No Slide Title

Download Report

Transcript No Slide Title 

Configuring BGP
With Cisco IOS Software (Part 1)
Presented By: Hanping Feng
Outline
 Cisco IOS software
 Cisco IOS command modes
 Basic BGP configuration tasks
 Summary
Cisco IOS software
 Overview



internetwork operating system
runs on the majority of Cisco networking equipment
provides intelligent network services:
 security, multicast, load-balancing...
 IOS User Interfaces


the command-line interface (CLI)
configuration tools

AutoInstall

the setup command facility

the ConfigMaker and FastStep configuration applications
Cisco IOS Command Modes
 User EXEC mode
 Privileged EXEC mode
 Global configuration mode
 Specific configuration modes
 Configuration submodes
 configuration subsubmodes
 ROM Monitor Mode
Cisco IOS Command Modes
Entering CLI
Log in
logout
User EXEC (Router>)
enable
end/Ctrl+Z
configure terminal
disable
Interface configuration
(Router(config-if)#)
Privileged EXEC (Router#)
exit/end/Ctrl+Z
Global configuration (Router(config)#)
interface
exit
End/Ctrl+Z
router

exit
Router configuration
(Router(config-router)#)
Basic BGP Configuration Tasks
 Enabling BGP Routing
 Configuring BGP Neighbors
 Managing Routing Policy Changes
 Verifying BGP Soft Reset
 Configuring BGP Interactions with IGPs
 Configuring BGP Administrative Weights
 Disabling AS Path Comparison
Basic BGP Configuration Tasks
 Configuring BGP Route Filtering by Neighbor
 Configuring BGP Filtering Using Prefix Lists
 Configuring BGP Path Filtering by Neighbor
 Disabling Next-Hop Processing on BGP Updates
 Configuring the BGP Version
 Setting the Network Weight
 Configuring the Multi Exit Discriminator Metric
Enabling BGP Routing
Router(config)# router bgp autonomous-system
Router(config-router)#
Effect:
Global configuration mode  Router configuration mode
Example:
Number of the autonomous system
to which the router belongs.
Router(config)# router bgp 200
Configuring BGP Neighbors
Router(config-router)# neighbor {ip-address |
peer-group-name} remote-as number
ip-address
Neighbor's IP address.
peer-group-name
Name of a BGP peer group.
number
Autonomous system to which the
neighbor belongs.
Configuring BGP Neighbors
!Router A
router bgp 109
network 131.108.0.0
network 192.31.7.0
neighbor 131.108.200.1 remote-as 167
neighbor 131.108.234.2 remote-as 109
neighbor 150.136.64.19 remote-as 99
Managing Routing Policy Changes
 BGP session must be reset to valid a policy change
 reset methods:

hard reset

soft reset

outbound soft reset

inbound soft reset

configured inbound soft reset

dynamic inbound soft reset
Managing Routing Policy Changes
Router# clear ip bgp {* | address | peer-group-name}
[soft [in | out]]
Router(config-router)# neighbor {ip-address | peergroup-name} soft-reconfiguration inbound
soft
Example:
(Optional) Soft reset.
router bgp
in | 100
out (Optional) Triggers inbound or outbound soft
neighbor 131.108.1.1 remote-as
200
reset.
neighbor 131.108.1.1 soft-reconfiguration inbound

clear ip bgp 131.108.1.1 soft in
Verifying BGP Soft Reset
 Check information about the BGP routing table
Router# show ip bgp
 Check information about BGP neighbors
Router# show ip bgp neighbors [address]
Configuring BGP Interactions with
IGPs
 Synchronization is enabled by default.
 In some cases, you do not need synchronization.
 To disable synchronization:
Router(config-router)# no synchronization
Configuring BGP Administrative
Weights
 a cisco-defined proprietary attribute
 used in the path selection process
 local to the router
 to configure this attribute:
Router(config-router)# neighbor {ip-address |
peer-group-name} weight weight
Configuring BGP Administrative
Weights (contd.)
!Router C
router bgp 300
neighbor 1.1.1.1 remote-as 100
neighbor 1.1.1.1 weight 2000
neighbor 2.2.2.2 remote-as 200
neighbor 2.2.2.2 weight 1000
Disabling AS Path Comparison
 RFC1771 does not include AS-path in the path
selection procedure
 the Cisco implementation does by default
 to ignore the as-path length when selecting a route:
Router(config-router)# bgp bestpath as-path ignore
BGP Route Filtering
 Three basic BGP configuration tasks
involved:

