Submit Search
Upload
PLNOG 3: Klaudiusz Staniek - 4-Bytes ASN
•
0 likes
•
13 views
PROIDEA
Follow
Klaudiusz Staniek - 4-Bytes ASN
Read less
Read more
Technology
Report
Share
Report
Share
1 of 41
Download now
Download to read offline
Recommended
Prod presentation0900aecd80312824
Prod presentation0900aecd80312824
SalvatoreFILORIZZO
Bgp tutorial for ISP
Bgp tutorial for ISP
Wahyu Nasution
HKNOG 9.0: (the trouble with) Securing Internet Routing
HKNOG 9.0: (the trouble with) Securing Internet Routing
APNIC
Basic BGP Configuration
Basic BGP Configuration
NetProtocol Xpert
ThaiNOG Day 2021: Thailand's Route Validity
ThaiNOG Day 2021: Thailand's Route Validity
APNIC
Migrating from OSPF to IS-IS by Philip Smith
Migrating from OSPF to IS-IS by Philip Smith
MyNOG
PhNOG 2019: RPKI Deployment Update
PhNOG 2019: RPKI Deployment Update
APNIC
Apricot2004 bgp00
Apricot2004 bgp00
La Htoi Layang
Recommended
Prod presentation0900aecd80312824
Prod presentation0900aecd80312824
SalvatoreFILORIZZO
Bgp tutorial for ISP
Bgp tutorial for ISP
Wahyu Nasution
HKNOG 9.0: (the trouble with) Securing Internet Routing
HKNOG 9.0: (the trouble with) Securing Internet Routing
APNIC
Basic BGP Configuration
Basic BGP Configuration
NetProtocol Xpert
ThaiNOG Day 2021: Thailand's Route Validity
ThaiNOG Day 2021: Thailand's Route Validity
APNIC
Migrating from OSPF to IS-IS by Philip Smith
Migrating from OSPF to IS-IS by Philip Smith
MyNOG
PhNOG 2019: RPKI Deployment Update
PhNOG 2019: RPKI Deployment Update
APNIC
Apricot2004 bgp00
Apricot2004 bgp00
La Htoi Layang
CCNA 2 Routing and Switching v5.0 Chapter 6
CCNA 2 Routing and Switching v5.0 Chapter 6
Nil Menon
Comparing ospf vs isis
Comparing ospf vs isis
rushi7567
CCNA (R & S) Module 04 - Scaling Networks - Chapter 9
CCNA (R & S) Module 04 - Scaling Networks - Chapter 9
Waqas Ahmed Nawaz
Ospf.ppt
Ospf.ppt
Edgardo Scrimaglia
CCNAS :Multi Area OSPF
CCNAS :Multi Area OSPF
rooree29
Traffic Engineering Using Segment Routing
Traffic Engineering Using Segment Routing
Cisco Canada
Week6 2017(1)
Week6 2017(1)
trayyoo
OSPF- Multi area
OSPF- Multi area
Ahmed Ali
ip v6
ip v6
Sachii Dosti
5 ip security copp-mpp
5 ip security copp-mpp
SagarR24
CCNA (R & S) Module 04 - Scaling Networks - Chapter 7
CCNA (R & S) Module 04 - Scaling Networks - Chapter 7
Waqas Ahmed Nawaz
Ethernet
Ethernet
Sachii Dosti
Chapter 19 : single-area ospf
Chapter 19 : single-area ospf
teknetir
Segment Routing for Dummies
Segment Routing for Dummies
Gary Jan
Regional Bank IPSec Solution
Regional Bank IPSec Solution
Jeffrey Sicuranza
Ospf
Ospf
Joshua Fonseca
Bgp multihoming
Bgp multihoming
ee38sp
Mecanismos de transicion pv6
Mecanismos de transicion pv6
Edgardo Scrimaglia
Things I wish I had known about IPv6 before I started
Things I wish I had known about IPv6 before I started
Faelix Ltd
Multi-area ospf adjacency on ios-xr
Multi-area ospf adjacency on ios-xr
CoderGenie Technologies
SRWE_Module_15 (1).pptx
SRWE_Module_15 (1).pptx
YohaWaid
Week9(1)
Week9(1)
trayyoo
More Related Content
What's hot
CCNA 2 Routing and Switching v5.0 Chapter 6
CCNA 2 Routing and Switching v5.0 Chapter 6
Nil Menon
Comparing ospf vs isis
Comparing ospf vs isis
rushi7567
CCNA (R & S) Module 04 - Scaling Networks - Chapter 9
CCNA (R & S) Module 04 - Scaling Networks - Chapter 9
Waqas Ahmed Nawaz
Ospf.ppt
Ospf.ppt
Edgardo Scrimaglia
CCNAS :Multi Area OSPF
CCNAS :Multi Area OSPF
rooree29
Traffic Engineering Using Segment Routing
Traffic Engineering Using Segment Routing
Cisco Canada
Week6 2017(1)
Week6 2017(1)
trayyoo
OSPF- Multi area
OSPF- Multi area
Ahmed Ali
ip v6
ip v6
Sachii Dosti
5 ip security copp-mpp
5 ip security copp-mpp
SagarR24
CCNA (R & S) Module 04 - Scaling Networks - Chapter 7
CCNA (R & S) Module 04 - Scaling Networks - Chapter 7
Waqas Ahmed Nawaz
Ethernet
Ethernet
Sachii Dosti
Chapter 19 : single-area ospf
Chapter 19 : single-area ospf
teknetir
Segment Routing for Dummies
Segment Routing for Dummies
Gary Jan
Regional Bank IPSec Solution
Regional Bank IPSec Solution
Jeffrey Sicuranza
Ospf
Ospf
Joshua Fonseca
Bgp multihoming
Bgp multihoming
ee38sp
Mecanismos de transicion pv6
Mecanismos de transicion pv6
Edgardo Scrimaglia
Things I wish I had known about IPv6 before I started
Things I wish I had known about IPv6 before I started
Faelix Ltd
Multi-area ospf adjacency on ios-xr
Multi-area ospf adjacency on ios-xr
CoderGenie Technologies
