BGP made easy. John van Oppen Spectrum Networks / AS11404

Similar documents
BGP Made Easy. John van Oppen NANOG PTC January 15th 2017

BGP Attributes and Policy Control

BGP Scaling (RR & Peer Group)

BGP Attributes and Path Selection

BGP Attributes and Policy Control

BGP. BGP Overview. BGP Operation. BGP Neighbors

BGP Attributes and Policy Control

Border Gateway Protocol - BGP

BGP and the Internet. Enterprise Multihoming. Enterprise Multihoming. Medium/Large ISP Multihoming. Enterprise Multihoming. Enterprise Multihoming

Connecting to a Service Provider Using External BGP

ISP Border Definition. Alexander Azimov

Service Provider Multihoming

BGP Multihoming Techniques

Multihoming Techniques. bdnog8 May 4 8, 2018 Jashore, Bangladesh.

IOS Implementation of the ibgp PE CE Feature

IPv4/IPv6 BGP Routing Workshop. Organized by:

LACNIC XIII. Using BGP for Traffic Engineering in an ISP

Ravi Chandra cisco Systems Cisco Systems Confidential

TELE 301 Network Management

Advanced Multihoming. BGP Traffic Engineering

Configuring BGP. Cisco s BGP Implementation

Service Provider Multihoming

DE-CIX Academy: BGP - Multihoming

Lecture 18: Border Gateway Protocol

Module 8 Multihoming Strategies Lab

Lecture 17: Border Gateway Protocol

BGP Multihoming ISP/IXP Workshops

BGP Commands. Network Protocols Command Reference, Part 1 P1R-355

Lecture 16: Border Gateway Protocol

Internet Routing Basics

BGP Protocol & Configuration. Scalable Infrastructure Workshop AfNOG2008

internet technologies and standards

DE-CIX Academy: BGP Introduction. Notice of Liability. BGP Configuration Examples. Network Diagram for all examples. Links and Examples

Lecture 4: Intradomain Routing. CS 598: Advanced Internetworking Matthew Caesar February 1, 2011

Service Provider Multihoming

Introduction to BGP ISP/IXP Workshops

Lecture 16: Interdomain Routing. CSE 123: Computer Networks Stefan Savage

How Big Networks Can Peer Regionally. Steve Gibbard Packet Clearing House APRICOT, 2007

How BGP Routers Use the Multi Exit Discriminator for Best Path Selection

BGP. Autonomous system (AS) BGP version 4. Definition (AS Autonomous System)

Multihoming Complex Cases & Caveats

BGP4 workshop scenario

Internet Routing : Fundamentals of Computer Networks Bill Nace

Introduction to Computer Networks

Connecting to a Service Provider Using External BGP

Border Gateway Protocol (an introduction) Karst Koymans. Tuesday, March 8, 2016

BGP. Autonomous system (AS) BGP version 4

CS 640: Introduction to Computer Networks. Intra-domain routing. Inter-domain Routing: Hierarchy. Aditya Akella

Introduction to BGP. ISP Workshops. Last updated 30 October 2013

BGP. Autonomous system (AS) BGP version 4

BGP. Autonomous system (AS) BGP version 4. Definition (AS Autonomous System)

ibgp Multipath Load Sharing

Introduction to BGP. ISP/IXP Workshops

BGP Multihoming. ISP/IXP Workshops

BGP. Autonomous system (AS) BGP version 4

Vendor: Alcatel-Lucent. Exam Code: 4A Exam Name: Alcatel-Lucent Border Gateway Protocol. Version: Demo

Inter-domain Routing. Outline. Border Gateway Protocol

Introduction to IP Routing. Geoff Huston

BGP Policy Control. ISP Workshops

Inter-Domain Routing: BGP

BGP Policy Control. ISP Workshops. Last updated 17 May 2014

Interdomain Routing Reading: Sections P&D 4.3.{3,4}

BGP Configuration for a Transit ISP

Some Foundational Problems in Interdomain Routing

MPLS VPN C H A P T E R S U P P L E M E N T. BGP Advertising IPv4 Prefixes with a Label

Service Provider Multihoming

BGP. Inter-domain routing with the Border Gateway Protocol. Iljitsch van Beijnum Amsterdam, 13 & 16 March 2007

