BGP4 workshop scenario

Similar documents
DE-CIX Academy: BGP Introduction. Notice of Liability. BGP Configuration Examples. Network Diagram for all examples. Links and Examples

DE-CIX Academy: BGP - Multihoming

IPv4/IPv6 BGP Routing Workshop. Organized by:

Multihoming Techniques. bdnog8 May 4 8, 2018 Jashore, Bangladesh.

BGP Multihoming Techniques

Connecting to a Service Provider Using External BGP

BGP Attributes and Path Selection

Service Provider Multihoming

BGP Multihoming ISP/IXP Workshops

Multihoming Case Study

BGP Techniques for ISP. Terutaka Komorizono

BGP. BGP Overview. BGP Operation. BGP Neighbors

BGP and the Internet. Enterprise Multihoming. Enterprise Multihoming. Medium/Large ISP Multihoming. Enterprise Multihoming. Enterprise Multihoming

Lab Guide 2 - BGP Configuration

BGP made easy. John van Oppen Spectrum Networks / AS11404

BGP Multihoming Techniques

BGP Multihoming Techniques

ISP Border Definition. Alexander Azimov

Service Provider Multihoming

DE-CIX Academy: BGP 05. Notice of Liability. Links visited during the webinar. The Big Picture

Introduction to BGP. ISP/IXP Workshops

BGP101. Howard C. Berkowitz. (703)

Advanced Multihoming. BGP Traffic Engineering

Module 8 Multihoming Strategies Lab

BGP Multihoming Techniques

How BGP Routers Use the Multi Exit Discriminator for Best Path Selection

BGP Configuration for a Transit ISP

Configure the IPv6 BGP Local Preference Feature

internet technologies and standards

Service Provider Multihoming

BGP Tutorial AFNOG2000 Class IP Assignments

All participants will work within their groups in pairs. Each group has three routers and three switches to work with.

BGP Multihoming. ISP/IXP Workshops

BGP Tutorial Part 3 Multihoming

BGP Protocol & Configuration. Scalable Infrastructure Workshop AfNOG2008

Module 6 ibgp and Basic ebgp

Service Provider Multihoming

BGP and the Internet. Why Multihome? Why Multihome? Why Multihome? Why Multihome? Why Multihome? Redundancy. Reliability

Module 6 More ibgp, and Basic ebgp Configuration

Multihoming Complex Cases & Caveats

Vendor: Alcatel-Lucent. Exam Code: 4A Exam Name: Alcatel-Lucent Border Gateway Protocol. Version: Demo

Configuring BGP on Cisco Routers Volume 1

Module 2 More ibgp, and Basic ebgp Configuration

LACNIC XIII. Using BGP for Traffic Engineering in an ISP

Module 16 An Internet Exchange Point

Introduction to BGP ISP/IXP Workshops

Module 6 Implementing BGP

Multihoming with BGP and NAT

Q&As. CCIP Configuring BGP on Cisco Routers (BGP) Pass Cisco Exam with 100% Guarantee

Module 13 Multihoming to Different ISPs

Simple Multihoming. ISP Workshops. Last updated 9 th December 2015

Lab 3 Multihoming to the Same ISP

Module 12 Multihoming to the Same ISP

Introduction to BGP. ISP Workshops. Last updated 30 October 2013

IPv6 Module 16 An IPv6 Internet Exchange Point

CertifyMe. CertifyMe

Module 6 ibgp and Basic ebgp

BGP and the Internet

Module 14 Transit. Objective: To investigate methods for providing transit services. Prerequisites: Modules 12 and 13, and the Transit Presentation

Simple Multihoming. ISP Workshops. Last updated 25 September 2013

IPv6 Module 6 ibgp and Basic ebgp

BGP Multihoming Techniques

BGP Multihoming Techniques

BGP Attributes and Policy Control

2016/01/17 04:05 1/19 Basic BGP Lab

Topology for: EIGRP, BGP, Redistribution

2015/07/23 23:32 1/8 More ibgp and Basic ebgp

Connecting to a Service Provider Using External BGP

BGP Attributes and Policy Control

BGP Routing and BGP Policy. BGP Routing. Agenda. BGP Routing Information Base. L47 - BGP Routing. L47 - BGP Routing

BGP Multihoming Techniques Philip Smith NANOG October 2005 Los Angeles

Using BGP Communities

Introduction. Keith Barker, CCIE #6783. YouTube - Keith6783.

