotests/bgp_ebgp_requires_policy/test_bgp_ebgp_requires_policy.py
+++ b/tests/topotests/bgp_ebgp_requires_policy/test_bgp_ebgp_requires_policy.py
@ -27,6 +27,16 @@ bgp_ebgp_requires_policy.py:

 Test if eBGP sender without a filter applied to the peer is allowed
 to send advertisements.
+
+Scenario 1:
+  r1 has a filter applied for outgoing direction,
+  r2 receives 192.168.255.1/32.
+Scenario 2:
+  r3 hasn't a filter appied for outgoing direction,
+  r4 does not receive 192.168.255.1/32.
+Scenario 3:
+  r5 and r6 establish iBGP session which in turn should ignore
+  RFC8212. All routes for both directions MUST work.
 """

 import os
@ -112,27 +122,27 @@ def test_ebgp_requires_policy():

    test_func = functools.partial(_bgp_converge, "r2")
    success, result = topotest.run_and_expect(test_func, None, count=60, wait=0.5)
-    assert success is True, 'Failed bgp convergence (r2) in "{}"'.format(router)
+    assert success is True, 'Failed bgp convergence (r2) in "{}"'.format(tgen.gears["r2"])

    test_func = functools.partial(_bgp_has_routes, "r2")
    success, result = topotest.run_and_expect(test_func, None, count=60, wait=0.5)
-    assert success is True, 'eBGP policy is not working (r2) in "{}"'.format(router)
+    assert success is True, 'eBGP policy is not working (r2) in "{}"'.format(tgen.gears["r2"])

    test_func = functools.partial(_bgp_converge, "r4")
    success, result = topotest.run_and_expect(test_func, None, count=60, wait=0.5)
-    assert success is True, 'Failed bgp convergence (r4) in "{}"'.format(router)
+    assert success is True, 'Failed bgp convergence (r4) in "{}"'.format(tgen.gears["r4"])

    test_func = functools.partial(_bgp_has_routes, "r4")
    success, result = topotest.run_and_expect(test_func, None, count=60, wait=0.5)
-    assert success is False, 'eBGP policy is not working (r4) in "{}"'.format(router)
+    assert success is False, 'eBGP policy is not working (r4) in "{}"'.format(tgen.gears["r4"])

    test_func = functools.partial(_bgp_converge, "r6")
    success, result = topotest.run_and_expect(test_func, None, count=60, wait=0.5)
-    assert success is True, 'Failed bgp convergence (r6) in "{}"'.format(router)
+    assert success is True, 'Failed bgp convergence (r6) in "{}"'.format(tgen.gears["r6"])

    test_func = functools.partial(_bgp_has_routes, "r6")
    success, result = topotest.run_and_expect(test_func, None, count=60, wait=0.5)
-    assert success is True, 'eBGP policy is not working (r6) in "{}"'.format(router)
+    assert success is True, 'eBGP policy is not working (r6) in "{}"'.format(tgen.gears["r6"])


 if __name__ == "__main__":
--- a/tests/topotests/bgp_ipv6_rtadv/r1/bgpd.conf
+++ b/tests/topotests/bgp_ipv6_rtadv/r1/bgpd.conf
@ -1,5 +1,6 @@
 router bgp 101
 bgp router-id 10.254.254.1
+ no bgp ebgp-requires-policy
 neighbor r2g peer-group
 neighbor r2g remote-as external
 neighbor r2g bfd
--- a/tests/topotests/bgp_ipv6_rtadv/r2/bgpd.conf
+++ b/tests/topotests/bgp_ipv6_rtadv/r2/bgpd.conf
@ -1,5 +1,6 @@
 router bgp 102
 bgp router-id 10.254.254.2
+ no bgp ebgp-requires-policy
 neighbor r2g peer-group
 neighbor r2g remote-as external
 neighbor r2g bfd
--- a/tests/topotests/bgp_l3vpn_to_bgp_direct/ce1/bgpd.conf
+++ b/tests/topotests/bgp_l3vpn_to_bgp_direct/ce1/bgpd.conf
@ -7,6 +7,7 @@ log monitor notifications
 log commands
 router bgp 5226
   bgp router-id 99.0.0.1
+   no bgp ebgp-requires-policy
   neighbor 192.168.1.1 remote-as 5226
   neighbor 192.168.1.1 update-source 192.168.1.2
   address-family ipv4 unicast
@ -28,6 +29,3 @@ route-map rm-nh permit 10
 !

 end
-   
-   
-
--- a/tests/topotests/bgp_l3vpn_to_bgp_direct/ce2/bgpd.conf
+++ b/tests/topotests/bgp_l3vpn_to_bgp_direct/ce2/bgpd.conf
@ -7,6 +7,7 @@ log monitor notifications
 log commands
 router bgp 5226
   bgp router-id 99.0.0.2
+   no bgp ebgp-requires-policy
   neighbor 192.168.1.1 remote-as 5226
   neighbor 192.168.1.1 update-source 192.168.1.2
   address-family ipv4 unicast
@ -28,6 +29,3 @@ route-map rm-nh permit 10
 !

 end
-   
-   
-
--- a/tests/topotests/bgp_l3vpn_to_bgp_direct/ce3/bgpd.conf
+++ b/tests/topotests/bgp_l3vpn_to_bgp_direct/ce3/bgpd.conf
@ -7,6 +7,7 @@ log monitor notifications
 log commands
 router bgp 5226
   bgp router-id 99.0.0.3
+   no bgp ebgp-requires-policy
   neighbor 192.168.1.1 remote-as 5226
   neighbor 192.168.1.1 update-source 192.168.1.2
   address-family ipv4 unicast
@ -28,6 +29,3 @@ route-map rm-nh permit 10
 !

 end
-   
-   
-
--- a/tests/topotests/bgp_l3vpn_to_bgp_direct/r1/bgpd.conf
+++ b/tests/topotests/bgp_l3vpn_to_bgp_direct/r1/bgpd.conf
@ -8,6 +8,7 @@ log commands
 router bgp 5226
   bgp router-id 1.1.1.1
   bgp cluster-id 1.1.1.1
+   no bgp ebgp-requires-policy
   neighbor 192.168.1.2 remote-as 5226
   neighbor 192.168.1.2 update-source 192.168.1.1
   neighbor 192.168.1.2 route-reflector-client
--- a/tests/topotests/bgp_l3vpn_to_bgp_direct/r2/bgpd.conf
+++ b/tests/topotests/bgp_l3vpn_to_bgp_direct/r2/bgpd.conf
@ -8,6 +8,7 @@ log commands
 router bgp 5226
   bgp router-id 2.2.2.2
   bgp cluster-id 2.2.2.2
+   no bgp ebgp-requires-policy
   neighbor 1.1.1.1 remote-as 5226
   neighbor 1.1.1.1 update-source 2.2.2.2
   neighbor 3.3.3.3 remote-as 5226
@ -28,6 +29,3 @@ router bgp 5226
     neighbor 4.4.4.4 route-reflector-client
   exit-address-family
 end
-   
-   
-
--- a/tests/topotests/bgp_l3vpn_to_bgp_direct/r3/bgpd.conf
+++ b/tests/topotests/bgp_l3vpn_to_bgp_direct/r3/bgpd.conf
@ -8,8 +8,9 @@ log commands
 router bgp 5226
   bgp router-id 3.3.3.3
   bgp cluster-id 3.3.3.3
+   no bgp ebgp-requires-policy
   neighbor 192.168.1.2 remote-as 5226
-   neighbor 192.168.1.2 update-source 192.168.1.2 
+   neighbor 192.168.1.2 update-source 192.168.1.2
   neighbor 192.168.1.2 route-reflector-client
   neighbor 2.2.2.2 remote-as 5226
   neighbor 2.2.2.2 update-source 3.3.3.3
@ -37,6 +38,3 @@ router bgp 5226
 vnc redistribute ipv4 bgp-direct
 !
 end
-   
-   
-
--- a/tests/topotests/bgp_l3vpn_to_bgp_direct/r4/bgpd.conf
+++ b/tests/topotests/bgp_l3vpn_to_bgp_direct/r4/bgpd.conf
@ -8,6 +8,7 @@ log commands
 router bgp 5226
   bgp router-id 4.4.4.4
   bgp cluster-id 4.4.4.4
+   no bgp ebgp-requires-policy
   neighbor 192.168.1.2 remote-as 5226
   neighbor 192.168.1.2 update-source 192.168.1.1
   neighbor 192.168.1.2 route-reflector-client
@ -37,6 +38,3 @@ router bgp 5226
 vnc redistribute ipv4 bgp-direct
 !
 end
-   
-   
-
--- a/tests/topotests/bgp_l3vpn_to_bgp_vrf/ce1/bgpd.conf
+++ b/tests/topotests/bgp_l3vpn_to_bgp_vrf/ce1/bgpd.conf
@ -9,6 +9,7 @@ log file bgpd.log

 router bgp 5227
   bgp router-id 99.0.0.1
+   no bgp ebgp-requires-policy
   neighbor 192.168.1.1 remote-as 5227
   neighbor 192.168.1.1 update-source 192.168.1.2
   address-family ipv4 unicast
@ -41,6 +42,3 @@ route-map sharp-nh permit 10
 !

