2 ###############################################################################
4 # IPFire.org - A linux based firewall #
5 # Copyright (C) 2018 IPFire Network Development Team #
7 # This program is free software: you can redistribute it and/or modify #
8 # it under the terms of the GNU General Public License as published by #
9 # the Free Software Foundation, either version 3 of the License, or #
10 # (at your option) any later version. #
12 # This program is distributed in the hope that it will be useful, #
13 # but WITHOUT ANY WARRANTY; without even the implied warranty of #
14 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the #
15 # GNU General Public License for more details. #
17 # You should have received a copy of the GNU General Public License #
18 # along with this program. If not, see <http://www.gnu.org/licenses/>. #
20 ###############################################################################
22 BIRD_CONF
="/etc/bird.conf"
25 service_start
"bird.service"
29 service_stop
"bird.service"
33 service_reload
"bird.service"
36 bird_generate_config
() {
37 log DEBUG
"Write BIRD configuration file"
40 config_header
"bird" > ${BIRD_CONF}
42 # Write some basic settings
45 print
"# Log everything to syslog"
46 print
"log syslog all;"
49 print
"# Turn on internal watchdog"
50 print
"watchdog warning 5s;"
51 print
"watchdog timeout 30s;"
54 print
"# Define default route tables"
55 print
"ipv6 table master6;"
56 print
"ipv4 table master4;"
58 print
"# Enable device configuration"
59 print
"protocol device {}"
62 print
"# Export all routes to kernel"
63 for proto
in ${IP_SUPPORTED_PROTOCOLS}; do
64 print
"protocol kernel {"
66 print
" table ${proto/ipv/master};"
76 for proto
in ${IP_SUPPORTED_PROTOCOLS}; do
77 print
"protocol static {"
81 # Read routes for this protocol from configuration
82 __bird_static_routes
"${proto}"
89 __bird_static_routes
() {
93 local ${NETWORK_CONFIG_ROUTES_PARAMS}
96 route_parse_line
"${line}"
97 [ $?
-eq ${EXIT_OK} ] ||
continue
101 for arg
in unreachable prohibit blackhole
; do
102 if enabled
"${arg}"; then
108 # Skip all routes of another protocol
109 local _proto
="$(ip_detect_protocol "${network}")"
110 if [ "${proto}" != "${_proto}" ]; then
115 unreachable|prohibit|blackhole
)
116 print
" route ${network} ${type};"
120 print
" route ${network} via ${gateway};"
123 done < ${NETWORK_CONFIG_ROUTES}