bgpd.conf
! <YOUR_ROUTER_NAME>:
! e.g. teeda-gw
! <YOUR_AS_NUMBER>
! e.g. 64512 (or choose your favorite AS number)
! <YOUR_IPV4_ADDRESS>
! Your router's global unique IPv4 address.
! <YOUR_IPv6_PREFIX>
! Your global unique IPv6 prefix.
! e.g. 2001:5c0:9d61::/48
! <IF_NAME>
! The interface name used to peer.
!
! To establish new BGP peer, follow the below step:
! conf t
! router bgp <YOUR_AS_NUMBER>
! neighbor <PEER_IPV6_ADDRESS> remote-as <PEER_AS_NUMBER>
!
! NOTE: If <PEER_IPV6_ADDRESS> is link-local address, you have to add a following line.
! neighbor <PEER_IPV6_ADDRESS> interface <IF_NAME>
!
! neighbor <PEER_IPV6_ADDRESS> shutdown
! address-family ipv6
! neighbor <PEER_IPV6_ADDRESS> peer-group peer
! exit address-family ipv6
! no neighbor <PEER_IPV6_ADDRESS> shutdown
! end
!
! Issue 'show ipv bgp sum', and check your BGP peers.
!
! show ipv bgp nei <PEER_IPV6_ADDRESS> rec
! - check what your router recieved routes from the peer.
!
! show ipv bgp nei <PEER_IPV6_ADDRESS> ad
! - check what you advertise routes to the peer.
!
! clear bgp <PEER_IPV6_ADDRESS>
! - re-establish BGP peer
!
! clear bgp <PEER_IPV6_ADDRESS>
! - re-establish BGP peer
! specify '*' as PEER_IPV6_ADDRESS to reset all peer.
!
! clear bgp <PEER_IPV6_ADDRESS> soft out
! clear bgp <PEER_IPV6_ADDRESS> soft in
! - soft reconfiguration (more graceful way to reset peer)
!
hostname <YOUR_ROUTER_NAME>-bgpd
password zebra
enable password zebra
log file /var/log/quagga/bgpd.log
! service password-encryption
!
router bgp <YOUR_AS_NUMBER>
bgp router-id <YOUR_IPV4_ADDRESS>
bgp log-neighbor-changes
no bgp default ipv4-unicast
bgp graceful-restart
neighbor peer peer-group
neighbor <PEER_IPV6_ADDRESS> remote-as <PEER_AS_NUMBER>
!
address-family ipv6
network <YOUR_IPV6_PREFIX>
neighbor peer activate
neighbor peer soft-reconfiguration inbound
neighbor peer distribute-list peer-in in
neighbor peer distribute-list peer-out out
neighbor <PEER_IPV6_ADDRESS> peer-group peer
exit-address-family
!
access-list restrict-vty permit 127.0.0.1/32
!
ipv6 access-list peer-in deny ::/0 exact-match
ipv6 access-list peer-in deny <YOUR_IPV6_PREFIX>
ipv6 access-list peer-in permit any
ipv6 access-list peer-out deny ::/0 exact-match
ipv6 access-list peer-out permit <YOUR_IPV6_PREFIX>
ipv6 access-list restrict-vty permit ::1/128
!
line vty
access-class restrict-vty
ipv6 access-class restrict-vty
!