RPKI AS0 Slurm file generator for bogons
Project description
rpki-as0-bogons
SLURM file generator for bogons with AS0 as origin.
This script generates a JSON file compatible with RFC8416 to be used for a local validator.
The script takes bogon files from the Team Cymru Bogon Reference and turns them into a SLURM file. All the networks are added to the SLURM file with origin: AS0 and with a default MaxPrefix of 32 for IPv4 and 128 for IPv6.
Once loaded in a validator, this file will suggest the validating software to create "fake" ROAs for these networks. If your network performs origin validation and applies "Invalid: Reject" policies, any BGP announcement of these networks coming from your peers or upstreams should be discarded.
Installation
You can find the software on PyPi, so you can install it easily via pip.
# pip3 install rpki-as0-bogon
Usage
usage: rpki-as0-bogons [-h] [-f DEST_FILE]
A script to generate a SLURM file for all bogons with origin AS0
optional arguments:
-h, --help show this help message and exit
-f DEST_FILE File to be created with all the SLURM content
Using it with a validator
Routinator
You should start routinator with the -x switch, providing the path to the file (the file is saved by the tool into /usr/local/etc/slurm.json)
RIPE NCC Validator 3
You can use curl to supply the file to the validator:
/usr/local/bin/curl -X POST -F "file=slurm.json" localhost:8080/api/slurm/upload
Forth
Use the --slurm option when running the software.
Recommendations
Since the bogon files are updated daily, a daily run via cron is suggested for this tool.
Project details
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Hashes for rpki_as0_bogons-0.1-py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 67d306103be0f2fcff4d2234cd709b33b3e2319e89920f979a22890a6136105e |
|
MD5 | 4bfefa1e411071e8322e3ee0de6535e0 |
|
BLAKE2b-256 | 29e91038812fd7bb4c4eb5e2f0fd5e01fe9fec0fe0c8f128d88ae4ae6a337b64 |