Routing & Svviteling Version J.0 BGP Workbook = NE ACADEMY NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to ul 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 Page 1 n hall, Banjarahills Road-no-About the Author Sikandar Shaik, a dual CCIE (RS/SP# 35012). is a highly experienced and extremely driven senior technical instructor and network consultant. He has been training networking courses for more than 10 years, teaching on a wide range of topics including Routing and Switching, Service Provider and Security (CCNA to CCIE). In addition, he has been developing and updating the content for these courses. He has assisted many engineers in passing out the lab examinations and securing certifications. Sikandar Shaik is highly skilled at designing, planning, coordinating, maintaining, troubleshooting and iplementing changes to various aspects of multi-scaled, multi-platform, multi-protocol complex networks as well as course development and instruction for a technical workforce in a varied networking environment. His experience includes responsibilities ranging from operating and maintaining PC's and peripherals to network control programs for multi-faceted data communication networks in LAN, MAN and WAN environments. Sikandar Shaik has delivered instructor led trainings in several states in India as well as in abroad in countries like China, Kenya and UAE. He has also worked as a Freelance Cisco Certified Instructor globally for Corporate Major Clients. Acknowledgment First and foremost | would like to thank the Almighty for his continued blessings and for always being there for me. You have given me the power and confidence to believe in myself and pursue my dreams. | could never have done this without the faith | have in you. Secondly | would like to thank my family for understanding my long nights at the computer. | have spent a lot of time on preparing workbooks and this workbook would not have been possible without thelr support and encouragement. I would also like to recognize the cooperation of my students who took my trainings and workbooks. | believe my workbooks have helped them in upskilling themselves with respect to the subject and technologies and I will continue preparing workbooks for the updated technology versions. Shaik Gouse Moinuddin Sikandar CCIE x 2 (RS/SP) Feedback Please send feedback if there are any issues with respect to the content of this workbook. | would also appreciate suggestions from you which can improve this workbook further. Kindly send your feedback and suggestions at info@noasolutions.com NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 2INDEX BGP Concepts & Terminology. 6 Types of ISP Connections. 12 Options of BGP connecting to Internet ssescssessseeesnnsseeeeennnnsee sesssseeesnnnee TS BGP Neighbors 7 LAB: Basic IBGP Peering 20 BGP Split Horizon Rule 24 LAB: IBGP Peering using loopbacks 27 Configuring BGP Authentication on Cisco 10S: 38 Peer groups 4l Lab — Peer Groups 42 Route reflector 46 Lab : route reflector 49 Lab: route reflector usinglooback 52 Lab : route reflector" With two servets for redundancy. 54 EBGP Configuration on cool a 59 BGP next hop behavior. 60 LAB: Basic EBGP Configuration & Verify Next-hop Behavior 63 LAB : EBGP peering using Loopback Interfaces (using EBGP multihop] 66 Synchronization rule... =. a LAB: Verify BGP Synchronization Rule 73 BGP Attributes overview . 80 AS-path /next-hop/Orgin attributes . 81 Weight Attribute s.ssscccssssseeessssneeeeennnseeesensseesnnnnnecesesnanssesemunsseesermnsseeeens 8B Lab: Using Weight Attribute a1 Clearing the BGP Session 99 Lab : Weight Attribute using Route-maps 102 Understanding In/out 105 Local Preference 109 Lab: Using Local Preference m Lab : Local preference using Route-maps 18 BGP Path Selection Process ssssssssssseeesseesnsen 127 AS-Path prepending 129 Lab: AS-path Prepending 134 Multi-Exit Discriminator (Metric) 139 NOA solutions, N.K Arcade, 2nd & 3rd floor Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 3Lab : Multi-Exit Discriminator (Metric) .......ssssssssssssssssssstsnnesssesssssseeteseseeteee 142 BGP always compare MED ... 151 BGP Summarization ( Aggregation): 154 LAB : BGP summarization (Aggregation): 161 BGP Summarization AS-SET option : ss... 165 Suppress-Map : 7 . 14 Unsuppress-Map: 176 BGP route Filtering .. 179 BGP Filtering Using ACL 182 BGP Filtering Using Prefix-list .. 188 AS-PATH filters. using Regular Expressions. 201 LAB : AS-PATH filters using Regular expression 206 BGP Communities...scssssseesessnseceeennssceesernneceeensnceeseennnsseee sesmnnseesermaeene 219 Lab: Commuities Well Known.. 223 Community no-advertise 226 No- Export well known Community Attribute: 229 Using Local-AS 232 User Defined BGP Communi 237 LAB : User Defined BGP Community: 240 BGP Confederatior 252 LAB: BGP Confederations... fe B.. Peevey eh. PE TBs Verify BGP local-AS community Attribute (inside Confederations) . 259 Route Reflector Clusters 261 LAB : Route Reflector Clusters 266 BGP Route-Dampening — svsssssecssssssseeeesnsseeeennssneeeeensneeeeennnaneneee 275 LAB : BGP Route-Dampening .. 276 BGP Route-Dampening using Route-maps ... 280 Removing Private AS Numbers. 282 BGP Hide Local-Autonomous Systerm sssccesssssseessnsaseeeennnsneeeees sue 292 BGP Hide Local-Autonomous System (No-prepend).. 297 BGP Support for Dual AS Configuration for Network AS Migrations. 299 BGP allowas-in 302 IPV6 BGP ssssssseecsssesseeneeseseneee . 