Documente Academic
Documente Profesional
Documente Cultură
Configurations
Alvaro Retana
Cisco IOS®—Deployment
and Scalability
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 1
Agenda
• General Considerations
• Multihomed Networks
• Best Current Practices
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 2
The Basics
General Considerations
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 3
General Considerations
Agenda
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 4
Stub Network
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 5
Load-Sharing—Single Path
Router A:
interface loopback 0
ip address 10.60.0.1 255.255.255.255
!
router bgp 100
neighbor 10.200.0.2 remote-as 200
neighbor 10.200.0.2 update-source loopback0
neighbor 10.200.0.2 ebgp-multi-hop 2
Loopback 0
A 10.200.0.2
200
100
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 6
Load-Sharing—Multiple Paths
from Same AS
Router A:
router bgp 100
neighbor 10.200.0.1 remote-as 200
neighbor 10.300.0.1 remote-as 200
maximum-paths 6
A 200
100
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 7
What Is Multihoming?
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 9
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 10
Basic Decision Algorithm
Highest WEIGHT
Highest LOCAL PREFERENCE
LOCALLY ORIGINATED (eg network/aggregate)
Shortest AS-PATH
Lowest ORIGIN (IGP < EGP < incomplete)
Lowest MED
EBGP
IBGP
Lowest IGP METRIC to next-hop
Lowest router-id
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 11
AS_PATH
1883
• A list of AS to be traversed to 200.210.1.0/24 1881
reach a prefix 200.200.2.0/24
1880 1883 (AS_SEQUENCE)
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 12
AS_PATH
B
690 1755 1880
193.0.32/24
A
• Configuration (rtr B): Needs to go to 690
router bgp 690 666
neighbor x.x.x.x remote-as 666
neighbor x.x.x.x route-map prepend
out 193.0.32/24 1880 1755 690
! 193.0.32/24 666 690 690 690
route-map prepend permit 10
match as-path 2
set as-path prepend 690 690
!
ip as-path access-list 2 permit ^$
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 13
690
1755 1880
B
209
• Configuration (rtr B):
router bgp 1755
neighbor x.x.x.x remote-as 1880
neighbor x.x.x.x route-map set_MED out
!
route-map set_MED permit 10 Set MED = 2 for all
match as-path 2
routes originated in
set metric 2
! AS 690.
ip as-path access-list 2 permit _690$
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 15
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 16
MED - Example
200.200.1.0/24
AS 200
D
E
200.200.1.0/24 200.200.1.0/24
MED = 10 MED = 40
A B
AS 400
C Chooses the
C shortest path to the
3203 destination.
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 17
Deterministic MED
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 18
LOCAL_PREF
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 19
LOCAL_PREF (Cont.)
690
1755 1880
A
• Configuration (rtr A): Needs to go to 690
router bgp 109 666
neighbor x.x.x.x remote-as 1880
neighbor x.x.x.x route-map foo in
!
route-map foo permit 10 Set LOCAL_PREF =
match as-path 2 120 for all the routes
set local-preference 120
received from AS 1880.
!
ip as-path access-list 2 permit ^1880_
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 20
Community Attribute
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 21
Set Community
1:100
Customer A Customer B
Full Routes Customer Routes
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 22
Double the Fun!
Multihomed Networks
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 23
Multihomed Networks
Agenda
• Types of Multihoming
Outbound Traffic
• Address Allocation Issues
Inbound Traffic
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 24
Typical Multihomed E-Commerce
Network
ISP1
ISP2
Border Routers
(BGP and IGP) Si Si
Internal Routers
(BGP and/or IGP)
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 25
Types of Multihoming
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 26
Default from All Providers
AS 100
160.10.0.0/16
AS 200 AS 300
D E
0.0.0.0 0.0.0.0
A B
AS 400
C Chooses Lowest
C IGP Metric to Default
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 28
Default from All Providers
AS 100
160.10.0.0/16
AS 200 AS 300
D E
0.0.0.0 0.0.0.0
A B
AS 400
Closest exit used -
C D “watershed effect”
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 29
Customer
AS 100
160.10.0.0/16
Provider Provider
AS 200 AS 300
D E
A B
C Chooses
AS 400
Shortest AS Path
C
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 31
Customer
AS 100
160.10.0.0/16
Provider Provider
AS 200 AS 300
D 800 E
AS 100 AS 500
AS 200 AS 300
D E
A B
AS 400
C Chooses
Shortest AS Path C
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 34
Controlling Inbound Traffic?
• Example:
router bgp 1880 1883
network 200.200.1.0 200.200.2.0/24
aggregate-address 200.200.0.0 255.255.0.0 as-set
1880
200.200.1.0/24 1881
200.200.3.0/24
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 39
AS 100
200.200.0.0/16 200.200.1.0/24
Provider Provider
AS 200 AS 300
D E
200.200.1.0/24 200.200.1.0/24
A B
AS 400
The more specific
route of taken
C back.
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 40
Portable Addressing
Portable Addressing
AS 100
210.210.1.0/24 210.210.1.0/24
Provider Provider
AS 200 AS 300
D E
210.210.1.0/24 210.210.1.0/24
A B
Any path may be AS 400
chosen by the remote
AS. C
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 42
Using AS-PATH prepend
Provider Provider
AS 200 AS 300
D E
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 44
Address Space owned by other
Providers
AS 100 220.220.0.0/16
200.200.0.0/16 200.200.1.0/24
Provider Provider
AS 200 AS 300
D E
200.200.1.0/24 200.200.1.0/24
A B
AS 400
The more specific
route of taken
C back.
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 45
Provider Provider
AS 200 AS 300
D E
200.200.1.0/24 200.200.1.0/24
A B 220.220.1.0/24
220.220.1.0/24
AS 400
C
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 47
Be a Good Neighbor
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 48
Best Current Practices
Agenda
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 49
MD5 Authentication
Suppress-Limit
Penalty Reuse-Limit
2
0
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25
Time
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 52
Selective Dampening
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 53
Dampening Configuration
Customer
ISP Network
Network
Ingress to Internet
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 55
Customer
ISP Network:
Network 200.200.1.0/24
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 57
References - BGP
3203
1346_06_2000_c1_sec6 © 2000, Cisco Systems, Inc. 59
References - BGP