BGP for Internet Service Providers

BGP Multihoming Techniques. Philip Smith SANOG 10/APNIC 24 29th August - 7th September 2007 New Delhi, India

BGP Attributes and Policy Control

BGP and the Internet

Cisco CISCO Configuring BGP on Cisco Routers Exam. Practice Test. Version

Migrating from OSPF to IS-IS

BGP Scaling (RR & Peer Group)

2015/07/23 23:31 1/7 ibgp

Module 18 Transit. Objective: To investigate methods for providing transit services. Prerequisites: Modules 12 and 13, and the Transit Presentation

Border Gateway Protocol - BGP

Copyright 1998, Cisco Systems, Inc. All rights reserved. Printed in USA. 0945_05F9_c1.scr 1. RST _05_2001_c1

BGP Multihoming Techniques. Philip Smith APRICOT February 2009 Manila, Philippines

Configuration and Management of Networks 2012

LAB16: BGP IPv6. BGP: Route Reflector. Disclaimer

Using BGP Communities

COURSE OUTLINE: Course: CCNP Route Duration: 40 Hours

Module 3 BGP route filtering and advanced features

Symbols. Numerics I N D E X

BGP. Autonomous system (AS) BGP version 4. Definition (AS Autonomous System)

MPLS VPN C H A P T E R S U P P L E M E N T. BGP Advertising IPv4 Prefixes with a Label

PASS4TEST. IT Certification Guaranteed, The Easy Way! We offer free update service for one year

Configuring BGP. Cisco s BGP Implementation

BGP in the Internet Best Current Practices

Route Filtering. Types of prefixes in IP core network: Internal Prefixes External prefixes. Downstream customers Internet prefixes

IPv6 Module 6x ibgp and Basic ebgp

BGP-v4 Theory and Practice

Border Gateway Protocol (an introduction) Karst Koymans. Tuesday, March 8, 2016

Transcription:

BGP4 workshop scenario Presented by: Bruce Morgan Bruce.Morgan@aarnet.edu.au Terutaka Komorizono teru@ntt.co.th Written by: Terutaka Komorizono teru@ntt.co.th

Introduction Presentation has many configuration examples Using Cisco IOS CLI Aimed at Service Providers Techniques can be used by many enterprises too Feel free to ask questions

Target Network topology TIER1/AS10/Instructor 172.16.0.1 A AS100/PH 172.16.0.2 B C 172.16.0.3 172.16.4.1 A 172.16.4.2 B AS200/ID B 172.16.8.2AS300/TH 172.16.8.3 A C 172.16.8.1 A 192.168.0.1 C 172.16.4.3 A B B 192.168.0.2 192.168.4.1 192.168.4.2 AS1000/VN AS2000/MY

Allocate ASN and IP address Party TIER1 ISP-A/PH ISP-B/ID ISP-C/TH USER1/VN USER2/MY ASN 10 100 200 300 1000 2000 IP address 10.0.0.0/22 172.16.0.0/22 172.16.4.0/22 172.16.8.0/22 192.168.0.0/22 192.168.4.0/22

Allocate ASN and IP address AS TIER1/AS1 ISP-A/AS100 ISP-B/AS200 ISP-C/AS300 Uesr1/AS1000 User2/AS2000 hostname tier1 my0[012] Id0[012] th0[012] user1[01] user2[01] loopback0 address 10.0.0.1/32 172.16.0.[123]/32 172.16.4.[123]/32 172.16.8.[123]/32 192.168.0.[12]/32 192.168.4.[12]/32

Loopback ip addresses TIER1/AS10/Instructor 172.16.0.1 A AS100/PH 172.16.0.2 B C 172.16.0.3 172.16.4.1 A 172.16.4.2 B AS200/ID B 172.16.8.2AS300/TH 172.16.8.3 A C 172.16.8.1 A 192.168.0.1 C 172.16.4.3 A B B 192.168.0.2 192.168.4.1 192.168.4.2 AS1000/VN AS2000/MY

