Covering Prefixes Outbound Route Filter for BGP-4 draft-bonica-l3vpn-orf-covering-prefixes-01 H. Jeng, l. Jalil, R. Bonica, Y. Rekhter, K. Patel, L. Yong.

Slides:



Advertisements
Similar presentations
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-1 MPLS VPN Implementation Configuring BGP as the Routing Protocol Between PE and CE Routers.
Advertisements

Copyright © 2004 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 1 E-VPN and Data Center R. Aggarwal
© 2009 Cisco Systems, Inc. All rights reserved. Cisco Public Presentation_ID 1 BGP Diverse Paths draft-ietf-grow-diverse-bgp-paths-dist-02 Keyur Patel.
Advertising Multiple NextHop Routes in BGP Joel Halpern Manav Bhatia Paul Jakma 65 th IETF – Dallas, TX.
Technical Aspects of Peering Session 4. Overview Peering checklist/requirements Peering step by step Peering arrangements and options Exercises.
RIB Reduction in Virtual Subnet draft-xu-bess-virtual-subnet-rib-reduction-00 Xiaohu Xu (Huawei) Susan Hares (Individual) Yongbing Fan (China.
Entire Routes Reflecting capability draft-zhang-idr-bgp-entire-routes-reflect-00.txt Zhang Renhai :
BGP.
© J. Liebeherr, All rights reserved 1 Border Gateway Protocol This lecture is largely based on a BGP tutorial by T. Griffin from AT&T Research.
BGP. 2 Copyright © 2009 Juniper Networks, Inc. BGP Overview Is an inter-domain routing protocol that communicates prefix reachablility.
Border Gateway Protocol Autonomous Systems and Interdomain Routing (Exterior Gateway Protocol EGP)
1 Interdomain Routing Protocols. 2 Autonomous Systems An autonomous system (AS) is a region of the Internet that is administered by a single entity and.
IPv4 and IPv6 Mobility Support Using MPLS and MP-BGP draft-berzin-malis-mpls-mobility-00 Oleg Berzin, Andy Malis {oleg.berzin,
CS Summer 2003 Lecture 14. CS Summer 2003 MPLS VPN Architecture MPLS VPN is a collection of sites interconnected over MPLS core network. MPLS.
Mini Introduction to BGP Michalis Faloutsos. What Is BGP?  Border Gateway Protocol BGP-4  The de-facto interdomain routing protocol  BGP enables policy.
CS Summer 2003 Lecture 4. CS Summer 2003 Route Aggregation The process of representing a group of prefixes with a single prefix is known as.
CS Summer 2003 Lecture 13. CS Summer 2003 MP_REACH_NLRI Attribute The MP_REACH_NLRI attribute is encoded as shown below:
More on BGP Check out the links on politics: ICANN and net neutrality To read for next time Path selection big example Scaling of BGP.
Feb 12, 2008CS573: Network Protocols and Standards1 Border Gateway Protocol (BGP) Network Protocols and Standards Winter
© 2009 Cisco Systems, Inc. All rights reserved. ROUTE v1.0—4-1 Implement an IPv4-Based Redistribution Solution Assessing Network Routing Performance and.
MPLS L3 and L2 VPNs Virtual Private Network –Connect sites of a customer over a public infrastructure Requires: –Isolation of traffic Terminology –PE,
SMUCSE 8344 MPLS Virtual Private Networks (VPNs).
MPLS And The Data Center Adrian Farrel Old Dog Consulting / Juniper Networks
MPLS VPN Security assessment
Computer Networks Layering and Routing Dina Katabi
Virtual Subnet : A L3VPN-based Subnet Extension Solution draft-xu-virtual-subnet-10 Xiaohu Xu (Huawei) Susan Hares (Huawei) Yongbing Fan.
© 2009 Cisco Systems, Inc. All rights reserved. Cisco Public Presentation_ID 1 BGP AS AN MVPN PE-CE Protocol draft-keyupate-l3vpn-mvpn-pe-ce-00 Keyur Patel,
A Brief Taxonomy of Firewalls
© 2001, Cisco Systems, Inc. Multiprotocol BGP. © 2001, Cisco Systems, Inc. Multiprotocol BGP-2 Objectives Upon completion of this chapter, you will be.
Draft-campbell-dime-load- considerations-01 IETF 92 DIME Working Group Meeting Dallas, Texas.
1 IP Forwarding Relates to Lab 3. Covers the principles of end-to-end datagram delivery in IP networks.
