pfSense Support Subscription

Author Topic: OpenBGPD  (Read 8075 times)

0 Members and 1 Guest are viewing this topic.

Offline MAuVE

  • Newbie
  • *
  • Posts: 19
  • Karma: +0/-0
    • View Profile
OpenBGPD
« on: October 28, 2007, 12:23:45 pm »
I noticed the new package and jumped into it.

Unfortunately, whatever I try to save in the relevant configuration web pages I get the following error message :

Warning: Invalid argument supplied for foreach() in /usr/local/pkg/openbgpd.inc on line 77 Warning: Invalid argument supplied for foreach() in /usr/local/pkg/openbgpd.inc on line 94 Warning: Cannot modify header information - headers already sent by (output started at /usr/local/pkg/openbgpd.inc:77) in /usr/local/www/pkg_edit.php on line 35

I noticed that when I insert a line in the neighbors and groups pages this does not take the place of the first line which remains blank.

Trying to delete this first (blank) line has no effect.

Is this perhaps the problem ?

PS. Yes, this is the problem. It leaves in the /usr/local/etc/bgpd.conf a set of unfinished neighbor configuration like this :

group "" {
   remote-as
   neighbor  {
      descr ""
   }
}


and this :

neighbor  {
      descr ""
   }


which has as a consequence the bgpd not to start due to config file errors.

I removed the offending lines by editing the file and then it started.
« Last Edit: October 28, 2007, 08:38:19 pm by MAuVE »

Offline djmizt

  • Jr. Member
  • **
  • Posts: 29
  • Karma: +0/-0
    • View Profile
Re: OpenBGPD
« Reply #1 on: November 19, 2007, 07:08:28 pm »
it seems there's already a pre-included blank entry ( the first lines in "neighbors" and "groups" ) that you can just edit for your first entry. If not it will leave a blank entry on your bgpd.conf file and will fail to launch the daemon

Is there a roadmap for this package?

I'm running this on a live BGP router and one thing that I'm not liking so far is the way it shows the routes on the status tab. This should be configurable since my router has 230,000+ routing entries (full bgp route) and it takes forever to load the page, also makes the page too cluttered for me.

some suggestions:

* It would also be nice to be able to execute bgpctl commands directly off the status tab - similar to how you can execute shell commands on the diagnostic page

* filters and macros? - are they going to be added in the future?

* the ability to configure without commiting the changes to bgpd (i.e. not doing a bgpctl reload)

Offline MAuVE

  • Newbie
  • *
  • Posts: 19
  • Karma: +0/-0
    • View Profile
Re: OpenBGPD
« Reply #2 on: November 24, 2007, 01:45:56 pm »
... it seems there's already a pre-included blank entry ( the first lines in "neighbors" and "groups" )...

Yes, there is.

...that you can just edit for your first entry....

No, you can't.

....If not it will leave a blank entry on your bgpd.conf file and will fail to launch the daemon...

This is exactly what happens


Offline djmizt

  • Jr. Member
  • **
  • Posts: 29
  • Karma: +0/-0
    • View Profile
Re: OpenBGPD
« Reply #3 on: November 26, 2007, 04:00:19 pm »
...that you can just edit for your first entry....

No, you can't.

..true it its un-editable

Quote
....If not it will leave a blank entry on your bgpd.conf file and will fail to launch the daemon...

This is exactly what happens

you will need to manually edit /usr/local/etc/bgpd.conf and remove the blank "group" and "neighbor" entries

you will also need to go to the filter section and remove the following blank entries (this is located usually above your first neighbor filter entry):

Allow any from
Allow any to

After this, bgpd should start. Hopefully it will be fixed on the beta release.



Offline MAuVE

  • Newbie
  • *
  • Posts: 19
  • Karma: +0/-0
    • View Profile
Re: OpenBGPD
« Reply #4 on: December 10, 2007, 05:12:33 am »
Until somebody fixes it properly there is the following workaround that I found :


Go to "Diagnostics",  "Edit file" and load file /conf/config.xml

Delete two redundant "<config/>" entries in the openbgpd section of the configuration :

</openbgpd>
      <openbgpdgroups>
                        <config/>
         <config>
            <name>.......</name>
            <remoteas>......</remoteas>
            <descr>.....</descr>
         </config>
      </openbgpdgroups>
      <openbgpdneighbors>
                       <config/>
         <config>
            <descr>......</descr>
            <neighbor>.........</neighbor>
            <groupname>..........</groupname>
            <row>
               <paramaters>remote-as</paramaters>
               <parmvalue>.........</parmvalue>
            </row>
         </config>

Save and restart pfsense so that changes become effective.

After this you will not see (at least I didn't) the blank un-editable first row in the neighbors and groups tables.

Offline JanZ

  • Jr. Member
  • **
  • Posts: 43
  • Karma: +0/-0
    • View Profile
Re: OpenBGPD
« Reply #5 on: January 26, 2008, 09:13:19 am »
Hi.

Still, in 1.2RC4 there are problems with openbgpd package. Same error message as indicated here in first post.

I inspected bgpd.conf file and yes, as written here, there are unfinished sections in it:

Code: [Select]
group "" {
        remote-as
        neighbor  {
                descr ""
        }
}
        neighbor  {
                descr ""
        }
}
deny from any
deny to any
allow from
allow to

..and also uneditable fist field on pfsense web manager interface. Unfortunately, I was not able to spot the correct lines in config.xml to delete them. All I have (with no fields filled in in openbgpd manager) is this:

Code: [Select]
                <openbgpd>
                        <config>
                                <asnum/>
                                <holdtime/>
                                <fibupdate>yes</fibupdate>
                                <listenip/>
                                <routerid/>
                        </config>
                </openbgpd>
                <openbgpdgroups>
                        <config/>
                </openbgpdgroups>
                <openbgpdneighbors>
                        <config/>
                </openbgpdneighbors>

What should I delete or do here?

Thnx, Jan Zorz

Offline djmizt

  • Jr. Member
  • **
  • Posts: 29
  • Karma: +0/-0
    • View Profile
Re: OpenBGPD
« Reply #6 on: January 29, 2008, 03:34:10 pm »
im still on 1.2RC2 but on the file you listed above - these bolded entries should be deleted:


<openbgpd>
                        <config>
                                <asnum/>
                                <holdtime/>
                                <fibupdate>yes</fibupdate>
                                <listenip/>
                                <routerid/>
                        </config>
                </openbgpd>
                <openbgpdgroups>
                        <config/>
                </openbgpdgroups>
                <openbgpdneighbors>
                        <config/>
                </openbgpdneighbors>

I guess theres not much work going on at the BGP package. Its a shame because this should be an integral part of the firewall and move it from a typical firewall/router to an enterprise-level firewall/router. I'm this -->| |<-- close on taking ownership fo this package  ;D

Offline sullrich

  • Hero Member
  • *****
  • Posts: 5110
  • Karma: +3/-0
    • View Profile
    • pfSense
Re: OpenBGPD
« Reply #7 on: January 29, 2008, 07:27:05 pm »
I have made some changes to the package.  Please upgrade the package and test again.

Offline MAuVE

  • Newbie
  • *
  • Posts: 19
  • Karma: +0/-0
    • View Profile
Re: OpenBGPD
« Reply #8 on: February 01, 2008, 07:17:03 am »
Same thing.

I removed earlier version, tried new one that would not install at all.

Next, I upgraded running RC3 to RC4.
This time it did install but OpenBGP pages showed error :

Warning: Cannot use a scalar value as an array in /usr/local/www/pkg_edit.php on line 324 Warning: Invalid argument supplied for foreach() in /usr/local/www/pkg_edit.php on line 324 ....

Tried remove-reinstall a couple times and ended up with a broken machine. (it did not like something in the XML)

Installed new system from scratch, upgraded to RC4, installed OpenBGP and faced original problem :

Warning: Invalid argument supplied for foreach() in /usr/local/pkg/openbgpd.inc on line 77 ......

Offline MAuVE

  • Newbie
  • *
  • Posts: 19
  • Karma: +0/-0
    • View Profile
Re: OpenBGPD
« Reply #9 on: February 28, 2008, 09:00:15 am »
I did a fresh install of 1.2 Stable Release.

Installed the OpenBGP package and noticed that it's gui now was functioning. Good I said !!!

Very happy, I tried to edit the tables of the gui pages putting in realistic data (on the first entry data was nonsense)

Trying to save new entries I got an error message of the sort: "this kind of data is not allowed here"

Did a restart that never succeeded as it could not find the XML config file.

Gave up



Offline cybercare

  • Jr. Member
  • **
  • Posts: 93
  • Karma: +0/-0
    • View Profile
Re: OpenBGPD
« Reply #10 on: October 24, 2008, 01:43:11 pm »
Sorry to bring back the dead but has the BGP ever been fixed?

I saw a bounty that was up to $600 even and no one touched it.

If I knew enough I would do it myself free but its beyond my level, lol.

I would really like to be able to use this though.