HabrКатастрофоустойчивый Kubernetes: как использовать балансировщик MetalLB с BGP-anycast
Клиенты часто спрашивают, как построить геораспределенный и катастрофоустойчивый
Daniel LakelandIs anyone using #frrouting in #guix? I'm trying to get babeld to run over my VPN network. I've got it running on the remote end where it's OpenWrt, I want to start frrouting on my #guixrouter and have it start babeld and use similar settings, it look like /gnu/store/...-frrouting/sbin/frrinit.sh should be run to start the daemons and it'll default to looking in /etc/frr/daemons and /etc/frr/frr.conf
but is there a guix approved way to get this up and running or is it roll-your-own?
MarekIPv6 should be treated the same as, if not better than, IPv4!
https://github.com/FRRouting/frr/issues/20067
https://github.com/FRRouting/frr/issues/20102
Qiita - 人気の記事ContainerLabでBGP環境にsFlowを導入!macOS(ARM64)でハマった話と解決法
https://qiita.com/ntaka329/items/9fec29217abf98769690?utm_campaign=popular_items&utm_medium=feed&utm_source=popular_items
Neustradamus :xmpp: :linux:#BSDRouterProject 1.994 has been released (#BSDRouter / #BSDRP / #BSD / #RouterDistribution / #NanoBSD / #FreeBSD / #FRRouting / #FreeRangeRouting / #BIRDInternetRoutingDaemon) https://bsdrp.net/
uvokI am confused by FRR.
https://docs.frrouting.org/en/latest/bgp.html
"-l, --listenon - Specify specific IP addresses for bgpd to listen on[...] Note that this option implies the –no_kernel option, and no learned routes will be installed into the linux kernel."
But they are installed into the kernel table! I can see it (with ip -6 route show table 50).
Is this because it's an bgpd option, and the routes go via zebra instead?
Config:
https://privatebin.net/?6461c22964ba20b8#BtwSKdrrRPu2tx8DQwfqyBaDU2gjdD5MqSYTUejXBTMq
and
https://privatebin.net/?34bd84b23b49a596#AVw68P7USz458c8hgk91GZ9dBmJZCADEw2Mq2gYtBw7y
And even if it did. what if I want to run multiple instances of bgpd and to install the routes into the kernel?
edit:
The docs seem to be wrong. Adding "-n", the routes are indeed not installed in the routing table.
equinoxY'all know what... this #X11 -> #Wayland switch is a great parallel on why we haven't ditched and rewritten #FRRouting yet:
Yes, it's >25 year old code, some of it truly toxic and radioactive, and some really poor design too.
But writing a new one is yrs of pain to get it to 90% (that also need to be funded = 404 here), and then a decade to fix half the edge case hellbugs.
It's written in the blood of previous users&bugs. (h/t @benjojo for that idiom, I had no wording for that concept before)
BSI WID Advisories Feed#BSI WID-SEC-2024-1894: [NEU] [UNGEPATCHT] [kritisch] ##FRRouting #Project FRRouting: Schwachstelle ermöglicht Denial of Service
Ein entfernter, anonymer Angreifer kann eine Schwachstelle in FRRouting Project FRRouting ausnutzen, um einen Denial of Service Zustand zu erzeugen und potenziell beliebigen Programmcode auszuführen.
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1894
Больше, чем Quagga — пакет для маршрутизации FRRouting
Есть мнение, что ИТ-сообщество можно условно поделить на тех, кто знаком с пакетом маршрутизации FRRouting, и тех, кто никогда о нем не слышал. Мы решили обсудить его возможности, мнения комьюнити, а также отличия от пакета Quagga.
https://habr.com/ru/companies/vasexperts/articles/831936/
#vas_experts #frrouting #quagga #сетевые_технологии #работа_интернетпровайдера
Erik Nygren 
A burst of +1's today in the issue for #FRRouting supporting #IPv6 as an underlay! (I have a use-case where it would certainly make life much easier, but it would also need to do so without sacrificing reliability.)