306 LAB: Ipv6 IBGP And EBGP Configurations 310 LAB : IPV6 IBGP & EBGP Advance Configurations 315 NOA solutions, N.K Arcade, 2nd & 3rd floor Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 4NOA NETWORK D NINE ACADEMY NOA solutions, N.K Arcade, 2nd & 3rd floor, Opposite to banjara function hall, Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 5MOA. BGP Concepts and Terminology What we Learn » Autonomous Systems. » IGP &EGP » Basic BGP features » BGP's loop prevention mechanism » When to use BGP » When not to use BGP NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 6BGP Autonomous NEA Systems cB RIP, IGRP, EIGRP, OSPF —_EGPs: BGP ‘Autonomous System 100 Autonomous System 200 » ANAS isa collection of networks under a single technical administration. » IGP operate within an AS. » BGPis used between autonomous systems. » Exchange of loop-free routing information is guaranteed. IGP -EGP RIP, IGRP, EIGRP, OSPF EGP: BGP. Autonomous System 100 ‘Autonomous System 200 IGP operates within the Same Autonomous Sytem EBGP operates in between Multiple Autonomous. Sytem NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions..com Page 7BGP Features OA. » Open Standard » Exterior Gateway protocol » Designed for nter-AS Domain Routing » Designed to scale huge inter-network lke internet » Classless ‘Support FLSM, VLSM, CIDR, auto and manual summary (BGP-4) » Updates are incremental and trigger » Path vector protocol | Path Vector Le 0310 AS65200 6530065400 NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 8BGP - AS Path Advertisement 20220 ‘AS 65353 65444 20220 ‘88 65222 65933 65440 BGP Features (Contd) OA. > Itsend updates to manually defined neighbor as unicast » BGP is application layer protocol uses TCP for reliability, TCP port 179 > Metric = Attributes » Administrative distance + 20 External updates ( EBGP) 200 Internal updates. (IBGP) NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 9BGP’s loop prevention mechanism NEA, Figure ABBR tion mechanism between external AS | BGP's loop prevention mechanism NEA, mane as > CLS NOA solutions, N.K Arcade, 2nd & 3rd floor, Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 10BGP’s loop prevention mechanism NEA, AS-Path loop detection As200 \_/ ast00 » { srosooone )-\ reos0006 j Cope.) AS 300 oe ea by AS100 as the prefix has mitre Ric OA, ASS. working as transit A.S. (Ex. ISP) AS. connected to multiple A.S (when the AS is mult-homed) Data traffic path entering or leaving A.S. need to manipulated When not to use BGP If itis Single-home AS. Lack of recourses like memory and less processing power in routers Limited understanding about BGP route filtering and path selection processes NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 11Types of ISP Connections » Single Homed » Dual-homed site Multi-homing Dual Multi-homed Connecting to the Internet with BGP. Default route from provider(s) ‘Some routes + default route — » All routes (full table) — Types of ISP Connections » Single Homed » Dual-homed site » Multi-homing » Dual Multi-homed NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 12Single homed site OA. » Asite with a single ISP connection is single-homed » This is fine for a site that does not depend heavily on Internet or WAN connectivity. » Either use static routes, or advertise the site routes to the ISP and receive a default route from the ISP, ASN 80 ASN 4, ISP 1 Dual-homed site » Adual-homed site has two connections to the same ISP, either from one router or two routers. > One link might be primary and the other backup, or the site might load balance over both links. » Either static or dynamic routing ‘would work in this case. NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions..com Page 13homing » Multihoming means connecting to ‘more than one ISP at the same time. » It is done for redundancy and backup if one ISP fails and for better performance if one ISP provides a better path to frequently used networks. » This also gives you an ISP- independent solution. » BGPis typically used with multihomed connections. Dual Multi-homed » You can take multi-homing a step further and be dual-multi-homed, with two connections to multiple ISPs, » This gives the most redundancy, » BGP is used with the ISPs and can be used internally also. NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions..com Page 14Connecting to the Internet with BGP Route reception options: » Default route from provider(s) + Easy on resources, internal trafic routed to nearest BGP router » Some routes + default route — + Allows for selection of some paths with others falling back toa default route » All routes (full table) — + Hard on resources, but guarantees the most direct path is taken Example: Default Routes from All Providers AS 64520 172.16.0.016 _-Router C chooses the lowest IGP metric to reach the default network. NOA solutions, N.K Arcade, 2nd & 3rd floor Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions..com Page 15Default Routes from All Providers and Partial Table OA. — Default ‘AS 64520, AS 64100 — Partial Table “i 2 ™ my SPA aseso00 AS 6500 Owns owns 10,500 Prtces 10,000 Prefixes —, . - Router C uses the default route to get tonetworks in CS oS {64100 and all other ‘autonomous. ‘systems not shown. “1, * Router C uses the specific BGP routes that it has learned to get to networks unatd by AS 65000, ‘AS 64900, and ‘AS 64520. Full Routes from All Providers MOA. ‘AS 64520 ‘AS 64100 J S Passes All as ¢6000 64900 Passes All ito AS 64500 to AS 64500. * —s ‘AS 64500 path selection process can exit to ‘either AS 65000 or ‘AS 64900 for any network. NOA solutions, N.K Arcade, 2nd & 3rd floor Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions..com Page 16OA. BGP Neighbors ( IBGP/EBGP) BGP Neighbors OA, » BGP neighbors are routers forming TCP connection for exchanging BGP updates. » Also called as BGP Peers or BGP Speakers. » Two type of BGP neighbor relationship. + IBGP (internal BGP) + EBGP (extemal BGP) NOA solutions, N.K Arcade, 2nd & 3rd floor Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions..com Page 17IBGP neighbors MOA. IBGP Neighbors EBGP Neighbors NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions..com Page 18BGP Databases ( BGP tables) NEA, Neighbor table A list of all configured BGP neighbors, Has to be manually configured using neighbor command # show ip bgp summary # show ip bgp neighbors BGP forwarding table/database Allist of networks known by BGP, along with their paths and attributes, # show bop IP routing table List of best pate odesthaonnetorks #onprove Configuring BGP Routing Protocol MOA. Router(config}# router bgp Router(config-router)# network ‘mask> Router(config-router)” =-"-**-- * [mask 10.64.0.2124 AS 65500 at AS 65000 RSUSRESEE0"€2°0 2 remote-ae ess00 ESLSR oe FoE°8. 