# Generated by confd include "bird_aggr.cfg"; include "bird_ipam.cfg"; {{`{{$node_ip_key := printf "/host/%s/ip_addr_v4" (getenv "NODENAME")}}{{$node_ip := getv $node_ip_key}}`}} # ensure we only listen to a specific ip and address listen bgp address {{`{{$node_ip}}`}} port {{.Values.networking.bgp.ipv4.port.listen}}; {{`{{$router_id := getenv "CALICO_ROUTER_ID" ""}}`}} {{`router id {{if ne "" ($router_id)}}{{$router_id}}{{else}}{{$node_ip}}{{end}};`}} {{`{{define "LOGGING"}}`}} {{`{{$node_logging_key := printf "/host/%s/loglevel" (getenv "NODENAME")}}{{if exists $node_logging_key}}{{$logging := getv $node_logging_key}}`}} {{`{{if eq $logging "debug"}} debug all;{{else if ne $logging "none"}} debug { states };{{end}}`}} {{`{{else if exists "/global/loglevel"}}{{$logging := getv "/global/loglevel"}}`}} {{`{{if eq $logging "debug"}} debug all;{{else if ne $logging "none"}} debug { states };{{end}}`}} {{`{{else}} debug { states };{{end}}`}} {{`{{end}}`}} # Configure synchronization between routing tables and kernel. protocol kernel { learn; # Learn all alien routes from the kernel persist; # Don't remove routes on bird shutdown scan time 2; # Scan kernel routing table every 2 seconds import all; export filter calico_ipip; # Default is export none graceful restart; # Turn on graceful restart to reduce potential flaps in # routes when reloading BIRD configuration. With a full # automatic mesh, there is no way to prevent BGP from # flapping since multiple nodes update their BGP # configuration at the same time, GR is not guaranteed to # work correctly in this scenario. } # Watch interface up/down events. protocol device { {{` {{template "LOGGING"}}`}} scan time 2; # Scan interfaces every 2 seconds } protocol direct { {{` {{template "LOGGING"}}`}} interface -"cali*", "*"; # Exclude cali* but include everything else. } {{`{{if eq "" ($node_ip)}}# IPv4 disabled on this node.`}} {{`{{else}}{{$node_as_key := printf "/host/%s/as_num" (getenv "NODENAME")}}`}} # Template for all BGP clients template bgp bgp_template { {{` {{template "LOGGING"}}`}} description "Connection to BGP peer"; {{` local as {{if exists $node_as_key}}{{getv $node_as_key}}{{else}}{{getv "/global/as_num"}}{{end}};`}} multihop; gateway recursive; # This should be the default, but just in case. import all; # Import all routes, since we don't know what the upstream # topology is and therefore have to trust the ToR/RR. export filter calico_pools; # Only want to export routes for workloads. next hop self; # Disable next hop processing and always advertise our # local address as nexthop {{` source address {{$node_ip}}; # The local address we use for the TCP connection`}} add paths on; graceful restart; # See comment in kernel section about graceful restart. } # ------------- Node-to-node mesh ------------- {{`{{if (json (getv "/global/node_mesh")).enabled}}`}} {{`{{range $host := lsdir "/host"}}`}} {{`{{$onode_as_key := printf "/host/%s/as_num" .}}`}} {{`{{$onode_ip_key := printf "/host/%s/ip_addr_v4" .}}{{if exists $onode_ip_key}}{{$onode_ip := getv $onode_ip_key}}`}} {{`{{$nums := split $onode_ip "."}}{{$id := join $nums "_"}}`}} {{`# For peer {{$onode_ip_key}}`}} {{`{{if eq $onode_ip ($node_ip) }}# Skipping ourselves ({{$node_ip}})`}} {{`{{else if ne "" $onode_ip}}protocol bgp Mesh_{{$id}} from bgp_template {`}} {{` neighbor {{$onode_ip}} as {{if exists $onode_as_key}}{{getv $onode_as_key}}{{else}}{{getv "/global/as_num"}}{{end}};`}} neighbor port {{.Values.networking.bgp.ipv4.port.neighbor}}; {{`}{{end}}{{end}}{{end}}`}} {{`{{else}}`}} # Node-to-node mesh disabled {{`{{end}}`}} # ------------- Global peers ------------- {{`{{if ls "/global/peer_v4"}}`}} {{`{{range gets "/global/peer_v4/*"}}{{$data := json .Value}}`}} {{`{{$nums := split $data.ip "."}}{{$id := join $nums "_"}}`}} {{`# For peer {{.Key}}`}} {{`protocol bgp Global_{{$id}} from bgp_template {`}} {{` neighbor {{$data.ip}} as {{$data.as_num}};`}} neighbor port {{.Values.networking.bgp.ipv4.port.neighbor}}; } {{`{{end}}`}} {{`{{else}}# No global peers configured.{{end}}`}} # ------------- Node-specific peers ------------- {{`{{$node_peers_key := printf "/host/%s/peer_v4" (getenv "NODENAME")}}`}} {{`{{if ls $node_peers_key}}`}} {{`{{range gets (printf "%s/*" $node_peers_key)}}{{$data := json .Value}}`}} {{`{{$nums := split $data.ip "."}}{{$id := join $nums "_"}}`}} {{`# For peer {{.Key}}`}} {{`protocol bgp Node_{{$id}} from bgp_template {`}} {{` neighbor {{$data.ip}} as {{$data.as_num}};`}} neighbor port {{.Values.networking.bgp.ipv4.port.neighbor}}; } {{`{{end}}`}} {{`{{else}}# No node-specific peers configured.{{end}}`}} {{`{{end}}{{/* End of IPv4 enable check */}}`}}