Giao thc cng ngoi (Exterior Routing Protocols)

Tc gi: Trn Vn Thnh Giao thc cng ngoi (Exterior Routing Protocols) Ngi ta s dng thut ng EGP ch bt c giao thc nh tuyn no c s dng mang thng tin nh tuyn gia cc AS vi nhau. Hin nay, ch c mt giao thc cng ngoi c s dng hu ht trong cc Inernet TCP/IP. chnh l Border Gateway Protocol (BGP), phin bn u tin c a ra l BGPv1 vo nm 1989 v phin bn gn y nht l BGPv4 vo nm 1993. I. Border Gateway Protocol version 4 (BGPv4) I.1. nh ngha Nh ta bit Internet c to bi rt nhiu cc Autonomous System. BGP c s dng chia s thng tin nh tuyn gia cc AS khc nhau. BGP s dng giao thc vn chuyn tin cy (reliable transport protocol) trao i thng tin nh tuyn chnh l Transmission Control Protocol (TCP). BGP s dng cng 179 thit lp kt ni. BGP h tr variable-length subnet mask (VLSM), classless interdomain routing (CIDR), v summarization. iu ng ch v BGP l n khng quan tm v intra-AS routing, n tin tng rng cc IGP c s dng trong AS s m nhim intra-AS routing. M n ch cp ti inter-AS routing. Mt BGP speaking device s chia s thng tin n c mng vi neighbor ca n. Thng tin n c mng cha ng d liu da trn cc AS khc nhau m n i qua. Thng tin ny s c BGP spaking device to graph ca tt c cc AS ang s dng. Graph s gip cho BGP loi b c routing loop v m bo hiu lc ca policy cho AS ca n. I.2. Thut ng BGP (BGP Terminology) Autonomous system: gii thiu trong phn u. BGP speaker: bt c thit b no m chy BGP routing process u c coi l mt BGP speaker. Peer: khi 2 BGP speaker thit lp mt kt ni TCP gia chng, th chng c coi l Peer. T neighbor tng ng vi peer. eBGP External Border Gateway Protocol (eBGP): l routing protocol c s dng trao i thng tin nh tuyn gia cc BGP peer ca cc AS khc nhau. iBGP Internal Border Gateway Protocol (iBGP): l routing protocol s dng trao i thng tin nh tuyn gia cc BGP peer ca cng chung mt AS.

Inter-AS routing: Inter-AS routing l nh tuyn xy ra gia cc AS khc nhau. Intra-AS routing: Intra-AS routing l nh tuyn xy ra trong cng mt AS. I.3. Hot ng ca BGP (BGP Operation) BGP cho php truyn thng thng tin nh tuyn gia cc AS khc nhau tri khp th gii. Hnh 8.1 cho bit rt nhiu AS v chng s dng BGP chia s thng tin inh tuyn gia cc AS khc nhau. Chng s dng 2 dng BGP thc hin iu : Internal BGP (iBGP) External BGP (eBGP)

Tt c BGP speaking device cng trong mt AS s s dng iBGP lin lc vi mt BGP speaking khc. V i vi cc BGP speaking trong cng AS s phi thit lp peer vi cc BGP speaking khc. iu c ngha l chng ta phi cu hnh full mesh cho iBGP hot ng mt cch ng cch. Hay ni cch khc tt c cc thit b phi thit lp kt ni TCP vi thit b khc. eBGP c s dng gia BGP speaking device ca cc AS khc nhau. Ging nh iBGP, BGP speking device tham gia phi c kt ni layer-3 gia chng. Sau TCP s c s dng bi eBGP thit lp peer session. Sau khi thit lp c peer, BGP speaking device s s dng thng tin m chng c c t nhng trao i to mt BGP graph. Ch mt ln BGP speaking device thit lp c peer cng nh to c BGP graph, chng mi bt u qu trnh trao i thng tin nh tuyn. Lc khi to