 end
-   
-   
-
--- a/tests/topotests/bgp_l3vpn_to_bgp_vrf/ce2/bgpd.conf
+++ b/tests/topotests/bgp_l3vpn_to_bgp_vrf/ce2/bgpd.conf
@ -9,6 +9,7 @@ log file bgpd.log

 router bgp 5227
   bgp router-id 99.0.0.2
+   no bgp ebgp-requires-policy
   neighbor 192.168.1.1 remote-as 5227
   neighbor 192.168.1.1 update-source 192.168.1.2
   address-family ipv4 unicast
@ -41,6 +42,3 @@ route-map sharp-nh permit 10
 !

 end
-   
-   
-
--- a/tests/topotests/bgp_l3vpn_to_bgp_vrf/ce3/bgpd.conf
+++ b/tests/topotests/bgp_l3vpn_to_bgp_vrf/ce3/bgpd.conf
@ -9,6 +9,7 @@ log file bgpd.log

 router bgp 5227
   bgp router-id 99.0.0.3
+   no bgp ebgp-requires-policy
   neighbor 192.168.1.1 remote-as 5227
   neighbor 192.168.1.1 update-source 192.168.1.2
   address-family ipv4 unicast
@ -31,6 +32,3 @@ route-map rm-nh permit 10
 !

 end
-   
-   
-
--- a/tests/topotests/bgp_l3vpn_to_bgp_vrf/ce4/bgpd.conf
+++ b/tests/topotests/bgp_l3vpn_to_bgp_vrf/ce4/bgpd.conf
@ -9,6 +9,7 @@ log file bgpd.log

 router bgp 5228 vrf ce4-cust2
   bgp router-id 99.0.0.4
+   no bgp ebgp-requires-policy
   neighbor 192.168.2.1 remote-as 5228
   neighbor 192.168.2.1 update-source 192.168.2.2
   address-family ipv4 unicast
@ -31,6 +32,3 @@ route-map rm-nh permit 10
 !

 end
-   
-   
-
--- a/tests/topotests/bgp_l3vpn_to_bgp_vrf/r1/bgpd.conf
+++ b/tests/topotests/bgp_l3vpn_to_bgp_vrf/r1/bgpd.conf
@ -16,6 +16,7 @@ log file bgpd.log debugging
 router bgp 5226
   bgp router-id 1.1.1.1
   bgp cluster-id 1.1.1.1
+   no bgp ebgp-requires-policy
   neighbor 2.2.2.2 remote-as 5226
   neighbor 2.2.2.2 update-source 1.1.1.1

@ -31,6 +32,7 @@ router bgp 5226
 router bgp 5227 vrf r1-cust1

   bgp router-id 192.168.1.1
+   no bgp ebgp-requires-policy

   neighbor 192.168.1.2 remote-as 5227
   neighbor 192.168.1.2 update-source 192.168.1.1
--- a/tests/topotests/bgp_l3vpn_to_bgp_vrf/r2/bgpd.conf
+++ b/tests/topotests/bgp_l3vpn_to_bgp_vrf/r2/bgpd.conf
@ -10,6 +10,7 @@ log file bgpd.log debugging
 router bgp 5226
   bgp router-id 2.2.2.2
   bgp cluster-id 2.2.2.2
+   no bgp ebgp-requires-policy
   neighbor 1.1.1.1 remote-as 5226
   neighbor 1.1.1.1 update-source 2.2.2.2
   neighbor 3.3.3.3 remote-as 5226
@ -30,6 +31,3 @@ router bgp 5226
     neighbor 4.4.4.4 route-reflector-client
   exit-address-family
 end
-   
-   
-
--- a/tests/topotests/bgp_l3vpn_to_bgp_vrf/r3/bgpd.conf
+++ b/tests/topotests/bgp_l3vpn_to_bgp_vrf/r3/bgpd.conf
@ -11,6 +11,7 @@ log file bgpd.log
 router bgp 5226
   bgp router-id 3.3.3.3
   bgp cluster-id 3.3.3.3
+   no bgp ebgp-requires-policy
   neighbor 2.2.2.2 remote-as 5226
   neighbor 2.2.2.2 update-source 3.3.3.3

