BGP Case Studies. ISP Workshops

Similar documents
Service Provider Multihoming

Service Provider Multihoming

The Value of Peering. ISP Workshops. Last updated 25 September 2013

The Value of Peering. ISP/IXP Workshops. Last updated 23 rd March 2015

Service Provider Multihoming

Service Provider Multihoming

What is an Internet exchange Point (IXP)?

IPv4/IPv6 BGP Routing Workshop. Organized by:

Advanced Multihoming. BGP Traffic Engineering

Multihoming Complex Cases & Caveats

Module 16 An Internet Exchange Point

Module 13 Multihoming to Different ISPs

Multihoming Techniques. bdnog8 May 4 8, 2018 Jashore, Bangladesh.

IPv6 Module 16 An IPv6 Internet Exchange Point

BGP and the Internet

Routing Basics. ISP Workshops

Module 12 Multihoming to the Same ISP

BGP Configuration for a Transit ISP

Using BGP Communities

2015/07/23 23:32 1/8 More ibgp and Basic ebgp

Network Layer (Routing)

Introduction to BGP. ISP/IXP Workshops

Introduction to The Internet

Lab 3 Multihoming to the Same ISP

BGP and the Internet

Routing Basics. Campus Network Design & Operations Workshop

Module 8 Multihoming Strategies Lab

BGP Scaling (RR & Peer Group)

Peering THINK. A Guide

Simple Multihoming. ISP Workshops. Last updated 9 th December 2015

Module 10 An IPv6 Internet Exchange Point

Simple Multihoming. ISP Workshops

IXP Techniques. 4 7 July 2017, Suva, Fiji.

3/10/2011. Copyright Link Technologies, Inc.

BGP Multihoming ISP/IXP Workshops

Introduction to BGP. ISP Workshops. Last updated 30 October 2013

BGP and the Internet. Enterprise Multihoming. Enterprise Multihoming. Medium/Large ISP Multihoming. Enterprise Multihoming. Enterprise Multihoming

BGP Multihoming Techniques

BGP Attributes and Path Selection

BGP Policy Control. ISP Workshops

Inter-Domain Routing: BGP

BGP101. Howard C. Berkowitz. (703)

BGP Multihoming Techniques

Simple Multihoming. ISP Workshops. Last updated 25 September 2013

SDN Use-Cases. internet exchange, home networks. TELE4642: Week8. Materials from Prof. Nick Feamster is gratefully acknowledged

Peering Commercials and Contracts

BGP. Autonomous system (AS) BGP version 4

BGP Multihoming Techniques

BGP Multihoming Techniques

BGP Multihoming. ISP/IXP Workshops

BGP. Autonomous system (AS) BGP version 4

Lab Guide 2 - BGP Configuration

BGP Multihoming Techniques

BGP. Autonomous system (AS) BGP version 4

IPv6 Module 6 ibgp and Basic ebgp

BGP. Autonomous system (AS) BGP version 4. Definition (AS Autonomous System)

Inter-Domain Routing: BGP

BGP Inbound Optimization Using Performance Routing

BGP. Autonomous system (AS) BGP version 4. Definition (AS Autonomous System)

Module 19 Internet Exchange Points

internet technologies and standards

BGP Multihoming Techniques Philip Smith NANOG October 2005 Los Angeles

IPv6 Deployment Planning

IPv6 Module 6x ibgp and Basic ebgp

2016/01/17 04:05 1/19 Basic BGP Lab

GÉANT IP Service Description. High Performance IP Services to Support Advanced Research

CSE 561 Lecture 6, Spring David Wetherall

BGP. Inter-domain routing with the Border Gateway Protocol. Iljitsch van Beijnum Amsterdam, 13 & 16 March 2007

BGP. Autonomous system (AS) BGP version 4. Definition (AS Autonomous System)

APNIC elearning: BGP Basics. 30 September :00 PM AEST Brisbane (UTC+10) Revision: 2.0

Border Gateway Protocol (an introduction) Karst Koymans. Monday, March 10, 2014

BGP and the Internet. Why Multihome? Why Multihome? Why Multihome? Why Multihome? Why Multihome? Redundancy. Reliability

LACNIC XIII. Using BGP for Traffic Engineering in an ISP

Border Gateway Protocol (an introduction) Karst Koymans. Tuesday, March 8, 2016

BGP Multihoming Techniques. Philip Smith SANOG 10/APNIC 24 29th August - 7th September 2007 New Delhi, India

Lecture 18: Border Gateway Protocol

Lecture 16: Interdomain Routing. CSE 123: Computer Networks Stefan Savage

BGP Multihoming Techniques

IPv6 Address Planning

Routing Concepts. IPv4 Routing Forwarding Some definitions Policy options Routing Protocols

Connectivity FastConnect Level 200. Jamal Arif November 2018

BGP Attributes and Policy Control

BGP made easy. John van Oppen Spectrum Networks / AS11404

BTnet Resilient Extra White Paper for BT People and Prospective Customers

Vendor: Alcatel-Lucent. Exam Code: 4A Exam Name: Alcatel-Lucent Border Gateway Protocol. Version: Demo

An Analysis of the Development of IXPs

Using BGP Communities

Border Gateway Protocol - BGP

Media-Ready Network Transcript

ISP Peering & Transit Network Design

Multihoming Case Study

BGP Attributes and Policy Control

BGP Made Easy. John van Oppen NANOG PTC January 15th 2017

TELE 301 Network Management

IPv6 Deployment Planning. Philip Smith PacNOG 10, Nouméa 21 st November 2011

Q&As. CCIP Configuring BGP on Cisco Routers (BGP) Pass Cisco Exam with 100% Guarantee

Routing Basics. ISP Workshops. Last updated 10 th December 2015

IPv6 Deployment Strategies. IPv6 Training Day 18 th September 2012 Philip Smith APNIC

Master Course Computer Networks IN2097

HKIX Updates & Bilateral Peering over HKIX

Transcription:

BGP Case Studies ISP Workshops These materials are licensed under the Creative Commons Attribution-NonCommercial 4.0 International license (http://creativecommons.org/licenses/by-nc/4.0/) Last updated 21 st May 2018 1

Acknowledgements p This material was developed by Philip Smith with the support of the Network Startup Resource Center p Use of these materials is encouraged as long as the source is fully acknowledged and this notice remains in place p Bug fixes and improvements are welcomed n Please email workshop (at) bgp4all.com Philip Smith 2

Agenda p Peering Priorities p Transit Provider Peering at an IXP p Traffic Engineering for an ISP connected to two IXes p Traffic Engineering for an ISP with two interfaces on one IX LAN p Traffic Engineering and CDNs 3

Peering Priorities for a Network Operator 4

Peering Priorities p As network operators move from having a single upstream to deploying BGP with multiple external connections, they need to: n Establish priorities for BGP customers n Prioritise different peering partners n Establish cost/benefits for participating at different IXPs n Establish cost/benefits for different transit connections 5

Peering Policy p Typical prioritisation: n Most preferred BGP customers p We would like traffic from us to our BGP customers to go directly, not via our peers or transits n Next preference private peers p Connect by direct cross-connection n Next preference local IXP p Keep local traffic local n Next preference regional IXP p Keep regional traffic regional p Will cost money for physical connectivity to regional IXP n Last preference paid transit p Will cost money for physical connectivity and for traffic 6

Peering Policy Local Preference p Example Local Preference Table Peering Policy Local Preference BGP Customer 250 Private Peer 200 Local IXP 170 Regional IXP 140 (default) 100 Paid Transit 50 7

Agenda p Peering Priorities p Transit Provider Peering at an IXP p Traffic Engineering for an ISP connected to two IXes p Traffic Engineering for an ISP with two interfaces on one IX LAN p Traffic Engineering and CDNs 8

IXP Peering: When a Transit Provider is Also a Peer 9

IXP Peering, when Transit Provider is also a Peer p Relatively common situation n Several local ISPs providing access to the local market n One or two licensed transit providers n Licensed transits also wish to peer at the IXP p Desired outcome: n Transit provider wants to: p Peer domestic traffic at the IX p Sell transit access for all other destinations p How to ensure that: n Transit traffic only goes on transit link n Peering traffic only goes on peering link 10

IXP Peering, when Transit Provider is also a Peer To the Internet IXP Transit Provider B A Link to Upstream ISP C Local Access Provider (AS100) 11

IXP Peering, when Transit Provider is also a Peer p Outbound traffic from AS100: n n n n Upstream sends full BGP table to AS100 on direct peering link Upstream sends domestic routes to IXP peers AS100 uses IXP for domestic traffic AS100 uses Upstream link for international traffic p Inbound traffic to AS100: n n n AS100 sends address block to IXP peers AS100 sends address block to upstream Best path from upstream to AS100 preferred via the IXP (see previous scenario) p Problem: how to separate international and domestic traffic towards AS100? 12

Solution: AS Separation To the Internet Transit AS160 Domestic AS150 B D Link to Upstream ISP C IXP A AS 100 13

