Thomas, Thanks for the info. This is probably why my multipath configuration wasn't working as I thought it would. I will give this a test run also.
Mike, Interesting thought. This would mean rpf-check wouldn't work on my outside interfaces. Good to know. On Thu, May 17, 2018 at 8:55 AM Mike Hammett <na...@ics-il.net> wrote: > Just be aware of the impact a default route can have on your > infrastructure, such as uRPF no longer works as expected as everything has > a valid route. > > > > ----- > Mike Hammett > Intelligent Computing Solutions > http://www.ics-il.com > > Midwest-IX > http://www.midwest-ix.com > > ------------------------------ > *From: *"Adam Kajtar" <akaj...@wadsworthcity.org> > *To: *er...@gotfusion.net > *Cc: *nanog@nanog.org > *Sent: *Wednesday, May 16, 2018 9:32:27 AM > *Subject: *Re: Juniper BGP Convergence Time > > Erich, > > Good Idea. I can't believe I didn't think of that earlier. Simple and > effective. I will go ahead and request the defaults from my ISP and update > the thread of the findings. > > Thanks! > > On Wed, May 16, 2018 at 10:03 AM Kaiser, Erich <er...@gotfusion.net> > wrote: > > > A last resort route (default route) could still be good to take from your > > ISP(s) even if you still do full routes, as the propagation is happening > on > > the internet side, you should at least have a path inbound through the > > other provider. The default route at least would send the traffic out if > > it does not see the route locally. Just an idea. > > > > > > > > On Wed, May 16, 2018 at 8:22 AM, Adam Kajtar <akaj...@wadsworthcity.org> > > wrote: > > > > > I could use static routes but I noticed since I moved to full routes I > > > have had a lot fewer customer complaints about latency(especially when > it > > > comes to Voice and VPN traffic). > > > > > > I wasn't using per-packet load balancing. I believe juniper default is > > per > > > IP. > > > > > > My timers are as follows > > > Active Holdtime: 90 > > > Keepalive Interval: 30 > > > > > > Would I be correct in thinking I need to contact my ISP to lower these > > > values? > > > > > > An interesting note is when I had both ISPs connected into a single > MX104 > > > the failover was just a few seconds. > > > > > > Thanks again. > > > > > > > > > > > > On Tue, May 15, 2018 at 8:42 PM Ben Cannon <b...@6by7.net> wrote: > > > > > >> Have you checked your timeouts ? > > >> > > >> -Ben > > >> > > >> > On May 15, 2018, at 4:09 PM, Kaiser, Erich <er...@gotfusion.net> > > wrote: > > >> > > > >> > Do you need full routes? What about just a default route from BGP? > > >> > > > >> > Erich Kaiser > > >> > The Fusion Network > > >> > er...@gotfusion.net > > >> > Office: 815-570-3101 > > >> > > > >> > > > >> > > > >> > > > >> >> On Tue, May 15, 2018 at 5:38 PM, Aaron Gould <aar...@gvtc.com> > > wrote: > > >> >> > > >> >> You sure it doesn't have something to do with 60 seconds * 3 = 180 > > >> secs of > > >> >> BGP neighbor Time out before it believes neighbor is dead and > remove > > >> routes > > >> >> to that neighbor? > > >> >> > > >> >> Aaron > > >> >> > > >> >>> On May 15, 2018, at 9:10 AM, Adam Kajtar < > akaj...@wadsworthcity.org > > > > > >> >> wrote: > > >> >>> > > >> >>> Hello: > > >> >>> > > >> >>> I'm running two Juniper MX104s. Each MX has 1 ISP connected > running > > >> >>> BGP(full routes). iBGP is running between the routers via a two > port > > >> 20G > > >> >>> lag. When one of the ISPs fails, it can take upwards of 2 minutes > > for > > >> >>> traffic to start flowing correctly. The router has the correct > route > > >> in > > >> >> the > > >> >>> routing table, but it doesn't install it in the forwarding table > for > > >> the > > >> >>> full two mins. > > >> >>> > > >> >>> I have a few questions if anyone could answer them. > > >> >>> > > >> >>> - What would a usual convergence time be for this setup? > > >> >>> - Is there anything I could do speed this process up? (I tried > > >> >> Multipath) > > >> >>> - Any tips and tricks would be much appreciated > > >> >>> > > >> >>> Thanks in Advance > > >> >>> -- > > >> >>> Adam Kajtar > > >> >>> Systems Administrator > > >> >>> City of Wadsworth > > >> >>> akaj...@wadsworthcity.org > > >> >>> ----------------------------------------------------- > > >> >>> http://www.wadsworthcity.com > > >> >>> > > >> >>> Facebook <http://www.facebook.com/cityofwadsworth>* |* Twitter > > >> >>> <https://twitter.com/CityOfWadsworth> *|* Instagram > > >> >>> <https://www.instagram.com/cityofwadsworth/> *|* YouTube > > >> >>> <https://www.youtube.com/channel/UCymlH-AZgvxTaHtgp3-AmDQ> > > >> >> > > >> >> > > >> > > > > > > > > > -- > > > Adam Kajtar > > > Systems Administrator, Safety Services > > > City of Wadsworth > > > Office 330.335.2865 > > > Cell 330.485.6510 > > > akaj...@wadsworthcity.org > > > ----------------------------------------------------- > > > http://www.wadsworthcity.com > > > > > > Facebook <http://www.facebook.com/cityofwadsworth>* |* Twitter > > > <https://twitter.com/CityOfWadsworth> *|* Instagram > > > <https://www.instagram.com/cityofwadsworth/> *|* YouTube > > > <https://www.youtube.com/channel/UCymlH-AZgvxTaHtgp3-AmDQ> > > > > > > > > -- > Adam Kajtar > Systems Administrator, Safety Services > City of Wadsworth > Office 330.335.2865 > Cell 330.485.6510 > akaj...@wadsworthcity.org > ----------------------------------------------------- > http://www.wadsworthcity.com > > Facebook <http://www.facebook.com/cityofwadsworth>* |* Twitter > <https://twitter.com/CityOfWadsworth> *|* Instagram > <https://www.instagram.com/cityofwadsworth/> *|* YouTube > <https://www.youtube.com/channel/UCymlH-AZgvxTaHtgp3-AmDQ> > > -- Adam Kajtar Systems Administrator, Safety Services City of Wadsworth Office 330.335.2865 Cell 330.485.6510 akaj...@wadsworthcity.org ----------------------------------------------------- http://www.wadsworthcity.com Facebook <http://www.facebook.com/cityofwadsworth>* |* Twitter <https://twitter.com/CityOfWadsworth> *|* Instagram <https://www.instagram.com/cityofwadsworth/> *|* YouTube <https://www.youtube.com/channel/UCymlH-AZgvxTaHtgp3-AmDQ>