be01c710e4e9e34971c3ceccf3f324b9baf66f66
howto/Bird2.md
| ... | ... | @@ -167,13 +167,7 @@ include "/etc/bird/peers/*"; |
| 167 | 167 | |
| 168 | 168 | # Route Origin Authorization |
| 169 | 169 | |
| 170 | -He example config above relies on ROA configuration files in `/etc/bird/roa_dn42{,_v6}.conf`. These should be automatically downloaded and updated every so often to prevent BGP highjacking, which can be achieved using a simple cronjob: |
|
| 171 | - |
|
| 172 | - */15 * * * * root curl -sfSLR {-o,-z}/etc/bird/roa_dn42_v6.conf https://dn42.tech9.io/roa/bird6_roa_dn42.conf && curl -sfSLR {-o,-z}/etc/bird/roa_dn42.conf https://dn42.tech9.io/roa/bird_roa_dn42.conf && sed -i 's/roa/route/g' /etc/bird/roa_dn42{,_v6}.conf && birdc configure |
|
| 173 | - |
|
| 174 | -Also make sure the /etc/bird directory exists: |
|
| 175 | - |
|
| 176 | - # mkdir -p /etc/bird |
|
| 170 | +He example config above relies on ROA configuration files in `/etc/bird/roa_dn42{,_v6}.conf`. These should be automatically downloaded and updated every so often to prevent BGP highjacking, see the bird1 page for more details and links to the ROA files. |
|
| 177 | 171 | |
| 178 | 172 | # Setting up peers |
| 179 | 173 |