T4817 added support for RFC 9234

4 files changed, 53 insertions, 0 deletions

diff --git a/data/templates/frr/bgpd.frr.j2 b/data/templates/frr/bgpd.frr.j2
index 85c3339bf..18192deef 100644
--- a/data/templates/frr/bgpd.frr.j2
+++ b/data/templates/frr/bgpd.frr.j2
@@ -9,6 +9,11 @@
 {% if config.remote_as is vyos_defined %}
  neighbor {{ neighbor }} remote-as {{ config.remote_as }}
 {% endif %}
+{% if config.local_role is vyos_defined %}	
+{%     for role, strict in config.local_role.items() %}	
+ neighbor {{ neighbor }} local-role {{ role }} {{ 'strict-mode' if strict }}	
+{%     endfor %}	
+{% endif %}
 {% if config.interface.remote_as is vyos_defined %}
  neighbor {{ neighbor }} interface remote-as {{ config.interface.remote_as }}
 {% endif %}
diff --git a/interface-definitions/include/bgp/neighbor-local-role.xml.i b/interface-definitions/include/bgp/neighbor-local-role.xml.i
new file mode 100644
index 000000000..3f15802b1
--- /dev/null
+++ b/interface-definitions/include/bgp/neighbor-local-role.xml.i
@@ -0,0 +1,42 @@
+<!-- include start from bgp/neigbhor-local-role.xml.i -->
+<tagNode name="local-role">
+  <properties>
+    <help>Local role for this bgp session.</help>
+    <completionHelp>
+      <list>customer peer provider rs-client rs-server</list>
+    </completionHelp>
+    <valueHelp>
+      <format>customer</format>
+      <description>Using Transit</description>
+    </valueHelp>
+    <valueHelp>
+      <format>peer</format>
+      <description>Public/Private Peering</description>
+    </valueHelp>
+    <valueHelp>
+      <format>provider</format>
+      <description>Providing Transit</description>
+    </valueHelp>
+    <valueHelp>
+      <format>rs-client</format>
+      <description>RS Client</description>
+    </valueHelp>
+    <valueHelp>
+      <format>rs-server</format>
+      <description>Route Server</description>
+    </valueHelp>
+    <constraint>
+      <regex>(provider|rs-server|rs-client|customer|peer)</regex>
+    </constraint>
+    <constraintErrorMessage>Invalid Option</constraintErrorMessage>
+  </properties>
+  <children>
+    <leafNode name="strict">
+      <properties>
+        <help>Your neighbor must send you Capability with the value of his role. Otherwise, a Role Mismatch Notification will be sent.</help>
+        <valueless/>
+      </properties>
+    </leafNode>
+  </children>
+</tagNode>
+<!-- include end -->
diff --git a/interface-definitions/include/bgp/protocol-common-config.xml.i b/interface-definitions/include/bgp/protocol-common-config.xml.i
index 366630f78..d88c29276 100644
--- a/interface-definitions/include/bgp/protocol-common-config.xml.i
+++ b/interface-definitions/include/bgp/protocol-common-config.xml.i
@@ -1004,6 +1004,7 @@
       </properties>
     </leafNode>
     #include <include/bgp/remote-as.xml.i>
+    #include <include/bgp/neighbor-local-role.xml.i>
     #include <include/bgp/neighbor-shutdown.xml.i>
     <leafNode name="solo">
       <properties>
diff --git a/src/conf_mode/protocols_bgp.py b/src/conf_mode/protocols_bgp.py
index c410258ee..4f05957fa 100755
--- a/src/conf_mode/protocols_bgp.py
+++ b/src/conf_mode/protocols_bgp.py
@@ -235,6 +235,11 @@ def verify(bgp):
                     raise ConfigError(f'Specified peer-group "{peer_group}" for '\
                                       f'neighbor "{neighbor}" does not exist!')
 
+            if 'local_role' in peer_config:
+                #Ensure Local Role has only one value.
+                if len(peer_config['local_role']) > 1:
+                    raise ConfigError(f'Only one local role can be specified for peer "{peer}"!')
+
             if 'local_as' in peer_config:
                 if len(peer_config['local_as']) > 1:
                     raise ConfigError(f'Only one local-as number can be specified for peer "{peer}"!')