2 2000 neighbor 10,64,0.2 password veineogkers36 || neighbor 10:64/0.1 password Veinedqkel336 BGP Authentication MOA. \. \ ‘ stst® j Rt(config)# router bgp 500 f Rilconfig-outer# neighbor 120.01 password ciscot23, f Rt(config-router}# neighbor 13.0.0.1 password cisco123 Ri(config-router}# neighbor 14.0.0.1 password cisco123 Rt (config-router}# neighbor 12.0.0. version 4 Ri(config-router}# neighbor 13.0.0.1 version 4 Ri(config-router}# neighbor 14.0.0.1 version 4 TASK + Make sure that the authentication is established between all the peers and they should use password as cisco123. + The peering should establish only if both the routers runs BGP v4 Ri(config)# router bgp 500 Ri(config-router)# neighbor 12.0.0.1 password ciscol23 Ri(config-router)# neighbor 13.0.0.1 password ciscol23 Ri(config-router)# neighbor 14.0.0.1 password ciscol23 Ri(config-router)# neighbor 12.0.0.1 version 4 Ri(config-router)# neighbor 13.0.0.1 version 4 Ri(config-router)# neighbor 14.0.0.1 version 4 NOA solutions, N.K Arcade, 2nd & 3rd floor, Opposite to banjara function hall, Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions..com Page 38Ri(config-router)# end R2(config)# router bgp 500 R2(config-router)# neighbor 11.0.0.1 password ciscol23 R2(config-router)# neighbor 13.0.0.1 password ciscol23 neighbor 14.0.0.1 password ciscol23 neighbor 11.0.0.1 version 4 neighbor 13. R3(config)# router bgp 500 R3(config-router)# neighbor 12.0.0.1 password ciscol23 R3(config-router)# neighbor 11.0.0.1 password ciscol23 R3(config-router)# neighbor 14.0.0.1 password ciscol23 R3(config-router)# neighbor 12.0.0.1 version 4 R3(config-router)# neighbor 11.0.0.1 version 4 R3(config-router)# neighbor 14.0.0.1 version 4 R3(config-router)# end Ré(config)# router bgp 500 neighbor 12.0.0.1 password ciscol23 neighbor 13.0.0.1 password ciscol23 neighbor 11.0.0.1 password ciscol23 neighbor 12.0.0.1 version 4 neighbor 13.0.0.1 version 4 neighbor 11.0.0.1 version 4 router)# end Relish ip bgp summary Neighbor VAS MsgRevd MsgSent TbiVer InQ OutQ Up/Down State/PfxRed 4 500 7 7 4 500 6 6 4 500 6 6 R2#tsh ip bgp summary Neighbor V_AS MsgRevd MsgSent TbiVer InQ OutQ Up/Down State/PfxRed N.0.0.1 4 500 5 6 8 0 000:00:21 1 13.001 4 500 5 5 8 0 000:00:40 1 14.0.0.1 4500 5 5 8 O 000;00:33 1 R3ifsh ip bgp summary Neighbor V_AS MsgRevd MsgSent TbiVer InQ OutQ Up/Down State/PfxRed 110.01 4 500 6 6 eet 12.001 4 500 6 6 43001 NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 3914.0.01 4 500 6 6 8 O 000:01:20 1 Ré#sh ip bgp summary Neighbor VAS MsgRevd MsgSent TbIVer InQ QutQ Up/Down State/PfxRed. 1.0.0.1 4 500 8 8 8 O 000:0319 1 120.01 4 500 8 8 8 0 000;0303 1 13.001 4 500 7 7 8 O 000:02:58 1 NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 40BGP- Peer-groups + Apply same policies to multiple neighbors * useful when many neighbors have the ‘same policies. + Updates are generated once per peer group. + Configuration is simplified. BGP- Peer-groups : configuration Rt(config}#router bgp 500 Ri(config-router}# neighbor CCIE peer-group Ri(config-router}# neighbor CCIE remote-as 500 Riconfig-router# neighbor CCIE _update-source loopback ° \ Ri(config-routen# neighbor CCIE version 4 Ri(config-outer# neighbor CCIE password cisco123 Ri(configouten# neighbor 12.0.0.1 peer-group CCIE Ri(config-router# neighbor 13.0.0.1 peer-group CCIE Ri(config-routen}# neighbor 14.0.0.1 peer-group CCIE fg-router# net 10.0.0.0 NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 41LAB ~ PEER GROUPS =F Loopback 0 14.0.0.1 TASK: Configure peering between R1 R2 R3 R4 with the below configurations: + Peering to be established using the loop 0 ip address ( X..0.0.1) of every router ‘Make sure that the authentication is established between all the peers and they should use password as cisco123. The peering should establish only if both the routers runs BGP v4 Use minimum commands as possible (peer groups). Configure IGP as OSPF area 0 to Provide reachability between loopbacks Advertise only LAN network only in BGP Ri(config)#router ospf1 R(config-router) #net 10.0.0.0 0.255.255.255 area 0 Ri(config-router) fnet 1.0.0.0 0.255.255.255 area 0 RI(config-router)#net 4.0.0.0 0.255.255.255 area 0 Ri(config-router) exit R2(config)#router ospf 1 R2(config-router) #network 20.0.0.0 0.255.255.255 area 0 R2(config-router) #network 2.0.0.0 0.255.255.255 area 0 NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 42R2(config-router)#network 1.0.0.0 0.255.255.255 area 0 R2(config-router)#end R3(config)#router ospf 1 3 (config-router)#network 30.0.0.0 0.255.255.255 area 0 R3(config-router) #network 3.0.0.0 0.255.255.255 area 0 3 (config-router) network 2.0.0.0 0.255.255.255 area 0 R3(config-router)#end Ra (config)#router ospf 1 Ra (config-router)#network 40.0.0.0 0.255.255.255 area 0 Ré(config-router)#network 4.0.0.0 0.255.255.255 area 0 R4(config-router) #network 3.0.0.0 0.255.255.255 area 0 Ra (config-router)#end Ri(config)#router bgp 500 Ri(config-router)#_ neighbor CCIE peer-group Ri(config-router)# neighbor CCIE remote-as 500 Ri(config-router)# neighbor CCIE update-source loopback 0 Ri(config-router)# neighbor CCIE version 4 Ri(config-router)# neighbor CCIE password ciscol23 Ri(config-router)# neighbor 12.0.0.1 peer-group CCIE Ri(config-router)# neighbor 13.0.0.1 peer-group CCIE Ri(config-router)# neighbor 14.0.0.1 peer-group CCIE Ri(config-router)# net 10.0.0.0 Ri(config-router)#no auto-summary Ri(config-router)# no synchronization R2(config)#router bgp 500 R2(config-router)# neighbor CCIE peer-group R2(config-router)# neighbor CCIE remote-as 500 R2(config-router)# neighbor CCIE update-source loopback 0 R2(config-router)# neighbor CCIE version 4 R2(config-router)# neighbor CCIE password ciscol23 R2(config-router) # R2(config-router)# neighbor 11.0.0.1 peer-group CCIE R2(config-router)# neighbor 13.0.0.1 peer-group CCIE Ra(config-router)# neighbor 14.0.0.1 peer-group CCIE NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 43R2(config-router)#net 20.0.0.0 R2(config-router)#no auto-summary Ra(config-router)# no synchronization R2(config-router)# end R3(config)#router bgp 500 R3(config-router)# neighbor