mirror of
https://git.proxmox.com/git/mirror_frr
synced 2025-11-04 03:29:06 +00:00
7d3cae70b2
The idea is to find out prefixes including specific BGP table version and
above.
Let's say I have a converged network and suddently I noticed a couple of
prefixes seems hijacked.
I want to look what new prefixes arrived with a specific BGP table version.
```
exit1-debian-9# show ip bgp version 8
BGP table version is 9, local router ID is 192.168.100.1, vrf id 0
Default local pref 100, local AS 65534
Status codes: s suppressed, d damped, h history, * valid, > best, = multipath,
i internal, r RIB-failure, S Stale, R Removed
Nexthop codes: @NNN nexthop's vrf id, < announce-nh-self
Origin codes: i - IGP, e - EGP, ? - incomplete
Network Next Hop Metric LocPrf Weight Path
* 192.168.2.0/24 192.168.0.2 0 0 65030 ?
*> 192.168.0.2 0 0 65030 ?
* 192.168.3.0/24 192.168.0.2 0 0 65030 ?
*> 192.168.0.2 0 0 65030 ?
Displayed 2 routes and 18 total paths
exit1-debian-9#
```
```
exit1-debian-9# show ip bgp version 8 json
{
"vrfId": 0,
"vrfName": "default",
"tableVersion": 9,
"routerId": "192.168.100.1",
"defaultLocPrf": 100,
"localAS": 65534,
"routes": { "192.168.2.0/24": [
{
"valid":true,
"pathFrom":"external",
"prefix":"192.168.2.0",
"prefixLen":24,
"network":"192.168.2.0\/24",
"version":8,
"metric":0,
"weight":0,
"peerId":"2a02:bbd::2",
"path":"65030",
"origin":"incomplete",
"nexthops":[
{
"ip":"192.168.0.2",
"hostname":"home-spine1.donatas.net",
"afi":"ipv4",
"used":true
}
]
},
{
"valid":true,
"bestpath":true,
"selectionReason":"Neighbor IP",
"pathFrom":"external",
"prefix":"192.168.2.0",
"prefixLen":24,
"network":"192.168.2.0\/24",
"version":8,
"metric":0,
"weight":0,
"peerId":"192.168.0.2",
"path":"65030",
"origin":"incomplete",
"nexthops":[
{
"ip":"192.168.0.2",
"hostname":"home-spine1.donatas.net",
"afi":"ipv4",
"used":true
}
]
}
],"192.168.3.0/24": [
{
"valid":true,
"pathFrom":"external",
"prefix":"192.168.3.0",
"prefixLen":24,
"network":"192.168.3.0\/24",
"version":9,
"metric":0,
"weight":0,
"peerId":"2a02:bbd::2",
"path":"65030",
"origin":"incomplete",
"nexthops":[
{
"ip":"192.168.0.2",
"hostname":"home-spine1.donatas.net",
"afi":"ipv4",
"used":true
}
]
},
{
"valid":true,
"bestpath":true,
"selectionReason":"Neighbor IP",
"pathFrom":"external",
"prefix":"192.168.3.0",
"prefixLen":24,
"network":"192.168.3.0\/24",
"version":9,
"metric":0,
"weight":0,
"peerId":"192.168.0.2",
"path":"65030",
"origin":"incomplete",
"nexthops":[
{
"ip":"192.168.0.2",
"hostname":"home-spine1.donatas.net",
"afi":"ipv4",
"used":true
}
]
}
] } }
```
Signed-off-by: Donatas Abraitis <donatas.abraitis@gmail.com>
254 lines
6.7 KiB
C
254 lines
6.7 KiB
C
/* VPN Related functions
|
|
* Copyright (C) 2017 6WIND
|
|
*
|
|
* This file is part of FRRouting
|
|
*
|
|
* FRRouting is free software; you can redistribute it and/or modify it
|
|
* under the terms of the GNU General Public License as published by the
|
|
* Free Software Foundation; either version 2, or (at your option) any
|
|
* later version.