What's hot
(20)
CCNA 2 Routing and Switching v5.0 Chapter 6
CCNA 2 Routing and Switching v5.0 Chapter 6
Comparing ospf vs isis
Comparing ospf vs isis
CCNA (R & S) Module 04 - Scaling Networks - Chapter 9
CCNA (R & S) Module 04 - Scaling Networks - Chapter 9
Ospf.ppt
Ospf.ppt
CCNAS :Multi Area OSPF
CCNAS :Multi Area OSPF
Traffic Engineering Using Segment Routing
Traffic Engineering Using Segment Routing
Week6 2017(1)
Week6 2017(1)
OSPF- Multi area
OSPF- Multi area
ip v6
ip v6
5 ip security copp-mpp
5 ip security copp-mpp
CCNA (R & S) Module 04 - Scaling Networks - Chapter 7
CCNA (R & S) Module 04 - Scaling Networks - Chapter 7
Ethernet
Ethernet
Chapter 19 : single-area ospf
Chapter 19 : single-area ospf
Segment Routing for Dummies
Segment Routing for Dummies
Regional Bank IPSec Solution
Regional Bank IPSec Solution
Ospf
Ospf
Bgp multihoming
Bgp multihoming
Mecanismos de transicion pv6
Mecanismos de transicion pv6
Things I wish I had known about IPv6 before I started
Things I wish I had known about IPv6 before I started
Multi-area ospf adjacency on ios-xr
Multi-area ospf adjacency on ios-xr
Similar to PLNOG 3: Klaudiusz Staniek - 4-Bytes ASN
SRWE_Module_15 (1).pptx
SRWE_Module_15 (1).pptx
YohaWaid
Week9(1)
Week9(1)
trayyoo
CCCNP ROUTE v6_ch06
CCCNP ROUTE v6_ch06
Licenciatura en Redes y Sistemas Operativos
Exploration routing chapter 10 & 11
Exploration routing chapter 10 & 11
Sachii Dosti
CCNA Discovery 3 - Chapter 6
CCNA Discovery 3 - Chapter 6
Irsandi Hasan
CCNP ROUTE V7 CH3
CCNP ROUTE V7 CH3
Chaing Ravuth
static routing slide lab.pptx
static routing slide lab.pptx
GirT2
Cisco Live! :: Introduction to Segment Routing :: BRKRST-2124 | Las Vegas 2017
Cisco Live! :: Introduction to Segment Routing :: BRKRST-2124 | Las Vegas 2017
Bruno Teixeira
Ccna rse chp2
Ccna rse chp2
newbie2019
T4 Handout3
T4 Handout3
gobed
Operationalizing BGP in the SDDC
Operationalizing BGP in the SDDC
Cumulus Networks
Chapter 17 : static routing
Chapter 17 : static routing
teknetir
Implementing Internet and MPLS BGP
Implementing Internet and MPLS BGP
Private
Chapter 06 - Static Routing
Chapter 06 - Static Routing
Yaser Rahmati
CCNAv5 - S2: Chapter 6 Static Routing
CCNAv5 - S2: Chapter 6 Static Routing
Vuz Dở Hơi
KPUCC-Rs instructor ppt_chapter6_final
KPUCC-Rs instructor ppt_chapter6_final
Fisal Anwari
Cisco ospf
Cisco ospf
sarasanandam
Cisco ospf
Cisco ospf
sarasanandam
Обеспечение безопасности сети оператора связи с помощью BGP FlowSpec
Обеспечение безопасности сети оператора связи с помощью BGP FlowSpec
Cisco Russia
CCNP Switching Chapter 6
CCNP Switching Chapter 6
Chaing Ravuth
Similar to PLNOG 3: Klaudiusz Staniek - 4-Bytes ASN
(20)
SRWE_Module_15 (1).pptx
SRWE_Module_15 (1).pptx
Week9(1)
Week9(1)
CCCNP ROUTE v6_ch06
CCCNP ROUTE v6_ch06
Exploration routing chapter 10 & 11
Exploration routing chapter 10 & 11
CCNA Discovery 3 - Chapter 6
CCNA Discovery 3 - Chapter 6
CCNP ROUTE V7 CH3
CCNP ROUTE V7 CH3
static routing slide lab.pptx
static routing slide lab.pptx
Cisco Live! :: Introduction to Segment Routing :: BRKRST-2124 | Las Vegas 2017
Cisco Live! :: Introduction to Segment Routing :: BRKRST-2124 | Las Vegas 2017
Ccna rse chp2
Ccna rse chp2
T4 Handout3
T4 Handout3
Operationalizing BGP in the SDDC
Operationalizing BGP in the SDDC
Chapter 17 : static routing
Chapter 17 : static routing
Implementing Internet and MPLS BGP
Implementing Internet and MPLS BGP
Chapter 06 - Static Routing
Chapter 06 - Static Routing
CCNAv5 - S2: Chapter 6 Static Routing
CCNAv5 - S2: Chapter 6 Static Routing
KPUCC-Rs instructor ppt_chapter6_final
KPUCC-Rs instructor ppt_chapter6_final
Cisco ospf
Cisco ospf
Cisco ospf
Cisco ospf
Обеспечение безопасности сети оператора связи с помощью BGP FlowSpec
Обеспечение безопасности сети оператора связи с помощью BGP FlowSpec
CCNP Switching Chapter 6
CCNP Switching Chapter 6
Recently uploaded
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC Architecture
Pixlogix Infotech
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
BookNet Canada
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
Rafal Los
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
Principled Technologies
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
HampshireHUG
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organization
Radu Cotescu
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
BookNet Canada