Physical interface ip addresses TIER1/AS10/Instructor 10.0.1.2/24 10.0.1.1/24 10.0.1.7/24 B AS300/TH AS100/PH A 10.0.1.3/24 10.0.1.4/2410.0.1.5/2410.0.1.6/24 C B A B AS200/ID A C C A B A B AS1000/VN AS2000/MY

Step1: IGP Isp-X0bb00 AS[123]00 ospf area0 Isp-X0bb01 Isp-X0bb02

sample ospf config interface serial X ip ospf authentication ip ospf authentication-key ******** router ospf xxx log-adjacency-changes area 0 authentication message-digest passive-interface default no passive-interface <#i/f> no passive-interface <#i/f> network <#loopback ip> 0.0.0.0 area 0 network <#loopback ip> 0.0.0.0 area 0 network <#loopback ip> 0.0.0.0 area 0 network <#Ptp ip> 0.0.0.3 area 0 network <#Ptp ip> 0.0.0.3 area 0 network <#Ptp ip> 0.0.0.3 area 0

After configure ospf show ip route show ip route ospf show ip ospf neighbor debug ip ospf adj

Step2: ibgp TIER1/AS10 AS300 AS100 AS200 AS1000 AS2000

sample ibgp config AS200 router confg router bgp 200 no synchronization bgp log-neighbor-changes network X.X.X.X mask 255.255.255.0 network Y.Y.Y.Y mask 255.255.255.0 neighbor <#router1 lo0> remote-as 200 neighbor <#router1 lo0> description <#router-name> neighbor <#router1 lo0> update-source Loopback0 neighbor <#router1 lo0> send-community neighbor <#router2 lo0> remote-as 200 neighbor <#router2 lo0> description <#router-name> neighbor <#router2 lo0> update-source Loopback0 neighbor <#router2 lo0> send-community no auto-summary ip route X.X.X.X 255.255.255.0 null0 ip route Y.Y.Y.Y 255.255.255.0 null0

sample peer-group config AS200 router confg router bgp 200 no synchronization bgp log-neighbor-changes network X.X.X.X mask 255.255.255.0 network Y.Y.Y.Y mask 255.255.255.0 neighbor ISP-N-IBGP peer-group neighbor ISP-N-IBGP remote-as 200 neighbor ISP-N-IBGP update-source Loopback0 neighbor ISP-N-IBGP send-community neighbor <#router1 lo0> peer-group ISP-N-IBGP neighbor <#router1 lo0> description <#router-name> neighbor <#router2 lo0> peer-group ISP-N-IBGP neighbor <#router2 lo0> description <#router-name> ip route X.X.X.X 255.255.255.0 null0 ip route Y.Y.Y.Y 255.255.255.0 null0

After configure ibgp show ip route show ip bgp show ip bgp x.x.x.x/xx show ip bgp summary show ip bgp neighbor x.x.x.x advertised-route show ip bgp neighbor x.x.x.x route show ip bgp neighbor x.x.x.x received-route debug ip bgp

Step3: ebgp TIER1/AS10 AS300 AS100 AS200 AS1000 AS2000

Step3: sample config Border router in AS200 confg router bgp 200 neighbor <#neighbor router ptp> remote-as 1 neighbor <#neighbor router ptp> description TIER1 AS1 neighbor <#neighbor router ptp> next-hop-self neighbor <#neighbor router ptp> soft-reconfiguration inbound

After configure ebgp show ip route show ip bgp show ip bgp x.x.x.x/xx show ip bgp summary show ip bgp neighbor x.x.x.x advertised-route show ip bgp neighbor x.x.x.x route show ip bgp neighbor x.x.x.x received-route debug ip bgp

Step4: ebgp TIER1/AS10 AS300 AS100 AS200 AS1000 AS2000

Step4: sample config Aggregation router in AS200 confg router bgp 200 neighbor <#neighbor router ptp> remote-as 1000 neighbor <#neighbor router ptp> description USER AS1000 neighbor <#neighbor router ptp> next-hop-self neighbor <#neighbor router ptp> soft-reconfiguration inbound

