From e083cb2d0d0f77d1632a3598548d4c22dea24720 Mon Sep 17 00:00:00 2001
From: Steffen Vogel <post@steffenvogel.de>
Date: Mon, 20 Apr 2020 16:11:20 +0200
Subject: [PATCH] add import filter for RIPE RCCs

---
 protocols/ripe-rcc.conf | 6 ++++--
 update.sh               | 3 +++
 2 files changed, 7 insertions(+), 2 deletions(-)

diff --git a/protocols/ripe-rcc.conf b/protocols/ripe-rcc.conf
index fb52407..a920584 100644
--- a/protocols/ripe-rcc.conf
+++ b/protocols/ripe-rcc.conf
@@ -1,3 +1,5 @@
+include "/var/lib/bird/ripe_rcc_beacons.conf";
+
 template bgp ripe_rcc_v4 {
 	local 80.81.196.155 as 207613;
 	neighbor as 12654;
@@ -5,7 +7,7 @@ template bgp ripe_rcc_v4 {
 	ipv4 {
 		table ebgp_v4;
 
-		import all;
+		import where net ~ ripe_rcc_beacons_v4;
 		export none;# !!!! our ebgp_v4 table is bogus !!!!
 	};
 }
@@ -17,7 +19,7 @@ template bgp ripe_rcc_v6 {
 	ipv6 {
 		table ebgp_v6;
 
-		import all;
+		import all where net ~ ripe_rcc_beacons_v6;
 		export all;
 	};
 }
diff --git a/update.sh b/update.sh
index 75b1f2f..5679bd1 100644
--- a/update.sh
+++ b/update.sh
@@ -9,5 +9,8 @@ icvpn-scripts/mkroa -s icvpn-meta > /var/lib/bird/icvpn_roa.conf
 curl -sfSLR {-o,-z}/var/lib/bird/bird_roa_dn42_v4.conf https://dn42.burble.com/roa/dn42_roa_bird2_4.conf
 curl -sfSLR {-o,-z}/var/lib/bird/bird_roa_dn42_v6.conf https://dn42.burble.com/roa/dn42_roa_bird2_6.conf
 
+bgpq3 -b -3 -4 AS12654:RS-RIS -l ripe_rcc_beacons_v4 >  /var/lib/bird/ripe_rcc_beacons.conf
+bgpq3 -b -3 -6 AS12654:RS-RIS -l ripe_rcc_beacons_v6 >> /var/lib/bird/ripe_rcc_beacons.conf
+
 # Maybe do a 'birdc configure check' before?
 birdc configure