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
naman860154
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024
The Digital Insurer
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j
Slack Application Development 101 Slides
Slack Application Development 101 Slides
praypatel2
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 Presentation
Ridwan Fadjar
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day Presentation
Michael W. Hawkins
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
giselly40
Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)
Allon Mureinik
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptx
Malak Abu Hammad
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen Frames
Sinan KOZAK
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
Delhi Call girls
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
HostedbyConfluent
How to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
naman860154
Recently uploaded
(20)
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC Architecture
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organization
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Slack Application Development 101 Slides
Slack Application Development 101 Slides
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 Presentation
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day Presentation
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptx
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen Frames
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
How to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
PLNOG 3: Klaudiusz Staniek - 4-Bytes ASN
1.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 1 4-Bytes ASN PLNOG 3 2009-09-11 Klaudiusz Staniek kstaniek@cisco.com
2.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 2 Autonomous System (AS) Collection of networks with same routing policy Single routing protocol Usually under single ownership, trust and administrative control Identified by a unique number AS 100
3.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 3 Autonomous System Number An ASN is a 16-bit integer 1-64511 are assigned by the Regional Internet Registries 64512-65534 are private ASNs and should never be used on the Internet 0 and 65535 are reserved Current allocations up to 56318 have been made to the RIRs
4.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 4 ASN status The pool of 16-bit ASNs will soon be exhausted Analysis at http://www.potaroo.net/tools/asns/ Current estimates are that the 16-bit ASN pool will be exhausted in 2011 Work started in 2001 to extend the ASN pool to 32-bits
5.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 5 Source: http://www.potaroo.net/tools/asns/fig28.png
6.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 6 32-bit ASNs Standards documents Description of 32-bit ASNs www.rfc-editor.org/rfc/rfc4893.txt Textual representation www.rfc-editor.org/rfc/rfc5396.txt New extended community http://tools.ietf.org/html/draft-ietf-idr-as4octet-extcomm- generic-subtype-00 http://tools.ietf.org/html/draft-rekhter-as4octet-ext- community-03 http://tools.ietf.org/html/draft-ietf-l3vpn-as4octet-ext- community-03 AS 23456 is reserved as interface between 16-bit and 32-bit ASN world
7.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 7 Getting a 32-bit ASN Sample RIR policy (RIPE) http://www.ripe.net/ripe/docs/asn-assignment.html From 1st January 2007 32-bit ASNs available on request From 1st January 2009 32-bit ASNs assigned by default 16-bit ASNs only available on request From 1st January 2010 No distinction – ASNs assigned from 32-bit pool
8.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 8 Representation 32-bit ASNs extend the pool: 0-65535 extended to 0-4294967295 Representation of 65536-4294967295 range Most operators favour traditional format (asplain) A few prefer dot notation (X.Y): asdot for 65536-4294967295, e.g 2.4 asdot+ for 0-4294967295, e.g 0.64513 But regular expressions will have to be completely rewritten for asdot and asdot+ !!!
9.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 9 asplain vs asdot(+) Problem: ^[0-9]+$ matches any ASN (16-bit and asplain) This and equivalents extensively used in BGP multihoming configurations for traffic engineering Equivalent regexp for asdot is ^([0-9]+)|([0-9]+.[0-9]+)$ Equivalent regexp for asdot+ is ^[0-9]+.[0-9]+$ ⇒ BGP policy regular expressions will need to be rewritten