Applying Policy

Applying Policy Prefix filter Applying all received route from User at User connected router AS-PATH filter Applying AS-PATH filter to received route from User and at User connected router Applying AS-PATH filter to received route from PEER and at PEER connected router. Due to normally we haven t prefix-filter for PEERs link because difficult to follow PEERs announced prefixes. MED Set in/out metric at border router with UPSTREAM and PEERS Local Preference Set local-preference as below Upstream route 90 User route 110

sample as-path prepend config Border router in AS200 confg router bgp 200 neighbor <#neighbor router ptp> remote-as 1000 neighbor <#neighbor router ptp> description USER AS1000 neighbor <#neighbor router ptp> next-hop-self neighbor <#neighbor router ptp> soft-reconfiguration inbound neighbor <#neighbor router ptp> prefix-list toupsteam out ip community-list standard PREPEND2 permit 200:10002 route-map toupstream permit 10 set as-path prepend twice match community 200:10002 set as-path prepend 200 200

sample prefix-filter config aggregation router in AS200 confg router bgp 200 neighbor <#neighbor router ptp> remote-as 1000 neighbor <#neighbor router ptp> description USER AS1000 neighbor <#neighbor router ptp> next-hop-self neighbor <#neighbor router ptp> soft-reconfiguration inbound neighbor <#neighbor router ptp> prefix-list USER in ip prefix-list USER description USER AS1000 ip prefix-list USER seq 5 permit 192.168.0.0/24 ip prefix-list USER seq 10 permit 192.168.1.0/24 ip prefix-list USER seq 15 permit 192.168.2.0/24 ip prefix-list USER seq 20 permit 192.168.3.0/24 ip prefix-list USER seq 25 permit 192.168.4.0/24 ip prefix-list USER seq 30 permit 192.168.5.0/24 ip prefix-list USER seq 35 permit 192.168.6.0/24 ip prefix-list USER seq 40 permit 192.168.7.0/24

sample AS-PATH filter config border router in AS200 confg router bgp 200 neighbor <#neighbor router ptp> remote-as 1000 neighbor <#neighbor router ptp> description USER AS1000 neighbor <#neighbor router ptp> next-hop-self neighbor <#neighbor router ptp> soft-reconfiguration inbound neighbor <#neighbor router ptp> filter-list 50 in ip as-path access-list 50 permit ^(1000_)+$

Regular explation ^ = begin of the line sample: ^(100) 100 200 -> OK 200 100 -> NG $ = end of the line sample: (100)+$ 100 -> OK 200 100 -> OK

sample metric and local-preference and med config Border router in AS200 confg router bgp 200 neighbor <#neighbor router ptp> remote-as 1000 neighbor <#neighbor router ptp> description USER AS1000 neighbor <#neighbor router ptp> next-hop-self neighbor <#neighbor router ptp> soft-reconfiguration inbound neighbor 10.0.1.5 route-map fromupstream in neighbor 10.0.1.5 route-map toupstream out route-map toupstream permit 10 set metric 0 route-map fromupstream permit 10 set local-preference 90 set metric 1000

Set local preference TIER1/AS10/Instructor AS100/PH C 110 90 A 100 B 110 100 100 90 A 90 B AS200/ID 90 B 100 AS300/TH 90 A 100 C 110 110 100 100 C A B A B AS1000/VN AS2000/MY

Set MED TIER1/AS10/Instructor AS100/PH C A 0 100 B A AS200/ID B A B AS300/TH C C A B A B AS1000/VN AS2000/MY

multihoming

Step5: multihoming single router and multi path TIER1/AS10 AS100 AS300 AS200 AS1000 AS2000

Step6: multihoming - set primary/secondary by MED and local-preference AS100 TIER1/AS10 Metric 100 Metric 50 Metric 100 Metric 50 Local Pref 100 Local Pref 105 Local Pref 100 Local Pref 105 AS1000 AS100