@ -25,9 +26,10 @@ router bgp 5226
 router bgp 5227 vrf r3-cust1

   bgp router-id 192.168.1.1
+   no bgp ebgp-requires-policy

   neighbor 192.168.1.2 remote-as 5227
-   neighbor 192.168.1.2 update-source 192.168.1.1 
+   neighbor 192.168.1.2 update-source 192.168.1.1

   address-family ipv4 unicast
     neighbor 192.168.1.2 activate
--- a/tests/topotests/bgp_l3vpn_to_bgp_vrf/r4/bgpd.conf
+++ b/tests/topotests/bgp_l3vpn_to_bgp_vrf/r4/bgpd.conf
@ -14,6 +14,7 @@ log file bgpd.log debug
 router bgp 5226
   bgp router-id 4.4.4.4
   bgp cluster-id 4.4.4.4
+   no bgp ebgp-requires-policy
   neighbor 2.2.2.2 remote-as 5226
   neighbor 2.2.2.2 update-source 4.4.4.4

@ -28,9 +29,10 @@ router bgp 5226
 router bgp 5227 vrf r4-cust1

   bgp router-id 192.168.1.1
+   no bgp ebgp-requires-policy

   neighbor 192.168.1.2 remote-as 5227
-   neighbor 192.168.1.2 update-source 192.168.1.1 
+   neighbor 192.168.1.2 update-source 192.168.1.1

   address-family ipv4 unicast
     neighbor 192.168.1.2 activate
@ -47,6 +49,7 @@ router bgp 5227 vrf r4-cust1
 router bgp 5228 vrf r4-cust2

