Upload File

11-bgp

41
15-441 Computer Networking Inter-Domain Routing BGP (Border Gateway Protocol)

Upload: andaihiep

Post on 03-Sep-2015

218 views

Category:

Documents


0 download

Report

Tags:

DESCRIPTION

11-BGP

TRANSCRIPT

  • 15-441 Computer NetworkingInter-Domain Routing

    BGP (Border Gateway Protocol)

  • SummaryThe Story So Far Routing protocols generate the forwarding tableTwo styles: distance vector, link stateScalability issues: Distance vector protocols suffer from count-to-infinityLink state protocols must flood information through networkTodays lectureHow to make routing protocols support large networksHow to make routing protocols support business policies

  • Outline

    Routing hierarchy

    Internet structure

    External BGP (E-BGP)

    Internal BGP (I-BGP)

  • Routing HierarchiesFlat routing doesnt scaleStorage Each node cannot be expected to store routes to every destination (or destination network)Convergence times increaseCommunication Total message count increasesKey observationNeed less information with increasing distance to destinationNeed lower diameters networksSolution: area hierarchy

  • AreasDivide network into areasAreas can have nested sub-areasHierarchically address nodes in a networkSequentially number top-level areasSub-areas of area are labeled relative to that areaNodes are numbered relative to the smallest containing area

  • Routing HierarchyPartition Network into AreasWithin areaEach node has routes to every other nodeOutside areaEach node has routes for other top-level areas onlyInter-area packets are routed to nearest appropriate border routerConstraint: no path between two sub-areas of an area can exit that area

    Backbone AreasLower-level AreasArea-BorderRouter

  • Area Hierarchy Addressing1231.11.22.12.23.13.22.2.12.2.21.2.11.2.2

  • Path Sub-optimality1231.11.22.12.23.13.22.2.13 hop red pathvs.2 hop green pathstartend3.2.11.2.1Can result in sub-optimal paths

  • Outline

    Routing hierarchy

    Internet structure

    External BGP (E-BGP)

    Internal BGP (I-BGP)

  • A Logical View of the Internet?After looking a RIP/OSPF descriptionsEnd-hosts connected to routersRouters exchange messages to determine connectivityNOT TRUE!

  • Internets Area HierarchyWhat is an Autonomous System (AS)?A set of routers under a single technical administration, using an interior gateway protocol (IGP) and common metrics to route packets within the AS and using an exterior gateway protocol (EGP) to route packets to other ASsSometimes ASs use multiple IGPs and metrics, but appear as single ASs to other ASsEach AS assigned unique IDASs peer at network exchanges

  • AS Numbers (ASNs)ASNs are 16 bit values64512 through 65535 are privateGenuity: 1 MIT: 3JANET: 786UC San Diego: 7377AT&T: 7018, 6341, 5074, UUNET: 701, 702, 284, 12199, Sprint: 1239, 1240, 6211, 6242, ASNs represent units of routing policyCurrently over 15,000 in use

  • Example1231.11.22.12.23.13.22.2.144.14.255.15.2EGPIGPEGPEGPIGPIGPIGPIGPEGPEGP

  • A Logical View of the Internet?RIP/OSPF not very scalable area hierarchies

    NOT TRUE EITHER!ISPs arent equalSizeConnectivity

    ISPISP

  • A Logical View of the InternetTier 1Tier 1Tier 2Tier 2Tier 2Tier 3Tier 1 ISPDefault-free with global reachability infoTier 2 ISPRegional or country-wideTier 3 ISPLocalCustomerProvider

  • Transit vs. PeeringISP XISP YISP ZISP PTransit ($)Transit ($$$)Transit ($$ 1/2)Transit ($$)PeeringTransit ($$$)Transit ($)Transit ($$)Transit ($$$)

  • Policy ImpactValley-free routingNumber links as (+1, 0, -1) for provider, peer and customerIn any path should only see sequence of +1, followed by at most one 0, followed by sequence of -1WHY?Consider the economics of the situation

  • Outline

    Routing hierarchy

    Internet structure

    External BGP (E-BGP)

    Internal BGP (I-BGP)

  • ChoicesLink state or distance vector?No universal metric policy decisionsProblems with distance-vector:Bellman-Ford algorithm may not convergeProblems with link state:Metric used by routers not the same loopsLS database too large entire InternetMay expose policies to other ASs

  • Solution: Distance Vector with PathEach routing update carries the entire pathLoops are detected as follows:When AS gets route check if AS already in pathIf yes, reject routeIf no, add self and (possibly) advertise route furtherAdvantage:Metrics are local - AS chooses path, protocol ensures no loops

  • Interconnecting BGP PeersBGP uses TCP to connect peersAdvantages:Simplifies BGPNo need for periodic refresh - routes are valid until withdrawn, or the connection is lostIncremental updatesDisadvantagesCongestion control on a routing protocol?Poor interaction during high load

  • Hop-by-hop ModelBGP advertises to neighbors only those routes that it usesConsistent with the hop-by-hop Internet paradigme.g., AS1 cannot tell AS2 to route to other ASs in a manner different than what AS2 has chosen (need source routing for that)

  • Policy with BGPBGP provides capability for enforcing various policiesPolicies are not part of BGP: they are provided to BGP as configuration informationBGP enforces policies by choosing paths from multiple alternatives and controlling advertisement to other ASs

  • Examples of BGP PoliciesA multi-homed AS refuses to act as transitLimit path advertisementA multi-homed AS can become transit for some ASsOnly advertise paths to some ASsAn AS can favor or disfavor certain ASs for traffic transit from itself

  • BGP MessagesOpenAnnounces AS IDDetermines hold timer interval between keep_alive or update messages, zero interval implies no keep_aliveKeep_aliveSent periodically (but before hold timer expires) to peers to ensure connectivity.Sent in place of an UPDATE messageNotificationUsed for error notificationTCP connection is closed immediately after notification

  • BGP UPDATE MessageList of withdrawn routesNetwork layer reachability informationList of reachable prefixesPath attributesOriginPathMetricsAll prefixes advertised in message have same path attributes

  • Path Selection CriteriaInformation based on path attributesAttributes + external (policy) informationExamples:Hop countPolicy considerationsPreference for ASPresence or absence of certain ASPath originLink dynamics

  • LOCAL PREFLocal (within an AS) mechanism to provide relative priority among BGP routersR1R2R3R4I-BGPAS 256AS 300Local Pref = 500Local Pref =800AS 100R5AS 200

  • LOCAL PREF Common UsesHandle routes advertised to multi-homed transit customersShould use direct connectionPeering vs. transitPrefer to use peering connection, why?In general, customer > peer > providerUse LOCAL PREF to ensure this

  • AS_PATHList of traversed ASsAS 500AS 300AS 200AS 100180.10.0.0/16 300 200 100170.10.0.0/16 300 200170.10.0.0/16180.10.0.0/16

  • Multi-Exit Discriminator (MED)Hint to external neighbors about the preferred path into an AS Non-transitive attribute (we will see later why)Different AS choose different scalesUsed when two ASs connect to each other in more than one place

  • MEDHint to R1 to use R3 over R4 linkCannot compare AS40s values to AS30s

    R1R2R3R4AS 30AS 40180.10.0.0MED = 120180.10.0.0MED = 200AS 10180.10.0.0MED = 50

  • MEDMED is typically used in provider/subscriber scenariosIt can lead to unfairness if used between ISP because it may force one ISP to carry more traffic:SFNYISP1 ignores MED from ISP2ISP2 obeys MED from ISP1ISP2 ends up carrying traffic most of the wayISP1ISP2

  • Decision ProcessProcessing order of attributes:Select route with highest LOCAL-PREFSelect route with shortest AS-PATHApply MED (if routes learned from same neighbor)

  • Outline

    Routing hierarchy

    Internet structure

    External BGP (E-BGP)

    Internal BGP (I-BGP)

  • Internal vs. External BGPR3R4R1R2E-BGPBGP can be used by R3 and R4 to learn routesHow do R1 and R2 learn routes?AS1AS2

  • Internal BGP (I-BGP)Same messages as E-BGPDifferent rules about re-advertising prefixes:Prefix learned from E-BGP can be advertised to I-BGP neighbor and vice-versa, but Prefix learned from one I-BGP neighbor cannot be advertised to another I-BGP neighborReason: no AS PATH within the same AS and thus danger of looping.

