[Xorp-users] update ospf database after policy change
Atanu Ghosh
atanu at ICSI.Berkeley.EDU
Tue Jun 26 19:54:10 PDT 2007
Hi,
XORP supports policy reconfigurations without the need to restart.
You seem to have found a bug in the updating of the policies, if you
"commit" after:
levsha at workstation.levsha.org.ua# delete policy policy-statement to-ospf term other
then the policies are correctly updated.
XORP# run show ospf4 database | match 192.168.15[56]
ASExt-2 *192.168.156.0 192.168.0.50 0x80000001 11 0x2 0x3df3
36
Atanu.
>>>>> "Mykola" == Mykola Dzham <i at levsha.org.ua> writes:
Mykola> When i change ospf export policy to "network, that rejected previously,
Mykola> now allow", then changes affect to ospf database immediately. But whe
Mykola> in change policy to "network, that accepted previously, now reject",
Mykola> then changes not affect to ospf database. Is it bug? Is it possible to
Mykola> apply changes without restarting xorp?
Mykola> xorp-1.4 , FreeBSD 6.2-RELEASE
Mykola> Here is a test:
Mykola> Start state:
Mykola> levsha at workstation.levsha.org.ua# run show route table ipv4 unicast final | match 192.168.15[56]
Mykola> 192.168.155.0/24 [connected(0)/0]
Mykola> 192.168.156.0/24 [connected(0)/0]
Mykola> levsha at workstation.levsha.org.ua# run show ospf4 database | match 192.168.15[56]
Mykola> ASExt-2 *192.168.156.0 192.168.0.50 0x80000001 69 0x2 0x3df3 36
Mykola> levsha at workstation.levsha.org.ua# show protocols ospf4 export
Mykola> export: "to-ospf"
Mykola> [edit]
Mykola> levsha at workstation.levsha.org.ua# show policy policy-statement to-ospf
Mykola> term testnet {
Mykola> from {
Mykola> protocol: "connected"
Mykola> network4: 192.168.155.0/24
Mykola> }
Mykola> then {
Mykola> reject {
Mykola> }
Mykola> }
Mykola> }
Mykola> term other {
Mykola> from {
Mykola> protocol: "connected"
Mykola> }
Mykola> then {
Mykola> accept {
Mykola> }
Mykola> }
Mykola> }
Mykola> [edit]
Mykola> change "network, that rejected previously,now allow":
Mykola> levsha at workstation.levsha.org.ua# delete policy policy-statement to-ospf term testnet
Mykola> Deleting:
Mykola> testnet {
Mykola> from {
Mykola> protocol: "connected"
Mykola> network4: 192.168.155.0/24
Mykola> }
Mykola> then {
Mykola> reject {
Mykola> }
Mykola> }
Mykola> }
Mykola> OK
Mykola> [edit]
Mykola> levsha at workstation.levsha.org.ua# commit
Mykola> OK
Mykola> [edit]
Mykola> levsha at workstation.levsha.org.ua# run show ospf4 database | match 192.168.15[56]
Mykola> ASExt-2 *192.168.155.0 192.168.0.50 0x80000001 30 0x2 0x48e9 36
Mykola> ASExt-2 *192.168.156.0 192.168.0.50 0x80000001 30 0x2 0x3df3 36
Mykola> change "network, that accepted previously, now reject":
Mykola> levsha at workstation.levsha.org.ua# delete policy policy-statement to-ospf term other
Mykola> Deleting:
Mykola> other {
Mykola> from {
Mykola> protocol: "connected"
Mykola> }
Mykola> then {
Mykola> accept {
Mykola> }
Mykola> }
Mykola> }
Mykola> OK
Mykola> [edit]
Mykola> levsha at workstation.levsha.org.ua# set policy policy-statement to-ospf term rej {
>> from protocol connected
>> from network4 192.168.155.0/24
>> then reject
>> }
Mykola> [edit]
Mykola> evsha at workstation.levsha.org.ua# set policy policy-statement to-ospf term acc {
>> from protocol connected
>> then accept
>> }
Mykola> [edit]
Mykola> levsha at workstation.levsha.org.ua# commit
Mykola> OK
Mykola> [edit]
Mykola> levsha at workstation.levsha.org.ua# run show ospf4 database | match 192.168.15[56]
Mykola> ASExt-2 *192.168.155.0 192.168.0.50 0x80000001 1769 0x2 0x48e9 36
Mykola> ASExt-2 *192.168.156.0 192.168.0.50 0x80000001 1769 0x2 0x3df3 36
Mykola> --
Mykola> Mykola Dzham, LEFT-(UANIC|RIPE)
Mykola> JID: levsha at jabber.net.ua
Mykola> _______________________________________________
Mykola> Xorp-users mailing list
Mykola> Xorp-users at xorp.org
Mykola> http://mailman.ICSI.Berkeley.EDU/mailman/listinfo/xorp-users
More information about the Xorp-users
mailing list