   bgp router-id 192.168.2.1
+   no bgp ebgp-requires-policy

   neighbor 192.168.2.2 remote-as 5228
   neighbor 192.168.2.2 update-source 192.168.2.1
--- a/tests/topotests/bgp_link_bw_ip/r1/bgpd.conf
+++ b/tests/topotests/bgp_link_bw_ip/r1/bgpd.conf
@ -2,6 +2,7 @@ hostname r1
 !
 router bgp 65101
 bgp router-id 11.1.1.1
+ no bgp ebgp-requires-policy
 bgp bestpath as-path multipath-relax
 neighbor 11.1.1.2 remote-as external
 neighbor 11.1.1.6 remote-as external
--- a/tests/topotests/bgp_link_bw_ip/r10/bgpd.conf
+++ b/tests/topotests/bgp_link_bw_ip/r10/bgpd.conf
@ -7,6 +7,7 @@ route-map redist permit 10
 !
 router bgp 65354
 bgp router-id 11.1.6.2
+ no bgp ebgp-requires-policy
 neighbor 11.1.6.1 remote-as external
 !
 address-family ipv4 unicast
--- a/tests/topotests/bgp_link_bw_ip/r2/bgpd.conf
+++ b/tests/topotests/bgp_link_bw_ip/r2/bgpd.conf
@ -3,6 +3,7 @@ hostname r2
 router bgp 65201
 bgp router-id 11.1.2.1
 bgp bestpath as-path multipath-relax
+ no bgp ebgp-requires-policy
 neighbor 11.1.1.1 remote-as external
 neighbor 11.1.2.2 remote-as external
 neighbor 11.1.2.6 remote-as external
--- a/tests/topotests/bgp_link_bw_ip/r3/bgpd.conf
+++ b/tests/topotests/bgp_link_bw_ip/r3/bgpd.conf
@ -3,6 +3,7 @@ hostname r3
 router bgp 65202
 bgp router-id 11.1.3.1
 bgp bestpath as-path multipath-relax
+ no bgp ebgp-requires-policy
 neighbor 11.1.1.5 remote-as external
 neighbor 11.1.3.2 remote-as external
 !
--- a/tests/topotests/bgp_link_bw_ip/r4/bgpd.conf
+++ b/tests/topotests/bgp_link_bw_ip/r4/bgpd.conf
@ -18,6 +18,7 @@ route-map anycast_ip permit 20
 router bgp 65301
 bgp router-id 11.1.4.1
 bgp bestpath as-path multipath-relax
+ no bgp ebgp-requires-policy
 neighbor 11.1.2.1 remote-as external
 neighbor 11.1.4.2 remote-as external
 neighbor 11.1.4.6 remote-as external
--- a/tests/topotests/bgp_link_bw_ip/r5/bgpd.conf
+++ b/tests/topotests/bgp_link_bw_ip/r5/bgpd.conf
@ -11,6 +11,7 @@ route-map anycast_ip permit 20
 router bgp 65302
 bgp router-id 11.1.5.1
 bgp bestpath as-path multipath-relax
+ no bgp ebgp-requires-policy
 neighbor 11.1.2.5 remote-as external
 neighbor 11.1.5.2 remote-as external
 !
--- a/tests/topotests/bgp_link_bw_ip/r6/bgpd.conf
+++ b/tests/topotests/bgp_link_bw_ip/r6/bgpd.conf
@ -11,6 +11,7 @@ route-map anycast_ip permit 20
 router bgp 65303
 bgp router-id 11.1.6.1
 bgp bestpath as-path multipath-relax
+ no bgp ebgp-requires-policy
 neighbor 11.1.3.1 remote-as external
 neighbor 11.1.6.2 remote-as external
 !
--- a/tests/topotests/bgp_link_bw_ip/r7/bgpd.conf
+++ b/tests/topotests/bgp_link_bw_ip/r7/bgpd.conf
@ -7,6 +7,7 @@ route-map redist permit 10
 !
 router bgp 65351
 bgp router-id 11.1.4.2
+ no bgp ebgp-requires-policy
 neighbor 11.1.4.1 remote-as external
 !
 address-family ipv4 unicast
--- a/tests/topotests/bgp_link_bw_ip/r8/bgpd.conf
+++ b/tests/topotests/bgp_link_bw_ip/r8/bgpd.conf
@ -7,6 +7,7 @@ route-map redist permit 10
 !
 router bgp 65352
 bgp router-id 11.1.4.6
+ no bgp ebgp-requires-policy
 neighbor 11.1.4.5 remote-as external
 !
 address-family ipv4 unicast
--- a/tests/topotests/bgp_link_bw_ip/r9/bgpd.conf
+++ b/tests/topotests/bgp_link_bw_ip/r9/bgpd.conf
@ -7,6 +7,7 @@ route-map redist permit 10
 !
 router bgp 65353
 bgp router-id 11.1.5.2
+ no bgp ebgp-requires-policy
 neighbor 11.1.5.1 remote-as external
 !
 address-family ipv4 unicast
--- a/tests/topotests/bgp_local_as_private_remove/r1/bgpd.conf
+++ b/tests/topotests/bgp_local_as_private_remove/r1/bgpd.conf
@ -1,4 +1,5 @@
 router bgp 65000
+  no bgp ebgp-requires-policy