|
|
*
|
|
* FRRouting is distributed in the hope that it will be useful, but
|
|
* WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
* General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License along
|
|
* with this program; see the file COPYING; if not, write to the Free Software
|
|
* Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
|
|
*/
|
|
|
|
#include <zebra.h>
|
|
#include "command.h"
|
|
#include "prefix.h"
|
|
#include "lib/json.h"
|
|
#include "lib/printfrr.h"
|
|
|
|
#include "bgpd/bgpd.h"
|
|
#include "bgpd/bgp_route.h"
|
|
#include "bgpd/bgp_table.h"
|
|
#include "bgpd/bgp_attr.h"
|
|
#include "bgpd/bgp_mplsvpn.h"
|
|
#include "bgpd/bgp_vpn.h"
|
|
#include "bgpd/bgp_updgrp.h"
|
|
|
|
int show_adj_route_vpn(struct vty *vty, struct peer *peer,
|
|
struct prefix_rd *prd, afi_t afi, safi_t safi,
|
|
bool use_json)
|
|
{
|
|
struct bgp *bgp;
|
|
struct bgp_table *table;
|
|
struct bgp_dest *dest;
|
|
struct bgp_dest *rm;
|
|
int rd_header;
|
|
int header = 1;
|
|
json_object *json = NULL;
|
|
json_object *json_scode = NULL;
|
|
json_object *json_ocode = NULL;
|
|
json_object *json_adv = NULL;
|
|
json_object *json_routes = NULL;
|
|
char rd_str[BUFSIZ];
|
|
unsigned long output_count = 0;
|
|
|
|
bgp = bgp_get_default();
|
|
if (bgp == NULL) {
|
|
if (!use_json)
|
|
vty_out(vty, "No BGP process is configured\n");
|
|
else
|
|
vty_out(vty, "{}\n");
|
|
return CMD_WARNING;
|
|
}
|
|
|
|
if (use_json) {
|
|
json_scode = json_object_new_object();
|
|
json_ocode = json_object_new_object();
|
|
json = json_object_new_object();
|
|
json_adv = json_object_new_object();
|
|
|
|
json_object_string_add(json_scode, "suppressed", "s");
|
|
json_object_string_add(json_scode, "damped", "d");
|
|
json_object_string_add(json_scode, "history", "h");
|
|
json_object_string_add(json_scode, "valid", "*");
|
|
json_object_string_add(json_scode, "best", ">");
|
|
json_object_string_add(json_scode, "internal", "i");
|
|
|
|
json_object_string_add(json_ocode, "igp", "i");
|
|
json_object_string_add(json_ocode, "egp", "e");
|
|
json_object_string_add(json_ocode, "incomplete", "?");
|
|
}
|
|
|
|
for (dest = bgp_table_top(bgp->rib[afi][safi]); dest;
|
|
dest = bgp_route_next(dest)) {
|
|
const struct prefix *dest_p = bgp_dest_get_prefix(dest);
|
|
|
|
if (prd && memcmp(dest_p->u.val, prd->val, 8) != 0)
|
|
continue;
|
|
|
|
table = bgp_dest_get_bgp_table_info(dest);
|
|
if (table == NULL)
|
|
continue;
|
|
|
|
/*
|
|
* Initialize variables for each RD
|
|
* All prefixes under an RD is aggregated within "json_routes"
|
|
*/
|
|
rd_header = 1;
|
|
memset(rd_str, 0, sizeof(rd_str));
|
|
json_routes = NULL;
|
|
|
|
for (rm = bgp_table_top(table); rm; rm = bgp_route_next(rm)) {
|
|
struct bgp_adj_out *adj = NULL;
|
|
struct attr *attr = NULL;
|
|
struct peer_af *paf = NULL;
|
|
|
|
RB_FOREACH (adj, bgp_adj_out_rb, &rm->adj_out)
|
|
SUBGRP_FOREACH_PEER (adj->subgroup, paf) {
|
|
if (paf->peer != peer || !adj->attr)
|
|
continue;
|
|
|
|
attr = adj->attr;
|
|
break;
|
|
}
|
|
|
|
if (bgp_dest_get_bgp_path_info(rm) == NULL)
|
|
continue;
|
|
|
|
if (!attr)
|
|
continue;
|
|
|
|
if (header) {
|
|
if (use_json) {
|
|
char buf[BUFSIZ] = {0};
|
|
|
|
json_object_int_add(
|
|
json, "bgpTableVersion", 0);
