Presentation is loading. Please wait.

Presentation is loading. Please wait.

Border Gateway Protocol (BGP)

Published byΓάννη Κορωναίος Modified over 5 years ago

Similar presentations

Presentation on theme: "Border Gateway Protocol (BGP)"— Presentation transcript:

1 Border Gateway Protocol (BGP)
(Bruce Maggs and Nick Feamster)

2 BGP Primer Autonomous System Number 128.2/16 1239 9 Sprint AT&T 1239
/16 AT&T 7018 12/8 Block of IP addresses 128.2/16 9 CMU 9 128.2/16 AS Path bmm.pc.cs.cmu.edu

3 BGP Details AS that owns a prefix “originates” an advertisement with only it’s AS number on path AS advertises only its primary path to a prefix (the path it actually uses) to its neighbors Primary path for an IP address must be chosen from received advertisements with most specific (longest) prefix containing address, e.g., for , /24 is preferred over 128.2/16 Advertisement contains entire AS path to prevent cycles Router withdraws the advertisement if the path is no longer available

4 Problems with BGP Not secure – susceptible to route “hijacking”
Routing policy determined primarily by economics, not performance Slow to converge (and not guaranteed) During convergence, endpoints can be disconnected even when valid routes exist

5 What Causes Transient Disconnection?
Sprint AT&T Peter All of Hari’s providers use him to get to MIT BGP Rule: An AS advertises only its current forwarding path Hari Let’s start by taking a closer look at what actually causes the packetloss bgp during convergence <dramatic pause> To do this, let’s take a hypothetical example Now remember that since BGP is a path vector protocol, convergence happens separately for each destination - All of Hari’s providers Recall that BGP’s scalability stems from a simple rule, how BGP works: - Advertise only the best path - Don’t tell an alternate route to the AS through whom you’re routing Understand: - ASes - BGP never advertise a route to a guy through whom he’s using  Nobody offers Hari an alternate path MIT

6 What Causes Transient Disconnection?
Sprint AT&T Peter Hari knows no path to MIT Hari drops Peter’s and AT&T’s packets in addition to his own Hari LOSS! X - hadn’t left cushy academic job because without an alternate path he’s forced to dropping packets Link Down MIT

7 What Causes Transient Disconnection?
Hari withdraws path Sprint AT&T Peter AT&T and Peter move to alternate paths Hari X MIT

8 What Causes Transient Disconnection?
Hari withdraws path Sprint AT&T Peter AT&T and Peter move to alternate paths AT&T announces the Sprint path to Hari  Traffic flows Hari X Transient Packet Loss MIT

9 Question: What’s the difference between IGP and iBGP?
Two Flavors of BGP iBGP eBGP External BGP (eBGP): exchanging routes between ASes Internal BGP (iBGP): disseminating routes to external destinations among the routers within an AS Question: What’s the difference between IGP and iBGP?

10 Example BGP Routing Table
The full routing table > show ip bgp Network Next Hop Metric LocPrf Weight Path *>i i *>i i *>i / i * i / i > show ip bgp BGP routing table entry for /16 Paths: (1 available, best #1, table Default-IP-Routing-Table) Not advertised to any peer from ( ) Origin IGP, metric 0, localpref 150, valid, internal, best Community: 10578: :950 Last update: Sat Jan 14 04:45: Specific entry. Can do longest prefix lookup: Prefix AS path Next-hop

11 Route Attributes and Route Selection
BGP routes have the following attributes, on which the route selection process is based: Local preference: numerical value assigned by routing policy. Higher values are more preferred. AS path length: number of AS-level hops in the path Multiple exit discriminator (“MED”): allows one AS to specify that one exit point is more preferred than another. Lower values are more preferred. Shortest IGP path cost to next hop: implements “hot potato” routing Router ID tiebreak: arbitrary tiebreak, since only a single “best” route can be selected

12 Other BGP Attributes iBGP
Next-hop: Next-hop: iBGP Next-hop: IP address to send packets en route to destination. Question: How to ensure that the next-hop IP address is reachable? Either import external address (e.g., ) into internal routing tables, or use next-hop-self neighbor command to advertise (in iBGP) own address, as shown Community value: Semantically meaningless. Used for passing around “signals” and labelling routes.

13 Local Preference Control over outbound traffic
Higher local pref Primary Destination Backup Lower local pref Control over outbound traffic Not transitive across ASes Coarse hammer to implement route preference Useful for preferring routes from one AS over another (e.g., primary-backup semantics)

14 AS Path Length Traffic Destination Among routes with highest local preference, select route with shortest AS path length Shortest AS path != shortest path, for any interpretation of “shortest path”

15 AS Path Length Hack: Prepending
Traffic AS 2 AS 3 AS Path: “1” AS Path: “1 1” AS 1 D Attempt to control inbound traffic Make AS path length look artificially longer How well does this work in practice vs. e.g., hacks on longest-prefix match?

16 Multiple Exit Discriminator (MED)
Dest. Traffic San Francisco New York MED: 20 MED: 10 I Los Angeles Mechanism for AS to control how traffic enters, given multiple possible entry points.

