Updating FRR7.3 to FRR7.4 breaks eBGP on FreeBSD12.1

[mimugmail]

Describe the bug
OPNsense 20.7 updated FRR from 7.3 to 7.4 and with this update the BGP daemon doesn't exchange routing information via eBGP. Reverting back to 7.3 let them exchanging routes again. Please know that also FreeBSD itself was updated from 11.2 to 12.1, but I think this is no relevant since v7.3 works with latest version of OPNsense.

In 7.4 sh ip bgp sum looks a bit weird:
OPN3.localdomain# sh ip bgp sum

IPv4 Unicast Summary:
BGP router identifier 10.99.1.3, local AS number 65002 vrf-id 0
BGP table version 1
RIB entries 1, using 192 bytes of memory
Peers 2, using 29 KiB of memory

Neighbor        V         AS   MsgRcvd   MsgSent   TblVer  InQ OutQ  Up/Down State/PfxRcd   PfxSnt
10.98.2.4       4      65002         0         0        0    0    0    never      Connect        0
10.99.1.1       4      65001         4         3        0    0    0 00:00:17     (Policy) (Policy)

(10.98.2.4 is always down, but (Policy) is new to me)

I just checked open issues but nothing seems to fit.
Are there any known errors?

Versions

OPNsense 20.7-amd64
FreeBSD 12.1-RELEASE-p7-HBSD
OpenSSL 1.1.1g 21 Apr 2020

root@OPN3:~ # pkg info frr7
frr7-7.4_1
Name           : frr7
Version        : 7.4_1
Installed on   : Mon Aug  3 14:34:23 2020 CEST
Origin         : net/frr7
Architecture   : FreeBSD:12:amd64
Prefix         : /usr/local
Categories     : net
Licenses       : GPLv2
Maintainer     : olivier@FreeBSD.org
WWW            : https://frrouting.org/
Comment        : IP routing protocol suite including BGP, IS-IS, OSPF and RIP
Options        :
        CONFIGROLLBACKS: off
        DATACENTER     : off
        FPM            : on
        LDPD           : off
        MANPAGES       : on
        MULTIPATH      : off
        PAM            : off
        PIE            : on
        RELRO          : on
        RPKI           : on
        SAFESTACK      : on
        SHELLACCESS    : off
        SNMP           : on
        TCMALLOC       : off
        TCPSOCKETS     : off
        VTYSH          : on
Shared Libs required:
        libnetsnmpagent.so.30
        librtr.so.0
        libnetsnmpmibs.so.30
        libreadline.so.8
        libyang.so.1
        libnetsnmp.so.30
        libpkg.so.4
        libcrypto.so.11
        libssh.so.4
        libjson-c.so.5
Shared Libs provided:
        libfrrsnmp.so.0
        libfrrospfapiclient.so.0
        libfrr.so.0
Annotations    :
        FreeBSD_version: 1201000
        repo_type      : binary
        repository     : OPNsense
Flat size      : 13.9MiB
Description    :
FRRouting (FRR) is an IP routing protocol suite for Linux and Unix platforms
which includes protocol daemons for BGP, IS-IS, OSPF and RIP. FRR has its roots
in the Quagga project.

WWW: https://frrouting.org/

[ton31337]

@mimugmail since 7.4, we have strict eBGP policy enabled by default. Read more about it here: http://docs.frrouting.org/en/latest/bgp.html#require-policy-on-ebgp.

[mimugmail]

@ton31337 Thx for the quick reply.
Is it good idea to change a default like this? I can think of many broken setups out there.

Ok, for now we'll revert to 7.3 and maybe disable it.
Is there a link about a discussion of this feature so I can get more insights into it?

[ton31337]

It's mentioned in release notes: https://github.com/FRRouting/frr/releases/tag/frr-7.4 (RFC 8212 is now enabled by default).

[mimugmail]

Thx, I'll have a deeper look at it ..