Solution: AS Separation p The transit provider needs to separate their network: n Domestic (AS150: local routes) n Transit (AS160: non-local routes) p Transit customers connect to transit AS (AS160) n Receive default route (or full BGP if desires) n Send just their address blocks p Domestic AS (AS150) peers at the IX n Receives local routes from other IX peers n Sends AS150 originated routes to IX peers 14

Solution: AS Separation Outcome p Inbound traffic to AS100 now: n AS100 sends address block to IXP peers (including AS150) n AS100 sends address block to upstream (AS160) n Best path from upstream to AS100 preferred via the transit link p Important notes: n AS150 must NOT pass prefixes learned from IX peers to AS160 15

IXP Peering, when Transit Provider is also a Peer p Transit providers who peer with their customers at an IX for local routes need to split their ASNs into two: n n One AS for domestic routes One AS for transit routes p Two ASNs are justifiable because the two ASNs have completely different routing policies n n Domestic AS peers at IXP Transit AS connects transit customers and upstreams 16

IXP Peering, when Transit Provider is also a Peer p This solution is scalable p This solution is much easier to implement than other solutions such as complex source address policy routing p Remember: n n n An Autonomous System is used for representing a distinct routing policy An Autonomous System doesn t necessarily map onto an organisation A transit business WILL have different routing policy from an access business or a hosting business, and therefore will quite likely need a different ASN 17

Agenda p Peering Priorities p Transit Provider Peering at an IXP p Traffic Engineering for an ISP with two interfaces on one IX LAN p Traffic Engineering for an ISP connected to two IXes p Traffic Engineering and CDNs 18

Traffic Engineering over two interfaces connected to one IXP 19

Two connections to one IXP p In early stages of IX development: n IX has one ethernet switch n Members have a single ethernet connection to IX switch p As IX grows: n It becomes critical infrastructure for local Internet economy n More members join n IX adds second switch for extra capacity and to provide redundancy for members n Second switch is on same L2 infrastructure as original p How to configure BGP & Traffic engineering for two connections to the IX? 20

Two connections to one IXP IXP A IXP Member (AS100) p Diagram shows case of two ethernet links from one router n Could also have two routers connecting to the IX 21

Two connections to one IXP p IXP LAN configuration: n Second connection is on same subnet on IXP n Member receives another IP address from the same subnet p BGP configuration: n Second ebgp session is established p With the IXP Route Server (if present) p With the other IXP members (with their second router, if they have one) p With IXP services infrastructure (if applicable) 22

Two connections to one IXP p Outbound Traffic Engineering configuration: n By default, the link chosen will follow BGP best path rules p In the absence of any other member policy (e.g. MEDs), best path will be lowest neighbour IP address p Which most likely means that one link carries all the traffic; the other link remains relatively empty n AS100 could load balance over the two physical links by: p Setting local preferences on particular announcements from peers p Using any BGP community policy implemented by other members 23

Two connections to one IXP p Inbound Traffic Engineering configuration: n By default, the link chosen will follow BGP best path rules p In the absence of any local policy (e.g. MEDs), best path will be lowest IP address on the IX LAN n AS100 could load balance over the two physical links by: p Setting MEDs on particular announcements to peers Half the peers could have announcements of MED 10 on one link and MED 20 on the other link And the other half of the peers have the MED values reversed Which assumes that peers even respect MEDs p Implementing a BGP community policy available for other members to use Sometimes IXPs recommend what a community policy might be p Using AS-PATH prepends (care needed so the IX path doesn t have longer AS path than via paid transit links) 24

Two connections to one IXP p Bonding two ethernet connections n n In some circumstances, the IXP may offer the facility of creating an aggregated link (LAG Link Aggregation Group) This provides redundancy at L2 p p p For example, two GigabitEthernet links will effectively present as 2Gbps on a single connection on the router The BGP session is established over the LAG rather than on individual links Load balancing is at L2, contained within the LAG itself p Note: this is not possible if the member opts to provision two routers for the IXP connection n And not desirable if the IXP provisions the two links on separate switches (assuming the switch vendor supports creating a LAG shared over two switches) 25

Agenda p Peering Priorities p Transit Provider Peering at an IXP p Traffic Engineering for an ISP with two interfaces on one IX LAN p Traffic Engineering for an ISP connected to two IXes p Traffic Engineering and CDNs 26

Traffic Engineering when connected to two IXPs 27

Traffic Engineering when connected to two IXPs p Several variations possible on this theme n Peering at two local IXPs p Shouldn t really happen as an IXP is intended to be a collaborative effort between members/participants to peer local traffic p Two IXPs serving the same local market doubles the costs for all operators and makes the traffic engineering more challenging n Peering at local IXP and regional IXP p Very common where an ISP participates in the local IXP and also turns up at one or more regional IXPs for greater peering opportunities n Peering at two regional IXPs p Occurs in the absence of a local IXP 28

Peering at two local IXPs IXP A IXP Member (AS100) B IXP p Diagram shows ISP connecting to two different IXPs n Could also be the case where one IXP operates two independent sites 29

Peering at two local IXPs p Second IXP LAN configuration: n Connection to the second IXP set up in the same way as the connection to the first IXP n Member has access to same facilities (Route Server, IX services, etc) p BGP configuration: n ebgp sessions established p With the IXP Route Server (if present) p With the other IXP members p With IXP services infrastructure (if applicable) p Traffic Engineering n Load balancing across IXP links needed when members are present at both IXPs 30

Peering at two local IXPs p Outbound Traffic Engineering configuration: n By default, the link chosen will follow BGP best path rules p In the absence of any other member policy (e.g. MEDs), best path will be lowest neighbour IP address p Which most likely means that the link to one IXP carries all the traffic; the other link remains relatively empty p Could end up with situation with outbound traffic going through one IXP, and return traffic coming through the other IXP n AS100 could load balance over the two IXPs by: p Setting local preferences on particular announcements from peers p Using any BGP community policy implemented by other members 31

Peering at two local IXPs p Inbound Traffic Engineering configuration: n By default, the link chosen will follow BGP best path rules p In the absence of any local policy (e.g. MEDs), best path will be lowest neighbour IP address (i.e. entirely dependent on the address block the IX has received from the RIR) n AS100 could load balance over the two IXP links to other members by: p Setting MEDs on particular announcements to peers Half the peers could have announcements of MED 10 on one link and MED 20 on the other link And the other half of the peers have the MED values reversed Which assumes that peers even respect MEDs p Implementing a BGP community policy available for other members to use Sometimes IXPs recommend what a community policy might be p Using AS-PATH prepends (care needed so the IX path doesn t have longer AS path than via paid transit links) 32

Peering at one local IXP and one regional IXP IXP A IXP Member (AS100) B IXP p Diagram shows ISP connecting to one local and one regional IXP 33

Peering at one local IXP and one regional IXP p Regional IXP LAN configuration: n Connection to the Regional IXP set up in the same way as the connection to the Local IXP n Member has access to same facilities (Route Server, IX services, etc) p BGP configuration: n ebgp sessions established p With the IXP Route Server (if present) p With the other IXP members p With IXP services infrastructure (if applicable) p Traffic Engineering n Load balancing across IXP links needed when members are present at both IXPs 34

Peering at one local IXP and one regional IXP p Outbound Traffic Engineering configuration: n By default, the link chosen will follow BGP best path rules p In the absence of any other member policy (e.g. MEDs), best path will be lowest neighbour IP address p Setting local preference on BGP routes learned from different classes of BGP neighbours becomes very important n AS100 could prioritise between the IXPs by: p Setting local preferences (see earlier table) p Using any BGP community policy implemented by other members 35

Peering at one local IXP and one regional IXP p Inbound Traffic Engineering configuration: n By default, the link chosen will follow BGP best path rules p In the absence of any local policy (e.g. MEDs), best path will be lowest neighbour IP address (i.e. entirely dependent on the address block the IX has received from the RIR) n AS100 needs to prioritise incoming traffic over the local IXP rather than the regional IXP (considered backup) p Outbound traffic follows the local preference table in earlier slides p Prioritisation can be done by Using AS-PATH prepend (carefully don t want path to be longer than through transit provider) Subdividing address blocks (de-aggregating) for private peer and local IXP connections, and not subdividing for regional IXP and Transit 36

Peering at two regional IXPs IXP A IXP Member (AS100) B IXP p Diagram shows ISP connecting to two different IXPs n Could also be the case where one IXP operates two independent sites 37

Peering at two regional IXPs p Second IXP LAN configuration: n Connection to the second IXP set up in the same way as the connection to the first IXP n Member has access to same facilities (Route Server, IX services, etc) p BGP configuration: n ebgp sessions established p With the IXP Route Server (if present) p With the other IXP members p With IXP services infrastructure (if applicable) p Traffic Engineering n Load balancing across IXP links needed when members are present at both IXPs 38

Peering at two regional IXPs p Outbound Traffic Engineering configuration: n By default, the link chosen will follow BGP best path rules p In the absence of any other member policy (e.g. MEDs), best path will be lowest neighbour IP address p Which most likely means that the link to one IXP carries all the traffic; the other links remains relatively empty p Could end up with situation with outbound traffic going through one IXP, and return traffic coming through the other IXP p Not good if the two IXPs have a significant geographical separation n AS100 could load balance over the two IXPs by: p Setting local preferences on particular announcements from peers, paying close attention to geographical or regional interconnect issues p Using any BGP community policy implemented by other members 39

Peering at two local IXPs p Inbound Traffic Engineering configuration: n By default, the link chosen will follow BGP best path rules p In the absence of any local policy (e.g. MEDs), best path will be lowest neighbour IP address (i.e. entirely dependent on the address block the IX has received from the RIR) n AS100 needs to prioritise incoming traffic between the two regional IXPs according to geographical needs/issues p Outbound traffic afterall follows the local preference table in earlier slides p Prioritisation can be done by Using AS-PATH prepend (carefully don t want path to be longer than through transit provider) Subdividing address blocks (de-aggregating) for private peer and regional IXP connections, and not subdividing for Transit 40

Agenda p Peering Priorities p Transit Provider Peering at an IXP p Traffic Engineering for an ISP with two interfaces on one IX LAN p Traffic Engineering for an ISP connected to two IXes p Traffic Engineering and CDNs 41

Traffic Engineering and CDNs 42

Traffic Engineering and CDNs p Each CDN has its own configuration recommendations n These slides are only a guideline it is best to consult directly with the CDN in question about their operational and traffic engineering policies p CDN implementations: n Present at IXP via the IXP Services Infrastructure p Transit (backhaul/cache-fill) via one of the IX members or a transit provider or their own infrastructure n Peering directly at the IXP n Hosted at IX member, and made available to other IX members 43

CDN at an IXP on Services LAN IXP A CDN IXP Services Transit p Diagram shows content provider hosted on IXP Services LAN n Transit connection for Cache Fill 44

CDN at an IXP on Services LAN p BGP configuration: n IXP members peer with IXP Services Router (Router A) n Receive the routes originated by the CDN n IXP Services announces routes to be served to the CDN n CDN has its own transit arrangements p Either via IXP member or separate infrastructure 45

CDN at an IXP on Services LAN p CDNs usually serve content to operators based on a combination of: n Lowest round trip time (latency) p End users expect instant access n BGP announcements of the peer p Following most specific announcements p AS-path length p BGP MED p Operators need to: n Talk to CDN operator about BGP policy! n Watch the bandwidth to the CDN n Pay attention to BGP announcements 46

CDN at an IXP direct peering IXP CDN Transit p Diagram shows content provider peering directly at the IXP n Transit connection for Cache Fill 47

CDN at an IXP direct peering p BGP configuration: n IXP members peer with CDN Router n IXP members receive the routes originated by the CDN n CDN has its own transit arrangements p Either via IXP member or separate infrastructure p Operations: n Same as for the previous example 48

CDN at an IXP hosted by a member core IXP peering CDN border AS100 Transit p Diagram shows content provider hosted by IXP Member n Transit connection for Cache Fill 49

CDN at an IXP hosted by a member p BGP configuration: n IXP members peer with AS100 (Peering Router A) n IXP members receive the routes originated by the CDN (as well as those originated by AS100) n AS100 announces routes to be served to the CDN p This could depend on AS100 s agreement with each of its peering partners AS100 may charge for access to the CDN content (they have to pay for the backhaul) AS100 may limit access to the CDN content to certain peering partners 50

CDN at an IXP hosted by a member p In addition to the previous advice: n Pay attention to the AS path length CDNs may pay attention to BGP attributes p Make sure shortest path to the CDN is via the IXP member, rather than your own transit links (similar case to when the IXP hosts the CDN) n Stay in touch with the member who is giving you access to the cache/cdn p Especially for any change in policy p Especially for any bandwidth or latency issues 51

Finally: Connection to a CDN in two locations p Circumstance happens to many operators n n n See the CDN via the local IXP (or local IXP member) See the same CDN through their transit provider How do they ensure that their end-users access the local CDN, and not the one hosted via the transit provider?? p CDNs normally: n n Pay attention to BGP announcements p But will they accept traffic engineering? Pay attention to RTTs p Solution: n n Talk to the CDN and discuss the situation They want the best for their eyeballs like the operator wants the best of endusers 52

BGP Case Studies ISP Workshops 53

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback