0
0
mirror of https://gitlab.nic.cz/labs/bird.git synced 2024-12-23 02:01:55 +00:00
bird/lib
Pavel Tvrdík 4661035431 RPKI protocol with one cache server per protocol
The RPKI protocol (RFC 6810) using the RTRLib
(http://rpki.realmv6.org/) that is integrated inside
the BIRD's code.

Implemeted transports are:
 - unprotected transport over TCP
 - secure transport over SSHv2

Example configuration of bird.conf:
  ...
  roa4 table r4;
  roa6 table r6;

  protocol rpki {
    debug all;

    # Import both IPv4 and IPv6 ROAs
    roa4 { table r4; };
    roa6 { table r6; };

    # Set cache server (validator) address,
    # overwrite default port 323
    remote "rpki-validator.realmv6.org" port 8282;

    # Overwrite default time intervals
    retry   10;         # Default 600 seconds
    refresh 60;         # Default 3600 seconds
    expire 600;         # Default 7200 seconds
  }

  protocol rpki {
    debug all;

    # Import only IPv4 routes
    roa4 { table r4; };

    # Set cache server address to localhost,
    # use default ports tcp => 323 or ssh => 22
    remote 127.0.0.1;

    # Use SSH transport instead of unprotected transport over TCP
    ssh encryption {
      bird private key "/home/birdgeek/.ssh/id_rsa";
      remote public key "/home/birdgeek/.ssh/known_hosts";
      user "birdgeek";
    };
  }
  ...
2016-05-26 13:57:19 +02:00
..
alloca.h Changed of comments. 2004-05-31 17:27:21 +00:00
birdlib.h Build system reworked to one global Makefile with includes and no nesting 2016-05-10 14:07:34 +02:00
bitops.c Initial commit on integrated BIRD 2015-11-05 12:48:52 +01:00
bitops.h Initial commit on integrated BIRD 2015-11-05 12:48:52 +01:00
buffer.h Initial BFD commit, work in progress. 2013-09-10 12:09:36 +02:00
checksum.c unsigned [int] -> uint 2015-06-08 02:24:08 +02:00
checksum.h unsigned [int] -> uint 2015-06-08 02:24:08 +02:00
Doc Build system reworked to one global Makefile with includes and no nesting 2016-05-10 14:07:34 +02:00
event.c Implement latency tracking, internal event log and watchdog 2015-03-02 09:41:14 +01:00
event.h Fininshing integrated OSPF. 2014-11-03 10:42:55 +01:00
fletcher16.h OSPF: Redesign LSA checksumming 2015-05-01 14:40:56 +02:00
hash.h Hash: typecast error fix 2016-02-19 16:33:07 +01:00
heap.h BFD work in progress. 2013-09-16 23:57:40 +02:00
idm.c Move ID allocator to a separate file and use it also in OSPF 2015-12-29 15:42:12 +01:00
idm.h Move ID allocator to a separate file and use it also in OSPF 2015-12-29 15:42:12 +01:00
ip.c Follow-up work on integration 2015-12-24 15:56:04 +01:00
ip.h Build system reworked to one global Makefile with includes and no nesting 2016-05-10 14:07:34 +02:00
libssh.c RPKI protocol with one cache server per protocol 2016-05-26 13:57:19 +02:00
libssh.h RPKI protocol with one cache server per protocol 2016-05-26 13:57:19 +02:00
lists.c Birdlib: Modify lists to avoid problems with pointer aliasing rules 2016-03-23 02:21:42 +01:00
lists.h Merge branch 'master' into int-new-channels 2016-04-08 12:28:33 +02:00
Makefile RPKI protocol with one cache server per protocol 2016-05-26 13:57:19 +02:00
md5.c MD5: Mormalize naming style 2015-11-24 16:01:48 +01:00
md5.h MD5: Mormalize naming style 2015-11-24 16:01:48 +01:00
mempool.c unsigned [int] -> uint 2015-06-08 02:24:08 +02:00
net.c RPKI protocol with one cache server per protocol 2016-05-26 13:57:19 +02:00
net.h RPKI protocol with one cache server per protocol 2016-05-26 13:57:19 +02:00
patmatch.c Some consts for function arguments 2015-11-24 13:52:26 +01:00
printf.c Net address format: Do not print the -4 or -6 suffix in %I4 and %I6 2016-01-13 13:21:25 +01:00
resource.c RPKI protocol with one cache server per protocol 2016-05-26 13:57:19 +02:00
resource.h RPKI protocol with one cache server per protocol 2016-05-26 13:57:19 +02:00
resource.sgml Fixes for the programmer's manual. 2000-06-08 12:37:21 +00:00
sha1.c Minor changes to SHA hash functions 2015-11-24 13:47:28 +01:00
sha1.h Minor changes to SHA hash functions 2015-11-24 13:47:28 +01:00
sha256.c Minor changes to SHA hash functions 2015-11-24 13:47:28 +01:00
sha256.h Minor changes to SHA hash functions 2015-11-24 13:47:28 +01:00
sha512.c Minor changes to SHA hash functions 2015-11-24 13:47:28 +01:00
sha512.h Minor changes to SHA hash functions 2015-11-24 13:47:28 +01:00
slab.c unsigned [int] -> uint 2015-06-08 02:24:08 +02:00
slists.c Slist update 2009-01-12 14:40:21 +01:00
slists.h Temporary integrated OSPF commit. 2014-06-26 11:58:57 +02:00
socket.h RPKI protocol with one cache server per protocol 2016-05-26 13:57:19 +02:00
string.h Some consts for function arguments 2015-11-24 13:52:26 +01:00
tbf.c Implements token bucket filter for rate limiting. 2014-10-02 12:52:50 +02:00
unaligned.h Build system reworked to one global Makefile with includes and no nesting 2016-05-10 14:07:34 +02:00
xmalloc.c unsigned [int] -> uint 2015-06-08 02:24:08 +02:00