BGP speaking s trao i ton b BGP routing table ca n. Sau chng s trao i thng tin update tng phn gia cc peer vi nhau v trao i bn tin KEEPALIVE d duy tr kt ni. I.3.1. nh dng mo u ca bn tin (Message Header Format) BGP s tin hnh x l bn tin ch khi ton b bn tin c nhn. BGP yu cu mi bn tin c kch thc nh nht l 19 octet v max l 4096 octet. Header ca message bao gm nhng thng tin sau:

Marker: trng ny di 16 byte. Trng Marker c s dng xc nh s mt ng b gia mt tp BGP peer v chng thc cc bn tin BGP n (incoming BGP message). Gi tr ca trng ny ph thuc vo loi bn tin. Nu l mt OPEN message n s khng cha thng tin chng thc v Marker c gi tr l ton bit 1. Length: trng ny c di l 2 byte. Trng Length cho bit di ca ton b bn tin. Gi tr ca n bin i t 19 cho n 4096. Type: trng ny c di 1 byte. N cho bit loi bn tin c s dng. C th nh hnh bn di:

a/ Bn tin OPEN ( OPEN Message) Bn tin OPEN l loi bn tin u tin c gi sau khi phin kt ni TCP c thit lp. Khi bn tin OPEN c chp nhn, mt bn tin KEEPALIVE xc nhn bn tin OPEN c gi tr li. Sau khi bn tin KEEPALIVE c gi xc nhn bn tin OPEN, bn tin UPDATE tng phn, bn tin NOTIFICATION v bn tin KEEPALIVE s c trao i gia cc BGP peer. Bn tin OPEN c nh dng nh sau:

Version: trng ny c chiu di 1 byte v c s dng xc nh phin bn ca cc BGP speaker t kt qu ca qu trnh m phn vi neighbor. C th qu trnh ny nh sau: BGP speaker s th m phn vi gi tr version number cao nht m c 2 cng h tr. Nu gi tr version number c xc nh trong trng version m BGP speaker khc khng h tr, mt bn tin li s c gi v cho ni gi v phin kt ni TCP s b ngt. Qu trnh trn s tip tc cho n khi c mt gi tr version number chung c thit lp. My Autonomous System: trng ny c di 2 byte v n cha ng Autonolous System Number ca BGP speaker gi. Trng ny s thng bo cho BGP speaker nhn bit c gi tr ca AS Number ca neighbor ca n. V gi tr cng c s dng to nn BGP graph ca BGP speaker. Hold Time: trng ny c di 2 byte. N thng bo cho BGP speaker nhn gi tr ngh hold time ca BGP speker gi. Sau khi BGP speaker nhn c gi tr hold time t neighbor n s tnh ton v a ra gi tr hold time trong trng Hold Time. N s xc nh thi gian ti a m ni nhn phi i mt thng ip

t ni gi (KEEPALIVE hay UPDATE message). Mi ln mt bn tin c nhn gi tr hold time c reset v 0. BGP Identifier: trng ny c di 4 byte v cha ng gi tr BGP identifier ca BGP speaker gi. BGP identifier tng t RID trong OSPF, n xc nh duy nht mt BGP speaker. BGP identifier chnh l a ch IP cao nht ca loopback interface. Nu loopback khng c cu hnh th n chnh l a ch IP cao nht ca bt k interface no ca router. Gi tr ny c xc nh ch mt ln v gi tr ny khng thay i tr phi khi ng li BGP process. Optional Parameters Length: trng ny c di 1 byte v n th hin tng di ca trng Optional Parameters. Nu gi tr trng ny l 0 cho bit Optional Parameters khng c thit lp. Optional Parameters: trng ny c di bin i v cha ng mt danh sch cc optional parameters m chng s c s dng trong qu trnh m phn vi neighbor. Mi mt optional parameter c biu din bi b ba: <parameter type, parameter length, parameter value>. nh dnh c th nh hnh sau:

