From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from firstgate.proxmox.com (firstgate.proxmox.com [IPv6:2a01:7e0:0:424::9]) by lore.proxmox.com (Postfix) with ESMTPS id B1A461FF13B for ; Wed, 06 May 2026 01:36:07 +0200 (CEST) Received: from firstgate.proxmox.com (localhost [127.0.0.1]) by firstgate.proxmox.com (Proxmox) with ESMTP id 55DBE10AC9; Wed, 6 May 2026 01:36:05 +0200 (CEST) From: Thomas Lamprecht To: pve-devel@lists.proxmox.com, Stefan Hanreich Subject: partially-applied: [PATCH access-control/cluster/manager/network/proxmox{-ve-rs,-perl-rs} v5 00/46] Add support for route maps / prefix lists to SDN Date: Wed, 6 May 2026 01:33:55 +0200 Message-ID: <177802400139.2789904.1276798076831825582.b4-ty@b4> X-Mailer: git-send-email 2.47.3 In-Reply-To: <20260505153720.412180-1-s.hanreich@proxmox.com> References: <20260505153720.412180-1-s.hanreich@proxmox.com> MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 8bit X-Bm-Milter-Handled: 55990f41-d878-4baa-be0a-ee34c49e34d2 X-Bm-Transport-Timestamp: 1778024054309 X-SPAM-LEVEL: Spam detection results: 0 AWL -0.122 Adjusted score from AWL reputation of From: address BAYES_00 -1.9 Bayes spam probability is 0 to 1% DMARC_MISSING 0.1 Missing DMARC policy KAM_DMARC_STATUS 0.01 Test Rule for DKIM or SPF Failure with Strict Alignment KAM_LOTSOFHASH 0.25 Emails with lots of hash-like gibberish SPF_HELO_NONE 0.001 SPF: HELO does not publish an SPF Record SPF_PASS -0.001 SPF: sender matches SPF record Message-ID-Hash: I7MUNEOPNM3VOMGIAERUASTNS2CLSMRT X-Message-ID-Hash: I7MUNEOPNM3VOMGIAERUASTNS2CLSMRT X-MailFrom: t.lamprecht@proxmox.com X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; loop; banned-address; emergency; member-moderation; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header X-Mailman-Version: 3.3.10 Precedence: list List-Id: Proxmox VE development discussion List-Help: List-Owner: List-Post: List-Subscribe: List-Unsubscribe: On Tue, 05 May 2026 17:36:28 +0200, Stefan Hanreich wrote: > ## Introduction > > This patch adds support for managing route maps and prefix lists to the SDN > stack. With this patch series, route maps can be applied to the BGP and EVPN > controller for incoming / outgoing route filtering. Additionally, prefix lists > can be used to filter routes that should be installed by a fabric into the > kernel routing table, overriding the default behavior of only installing routes > from the configured IP prefix. There are currently some other features in > development that would make use of route maps as well, namely: > > [...] Applied the pve-cluster and proxmox-ve-rs parts for now, thanks! For the latter I reordered the commits a bit to make more sense dependency wise, split also some unrelated changes, rework subjects slightly and also dropped the untagged attr for OspfNodeDeletableProperties (doesn't matter as of now, but shouldn't hurt to future proof this already). pve-cluster: [1/2] cfs: add 'sdn/route-maps.cfg' to observed files commit: 693d113ad5aa4c8d850d88a6465c335d1a726edc [2/2] cfs: add 'sdn/prefix-lists.cfg' to observed files commit: 16e64cdd8d375ebdf369d4babbc1ea6eed9379f8 proxmox-ve-rs: [01/16] frr: add constructor to prefix list name commit: ca41a56ef83eccf624ae1033d30fc88fbdb86e87 [02/16] sdn-types: add common route-map helper types commit: 127c188355262af3e0b01b88b96e3ebf17353b76 [03/16] frr: change order type to u16 commit: 0e6980bb52ef2f8625aae88450d3ad5f6c24c82e [04/16] frr: implement routemap match/set statements via adjacent tagging commit: 681ead87268565811e2b92729347a781f6d9937a [05/16] frr: implement support for call and exit action commit: 7cc2094457574ef1cfd424a945bc280b5a5eae50 [06/16] frr-templates: change route maps template to adapt to new frr types commit: 34c4b99465956d4590fd43df3ec9bc13e1ad07f6 [07/16] ve-config: fabrics: adapt frr config generation commit: 5c0f73896b4a9b256db002076386c3d90aec09be [08/16] ve-config: add prefix list section config commit: 0a3183810cc38e35dbbe7c0b7d28eb9a000c8524 [09/16] ve-config: frr: implement frr config generation for prefix lists commit: dc1f9932543c021de00eeeb92173659153e9d93c [10/16] ve-config: add route map section config commit: ad09cc76f05bb4373103139c3295181f22838b27 [11/16] ve-config: frr: implement frr config generation for route maps commit: a48b62e93636195f0a6a8c3ca32a9522b1bfadc4 [12/16] ve-config: add prefix lists integration tests commit: 5122ff3c26ac07a7d6773baccb77137891124195 [13/16] ve-config: add route maps integration tests commit: ce7246ecc302718fd8273407d72be8571e320ceb [14/16] fabrics: ospf: fix deserializing OspfDeletableProperties commit: 98c91e1194d44196d5e0a52da0e24327dea31cb2 [15/16] fabrics: ospf: openfabric: allow user-defined route filter commit: 0ce984b7f21cdf4d759458f9f66d9f36408d0455 [16/16] frr: fabrics: apply route_filter setting commit: 4d9f0e5c171f5c67fccedaae5d85d432c0737a14