]> git.puffer.fish Git - mirror/frr.git/commit
projects / mirror / frr.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 960ad09) | patch
bgpd: fix prefix VRF leaking with 'no network import-check'
authorLouis Scalbert <louis.scalbert@6wind.com>
Thu, 28 Apr 2022 15:01:35 +0000 (17:01 +0200)
committerLouis Scalbert <louis.scalbert@6wind.com>
Fri, 16 Dec 2022 13:52:47 +0000 (14:52 +0100)
commit1c4c40696f5526ef7e8684a268f414c962346007
treeca31425550aaebbedd91007c2335cad73836d2fetree | snapshot
parent960ad09f93053bfb5f0b6e5055ab044fa4433c72commit | diff
bgpd: fix prefix VRF leaking with 'no network import-check'

Prefixes that are stated in the network command cannot be leaked to
the other VRFs BGP table whether or not they are present in the origin
VRF RIB.

Always validate the nexthop of BGP static routes (i.e. defined with the
network statement) if 'no network import-check' is defined on the source
BGP session.

Signed-off-by: Louis Scalbert <louis.scalbert@6wind.com>
Signed-off-by: Philippe Guibert <philippe.guibert@6wind.com>
bgpd/bgp_mplsvpn.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.