set prefsrc for local traffic

filters/ebgp.conf

@@ -7,6 +7,9 @@ filter ebgp_import_v6
 {
 	rej = false;
 
+	# Make sure we dont use peering IPs for originating traffic
+	krt_prefsrc = 2a09:11c0:200::14;
+
 	if is_rpki_invalid_v6() then
 		rej = true;
 

protocols/ripe-rcc.conf

@@ -1,3 +1,5 @@
+include "/var/lib/bird/ripe_rcc_beacons.conf";
+
 template bgp ripe_rcc_v4 {
 	local 80.81.196.155 as 207613;
 	neighbor as 12654;
@@ -5,7 +7,7 @@ template bgp ripe_rcc_v4 {
 	ipv4 {
 		table ebgp_v4;
 
-		import all;
+		import where net ~ ripe_rcc_beacons_v4;
 		export none;# !!!! our ebgp_v4 table is bogus !!!!
 	};
 }
@@ -17,7 +19,7 @@ template bgp ripe_rcc_v6 {
 	ipv6 {
 		table ebgp_v6;
 
-		import all;
+		import all where net ~ ripe_rcc_beacons_v6;
 		export all;
 	};
 }

update.sh

@@ -9,5 +9,8 @@ icvpn-scripts/mkroa -s icvpn-meta > /var/lib/bird/icvpn_roa.conf
 curl -sfSLR {-o,-z}/var/lib/bird/bird_roa_dn42_v4.conf https://dn42.burble.com/roa/dn42_roa_bird2_4.conf
 curl -sfSLR {-o,-z}/var/lib/bird/bird_roa_dn42_v6.conf https://dn42.burble.com/roa/dn42_roa_bird2_6.conf
 
+bgpq3 -b -3 -4 AS12654:RS-RIS -l ripe_rcc_beacons_v4 >  /var/lib/bird/ripe_rcc_beacons.conf
+bgpq3 -b -3 -6 AS12654:RS-RIS -l ripe_rcc_beacons_v6 >> /var/lib/bird/ripe_rcc_beacons.conf
+
 # Maybe do a 'birdc configure check' before?
 birdc configure