Practical and Configuration issues of BGP and Policy routing Cameron Harvey Simon Fraser University.

Slides:



Advertisements
Similar presentations
Rensselaer Polytechnic Institute 1 Today’s Big Picture Large ISP Dial-Up ISP Access Network Small ISP Stub Large number of diverse networks.
Advertisements

1 Interdomain Traffic Engineering with BGP By Behzad Akbari Spring 2011 These slides are based on the slides of Tim. G. Griffin (AT&T) and Shivkumar (RPI)
1 Copyright  1999, Cisco Systems, Inc. Module10.ppt10/7/1999 8:27 AM BGP — Border Gateway Protocol Routing Protocol used between AS’s Currently Version.
BGP.
Border Gateway Protocol Ankit Agarwal Dashang Trivedi Kirti Tiwari.
CS540/TE630 Computer Network Architecture Spring 2009 Tu/Th 10:30am-Noon Sue Moon.
© J. Liebeherr, All rights reserved 1 Border Gateway Protocol This lecture is largely based on a BGP tutorial by T. Griffin from AT&T Research.
Border Gateway Protocol Autonomous Systems and Interdomain Routing (Exterior Gateway Protocol EGP)
Fundamentals of Computer Networks ECE 478/578 Lecture #18: Policy-Based Routing Instructor: Loukas Lazos Dept of Electrical and Computer Engineering University.
1 Interdomain Routing Protocols. 2 Autonomous Systems An autonomous system (AS) is a region of the Internet that is administered by a single entity and.
Interdomain Routing and The Border Gateway Protocol (BGP)
1 Border Gateway Protocol (BGP). 2 Contents  Internet connectivity and BGP  connectivity services, AS relationships  BGP Basics  BGP sessions, BGP.
1 Network Architecture and Design Routing: Exterior Gateway Protocols and Autonomous Systems Border Gateway Protocol (BGP) Reference D. E. Comer, Internetworking.
Mini Introduction to BGP Michalis Faloutsos. What Is BGP?  Border Gateway Protocol BGP-4  The de-facto interdomain routing protocol  BGP enables policy.
Internet Routing (COS 598A) Today: Interdomain Traffic Engineering Jennifer Rexford Tuesdays/Thursdays.
Inherently Safe Backup Routing with BGP Lixin Gao (U. Mass Amherst) Timothy Griffin (AT&T Research) Jennifer Rexford (AT&T Research)
Ion Stoica October 2, 2002 (* this presentation is based on Lakshmi Subramanian’s slides) EE 122: Inter-domain routing – Border Gateway Protocol (BGP)
CSEE W4140 Networking Laboratory Lecture 5: IP Routing (OSPF and BGP) Jong Yul Kim
14 – Inter/Intra-AS Routing
© 2009 Cisco Systems, Inc. All rights reserved. ROUTE v1.0—6-1 Connecting an Enterprise Network to an ISP Network Considering the Advantages of Using BGP.
ROUTING PROTOCOLS PART IV ET4187/ET5187 Advanced Telecommunication Network.
Release 5.1, Revision 0 Copyright © 2001, Juniper Networks, Inc. Advanced Juniper Networks Routing Module 6: Border Gateway Protocol.
Border Gateway Protocol(BGP) L.Subramanian 23 rd October, 2001.
R OUTING IN THE INTERNET. A UTONOMOUS SYSTEM ( AS ) Collections of routers that has the same protocol, administative and technical control Intra-AS routing.
BGP Attributes and Path Selections
Inter-domain Routing Don Fussell CS 395T Measuring Internet Performance.
Inter-domain Routing: Today and Tomorrow Dr. Jia Wang AT&T Labs Research Florham Park, NJ 07932, USA
© 2009 Cisco Systems, Inc. All rights reserved. ROUTE v1.0—6-1 Connecting an Enterprise Network to an ISP Network BGP Attributes and Path Selection Process.
© Janice Regan, CMPT 128, CMPT 371 Data Communications and Networking BGP, Flooding, Multicast routing.
CS 3700 Networks and Distributed Systems Inter Domain Routing (It’s all about the Money) Revised 8/20/15.
Understanding and Limiting BGP Instabilities Zhi-Li Zhang Jaideep Chandrashekar Kuai Xu
How Secure are Secure Inter- Domain Routing Protocols? SIGCOMM 2010 Presenter: kcir.
