summaryrefslogtreecommitdiff
path: root/templates
diff options
context:
space:
mode:
Diffstat (limited to 'templates')
-rw-r--r--templates/policy/extcommunity-list/expanded/node.def8
-rw-r--r--templates/policy/extcommunity-list/node.def9
-rw-r--r--templates/policy/extcommunity-list/node.tag/description/node.def (renamed from templates/policy/extcommunity-list/expanded/description/node.def)0
-rw-r--r--templates/policy/extcommunity-list/node.tag/rule/node.def (renamed from templates/policy/extcommunity-list/expanded/rule/node.def)0
-rw-r--r--templates/policy/extcommunity-list/node.tag/rule/node.tag/action/node.def (renamed from templates/policy/extcommunity-list/expanded/rule/node.tag/action/node.def)0
-rw-r--r--templates/policy/extcommunity-list/node.tag/rule/node.tag/description/node.def (renamed from templates/policy/extcommunity-list/expanded/rule/node.tag/description/node.def)0
-rw-r--r--templates/policy/extcommunity-list/node.tag/rule/node.tag/regex/node.def (renamed from templates/policy/extcommunity-list/expanded/rule/node.tag/regex/node.def)0
-rw-r--r--templates/policy/extcommunity-list/standard/description/node.def2
-rw-r--r--templates/policy/extcommunity-list/standard/node.def8
-rw-r--r--templates/policy/extcommunity-list/standard/rule/node.def6
-rw-r--r--templates/policy/extcommunity-list/standard/rule/node.tag/action/node.def6
-rw-r--r--templates/policy/extcommunity-list/standard/rule/node.tag/regex/node.def7
-rw-r--r--templates/policy/large-community-list/node.def4
-rw-r--r--templates/policy/large-community-list/node.tag/rule/node.def20
-rw-r--r--templates/policy/large-community-list/node.tag/rule/node.tag/action/node.def5
-rw-r--r--templates/policy/large-community-list/node.tag/rule/node.tag/description/node.def (renamed from templates/policy/extcommunity-list/standard/rule/node.tag/description/node.def)0
-rw-r--r--templates/policy/large-community-list/node.tag/rule/node.tag/regex/node.def3
-rw-r--r--templates/policy/route-map/node.tag/rule/node.tag/match/large-community/large-community-list/node.def5
-rw-r--r--templates/policy/route-map/node.tag/rule/node.tag/match/large-community/node.def22
-rw-r--r--templates/policy/route-map/node.tag/rule/node.tag/set/ipv6-next-hop/global/node.def2
-rw-r--r--templates/policy/route-map/node.tag/rule/node.tag/set/ipv6-next-hop/local/node.def2
-rw-r--r--templates/policy/route-map/node.tag/rule/node.tag/set/large-community/node.def13
22 files changed, 80 insertions, 42 deletions
diff --git a/templates/policy/extcommunity-list/expanded/node.def b/templates/policy/extcommunity-list/expanded/node.def
deleted file mode 100644
index 95f6f003..00000000
--- a/templates/policy/extcommunity-list/expanded/node.def
+++ /dev/null
@@ -1,8 +0,0 @@
-tag:
-priority: 490
-type: txt
-help: Border Gateway Protocol (BGP) extended community-list filter
-
-syntax:expression: pattern $VAR(@) "^[a-zA-Z0-9]+$" ; "Should be alphanumeric name"
-
-end: /opt/vyatta/sbin/vyatta-policy.pl --update-community-list expanded $VAR(@)
diff --git a/templates/policy/extcommunity-list/node.def b/templates/policy/extcommunity-list/node.def
index 9676146c..fee4c402 100644
--- a/templates/policy/extcommunity-list/node.def
+++ b/templates/policy/extcommunity-list/node.def
@@ -1,7 +1,8 @@
tag:
-priority: 480
+priority: 490
type: txt
-help: Border Gateway Protocol (BGP) extended communities attribute. Usefull for implementing network policy for MPLS VPN/BGP by restricting routes according to their Route Target or Site of Origin.
-val_help: Type of extended community. standard or expanded.
+help: Border Gateway Protocol (BGP) extended community-list filter
-syntax:expression: pattern $VAR(@) "^standard|expanded$" ; "Should be either standard or expanded"
+syntax:expression: pattern $VAR(@) "^[a-zA-Z0-9]+$" ; "Should be alphanumeric name"
+
+end: /opt/vyatta/sbin/vyatta-policy.pl --update-extcommunity-list $VAR(@)
diff --git a/templates/policy/extcommunity-list/expanded/description/node.def b/templates/policy/extcommunity-list/node.tag/description/node.def
index 7a660be4..7a660be4 100644
--- a/templates/policy/extcommunity-list/expanded/description/node.def
+++ b/templates/policy/extcommunity-list/node.tag/description/node.def
diff --git a/templates/policy/extcommunity-list/expanded/rule/node.def b/templates/policy/extcommunity-list/node.tag/rule/node.def
index 7826f33d..7826f33d 100644
--- a/templates/policy/extcommunity-list/expanded/rule/node.def
+++ b/templates/policy/extcommunity-list/node.tag/rule/node.def
diff --git a/templates/policy/extcommunity-list/expanded/rule/node.tag/action/node.def b/templates/policy/extcommunity-list/node.tag/rule/node.tag/action/node.def
index db4bdbc6..db4bdbc6 100644
--- a/templates/policy/extcommunity-list/expanded/rule/node.tag/action/node.def
+++ b/templates/policy/extcommunity-list/node.tag/rule/node.tag/action/node.def
diff --git a/templates/policy/extcommunity-list/expanded/rule/node.tag/description/node.def b/templates/policy/extcommunity-list/node.tag/rule/node.tag/description/node.def
index b8e3095b..b8e3095b 100644
--- a/templates/policy/extcommunity-list/expanded/rule/node.tag/description/node.def
+++ b/templates/policy/extcommunity-list/node.tag/rule/node.tag/description/node.def
diff --git a/templates/policy/extcommunity-list/expanded/rule/node.tag/regex/node.def b/templates/policy/extcommunity-list/node.tag/rule/node.tag/regex/node.def
index fae3784c..fae3784c 100644
--- a/templates/policy/extcommunity-list/expanded/rule/node.tag/regex/node.def
+++ b/templates/policy/extcommunity-list/node.tag/rule/node.tag/regex/node.def
diff --git a/templates/policy/extcommunity-list/standard/description/node.def b/templates/policy/extcommunity-list/standard/description/node.def
deleted file mode 100644
index 7a660be4..00000000
--- a/templates/policy/extcommunity-list/standard/description/node.def
+++ /dev/null
@@ -1,2 +0,0 @@
-type: txt
-help: Description for this community list
diff --git a/templates/policy/extcommunity-list/standard/node.def b/templates/policy/extcommunity-list/standard/node.def
deleted file mode 100644
index aec1edcd..00000000
--- a/templates/policy/extcommunity-list/standard/node.def
+++ /dev/null
@@ -1,8 +0,0 @@
-tag:
-priority: 485
-type: txt
-help: Border Gateway Protocol (BGP) extended community-list filter
-
-syntax:expression: pattern $VAR(@) "^[a-zA-Z0-9]+$" ; "Should be alphanumeric name"
-
-end: /opt/vyatta/sbin/vyatta-policy.pl --update-community-list standard $VAR(@)
diff --git a/templates/policy/extcommunity-list/standard/rule/node.def b/templates/policy/extcommunity-list/standard/rule/node.def
deleted file mode 100644
index 7826f33d..00000000
--- a/templates/policy/extcommunity-list/standard/rule/node.def
+++ /dev/null
@@ -1,6 +0,0 @@
-tag:
-type: u32
-help: create a rule for this BGP extended community list
-val_help: u32:1-65535; Extended community-list rule number
-
-syntax:expression: $VAR(@) >= 1 && $VAR(@) <= 65535; "rule number must be between 1 and 65535"
diff --git a/templates/policy/extcommunity-list/standard/rule/node.tag/action/node.def b/templates/policy/extcommunity-list/standard/rule/node.tag/action/node.def
deleted file mode 100644
index db4bdbc6..00000000
--- a/templates/policy/extcommunity-list/standard/rule/node.tag/action/node.def
+++ /dev/null
@@ -1,6 +0,0 @@
-type: txt
-help: Action to take on routes matching this rule [REQUIRED]
-val_help: permit; Permit matching routes
-val_help: deny; Deny matching routes
-
-syntax:expression: $VAR(@) in "permit", "deny"; "action must be permit or deny"