  neighbor 192.168.255.2 remote-as 1000
  neighbor 192.168.255.2 local-as 500
  address-family ipv4 unicast
--- a/tests/topotests/bgp_local_as_private_remove/r2/bgpd.conf
+++ b/tests/topotests/bgp_local_as_private_remove/r2/bgpd.conf
@ -1,2 +1,3 @@
 router bgp 1000
+  no bgp ebgp-requires-policy
  neighbor 192.168.255.1 remote-as 500
--- a/tests/topotests/bgp_local_as_private_remove/r3/bgpd.conf
+++ b/tests/topotests/bgp_local_as_private_remove/r3/bgpd.conf
@ -1,4 +1,5 @@
 router bgp 3000
+  no bgp ebgp-requires-policy
  neighbor 192.168.255.2 remote-as 1000
  neighbor 192.168.255.2 local-as 500
  address-family ipv4 unicast
--- a/tests/topotests/bgp_local_as_private_remove/r4/bgpd.conf
+++ b/tests/topotests/bgp_local_as_private_remove/r4/bgpd.conf
@ -1,2 +1,3 @@
 router bgp 1000
+  no bgp ebgp-requires-policy
  neighbor 192.168.255.1 remote-as 500
--- a/tests/topotests/bgp_maximum_prefix_invalid_update/r1/bgpd.conf
+++ b/tests/topotests/bgp_maximum_prefix_invalid_update/r1/bgpd.conf
@ -1,4 +1,5 @@
 router bgp 65000
+  no bgp ebgp-requires-policy
  neighbor 192.168.255.2 remote-as 65001
  address-family ipv4 unicast
    redistribute connected
--- a/tests/topotests/bgp_maximum_prefix_invalid_update/r2/bgpd.conf
+++ b/tests/topotests/bgp_maximum_prefix_invalid_update/r2/bgpd.conf
@ -1,4 +1,5 @@
 router bgp 65001
+  no bgp ebgp-requires-policy
  neighbor 192.168.255.1 remote-as 65000
  address-family ipv4
    neighbor 192.168.255.1 maximum-prefix 1
--- a/tests/topotests/bgp_maximum_prefix_out/r1/bgpd.conf
+++ b/tests/topotests/bgp_maximum_prefix_out/r1/bgpd.conf
@ -1,5 +1,6 @@
 !
 router bgp 65001
+  no bgp ebgp-requires-policy
  neighbor 192.168.255.1 remote-as 65002
  address-family ipv4 unicast
    redistribute connected
--- a/tests/topotests/bgp_maximum_prefix_out/r2/bgpd.conf
+++ b/tests/topotests/bgp_maximum_prefix_out/r2/bgpd.conf
@ -1,5 +1,6 @@
 !
 router bgp 65002
+  no bgp ebgp-requires-policy
  neighbor 192.168.255.2 remote-as 65001
  exit-address-family
  !
--- a/tests/topotests/bgp_multiview_topo1/r1/bgpd.conf
+++ b/tests/topotests/bgp_multiview_topo1/r1/bgpd.conf
@ -13,6 +13,7 @@ log file bgpd.log
 !
 router bgp 100 view 1
 bgp router-id 172.30.1.1
+ no bgp ebgp-requires-policy
 network 172.20.0.0/28 route-map local1
 timers bgp 60 180
 neighbor 172.16.1.1 remote-as 65001
@ -21,6 +22,7 @@ router bgp 100 view 1
 !
 router bgp 100 view 2
 bgp router-id 172.30.1.1
+ no bgp ebgp-requires-policy
 network 172.20.0.0/28 route-map local2
 timers bgp 60 180
 neighbor 172.16.1.3 remote-as 65003
@ -28,6 +30,7 @@ router bgp 100 view 2
 !
 router bgp 100 view 3
 bgp router-id 172.30.1.1
+ no bgp ebgp-requires-policy
 network 172.20.0.0/28
 timers bgp 60 180
 neighbor 172.16.1.6 remote-as 65006
--- a/tests/topotests/bgp_prefix_sid/r1/bgpd.conf
+++ b/tests/topotests/bgp_prefix_sid/r1/bgpd.conf
@ -5,6 +5,7 @@ log commands
 router bgp 1
 bgp router-id 10.0.0.1
 no bgp default ipv4-unicast
+ no bgp ebgp-requires-policy
 neighbor 10.0.0.101 remote-as 2
 neighbor 10.0.0.102 remote-as 3
 !
--- a/tests/topotests/bgp_reject_as_sets/r1/bgpd.conf
+++ b/tests/topotests/bgp_reject_as_sets/r1/bgpd.conf
@ -1,5 +1,6 @@
 ! exit1
 router bgp 65001
+  no bgp ebgp-requires-policy
  neighbor 192.168.255.1 remote-as 65002
  address-family ipv4 unicast
    redistribute connected
--- a/tests/topotests/bgp_reject_as_sets/r2/bgpd.conf
+++ b/tests/topotests/bgp_reject_as_sets/r2/bgpd.conf
@ -1,6 +1,7 @@
 ! spine
 router bgp 65002
  bgp reject-as-sets
+  no bgp ebgp-requires-policy
  neighbor 192.168.255.2 remote-as 65001
