Re: Quagga for production?

[Mark Tinka]

On 18/Mar/20 22:22, Nick Hilliard wrote:

> Yeah.  I was thinking more for the case of customer-facing anycast
> resolvers, in which case BGP down means that the network is down, and
> if the network is down it doesn't matter than DNS is also down because
> their shared fate means that when BGP is back up, DNS will start
> working again.

As much as possible, I'll always choose to have the most basic
infrastructure available under abnormal conditions, regardless of the
service.

ME3600X's and ASR920's, for example, will install 0/0 and ::/0 in FIB
last. If your access to the core depends entirely on BGP in such
scenarios, you will be unable to access it for as much as 10 minutes.

Mark.

Re: Quagga for production?

[Mark Tinka]

On 18/Mar/20 22:22, Nick Hilliard wrote:

>
> Yeah.  I was thinking more for the case of customer-facing anycast
> resolvers, in which case BGP down means that the network is down, and
> if the network is down it doesn't matter than DNS is also down because
> their shared fate means that when BGP is back up, DNS will start
> working again.

As much as possible, I'll always choose to have the most basic
infrastructure available under abnormal conditions, regardless of the
service.

ME3600X's and ASR920's, for example, will install 0/0 and ::/0 in FIB
last. If your access to the core depends entirely on BGP in such
scenarios, you will be unable to access the it for as much as 10 minutes.

Mark.

Re: Quagga for production?

[Nick Hilliard]

Mark Tinka wrote on 18/03/2020 17:02:

I prefer to have a number of core systems accessible in the IGP, because
BGP can sometimes get hosed for one reason or another.

BGP always needs IGP to work. The reverse is not true, and reduces us to
absolute basics when it hits the fan (which it has, a few times before).


Yeah.  I was thinking more for the case of customer-facing anycast 
resolvers, in which case BGP down means that the network is down, and if 
the network is down it doesn't matter than DNS is also down because 
their shared fate means that when BGP is back up, DNS will start working 
again.


Nick

Re: Quagga for production?

[Mark Tinka]

On 18/Mar/20 18:01, Nick Hilliard wrote:
 
>
> I used to use ISIS for this, but more recently moved to ebgp with
> 1s/3s timers.  The convergence characteristics are reasonable and as
> the only routing protocol dependence is bgp, we can use bird which in
> turn allow us to automate provisioning via saltstack.  Automating
> quagga and frr is hacky.

I prefer to have a number of core systems accessible in the IGP, because
BGP can sometimes get hosed for one reason or another.

BGP always needs IGP to work. The reverse is not true, and reduces us to
absolute basics when it hits the fan (which it has, a few times before).

Mark.

Re: Quagga for production?

[Nick Hilliard]

Mark Tinka wrote on 18/03/2020 14:25:
At the moment, I run Quagga with OSPF and export that into my IS-IS core 
to drive Anycast services.


I used to use ISIS for this, but more recently moved to ebgp with 1s/3s 
timers.  The convergence characteristics are reasonable and as the only 
routing protocol dependence is bgp, we can use bird which in turn allow 
us to automate provisioning via saltstack.  Automating quagga and frr is 
hacky.


Nick

Re: Quagga for production?

[Jens Link]

Mark Tinka  writes:

> On 17/Mar/20 19:39, Jens Link wrote:
>
>>
>> Jens, using frr for quite some time now without any problems
>
> IS-IS, per chance?

Sorry, only BGP for now.

Jens
-- 

| Delbrueckstr. 41| 12051 Berlin, Germany   | +49-151-18721264 |
| http://blog.quux.de | jabber: jensl...@quux.de| ---  | 

Re: Quagga for production?

[Mark Tinka]

On 17/Mar/20 19:39, Jens Link wrote:

>
> Jens, using frr for quite some time now without any problems

IS-IS, per chance?

Mark.

Re: Quagga for production?

[Mark Tinka]

On 17/Mar/20 19:18, Hiers, David wrote:
>
> Quagga is built into one of our core products, works great.   That
> particular vendor a sponsor of frr, and is replacing quagga with frr soon.
>
>  
>
> Maybe look at the vendor/partner list for quagga and frr, and decide
> which project has better long-term prospects.
>

I've been meaning to test FRR for a year or so now, so I can get proper
native IS-IS support.

At the moment, I run Quagga with OSPF and export that into my IS-IS core
to drive Anycast services.

Anyone on FRR happy with dual-stack IS-IS there, talking to Cisco and
Juniper implementations?

Mark.

Re: Quagga for production?

[Jens Link]

Dmitry Sherman  writes:

> Hello,
>
> Anybody working with Quagga for production peering with multiple peers
> and dynamic eBGP/iBGP announcement?

https://frrouting.org/ is a quagga fork and most (all) developers of
quagga mode to frr.