Lecture 4: BGP Presentations Lab information H/W update.
Jennifer Rexford Fall 2014 (TTh 3:00-4:20 in CS 105) COS 561: Advanced Computer Networks BGP.
Chapter 9. Implementing Scalability Features in Your Internetwork.
Border Gateway Protocol
Xuan Zheng (modified by M. Veeraraghavan) 1 BGP overview BGP operations BGP messages BGP decision algorithm BGP states.
BGP4 - Border Gateway Protocol. Autonomous Systems Routers under a single administrative control are grouped into autonomous systems Identified by a 16.
Border Gateway Protocol (BGP) W.lilakiatsakun. BGP Basics (1) BGP is the protocol which is used to make core routing decisions on the Internet It involves.
More on Internet Routing A large portion of this lecture material comes from BGP tutorial given by Philip Smith from Cisco (ftp://ftp- eng.cisco.com/pfs/seminars/APRICOT2004.
T. S. Eugene Ngeugeneng at cs.rice.edu Rice University1 COMP/ELEC 429/556 Introduction to Computer Networks Inter-domain routing Some slides used with.
Shivkumar Kalyanaraman Rensselaer Polytechnic Institute 1 ECSE-6600: Internet Protocols Informal Quiz #08: SOLUTIONS Shivkumar Kalyanaraman: GOOGLE: “Shiv.
Interdomain Routing and BGP Routing NJIT May 3, 2003 Timothy G. Griffin AT&T Research
CSCI-1680 Network Layer: Inter-domain Routing Based partly on lecture notes by Rob Sherwood, David Mazières, Phil Levis, Rodrigo Fonseca John Jannotti.
Routing in the Inernet Outcomes: –What are routing protocols used for Intra-ASs Routing in the Internet? –The Working Principle of RIP and OSPF –What is.
CS 640: Introduction to Computer Networks Aditya Akella Lecture 11 - Inter-Domain Routing - BGP (Border Gateway Protocol)
1 Agenda for Today’s Lecture The rationale for BGP’s design –What is interdomain routing and why do we need it? –Why does BGP look the way it does? How.
© 2005 Cisco Systems, Inc. All rights reserved. BGP v3.2—1-1 BGP Overview Understanding BGP Path Attributes.
1 Border Gateway Protocol (BGP) and BGP Security Jeff Gribschaw Sai Thwin ECE 4112 Final Project April 28, 2005.
BGP Basics BGP uses TCP (port 179) BGP Established unicast-based connection to each of its BGP- speaking peers. BGP allowing the TCP layer to handle such.
Route Selection Using Attributes
Text BGP Basics. Document Name CONFIDENTIAL Border Gateway Protocol (BGP) Introduction to BGP BGP Neighbor Establishment Process BGP Message Types BGP.
CS 640: Introduction to Computer Networks Aditya Akella Lecture 11 - Inter-Domain Routing - BGP (Border Gateway Protocol)
Border Gateway Protocol BGP-4 BGP environment How BGP works BGP information BGP administration.
CS 3700 Networks and Distributed Systems
Border Gateway Protocol
BGP 1. BGP Overview 2. Multihoming 3. Configuring BGP.
CS 3700 Networks and Distributed Systems
Border Gateway Protocol
BGP Routing Policies.
BGP (cont) 1. BGP Peering 2. BGP Attributes
BGP supplement Abhigyan Sharma.
Interdomain Traffic Engineering with BGP
Lixin Gao ECE Dept. UMASS, Amherst
Module Summary BGP is a path-vector routing protocol that allows routing policy decisions at the AS level to be enforced. BGP is a policy-based routing.
BGP Overview BGP concepts and operation.
Cours BGP-MPLS-IPV6-QOS
BGP Route Selection.
BGP Instability Jennifer Rexford
Computer Networks Protocols
Presentation transcript:

Practical and Configuration issues of BGP and Policy routing Cameron Harvey Simon Fraser University

BGP Overview  What is BGP? BGP is described as “The glue that holds the internet together” eBGP routers advertise reachable routes their neighbours We have already learned that they do not necessarily advertise all their routes. There is a policy set by administrators to dictate routes to advertise

