• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 543
  • Last Modified:

Move inbound traffic from one ISP to second ISP using BGP

I have two isp's providing me connectivity. I need to get most to all of the inbound traffic to come in via only one ISP as the second ISP has me on a plan that limits my bandwidth. I only really want to use the second ISP when the first goes down.

I have used a prepend statement, but that has not made any measurable change.

One item of note is the ip addresses I am using and advertising via BGP are two /24's supplied by ISP #2.  Could that be causing part of my grief?  

What can I do to get the inbound traffic to come in via ISP #1

router bgp 999
 no synchronization
 bgp log-neighbor-changes
 bgp graceful-restart restart-time 120
 bgp graceful-restart stalepath-time 360
 bgp graceful-restart
 network 2.2.144.0
 network 2.2.145.0
 neighbor 1.1.218.53 remote-as 111
 neighbor 1.1.218.53 send-community
 neighbor 1.1.218.53 soft-reconfiguration inbound
 neighbor 1.1.218.53 route-map isp1-out out
 neighbor 2.2.138.17 remote-as 222
 neighbor 2.2.138.17 send-community
 neighbor 2.2.138.17 soft-reconfiguration inbound
 neighbor 2.2.138.17 route-map isp2-out out
 no auto-summary


route-map isp1-out permit 10
 match ip address prefix-list isp1-out
 set local-preference 120
!
route-map isp2-in permit 20
 match ip address prefix-list isp2-in
!
route-map isp1-in permit 10
 match ip address prefix-list isp1-in
!
route-map isp2-out permit 20
 match ip address prefix-list isp2-out
 set local-preference 110
 set as-path prepend 999 999 999 999 999

Open in new window

0
claytarget
Asked:
claytarget
  • 6
  • 5
  • 2
1 Solution
 
Jan SpringerCommented:
ISP2, if configured properly, should always prefer the customer connection over sending the data off-net.

It would be helpful to supply the /24s in question so that I could look at the routing table.
0
 
claytargetAuthor Commented:
jesper - I am not sure if I understood you correctly. We want the bulk of the traffic to go in and out of ISP 1. Currently we have all outbound traffic going through ISP1, but only 50% of the inbound traffic.

216.130.144.0
216.130.145.0
0
 
Jan SpringerCommented:
First of all, check with the ISP AS20382, they are announcing your routes (as if they originate from them).

Also, did you do a 'clear ip bgp IP_OF_ISP2' to apply the new route-map?
0
Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

 
claytargetAuthor Commented:
'clear ip bgp IP_OF_ISP2' - just did that
0
 
claytargetAuthor Commented:
One more question - how did you determine AS20382 are announcing the routes?
0
 
Jan SpringerCommented:
"sho ip bgp 216.130.144.0"

What is the output of "sho ip bgp <neighbor ip> adv" ?

Shows me who is originating that prefix.  The as-path prepend will never work while ISP2 is announcing the routes (at the /24 level) on your behalf.

So, you need to open a trouble ticket and ask them
  1) if they see your route advertisements
  2) if they will accept 216.130.144.0/23 from you (as an option)
  3) quit announcing those networks so that they originate from you
0
 
Craig BeckCommented:
Can you use the bandwidth command on the interface that connects you to ISP2?
You could leave the interface on ISP1 at its default (100Mbps for example), and set the ISP2 interface to 20Mbps.

This would not limit the bandwidth to ISP2, just increase the routing metric.

Just a thought!

http://www.networkingblog.in/bgp-link-bandwidth-line-speed-question-2-10285
0
 
Jan SpringerCommented:
That question on line 2 should be the first line.  The third sentence clarifies the first.
0
 
Jan SpringerCommented:
Setting the bandwidth will not redistribute incoming traffic through ISP1.

The problem is that one of the providers is announcing the routes on his behalf.
0
 
Craig BeckCommented:
Fair point - I read it wrong!
0
 
claytargetAuthor Commented:
jesper - I am waiting on ISP2 to confirm the three items you outlined above.

craigbeck - I dont think that will work (but we are going to try it) as I think jesper is right, as ISP2 is just announcing they have those networks and are ignoring all information we are advertising.
0
 
claytargetAuthor Commented:
Update: Just found out that this was working until some time in the recent past (days? weeks?) when ISP2 replaced a router. (great! now they tell me!)

Waiting on a phone call back from the engineers at ISP2.
0
 
claytargetAuthor Commented:
ISP2 started fixed it so the announcements originated from me
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 6
  • 5
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now