diff --git a/templates/policy/extcommunity-list/standard/rule/node.tag/regex/node.def b/templates/policy/extcommunity-list/standard/rule/node.tag/regex/node.def
deleted file mode 100644
index 36dd9954..00000000
--- a/templates/policy/extcommunity-list/standard/rule/node.tag/regex/node.def
+++ /dev/null
@@ -1,7 +0,0 @@
-type: txt
-help: Extended community value. Should be either AS:VAL or IP-Address:VAL
-val_help: Community list regular expression
-
-syntax:expression: pattern $VAR(@) "^([0-9]*)|([0-9]{1-3}\.[0-9]{1-3}\.[0-9]{1-3}\.[0-9]{1-3}):[0-9]*$"
-
-commit:expression: $VAR(../action/@) != ""; "You must specify an action"
diff --git a/templates/policy/large-community-list/node.def b/templates/policy/large-community-list/node.def
new file mode 100644
index 00000000..61687d47
--- /dev/null
+++ b/templates/policy/large-community-list/node.def
@@ -0,0 +1,4 @@
+tag:
+priority: 470
+type: txt
+help: Border Gateway Protocol (BGP) large-community-list filter
diff --git a/templates/policy/large-community-list/node.tag/rule/node.def b/templates/policy/large-community-list/node.tag/rule/node.def
new file mode 100644
index 00000000..cdea7e30
--- /dev/null
+++ b/templates/policy/large-community-list/node.tag/rule/node.def
@@ -0,0 +1,20 @@
+tag:
+type: u32
+help: create a rule for this BGP large-community list
+val_help: u32:1-65535; large-community-list rule number
+
+syntax:expression: $VAR(@) >= 1 && $VAR(@) <= 65535; "rule number must be between 1 and 65535"
+
+commit:expression: $VAR(./regex/) != ""; "You must specify a regex"
+commit:expression: $VAR(./action/) != ""; "You must specify an action"
+
+end:
+ # If the rule exists in the running config
+ if cli-shell-api existsActive policy large-community-list $VAR(../@) rule $VAR(@); then
+ orig_action=$(cli-shell-api returnActiveValue policy large-community-list $VAR(../@) rule $VAR(@) action)
+ orig_regex=$(cli-shell-api returnActiveValue policy large-community-list $VAR(../@) rule $VAR(@) regex)
+ vtysh -c "configure terminal" -c "no ip large-community-list expanded $VAR(../@) $orig_action $VAR(@) regex $orig_regex"
+ fi
+ if [[ ${COMMIT_ACTION} != 'DELETE' ]]; then
+ vtysh -c "configure terminal" -c "ip large-community-list expanded $VAR(../@) $VAR(./action/@) $VAR(@) regex $VAR(./regex/@)"
+ fi
diff --git a/templates/policy/large-community-list/node.tag/rule/node.tag/action/node.def b/templates/policy/large-community-list/node.tag/rule/node.tag/action/node.def
new file mode 100644
index 00000000..b965bccf
--- /dev/null
+++ b/templates/policy/large-community-list/node.tag/rule/node.tag/action/node.def
@@ -0,0 +1,5 @@
+type: txt
+help: Action to take on communities matching this rule [REQUIRED]
+val_help: permit; Permit matching communities
+val_help: deny; Deny matching communities
+syntax:expression: $VAR(@) in "permit", "deny"; "action must be permit or deny"
diff --git a/templates/policy/extcommunity-list/standard/rule/node.tag/description/node.def b/templates/policy/large-community-list/node.tag/rule/node.tag/description/node.def
index b8e3095b..b8e3095b 100644
--- a/templates/policy/extcommunity-list/standard/rule/node.tag/description/node.def
+++ b/templates/policy/large-community-list/node.tag/rule/node.tag/description/node.def
diff --git a/templates/policy/large-community-list/node.tag/rule/node.tag/regex/node.def b/templates/policy/large-community-list/node.tag/rule/node.tag/regex/node.def
new file mode 100644
index 00000000..2a820bc6
--- /dev/null
+++ b/templates/policy/large-community-list/node.tag/rule/node.tag/regex/node.def
@@ -0,0 +1,3 @@
+type: txt
+help: Regular expression to match against a community list
+val_help: Community list regular expression
diff --git a/templates/policy/route-map/node.tag/rule/node.tag/match/large-community/large-community-list/node.def b/templates/policy/route-map/node.tag/rule/node.tag/match/large-community/large-community-list/node.def
new file mode 100644
index 00000000..5e35214d
--- /dev/null
+++ b/templates/policy/route-map/node.tag/rule/node.tag/match/large-community/large-community-list/node.def
@@ -0,0 +1,5 @@
+type: txt
