Konfigurasi Sederhana OpenBGPD pada FreeBSD.

By : Kabayan OpenBGPD adalah aplikasi gratis untuk implementasi BGP. Sama halnya dengan quagga dan zebra. OpenBGPD bawaan asli dari OpenBSD....

By : Kabayan
OpenBGPD adalah aplikasi gratis untuk implementasi BGP. Sama halnya dengan quagga dan zebra.
OpenBGPD bawaan asli dari OpenBSD.
Jadi kalau mau menggunakan semua fitur OpenBGPD lebih optimal silahkan menggunakan OpenBSD sebagai OSnya.

Disini tidak dijelaskan optimasi kernel untuk running OpenBGPD.
Silahkan cari sendiri bahan2nya, misalkan mengaktifkan PF ALTQ dsb.

Langsung ke topik.

1. Installasi.

- cd /usr/port/net/openbgpd && make install clean

2. Konfigurasi

- Buat file bgpd.conf di /usr/local/etc
  vi /usr/local/etc/bgpd.conf
  isinya:

##ip upstream1 = 10.10.1.1
##ip upstream2 = 10.10.2.2
##ip internal  = 192.168.10.1

##as upstream1 = 1234
##as upstream2 = 5678
##as sendiri   = 91011

AS 91011
router-id 192.168.10.254
holdtime 180
holdtime min 3
listen on 127.0.0.1
listen on 10.10.1.1
listen on 10.10.2.2
listen on 192.168.10.1

fib-update yes
nexthop qualify via bgp
log updates

network 10.10.1.1/30
network 10.10.2.2/30
network 192.168.10.0/24


group "upstreams" {
        announce       all
        announce        capabilities yes
softreconfig    in yes
        softreconfig    out yes
neighbor 10.10.1.1 {
remote-as 1234
descr "upstream1"
multihop 2
set {localpref 100}
}
neighbor 10.10.2.2 {
remote-as 5678
descr "upstream2"
multihop 2
set {localpref 100}
}

}

deny from any
deny from any prefix 0.0.0.0/0

# Bogus Networks
deny to any prefix 10.0.0.0/8 prefixlen >= 8
deny from any prefix 10.0.0.0/8 prefixlen >= 8
deny from any prefix 172.16.0.0/12 prefixlen >= 12
deny from any prefix 192.168.0.0/16 prefixlen >= 16
deny from any prefix 169.254.0.0/16 prefixlen >= 16
deny from any prefix 192.0.2.0/24 prefixlen >= 24
deny from any prefix 224.0.0.0/4 prefixlen >= 4
deny from any prefix 240.0.0.0/4 prefixlen >= 4

allow from {group upstream} prefixlen 8 - 24
allow to {group upstreams} prefixlen 8 - 30
deny to {group upstreams} prefixlen > 24


- ubah permission nya

chmod 600 /usr/local/etc/bgpd.conf

- cek konfigurasinya
bgpd -n
---- akan muncul ----
configuration ok

- jalankan openbgpd

/usr/local/etc/rc.d/ openbgpd forcestart

- Cek bgpnya

bgpctl sh
--- akan muncul ---
Neighbor             AS       MsgRcvd    MsgSent    OutQ  Up/Down  State/PrfRcvd
upstream1           1234      94447         66     0     01:03:29 263444
upstream2           5678      94447         66     0     01:03:29 263444

- Selesai

## Catatan

kalau ada kesalahan atau menambakan rules lainnya di konfigurasi silahkan buka manual bgpd.conf (man bgpd.conf)

COMMENTS

Name

Application Support,19,database server,1,Desktop/XWindow,1,DNS Server,2,Email Server,3,FTP Server,2,General,2,Kernel,2,Networking,8,Proxy Server,4,Security,6,Tips and Trick,5,Web Server,2,
ltr
item
IndoFreeBSD: Konfigurasi Sederhana OpenBGPD pada FreeBSD.
Konfigurasi Sederhana OpenBGPD pada FreeBSD.
https://3.bp.blogspot.com/-kgOh_e_l_54/VOijX1uXJcI/AAAAAAAAAEA/vNi9ytR8bWk/s1600/openbgpd.gif
https://3.bp.blogspot.com/-kgOh_e_l_54/VOijX1uXJcI/AAAAAAAAAEA/vNi9ytR8bWk/s72-c/openbgpd.gif
IndoFreeBSD
https://www.indofreebsd.or.id/2015/02/konfigurasi-sederhana-openbgpd-pada.html
https://www.indofreebsd.or.id/
https://www.indofreebsd.or.id/
https://www.indofreebsd.or.id/2015/02/konfigurasi-sederhana-openbgpd-pada.html
true
1901051463523757307
UTF-8
Loaded All Posts Not found any posts VIEW ALL Readmore Reply Cancel reply Delete By Home PAGES POSTS View All RECOMMENDED FOR YOU LABEL ARCHIVE SEARCH ALL POSTS Not found any post match with your request Back Home Sunday Monday Tuesday Wednesday Thursday Friday Saturday Sun Mon Tue Wed Thu Fri Sat January February March April May June July August September October November December Jan Feb Mar Apr May Jun Jul Aug Sep Oct Nov Dec just now 1 minute ago $$1$$ minutes ago 1 hour ago $$1$$ hours ago Yesterday $$1$$ days ago $$1$$ weeks ago more than 5 weeks ago Followers Follow THIS PREMIUM CONTENT IS LOCKED STEP 1: Share to a social network STEP 2: Click the link on your social network Copy All Code Select All Code All codes were copied to your clipboard Can not copy the codes / texts, please press [CTRL]+[C] (or CMD+C with Mac) to copy Table of Content