Solved

bgp question

Posted on 2002-05-20
6
371 Views
Last Modified: 2010-04-11
hi

we have a multihomed bgp environment with our own AS.
We have been given a /24 ip address range (which we have subnetted to use 4 subnets /26 - using the
all zero and all ones subnet)

Given that we have our own AS number and IP address range, is the AS number linked with our ip address
range? is this linked solely with the "network" command in BGP config?

see configuration below:

router bgp x
no synchronization
bgp log-neighbor-changes
network a.a.a.0
neighbor x.x.x.x remote-as 702
neighbor x.x.x.x description UUnet s2/1
neighbor x.x.x.x filter-list 1 out
neighbor y.y.y.y remote-as 5378
neighbor y.y.y.y description C&W s2/0
neighbor y.y.y.y filter-list 1 out

so whatever we put in for the network a.a.a.0

ie network a.a.a.0 is important, as this will be advertised out to other BGP As'es, for instance if
I changed this to another ip address range would this cause carnage on the internet? (not that i would!
our isps trusts us!)

We have been using neigbour y.y.y.y for 2 months. We added neigbour x.x.x.x today. How long would it
take for other BGP routers to have x.x.x.x listed as a alternative AS path (via AS 702)?? to our a.a.a.0
network address range?

Would it be possible for us to be a transit AS... i know that this is a bad idea.. but how is it configured?

Thanks
0
Comment
Question by:dbrannigan
  • 5
6 Comments
 
LVL 1

Expert Comment

by:mmedwid
ID: 7022504
I believe you'd only want to be a transit AS if you are an ISP.  It souns like you are an enterprise - no?

Your ISPs probably have filters up to keep you from causing too much mayhem.   But without putting the whole block into your network statement - you risk folks not being able to reach those subnets that are excluded.  
0
 
LVL 1

Expert Comment

by:mmedwid
ID: 7030818
http://www.cisco.com/warp/public/459/bgpfaq_5816.shtml#6

Check out the entire faq actually.  
0
 
LVL 1

Expert Comment

by:mmedwid
ID: 7030820
Oops - this is the part I meant to call your attention to...

Q. How can I verify if a BGP router is announcing its BGP networks and propagating them to the global BGP mesh?
A. To check if the IP blocks are announced to the directly connected ISP, use the following commands. The show ip bgp neighbors [address] advertise-routes command shows which messages are being sent. The show ip bgp neighbors [address] routes command shows which messages are being received.
Note: The show ip bgp neighbors [address] advertise-routes command doesn't take into account any outbound policies you may have applied. In future IOS versions the command output will be changed to reflect the outbound policies.

To verify how the IP blocks are getting propagated to the global BGP mesh via the directly connected ISP, log onto a route server  on the Internet and look for the BGP entries of the prefix in the route server.
0
Flexible connectivity for any environment

The KE6900 series can extend and deploy computers with high definition displays across multiple stations in a variety of applications that suit any environment. Expand computer use to stations across multiple rooms with dynamic access.

 
LVL 1

Accepted Solution

by:
mmedwid earned 150 total points
ID: 7030821
And to see how you look from the perspective of the outside work...select any of the choices, select BGP and enter the block you are wondering about.

http://nitrous.digex.net/
0
 

Author Comment

by:dbrannigan
ID: 7141026
thanks mate.. sorry for the delay in accepting your answer!
0
 
LVL 1

Expert Comment

by:mmedwid
ID: 7141805
No problem.  Glad to be of assistance!  -Michael
0

Featured Post

Create the perfect environment for any meeting

You might have a modern environment with all sorts of high-tech equipment, but what makes it worthwhile is how you seamlessly bring together the presentation with audio, video and lighting. The ATEN Control System provides integrated control and system automation.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Need network only 1 user? 10 89
HP network exams 3 57
Question about Buffalo NAS devices 4 50
Application timeout 4 39
When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
In this article, I am going to show you how to simulate a multi-site Lab environment on a single Hyper-V host. I use this method successfully in my own lab to simulate three fully routed global AD Sites on a Windows 10 Hyper-V host.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

761 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question