blob: 8b10210cef7529cd197f158e969e5470c69671e9 [file] [log] [blame]
akmhoque157b0a42014-05-13 00:26:37 -05001; the general section contains all the general settings for router
akmhoqueba094742014-02-28 11:47:21 -06002
akmhoque157b0a42014-05-13 00:26:37 -05003general
4{
Alexander Afanasyev8388ec62014-08-16 18:38:57 -07005 ; mandatory configuration command section network, site and router
akmhoqueba094742014-02-28 11:47:21 -06006
Alexander Afanasyev8388ec62014-08-16 18:38:57 -07007 network /ndn/ ; name of the network the router belongs to in ndn URI format
8 site /edu/memphis ; name of the site the router belongs to in ndn URI format
9 router /%C1.Router/cs/pollux ; name of the router in ndn URI format
akmhoque157b0a42014-05-13 00:26:37 -050010
Alexander Afanasyev8388ec62014-08-16 18:38:57 -070011 ; lsa-refresh-time is the time in seconds, after which router will refresh its LSAs
akmhoque157b0a42014-05-13 00:26:37 -050012
Alexander Afanasyev8388ec62014-08-16 18:38:57 -070013 lsa-refresh-time 1800 ; default value 1800. Valid values 240-7200
akmhoque157b0a42014-05-13 00:26:37 -050014
Alexander Afanasyev8388ec62014-08-16 18:38:57 -070015 ; log-level is to set the levels of log for NLSR
akmhoque157b0a42014-05-13 00:26:37 -050016
Alexander Afanasyev8388ec62014-08-16 18:38:57 -070017 log-level INFO ; default value INFO, valid value DEBUG, INFO
18 log-dir /var/log/nlsr/ ; path for log directory (Absolute path)
19 seq-dir /var/lib/nlsr/ ; path for sequence directory (Absolute path)
akmhoque157b0a42014-05-13 00:26:37 -050020}
21
22; the neighbors section contains the configuration for router's neighbors and hello's behavior
23
24neighbors
25{
Alexander Afanasyev8388ec62014-08-16 18:38:57 -070026 ; in case hello interest timed out, router will try 'hello-retries' times at 'hello-timeout'
27 ; seconds interval before giving up for any neighbors (deciding link is down)
akmhoque157b0a42014-05-13 00:26:37 -050028
29 hello-retries 3 ; interest retries number in integer. Default value 3
30 ; valid values 1-10
31
32 hello-timeout 1 ; interest time out value in integer. Default value 1
33 ; Valid values 1-15
34
35 hello-interval 60 ; interest sending interval in seconds. Default value 60
36 ; valid values 30-90
akmhoque157b0a42014-05-13 00:26:37 -050037
Alexander Afanasyev8388ec62014-08-16 18:38:57 -070038 ; neighbor command is used to configure router's neighbor. Each neighbor will need
39 ; one block of neighbor command
40
41 neighbor
42 {
43 name /ndn/edu/memphis/%C1.Router/cs/castor ; name prefix of the neighbor router consists
44 ; of network, site-name and router-name
45
46 face-uri udp://castor.cs.memphis.edu ; face uri of the face connected to the neighbor
47 link-cost 25 ; cost of the connecting link to neighbor
48 }
49
50 neighbor
51 {
52 name /ndn/edu/memphis/%C1.Router/cs/mira ; name prefix of the neighbor router consists
akmhoque157b0a42014-05-13 00:26:37 -050053 ; of network, site-name and router-name
54
Alexander Afanasyev8388ec62014-08-16 18:38:57 -070055 face-uri udp://mira.cs.memphis.edu ; face uri of the face connected to the neighbor
56 link-cost 30 ; cost of the connecting link to neighbor
57 }
akmhoque157b0a42014-05-13 00:26:37 -050058}
59
60; the hyperbolic section contains the configuration settings of enabling a router to calculate
61; routing table using [hyperbolic routing table calculation](http://arxiv.org/abs/0805.1266) method
62
63hyperbolic
64{
Alexander Afanasyev8388ec62014-08-16 18:38:57 -070065 ; commands in this section follows a strict order
66 ; the switch is used to set hyperbolic routing calculation in NLSR
akmhoque157b0a42014-05-13 00:26:37 -050067
Alexander Afanasyev8388ec62014-08-16 18:38:57 -070068 state off ; default value 'off', set value 'on' to enable hyperbolic routing table
69 ; calculation which turns link state routing 'off'. set value to 'dry-run"
70 ; to test hyperbolic routing and compare with link state routing.
akmhoqueba094742014-02-28 11:47:21 -060071
72
Alexander Afanasyev8388ec62014-08-16 18:38:57 -070073 radius 123.456 ; radius of the router in hyperbolic coordinate system
74 angle 1.45 ; angle of the router in hyperbolic coordinate system
akmhoque157b0a42014-05-13 00:26:37 -050075}
76
77
78; the fib section is used to configure fib entry's type to ndn FIB updated by NLSR
79
80fib
81{
Alexander Afanasyev8388ec62014-08-16 18:38:57 -070082 ; the max-faces-per-prefix is used to limit the number of faces for each name prefixes
83 ; by NLSR in ndn FIB
akmhoque157b0a42014-05-13 00:26:37 -050084
Alexander Afanasyev8388ec62014-08-16 18:38:57 -070085 max-faces-per-prefix 3 ; default value 0. Valid value 0-60. By default (value 0) NLSR adds
86 ; all available faces for each reachable name prefixes in NDN FIB
akmhoque157b0a42014-05-13 00:26:37 -050087}
88
Yingdi Yu20e3a6e2014-05-26 23:16:10 -070089; the advertising section contains the configuration settings of the name prefixes
akmhoque157b0a42014-05-13 00:26:37 -050090; hosted by this router
91
92advertising
93{
Alexander Afanasyev8388ec62014-08-16 18:38:57 -070094 ; the ndnname is used to advertised name from the router. To advertise each name prefix
95 ; configure one block of ndnname configuration command for every name prefix.