CCIE peer-group R3(config-router)# neighbor CCIE remote-as 500 R3(config-router)# neighbor CCIE update-source loopback 0 R3(config-router)# neighbor CCIE version 4 R3(config-router)# neighbor CCIE password ciscol23 R3(config-router)# neighbor 12.0.0.1 peer-group CCIE R3(config-router)# neighbor 11.0.0.1 peer-group CCIE R3(config-router)# neighbor 14.0.0.1 peer-group CCIE R3(config-router)#net 30.0.0.0 R3(config-router)#no auto-summary R3(config-router)# no synchror R3(config-router)# end Ré(config)#router bgp 500 R4(config-router)# neighbor CCIE peer-group Ré(config-router)# neighbor CCIE remote-as 500 Ré(config-router)# neighbor CCIE update-source loopback 0 Ré(config-router)# neighbor CCIE version 4 Ra(config-router)# neighbor CCIE password ciscol23 Ré(config-router)# neighbor 12.0.0.1 peer-group CCIE Ré(config-router)# neighbor 13.0.0.1 peer-group CCIE Ré(config-router)# neighbor 11.0.0.1 peer-group CCIE Ré(config-router)#net 40.0.0.0 Ré(config-router)#no auto-summary Ré(config-router)# no synchronization Relish ip bgp summary Neighbor V_ AS MsgRevd MsgSent TbiVer InQ OutQ Up/Down State/PfxRed. 12.0.0.1 4500 7 7 8 0 000:02:04 1 13.001 4500 6 6 8 0 0000139) 14.0.0.1 4500 6 6 8 0 000:01:52 1 R2#tsh ip bgp summary Neighbor VAS MsgRevd MsgSent_TbVer InQ OutQ Up/Down State/PfxRed 1.0.0.1 4500 5 6 8 O 000:00:21 1 13.0.0.1 4500 5 5 8 0 000;00:40 1 NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 4414001 4 500 5 5 8 0 0000033 4 R3¢sh ip bgp summary Neighbor VAS MsgRevd MsgSent TblVer InQ QutQ Up/Down State/PfxRed. 1.0.0.1 4 500 6 6 8 O 000:01:42 1 200.01 141500) 6 = (6 188-08 0000l4s = 1 14.001 4 500 6 6 8 O 000:01:20 1 Ré#tsh ip bgp summary Neighbor VAS MsgRevd MsgSent TbiVer InQ OutQ Up/Down State/PfxRed 1.0.01 4 500 8 8 1 120.01 4500 8 8 13.001 4500 7 7 8 0 0000258 1 Rlfsh ip bgp Network Next Hop Metric LocPrf Weight Path *>10.0.0.0 0.0.0.0 0 327681 1>i20.0.0.0 —12.0.0.1 0 100 Oi 1>130.0.0.0.13.0.0.1 0 100 Oi 1>i40.0.0.0 14.0.0.1 0 100 0% NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 45BGP Split Horizon Rule : Review OA. » An update send by one IBGP neighbor should not be send back to another IBGP neighbor » BGP spli-horizon is necessary to ensure that routing loops are not started within an AS Solution : 1. full mesh neighborship means every router should be a neighbor of every other router with in AS. 2. Use Route Reflector iBGP Full Mesh Scalability NA, Concerns Administration Configuration management on increasingly large numberof outer. Number of TCP Sessions Total numberof sessions = n(0-1)2 Maintaining extreme numbers of TCP sessions creates Extra overhead. BGP Table Size higher number of neighbors generally translate toa higher number of paths for each route, "Memory consumption, NOA solutions, N.K Arcade, 2nd & 3rd floor Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions..com Page 46Route Reflector NA. » Scalable alternative to an iBGP full mesh. » Allows a router (route reflector ~ RR) to advertise routes received from an iBGP peer to other iBGP peers » Client updates server. » Server updates to all the remaining clients. + AllClients should establish neighbor with only servers, + Clients will not establish neighbor with any other client + In case if you have 2 servers (server establish neighbor with other servers & clients) NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 47+ AllClients should establish neighbor with only servers, + Clients will not establish neighbor with any other client + Incase if you have 2 servers (server establish neighbor with other servers & clients) NOA solutions, N.K Arcade, 2nd & 3rd floor Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions. com Page 48LAB: ROUTE REFLECTOR TASK, * Configure IBGP AS 500 as per the diagram + Make sure that all the routers should be able to see the routes from other routers in the routing table through BGP. Do not use full mesh peering Ri(config)#router bgp 500 Ri(config-router)# neighbor 1.1.1.2 remote-as 500 Ri(config-router)# network 10.0.0.0 Ri(config-router)# network 1.0.0.0 Ri(config-router)# no auto-summary Ri(config-router)# no synchronization Ri(config-router)# exit R2(config)#router bgp 500 Ra(config-router)# bor 1.1.1.1 remote-as 500 R2(config-router)# bor 2.2.2.2 remote-as 500 R2(config-router)# network 20.0.0.0 R2(config-router)# network 1.0.0.0 R2(config-router)# network 2.0.0.0 R2(config-router)# no synchronization R2(config-router)# no auto-summary Ra(config-router)# end 3(config)#router bgp 500 R3(config-router)# neighbor 2.2.2.1 remote-as 500 R3(config-router)# network 30.0.0.0 R3(config-router)# network 2.0.0.0 R3(config-router)# no auto-summary NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 49R3(config-router)# no synchronization R3(config-router)# end R2fsh ip bgp summary Neighbor V_AS MsgRevd MsgSent TbiVer InQ OutQ Up/Down State/PfxRed R2#sh ip bgp Network Next Hop Metric LocPrf Weight Path *iL000 Ltd 0 100 i *> 0.0.0.0 0 327681 #12000 2.2.2.2 0 100 03 *> 0.0.0.0 0 327681 *>i10.0.0.0 LLL 0 100 Oi *>20.0.0.0 0.0.0.0 0 32768i *>i30.0.0.0 2.2.2.2 0 100 Oi Riftsh ip bgp Network Next Hop Metric LocPrf Weight Path 111.2 0 100 Oi 0.0.0.0 0 327681 0.0. 11.2 0 100 Oi *>10.0.0.0 0.0.0.0 = 0327681 *2120.00.0 14120 1000 R3#sh ip bgp Network Next Hop Metric LocPrf Weight Path *>i10.0.0 2.2.21 0 100 OF *12.0.0.0 2.2.2.1 0 100 OF *> 0.0.0.0 0 327681 *>120.0.0.0 2.2.2.1 0 100 i *> 30.0.0.0 0.0.0.0 0 327681 RI and R3 cannot see each other routes in their respective BGP table because of split horizon rule In order to get the routes to be learned we have two Solutions: 1. Full mesh neighborship (which the requirement says not to use here ) 2. Route reflector To Configure Route-reflector + All Clients should establish neigbbor with only servers + Clients will not establish neigbor with any other clinet + In case if you have 2 servers ( server establish neigbbor with other servers and clients ) R2(config)#Router bgp 500 NOA solutions, N.K Arcade, 2nd & 3rd floor, Opposite to banjara function hall, Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 50R2(config-router)# neighbor 1.1.1.1 