  • Internal BGP (I-BGP)R3R4R1R2E-BGPI-BGPR3 can tell R1 and R2 prefixes from R4R3 can tell R4 prefixes from R1 and R2R3 cannot tell R2 prefixes from R1

    R2 can only find these prefixes through a direct connection to R1Result: I-BGP routers must be fully connected (via TCP)!contrast with E-BGP sessions that map to physical linksAS1AS2

  • Important ConceptsWide area Internet structure and routing driven by economic considerationsCustomer, providers and peersBGP designed to:Provide hierarchy that allows scalabilityAllow enforcement of policies related to structureMechanismsPath vector scalable, hides structure from neighbors, detects loops quicklyIBGP structure/requirements reuse of BGP, need for a fully connected mesh

  • Next Lecture: Multicast & DNS

    How to send packets to multiple destinations

    How to resolve names like www.google.com into IP addresses

  • EXTRA SLIDESThe rest of the slides are FYI

  • HistoryMid-80s: EGPReachability protocol (no shortest path)Did not accommodate cycles (tree topology)Evolved when all networks connected to NSF backboneResult: BGP introduced as routing protocolLatest version = BGP 4BGP-4 supports CIDRPrimary objective: connectivity not performance

  • Link FailuresTwo types of link failures:Failure on an E-BGP linkFailure on an I-BGP LinkThese failures are treated completely different in BGPWhy?

  • Failure on an E-BGP LinkAS1R1AS2R2Physical linkE-BGP session138.39.1.1/30138.39.1.2/30If the link R1-R2 goes downThe TCP connection breaksBGP routes are removedThis is the desired behavior

  • Failure on an I-BGP LinkR1R2R3Physical linkI-BGP connection138.39.1.1/30138.39.1.2/30If link R1-R2 goes down, R1 and R2 should still be able to exchange traffic The indirect path through R3 must be usedThus, E-BGP and I-BGP must use different conventions with respect to TCP endpoints

  • BGP Common HeaderLength (2 bytes)Type (1 byte)0123Marker (security and message delineation)16 bytesTypes: OPEN, UPDATE, NOTIFICATION, KEEPALIVE

  • CIDR and BGPAS X197.8.2.0/24AS Y197.8.3.0/24AS T (provider)197.8.0.0/23AS ZWhat should T announce to Z?

  • OptionsAdvertise all paths:Path 1: through T can reach 197.8.0.0/23Path 2: through T can reach 197.8.2.0/24Path 3: through T can reach 197.8.3.0/24But this does not reduce routing tables! We would like to advertise:Path 1: through T can reach 197.8.0.0/22

  • Sets and SequencesProblem: what do we list in the route?List T: omitting information not acceptable, may lead to loopsList T, X, Y: misleading, appears as 3-hop pathSolution: restructure AS Path attribute as:Path: (Sequence (T), Set (X, Y))If Z wants to advertise path:Path: (Sequence (Z, T), Set (X, Y))In practice used only if paths in set have same attributes

  • Other AttributesORIGINSource of route (IGP, EGP, other)NEXT_HOPAddress of next hop router to useCheck out http://www.cisco.com for full explanation

    Where would you use this? Between ISPs? At edges?What are some choices?


33 - Routing - BGP - Internal and External BGP

BGP Troubleshootingbgp4all.com/ftp/seminars/AfNOG2003-BGP-Troubleshooting.pdf · R2#sh ip bgp neigh 3.3.3.3 BGP neighbor is 3.3.3.3, remote AS 2, external link BGP version 4, remote

5 - BGP for IPv6 - PacNOGTitle 5 - BGP for IPv6.ppt Author Philip Smith Created Date 5/16/2009 11:00:26 AM

BGP Best Current Practicesftp.ines.ro/doc/isp-workshops/BGP Presentations/5-bgp-bcp.pdf · Cisco IOS Good Practices ! BGP in Cisco IOS is permissive by default ! Configuring BGP peering

BGP - CiscoBGP Name/CLIKeyword bgp FullName BorderGatewayProtocol BorderGatewayProtocol(BGP)isaprotocoldesignedtosharenetwork information(forexamplenetworkreachability

BGP V1.1. When is BGP Applicable Basic BGP Peer Configuration Troubleshooting BGP Connections BGP Operation and Path Attributes Route Import/Export Selected

A Simple BGP - RIPE 71 · A Simple BGP Author: mitradir Created Date: 11/19/2015 10:38:31 AM

BGP/2004.5.1 November 2004 © O. Bonaventure, 2004 · Organization of the global Internet BGP basics BGP in large networks Interdomain traffic engineering with BGP BGP-based Virtual

Internet inter-AS routing: BGP - inet.tu-berlin.de file3 BGP Basics Pairs of routers (BGP peers) exchange routing info over semi-permanent TCP connections: BGP sessions Note that BGP

Implementing BGP Explaining BGP Concepts and Terminology

Introduction to BGP - SourceForgedslrouter.sourceforge.net/stuff/cisco/bgp-0.pdf · BGP neighbour status Router1>sh ip bgp sum BGP router identifier 100.1.15.224, local AS number

1 Border Gateway Protocol (BGP). 2 Contents Internet connectivity and BGP connectivity services, AS relationships BGP Basics BGP sessions, BGP

VPLS BGP Signaling L2VPN Inter-AS Option B · l2vpn vfi context TEST101 vpn id 1 autodiscovery bgp signaling bgp ve id 2 route-target import 22:22 route-target export 11:11 no auto-route-target!