akmhoque157b0a42014-05-13 00:26:37 -050096
Alexander Afanasyev8388ec62014-08-16 18:38:57 -070097 prefix /ndn/edu/memphis/cs/netlab ; name in ndn URI format
98 prefix /ndn/edu/memphis/sports/basketball
Yingdi Yu20e3a6e2014-05-26 23:16:10 -070099}
100
101security
102{
103 validator
104 {
105 rule
106 {
107 id "NSLR Hello Rule"
108 for data
109 filter
110 {
111 type name
akmhoque93f1a072014-06-19 16:24:28 -0500112 regex ^[^<NLSR><INFO>]*<NLSR><INFO><><>$
Yingdi Yu20e3a6e2014-05-26 23:16:10 -0700113 }
114 checker
115 {
116 type customized
117 sig-type rsa-sha256
118 key-locator
119 {
120 type name
121 hyper-relation
122 {
123 k-regex ^([^<KEY><NLSR>]*)<NLSR><KEY><ksk-.*><ID-CERT>$
Yingdi Yu6a3a4dd2014-06-20 14:10:39 -0700124 k-expand \\1
Yingdi Yu20e3a6e2014-05-26 23:16:10 -0700125 h-relation equal
akmhoque93f1a072014-06-19 16:24:28 -0500126 p-regex ^([^<NLSR><INFO>]*)<NLSR><INFO><><>$
Yingdi Yu20e3a6e2014-05-26 23:16:10 -0700127 p-expand \\1
128 }
129 }
130 }
131 }
132
133 rule
134 {
135 id "NSLR LSA Rule"
136 for data
137 filter
138 {
139 type name
akmhoquea816bee2014-06-24 14:37:40 -0500140 regex ^[^<NLSR><LSA>]*<NLSR><LSA>
Yingdi Yu20e3a6e2014-05-26 23:16:10 -0700141 }
142 checker
143 {
144 type customized
145 sig-type rsa-sha256
146 key-locator
147 {
148 type name
149 hyper-relation
150 {
151 k-regex ^([^<KEY><NLSR>]*)<NLSR><KEY><ksk-.*><ID-CERT>$
Yingdi Yu6a3a4dd2014-06-20 14:10:39 -0700152 k-expand \\1
Yingdi Yu20e3a6e2014-05-26 23:16:10 -0700153 h-relation equal
akmhoque50125a92014-06-30 08:54:17 -0500154 p-regex ^([^<NLSR><LSA>]*)<NLSR><LSA>(<>*)<><><>$
Yingdi Yu20e3a6e2014-05-26 23:16:10 -0700155 p-expand \\1\\2
156 }
157 }
158 }
159 }
160
161 rule
162 {
163 id "NSLR Hierarchy Exception Rule"
164 for data
165 filter
166 {
167 type name
akmhoquecc827532014-07-09 08:48:49 -0500168 regex ^[^<KEY><%C1.Router>]*<%C1.Router>[^<KEY><NLSR>]*<KEY><ksk-.*><ID-CERT><>$
Yingdi Yu20e3a6e2014-05-26 23:16:10 -0700169 }
170 checker
171 {
172 type customized
173 sig-type rsa-sha256
174 key-locator
175 {
176 type name
177 hyper-relation
178 {
akmhoquecc827532014-07-09 08:48:49 -0500179 k-regex ^([^<KEY><%C1.Operator>]*)<%C1.Operator>[^<KEY>]*<KEY><ksk-.*><ID-CERT>$
Yingdi Yu20e3a6e2014-05-26 23:16:10 -0700180 k-expand \\1
181 h-relation equal
akmhoquecc827532014-07-09 08:48:49 -0500182 p-regex ^([^<KEY><%C1.Router>]*)<%C1.Router>[^<KEY>]*<KEY><ksk-.*><ID-CERT><>$
Yingdi Yu20e3a6e2014-05-26 23:16:10 -0700183 p-expand \\1
184 }
185 }
186 }
187 }
188
189 rule
190 {
191 id "NSLR Hierarchical Rule"
192 for data
193 filter
194 {
195 type name
196 regex ^[^<KEY>]*<KEY><ksk-.*><ID-CERT><>$
197 }
198 checker
199 {
200 type hierarchical
201 sig-type rsa-sha256
202 }
203 }
204
205 trust-anchor
206 {
207 type file
208 file-name "root.cert"
209 }
210 }
akmhoque50125a92014-06-30 08:54:17 -0500211 ; cert-to-publish "root.cert" ; optional, a file containing the root certificate. only the router
212 ; that is designated to publish root cert needs to specify this
213 ; cert-to-publish "site.cert" ; optional, a file containing the root certificate. only the router
214 ; that is designated to publish site cert need to specify this
215 ; cert-to-publish "operator.cert" ; optional, a file containing the root certificate. only the
216 ; router that is designated to publish operator cert need to
217 ; specify this
218 cert-to-publish "router.cert" ; required, a file containing the router certificate.
akmhoque157b0a42014-05-13 00:26:37 -0500219}