route-reflector-client R2(config-router)# neighbor 2.2.2.2 route-reflector-client R2(config-router)# end Rifsh ip bgp Network Next Hop Metric LocPrf Weight Path *>10.0.0.0 0.0.0.0 0 327681 *>i20.0.0.0 11.1.2 0 100 Oi R3#sh ip bgp Network Next Hop Metric LocPrf Weight Path OOO TLL ONOO NOI *>i20.0.0.0 2.2.2.1 0 100 i *> 30.0.0.0 0.0.0.0 0 327681 NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 51LAB: ROUTE REFLECTOR USING LOOBACK TASK: * Configure BGP AS 500 as per the diagram using Loopnback Interfaces. * To provide Reachability configure RIPv2 as IGP protocol inside AS 500 Ri(config)#router bgp 500 Ri(config-router)#neighbor 12.0.0.1 remote-as 500 Ri(config-router)#neighbor 12.0.0.1 update-source loopback 0 Ri(config-router)#network 10.0.0.0 Ri(config-router)#no synchronization Ri(config-router)#no auto-summary Ri(config-router)#exit R2(config)#router bgp 500 R2(config-router)#neighbor 11.0.0.1 remote-as 500 R2(config-router)#neighbor 11.0.0.1 update-source loopback 0 R2(config-router)#neighbor 13.0.0.1 remote-as 500 R2(config-router)#neighbor 13.0.0.1 update-source loopback 0 R2(config-router)#network 20.0.0.0 R2(config-router)#no auto-summary R2(config-router)#no synchronization R2(config-router)#exit R3(config)#router bgp 500 R3(config-router)4neighbor 12.0.0.1 remote-as 500 3 (config-router)#neighbor 12.0.0.1 update-source loopback 0 R3{(config-router)#network 30.0.0.0 R3(config-router)#no auto-summary 3(config-router)#no synchronization R3(config-router)#exit NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 52R2#sh ip bgp summary Neighbor V_AS MsgRevd MsgSent TbIVer InQ OutQ Up/Down State/PfxRed 1.0.01 4 500 6 6 6 O 000:01:03 1 13.001 4500 8 8 6 0 0000332 1 Ri#show ip bgp summary Neighbor VAS MsgRevd MsgSent TbiVer InQ OutQ Up/Down State/PfxRed 120.01 4500 6 6 4 0 0000155 1 R3#sh ip bgp summary Neighbor —-V_AS MsgRevd MsgSent TbIVer InQ OutQ Up/Down State/PfxRed Ri#show ip bgp Network Next Hop Metric LocPrf Weight Path *>10.0.0.0 0.0.0.0 0327681 13120.00.0 12.0.0.1 = 0-100 01 RI Do Not Have R3 Routes (30.0.0.0) Because Of Split Horizon Rule R3#sh ip bgp Network Next Hop Metric LocPrf Weight Path 1>i20.0.0.0 12.0.0.1 0 100 0: *> 30.0.0.0 0.0.0.0 0 32768i R3 do not have R1 routes (10.0.0.0) because of split Horizon rule TASK: Configure R2 as'RR Server and RI and R3 as RR Clients R2(config)#router bgp 500 Ra(config-router)#neighbor 11.0.0.1 route-reflector-client R2(config-router)#neighbor 13.0.0.1 route-reflector-client Ra(config-router}#end Rifshow ip bgp Network Next Hop Metric LocPrf Weight Path *510.0.0.0 0.0.0.0 0 32768: 12i20.0.0.0 12.0.0.1 0 100 oF 13130.0.0.0 13.0.0.1 = 0-100 01 R3Ash ip bgp Network Next Hop Metric LocPrf Weight Path r>i10.0.0.0 1.0.0.1 0 100 01 1>i20.0.0.0 — 12.0.0.1 0 100 0% NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 53LAB: ROUTE REFLECTOR WITH TWO SERVERS FOR REDUNDANCY TASK: * Configure RIPV2 to provide Reachability between BGP peers * Configure R2/R4 as RR Server and RI/R3 as Clients Ri(config)frouter rip Ri(config-router)# version 2 Ri(config-router)# network 1.0.0.0 Ri(config-router}# network 4.0.0.0 Ri(config-router)# network 10.0.0.0 Ri(config-router)# network 1.0.0.0 RI(config-router)# no auto-summary Ri(config-router) #exit R2(config)#router rip router)# version 2 router)# network 12.0.0.0 router)# no auto-summary NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions..com Page 54R3(config)#router rip R3(config-router)# version 2 R3(config-router)# network 3.0.0.0 R3(config-router)# network 2.0.0.0 router)# network 30.0.0.0 router)# network 13.0.0.0 router)# no auto-summary router)#end Ra(config)#router rip Ré(config-router)# version 2 Ré(config-router)# network 3.0.0.0 Ra (config-router)# network 4. Ra (config-router)# network 40.0.0.0 Ré(config-router)# network 14.0.0.0 R4(config-router)# no auto-summary Ré(config-router)#end Rae Ré#tsh ip route rip R_ 1.0.0.0/8 [120/1] via 4.4.4.2, 00:00:09, Seriall/1 R__2.0.0.0/8 [120/1] via 3.3.3.1, 00:00:09, Seriall/0, R_ 20.0.0.0/8 [120/2] via 4.4.4.2, 00:00:09, Serial1/1 [120/2] via 3.3.3.1. 00:00:09, Serial1/0 R_ 10.0.0.0/8 [120/1] via 4.4.4.2, 00:00:09, Seriall/1 11.0.0.0/24 is subnetted, 4 subnets R 1.0.3.0 [120/I] via 4.4.4.2, 00:00:09. Seriall/1 R 1.0.2.0 [120/I] via 4.4.4.2, 00:00:09. Seriall/1 R R 11.0.1.0 [120/1] via 4.4.4.2, 00:00:09, Serial1/1 11.0.0.0 [120/1] via 4.4.4.2, 00:00:09, Serialt/1 12.0.0.0/24 is subnetted, 4 subnets R_ 12.0.0.0 [120/2] via 4.4.4.2, 00:00:09, Seriall/1 1120/2] via 3.3.3.1, 00:00:09, Seriall/O R — 12,0.1.0 [120/2] via 4.4.4.2, 00:00:09, Seriall/1 [120/2] via 3.3.3.1, 00:00:09, Seriall/O R 12.0.2.0 [120/2] via 4.4.4.2, 00:00:09, Seriall/I [120/2] via 3.3.3.1, 00:00:09, Seriall/O R 12.0.3.0 [120/2] via 4.4.4.2, 00:00:09, Serial1/1 [120/2] via 3.3.3.1, 00:00:11, Serial1/O 13.0.0.0/24 is subnetted, 4 subnets R_13.0.1.0 [120/1] via 3.3.3.1, 00:00:11, Serial1/0 R_13.0.0.0 [120/1] via 3.3.3.1, 00:00:11, Serial1/0 R — 13,0.3.0 [120/1] via 3.3.3.1, 00:00:11, Serial1/0 NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 55R —13.0.2.0 [120/1] via 3.3.3.1, 00:00:12, Serial1/O R_ 30.0.0.0/8 [120/1] via 3.3.3.1, 00:00:12, Seriall/o RI (RR CLIENT) Ri(config)#router bgp 500 Ri(config-router)#neighbor 12.0.0.1 remote-as 500 Ri(config-router) #neighbor 12.0.0.1 update-source loopback 0 Ri(config-router)#neighbor 14.0.0.1 remote-as 500 Ri(config-router)#neighbor 14.0.0.1 update-source loopback O Ri(config-router)#network 10.0.0.0 Ri(config-router)#no auto-summary Ri(config-router)#no synchronization Ri(config-router)#exit 3 (RR CLIENT) R3(config)#router bgp 500 R3(config-router)#neighbor 12. R3 (config-router) #neighbor 12. 