Parameter Type: trng ny c di 1 byte v nhn ra tng thng s ring l. Parameter Length: c di 1 byte v cha ng di ca trng Parameter Value. Parameter Value: trng ny c di thay i v gii thch da trn gi tr ca trng Parameter Type. b/ Bn tin UPDATE (UPDATE Message) Sau khi BGP speaker tr thnh peer, chng s trao i bn tin UPDATE tng phn (incremental UPDATE message) cha ng thng tin nh tuyn cho BGP. Thng tin ny cha trong bn tin UPDATE c s dng xy dng mi trng nh tuyn khng c loop (loop-free routing environment). Bn tin UPDATE khng ch cha tuyn kh thi s dng m n cn cha nhng tuyn khng kh thi loi b. Mt bn tin UPDATE c th cha ti a mt feasible route s dng v nhiu unfeasible route loi b. inh dng ca bn tin UPDATE nh sau:

Unfeasible Routes Length: trng ny c di 2 byte v cha ng di ca trng Withdrawn Routes. Gi tr ca n l 0 cho bit trng Withdrawn Routes khng c th hin trong bn tin UPDATE. Withdrawn Routes: trng ny c di thay i v cha mt danh sch nhng tin t a ch IP (IP address prefixes)s b loi b. Vi mi tin t a ch IP c nh dng nh sau:

Length: trng ny c di 1 byte v cha ng di (n v l bit) ca IP address prefix. Nu c gi tr l 0 c ngha l tt c IP address prefix. Prefix: c gi tr bin i v cha ng IP address prefix. Total Path Attributes Length: trng ny c di 2 byte v cha ng di ca trng Path Attributes. Path Attributes: trng ny c di thay i v cha ng mt chui cc thuc tnh v path. Trng Path Attributes c th hin trong mi bn tin UPDATE. Thng tin cha ng trong trng Path Attribute c s dng theo di thng tin nh tuyn c bit v cng c s dng cho routing decision v filtering. Mi path attribute c phn chia vo mt b ba (triplet): <attribute type, attribute length, attribute value> Attribute Type: c di 2 byte v bao gm mt byte Attribute Flags v mt byte Attribute Type Code.

 Attribute Flags: c 4 trng thi nh sau: Well-known mandatory: thuc tnh ny phi c tha nhn bi s thi hnh ca tt c BGP speaker v phi c trnh by trong bn tin UPDATE. Mt phin BGP s b ngt nu mt thuc tnh wellknown attribute khng c trnh by trong bn tin UPDATE. Well-known discretionary: thuc tnh ny phi c tha nhn bi s thi hnh ca tt c BGP speaker nhng khng nht thit n phi c trong bn tin UPDATE. Optional transitive: thuc tnh ny l mt tnh tu chn v n c th khng c tha nhn bi s thi hnh ca BGP speaker. Ch gi tr ny khng thay i nu n khng c tha nhn bi BGP speaker. Optional non-transitive: Nu thuc tnh ny khng c tha nhn bi BGP speaker v transitive flag khng c thit lp th thuc tnh ny s b loi b. Attribute Type Code: xc nh loi Path Attribute. C th c minh ho nh hnh sau:

Trong : ORIGIN: l mt well-known mandatory attribute. AS m to ra thng tin nh tuyn s to ra thuc tnh ORIGIN attribute. N c trong tt c bn tin UPDATE nhn bn thng tin nh tuyn. AS_PATH: l mt well-known mandatory attribute. N bao gm mt danh sch ca tt c cc AS m thng tin nh tuyn i qua. Thnh phn AS_PATH bao gm mt chui ca cc AS path segment. Mi AS path segment c biu din bng b ba (triplet): <path segment type, path segment length, path segment value>. Khi mt BGP speaker qung b mt route m n hc c ti BGP speaker khc trong AS ca n, BGP speaker s khng sa i (modify) AS_PATH attribute. Khi mt BGP speaker qung b mt route m n c ti BGP speaker khc ngoi AS ca n, BGP speaker s sa i (modify) AS_PATH.

