Question about BGP
I have a quick question about BGP..
I have a customer who is going to purchase a secondary internet connection from a seperate ISP to have a backup connection to the internet. My question is, should BGP be used in this scenario? What he wants is in case ISP 1 goes down all network traffic will be switched over to ISP 2. He has purchase 2 cisco 1840 routers.
TIA
I have a customer who is going to purchase a secondary internet connection from a seperate ISP to have a backup connection to the internet. My question is, should BGP be used in this scenario? What he wants is in case ISP 1 goes down all network traffic will be switched over to ISP 2. He has purchase 2 cisco 1840 routers.
TIA
Comments
ahh yes, a dual-homed circuit for redundancy. we have a lot of customers that do the same. they advertise their routes on both links, and the one with the shortest bgp AS path to the destination is preferred. but when one of their links goes down, then the routing is switched to the link that is up. thats how i have seen it in play, hope this helps.
(\__/)This is Bunny. Copy and paste bunny into
(='.'=)your signature to help him gain world
(")_(")domination.
- CCNA - CCDA - BCMSN - BSCI -
- 70-270 -
Bingo
If I were you, I will use two static defaults routes to both ISP's and tweak the admin adistance of one default route to like 100.
With BGP the biggest mistake people make is, they don't even realize they have become a transit area for both ISPs. For some people thats not a big deal but if I am concerned about the security of my network I do not want to be a transit Atonomous system
http://techintuition.com/
I think I will try to go with the 2 static default routes
Default routes wont work, for this you need bgp.If one of the ISPs has an internal issue your default route wont help you, all you traffic will be blackholed.
http://techintuition.com/
This is a great point. With BGP you can get specific routes from each ISP. This way you can choose the best path through either ISP and not just send the traffic to the next hop without caring about whats going on behind that router.
And unless you have a beat ISP there should be no way you can become a transit AS. The ISP should be filtering on their side, but don't assume they are and use the "no-export" community to ensure you aren't relaying routes from one ISP to the other ISP.
I am not sure about using the 1800 for a full Internet routing table (225,000 routes) I have used a 2800, but not a 1800 yet. What is the speed of the connetcions?
Sounds pretty memory intensive.
__________________________________________
Simplicity is the ultimate sophistication.
(Leonardo da Vinci)
239 MB of ram just for the BGP process.
The 1841 can have a max of 384MB ram which might be enough, but 512mb is preferred (the Internet is going to continue to grow). I wouldn't go the 2 static route path based on the asymetric paths you will have (one 5Mb/s and the other 1.5Mb/s) because you will end up load balancing your traffic over two different speed paths which can result in undesired jitter in the data streams.
That is kinda what I thought!
__________________________________________
Simplicity is the ultimate sophistication.
(Leonardo da Vinci)
Shouldn't the BGP routing tables be getting smaller in the near future when everyone starts switching over to IPv6 since the summarization is going to be so much better?
Based on the circumstances I would use NAT. Basically have a BGP table to determine what is the next best hop (ISP) then use identity NAT (nat with a route map using a "match ip next-hop" logic) to translate to the correct address. You need to do this because the ISP will typically drop traffic that is not sourced from the addresses you have been given due to anti-spoofing requirements. Even if they don't drop it, the traffic will have an interesting path out through one ISP then back through a different ISP
IPv6 is a long way away, and once it is widly used, the IPv4 tables will still be around, increasing the total size of the BGP tables.
Yes, legacy IPv4 addresses imagine that!
__________________________________________
Simplicity is the ultimate sophistication.
(Leonardo da Vinci)
Considering IPv4 was has been around since September 1981 (longer than many members here at techexams have been alive!) It's not doing too badly, but it is starting to show it's age in the computer world (they're like dog years) but it's not going anywhere soon.
CCNA Security | GSEC |GCFW | GCIH | GCIA
[email protected]
http://twitter.com/paul_bosworth
Blog: http://www.infosiege.net/
Theres only 200,000 routes on the internet...wow i expected more than that.
This cant be common practise to do that unless your say an ISP right? Tell me just did that to see if you could....?
Lets think about it. if you have connections to different ISPs for redundancy, bandwidth requirements, or any other reasons, you have a great resource. Unlike most people, you can actually select the best path to the destination network using full BGP. If you have a client trying to access a web server in Japan and your sprint internet connection can get there faster than your AT&T connection why wouldn't you want to use the sprint connection? You can only do such routing with full BGP tables.
CCNA Security | GSEC |GCFW | GCIH | GCIA
[email protected]
http://twitter.com/paul_bosworth
Blog: http://www.infosiege.net/
Nah, try "telnet route-server.ip.att.net"
You can play around there and see what's up.
I havent even started to learn BGP yet. But that is so cool.
Can you run BGP through a IPSec Tunnel?