Presentation is loading. Please wait.

Presentation is loading. Please wait.

BGP Wedgies ---- Bad Policy Interactions that Cannot be Debugged

Published byHarjanti Hermanto Modified over 5 years ago

Similar presentations

Presentation on theme: "BGP Wedgies ---- Bad Policy Interactions that Cannot be Debugged"— Presentation transcript:

1 BGP Wedgies ---- Bad Policy Interactions that Cannot be Debugged
APNIC 18 Routing SIG September 2, 2004 Fiji

2 What is a BGP Wedgie? BGP policies make sense locally
Interaction of local policies allows multiple stable routings Some routings are consistent with intended policies, and some are not If an unintended routing is installed (BGP is “wedged”), then manual intervention is needed to change to an intended routing When an unintended routing is installed, no single group of network operators has enough knowledge to debug the problem ¾ wedgie full wedgie

3 ¾ Wedgie Example peer peer AS 1 implements backup link by sending AS 2 a “depref me” community. AS 2 implements this community so that the resulting local pref is below that of routes from it’s upstream provider (AS 3 routes) AS 3 AS 4 provider provider customer AS 2 primary link provider backup link customer customer AS 1

4 And the Routings are… Intended Routing Unintended Routing AS 1 AS 2
Note: this would be the ONLY routing if AS2 translated its “depref me” community to a “depref me” community of AS 3 Note: This is easy to reach from the intended routing just by “bouncing” the BGP session on the primary link.

5 Recovery Requires manual intervention Can be done in AS 1 or AS 2 AS 1
Bring down AS 1-2 session Bring it back up! Requires manual intervention Can be done in AS 1 or AS 2

6 Load Balancing Example
peer peer AS 3 AS 4 provider provider customer customer AS 2 AS 5 primary link for prefix P2 backup link for prefix P1 primary link for prefix P1 backup link for prefix P2 AS 1 Recovery for prefix P1 may cause a BGP wedgie for prefix P2 …

7 Full Wedgie Example AS 3 AS 4 AS 2 AS 5 AS 1
AS 1 implements backup links by sending AS 2 and AS 3 a “depref me” communities. AS 2 implements its community so that the resulting local pref is below that of its upstream providers and it’s peers (AS 3 and AS 5 routes) AS 5 implements its community so that the resulting local pref is below its peers (AS 2) but above that of its providers (AS 3) peer peer AS 3 AS 4 provider provider customer customer AS 2 peer peer AS 5 backup links provider primary link customer customer AS 1

8 And the Routings are… Intended Routing Unintended Routing AS 3 AS 4

9 Recovery?? AS 3 AS 4 AS 3 AS 4 AS 2 AS 5 AS 2 AS 5 AS 1 AS 1
Bring down AS 1-2 session Bring up AS 1-2 session

10 Recovery AS 3 AS 4 AS 1 AS 2 AS 3 AS 4 AS 5 AS 3 AS 4 AS 2 AS 5 AS 2
Bring down AS 1-2 session AND AS 1-5 session Bring up AS 1-2 session AND AS 1-5 session Try telling AS 5 that it has to reset a BGP session that is not associated with a BEST route!

11 A Global ISP (or Corporate Intranet) Implemented with 5 ASes
AU++ AP EMEA LA NA

12 Full Wedgie Example, in a new Guise
AP Message: Same problems can arise with “traffic engineering” across domains. EMEA LA AU Intended Routing for some prefixes in AU

13 Recommendations Be aware of BGP Wedgies
Interdomain communities that can tweak a route’s preference should be defined with care and consistently implemented Tools to enumerate all stable routings would be useful inherently exponential in theory, but may not be that bad in practice (on instances much smaller than global Internet!) I’m currently attempting an implementation on top of

14 Comments Appreciated!

Download ppt "BGP Wedgies ---- Bad Policy Interactions that Cannot be Debugged"

Similar presentations

Introduction to IP Routing Geoff Huston. Routing How do packets get from A to B in the Internet? A B Internet.

Introduction to IP Routing Geoff Huston. Routing How do packets get from A to B in the Internet? A B Internet.
Multihoming and Multi-path Routing

Multihoming and Multi-path Routing
Multihoming and Multi-path Routing

Multihoming and Multi-path Routing
Network Layer: Internet-Wide Routing & BGP Dina Katabi & Sam Madden.