BGP101. Howard C. Berkowitz. (703)

Back to basics J. Addressing is the key! Application (HTTP, DNS, FTP) Application (HTTP, DNS, FTP) Transport. Transport (TCP/UDP) Internet (IPv4/IPv6)

BGP Multihoming Techniques

Cisco CISCO Configuring BGP on Cisco Routers Exam. Practice Test. Version

BGP. Border Gateway Protocol (an introduction) Karst Koymans. Informatics Institute University of Amsterdam. (version 17.3, 2017/12/04 13:20:08)

BGP route filtering and advanced features

APNIC elearning: BGP Basics. 30 September :00 PM AEST Brisbane (UTC+10) Revision: 2.0

BGP Tutorial. APRICOT 2003, Taipei February Philip Smith APRICOT , Cisco Systems, Inc. All rights reserved.

BGP Tutorial. APRICOT 2004, Kuala Lumpur February Philip Smith APRICOT , Cisco Systems, Inc. All rights reserved.

BGP and the Internet. Why Multihome? Why Multihome? Why Multihome? Why Multihome? Why Multihome? Redundancy. Reliability

L11 : Inter-domain Routing with BGP Lecture14 Michaelmas, 2016

BGP Link Bandwidth. Finding Feature Information. Prerequisites for BGP Link Bandwidth

CS 268: Computer Networking. Next Lecture: Interdomain Routing

CS4450. Computer Networks: Architecture and Protocols. Lecture 15 BGP. Spring 2018 Rachit Agarwal

Introduction. Keith Barker, CCIE #6783. YouTube - Keith6783.

BGP Best External. Finding Feature Information

CS 43: Computer Networks Internet Routing. Kevin Webb Swarthmore College November 16, 2017

IPv6 Module 16 An IPv6 Internet Exchange Point

BGP. Autonomous system (AS) BGP version 4. Definition (AS Autonomous System)

prefix filtering netkit-lab-bgp-1

BGP Commands. Network Protocols Command Reference, Part 1 P1R-355

BGP-VPN Distinguisher Attribute

Simple Multihoming. ISP Workshops. Last updated 9 th December 2015

Border Gateway Protocol (an introduction) Karst Koymans. Monday, March 10, 2014

This appendix contains supplementary Border Gateway Protocol (BGP) information and covers the following topics:

BGP Multihoming Techniques

Module 16 An Internet Exchange Point

Q&As. CCIP Configuring BGP on Cisco Routers (BGP) Pass Cisco Exam with 100% Guarantee

Link State Routing & Inter-Domain Routing

BGP Multihoming Techniques

Internet Routing Protocols Lecture 01 & 02

Configuring BGP on Cisco Routers Volume 1

Inter-Domain Routing: BGP

Transcription:

1 BGP made easy John van Oppen Spectrum Networks / AS11404

2 What is BGP? Snarky answer: RFC-4271 BGP is an Exterior gateway protocol, the only one used on the public Internet and is used for inter-autonomous System routing. (IE between discrete networks) BGP distributes (signals) the path to every destination on the Internet, the core of major providers typically don t contain a default route, they contain the paths to every prefix on the Internet. BGP learns multiple paths to a given route and selects the best path, only best path is sent between routers.

3 What is an Autonomous System? Typical traits: Usually a network of one or more routers redundantly interconnected. Controlled by a single administrative domain (one company could have several ASNs but a given ASN is typically controlled by a specific group) Common routing policy Identified by a globally unique AS Number (ASN)

4 Typical rationales for running BGP Multihoming / Provider redundancy Equipment / Port redundancy Peering (typically larger ASes) Connectivity quality (better paths)

5 Types of peering relationships Transit (routes that cost money to send traffic accross) Peering (typically free, you see my customers, I see yours without charge) - peers across NWAX would be a good example of this type of relationship Customer (routes that are sourced from paying customers) Typically type of relationship dictates localpreference setting (50, 95 and 110 in this example)

6 Enforcing relationships across peers Typical problem: I don t want to send routes received from my transit to someone who does not pay me. Common solution: AS-path filtering, prefixes lists or a combination. Best solution: add in community strings as tags, filter on ingress.