Jens, using frr for quite some time now without any problems
-- 

| Delbrueckstr. 41| 12051 Berlin, Germany   | +49-151-18721264 |
| http://blog.quux.de | jabber: jensl...@quux.de| ---  | 

RE: Quagga for production?

[Hiers, David]

Quagga is built into one of our core products, works great.   That particular 
vendor a sponsor of frr, and is replacing quagga with frr soon.

Maybe look at the vendor/partner list for quagga and frr, and decide which 
project has better long-term prospects.

David


From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Nathan Brookfield
Sent: Sunday, February 23, 2020 4:41 AM
To: Dmitry Sherman 
Cc: nanog@nanog.org
Subject: Re: Quagga for production?

Hi Mate,

Yep on and off for about 15 years, very solid, very reliable.  I tend to use 
Bird this hmorning we rays for this task but Zebra and Quagga are rock solid.
Kindest Regards,


Nathan Brookfield (VK2NAB)
Simtronic Technologies Pty Ltd



On 23 Feb 2020, at 23:29, Dmitry Sherman 
mailto:dmi...@interhost.net>> wrote:


Hello,

Anybody working with Quagga for production peering with multiple peers and 
dynamic eBGP/iBGP announcement?



Thanks.

Dmitry


--
This message and any attachments are intended only for the use of the addressee 
and may contain information that is privileged and confidential. If the reader 
of the message is not the intended recipient or an authorized representative of 
the intended recipient, you are hereby notified that any dissemination of this 
communication is strictly prohibited. If you have received this communication 
in error, notify the sender immediately by return email and delete the message 
and any attachments from your system.

[nanog] Re: Quagga for production?

[Chriztoffer Hansen]

Raymond Burkholder wrote:
> On 2020-02-23 5:26 a.m., Dmitry Sherman wrote:
>> Anybody working with Quagga for production peering with multiple peers
>> and dynamic eBGP/iBGP announcement?
>>
> Free Range Routing (FRR) forked Quagga a few years back.  I would say it
> is the new Quagga.
> 
> But either flavour handles multiple peers and full routing tables / DFZ
> with aplomb.
> 
> VYOS was Quagga, but now incorporates FRR, and is a good routing workhorse.

PfSense, too.

https://blog.vyos.io

https://cumulusnetworks.com/blog/free-range-routing-anniversary/

https://www.cloudscale.ch/en/news/2017/11/27/new-border-routers-with-frr

https://www.theregister.co.uk/2017/04/04/quagga_open_source_routing_resuscitated_as_free_range_routing/

https://mum.mikrotik.com/presentations/US19/presentation_6721_1554447941.pdf

https://www.zdnet.com/article/internet-experiment-goes-wrong-takes-down-a-bunch-of-linux-routers/
<= Used by players as the bgp speaker on edge network nodes. Article is
of the 'famous' experiment from last year. Were use of an experimental
BGP code. Caused FRR bgp speakers to crash. The code error was since be
corrected as an emergency hot-fix.

https://news.ycombinator.com/item?id=18552425

-- 

Best regards,

Chriztoffer

Re: Quagga for production?

[Raymond Burkholder]

On 2020-02-23 5:26 a.m., Dmitry Sherman wrote:


Hello,

Anybody working with Quagga for production peering with multiple peers 
and dynamic eBGP/iBGP announcement?


Free Range Routing (FRR) forked Quagga a few years back.  I would say it 
is the new Quagga.


But either flavour handles multiple peers and full routing tables / DFZ 
with aplomb.


VYOS was Quagga, but now incorporates FRR, and is a good routing workhorse.

Raymond
https://blog.raymond.burkholder.net


Thanks.

Dmitry

Re: Quagga for production?

[Nathan Brookfield]

Hi Mate,

Yep on and off for about 15 years, very solid, very reliable.  I tend to use 
Bird this hmorning we rays for this task but Zebra and Quagga are rock solid.

Kindest Regards,

Nathan Brookfield (VK2NAB)
Simtronic Technologies Pty Ltd


On 23 Feb 2020, at 23:29, Dmitry Sherman  wrote:



Hello,

Anybody working with Quagga for production peering with multiple peers and 
dynamic eBGP/iBGP announcement?



Thanks.

Dmitry

Re: Quagga for production?

[Nathan Brookfield]

Hi Mate,

Yep on and off for about 15 years, very solid, very reliable.  I tend to use 
Bird this hmorning we rays for this task but Zebra and Quagga are rock solid.

Kindest Regards,

Nathan Brookfield (VK2NAB)
Simtronic Technologies Pty Ltd


On 23 Feb 2020, at 23:29, Dmitry Sherman  wrote:



Hello,

Anybody working with Quagga for production peering with multiple peers and 
dynamic eBGP/iBGP announcement?



Thanks.

Dmitry