|
|
json_object_string_add(
|
|
json, "bgpLocalRouterId",
|
|
inet_ntop(AF_INET,
|
|
&bgp->router_id, buf,
|
|
sizeof(buf)));
|
|
json_object_int_add(
|
|
json,
|
|
"defaultLocPrf",
|
|
bgp->default_local_pref);
|
|
json_object_int_add(
|
|
json, "localAS",
|
|
bgp->as);
|
|
json_object_object_add(json,
|
|
"bgpStatusCodes",
|
|
json_scode);
|
|
json_object_object_add(json,
|
|
"bgpOriginCodes",
|
|
json_ocode);
|
|
} else {
|
|
vty_out(vty,
|
|
"BGP table version is 0, local router ID is %pI4\n",
|
|
&bgp->router_id);
|
|
vty_out(vty, "Default local pref %u, ",
|
|
bgp->default_local_pref);
|
|
vty_out(vty, "local AS %u\n", bgp->as);
|
|
vty_out(vty,
|
|
"Status codes: s suppressed, d damped, h history, * valid, > best, i - internal\n");
|
|
vty_out(vty,
|
|
"Origin codes: i - IGP, e - EGP, ? - incomplete\n\n");
|
|
vty_out(vty, V4_HEADER);
|
|
}
|
|
header = 0;
|
|
}
|
|
|
|
if (rd_header) {
|
|
uint16_t type;
|
|
struct rd_as rd_as = {0};
|
|
struct rd_ip rd_ip = {0};
|
|
#ifdef ENABLE_BGP_VNC
|
|
struct rd_vnc_eth rd_vnc_eth = {0};
|
|
#endif
|
|
const uint8_t *pnt;
|
|
|
|
pnt = dest_p->u.val;
|
|
|
|
/* Decode RD type. */
|
|
type = decode_rd_type(pnt);
|
|
/* Decode RD value. */
|
|
if (type == RD_TYPE_AS)
|
|
decode_rd_as(pnt + 2, &rd_as);
|
|
else if (type == RD_TYPE_AS4)
|
|
decode_rd_as4(pnt + 2, &rd_as);
|
|
else if (type == RD_TYPE_IP)
|
|
decode_rd_ip(pnt + 2, &rd_ip);
|
|
#ifdef ENABLE_BGP_VNC
|
|
else if (type == RD_TYPE_VNC_ETH)
|
|
decode_rd_vnc_eth(pnt, &rd_vnc_eth);
|
|
#endif
|
|
if (use_json) {
|
|
json_routes = json_object_new_object();
|
|
|
|
if (type == RD_TYPE_AS
|
|
|| type == RD_TYPE_AS4)
|
|
snprintf(rd_str, sizeof(rd_str),
|
|
"%u:%d", rd_as.as,
|
|
rd_as.val);
|
|
else if (type == RD_TYPE_IP)
|
|
snprintfrr(rd_str,
|
|
sizeof(rd_str),
|
|
"%pI4:%d", &rd_ip.ip,
|
|
rd_ip.val);
|
|
json_object_string_add(
|
|
json_routes,
|
|
"rd", rd_str);
|
|
} else {
|
|
vty_out(vty, "Route Distinguisher: ");
|
|
|
|
if (type == RD_TYPE_AS
|
|
|| type == RD_TYPE_AS4)
|
|
vty_out(vty, "%u:%d", rd_as.as,
|
|
rd_as.val);
|
|
else if (type == RD_TYPE_IP)
|
|
vty_out(vty, "%pI4:%d",
|
|
&rd_ip.ip, rd_ip.val);
|
|
#ifdef ENABLE_BGP_VNC
|
|
else if (type == RD_TYPE_VNC_ETH)
|
|
vty_out(vty,
|
|
"%u:%02x:%02x:%02x:%02x:%02x:%02x",
|
|
rd_vnc_eth.local_nve_id,
|
|
rd_vnc_eth.macaddr
|
|
.octet[0],
|
|
rd_vnc_eth.macaddr
|
|
.octet[1],
|
|
rd_vnc_eth.macaddr
|
|
.octet[2],
|
|
rd_vnc_eth.macaddr
|
|
.octet[3],
|
|
rd_vnc_eth.macaddr
|
|
.octet[4],
|
|
rd_vnc_eth.macaddr
|
|
.octet[5]);
|
|
#endif
|
|
|
|
vty_out(vty, "\n");
|
|
}
|
|
rd_header = 0;
|
|
}
|
|
route_vty_out_tmp(vty, rm, bgp_dest_get_prefix(rm),
|
|
attr, safi, use_json, json_routes,
|
|
false);
|
|
output_count++;
|
|
}
|
|
|
|
if (use_json && json_routes)
|
|
json_object_object_add(json_adv, rd_str, json_routes);
|
|
}
|
|
|
|
if (use_json) {
|
|
json_object_object_add(json, "advertisedRoutes", json_adv);
|
|
json_object_int_add(json,
|
|
"totalPrefixCounter", output_count);
|
|
vty_out(vty, "%s\n", json_object_to_json_string_ext(
|
|
json, JSON_C_TO_STRING_PRETTY));
|
|
json_object_free(json);
|
|
} else
|
|
vty_out(vty, "\nTotal number of prefixes %ld\n", output_count);
|
|
|
|
return CMD_SUCCESS;
|
|
}
|