+help: BGP large-community-list to match
+allowed: cli-shell-api listNodes policy large-community-list
+
+commit:expression: exec "cli-shell-api exists policy large-community-list $VAR(./@)"; "Large community list $VAR(./@) does not exist"
diff --git a/templates/policy/route-map/node.tag/rule/node.tag/match/large-community/node.def b/templates/policy/route-map/node.tag/rule/node.tag/match/large-community/node.def
new file mode 100644
index 00000000..609f8d76
--- /dev/null
+++ b/templates/policy/route-map/node.tag/rule/node.tag/match/large-community/node.def
@@ -0,0 +1,22 @@
+help: Match BGP large communities
+delete: echo route-map $VAR(../../../@) $VAR(../../action/@) $VAR(../../@) >> /tmp/delete-policy-route-map-$VAR(../../../@)-$VAR(../../@)-match-large-community.$PPID
+end: if [ -f /tmp/delete-policy-route-map-$VAR(../../../@)-$VAR(../../@)-match-large-community.$PPID ]; then
+ routemap=`cat /tmp/delete-policy-route-map-$VAR(../../../@)-$VAR(../../@)-match-large-community.$PPID`
+ rm -f /tmp/delete-policy-route-map-$VAR(../../../@)-$VAR(../../@)-match-large-community.$PPID;
+ vtysh --noerror -c "configure terminal" -c "$routemap " -c "no match large-community";
+ exit 0;
+ else
+ if [ -z "$VAR(./large-community-list/@)" ]; then
+ echo route-map $VAR(../../../@) rule $VAR(../../@) match large-community: you must configure a community-list;
+ exit 1 ;
+ fi ;
+ if [ -z "$VAR(../../action/@)" ]; then
+ echo route-map $VAR(../../../@) rule $VAR(../../@): you must configure an action;
+ exit 1 ;
+ fi ;
+ routemap='route-map $VAR(../../../@) $VAR(../../action/@) $VAR(../../@)';
+
+ vtysh --noerror -c "configure terminal" -c "$routemap " -c "no match large-community";
+ vtysh -c "configure terminal" -c "$routemap " -c "match large-community $VAR(./large-community-list/@)";
+ fi
+
diff --git a/templates/policy/route-map/node.tag/rule/node.tag/set/ipv6-next-hop/global/node.def b/templates/policy/route-map/node.tag/rule/node.tag/set/ipv6-next-hop/global/node.def
index 9d52bf4f..b7305d8e 100644
--- a/templates/policy/route-map/node.tag/rule/node.tag/set/ipv6-next-hop/global/node.def
+++ b/templates/policy/route-map/node.tag/rule/node.tag/set/ipv6-next-hop/global/node.def
@@ -11,4 +11,4 @@ update: vtysh -c "configure terminal" \
delete: vtysh -c "configure terminal" \
-c "route-map $VAR(../../../../@) $VAR(../../../action/@) $VAR(../../../@)" \
- -c "no set ipv6 next-hop global"
+ -c "no set ipv6 next-hop global $VAR(@)"
diff --git a/templates/policy/route-map/node.tag/rule/node.tag/set/ipv6-next-hop/local/node.def b/templates/policy/route-map/node.tag/rule/node.tag/set/ipv6-next-hop/local/node.def
index 34eaccfc..0f83beb3 100644
--- a/templates/policy/route-map/node.tag/rule/node.tag/set/ipv6-next-hop/local/node.def
+++ b/templates/policy/route-map/node.tag/rule/node.tag/set/ipv6-next-hop/local/node.def
@@ -2,6 +2,8 @@ type: ipv6
help: Nexthop IPv6 local address
val_help: IPv6 address
+syntax:expression: exec "ipaddrcheck --is-ipv6-link-local $VAR(@) || echo $VAR(@) is not a valid IPv6 link-local adddress"
+
# TODO: can also set to peer for BGP
commit:expression: $VAR(../../../action/) != ""; "you must specify an action"
diff --git a/templates/policy/route-map/node.tag/rule/node.tag/set/large-community/node.def b/templates/policy/route-map/node.tag/rule/node.tag/set/large-community/node.def
new file mode 100644
index 00000000..2031a96d
--- /dev/null
+++ b/templates/policy/route-map/node.tag/rule/node.tag/set/large-community/node.def
@@ -0,0 +1,13 @@
+type: txt
+help: Set BGP large community value
+val_help: ASN:nn:mm BGP large community
+commit:expression: $VAR(../../action/) != ""; "you must specify an action"
+
+update: vtysh -c "configure terminal" \
+ -c "route-map $VAR(../../../@) $VAR(../../action/@) $VAR(../../@)" \
+ -c "set large-community $VAR(@)"
+
+delete: vtysh -c "configure terminal" \
+ -c "route-map $VAR(../../../@) $VAR(../../action/@) $VAR(../../@)" \
+ -c "no set large-community $VAR(@)"
+
generated by cgit v1.2.3 (git 2.39.1) at 2025-03-26 04:08:02 +0000