Commercial Peering Service Community Attribute Use in Internet2 CPS Caren Litvanyi lead network engineer peering team Internet2 NOC GigaPoP Geeks BOF January.
Virtual Topologies for Service Chaining in BGP IP/MPLS VPNs draft-rfernando-bess-service-chaining-00 (previously draft-rfernando-l3vpn-service-chaining-04)
BGP operations and security draft-jdurand-bgp-security-02.txt Jerome Durand Gert Doering Ivan Pepelnjak.
IS-IS WG - IETF 71 Summary Route with Detailed Reachability George Swallow, Clarence Filsfils, Stefano Previdi
Karlstad University IP security Ge Zhang
Draft-narayanan-icnrg-bgp-uri-00 Ashok Narayanan Stefano Previdi Brian Field ICNRG Aug
1MPLS QOS 10/00 © 2000, Cisco Systems, Inc. rfc2547bis VPN Alvaro Retana Alvaro Retana
HTTP evolution - TCP/IP issues Lecture 4 CM David De Roure
IP security Ge Zhang Packet-switched network is not Secure! The protocols were designed in the late 70s to early 80s –Very small network.
Interactive Connectivity Establishment : ICE
LDP extension for Inter-Area LSP draft-decraene-mpls-ldp-interarea-04 Bruno DecraeneFrance Telecom / Orange Jean-Louis Le RouxFrance Telecom / Orange Ina.
1 draft-sidr-bgpsec-protocol-05 Open Issues. 2 Overview I received many helpful reviews: Thanks Rob, Sandy, Sean, Randy, and Wes Most issues are minor.
© 2005 Cisco Systems, Inc. All rights reserved. BGP v3.2—3-1 Route Selection Using Policy Controls Using Outbound Route Filtering.
© 2005 Cisco Systems, Inc. All rights reserved. BGP v3.2—3-1 Route Selection Using Policy Controls Applying Route-Maps as BGP Filters.
1 Border Gateway Protocol (BGP) and BGP Security Jeff Gribschaw Sai Thwin ECE 4112 Final Project April 28, 2005.
© 2009 Cisco Systems, Inc. All rights reserved. Cisco Public Presentation_ID 1 BGP Diagnostic Message draft-raszuk-bgp-diagnostic-message-00 Robert Raszuk,
Praveen Muley (Alcatel), Susan Hares (NextHop), Keyur Patel (Cisco), Luyuan Fang (AT&T), Benson Schliesser (Savvis), Nabil Bitar (Verizon) Group Cooperative.
© 2009 Cisco Systems, Inc. All rights reserved. Cisco Public Presentation_ID 1 BGP Enhanced Route Refresh Capability draft-keyur-bgp-enhanced-route-refresh-01.
1 Copyright © 2009 Juniper Networks, Inc. E-VPN for NVO Use of Ethernet Virtual Private Network (E-VPN) as the carrier-grade control plane.
* Constrained VPN route distribution Pedro Marques Robert Raszuk Ron Bonica
Covering Prefixes Outbound Route Filter for BGP-4 draft-bonica-l3vpn-orf-covering-prefixes-01 H. Jeng, l. Jalil, R. Bonica, Y. Rekhter, K. Patel, L. Yong.
BGP-based Auto-Discovery for L2VPNs draft-hlmu-l2vpn-bgp-discovery-00.txt Sue Hares - Vasile Radoaca -
Virtual Private LAN Service
MBGP and Customer Routes
Using BGP to Bind MPLS Labels to Address Prefixes draft-rosen-idr-rfc3107bis-00 Eric Rosen (presented by Ross Callon) IETF 95 MPLS WGdraft-rosen-idr-rfc3107bis-001.
HUAWEI TECHNOLOGIES CO., LTD. All rights reserved Internal DP MP-BGP for IPv6 原理 ISSUE 1.0.
BGP extensions for Path Computation Element (PCE) Discovery in a BGP/MPLS IP-VPN draft-kumaki-pce-bgp-disco-attribute-03.txt Kenji Kumaki KDDI R&D Labs,
Border Gateway Protocol
Virtual Hub & Spoke with BGP EVPNs
BGP-Based SPF RTGWG - Jan 2017
Border Gateway Protocol
Huajin Jeng, Jeffrey Haas, Yakov Rekhter, Jeffrey Zhang
Multicast geo-distribution control draft-rekhter-geo-distribution-control-00 Huajin Jeng – AT&T Jeffrey Haas, Yakov Rekhter, Jeffrey Zhang – Juniper IETF.
Goals of soBGP Verify the origin of advertisements
PCEP Extension for Native IP ietf
John Scudder October 24, 2000 BGP Update John Scudder October 24, 2000.
EVPN Interworking with IPVPN
BGP-Based SPF IETF 98, Chicago
EVPN Interworking with IPVPN
Presentation transcript:

Covering Prefixes Outbound Route Filter for BGP-4 draft-bonica-l3vpn-orf-covering-prefixes-01 H. Jeng, l. Jalil, R. Bonica, Y. Rekhter, K. Patel, L. Yong

Overview Define a new ORF-type, called the "Covering Prefixes ORF (CP-ORF)“ Realizes a “route pull” model in BGP – BGP speaker, on demand, pull certain routes from peer Applicability – Virtual Hub-and-Spoke VPN’s (RFC 7024) – Ethernet MPLS/BGP Virtual Private Networks (EVPN)

VIRTUAL HUB-AND-SPOKE VPN: A BRIEF REVIEW

Goal Reduce the number of routes that V-Spoke1 carries V-Spoke1 carries only one IP Default route per VPN – Next-hop == V-Hub1 Traffic from V-Spoke1 traverses V-Hub1 Traffic to V-Spoke 1 may traverse a more direct route RRV-Hub1 V-Spoke1 PE1 Red VPN Site Red VPN Site Red VPN Site ( /24)

BGP Routing Policy PE1 and V-Hub1 are clients of a RR – V-Spoke1 may be client of RR or V-Hub1 PE1 and V-Hub1 accept advertisements carrying the RT, RT-RED V-Spoke1 accepts advertisements carrying the RT, RT-RED-FROM- HUB1 RRV-Hub1 V-Spoke1 PE1 Red VPN Site Red VPN Site Red VPN Site Red VPN Site ( /24)

BGP Advertisements PE1 advertises /24 to the RR – Next-hop = Self – RT = RT-RED RR reflects route to V- Hub1 – V-Hub1 accepts RR may also advertise route to V-Spoke1 – In absence of RT- Constrain – If advertised, V-Spoke1 rejects RRV-Hub1 V-Spoke1 PE1 Red VPN Site Red VPN Site Red VPN Site Red VPN Site ( /24)

BGP Advertisements (continued) V-Hub1 advertises VPN-IP default route to the RR – Next-hop = Self – RT = RT-RED-FROM- HUB1 RR reflects route to V-Spoke1 – V-Spoke1 accepts RRV-Hub1 V-Spoke1 PE1 Red VPN Site Red VPN Site Red VPN Site Red VPN Site ( /24)

COVERING PREFIX ORF

Problem to Be Solved The VPN site served by V- Spoke1 originates an “exceptional” flow to – Large, latency sensitive, etc. Flow traverses V-Hub1 Flow might benefit from a more direct route to – If such a route exists The criteria determining that a flow might benefit from a more direct route are strictly local to V- Spoke1 RRV-Hub1 V-Spoke1 PE1 Red VPN Site Red VPN Site Red VPN Site Red VPN Site ( /24)

Solution V-Spoke1 requests the most specific route covering from the RR – Carrying additional RT, RT-RED-FROM- HUB1 Pull versus push RRV-Hub1 V-Spoke1 PE1 Red VPN Site Red VPN Site Red VPN Site Red VPN Site ( /24)

Route Refresh Message With CP-ORF AFI = IPv4 or IPv6 SAFI = MPLS-Labeled-VPN-Address When-to-refresh = IMMEDIATE ORF Type = CP-ORF (value TBD) ORF entry – Action = ADD or REMOVE – Match = PERMIT – Type Specific Information

CP-ORF Type Specific Information | Sequence (32 bits) | | Minlen (8 bits) | | Maxlen (8 bits) | | VPN Route Target (64 bits) | | Import Route Target (64 bits) | | Host Address (32 or 128 bits) | |

Solution In Detail At startup, V-Spoke1 establishes BGP session with RR – Negotiates CP-ORF Capability – Negotiates Multiprotocol Extensions Capability V-Spoke1 sends RR a Route Refresh message containing no ORF entries – RR sends V-Spoke1 IP VPN default route Next-hop = V-Hub1 RT = RT-RED-FROM-HUB1 Later, V-Spoke1 detects an “exceptional” flow to V-Spoke1 sends RR a Route Refresh message containing CP- ORF entry – RR refreshes advertisements to V-Spoke1, sending route(s) covering (i.e., /24) V-Spoke1 periodically withdraws ORFs that are no longer required

Solution In Detail: RR Perspective RR validates ROUTE REFRESH – Ignore entire message if invalid If the Action is ADD, RR adds the CP-ORF entry to the Outbound Filter associated with the peer If the Action is REMOVE, RR removes the CP-ORF entry from the Outbound Filter associated with the peer If the Action is ADD, RR check routes in Loc-RIB for CP-ORF match condition: – Route prefix length >= minlen + 64 – Route prefix length <= maxlen + 64 – the route carries RT whose value is the same as the CP-ORF VPN Route Target – the route covers the CP-ORF Host Address Place matching routes into Adj-RIB-Out associated with the peer Add CP-ORF Import Route Target to the matching routes that are in Adj- RIB-Out Send newly added routes to the peer

Benefit of Route Refresh Semantic A BGP speaker can respond to a ROUTE REFRESH message containing ORFs by refreshing all routes or by refreshing only those routes affected by the ORFs [RFC 5291]. The CP-ORF draft recommends that the BGP speaker refreshes only those routes that are affected by the ORFs. Because ORFs are carried by ROUTE REFRESH messages, they are not propagated. In this application, propagation is neither required nor desirable. The application requires spokes to pull routes from the route reflector. It does not require the pull to be propagated ORF is easily extensible

Conclusion Adopt as WG draft

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.