10.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 10 IANA Assignments Using dot notation for readability 0.0 - 0.65535 16-bit ASN block 2.0 - 2.1023 APNIC 3.0 - 3.1023 RIPE NCC 4.0 - 4.1023 LACNIC 5.0 - 5.1023 AfriNIC 6.0 - 6.1023 ARIN Remainder are reserved or held by IANA
11.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 11 IANA Assignments (Special) 0 & 65535 Reserved 23456 32-bit ASN transition 64512 - 65534 Private ASNs 64496 - 64511 Documentation (16-bit) 65536 - 65551 Documentation (32-bit)
12.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 12 Changes (1) 32-bit ASNs are backwardly compatible with 16-bit ASNs There is no flag day You do NOT need to: Throw out your old routers Replace your 16-bit ASN with a 32-bit ASN
13.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 13 Changes (2) You do need to be aware that: Your customers will come with 32-bit ASNs ASN 23456 is not a bogon! You will need a router supporting 32-bit ASNs to use a 32-bit ASN If you have a proper BGP implementation, 32-bit ASNs will be transported silently across your network
14.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 14 “BGP OPEN protocol message format”
15.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 15 How does it work (1)? Local router only supports 16-bit ASN Remote router uses 32-bit ASN BGP peering initiated: Remote asks local if 32-bit supported (BGP capability negotiation) When local says “no”, remote then presents AS23456 Local needs to be configured to peer with remote using AS23456
16.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 16 How does it work (2)? BGP peering initiated (cont): BGP session established using AS23456 32-bit ASN included in a new BGP attribute called AS4_PATH (as opposed to AS_PATH for 16-bit ASNs) Result: 16-bit ASN world sees 16-bit ASNs and 23456 standing in for 32-bit ASNs 32-bit ASN world sees 16 and 32-bit ASNs
17.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 17 180.10.0.0/16 123 23456 23456 170.10.0.0/16 123 23456 Example: Internet with 32-bit and 16-bit ASNs AS-PATH length maintained AS 80000 AS 123 AS 70000 AS 90000 AS 321 170.10.0.0/16 180.10.0.0/16 150.10.0.0/16 180.10.0.0/16 123 70000 80000 170.10.0.0/16 123 70000 150.10.0.0/16 123 321
18.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 18 Configuration Example (1) AS70000 and AS80000 border routers: Configuration on AS80000: router bgp 80000 neighbor 1.1.1.6 remote-as 70000 Configuraton on AS70000: router bgp 70000 neighbor 1.1.1.5 remote-as 80000 Both routers have to support 32-bit ASNs
19.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 19 Configuration Example (2) AS123 and AS70000 border routers: Configuration on AS123: router bgp 123 neighbor 1.1.1.2 remote-as 23456 Configuraton on AS70000: router bgp 70000 neighbor 1.1.1.1 remote-as 123 AS70000 router supports 32-bit ASNs AS123 router does not support 32-bit ASNs
20.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 20 What has changed? Two new BGP attributes: AS4_PATH Carries 32-bit ASN path info AS4_AGGREGATOR Carries 32-bit ASN aggregator info Well-behaved BGP implementations will simply pass these along if they don’t understand them AS23456 (AS_TRANS)
21.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 21 What do they look like? IPv4 prefix originated by AS196613 as4-7200#sh ip bgp 145.125.0.0/20 BGP routing table entry for 145.125.0.0/20, version 58734 Paths: (1 available, best #1, table default) 131072 12654 196613 204.69.200.25 from 204.69.200.25 (204.69.200.25) Origin IGP, localpref 100, valid, internal, best IPv4 prefix originated by AS3.5 as4-7200#sh ip bgp 145.125.0.0/20 BGP routing table entry for 145.125.0.0/20, version 58734 Paths: (1 available, best #1, table default) 2.0 12654 3.5 204.69.200.25 from 204.69.200.25 (204.69.200.25) Origin IGP, localpref 100, valid, internal, best asdot format asplain format
22.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 22 What do they look like? IPv4 prefix originated by AS196613 But 16-bit AS world view: BGP-view1>sh ip bgp 145.125.0.0/20 BGP routing table entry for 145.125.0.0/20, version 113382 Paths: (1 available, best #1, table Default-IP-Routing- Table) 23456 12654 23456 204.69.200.25 from 204.69.200.25 (204.69.200.25) Origin IGP, localpref 100, valid, external, best Transition AS