  neighbor 192.168.254.2 remote-as 65003
  address-family ipv4 unicast
--- a/tests/topotests/bgp_reject_as_sets/r3/bgpd.conf
+++ b/tests/topotests/bgp_reject_as_sets/r3/bgpd.conf
@ -1,5 +1,6 @@
 ! exit2
 router bgp 65003
+  no bgp ebgp-requires-policy
  neighbor 192.168.254.1 remote-as 65002
  address-family ipv4 unicast
    neighbor 192.168.254.1 allowas-in
--- a/tests/topotests/bgp_rfapi_basic_sanity/r1/bgpd.conf
+++ b/tests/topotests/bgp_rfapi_basic_sanity/r1/bgpd.conf
@ -8,6 +8,7 @@ log commands
 router bgp 5226
   bgp router-id 1.1.1.1
   bgp cluster-id 1.1.1.1
+   no bgp ebgp-requires-policy
   neighbor 2.2.2.2 remote-as 5226
   neighbor 2.2.2.2 update-source 1.1.1.1
 !
--- a/tests/topotests/bgp_rfapi_basic_sanity/r2/bgpd.conf
+++ b/tests/topotests/bgp_rfapi_basic_sanity/r2/bgpd.conf
@ -8,6 +8,7 @@ log commands
 router bgp 5226
   bgp router-id 2.2.2.2
   bgp cluster-id 2.2.2.2
+   no bgp ebgp-requires-policy
   neighbor 1.1.1.1 remote-as 5226
   neighbor 1.1.1.1 update-source 2.2.2.2
   neighbor 3.3.3.3 remote-as 5226
@ -28,6 +29,3 @@ router bgp 5226
     neighbor 4.4.4.4 route-reflector-client
   exit-address-family
 end
-   
-   
-
--- a/tests/topotests/bgp_rfapi_basic_sanity/r3/bgpd.conf
+++ b/tests/topotests/bgp_rfapi_basic_sanity/r3/bgpd.conf
@ -8,6 +8,7 @@ log commands
 router bgp 5226
   bgp router-id 3.3.3.3
   bgp cluster-id 3.3.3.3
+   no bgp ebgp-requires-policy
   neighbor 2.2.2.2 remote-as 5226
   neighbor 2.2.2.2 update-source 3.3.3.3
 !
@ -45,6 +46,3 @@ router bgp 5226
  exit-vnc
 !
 end
-   
-   
-
--- a/tests/topotests/bgp_rfapi_basic_sanity/r4/bgpd.conf
+++ b/tests/topotests/bgp_rfapi_basic_sanity/r4/bgpd.conf
@ -8,6 +8,7 @@ log commands
 router bgp 5226
   bgp router-id 4.4.4.4
   bgp cluster-id 4.4.4.4
+   no bgp ebgp-requires-policy
   neighbor 2.2.2.2 remote-as 5226
   neighbor 2.2.2.2 update-source 4.4.4.4
 !
@ -46,6 +47,3 @@ router bgp 5226
  exit-vnc
 !
 end
-   
-   
-
--- a/tests/topotests/bgp_rfapi_basic_sanity_config2/r1/bgpd.conf
+++ b/tests/topotests/bgp_rfapi_basic_sanity_config2/r1/bgpd.conf
@ -8,6 +8,7 @@ log commands
 router bgp 5226
   bgp router-id 1.1.1.1
   bgp cluster-id 1.1.1.1
+   no bgp ebgp-requires-policy
   neighbor 2.2.2.2 remote-as 5226
   neighbor 2.2.2.2 update-source 1.1.1.1
 !
--- a/tests/topotests/bgp_rfapi_basic_sanity_config2/r2/bgpd.conf
+++ b/tests/topotests/bgp_rfapi_basic_sanity_config2/r2/bgpd.conf
@ -8,6 +8,7 @@ log commands
 router bgp 5226
   bgp router-id 2.2.2.2
   bgp cluster-id 2.2.2.2
+   no bgp ebgp-requires-policy
   neighbor 1.1.1.1 remote-as 5226
   neighbor 1.1.1.1 update-source 2.2.2.2
   neighbor 3.3.3.3 remote-as 5226
@ -28,6 +29,3 @@ router bgp 5226
     neighbor 4.4.4.4 route-reflector-client
   exit-address-family
 end
-   
-   
-
--- a/tests/topotests/bgp_rfapi_basic_sanity_config2/r3/bgpd.conf
+++ b/tests/topotests/bgp_rfapi_basic_sanity_config2/r3/bgpd.conf
@ -8,6 +8,7 @@ log commands
 router bgp 5226
   bgp router-id 3.3.3.3
   bgp cluster-id 3.3.3.3
+   no bgp ebgp-requires-policy
   neighbor 2.2.2.2 remote-as 5226
   neighbor 2.2.2.2 update-source 3.3.3.3
 !
@ -46,6 +47,3 @@ router bgp 5226
  exit-vnc
 !
 end
-   
-   
-
--- a/tests/topotests/bgp_rfapi_basic_sanity_config2/r4/bgpd.conf
+++ b/tests/topotests/bgp_rfapi_basic_sanity_config2/r4/bgpd.conf
@ -8,6 +8,7 @@ log commands
 router bgp 5226
   bgp router-id 4.4.4.4
   bgp cluster-id 4.4.4.4
+   no bgp ebgp-requires-policy
   neighbor 2.2.2.2 remote-as 5226
   neighbor 2.2.2.2 update-source 4.4.4.4
 !
