[IM] Extend BGP NEXT_HOP hijacking detection to IPv6 on route servers

data/travis-ci/known-good/ci-apiv4-rs1-lan1-ipv6.conf

@@ -98,7 +98,13 @@ function ixp_community_filter(int peerasn)
 template bgp tb_rsclient {
         local as routeserverasn;
         source address routeserveraddress;
-        import all;
+        import filter {
+                ## Prevent BGP NEXT_HOP Hijacking
+                if !( from = bgp_next_hop ) then
+                    reject "BGP neighbor address [", from, "] != next hop address [", bgp_next_hop, "]", ", net:[", net, "], path:[", bgp_path, "]";
+
+                accept;
+        };
 
         export all;
         rs client;

data/travis-ci/known-good/ci-apiv4-rs1-lan2-ipv6.conf

@@ -98,7 +98,13 @@ function ixp_community_filter(int peerasn)
 template bgp tb_rsclient {
         local as routeserverasn;
         source address routeserveraddress;
-        import all;
+        import filter {
+                ## Prevent BGP NEXT_HOP Hijacking
+                if !( from = bgp_next_hop ) then
+                    reject "BGP neighbor address [", from, "] != next hop address [", bgp_next_hop, "]", ", net:[", net, "], path:[", bgp_path, "]";
+
+                accept;
+        };
 
         export all;
         rs client;

resources/views/api/v4/router/server/bird/neighbor-template.foil.php

@@ -37,17 +37,13 @@
 template bgp tb_rsclient {
         local as routeserverasn;
         source address routeserveraddress;
-<?php if( $t->router->protocol() == 4 ): ?>
         import filter {
                 ## Prevent BGP NEXT_HOP Hijacking
                 if !( from = bgp_next_hop ) then
                     reject "BGP neighbor address [", from, "] != next hop address [", bgp_next_hop, "]", ", net:[", net, "], path:[", bgp_path, "]";
 
                 accept;
         };
-<?php else: ?>
-        import all;
-<?php endif; ?>
 
         export all;
         rs client;