BGP Multihoming Techniques - University …nets.ucar.edu/nets/intro/staff/siemsen/hints/bgp/AfNOG2011-BGP...Case Study. AfNOG 2011 5 ... BGP Multihoming Techniques ... • failure

Advanced Networking Topics: BGP, BGP Hijacking, MPLS, …

New Chapter 5: Network Layer – Border Gateway Patrol (BGP) · 2018. 11. 28. · BGP UPDATE messages, we assume for simplicity that a BGP message contains only information about

BGP mVPN BGP sAFI 129 - IPv4 - CiscoHow to Configure BGP -- mVPN BGP sAFI 129 - IPv4 Configure BGP — mVPN BGP sAFI 129 - IPv4 SUMMARY STEPS 1. enable 2. configure terminal 3. vrfdefinitionvrf1

11 bgp-ethernet

BGP-TE APPLICATION LEVEL TOPOLOGY …...BGP Speaker BGP BGP Speaker Speaker IGP Router AS1 Prefix 1, 2, 3, … Prefix 11, 12, 13, … Prefix 21, 22, 23, … BGP Speaker Prefix 31,

BGP meets Big Data...BGP meets Big Data Monitoring BGP –Snapshot vs. History BGP Monitoring Protocol –RFC 7854 BMP collector BMP client Inbound policy BMPmessages BGP peers (external)

Journey to IPv6set protocols bgp group IPV6-BGP type internal set protocols bgp group IPV6-BGP local-address 2400:1a00:100:10::1 set protocols bgp group IPV6-BGP family inet6 unicast

Hands-on Advanced Networking Topics: BGP, BGP Hijacking

BGP Techniques for Internet Service Providers - MENOG · BGP Techniques for Internet Service Providers BGP Basics Scaling BGP Using Communities Deploying BGP in an ISP network.

Deploying BGP Fast Convergence BGP PICd2zmdbbm9feqrf.cloudfront.net/2013/eur/pdf/BRKIPM-2265.pdf · Deploying BGP Fast Convergence / BGP PIC Oliver Böhmer BRKIPM-2265 ... • Designing

BGP Large Communities- a new BGP Routing Heuristic

Border Gateway Protocol BGP Network delay … Gateway Protocol, BGP Network delay simulator, BGP Router emulator, BGP latency, BGP network emulator, network impairments, OSPFv2, OSPFv3,

Blog Ine Com 2010-11-22 Understanding Bgp Convergence

CS 268: Computer Networking L-3 BGP. 2 Outline BGP ASes, Policies BGP Attributes BGP Path Selection iBGP

Overlays and The Evolution of BGP Peering. Agenda BGP Issues – Overlay Networks – VPNs – ToR BGP…

> Border Gateway Protocol (BGP-4) Technical Configuration Guide ·  · 2013-11-07Ethernet Routing Switch 8600 Engineering > Border Gateway Protocol (BGP-4) Technical Configuration

Implementing BGP - Cisco · Implementing BGP BorderGatewayProtocol(BGP)isanExteriorGatewayProtocol(EGP)thatallowsyoutocreateloop-free interdomainroutingbetweenautonomoussystems

Lab Course “RouterLab” - TU Berlin Course “RouterLab” BGP ... A Border Gateway Protocol 4 (BGP-4) RFC 4456, BGP Route Reflection - An ... ‣ Cisco BGP ‣ Juniper BGP

BGP-RCN: improving BGP convergence through root cause

BGP & MPLS WALKTHROUGH - Amazon S3 · BGP & MPLS WALKTHROUGH 3 BGP CHAPTER 1 QUESTIONS: 1. What BGP ASNs Values? 2. What is iBGP & eBGP ? 3. How BGP form iBGP relationship ,which

Securing the Border Gateway Protocol€¦ ·  · 2005-01-03Outline [BGP Overview [BGP Security [S-BGP Architecture [Deployment Issues for S-BGP [Alternative Approaches to BGP Security