1
23.7 Legacy Series / BGP FRR can't announce /48 without hack ?
« on: September 19, 2023, 10:43:10 pm »
I'm using FRR to announce BGP to my upstream provider and I'm not sure whether I'm missing something or it is the way it is.
The thing is FRR is blocking any announcement defined at "Routing -> BGP -> General -> Network" if there is no route for it on the firewall, but there are only routes for smaller networks e.g. /56-64 on it so If a /40-48 is defined it simply is not announced.
Since upstream providers only accept anything >=/48 this breaks everything.
I can bypass it by setting a /48 null route via "System -> Routes" on OPNsense which makes FRR announce the /48 but it feels like a hack.
The thing is FRR is blocking any announcement defined at "Routing -> BGP -> General -> Network" if there is no route for it on the firewall, but there are only routes for smaller networks e.g. /56-64 on it so If a /40-48 is defined it simply is not announced.
Since upstream providers only accept anything >=/48 this breaks everything.
I can bypass it by setting a /48 null route via "System -> Routes" on OPNsense which makes FRR announce the /48 but it feels like a hack.