Khi mt BGP speaker to ra mt route. N s bao gm mt empty AS_PATH attribute khi qung b ti BGP speaker trong AS ca n_ chnh l iBGP peer. BGP speaker s bao gm AS number trong AS_attribute khi qung b ti BGP speaker ngoi AS ca n_ chnh l eBGP peer. NEXT_HOP: l mt well-known mandatory attribute, n xc nh a ch IP ca router bin (border router) m c s dng nh hop tip theo ti ch xc nh no . MULTI_EXIT_DISC: l mt optional non-transitive attribute. Nu c nhiu mc nhp ti cng mt AS, n c th c s dng xc nh mc nhp no c s dng. Mc nhp no c metric nh nht s c s dng. LOCAL_PREF: l mt well-known discretionary attribute. Thuc tnh ny c s dng bi BGP speaker thit lp u tin ca mt route, n c s dng cho bit u tin cao hn ca mt ng thot khi AS. BGP speaker s qung b thuc tnh ny ti BGP peer ca n. ATOMIC_AGGREGATE: l mt well-known discretionary attribute. Khi mt BGP speaker nhn c nhng route trng khp t peer ca n, n c th thit lp thuc tnh ATOMIC_AGGREGATE. Thuc tnh ny s c thit lp nu BGP speaker chn c mt route vi subnet mask ngn hn subnet mask ca mt route khc. AGGREGATOR: l mt optional transitive attribute. Khi mt BGP speaker thc hin route aggregator, n s tnh n thuc tnh AGGREGATOR bao gm AS number ca n v BGP identifier. COMMUNITY: l mt optional transitive attribute. Thuc tnh ny s phn nhm cc bng cch gn th (tag) vo nhng route c mt s c im chung. ORIGINATOR_ID: l mt optional non-transitive attribute. Mt BGP speaker thc hin vai tr ca mt route reflector s to ra thuc tnh ny. Thuc tnh ORIGINATOR_ID s bao gm BGP identifier ca route reflector. Thuc tnh ny ch c ngha local AS. CLUSTER_LIST: l mt optional non-transitive attribute. Thuc tnh ny bao gm mt danh sch gi tr CLUSTER_ID. Khi mt route reflector reflect mt route, n s gn gi tr CLUSTER_ID ca n vo CLUSTER_LIST. Network Layer Reachability Information: Vi BGP version 4 n h tr Classless Interdomain Routing (CIDR). thc hin c iu ny n s dng trng

Network Layer Reachability Information (NLRI). Trng ny c 2 phn sau: Length: cho bit di ca IP address prefix. Prefix: c di thay i v cha ng IP address prefix thc s. c/ Bn tin KEEPALIVE (KEEPALIVE Message) Bn tin KEEPALIVE c s dng m bo rng peer vn tn ti. Bn tin KEEPALIVE c cu trc bi BGP Message Header. Bn tin KEEPALIVE c gi trong trng hp restart gi tr hold timer. Chu k gi bn tin KEEPALIVE c gi tr bng 1/3 gi tr hold time. Bn tin KEEPALIVE khng c gi nu mt bn tin UPDATE trong sut khong chu k ny. d/ Bn tin NOTIFICATION (NOTIFICATION Message) Bt c khi no c mt li xy ra trong mt BGP session, BGP speaker pht ra mt bn tin NOTIFICATION. Ngay sau khi BGP speaker c pht ra th phin kt ni s b ngt. Bn tin NOTIFICATION bao gm error code, error sub-code s cho php ngi qun tr thun li hn trong qu trnh g ri. nh dng ca bn tin NOTIFICATION nh sau:

I.3.2. Neighbor Negotiation Trc khi qu trnh BGP lin lc xy ra, BGP speaker phi tr thnh neighbor hay peer ca nhau. Bc u trong qu trnh thit lp peer l BGP speaker thit lp phin kt ni TCP s dng port 179 vi BGP speaker khc. Nu iu ny khng xy ra th BGP speaker s khng bao gi tr thnh peer ca nhau. Sau khi phin kt ni TCP c thit lp, BGP speaker gi bn tin OPEN ti peer ca n. Tip l cc bn tin UPDATE, NOTIFICATION, KEEPALIVE s c trao i. Qu trnh thit lp neighbor c gi l Finite State Machine. Qu trnh trn c 6 trng thi c th xy ra trong qu trnh thit lp quan h vi neighbor. Idle state: l trng thi u tin m BGP speaker tri qua khi khi to mt phin BGP. trng thi ny BGP speaker i mt start event, t chi tt c BGP kt ni n v khng khi to bt k mt BGP kt ni no (BGP connection). Start