7 Filtering tools for BGP routes (cisco) Prefix lists can be applied directly to BGP peer configuration Route maps can match various things, the most important for BGP are: prefix lists As-path access lists Community lists Metric

8 Communities, tags for routes! Community strings allow routes to be tagged at ingress with to tell the rest of the AS what to do with them. Filtering only at ingress works for very small ASNs and very large ASNs. Allows for large ASes with lots of customer routes to scale by only filtering on customer sessions. Egress filter policy can be setup to deny by default (IE no community of the right type attached to route means the route is not exported). Allows easy filtering to prevent internal routes from being sent to customers.

9 Examples of community assignments from AS11404 Communities used in examples: 11404:991 announce to customers 11404:992 announce to peers and customers 11404:993 announce to transit, peers and customers 11404:1000 All transit routes 11404:2000 All Peer routes http://as11404.net has more of a list if you want a broader example.

10 Filtering in action (towards a customer) Cisco example, showing basic portions of the BGP filtering configuration neighbor 192.0.2.2 remote-as 54858 neighbor 192.0.2.2 prefix-list as54858-in in neighbor 192.0.2.2 route-map as54858-in in neighbor 192.0.2.2 route-map full-tables-out out neighbor 192.0.2.2 maximum-prefix 20 ip prefix-list as54858-in seq 5 permit 64.187.160.0/20 ip prefix-list as54858-in seq 10 permit 198.244.96.0/20 route-map as54858-in permit 500 match ip address prefix-list as54858-in set local-preference 110 set community 11404:993 11404:3000 11404:3010 Always place a max prefix limit on customers and peers (protec>on from route leaks) Inbound prefix list applied twice (not required, but nice to protect from typos) An as- path filter could be applied here too Outbound route filtering (internal routes not sent to customers) route-map full-tables-out permit 1000 match community full-tables-out ip community-list standard full-tables-out permit 11404:993 ip community-list standard full-tables-out permit 11404:992 ip community-list standard full-tables-out permit 11404:991 ip community-list standard full-tables-out permit 11404:1000 ip community-list standard full-tables-out permit 11404:2000

11 Filtering in action (towards a transit) Cisco example, showing basic portions of the BGP filtering configuration neighbor 207.8.14.109 remote-as 2828 neighbor 207.8.14.109 description XO Transit neighbor 207.8.14.109 route-map as2828-in in neighbor 207.8.14.109 route-map as2828-out out route-map as2828-in permit 100 set metric 0 set local-preference 50 set community 11404:1000 11404:1070 11404:1270 additive route-map as2828-out permit 1000 match community as2828-out set metric-type internal ip community-list standard as2828-out permit 11404:993 ip community-list standard as2828-out permit 11404:9937 There is more configura>on than this, this is just the community specific part Ignore meds, force network to use nearest exit Lower local- pref than default (we pay for this route) Send MEDs based on IGP cost (make the carrier haul to nearest ingress point) Outbound route filtering (match only routes tagged to announce to transit, validity of routes with this tag was assured at ingress)

12 Real world examples of communities and local pref (AS11404) cr1-pdx>show ip bgp 64.187.160.0/20 BGP routing table entry for 64.187.160.0/20, version 221286214 Paths: (2 available, best #1, table Default-IP-Routing-Table) Multipath: ebgp ibgp Advertised to update-groups: 1 2 3 5 6 7 54858 208.76.153.113 (metric 517) from 208.76.153.76 (208.76.153.76) Origin IGP, metric 0, localpref 110, valid, internal, best Community: 11404:993 11404:3000 11404:3010 Originator: 208.76.153.113, Cluster list: 208.76.153.76 Loopback address of ingress router IGP (OSPF) metric (towards 208.76.153.113) Loopback address of route refelctor Higher than default localpref (110) Tagged as customer route (11404:3000) from Seattle (11404:3010) Tagged to announce to transit (11404:993)

Q&A 13

14 More info? Check the relevant NANOG presentations: Philip Smith NANOG 50: http://www.nanog.org/meetings/nanog50/presentations/sunday/nanog50.talk33.nanog50-bgp-techniques.pdf Jason Schiller at NANOG 53: http://www.nanog.org/meetings/nanog53/presentations/sunday/bgp-101-nanog53.pdf Feel free to contact me: John@vanoppen.com 206-973-8302

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback