summaryrefslogtreecommitdiffstats
path: root/doc/user/rpki.rst
diff options
context:
space:
mode:
Diffstat (limited to '')
-rw-r--r--doc/user/rpki.rst32
1 files changed, 14 insertions, 18 deletions
diff --git a/doc/user/rpki.rst b/doc/user/rpki.rst
index 76910ee..98f9b10 100644
--- a/doc/user/rpki.rst
+++ b/doc/user/rpki.rst
@@ -131,19 +131,13 @@ The following commands are available for independent of a specific cache server.
The default value is 600 seconds.
-.. clicmd:: rpki cache (A.B.C.D|WORD) PORT [SSH_USERNAME] [SSH_PRIVKEY_PATH] [KNOWN_HOSTS_PATH] [source A.B.C.D] preference (1-255)
+.. clicmd:: rpki cache tcp HOST PORT [source A.B.C.D] preference (1-255)
+ Add a TCP cache server to the socket.
- Add a cache server to the socket. By default, the connection between router
- and cache server is based on plain TCP. Protecting the connection between
- router and cache server by SSH is optional. Deleting a socket removes the
- associated cache server and terminates the existing connection.
+.. clicmd:: rpki cache ssh HOST PORT SSH_USERNAME SSH_PRIVKEY_PATH [KNOWN_HOSTS_PATH] [source A.B.C.D] preference (1-255)
- A.B.C.D|WORD
- Address of the cache server.
-
- PORT
- Port number to connect to the cache server
+ Add a SSH cache server to the socket.
SSH_USERNAME
SSH username to establish an SSH connection to the cache server.
@@ -159,7 +153,6 @@ The following commands are available for independent of a specific cache server.
source A.B.C.D
Source address of the RPKI connection to access cache server.
-
.. _validating-bgp-updates:
Validating BGP Updates
@@ -215,15 +208,18 @@ Displaying RPKI
Display RPKI configuration state including timers values.
-.. clicmd:: show rpki prefix <A.B.C.D/M|X:X::X:X/M> [(1-4294967295)] [vrf NAME] [json]
+.. clicmd:: show rpki prefix <A.B.C.D/M|X:X::X:X/M> [ASN] [vrf NAME] [json]
Display validated prefixes received from the cache servers filtered
- by the specified prefix.
+ by the specified prefix. The AS number space has been increased
+ to allow the choice of using AS 0 because RFC-7607 specifically
+ calls out the usage of 0 in a special case.
.. clicmd:: show rpki as-number ASN [vrf NAME] [json]
Display validated prefixes received from the cache servers filtered
- by ASN.
+ by ASN. The usage of AS 0 is allowed because RFC-76067 specifically
+ calls out the usage of 0 in a special case.
.. clicmd:: show rpki prefix-table [vrf NAME] [json]
@@ -264,9 +260,9 @@ RPKI Configuration Example
rpki polling_period 1000
rpki timeout 10
! SSH Example:
- rpki cache example.com 22 rtr-ssh ./ssh_key/id_rsa preference 1
+ rpki cache ssh example.com 22 rtr-ssh ./ssh_key/id_rsa preference 1
! TCP Example:
- rpki cache rpki-validator.realmv6.org 8282 preference 2
+ rpki cache tcp rpki-validator.realmv6.org 8282 preference 2
exit
!
exit-vrf
@@ -275,9 +271,9 @@ RPKI Configuration Example
rpki polling_period 1000
rpki timeout 10
! SSH Example:
- rpki cache example.com source 198.51.100.223 22 rtr-ssh ./ssh_key/id_rsa preference 1
+ rpki cache ssh example.com source 198.51.100.223 22 rtr-ssh ./ssh_key/id_rsa preference 1
! TCP Example:
- rpki cache rpki-validator.realmv6.org 8282 preference 2
+ rpki cache tcp rpki-validator.realmv6.org 8282 preference 2
exit
!
router bgp 65001