event c th c to ra bi BGP speaker hay qun tr h thng. Ch mt ln start event xy ra, BGP speaker s khi to tt c ti nguyn BGP ca n. BGP s khi to ConnectRetry timer, khi to mt kt ni TCP ti BGP speaker m mun tr thnh peer vi n v cng lng nghe start event t BGP speaker khc. BGP speaker s thay i trng thi ca n sang Connection. Nu bt k li no xy ra trong xut qu trnh ny, phin TCP s b ngt v trng thi ca BGP speaker s tr li Idle. V mt start event mi cn phi xy ra BGP speaker th kt ni li ln na. Nu start event c t ng sinh ra, BGP speaker s i 60 giy trc khi th li (retry) kt li. V mi ln retry k tip thi gian ch s tng ln gp i. Connection state: Trong trng thi ny, BGP s i kt ni TCPc thit lp. Ch mt ln kt ni c thit lp thnh cng, BGP speaker s lm sch ConnectRetry timer, n s gi mt bn tin OPEN ti remote BGP speaker v chuyn trng thi ca n sang OpenSent. Nu kt ni TCP khng c kt ni thnh cng, BGP speaker s khi to li ConnectRetry timer, v tip tc nghe mt yu cu kt ni khc t remote BGP speaker, v chuyn trng thi sang Active. Nu ConnectRetry timer ht hn, BGP speaker s khi ti li ConnectRetry timer v tip tc lng nghe mt yu cu kt ni t remote BGP speaker v n vn gi trng thi ca n Connection state. Nu bt c loi event khc gy ln li th BGP speaker s ng kt ni TCP v chuyn trng thi ca n v Idle. Tt c cc start even u s b l i trong Connection state. Active state: trong trng thi ny, BGP speaker th kh to mt phin kt ni TCP vi BGP speaker m mun tr thnh peer vi n. Ch mt ln kt ni thnh cng, BGP speaker s xo sch ConnectRetrry timer, sau BGP speaker s gi mt bn tin OPEN ti remote BGP speaker v chuyn trng thi sang OpenSent. Nu ConnectRetry timer ht hn, BGP speaker s thit lp li thi gian, khi to mt phin kt ni TCP v tip tc lng nghe cc yu cu kt ni t remote BGP speaker v chuyn trng thi sang Connection. Nu BGP speaker xc nh c mt BGP speaker khc th thit lp kt ni vi n v a ch IP ca remote BGP speakerkhng phi l a ch mong mun, BGP speaker s t chi yu cu kt ni ny v thit lp li ConnectRetry timer, tip tc lng nghe mt yu cu kt ni khc t remote BGP speaker v gi trng thi Active. Nu bt c loi event khc no gy ra li,BGP speaker s ng kt ni TCP v chuyn trng thi v Idle. Tt c start event s b l i trng thi Active. OpenSent state: trng thi ny, BGP speaker i nhn mt bn tin OPEN t remote BGP speaker. Ch mt ln BGP speaker nhn bn tin OPEN, tt c cc trng s c kim tra.Nu mt li c xc nh bi BGP speaker, n s gi mt bn tin NOTIFICATION ti remote BGP speaker v ngt kt ni TCP, v chuyn trng thi ca n sang Idle. Nu khng c li no c xc nh, BGP speaker s gi mt bn tin KEEPALIVE ti remote BGP speaker, thit lp cc gi tr keepalive timer v hold timer m phn vi neighbor. BGP speaker s m phn iu chnh gi tr hold time. Nu hold time gi tr l 0, c ngha l