1 remote-as 500 1 update-source loopback 0 R3(config-router)#neighbor 14.0.0.1 remote-as 500 R3(config-router)#neighbor 14.0.0.1 update-source loopback 0 R3(config-router)#network 30.0.0.0 R3(config-router)#no auto-summary R3(config-router)#no synchronization R3(config-router)#exit R2 (RR SERVER) R2(config)#router bgp 500 R2(config-router) #neighbor 11.0.0.1 remote-as 500 R2(config-router) neighbor 11.0.0.1 update-source loopback 0 R2(config-router)#neighbor 11.0.0.1 route-reflector-client R2(config-router)#neighbor 13.0.0.1 remote-as 500 R2(config-router)#neighbor 13.0.0.1 update-source loopback 0 R2(config-router)#neighbor 13.0.0.1 route-reflector-client R2(config-router)#neighbor 14.0.0.1 remote-as 500 R2(config-router)#neighbor 14.0.0.1 update-source loopback 0 R2(config-router)#neighbor 14.0.0.1 route-reflector-client NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 56R2(config-router)#network 20.0.0.0 R2(config-router)#no auto-summary R2(config-router)#no synchronization R2(config-router) exit 4 (RR server) Ra (config)#router bgp 500 Ra(config-router)#neighbor 11.0.0.1 remote-as 500 Ra (config-router)#neighbor 11.0.0.1 update-source loopback 0 R2(config-router) #neighbor 11.0.0.1 route-reflector-client R4(config-router) #neighbor 12.0.0.1 remote-as 500 Ra (config-router)#neighbor 12.0.0.1 update-source loopback 0 R2(config-router)#neighbor 12.0.0.1 route-reflector-client R4(config-router) #neighbor 13.0.0.1 remote-as 500 R4(config-router) neighbor 13.0.0.1 update-source loopback 0 R2(config-router) neighbor 13.0.0.1 route-reflector-client Ra (config-router)#network 40.0.0.0 R4(config-router)#no auto-summary R4(config-router)#no synchroni Ré(config-router)#exit R2#sh ip bgp summary BGP router identifier 12.0.3.1, local AS number 500 BGP table version is 8, main routing table version 8 4 network entries using 468 bytes of memory 6 path entries using 312 bytes of memory 3/2 BGP path/bestpath attribute entries using 372 bytes of memory 2 BGP rrinfo entries using 48 bytes of memory 0 BGP route-map cache entries using 0 bytes of memory 0 BGP filter-list cache entries using 0 bytes of memory BGP using 1200 total bytes of memory BGP activity 4/0 prefixes, 6/0 paths, scan interval 60 secs Neighbor V_ AS MsgRevd MsgSent TbIVer InQ OutQ Up/Down State/PfxRed 1.0.01 4500 5 8 8 0 0000155 1 3.0.01 4 500 7 10 8 0 000:01:34 1 140.01 4500 8 8 8 0 000:00:08 3 Ré#sh ip bgp summary BGP router identifier 14.0.3.1, local AS number 500 NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 57BGP table version is 8, main routing table version 8 4 network entries using 468 bytes of memory 6 path entries using 312 bytes of memory 3/2 BGP path/bestpath attribute entries using 372 bytes of memory 2 BGP rrinfo entries using 48 bytes of memory 0 BGP route-map cache entries using 0 bytes of memory 0 BGP filter-list cache entries using 0 bytes of memory BGP using 1200 total bytes of memory BGP activity 4/0 prefixes, 7/1 paths, scan interval 60 secs Neighbor. V_ AS MsgRevd MsgSent TbiVer InQ OutQ Up/Down State/PxRed 1.0.01 4 500 5 8 8 0 000:00:36 1 120.01 4 500 8 8 8 0 000:00:29 3 13.001 4500 5 8 8 0 000:00:54 1 Rifsh ip bgp summary BGP router identifier 11.0.3.1, local AS number 500 BGP table version is 8, main routing table version 8 4 network entries using 468 bytes of memory 7 path entries using 364 bytes of memory 3/2 BGP path/bestpath attribute entries using 372 bytes of memory 4 BGP rrinfo entries using 96 bytes of memory 0 BGP route-map cache entries using 0 bytes of memory 0 BGP filter-list cache entries using 0 bytes of memory BGP using 1300 total bytes of memory BGP activity 4/0 prefixes, 7/0 paths. scan interval 60 secs Neighbor VAS MsgRevd MsgSent_ TbiVer InQ OutQ Up/Down State/PfxRed 12.0.0.1 4 500 9 6 8 O 000:02:27 3 14.0.0.1 4 500 8 5 8 0 000:00:47 3 Rifsh ip bgp BGP table version is 8, local router ID is 11.0.3.1 Status codes: s suppressed, d damped, h history, * valid, > best, i - internal, F RIB-failure, 5 Stale (Origin codes: i - IGP, e - EGP, ? - incomplete Network Next Hop Metric LocPrf Weight Path *>10.0.0.0 0.0.0.0 0 327681 ¥120.0.0.0 —12.0.0.1 0 100 01 i 12.0.0.1 0 100 OF £130.0.0.0 —13.0.0.1 0 100 01 i 13.0.0.1 0 100 01 1140.0.0.0 14.0.0.1 0 100 OF i 14.0.0.1 0 100 OF NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 58EBGP basic configuration eae R2{config-ovter}# neighbor 1.1.1.1 remote-as 500 Re{config-outer}# neighbor 22.2.2 remote-as 600 Ra{eonfig-outer}# network 20.0.0.0 Ri(config}router bgp 500 R9(confg}#router bgp 600 Ri(config-outes# neighbor 1.1.1.2 remote-as $00 Ra(config-outer}# neighbor 2.2.2.1 remote-as 600 Ri(confg-outeni# network 10.0.0.0 R3(conig-ouler}# network 30.0.0.0 BGP next hop behavior MOA, » BGP is an AS-by-AS routing protocol, not a router-by-router routing protocol » In BGP, the next hop does not mean the next router; it means the IP address to reach the next AS. When EBGP - EBGP neighbor (changes the next hop) When IBGP - IBGP neighbor (the next hop remains same) (unchanged) NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 59BGP next hop behavior ‘AS 200 150.10.0.0/16 * Next hop to reach a network * Usually a local network is the next ‘As 100 hop in eBGP session 160.10.0.0/16 BGP next hop behavior MOA, ‘AS 300) AS 200 mune 140.10.0.016 © ssor00016 oo e—s + Usually a local network is the next \, hop in eBGP session AS 100 4 \_et9eeNE + Next Hop updated between eBGP Peers NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 60BGP next hop behavior As 200 150.10.0.0/16 $92.101.000 chang between iBGP peers AS 100 160.10.0.0/16 well-known, mandatory Attribute. BGP is AS by AS routing Protocol Next hop # next router Next hop = IP to reach next AS tok on 172.20.0.0 172.20.10.4 172.20.10.2 + Router A advertises network 172.16.0.0 to router B in EBGP, with a next hop of 10.10.10.3. + Router B advertises 172.16.0.0 in IBGP to router C, keeping 10.10.10.3.as the next-hop address. NOA solutions, N.K Arcade, 2nd & 3rd floor, Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions. com Page 61Default Next-hop Behavior Riésh ip bgp Network Next Hop Metric LocPr Weight Path 10000 00.00 032768 20000 1.442 0 100 94 130.000 2.222 0 100 0600; ish ip route bgp B 20.00.08 [20010] via 1.1.1.2, 00:14:13, Using next-hop-self R2{confg}trouter bgp 500 R2{config-outer}# neighbor 1.1.1.1 nexthop-selt Rtish ip bgp Network Next Hop Metric LocPf Weight Path, 10000 00.00 032768: 20000 11.12 © 100 oF 130000 4.1.12 © 100 06001 Ri#sh Ip route bap B 20.0.0.08 [20000] via 1.1.1.2, 00:18:13 8 30.0.0.08 [20000] via 1.1.1.2, 00:00:20 NOA solutions, N.K