-
Notifications
You must be signed in to change notification settings - Fork 330
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
policy: T4151: Add policy ipv6-local-route #1144
Conversation
3d61971
to
5da5f5a
Compare
5da5f5a
to
db7acd2
Compare
Thanks for this PR I have two questions:
|
|
@c-po
The rest of the policies includes firewall/frr configuration |
I don't understand, if the local-route options contain IPv6 addresses we will sue |
I started to merge both trees, but I'm not sure if this is possible anymore. We could possibly introduce a |
This is a good one indeed ... maybe this is the corner case which justifies it's own tree? I am no fwmark expert. |
Well, me neither. But I think having separate config trees will also provide more flexibility to implement other selectors that aren't related to IPv4/IPv6 addresses. |
Lets proceed with two trees then. Can you please rename |
db7acd2
to
8d31b04
Compare
@c-po I've renamed the command. |
Other then the requested changes we can merge it. |
Adds support for `ip -6 rule` policy based routing. Also, extends the existing ipv4 implemenation with a `destination` key, which is translated as `ip rule add to x.x.x.x/x` rules. https://phabricator.vyos.net/T4151
8d31b04
to
0d4079c
Compare
Change Summary
Adds support for
ip -6 rule
policy based routing.Also, extends the existing ipv4 implemenation with a
destination
key, which is translated asip rule add to x.x.x.x/x
rules.Types of changes
Related Task(s)
Component(s) name
policy
Proposed changes
vyos has had support for IPv4 policy based routing for a while. I'm missing the same functionality for IPv6. This change implements the same things for IPv6 as well.
It also adds the option to define the destination in policy routes.
How to test
I wrote several smoketests which hopefully cover all use-cases.
I also tested in a VM using these commands:
Checklist: