session (Origin Validation for BGP)
Syntax
session server-ip-address {
database <database-name>;
hold-time seconds;
local-address local-ip-address;
port port-number;
preference number;
record-lifetime seconds;
refresh-time seconds;
traceoptions {
file filename <files number> <size size> <(world-readable | no-world-readable)>;
flag flag {
disable;
flag-modifier;
}
}
Hierarchy Level
[edit logical-systems logical-system-name routing-instances instance-name routing-options validation group group-name], [edit logical-systems logical-system-name routing-options validation group group-name], [edit routing-instances instance-name routing-options validation group group-name], [edit routing-options validation group group-name]
Description
Configure a TCP session with a resource public key infrastructure (RPKI) cache server. The router-to-cache transport protocol is carried using a TCP session to a configurable port. Caches are organized in groups. The Junos OS implementation supports up to 63 sessions per group and both IPv4 and IPv6 address families.
The maximum number of sessions in a group is two, by default,
and is configurable. If the number of sessions in a group exceeds
the max-sessions value, the connections are established
in order by preference value. A numerically higher preference
results in a higher probability for session establishment. The order
of session establishment is random among sessions with equal preferences.
Options
| server-ip-address |
Specify the IP address of the RPKI cache server. |
database database-name |
Specify a named validation database. |
| hold-time seconds |
Specify the length of time in seconds that the session between the routing device and the RPKI cache server is to be considered operational without any activity. After the hold time expires, the session is dropped. Receiving any protocol data unit (PDU) from the cache server resets the
hold timer. The hold time must be configured to be at least twice the
value configured on the
|
| local-address local-ip-address |
Configure a local IP address of the session to be used for the outgoing connection to the RPKI cache server. If the local cache server has inbound firewall filtering, it might be necessary to specify a local IP address to use for this session. |
| port port-number |
Configure an alternative TCP port number to be used for the outgoing connection to the cache server. The well-known resource public key infrastructure (RPKI) port is TCP port 2222. For a given deployment, an RPKI cache server might listen on some other TCP port number. If so, configure the alternative port number with this statement.
|
| preference number |
Configure the preference number for the RPKI cache server. Each cache server has a static preference. Higher preferences are preferred. During a session start or restart, the device attempts to start a session with the cache server that has the numerically highest preference. The device connects to multiple cache servers in preference order.
|
| record-lifetime seconds |
Configure the amount of time that route validation (RV) records learned from an RPKI cache server remain valid after the session to the cache server goes down. RV records expire if the session to the cache server goes down and remains down for the time configured.
|
| refresh-time seconds |
Configure a liveliness check interval for a configured resource public
key infrastructure (RPKI) cache server. After every period of time
configured on the
|
The remaining statement is explained separately. See CLI Explorer.
Required Privilege Level
routing—To view this statement in the configuration.
routing-control—To add this statement to the configuration.
Release Information
Statement introduced in Junos OS Release 12.2.