@ -47,6 +48,3 @@ router bgp 5226
  exit-vnc
 !
 end
-   
-   
-
--- a/tests/topotests/bgp_rr_ibgp/spine1/bgpd.conf
+++ b/tests/topotests/bgp_rr_ibgp/spine1/bgpd.conf
@ -1,5 +1,6 @@
 hostname spine1
 router bgp 99
+  no bgp ebgp-requires-policy
  neighbor 192.168.2.1 remote-as internal
  neighbor 192.168.4.2 remote-as internal
  address-family ipv4 uni
--- a/tests/topotests/bgp_rr_ibgp/tor1/bgpd.conf
+++ b/tests/topotests/bgp_rr_ibgp/tor1/bgpd.conf
@ -1,4 +1,5 @@
 hostname tor1
 router bgp 99
+  no bgp ebgp-requires-policy
  neighbor 192.168.2.3 remote-as internal
  redistribute connected
--- a/tests/topotests/bgp_rr_ibgp/tor2/bgpd.conf
+++ b/tests/topotests/bgp_rr_ibgp/tor2/bgpd.conf
@ -1,4 +1,5 @@
 hostname tor2
 router bgp 99
+  no bgp ebgp-requires-policy
  neighbor 192.168.4.3 remote-as internal
  redistribute connected
--- a/tests/topotests/bgp_sender-as-path-loop-detection/r1/bgpd.conf
+++ b/tests/topotests/bgp_sender-as-path-loop-detection/r1/bgpd.conf
@ -1,5 +1,6 @@
 ! exit1
 router bgp 65001
+  no bgp ebgp-requires-policy
  neighbor 192.168.255.1 remote-as 65002
  address-family ipv4 unicast
    neighbor 192.168.255.1 route-map prepend out
--- a/tests/topotests/bgp_sender-as-path-loop-detection/r2/bgpd.conf
+++ b/tests/topotests/bgp_sender-as-path-loop-detection/r2/bgpd.conf
@ -1,5 +1,6 @@
 ! spine
 router bgp 65002
+  no bgp ebgp-requires-policy
  neighbor 192.168.255.2 remote-as 65001
  neighbor 192.168.255.2 solo
  neighbor 192.168.254.2 remote-as 65003
--- a/tests/topotests/bgp_sender-as-path-loop-detection/r3/bgpd.conf
+++ b/tests/topotests/bgp_sender-as-path-loop-detection/r3/bgpd.conf
@ -1,4 +1,5 @@
 ! exit2
 router bgp 65003
+  no bgp ebgp-requires-policy
  neighbor 192.168.254.1 remote-as 65002
 !
--- a/tests/topotests/bgp_set_local-preference_add_subtract/r1/bgpd.conf
+++ b/tests/topotests/bgp_set_local-preference_add_subtract/r1/bgpd.conf
@ -1,4 +1,5 @@
 router bgp 65000
+  no bgp ebgp-requires-policy
  neighbor 192.168.255.2 remote-as 65000
  neighbor 192.168.255.3 remote-as 65000
  exit-address-family
--- a/tests/topotests/bgp_set_local-preference_add_subtract/r2/bgpd.conf
+++ b/tests/topotests/bgp_set_local-preference_add_subtract/r2/bgpd.conf
@ -1,4 +1,5 @@
 router bgp 65000
+  no bgp ebgp-requires-policy
  neighbor 192.168.255.1 remote-as 65000
  address-family ipv4
    redistribute connected
--- a/tests/topotests/bgp_set_local-preference_add_subtract/r3/bgpd.conf
+++ b/tests/topotests/bgp_set_local-preference_add_subtract/r3/bgpd.conf
@ -1,4 +1,5 @@
 router bgp 65000
+  no bgp ebgp-requires-policy
  neighbor 192.168.255.1 remote-as 65000
  address-family ipv4
    redistribute connected
--- a/tests/topotests/bgp_show_ip_bgp_fqdn/r1/bgpd.conf
+++ b/tests/topotests/bgp_show_ip_bgp_fqdn/r1/bgpd.conf
@ -1,4 +1,5 @@
 router bgp 65000
+  no bgp ebgp-requires-policy
  neighbor 192.168.255.2 remote-as 65001
  address-family ipv4 unicast
    redistribute connected
--- a/tests/topotests/bgp_show_ip_bgp_fqdn/r2/bgpd.conf
+++ b/tests/topotests/bgp_show_ip_bgp_fqdn/r2/bgpd.conf
@ -1,4 +1,5 @@
 router bgp 65001
+  no bgp ebgp-requires-policy
  bgp default show-hostname
  neighbor 192.168.255.1 remote-as 65000
  neighbor 192.168.254.1 remote-as 65001
--- a/tests/topotests/bgp_vrf_lite_ipv6_rtadv/r1/bgpd.conf
+++ b/tests/topotests/bgp_vrf_lite_ipv6_rtadv/r1/bgpd.conf
@ -1,5 +1,6 @@
 router bgp 101 vrf r1-cust1
 bgp router-id 10.254.254.1
+ no bgp ebgp-requires-policy
 neighbor r2g peer-group
 neighbor r2g remote-as external
 neighbor r2g bfd
--- a/Show More
+++ b/Show More