keepalive timer v hold timer s khng bao gi c thit lp li. Sau qu trnh m phn v hold timer, BGP speaker s xc nh kt ni l iBGP hay eBGP. Nu 2 BGP speaker cng trong mt autonomous system, loi BGP s l iBGP. Nu chng thuc 2 autonomous system khc nhau, loi BGP s l eBGP. Ch mt ln loi BGP c xc nh, trng thi ca n s chuyn sang OpenConfirm. Trong sut trng thi ny, c th BGP speaker s nhn c mt bn tin disconnect. Nu iu ny xy ra, BGP speaker s chuyn trng thi sang Active. Nu bt k event khc no gy ra mt li, BGP speaker s ng kt ni TCP v chuyn trng thi sang Idle. Tt c cc start event s b l i trong trng thi OpenSent. OpenConfirm state: trng thi ny, BGP speker i nhn mt bn tin KEEPALIVE t remote BGP speaker. Ch mt ln bn tin KEEALIVE c nhn, BGP speaker s thit lp li hold timer v chuyn trng thi sang Established. Ti thi im ny mi quan h peer gia chng c thit lp. Nu mt bn tin NOTIFICATION c nhn thay th cho bn tin KEEPALIVE, BGP speaker s thay i trng thi sang Idle. Trong trng hp hold timer ht hn trc khi nhn c bn tin KEEPALIVE t remote BGP speaker, kt thc kt ni TCP chuyn trng thi sang Idle. BGP speaker c th nhn c bn tin disconnect t peer ca n. Nu iu ny xy ra, BGP speaker chuyn trng thi sang Idle. Bt c loi event khc gy ln li, BGP speaker s ng kt ni TCP v chuyn trng thi sang Idle. Tt c cc start event s b l i trong trng thi OpenConfirm. Established state: ch mt ln mt BGP speaker t n trng thi Established, tt c cc qu trnh m phn vi neigbor hon tt. trng thi ny BGP peer s trao i bn tin UPDATE v bn tin KEEPALIVE. Mi ln BGP speaker nhn c mt bn tin UPDATE hay bn tin KEEPALIVE, n s thit lp li hold timer ca n. Nu hold timer ht hn trc khi nhn c mt bn tin UPDATE hay bn tin KEEPALIVE, BGP speaker s gi mt bn tin NOTIFICATION ti peer ca n, ngt phin kt ni TCP v chuyn trng thi sang Idle. Bt c event khc khin cho BGP speaker to ra mt bn NOTIFICATION th BGP speaker s chuyn trng thi v Idle. Tt c Start event s b l i trong trng thi Established. Tip: Ch mt ln BGP peer t n trng thi Established, chng s bt u qu trnh trao i thng tin nh tuyn. I.3.3. Chn tuyn ng (Route Selection) Trong phn trc chng ta xem xt n qu trnh trao i thng tin nh tuyn gia cc BGP speaker. Trong phn ny chng ta s xem xt n qu trnh x l thng tin nh tuyn ca BGP speaker khi nhn c thng tin nh tuyn. c c s hiu y v qu trnh x l thng tin nh tuyn ca BGP speaker

trc ht ta cn tm hiu v Routing Information Bases. a/ Routing Information Bases Khi BGP speaker hc c mt tuyn ng th tuyn ng phi i qua Routing Information Base (RIB) ca n. Tt c BGP speaker u c mt RIB, n bao gm ba phn chnh sau: Adj-RIBs-In: BGP speaker s c mt Adj-RIB-In cho mt peer ca n. y l ni m tuyn ng BGP n c lu gi. Loc-RIB: y l ci m router cn da vo a ra nhng quyt nh nh tuyn. Adj-RIBs-Out: Nu mt tuyn ng BGP (BGP route) lt qua outbound policy engine, th tuyn ng s c a ra Adj-RIB-Out. BGP speaker c mt Adj-RIB-Out tng ng vi mt peer ca n. Nhng tuyn ng m c a ra Adj-RIB-Out s c qung b ti BGP speaker l peer ca n. Hnh sau s minh ho mt qu trnh x l BGP route:

Bc 1: BGP speaker nhn mt tuyn ng BGP. Bc 2: Tuyn ng c a vo Adj-RIBs-In sau khi c nhn. Bc 3: Tuyn ng BGP cgi ti inbound policy engine. Bc 4: Inbound policy engine s lc v tc ch (manipulate) tuyn ng da trn (chnh sch) policy c thit lp bi ngi qun tr router. Nhng tuyn ng BGP c lc s b drop ti im ny. Bc 5: nhng tuyn ng BGP cn li c a ti Loc-RIB. Bc 6: BGP speaker lu nhng tuyn trong Loc-RIB. Router s dng nhng tuyn a ra nhng quyt nh nh tuyn. Bc 7: Tuyn ng BGP c y ra Outbound policy engine. Bc 8: Outbound policy engine lc v tc ch (manipulate) nhng tuyn ng ny bi policy c thit lp bi qun tr router. Nhng tuyn ng b lc bi Outbound policy engine s b drop ti im ny. Bc 9: Nhng tuyn ng cn li s c y ra Adj-RIBs-Out. Bc 10: c lu trong Adj-RIBs-Out.

