frr defaults datacenter
service integrated-vtysh-config
log syslog

# we only have the default route, so allow talking to BGP peers over it
ip nht resolve-via-default

router bgp {{ asn.asn }}
  bgp bestpath as-path multipath-relax

  neighbor fabric peer-group
  neighbor fabric remote-as external
  neighbor fabric capability extended-nexthop

{% for iface in interfaces | selectattr('name', 'match', '^lan') %}
  neighbor {{ iface.name }} interface peer-group fabric
  neighbor {{ iface.name }} bfd
{% endfor %}

  address-family ipv4 unicast
    redistribute connected route-map loopback
    neighbor fabric activate
    neighbor fabric route-map local out
  exit-address-family

  address-family ipv6 unicast
    redistribute connected route-map loopback
    neighbor fabric activate
    neighbor fabric route-map local out
  exit-address-family

{% if cluster.custom_fields and cluster.custom_fields.vlans %}
  address-family l2vpn evpn
    neighbor fabric activate
    neighbor fabric route-map local out
    advertise-all-vni
  exit-address-family
{% endif %}

bgp as-path access-list local permit ^$

route-map loopback permit 1
  match interface lo

route-map local permit 1
  match as-path local