23.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 23 What do they look like? IPv6 prefix originated by AS 2.9 RP/0/0/CPU0:as4byte#show bgp ipv6 unicast 2403:2000::/32 BGP routing table entry for 2403:2000::/32 Versions: Process bRIB/RIB SendTblVer Speaker 93 93 Paths: (1 available, best #1) Not advertised to any peer Path #1: Received by speaker 0 109 6175 2497 2500 18146 2.9 2001:420:0:8001::1 from 2001:420:0:8001::1 (204.69.200.22) Origin IGP, localpref 100, valid, external, best 32-bit ASN
24.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 24
25.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 25
26.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 26 AS4_PATH attribute are aggregated by an OLD BGP speaker When two or more routes that carry the AS4_PATH attribute are aggregated by an OLD BGP speaker, and the AS4_PATH attribute of at least one of these routes carries at least one 4-octet AS number. It may not be possible to reconstruct the entire AS path information from the AS_PATH and the AS4_PATH attributes of a route. When such aggregation results in creating a route that is less specific than any of the component routes (route whose Network Layer Reachability Information (NLRI) covers NLRI of all the component routes), loss of the AS path information does not create a risk of a routing loop. In all other cases, loss of the AS path information does create a risk of a routing loop. Considerations
27.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 27 AS_PATH 23456 24 NLRI A AS4_PATH 1.1 AS_PATH 23456 24 NLRI B AS4_PATH 2.2 AS_PATH 1 {23456 24} NLRI C AS4_PATH Aggregating node ASN 1 Step 1::::As-set option set on this Aggregating node Considerations
28.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 28 Not able to reconstruct the entire AS path information from AS_Path and AS4_Path , this occurs when the AS4_Path attribute are aggreted by an OLD Speaker and result in unable detect route looping. NLRI C 1 {23456 24} AS path information AS_PATH 23456 24 NLRI A AS4_PATH 1.1 AS_PATH 23456 24 NLRI B AS4_PATH 2.2 AS_PATH 1 {23456 24} NLRI C AS4_PATH Aggregating node ASN 1 Step 2 ::::NEW Router receive the Aggregated route Considerations
29.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 29 ASN 1.1 Not able to reconstruct the entire AS path information from AS_Path and AS4_Path (1.1) , this occurs when the AS4_Path attribute are aggregated by an OLD Speaker and result in unable detect route looping. NLRI C 1 {23456 24} AS path information AS_PATH 23456 24 NLRI A AS4_PATH 1.1 AS_PATH 23456 24 NLRI B AS4_PATH 2.2 AS_PATH 1 {23456 24} NLRI C AS4_PATH Aggregating node ASN 1 OLD Speaker do not AS4_Path attribute was carried during route aggregation that is the reason of lose AS path information. Step 3::::Expected reason Considerations
30.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 30 Handling BGP Communities As specified in [RFC1997], when the high-order two- octets of the community attribute is neither 0x0000 nor 0xffff, these two octets encode the Autonomous System number. Quite clearly this would not work for BGP speakers that use 4-octets Autonomous System numbers. Such BGP speakers should use the Four- octet AS Specific Extended Communities [AS-EXT- COM] instead. Considerations (Cont)
31.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 31 0 1 2 3 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | 0x02 or 0x42 | Sub-Type | Global Administrator | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Global Administrator (cont.) | Local Administrator | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ 4-byte AS specific Extended Community • 0x02 transitive community • 0x04 non-transitive community Sub-Type • 0x02 Route Target • 0x03 Route Origin Global Administrator 4-Byte extended supported Considerations [RFC1997], when the high-order 2-octets of the community attribute is neither 0x0000 nor 0xffff, these two octets encode the Autonomous System number . NEW BGP Router, use the 4-octet AS Specific Extended Communities instead. How OLDHow OLDHow OLDHow OLD router to processing when received Extended Communityrouter to processing when received Extended Communityrouter to processing when received Extended Communityrouter to processing when received Extended Community ....