Network Layer: Internet-Wide Routing & BGP Dina Katabi & Sam Madden.
Fundamentals of Computer Networks ECE 478/578 Lecture #18: Policy-Based Routing Instructor: Loukas Lazos Dept of Electrical and Computer Engineering University.

Fundamentals of Computer Networks ECE 478/578 Lecture #18: Policy-Based Routing Instructor: Loukas Lazos Dept of Electrical and Computer Engineering University.
Interdomain Routing and The Border Gateway Protocol (BGP) CL Oct 27, 2004 Timothy G. Griffin Intel Research, Cambridge UK

Interdomain Routing and The Border Gateway Protocol (BGP) CL Oct 27, 2004 Timothy G. Griffin Intel Research, Cambridge UK
Best Practices for ISPs

Best Practices for ISPs
1 Tutorial 5 Safe “Peering Backup” Routing With BGP Based on:

1 Tutorial 5 Safe “Peering Backup” Routing With BGP Based on:
Tutorial 5 Safe Routing With BGP Based on: Internet.

Tutorial 5 Safe Routing With BGP Based on: Internet.
Mini Introduction to BGP Michalis Faloutsos. What Is BGP?  Border Gateway Protocol BGP-4  The de-facto interdomain routing protocol  BGP enables policy.

Mini Introduction to BGP Michalis Faloutsos. What Is BGP?  Border Gateway Protocol BGP-4  The de-facto interdomain routing protocol  BGP enables policy.
Structure of the Internet Update for 1 st H/Wk We will start lab next week Paper presentation at the end of the session Next Class MPLS.

Structure of the Internet Update for 1 st H/Wk We will start lab next week Paper presentation at the end of the session Next Class MPLS.
Changed made by MF on 29/10/04 Delete Change Add –All slides Obtained Geoff Huston’s review – done on 26/10/2004 Obtained Doc Team’s proof read - done.

Changed made by MF on 29/10/04 Delete Change Add –All slides Obtained Geoff Huston’s review – done on 26/10/2004 Obtained Doc Team’s proof read - done.
Internet Networking Spring 2004 Tutorial 5 Safe “Peering Backup” Routing With BGP.

Internet Networking Spring 2004 Tutorial 5 Safe “Peering Backup” Routing With BGP.
W4140 Network Laboratory Lecture 9 Nov 12 - Fall 2006 Shlomo Hershkop Columbia University.

W4140 Network Laboratory Lecture 9 Nov 12 - Fall 2006 Shlomo Hershkop Columbia University.
On the Death of BGP MSN July 8, 2004 Timothy G. Griffin Intel Research, Cambridge UK

On the Death of BGP MSN July 8, 2004 Timothy G. Griffin Intel Research, Cambridge UK
Stable Internet Routing Without Global Coordination Jennifer Rexford Princeton University Joint work with Lixin Gao (UMass-Amherst)

Stable Internet Routing Without Global Coordination Jennifer Rexford Princeton University Joint work with Lixin Gao (UMass-Amherst)
Interdomain Routing Establish routes between autonomous systems (ASes). Currently done with the Border Gateway Protocol (BGP). AT&T Qwest Comcast Verizon.

Interdomain Routing Establish routes between autonomous systems (ASes). Currently done with the Border Gateway Protocol (BGP). AT&T Qwest Comcast Verizon.
Inherently Safe Backup Routing with BGP Lixin Gao (U. Mass Amherst) Timothy Griffin (AT&T Research) Jennifer Rexford (AT&T Research)

Inherently Safe Backup Routing with BGP Lixin Gao (U. Mass Amherst) Timothy Griffin (AT&T Research) Jennifer Rexford (AT&T Research)
BGP Wedgies ---- Bad Policy Interactions that Cannot be Debugged NANOG 31 May 23-25, 2004 Timothy G. Griffin Intel Research, Cambridge UK

BGP Wedgies ---- Bad Policy Interactions that Cannot be Debugged NANOG 31 May 23-25, 2004 Timothy G. Griffin Intel Research, Cambridge UK
Economic Incentives in Internet Routing Jennifer Rexford Princeton University

Economic Incentives in Internet Routing Jennifer Rexford Princeton University

Similar presentations

Ads by Google