Re: bgp routing question
On 25/03/2008, Fridiric Pli [EMAIL PROTECTED] wrote: Hi, I have an openbsd router with two ebgp peers. I have serveral prefixes to announce but I would like to know how I could influence outcoming traffic from each of my prefix. I did not understand how to use weight, localpref and metric nor filter rules to do that. any clue or example ? many thanks, FP I believe you can use local pref to influence outbound traffic. http://www.cisco.com/en/US/docs/internetworking/technology/handbook/bgp.html# wp1020583 -- -Lawrence
Re: bgp routing question
On Tue, Mar 25, 2008 at 4:31 PM, Fridiric Pli [EMAIL PROTECTED] wrote: Hi, I have an openbsd router with two ebgp peers. I have serveral prefixes to announce but I would like to know how I could influence outcoming traffic from each of my prefix. I did not understand how to use weight, localpref and metric nor filter rules to do that. I dont think you can use BGP to direct traffic based on scr network. You might using virtual routing tables, pf route-to and/or tagging ?
bgp routing question
Hi, I have an openbsd router with two ebgp peers. I have serveral prefixes to announce but I would like to know how I could influence outcoming traffic from each of my prefix. I did not understand how to use weight, localpref and metric nor filter rules to do that. any clue or example ? many thanks, FP
Re: bgp routing question
another routing problem ist that now the ibpg routes get insertet but also announcend to the ebgp peer since its the same as and i announce self to the ebgp peers. problems is now that the network is somewhere else, but announced so i have created a routing loop. do i have to use static routes or is there a way to configure stuff like that in bgpd? thx in advance, erich. Erich schrieb: do i have to restart bgpd in order to get ipsec esp ike for a session / nei working or is a reload and nei up/down enough? i got Oct 20 13:21:23 router-mt-1 isakmpd[13070]: dropped message from xx.xx.xx.xx port 500 due to notification type NO_PROPOSAL_CHOSEN and responder_recv_HASH_SA_NONCE: peer proposed invalid phase 2 IDs: initiator id 59caa34e: xxx.xxx.xxx.xxx, responder id 50be811a: xx.xx.xxx.xxx isakmpd is running with -Ka like suggested in man bgpd.conf and keys have been copied to each side. do i have anything forgotten? Erich schrieb: yes thx guys, it worked :) Claudio Jeker schrieb: On Thu, Feb 28, 2008 at 08:14:09AM +0100, Erich wrote: i now have a session i turned on update loging ob bpgd but the routes do not get inserted. any ideas? AS41412: update 123.123.123.0/24 via xxx..xx. ( the router where the network is, yes pingable) Make sure the nexthop is either reachable via a static route or have a look at nexthop qualify via erich
Re: bgp routing question
On Fri, Feb 29, 2008 at 02:10:09PM +0100, Erich wrote: another routing problem ist that now the ibpg routes get insertet but also announcend to the ebgp peer since its the same as and i announce self to the ebgp peers. problems is now that the network is somewhere else, but announced so i have created a routing loop. do i have to use static routes or is there a way to configure stuff like that in bgpd? You need a filter for that. Just deny the prefix on the other router. -- :wq Claudio
Re: bgp routing question
Claudio Jeker schrieb: On Fri, Feb 29, 2008 at 02:10:09PM +0100, Erich wrote: another routing problem ist that now the ibpg routes get insertet but also announcend to the ebgp peer since its the same as and i announce self to the ebgp peers. problems is now that the network is somewhere else, but announced so i have created a routing loop. do i have to use static routes or is there a way to configure stuff like that in bgpd? You need a filter for that. Just deny the prefix on the other router. the other router is not under my control, so i would have to ask them to adjust their filters, isnt there another way? erich
Re: bgp routing question
On Fri, Feb 29, 2008 at 03:23:27PM +0100, Erich wrote: Claudio Jeker schrieb: On Fri, Feb 29, 2008 at 02:10:09PM +0100, Erich wrote: another routing problem ist that now the ibpg routes get insertet but also announcend to the ebgp peer since its the same as and i announce self to the ebgp peers. problems is now that the network is somewhere else, but announced so i have created a routing loop. do i have to use static routes or is there a way to configure stuff like that in bgpd? You need a filter for that. Just deny the prefix on the other router. the other router is not under my control, so i would have to ask them to adjust their filters, isnt there another way? You can also deny incomming prefixes. Read the bgpd.conf man page section about filtering for more information. -- :wq Claudio
Re: bgp routing question
* Erich [EMAIL PROTECTED] [2008-02-28 08:20]: i now have a session i turned on update loging ob bpgd but the routes do not get inserted. any ideas? well, check nexthop validity... bgpctl show nexthop -- Henning Brauer, [EMAIL PROTECTED], [EMAIL PROTECTED] BS Web Services, http://bsws.de Full-Service ISP - Secure Hosting, Mail and DNS Services Dedicated Servers, Rootservers, Application Hosting - Hamburg Amsterdam
Re: bgp routing question
On Thu, Feb 28, 2008 at 08:14:09AM +0100, Erich wrote: i now have a session i turned on update loging ob bpgd but the routes do not get inserted. any ideas? AS41412: update 123.123.123.0/24 via xxx..xx. ( the router where the network is, yes pingable) Make sure the nexthop is either reachable via a static route or have a look at nexthop qualify via. -- :wq Claudio
Re: bgp routing question
yes thx guys, it worked :) Claudio Jeker schrieb: On Thu, Feb 28, 2008 at 08:14:09AM +0100, Erich wrote: i now have a session i turned on update loging ob bpgd but the routes do not get inserted. any ideas? AS41412: update 123.123.123.0/24 via xxx..xx. ( the router where the network is, yes pingable) Make sure the nexthop is either reachable via a static route or have a look at nexthop qualify via erich
Re: bgp routing question
do i have to restart bgpd in order to get ipsec esp ike for a session / nei working or is a reload and nei up/down enough? i got Oct 20 13:21:23 router-mt-1 isakmpd[13070]: dropped message from xx.xx.xx.xx port 500 due to notification type NO_PROPOSAL_CHOSEN and responder_recv_HASH_SA_NONCE: peer proposed invalid phase 2 IDs: initiator id 59caa34e: xxx.xxx.xxx.xxx, responder id 50be811a: xx.xx.xxx.xxx isakmpd is running with -Ka like suggested in man bgpd.conf and keys have been copied to each side. do i have anything forgotten? Erich schrieb: yes thx guys, it worked :) Claudio Jeker schrieb: On Thu, Feb 28, 2008 at 08:14:09AM +0100, Erich wrote: i now have a session i turned on update loging ob bpgd but the routes do not get inserted. any ideas? AS41412: update 123.123.123.0/24 via xxx..xx. ( the router where the network is, yes pingable) Make sure the nexthop is either reachable via a static route or have a look at nexthop qualify via erich
Re: bgp routing question
* Erich [EMAIL PROTECTED] [2008-02-28 14:06]: do i have to restart bgpd in order to get ipsec esp ike for a session / nei working or is a reload and nei up/down enough? config reload and clearing the affected neighbor session is enough. I have done that in testing many times successfully. i got Oct 20 13:21:23 router-mt-1 isakmpd[13070]: dropped message from xx.xx.xx.xx port 500 due to notification type NO_PROPOSAL_CHOSEN and responder_recv_HASH_SA_NONCE: peer proposed invalid phase 2 IDs: initiator id 59caa34e: xxx.xxx.xxx.xxx, responder id 50be811a: xx.xx.xxx.xxx isakmpd is running with -Ka like suggested in man bgpd.conf and keys have been copied to each side. now that is a problem for the isakmpd masochists ;) -- Henning Brauer, [EMAIL PROTECTED], [EMAIL PROTECTED] BS Web Services, http://bsws.de Full-Service ISP - Secure Hosting, Mail and DNS Services Dedicated Servers, Rootservers, Application Hosting - Hamburg Amsterdam
Re: bgp routing question
i now have a session i turned on update loging ob bpgd but the routes do not get inserted. any ideas? AS41412: update 123.123.123.0/24 via xxx..xx. ( the router where the network is, yes pingable) Erich schrieb: Claudio Jeker schrieb: On Tue, Feb 26, 2008 at 09:51:05AM +0100, Erich wrote: hi, is there a way to announce the same AS an different locations? lets say 123.123.123.0/23 is mine and i want to have 123.123.123.0/24 @location1 and 23.123.124.0/24 @location2, right now i have the problem that the bgpd seems to drop the routes to each other, means the networks are reachable from everywhere, so it seems to work, but they cannot reach each other.. You need an iBGP sessions between the two routers. This is the only way the two routers will accept the routes/as pathes of the other one. For eBGP sessions loop free AS pathes are enforced. ah ok, thx so far :) and it shouldnt be an issue if those ibgp sessions are going over serval hops? erich
bgp routing question
hi, is there a way to announce the same AS an different locations? lets say 123.123.123.0/23 is mine and i want to have 123.123.123.0/24 @location1 and 23.123.124.0/24 @location2, right now i have the problem that the bgpd seems to drop the routes to each other, means the networks are reachable from everywhere, so it seems to work, but they cannot reach each other.. erich
Re: bgp routing question
sure.. my fault, just assume the networks are right. and this is not my problem ;) Alexander Hall schrieb: Erich wrote: hi, is there a way to announce the same AS an different locations? lets say 123.123.123.0/23 is mine and i want to have 123.123.123.0/24 @location1 and 23.123.124.0/24 @location2, right now i have the problem that the bgpd seems to drop the routes to each other, means the networks are reachable from everywhere, so it seems to work, but they cannot reach each other.. 123.123.124.0/24 would not lie within the 123.123.123.0/23 network (and nor would 23.123.124.0/24, of course :). I guess this is not your problem, though. (And I am not in any position to help you with BGPD issues). /Alexander
Re: bgp routing question
On Tue, Feb 26, 2008 at 09:51:05AM +0100, Erich wrote: hi, is there a way to announce the same AS an different locations? lets say 123.123.123.0/23 is mine and i want to have 123.123.123.0/24 @location1 and 23.123.124.0/24 @location2, right now i have the problem that the bgpd seems to drop the routes to each other, means the networks are reachable from everywhere, so it seems to work, but they cannot reach each other.. You need an iBGP sessions between the two routers. This is the only way the two routers will accept the routes/as pathes of the other one. For eBGP sessions loop free AS pathes are enforced. -- :wq Claudio
Re: bgp routing question
Claudio Jeker schrieb: On Tue, Feb 26, 2008 at 09:51:05AM +0100, Erich wrote: hi, is there a way to announce the same AS an different locations? lets say 123.123.123.0/23 is mine and i want to have 123.123.123.0/24 @location1 and 23.123.124.0/24 @location2, right now i have the problem that the bgpd seems to drop the routes to each other, means the networks are reachable from everywhere, so it seems to work, but they cannot reach each other.. You need an iBGP sessions between the two routers. This is the only way the two routers will accept the routes/as pathes of the other one. For eBGP sessions loop free AS pathes are enforced. ah ok, thx so far :) and it shouldnt be an issue if those ibgp sessions are going over serval hops? erich