32.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 32 AS_TRANS An OLD BGP speaker MUST NOT use AS_TRANS as its Autonomous System number. Considerations An OLD BGP speaker MUST NOT use AS_TRANS as its Autonomous System number
33.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 33 An Autonomous System that has OLD BGP speakers peers with two or more Autonomous Systems that have NEW BGP speakers and use AS_TRANS, use of Multi-Exit Discriminators by the Autonomous System with the OLD speakers may result in a situation where Multi-Exit Discriminator will influence route selection among the routes that were received from different neighboring Autonomous Systems. Considerations ASN 2.2 ASN 1.1 Route selection is compared to MED For this topology, Prefix A/24 is send to the network. Although two peers used two difference ASN , from the point of view of OLD router the ASN are same (=23456). Remote-ASN 23456 Remote-ASN 23456 Prefix A/24 MED 200 Prefix A/24 MED 100 Best path (normal) Best path (MED)
34.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 34 32-bit ASN not supported: Inability to distinguish between peer ASes using 32-bit ASNs They will all be represented by AS23456 Could be problematic for transit provider’s policy Inability to distinguish prefix’s origin AS How to tell whether origin is real or fake? The real and fake both represented by AS23456 (There should be a better solution here!)
35.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 35 32-bit ASN not supported: Incorrect NetFlow summaries: Prefixes from 32-bit ASNs will all be summarised under AS23456 Traffic statistics need to be measured per prefix and aggregated Makes it hard to determine peerability of a neighbouring network
36.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 36 Implementations (Sept 09) Cisco IOS-XR 3.4 onwards Cisco IOS-XE 2.3 onwards Cisco IOS 12.0(32)S12 & 12.4(24)T Cisco NX-OS 4.0(1) Quagga (patches for 0.99.6) OpenBGPd (patches for 3.9 & 4.0) Juniper JunOSe 4.1.0 & JunOS 9.1 Redback SEOS Force10 FTOS7.7.1 onwards http://as4.cluepon.net/index.php/Software_Support
37.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 38 What next? Pester your router vendors for 32-bit ASN support Do you really want to run beta software in your core network? Depletion of the 16-bit pool is not far away Stable software, deployment cycles Insist your vendors support “asplain” Otherwise prepare to rewrite all your regular expressions!!
38.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 39 Conclusion The Internet will not break Your network will not break If you have an ASN today: You don’t need to change anything 32-bit ASNs appear as AS 23456 If you have no ASN today: Your routers will need 32-bit ASN support after 1st January 2009 (Or you will need to ask RIRs for a 16-bit ASN)
39.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 40 FOOD FOR THOUGHT !!! Do we ever again need to expand BGP ASN from 32- bits to 64 or even 128-bits ?????
40.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 41 FOOD FOR THOUGHT !!! (CORRECT ANSWER) POSSIBLE !!! If the world can become global village , moon recreational flights have almost begun, life on Mars seem possible then why not !!! Our solar system’s planets and moons in the galaxy can be interconnected several decades later & AT THAT TIME, we eventually need more AS Numbers.
41.
© 2006 Cisco
Systems, Inc. All rights reserved. Cisco ConfidentialPresentation_ID 42
Download now