From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from firstgate.proxmox.com (firstgate.proxmox.com [212.224.123.68]) by lore.proxmox.com (Postfix) with ESMTPS id E1C5D1FF141 for ; Tue, 05 May 2026 17:39:10 +0200 (CEST) Received: from firstgate.proxmox.com (localhost [127.0.0.1]) by firstgate.proxmox.com (Proxmox) with ESMTP id 5F07098E0; Tue, 5 May 2026 17:38:12 +0200 (CEST) From: Stefan Hanreich To: pve-devel@lists.proxmox.com Subject: [PATCH pve-network v5 31/46] bgp controller: allow configuring custom route maps Date: Tue, 5 May 2026 17:36:59 +0200 Message-ID: <20260505153720.412180-32-s.hanreich@proxmox.com> X-Mailer: git-send-email 2.47.3 In-Reply-To: <20260505153720.412180-1-s.hanreich@proxmox.com> References: <20260505153720.412180-1-s.hanreich@proxmox.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-Bm-Milter-Handled: 55990f41-d878-4baa-be0a-ee34c49e34d2 X-Bm-Transport-Timestamp: 1777995342871 X-SPAM-LEVEL: Spam detection results: 0 AWL 0.650 Adjusted score from AWL reputation of From: address BAYES_00 -1.9 Bayes spam probability is 0 to 1% DMARC_MISSING 0.1 Missing DMARC policy KAM_DMARC_STATUS 0.01 Test Rule for DKIM or SPF Failure with Strict Alignment SPF_HELO_NONE 0.001 SPF: HELO does not publish an SPF Record SPF_PASS -0.001 SPF: sender matches SPF record Message-ID-Hash: AVXDMAZDO5R3KYXZY5XQGF5IRDO3H7EM X-Message-ID-Hash: AVXDMAZDO5R3KYXZY5XQGF5IRDO3H7EM X-MailFrom: s.hanreich@proxmox.com X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; loop; banned-address; emergency; member-moderation; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header X-Mailman-Version: 3.3.10 Precedence: list List-Id: Proxmox VE development discussion List-Help: List-Owner: List-Post: List-Subscribe: List-Unsubscribe: Allows specifying custom route maps, as created in our SDN stack, to the BGP controller. This can e.g. be used for only selectively exporting routes from the default routing table via BGP instead of having to export the whole routing table. Signed-off-by: Stefan Hanreich --- src/PVE/Network/SDN/Controllers/BgpPlugin.pm | 30 +++++++++++++++++--- 1 file changed, 26 insertions(+), 4 deletions(-) diff --git a/src/PVE/Network/SDN/Controllers/BgpPlugin.pm b/src/PVE/Network/SDN/Controllers/BgpPlugin.pm index d54c9ec..d68db40 100644 --- a/src/PVE/Network/SDN/Controllers/BgpPlugin.pm +++ b/src/PVE/Network/SDN/Controllers/BgpPlugin.pm @@ -52,6 +52,8 @@ sub options { 'ebgp' => { optional => 1 }, 'ebgp-multihop' => { optional => 1 }, 'loopback' => { optional => 1 }, + 'route-map-in' => { optional => 1 }, + 'route-map-out' => { optional => 1 }, }; } @@ -111,12 +113,19 @@ sub generate_frr_config { my $mask = Net::IP::ip_is_ipv6($ifaceip) ? "128" : "32"; my $af_key = "${ipversion}_unicast"; + my $bgp_neighbor = { + name => "BGP", + soft_reconfiguration_inbound => 1, + }; + + $bgp_neighbor->{route_map_in} = $plugin_config->{'route-map-in'} + if $plugin_config->{'route-map-in'}; + $bgp_neighbor->{route_map_out} = $plugin_config->{'route-map-out'} + if $plugin_config->{'route-map-out'}; + $bgp_router->{address_families}->{$af_key} //= { networks => [], - neighbors => [{ - name => "BGP", - soft_reconfiguration_inbound => 1, - }], + neighbors => [$bgp_neighbor], }; push @{ $bgp_router->{address_families}->{$af_key}->{networks} }, "$ifaceip/$mask" @@ -181,6 +190,19 @@ sub on_update_hook { $controllernb++; die "only 1 bgp controller can be defined" if $controllernb > 1; } + + my $controller = $controller_cfg->{ids}->{$controllerid}; + my $route_map_config = PVE::Network::SDN::RouteMaps::config(0); + + if ($controller->{'route-map-in'}) { + my $entries = $route_map_config->list_route_map($controller->{'route-map-in'}); + die "route map $controller->{'route-map-in'} does not exist!" if !$entries->%*; + } + + if ($controller->{'route-map-out'}) { + my $entries = $route_map_config->list_route_map($controller->{'route-map-out'}); + die "route map $controller->{'route-map-out'} does not exist!" if !$entries->%*; + } } 1; -- 2.47.3