Re: [c-nsp] BGP Config
Ivan Pepelnjak wrote: I absolutely agree with Charles ... although not on the provider will give you the necessary details part. I've seen some service providers that were somewhat inadequate in that respect (trying to be diplomatic :). Yes. That's quite true unfortunately. :( You might find some of the links/videos on my BGP resource center useful: http://wiki.nil.com/BGP Ah yes. Excellent work your doing Ivan! Great blog and wiki. :) The next starting point is Cisco's BGP page: http://www.cisco.com/en/US/tech/tk365/tk80/tsd_technology_support_sub-protoc ol_home.html Yep. Read up on Ivans page for theory/explanations etc, and then utilize the extensive reference documentation that cisco makes available. They have always been very good at reference material, but seem to rely on 3rd parties to create tutorial/overview material either that or attend the CCNA/CCNP/CCIE courses. Navigating the docs is still something of an art form though. Cisco has 20 some years of history and an incredibly broad product matrix (and I thought Microsoft licensing was difficult!) So lists like c-nsp exist for when the finer parts of the art need to be discussed and reviewed. In ciscos defense, it seems they have been creating more and more tutorial/design material recently, and making it freely available via their website. Things like the chalk talks http://www.cisco.com/en/US/prod/collateral/vpndevc/ps5707/ps8418/ps6128/prod_presentation0900aecd80549168.html There are a wide variety of knobs that can be turned, and incorrect operation of a router that participates in BGP exchange can result in very nasty problems. ( http://asert.arbornetworks.com/2008/02/internet-routing-insecuritypakistan-nukes-youtube/ http://www.renesys.com/blog/2008/02/pakistan-hijacks-youtube-1.shtml ) ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] BGP Config
Ivan's stuff is excellent. Another very good resource for BGP is Philip Smith. He does BGP tutorials, among others, regularly all over the world. The last NANOG BGP multihoming session is here: http://www.nanog.org/meetings/nanog41/abstracts.php?pt=MTQ4Jm5hbm9nNDE=nm=nanog41 You can find his other NANOG presentations using the Show This Speaker drop-down tab here: http://www.nanog.org/presentations/archive/index.php ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] BGP Config
Alain Camille wrote: My ISP will be maintaining the BGP configuration for my organization.. I need a minimal BGP configuration on my core device that will allow connectivity to the ISP. Looking for some direction. Thanks. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ I'm guessing you didn't bother to look at cisco's website since they have several basic config examples on there. ~Seth ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] BGP Config
Alain Camille wrote: My ISP will be maintaining the BGP configuration for my organization.. I need a minimal BGP configuration on my core device that will allow connectivity to the ISP. Looking for some direction. Thanks. Are you connected to a single ISP at a single geographic location? If so it probably isn't worth the effort. If you are connected to multiple ISPs, the BGP configuration may not be so minimal and you'll likely want to engage the services of someone knowledgeable in the field to configure and maintain as needed. Do you have an AS (Autonomous System) number assigned by your regional registry? Do you have portable IP space? If both are no, and you're only connected to one ISP, you almost certainly don't need to run BGP. A simple default route to your ISP will suffice. -- Jay Hennigan - CCIE #7880 - Network Engineering - j...@impulse.net Impulse Internet Service - http://www.impulse.net/ Your local telephone and internet company - 805 884-6323 - WB6RDV ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] BGP Config
http://www.netconfigs.com/tools/bgp.htm Makes it nice and easy. It'll get ya up atleast. No promises after that --chip On Mon, May 18, 2009 at 4:43 PM, Alain Camille alain_cami...@hotmail.comwrote: My ISP will be maintaining the BGP configuration for my organization.. I need a minimal BGP configuration on my core device that will allow connectivity to the ISP. Looking for some direction. Thanks. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ -- Just my $.02, your mileage may vary, batteries not included, etc ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] BGP Config
I absolutely agree with Charles ... although not on the provider will give you the necessary details part. I've seen some service providers that were somewhat inadequate in that respect (trying to be diplomatic :). You might find some of the links/videos on my BGP resource center useful: http://wiki.nil.com/BGP The next starting point is Cisco's BGP page: http://www.cisco.com/en/US/tech/tk365/tk80/tsd_technology_support_sub-protoc ol_home.html Hope this helps! Ivan http://www.ioshints.info/about http://blog.ioshints.info/ -Original Message- From: Charles Wyble [mailto:char...@thewybles.com] Sent: Monday, May 18, 2009 11:22 PM To: Alain Camille Cc: cisco-nsp@puck.nether.net Subject: Re: [c-nsp] BGP Config This should be provided by your ISP. Lots of BGP docs on the net. if your asking for help on the c-nsp list with an ultra generic topic please please please please get some training and do some reading. Again your provider will give you the necessary details. Alain Camille wrote: My ISP will be maintaining the BGP configuration for my organization.. I need a minimal BGP configuration on my core device that will allow connectivity to the ISP. Looking for some direction. Thanks. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] BGP config question
HI Guys We are currently getting our transit via BGP from 2 seperate providers, we have our own AS and now we have a customer who wants us to provide them with BGP transit. The customer also has their own AS. I have searched the net for example configs but so far all I have found is examples from the customers point of view rather than the providers (I guess I should already know the answer). I've had a crack at the config and was hoping you guys could point me in the correct direction or point out any errors. router bgp 29xxx network 82.xxx.xxx.0 mask 255.255.224.0 (our IP space) network 89.xxx.xxx.0 mask 255.255.224.0 (our IP space) network 213.xxx.xxx.0 (our IP space) network 213.xxx.xxx.0 (our IP space) network 217.xxx.xxx.0 mask 255.255.240.0 (customers IP space, is this line required ?) neighbor 82.xxx.xxx.162 remote-as 20xxx neighbor 82.xxx.xxx.162 description eBGP transit for customer neighbor 82.xxx.xxx.162 password neighbor 82.xxx.xxx.162 prefix-list AS20xxx-in in neighbor 82.xxx.xxx.162 distribute-list 190 out neighbor 82.xxx.xxx.162 filter-list 10 out ip prefix-list AS20xxx-in seq 5 permit 217.xxx.xxx.0/20 ip prefix-list AS20xxx-in seq 10 deny 0.0.0.0/0 Thanks in advance for your time. Wayne ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] BGP config question
Wayne Lee wrote: We are currently getting our transit via BGP from 2 seperate providers, we have our own AS and now we have a customer who wants us to provide them with BGP transit. The customer also has their own AS. I have searched the net for example configs but so far all I have found is examples from the customers point of view rather than the providers (I guess I should already know the answer). There is really no difference - You've already filtered their inbound routes to avoid being flooded with prefixes, so that's about it. You'll also have to work with your own upstreams to ensure they don't filter your customer's routers from your own BGP sessions. network 217.xxx.xxx.0 mask 255.255.240.0 (customers IP space, is this line required ?) You don't need this - You should also ensure that you do not have any static/OSPF/EIGRP routes on your equipment for their subnets. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/