Configuring BGP Route Filtering by Neighbor

Configuring BGP Filtering Using Prefix Lists

Configuring BGP Path Filtering by Neighbor
Prefix Filtering
 To define a distribute list:
access-list access-list-number {deny | permit}
address-prefix [wildcard]
 To apply a distribute list on a neighbor:
neighbor {ip-address | peer-group-name} distributelist access-list-number {in | out}
access-list-number: number of an access list. 1 to 99 or 1300 to 1999.
deny: denies access if the address prefix is matched.
permit: permits access if the address prefix is matched.
in: distribute
list is applied
to incoming advertisements.
address-prefix:
the prefix
to match.
distribute
is applied
tothe
outgoing
advertisements.
wildcard:out:
wildcard
bits.list
Place
ones in
bit positions
you want to ignore.
!Router C
router bgp 300
network 170.10.0.0
neighbor 3.3.3.3 remote-as 200
neighbor 2.2.2.2 remote-as 100
neighbor 2.2.2.2 distribute-list 1 out
!
access-list 1 deny 160.10.0.0 0.0.255.255
access-list 1 permit 0.0.0.0 255.255.255.255
Prefix Filtering
AS_path Filtering
accesslist-number {deny | permit} as-regular-expression
 Router(config-router)# neighbor {ip-address |
peer-group-name} filter-list access-list-number
 Router(config)# ip as-path access-list
{in | out}
as-regular-expression: a regular expression
matching a specific sequence of ASes.
!Router C
neighbor 3.3.3.3 remote-as 200
neighbor 2.2.2.2 remote-as 100
neighbor 2.2.2.2 filter-list 1 out
!
ip as-path access-list 1 deny ^200$
ip as-path access-list 1 permit .*
AS_path Filtering
Using A Prefix List
 Router(config-router)# ip prefix-list list-name [seq seq-
value] deny|permit network/len [ge ge-value] [le le-value]
 Router(config-router)# neighbor {ip-address |
peer-
group-name
} prefix-list
prefix-listname
{in | out}
seq-value(Optional):
Specifies
the sequence number
for the prefix list entry.
network/len (Mandatory): The network number and
Example:
length (in bits) of the network mask.
ip prefix-list abc deny 128.0.0.0/8 ge 23 le 24
ge-value(Optional): Specifies the lesser value of a
(the abc
"from"
portion
of the range description).
ip range
prefix-list
permit
0.0.0.0/0
le-value2.2.2.2
(Optional):
Specifies
neighbor
prxfix-list
abc the
in greater value of a
range (the "to" portion of the range description).
Disabling Next-Hop Processing on
BGP Updates
Disabling Next-Hop Processing on
C
BGP Updates !Router
router bgp 300
neighbor 170.10.20.1 remote-as 100
neighbor 170.10.20.1 next-hop-self
Router(config-router)# neighbor {ip-address | peergroup-name} next-hop-self
Configuring the BGP Version
 To prevent negotiation and force the BGP version used
Router(config-router)# neighbor {ipaddress |
peer-group-name} version value
 Example:
neighbor 1.1.1.1 version 4
Setting the Network Weight
 The weight attribute is 32768 for the paths that the router
originates by default.
 To set the absolute weight for a network:
Router(config-router)# network
address mask
weight weight
 Example:
network 128.0.0.0 weight 2000
Configuring the Multi Exit
Discriminator Metric
Router(config-router)# default-metric number
Summary
 CLI commands are enough to configure BGP.
 Advanced BGP configuration tasks show the
flexibility of BGP.
 Route maps, aggregation, community, confederation, peer
groups...
 Thanks and to be continued...