Step6: sample config user router config router bgp 1000 neighbor A.B.C.D route-map fromupstream0 in neighbor A.B.C.D route-map toupstream0 out neighbor E.F.G.H route-map fromupstream1 in neighbor E.F.G.H route-map toupstream1 out route-map fromupstream0 permit 10 set local-preference 105 route-map toupstream0 permit 10 set metric 50 route-map fromupstream1 permit 10 set local-preference 100 route-map toupstream1 permit 10 set metric 100

Step7: multihoming load-sharing AS100 TIER1/AS10 Metric 100 Metric 50 Metric 100 Metric 50 Local Pref 100 Local Pref 105 Local Pref 100 Local Pref 105 AS1000 AS100

Step8: sample config user router config router bgp 1000 neighbor A.B.C.D route-map fromupstream0 in neighbor A.B.C.D route-map toupstream0 out neighbor E.F.G.H route-map fromupstream1 in neighbor E.F.G.H route-map toupstream1 out maximum-paths 2

Step8: sample config border router in as1 config router bgp 1 neighbor A.B.C.D remote-as 100 neighbor A.B.C.D ebgp-multihop 2 neighbor A.B.C.D update-source Loopback0 ip route A.B.C.D 255.255.255.255 <#ptp ip1> ip route A.B.C.D 255.255.255.255 <#ptp ip2> border router in as100 config router bgp 100 neighbor E.F.G.H remote-as 1 neighbor E.F.G.H ebgp-multihop 2 neighbor E.F.G.H update-source Loopback0 ip route E.F.G.H 255.255.255.255 <#ptp ip1> ip route E.F.G.H 255.255.255.255 <#ptp ip2>

Step9: multihoming two router and multi path TIER1/AS10 AS100 AS300 AS200 AS1000 AS2000

Step9: multihoming - set primary/secondary by MED and local-preference AS100 TIER1/AS10 Metric 100 Metric 50 Metric 100 Metric 50 Local Pref 100 Local Pref 105 Local Pref 100 Local Pref 105 AS1000 AS100

Step9: sample config Border router1 in AS200 confg router bgp 200 neighbor A.B.C.D route-map fromupstream in neighbor A.B.C.D route-map toupstream out route-map fromupstream permit 10 set local-preference 100 route-map toupstream permit 10 set metric 100 Border router2 in AS200 confg router bgp 200 neighbor A.B.C.D route-map fromupstream in neighbor A.B.C.D route-map toupstream out route-map fromupstream permit 10 set local-preference 105 route-map toupstream permit 10 set metric 50

Step10: multihoming - set primary/secondary by MED and local-preference with load-sharing AS100 TIER1/AS10 Metric 100 Metric 100 Metric 100 Metric 100 Local Pref 100 Local Pref 100 Local Pref 100 Local Pref 100 AS1000 AS100

Step10: sample config Border router1 in as200 confg router bgp 200 neighbor A.B.C.D route-map fromupstream in neighbor A.B.C.D route-map toupstream out route-map fromupstream permit 10 set local-preference 100 route-map toupstream permit 10 set metric 100 Border router2 in as200 confg router bgp 200 neighbor A.B.C.D route-map fromupstream in neighbor A.B.C.D route-map toupstream out route-map fromupstream permit 10 set local-preference 100 route-map toupstream permit 10 set metric 100

Step11: BGP communities This chapter provides how ISP make a policy by bgp communities

Step11: example: private peering - three types peers This examples how communities might be used at the peering edge of an ISP network ISP has three types BGP peers: Customer IXP and Private Peers Upstream The prefixes received from each can be classified using communities Customer can opt to receive any or all of the above Basic usage: When receiving routes, tagging communities to the received routes at the received router When announcing routes, do action along tag at the place announced route

Step11: example: private peering Internet Edge Community assignments: Customer prefix: community 100:3000 Peers prefix: community 100:3100 BGP customer who buys local connectivity gets 100:3000 BGP customer who buys peers connectivity receives community 100:300 and 100:3100 Customer who wants the Internet gets everything Gets default route via default-originate Or pays money to get all 160k prefixes

View point from AS[123]00 Upstream 100:3000 Peers 100:3100 Customer 100: 10 Step11: example: private peering TIER1/AS10 AS100 AS200 AS1000