Arcade, 2nd & 3rd floor Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions..com Page 62LAB: Ri(config)#router bgp 500 Ri(config-router)# neighbor 1.1.1.2 remote-as 500 Ri(config-router)# network 10.0.0.0 Ri(config-router)# no auto-summary Ri(config-router)# no synchronization Ri(config-router)# end R2(config)#router bgp 500 router)# neighbor 1.1.1.1 remote-as 500 router)# neighbor 2.2.2.2 remote-as 600 router)# network 20.0.0.0 router)# no auto-summary R3(config)#router bgp 600 R3(config-router)# neighbor 2.2.2.1 remote-as 500 R3(config-router)# network 30.0.0.0 R3(config-router)# no auto-summary R3(config-router)# no synchronizatic R3(config-router)# exit R2ifsh ip bgp summary Neighbor VAS MsgRevd MsgSent TbIVer InQ QutQ Up/Down State/PfxRed. M114 500 14 «17-10 0 000:09:08 1 2.2.2.2 4 600 13 15 10 0 0000851 1 NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions..com Page 63R2ish ip bgp Network Next Hop Metric LocPrf Weight Path *>i10.0.0.0 LL 0 100 01 *> 20.0.0.0 0.0.0.0 0 327681 *>30.0.0.0 2.2.2.2 o 0600; R2#sh ip route bgp B 10.0.0.0/8 [200/0] via 1.1.1.1, 00:01:00 B 30.0.0.0/8 [20/0] via 2.2.2.2, 00:00:50 Rish ip bgp Network Next Hop Metric LocPrf Weight Path *>10.0.0.0 0.0.0.0 0 327681 *>i20.0.0.0 111.2 0 100 0 Ri#sh ip route bgp B 20.0.0.0/8 [200/0] via 1 12, 00:14:13 30.0.0.0 Network not present in the routing table as the next-hop 2.2.2.2 (due to default next-hop behavior of BGP) is unreachable To fix this issue 1. either advertise the wan interfaces 2. change the next-hop address to next router address BGP next hop behavior ‘+ When EBGP --sends'an update to another EBGP neighbor ‘+ When IBGP —sends an update to another IBGP neighbor change) To change this behavior manually you need to tell to change the next hop (done on the border routers pointing to internal BGP neighbors ) changes the next hop the next hop remains same ( not Or ‘+ if using Route-Reflector with the AS_in that case on server configure next-hop-self Router (config-router)# neighbor {ip-address | peer-group-name} next-hop-self ing to all clients NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 64Fouter bap 65107 Reighbor 172.16.1.1 renote-as 65100 ynbor 3.3.3.3 renovewas 6510 Reighbor 313.313 update-source LoopbackO| Reighbor 3°3/3°3 next-hop-eeht router eigep 1 work 18.6.0-0 network 2.0.0.5 AS 65101 AS 65100 AS 65102 0.0.0.0 10.0.0.0 10.0.0. Roxthop = 172.16.1.1] [Noxt“hop = 2.2.2.2] [Nextohop = 192.168.2.2|2 + Forces all updates for this neighbor to be advertised with this router as the next hop. + The IP address used for the next-hop-self option will be the same as the source IP address of the BGP packet. On R2 R2(config)#router bgp 500 R2(config-router)# neighbor 1.1.1.1 next-hop-self Rish ip bgp Network Next Hop Metric LocPrf Weight Path *>10.0.0.0 0.0.0.0 0 327681 *>i20.0.00 111.2 0 100 Oi Ri#sh ip route bgp B 20.0.0.0/8 [200/0] via 1.1. NOA solutions, N.K Arcade, 2nd & 3rd floor Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 65EBGP- Neighbor XA, Redundancy Redundant Links Between two AS ( Ex: ISP). eget Hae alll \, Rt (config)#router bgp 500 Ri(config-router}# neighbor 12.0.0.1 remote-as 600 Rt(config-router}# neighbor 12.0.0.1 update-source loopback 0 Ri(config-router# neighbor 12.0.0.1 ebgp-multihop Rt (config-router}#network 10.0.0.0 + increases TTL value, + default one hop for EBGP peers. mae00 “is 600 Reachability between Loopbacks R-1(config)ifip route 12.0.0.0 255.255.255.0 1.1.1.2 R-4(config)ifip route 12.0.0.0 255.255.255.0 2.2.2.2 10 NOA solutions, N.K Arcade, 2nd & 3rd floor Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions..com Page 66EBGP using Loopbacks NEA, :example ‘AS 65102 Loopback 0 22.2.2 ‘AS 65101 BGP 192.168.1.18/28 J fretghbore. S71 remcte-an 65101 fretghbor"s £:23 rencte-as 65102 Ineighbor 1.1.1.1 update-scurce Loopback 0 [neighbor 2.2.2.2 update-source Loopback 0 fnsignoor 12.1.1 sbgp-malvibop 2 fnsighoor 2.2.2.2 sbgp-maltinop 2 lp route 1.2.2.1 255.255.255.285 192.168.1.28]tp route 2.2.2.2 255.255.255.255 192.168.2.11 IB Foute 12.111 255.280.208.205 192.168: 34]ip route 2.7.2.2 259.258.258.255 192168.3.33 NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 67LAB: _EBGP NEIGHBOR USING LOOPBACKS Loopback 0 ~ L Ldapback 0 12.0.0.1 Fo/0 Ri aaaae a. AS 500 AS 600 TASK * Configure EBGP peeringbetween RI and R2 as per the diagram. + Make sure that EBGP neighbor relationship should not be affected by the physical status of the link * Configure Static Routing to provide Reachability between Looback interfaces of RI & R2. Ri(config)#router bgp 500 Ri(config-router)#_ neighbor 12.0.0.1 remote-as 600 Ri(config-router)# neighbor 12.0.0.1 update-source loopback 0 Ri(config-router)# neighbor 12.0.0.1 ebgp-multihop Ri(config-router) #network 10.0.0.0 Ri(config-router)#no auto, Ri(config-router)#no sync Ri(config-router)# end BGP neighbor ebgp-multihop Command This command increases the default of one hop for EBGP peers. It allows routes to the EBGP loopback address (which will have a hop count greater than 1). Ebgp-multihop tells to neighbor that the 12.0.0.1 is not directly connected and it is multiple hops away Increases the default TTL value from 1 to 255 R2(config)#router bgp 600 R2(config-router)# neighbor 11.0.0.1 remote-as 500 R2(config-router)# neighbor 11.0.0.1 update-source loopback 0 R2(config-router)# neighbor 11.0.0.1 ebgp-multihop R2(config-router) #network 20.0.0.0 R2(config-router)#no auto R2(config-router)#no syne R2(config-router)# end R-lsh ip bgp summary Neighbor VAS MsgRevd Msgsent TbiVer InQ OutQ Up/Down State/PfxRed 12.0.0.1 4600 0 O O © Onever Active R-lfping 12.0.0.1 ‘Type escape sequence to abort. NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 68Sending 5, 100-byte ICMP Echos to 12.0.0.1, timeout is 2 seconds: Success rate is O percent (0/5) From the above ping test we can confirm that there may be either Connectivity or Routing issue Ri#ping 1.1.1.2 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 1.1.1.2, timeout is 2 seconds: mt Success rate is 100 percent (5/5), round-trip min/avg/max = 4/24/56 ms Ri#ping 2.2.2.2 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 2.2.2.2. timeout is 2 second: mt Success rate is 100 percent (5/5), round-trip min/avg/max = 1/17/52 ms Rifsh ip route C 1.0.0.0/8 is directly connected, Seriall/O C 2.0.0.0/8 is directly connected, Serial1/1 C 10.0.0.0/8 is directly connected, FastEthernet0/O 11.0.0.0/24 is subnetted, 4 subnets 11.0.3.0 is directly connected, Loopback3 11.0.2.0 is directly connected, Loopback2 11.0.1.0 is directly connected, Loopback! 