17 Hot-Potato Routing Prefer route with shorter IGP path cost to next-hop
Idea: traffic leaves AS as quickly as possible Dest. New York Atlanta Traffic Common practice: Set IGP weights in accordance with propagation delay (e.g., miles, etc.) 10 5 I Washington, DC

18 Internet Business Model (Simplified)
Provider Preferences implemented with local preference manipulation Free to use Pay to use Example AS Peer Get paid to use Customer Destination Customer/Provider: One AS pays another for reachability to some set of destinations “Settlement-free” Peering: Bartering. Two ASes exchange routes with one another.

19 Filtering and Rankings
Filtering: route advertisement Ranking: route selection Customer Primary Competitor Backup External filtering vs. internal dissemination (external vs. internal) What makes distributed configuration hard? Filtering: Who gets what Dissemination: how they get it (the path by which they get it) Ranking: what they get Not much else in terms of complicated side effects – Verifying distributed program’s correctness

20 Who owns a prefix? Organizations are granted prefixes of addresses, e.g., 128.2/16, by regional Internet registries ARIN, RIPE NCC, APNIC, AFRINIC, LACNIC Source: Organizations also separately register AS numbers, but no linkage between AS numbers and prefixes.

21 Route Hijacking Any network can advertise that it knows a path to any prefix! No way to check if the path is legitimate. Highly specific advertisements (e.g., /24) will attract traffic. To mitigate risk, network operators manually create filters to limit what sorts of advertisements they will trust from their peers.

22 Why Hijack Routes? Steal some IP addresses temporarily, send SPAM until the addresses are blacklisted. Create a sinkhole to divert traffic away from a Web site, making it unavailable. Eavesdrop on traffic but ultimately pass it along.

23 The AS 7007 Incident On April 25, 1997, AS 7007 (MAI Network Services) leaked its entire routing table with all prefixes broken down (probably due to a bug) to /24 with original AS paths stripped off to AS 1790 Sprint. After MAI turned off their router, Sprint kept advertising the routes! See

24 The Business Game and Depeering
Cooperative competition (brinksmanship) Much more desirable to have your peer’s customers Much nicer to get paid for transit Peering “tiffs” are relatively common 31 Jul 2005: Level 3 Notifies Cogent of intent to disconnect. 16 Aug 2005: Cogent begins massive sales effort and mentions a 15 Sept. expected depeering date. 31 Aug 2005: Level 3 Notifies Cogent again of intent to disconnect (according to Level 3) 5 Oct :50 UTC: Level 3 disconnects Cogent. Mass hysteria ensues up to, and including policymakers in Washington, D.C. 7 Oct 2005: Level 3 reconnects Cogent During the “outage”, Level 3 and Cogent’s singly homed customers could not reach each other. (~ 4% of the Internet’s prefixes were isolated from each other)

25 Depeering Continued Resolution…
…but not before an attempt to steal customers! As of 5:30 am EDT, October 5th, Level(3) terminated peering with Cogent without cause (as permitted under its peering agreement with Cogent) even though both Cogent and Level(3) remained in full compliance with the previously existing interconnection agreement. Cogent has left the peering circuits open in the hope that Level(3) will change its mind and allow traffic to be exchanged between our networks. We are extending a special offering to single homed Level 3 customers. Cogent will offer any Level 3 customer, who is single homed to the Level 3 network on the date of this notice, one year of full Internet transit free of charge at the same bandwidth currently being supplied by Level 3. Cogent will provide this connectivity in over 1,000 locations throughout North America and Europe.

26 Policy Interactions 1 3 0 1 0 1 2 3 2 1 0 2 0 3 2 0 3 0 Jargon!! Remind us about filtering, ranking, and the high-level intuitive description of the property Start off describing what AS 1 does Put on varadhan et al. Varadhan, Govindan, & Estrin, “Persistent Route Oscillations in Interdomain Routing”, 1996

27 Customers, Providers, and Peers
MajorNet GloboNet Peer Customer Provider RegioNet CountryNet MinorNet LocoNet

28 Valley Free Paths Zero or more customer-to-provider links
MajorNet GloboNet RegioNet CountryNet MinorNet Zero or more customer-to-provider links Zero or one peer-to-peer link Zero or more provider-to-customer links LocoNet

29 Gao-Rexford Conditions
Theorem: If there are no customer-provider cycles, and every AS prefers routes learned from its customers, and all advertised routes are valley free, then BGP is guaranteed to converge.

Download ppt "Border Gateway Protocol (BGP)"

Similar presentations

Improving Internet Availability. Some Problems Misconfiguration Miscoordination Efficiency –Market efficiency –Efficiency of end-to-end paths Scalability.

Improving Internet Availability. Some Problems Misconfiguration Miscoordination Efficiency –Market efficiency –Efficiency of end-to-end paths Scalability.
AGORA: A Market for Internet Connectivity Nick Feamster, Georgia Tech Ramesh Johari, Stanford Vijay Vazirani, Georgia Tech.

AGORA: A Market for Internet Connectivity Nick Feamster, Georgia Tech Ramesh Johari, Stanford Vijay Vazirani, Georgia Tech.
CS 4251: Computer Networking II Nick Feamster Spring 2008

CS 4251: Computer Networking II Nick Feamster Spring 2008
1 Interdomain Traffic Engineering with BGP By Behzad Akbari Spring 2011 These slides are based on the slides of Tim. G. Griffin (AT&T) and Shivkumar (RPI)

1 Interdomain Traffic Engineering with BGP By Behzad Akbari Spring 2011 These slides are based on the slides of Tim. G. Griffin (AT&T) and Shivkumar (RPI)
Border Gateway Protocol Ankit Agarwal Dashang Trivedi Kirti Tiwari.

Border Gateway Protocol Ankit Agarwal Dashang Trivedi Kirti Tiwari.
Network Layer: Internet-Wide Routing & BGP Dina Katabi & Sam Madden.

Network Layer: Internet-Wide Routing & BGP Dina Katabi & Sam Madden.
CS540/TE630 Computer Network Architecture Spring 2009 Tu/Th 10:30am-Noon Sue Moon.

CS540/TE630 Computer Network Architecture Spring 2009 Tu/Th 10:30am-Noon Sue Moon.
© J. Liebeherr, All rights reserved 1 Border Gateway Protocol This lecture is largely based on a BGP tutorial by T. Griffin from AT&T Research.

© J. Liebeherr, All rights reserved 1 Border Gateway Protocol This lecture is largely based on a BGP tutorial by T. Griffin from AT&T Research.
Border Gateway Protocol Autonomous Systems and Interdomain Routing (Exterior Gateway Protocol EGP)

Border Gateway Protocol Autonomous Systems and Interdomain Routing (Exterior Gateway Protocol EGP)
Fundamentals of Computer Networks ECE 478/578 Lecture #18: Policy-Based Routing Instructor: Loukas Lazos Dept of Electrical and Computer Engineering University.

Fundamentals of Computer Networks ECE 478/578 Lecture #18: Policy-Based Routing Instructor: Loukas Lazos Dept of Electrical and Computer Engineering University.
INTERDOMAIN ROUTING POLICY COS 461: Computer Networks Spring 2010 (MW 3:00-4:20 in COS 105) Mike Freedman

INTERDOMAIN ROUTING POLICY COS 461: Computer Networks Spring 2010 (MW 3:00-4:20 in COS 105) Mike Freedman
1 Interdomain Routing Protocols. 2 Autonomous Systems An autonomous system (AS) is a region of the Internet that is administered by a single entity and.

1 Interdomain Routing Protocols. 2 Autonomous Systems An autonomous system (AS) is a region of the Internet that is administered by a single entity and.
Part II: Inter-domain Routing Policies. March 8, 20042 What is routing policy? ISP1 ISP4ISP3 Cust1Cust2 ISP2 traffic Connectivity DOES NOT imply reachability!

Part II: Inter-domain Routing Policies. March 8, What is routing policy? ISP1 ISP4ISP3 Cust1Cust2 ISP2 traffic Connectivity DOES NOT imply reachability!
Practical and Configuration issues of BGP and Policy routing Cameron Harvey Simon Fraser University.

Practical and Configuration issues of BGP and Policy routing Cameron Harvey Simon Fraser University.
S ufficient C onditions to G uarantee P ath V isibility Akeel ur Rehman Faridee 2005-03-0021.

S ufficient C onditions to G uarantee P ath V isibility Akeel ur Rehman Faridee
INTERDOMAIN ROUTING POLICY READING: SECTIONS 4.3.3 PLUS OPTIONAL READING COS 461: Computer Networks Spring 2009 (MW 1:30-2:50 in COS 105) Mike Freedman.

INTERDOMAIN ROUTING POLICY READING: SECTIONS PLUS OPTIONAL READING COS 461: Computer Networks Spring 2009 (MW 1:30-2:50 in COS 105) Mike Freedman.
Slide -1- February, 2006 Interdomain Routing Gordon Wilfong Distinguished Member of Technical Staff Algorithms Research Department Mathematical and Algorithmic.

Slide -1- February, 2006 Interdomain Routing Gordon Wilfong Distinguished Member of Technical Staff Algorithms Research Department Mathematical and Algorithmic.
Computer Networking Lecture 10: Inter-Domain Routing

Computer Networking Lecture 10: Inter-Domain Routing
Internet Routing (COS 598A) Today: Interdomain Traffic Engineering Jennifer Rexford Tuesdays/Thursdays.

Internet Routing (COS 598A) Today: Interdomain Traffic Engineering Jennifer Rexford Tuesdays/Thursdays.
Inherently Safe Backup Routing with BGP Lixin Gao (U. Mass Amherst) Timothy Griffin (AT&T Research) Jennifer Rexford (AT&T Research)

Inherently Safe Backup Routing with BGP Lixin Gao (U. Mass Amherst) Timothy Griffin (AT&T Research) Jennifer Rexford (AT&T Research)

Similar presentations

Ads by Google