From 12497dce48e864bccd4c3c9c9ddd14a37e25305f Mon Sep 17 00:00:00 2001
From: Karl Grube <karl@hudlergrube.com>
Date: Thu, 26 Oct 2023 13:39:35 +0200
Subject: [PATCH] frr_conf int_rtr work
---
templates/frr_conf.j2 | 24 ++++++++++++------------
1 file changed, 12 insertions(+), 12 deletions(-)
diff --git a/templates/frr_conf.j2 b/templates/frr_conf.j2
index ae1e3f0..86162f3 100644
--- a/templates/frr_conf.j2
+++ b/templates/frr_conf.j2
@@ -15,22 +15,22 @@ router bgp {{bgp_asn}}
{% endfor %}
neighbor outside peer-group
neighbor outside remote-as external
- neighbor trusted-peers peer-group
- neighbor trusted-peers remote-as internal
- neighbor trusted-peers bfd
-{% for neighbor in trusted_peers %}
+ neighbor firewalls peer-group
+ neighbor firewalls remote-as internal
+ neighbor firewalls bfd
+{% for neighbor in firewalls %}
{% if (neighbor|ansible.utils.ipv6) or (neighbor|ansible.utils.ipv4) %}
- neighbor {{ neighbor }} peer-group trusted-peers
+ neighbor {{ neighbor }} peer-group firewalls
{% else %}
- neighbor {{ neighbor }} interface peer-group trusted-peers
+ neighbor {{ neighbor }} interface peer-group firewalls
{% endif %}
{% endfor %}
!
address-family ipv4 unicast
network 0.0.0.0/0
- neighbor trusted-peers activate
- neighbor trusted-peers prefix-list all out
- neighbor trusted-peers prefix-list all in
+ neighbor firewalls activate
+ neighbor firewalls prefix-list all out
+ neighbor firewalls prefix-list my-networks in
{% for neighbor in internet_connections %}
{% for ip in neighbor.peer_ips %}
{% if ip|ansible.utils.ipv4 %}
@@ -43,9 +43,9 @@ router bgp {{bgp_asn}}
!
address-family ipv6 unicast
network ::/0
- neighbor trusted-peers activate
- neighbor trusted-peers prefix-list all out
- neighbor trusted-peers prefix-list all in
+ neighbor firewalls activate
+ neighbor firewalls prefix-list all out
+ neighbor firewalls prefix-list my-networks in
{% for neighbor in internet_connections %}
{% for ip in neighbor.peer_ips %}
{% if ip|ansible.utils.ipv6 %}
--
GitLab