Bc 11: tt c tuyn ng BGP c lu trong Adj-RIB-Out sau s c qung b ti tt c BGP speaker l peer ca n. b/ Qu trnh quyt nh(Decision Process) Qu trnh ny s quyt nh nhng tuyn m BGP speaker s ng , ri qung b chng cho peer ca n. Chng bao gm 3 bc sau: Phase 1: c nhim v tnh ton u tin hn cho mi tuyn hc c t mt neighbor AS. Bc ny cng giao nhim v qung b nhng tuyn vi u tin cao nht ti BGP speaker trong cng AS. Phase 2: din ra ngay sau khi bc mt hon tt. Nhim v ca bc 2 bao gm; Quyt nh tuyn no ti ch tt nht; Sau lu chng trong Loc-RIB ca BGP speaker; BGP speaker s dng nhng tuyn thit lp trong bc ny a ra quyt nh nh tuyn. Phase 3: din ra khi mt BGP speaker quyt nh da trn policy c thit lp ti outbound policy engine nhng tuyn m n s qung b ti peer ca n trong neighbor AS. Route aggregation cng c th c thc hin trong pha ny. c/ Lc tuyn (Route Filtering) Lc tuyn cho BGP c th c v nhiu l do khc nhau. N c th c s dng tc ch thuc tnh ca mt tuyn BGP. Lc tuyn cng c th c s dng cho php hay t chi nhng tuyn c qung b bi BGP speaker khc. Lc tuyn c th l ingress filtering hay egress filtering. Ingress filtering: c th xy ra khi mt tuyn c nhn bi BGP speaker v a ti inbound policy engine. Ti im ny, qun tr h thng c th to mt policy m n s permit hay deny nhng route no . Qun tr h thng cng c th thit lp cc policy no , m n s tc ch thuc tnh ca tuyn BGP. V d: qun tr h thng c th tc ch s u tin ca mt tuyn. Bng cch ny qun tr h thng c th iu khin tt hn tuyn no s c lu trong Loc-RIB ca BGP speaker. Egress filtering: xy ra khi mt tuyn c a ti outbound policy engine. Chc nng ca Egress filtering tng t nh ingress filtering. Ch c s khc bit l BGP speaker a ra quyt nh nhng tuyn s c qung b ti peer ca n v tc ch nhng thuc tnh ca nhng tuyn . I.4. Khi dng BGP v khi khng dng BGP (When and When Not to Use BGP)

BGP l mt giao thc nh tuyn rt phc tp v do vy khng phi lc no n cng c dng trong trng hp nh tuyn ti AS khc. Chng ta c th s dng static v default route thay th cho BGP trong mt s trng hp nh sau: Router trong mng ca bn khng c cu hnh mnh nh khng memory v CPU khng p ng c yu cu. S route trn Internet l rt ln. Nu router khng c memory hay CPU, n c gy ln tr qu mc trong mng. AS ca bn ch kt ni ti mt AS khc v bn khng cn thc hin bt c mt policy no. Mng ca bn khng bng thng (bandwidth) h tr cho mt lng lu lng khng l ca BGP. y l mt s trng hp m bn cn phi thc hin BGP: Khi bn cn thc hin inbound/outbound policy i vi thng tin nh tuyn n v ra BGP mng ca bn. Khi mng ca bn c nhiu kt ni ti cc autonomous system khc nhau v bn mun AS ca bn pass thng tin nh tuyn t mt AS ti AS khc. Hay ni cch khc, bn mun AS ca bn l mt transit AS. Khi kt ni nhiu Internet service provider (ISP) khc nhau ti mt ISP khc.