Presentation is loading. Please wait.

Presentation is loading. Please wait.

Nanog 14, Atlanta Interesting Peering Activities at the Exchange Points 1 Naiming Shen Cisco Systems.

Published byTheresa Wheeler Modified over 9 years ago

Similar presentations

Presentation on theme: "Nanog 14, Atlanta Interesting Peering Activities at the Exchange Points 1 Naiming Shen Cisco Systems."— Presentation transcript:

1 Nanog 14, Atlanta Interesting Peering Activities at the Exchange Points 1 Naiming Shen Cisco Systems

2 11/9/98Nanog 14, Atlanta2 Peering Activities at NAPs During the Summer of 1997 Pointing default Rewrite eBGP nexthop Passing third party nexthop Misconfiguration

3 11/9/98Nanog 14, Atlanta3 Case#1: Rewrite eBGP Nexthop Private Peering ISP 3 ISP 1 iMCI ISP 2 cpe2 Mae-East NAP ACLs

4 11/9/98Nanog 14, Atlanta4 Case#1: Continue... Netflow shown 15% extra traffic from a single subnet traceroute -g shown the traffic coming to us Install a static route of 212.x.x.x pointing to this router and traceroute stopped at ISP1 Install the route in BGP, traceroute shown it coming back to us Thus this router of ISP3 had to rewrite the eBGP nexthop base on the AS numbers This could not be misconfiguration or a simple pointing default. Also this was not just used towards iMCI.

5 11/9/98Nanog 14, Atlanta5 Case#1: Continue... Install a packet filter on one of the links Install the packet filter on both links, which forced the traffic going to ISP2 After the filter was removed, it came back A New packet filter was applied

6 11/9/98Nanog 14, Atlanta6 Case #1: Continue... ACL 123 access-list 123 permit icmp x.x.x.0 0.0.31.255 any access-list 123 permit udp x.x.x.0 0.0.31.255 any gt 32000 access-list 123 permit udp x.x.x.0 0.0.31.255 any eq 53 access-list 123 deny ip x.x.x.0 0.0.31.255 any access-list permit ip any any The new filter was there for four days

7 11/9/98Nanog 14, Atlanta7 ISP 4 iMCI ISP 5 Case#2: Passing 3rd Party Nexthop Peering NAP LAN traffic Peering/customer

8 11/9/98Nanog 14, Atlanta8 Case#2: Continue... Netflow did not find this case Even you can rewrite the nexthop to your peer’s address, you can’t stop your peer passing your nexthop to the 3rd party route-map command set ip next-hop peer-address Use “next-hop-self”

9 11/9/98Nanog 14, Atlanta9 ISP 7 iMCI ISP 6 internetMCI.net Case#3: Pointing Default

10 11/9/98Nanog 14, Atlanta10 Case#3: Continue... It first pointing to ISP6, then to iMCI reverse DNS lookup was xxx.internetmci.net SNMP query had default route MIB value: ip.ipRouteTable.ipRouteEntry.ipRouteNexthop.0.0.0.0 = IpAddress:192.41.177.180 After we exchanged some email, they pointed to someone else

11 11/9/98Nanog 14, Atlanta11 ISP 9 Case#4: Tunneling ISP 8 ISP 9 GRE NAP1 NAP2

12 11/9/98Nanog 14, Atlanta12 ISP 11 ISP 10 Upstream Provider NAP3 Case#4: Continue... E1 E3

13 11/9/98Nanog 14, Atlanta13 Other Activities Run IGP at the NAPs Run Native Multicast Inconsistent route announcement at different peering points Run CDP

14 11/9/98Nanog 14, Atlanta14 Detection Netflow stats for reverse route lookup and traffic matrix traceroute -g If LSR is disabled, use Ping-Pong trace MAC address accounting

15 11/9/98Nanog 14, Atlanta15 Filtering Packet level filtering MAC address filtering/rate-limit, sometimes combined with WRED Null out offender’s routes within your domain

16 11/9/98Nanog 14, Atlanta16 Preventive Measures NAP GIGAswitch L2 filtering NAP ATM PVCs Use “next-hop-self” and reset peer-address Remove non-customer routes from NAP routers Do not carry NAP subnets in the backbone Enforce consistent route announcements

Download ppt "Nanog 14, Atlanta Interesting Peering Activities at the Exchange Points 1 Naiming Shen Cisco Systems."

Similar presentations

Route Optimisation RD-CSY3021.

Route Optimisation RD-CSY3021.
RIP V2 W.lilakiatsakun.  RFC 2453 (obsoletes –RFC 1723 /1388)  Extension of RIP v1 (Classful routing protocol)  Classless routing protocol –VLSM is.

RIP V2 W.lilakiatsakun.  RFC 2453 (obsoletes –RFC 1723 /1388)  Extension of RIP v1 (Classful routing protocol)  Classless routing protocol –VLSM is.
1 Copyright  1999, Cisco Systems, Inc. Module10.ppt10/7/1999 8:27 AM BGP — Border Gateway Protocol Routing Protocol used between AS’s Currently Version.

1 Copyright  1999, Cisco Systems, Inc. Module10.ppt10/7/1999 8:27 AM BGP — Border Gateway Protocol Routing Protocol used between AS’s Currently Version.
Lecture 9 Overview. Hierarchical Routing scale – with 200 million destinations – can’t store all dests in routing tables! – routing table exchange would.

Lecture 9 Overview. Hierarchical Routing scale – with 200 million destinations – can’t store all dests in routing tables! – routing table exchange would.
© 2005 Cisco Systems, Inc. All rights reserved. BGP v3.2—2-1 BGP Transit Autonomous Systems Monitoring and Troubleshooting IBGP in a Transit AS.

© 2005 Cisco Systems, Inc. All rights reserved. BGP v3.2—2-1 BGP Transit Autonomous Systems Monitoring and Troubleshooting IBGP in a Transit AS.
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—2-1 Label Assignment and Distribution Introducing Typical Label Distribution in Frame-Mode MPLS.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—2-1 Label Assignment and Distribution Introducing Typical Label Distribution in Frame-Mode MPLS.
Scaling and other new BGP Features Mark Turner Cisco Systems Queries: Unless otherwise noted, these features.

Scaling and other new BGP Features Mark Turner Cisco Systems Queries: Unless otherwise noted, these features.
Chapter 4: Network Layer 4. 1 Introduction 4.2 Virtual circuit and datagram networks 4.3 What’s inside a router 4.4 IP: Internet Protocol –Datagram format.

Chapter 4: Network Layer 4. 1 Introduction 4.2 Virtual circuit and datagram networks 4.3 What’s inside a router 4.4 IP: Internet Protocol –Datagram format.
Presented By: Hanping Feng Configuring BGP With Cisco IOS Software (Part 1)

Presented By: Hanping Feng Configuring BGP With Cisco IOS Software (Part 1)
© 2009 Cisco Systems, Inc. All rights reserved. ROUTE v1.0—5-1 Implementing Path Control Assessing Path Control Network Performance Issues.

© 2009 Cisco Systems, Inc. All rights reserved. ROUTE v1.0—5-1 Implementing Path Control Assessing Path Control Network Performance Issues.
© 2009 Cisco Systems, Inc. All rights reserved. ROUTE v1.0—4-1 Implement an IPv4-Based Redistribution Solution Assessing Network Routing Performance and.

© 2009 Cisco Systems, Inc. All rights reserved. ROUTE v1.0—4-1 Implement an IPv4-Based Redistribution Solution Assessing Network Routing Performance and.
© 2009 Cisco Systems, Inc. All rights reserved.ROUTE v1.0—6-1 Connecting an Enterprise Network to an ISP Network Configuring and Verifying Basic BGP Operations.

© 2009 Cisco Systems, Inc. All rights reserved.ROUTE v1.0—6-1 Connecting an Enterprise Network to an ISP Network Configuring and Verifying Basic BGP Operations.
MPLS L3 and L2 VPNs Virtual Private Network –Connect sites of a customer over a public infrastructure Requires: –Isolation of traffic Terminology –PE,

MPLS L3 and L2 VPNs Virtual Private Network –Connect sites of a customer over a public infrastructure Requires: –Isolation of traffic Terminology –PE,
SMUCSE 8344 MPLS Virtual Private Networks (VPNs).

SMUCSE 8344 MPLS Virtual Private Networks (VPNs).
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—4-1 MPLS VPN Technology Forwarding MPLS VPN Packets.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—4-1 MPLS VPN Technology Forwarding MPLS VPN Packets.
Border Gateway Protocol (BGP4)

Border Gateway Protocol (BGP4)
BGP Attributes and Path Selections

BGP Attributes and Path Selections
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—3-1 Frame-Mode MPLS Implementation on Cisco IOS Platforms Configuring Frame-Mode MPLS on Cisco.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—3-1 Frame-Mode MPLS Implementation on Cisco IOS Platforms Configuring Frame-Mode MPLS on Cisco.
1 16-Aug-15 Static Routing CCNA Exploration Semester 2 Chapter 2.

1 16-Aug-15 Static Routing CCNA Exploration Semester 2 Chapter 2.
1 Copyright © 2012, Elsevier Inc. All rights Reserved Chapter 4 Advanced Internetworking Computer Networks, 5th Edition.

1 Copyright © 2012, Elsevier Inc. All rights Reserved Chapter 4 Advanced Internetworking Computer Networks, 5th Edition.

Similar presentations

Ads by Google