BGP attributes  When making a BGP advertisement, there are a number of attributes which may be specified.  These attributes allow administrators to affect the BGP routing policies

BGP attributes (2)  Value Code Reference   1 ORIGIN [RFC1771]  2 AS_PATH [RFC1771]  3 NEXT_HOP [RFC1771]  4 MULTI_EXIT_DISC [RFC1771]  5 LOCAL_PREF [RFC1771]  6 ATOMIC_AGGREGATE [RFC1771]  7 AGGREGATOR [RFC1771]  8 COMMUNITY [RFC1997]  9 ORIGINATOR_ID [RFC2796]  10 CLUSTER_LIST [RFC2796]  11 DPA [Chen]  12 ADVERTISER [RFC1863]  13 RCID_PATH / CLUSTER_ID [RFC1863]  14 MP_REACH_NLRI [RFC2283]  15 MP_UNREACH_NLRI [RFC2283]  16 EXTENDED COMMUNITIES [Rosen] ...  255 reserved for development

BGP Decisions Algorithm  BGP Decision Algorithm 1. Highest Local Preference 2. Lowest AS Path Length 3. Lowest Origin Type (0 iBGP, 1 eBGP, 2 Incomplete) 4. Smaller MED - Multi-Exit Discriminator (iff next hops equal) 5. Lowest IGP Cost ( OSPF, RIP, etc) 6. Lowest Next Hop 7. Lowest BGP Identifier 8. Vendor-dependent Tie Break

Local Preference  This is used in iBGP Setting the local preference to a higher value will give this route preference. Used with multiple exit points from AS The highest Local Preference will be the default exit point, even if this route has more hops. In the case of router failure, the next highest Local Preference exit is chosen

Lowest AS Path Length  BGP will choose the path with the least number of AS hops An AS may inflate the length of the AS path to make the route look less attractive to other ASes. It does so by adding its own AS number to the AS path 1 or more times. This process is called AS prepending.

Lowest Origin Type  This attribute is not used consistently among AS’s.  This attribute is frequently ignored so that it does not interfere with the MED attribute

MED - Multi-Exit Discriminator  MED is typically used by two AS’s with a peering agreement. The values of the MED are part of the agreement. An AS will advertise its preferred gateway router with a lower MED. MED can be used to help balance the incoming traffic load.

Business Relations  With ISPs, it is the business relationships that are most important in determining BGP policies  Two ISPs may agree to route each others traffic. They may do so without compensation perhaps because roughly equal amounts of traffic flows between their networks. This is called a peering relationship.

Business Relations (2)  Local preference can be manipulated to avoid traffic congestion or to save money by routing through ISPs with whom there is a peering relationship Set Local Preference value in range:  for customers  for peers  for providers

Business Relations (3)  Import Policy A BGP router can filter the routes received from each of its peers  Helps control router table size  Helps with security  Export Policy A BGP router can:  Filter the routes advertised to its peers  Advertise transit routes to peers with whom it has a contract with to provide such service  Selectively report reachability information report a destination to some neighbors and not others

Router Table Size  BGP tables have been growing exponentially Tables can have more than 300,000 entries Measures have been implemented to mitigate table growth  Prefix Aggregation  Filtering long prefixes

Security  BGP was built on trust and provides no security guarantees BGP does not validate an AS’s authority to announce reachability information. BGP does not ensure the authenticity of the path attributes announced by an AS  In 1997 a small company inadvertently advertised optimal connectivity to all Internet destinations This claim was not validated in any way Most Internet traffic got routed to this destination Crippled the internet for ~2 hours

Security (2)  An AS can advertise a prefix or a longer prefix belonging to another AS  Some internet traffic for this IP will now get re-routed to this AS which can then do any of the following: Do nothing - Black-hole attack Impersonate - Obtain sensitive information  Passwords  Credit card numbers Forward to original destination - Interception attack

Security (3)  Solutions ??? Currently  Protection of the BGP TCP connection  Filtering of BGP announcements Minimally effective unless all AS’s filter agressively. Because this is labour intensive, most AS’s do not bother Future Research  S-BGP (secure BGP)  soBGP (secure origin BGP)  IRV system (Interdomain Route Validation)

References        

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.