Step11: example: private peering Border router in AS100 config router bgp 100 neighbor TRANSIT-CUSTOMER peer-group neighbor TRANSIT-CUSTOMER route-map TRANSIT-CUSTOMER in neighbor PEERS peer-group neighbor PEERS route-map PEERS in neighbor UPSTREAM peer-group neighbor UPSTREAM... route-map TRANSIT-CUSTOMER permit 10 Set communities set community 100:3000 on inbound route-map PEERS permit 10 announcements set community 100:3100

Step11: example: private peering aggregation (customer) router in AS100 config router bgp 100 neighbor CUSTOMER1 peer-group neighbor CUSTOMER1 route-map CUSTOMER1 out Local routes neighbor CUSTOMER2 peer-group neighbor CUSTOMER2 route-map CUSTOMER2 out Local+Peers routes neighbor CUSTOMER3 peer-group neighbor CUSTOMER3 default-originate everything ip community-list 23 permit 100:3000 ip community-list 24 permit 100:3100 route-map CUSTOMER1 permit 10 match community 23 route-map CUSTOMER2 permit 10 match community 24 Customer gets prefixes according to community matches

TRY Step11: private peering TIER1/AS10 AS300 AS100 AS200 AS1000 AS2000

TRY Step11: private peering Policies: To upstream: announce local routes From upstream: receive full routes To peers: announce local and customer routes From peers: receive peers routes To customers: announce full routes From customers: receive customers routes Community assignments: Full routes: community <#ASN>:3000 Customer prefix: community <#ASN>:10 Peers prefix: community <#ASN>:3100

Step11: sample config Border router in AS200 config router bgp 200 Set communities neighbor A.B.C.D remote-as 1 on inbound neighbor A.B.C.D route-map fromupstream in announcements neighbor A.B.C.D route-map toupstream out neighbor E.F.G.H remote-as 1000 neighbor E.F.G.H default-originate neighbor E.F.G.H route-map fromtransit-customer in neighbor E.F.G.H route-map totransit-customer out neighbor J.K.L.M prefix-list PEER in neighbor J.K.L.M route-map frompeer in neighbor J.K.L.M route-map topeer out ip bgp-community new-format continue next slide...

Step11: sample config route-map fromupstream permit 10 set local-preference 90 set community 200:3000 route-map toupstream permit 10 set community none route-map frompeer permit 10 set local-preference 100 set community 200:3100 route-map topeer permit 10 set community none route-map totransit-customer permit 10 set community none route-map fromtransit-customer permit 10 set community 200:10 additive set local-preference 110 Set communities on inbound announcements

Step11: sample confg (Cont.) aggregation (customer) router in AS200 config router bgp 200 neighbor UPSTREAM peer-group neighbor UPSTREAM route-map toupstream out Local routes neighbor PEERS peer-group neighbor PEERS route-map topeers out Local routes neighbor TRANSIT-CUSTOMER peer-group neighbor TRANSIT-CUSTOMER route-map totransit-customer out Full routes ip community-list 21 permit 200:10 Customer routes ip community-list 23 permit 200:3000 Upstream routes ip community-list 24 permit 200:3100 PEERS routes route-map toupstream permit 10 match community 23 set community none route-map topeers permit 10 match community 23 set community none PEER and UPSTREAM gets prefixes according to community matches

QUIZ: Provide traffic control methods AS-PATH PREFENDS String 200:1001 200:1002 200:1003 200:1009 Resulting AS-PATH to ASXXX Default 200 200 200 200 200 Do not advertise to ASXXX ISP allows customers to use AS-path prepending to adjust route preference on the network.

BGP workshop scenario End of Tutorial Presented by: Bruce Morgan Bruce.Morgan@aarnet.edu.au Terutaka Komorizono teru@ntt.co.th Written by: Terutaka Komorizono teru@ntt.co.th

My test network :) TIER1/AS1 s0 ISP-A/AS100 Isp-a00 e0 s1 s0 tier00 s1 s1 e0 s0/0 e0/1 s0/1 Isp-b0bb01 Isp-b0bb00 e0/0 e0 ISP-B/AS200 Isp-b0bb02 e0 s0 user00 USER/AS1000

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback