|
Thread Index Re: [isp-bgp] BGP Newbie Help - Config Review
On (22/03/05 09:23), Jim Barstow wrote:
>
> I plan on getting full routes from UUNet and No routes from Sprint
are you going to get a default from sprint then? lacking that, your
routers won't know what to do if the mci connection goes away...is there
a particular reason you don't want any sprint routes? i personally would
take at least theirs+customers, but i wrote the below assuming a default
from sprint...
i took the liberty of adding an inbound filter - that way if they
happen to mistype and send you a full table or something silly like that,
your router won't blow up (and you can add further path filtering easily).
i've used a prefix-list to permit a default from sprint, and to limit
prefixes to /24 or shorter from mci
i've also added a route based on pete templin's email to make sure that
your aggregate is there
---begin---
# make sure aggregates are in routing table
ip route 204.180.198.0 255.255.254.0 null0 250
ip route 63.169.171.0 255.255.255.0 null0 250
!
router bgp nnnnn
network 204.180.198.0 255.255.254.0
network 63.169.171.0 255.255.255.0
# for load-sharing to work on the sprint t1s
maximum-paths 2
neighbor peer-group sprint
neighbor peer-group sprint remote-as 1239
neighbor peer-group sprint send-community
neighbor peer-group sprint version 4
neighbor peer-group sprint route-map from-sprint in
neighbor peer-group sprint route-map to-sprint out
neighbor x.x.x.x description Sprint ASN1239 - crctA
neighbor x.x.x.x peer-group sprint
neighbor y.y.y.y description Sprint ASN1239 - crctB
neighbor y.y.y.y peer-group sprint
neighbor z.z.z.z description UUNet ASN701
neighbor z.z.z.z remote-as 701
neighbor z.z.z.z version 4
neighbor z.z.z.z send-community
neighbor z.z.z.z route-map from-mci in
neighbor z.z.z.z route-map to-mci out
# be careful using this - there are currently more than 150K entries,
# i changed it to 160K, and as pete pointed out, warning-only won't do
# anything, and if you aren't monitoring the logs...then why use it
neighbor z.z.z.z maximum-prefix 160000 warning-only
!
route-map from-sprint permit 10
match ip prefix-list default-only
set local-preference 90
route-map from-mci permit 10
match ip address prefix-list mci-in
route-map to-sprint permit 10
match ip address prefix-list smarttel-out
set community 1239:90
route-map to-mci permit 10
match ip address prefix-list smarttel-out
set community 701:120
ip prefix-list default-only seq 100 permit 0.0.0.0/0
ip prefix-list mci-in seq 100 permit 0.0.0.0/0 le 24
ip prefix-list smarttel-out seq 100 permit 204.180.198.0/23
ip prefix-list smarttel-out seq 200 permit 63.169.171.0/24
ip prefix-list smarttel-out seq 999 deny 0.0.0.0/0 le 32
---end---
hope that helps
/joshua
--
A common mistake that people make when trying to design something
completely foolproof is to underestimate the ingenuity of complete
fools.
- Douglas Adams -
To unsubscribe via postal mail, please contact us at:
Jupitermedia Corp.
Attn: Discussion List Management
475 Park Avenue South
New York, NY 10016
Please include the email address which you have been contacted with.
Copyright 2005 Jupitermedia Corporation All Rights Reserved.
Thread Index |
|