11.0.0. is directly connected, LoopbackO e c c c + RI do not have any route for 12.0.0. network to which it is peering * To provide reachability either we can use any dynamic routing or static routing + In general we prefer to use static routing between different AS ( but dynamic also works in the lab) 1.0 255.255.255.0 1.1.1.2 .0 255.255.255.0 2.2.2.2 10 R-l(config)#ip route 12. R-l(config)#ip route 12. R-2(config)#ip route 1.0.0.0 255.255.255.0 L111 R-2(config)#ip route 1.0.0.0 255.255.255.0 2. Rel#fping 12.0.0.1 Type escape sequence to abort. Sending 5. 100-byte ICMP Echos to 12.0.0.1, timeout is 2 seconds: am ‘Success rate is 100 percent (5/5), round-trip min/avg/max = 32/46/64 ms R-lfsh ip bgp summary NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 69BGP router identifier 11.0.3.1, local AS number 500 BGP table version is 1, main routing table version 1 Neighbor VAS MsgRevd MsgSent TbIVer InQ OutQ Up/Down State/PfxRed 12001 4 600 4 4 1 0 000:00:21 01 R2#sh ip bgp summary Neighbor VAS MsgRevd MsgSent TbiVer InQ OutQ Up/Down State/PfxRed Rifsh ip bgp Network Next Hop Metric LocPrf Weight Path Rifsh ip route bgp B_ 20.0.0.0/8 [20/0] via 12.0.0.1, 00:00:33 R2#sh ip bgp Network Next Hop Metric LocPrf Weight Path R2#sh ip route bgp NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 70Synchronization rule: NA. Do not use or advertise to an external neighbor a route learned by IBGP until a matching route has been learned from an IGP. All routers in AS 65500 are running BGP; there are no matching IGP routes. » Safe to have it off only if all routers in the transit path in the AS are running full-mesh IBGP; » Ensures consistency of information throughout the AS. » off by default in Cisco IOS software release 12.2(8)T and later » Router (config-router}# no synchronization ‘The above command Disables BGP synchronization so that a router will advertise routes in BGP without learning them in an IGP » Router (config-router)# synchronization ‘The Above Command enables BGP synchronization so that a router will not advertise routes in BGP untilit learns them in an IGP. NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions..com Page 71BGP Synchronization rule : Verification NPA, At (contgit router bgp 500 ie Ritcontgfoulene synchronization ~ Rison teen RRS. R2(confg)router bgp 600 R2(config-routed synchronization R2(conig-outer}#exit Rash ip bgp 20.0.0.0 Sms AB BOD) BGP routing table entry for 30.0.0.0/8, version 0 Paths: (1 available, no best path) Not advertised to any peer Local 22:22 from 222.2(130.3.1) Origin IGP, metric 0, localprf 100, vai, internal, not synchronized R2tsh ip route bgp B 10,0.0.08 [2000] via 1.1.1.1, 00:04:05, MOA. To Fix BGP Synchronization Rule : » Advertise Interfaces in both IGP and BGP » Disable the Synchronization Rule R3(config)#router ospf 1 R3(config-router)#network 30.0.0.0 0.255.255.255 area 0 RIR3 Rx(configy# router bgp 600 Rx(config-router}#no synchroni NOA solutions, N.K Arcade, 2nd & 3rd floor Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions..com Page 72LAB: VERIFY BGP SYNCHRONIZATION RULE TASK: * Configure BGP peering as per the diagram and advertise all the interfaces inside BGP * Disable Synchronization Rule on all the routers. Ri(config)#router bgp 500 RI(config-router)#neighbor 1.1.1.2 remote-as 600 Ri(config-router)#network 1.0.0.0 Ri(config-router)#network 10.0.0.0 Ri(config-router)#no auto-summary RI(config-router)#no synchronization Ri(config-router)#exit R2(config)#router bgp 600 R2(config-router)#neighbor 1.1.1.1 remote-as 500 R2(config-router)#neighbor 2.2.2.2 remote-as 600 R2(config-router)#no auto-summary R2(config-router)#no synchronization R2(config-router)#network 20.0.0.0 R2(config-router)#network 2.0.0.0 R2(config-router)#network 1.0.0.0 R2(config-router)#end R3(config)#router bgp 600 R3(config-router) #neighbor 2.2.2.1 remote-as 600 R3(config-router)4#no auto-summary R3(config-router)#no synchronization NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 73R3(config-router)#network 30.0.0.0 R3(config-router)#network 2.0.0.0 R3(config-router)#end R2#sh ip bgp summary BGP router identifier 12.0.3.1, local AS number 600 BGP table version is 6, main routing table version 6 5 network entries using 585 bytes of memory 7 path entries using 364 bytes of memory 4/3 BGP path/bestpath attribute entries using 496 bytes of memory 1 BGP AS-PATH entries using 24 bytes of memory 0 BGP route-map cache entries using 0 bytes of memory 0 BGP filter-list cache entries using 0 bytes of memory BGP using 1469 total bytes of memory BGP activity 5/0 prefixes, 7/0 paths, scan interval 60 secs Neighbor V_AS MsgRevd MsgSent TbIVer InQ OutQ Up/Down State/PfxRed lll 4 500-56) 6 —O (0000116 = 2 2.2.2.2 4 600.4 5 6 0 000:00:56 2 R2#sh ip bgp BGP table version is 6. local router ID is 12.0.3.1 Status codes: s suppressed, d damped, h history, * valid, > best, r RIB-failure, S Stale Origin codes: i - IGP, e - EGP. ? - incomplete Network Next Hop Metric LocPrf Weight Path * 100.0 1d ° 05001 a 0.0.0.0 0 32768% 1200.0 2.2.2.2 0 100 01 > 0.0.0.0 0 32768% *>10.0.0.0 9 Ld ° 05001 *>20.0.0.0 0.0.0.0 0 32768: *>i30.0.0.0 2222 = 0 100 Oi R3¥sh ip bep BGP table version is 6, local router ID is 13.0.3.1 Status codes: s suppressed, d damped, h history, * valid, > best, i - internal, F RIB-failure, $ Stale Origin codes: i - IGP, e - EGP, ? - incomplete Network Next Hop Metric LocPrf Weight Path *>11.0.0.0 2.2.21 0 100 Oi * 2.0.0.0 2.2.2.1 0 100 Of *> 0.0.0.0 Oo 327681 NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 74TASK: R2/RB *>10.0.0.0 LAT 0 100 0500: *>120.0.0.0 2.2.2.1 0 100 OF *> 30.0.0.0 0.0.0.0 0 327681 R3Ash ip route bgp B 1.0.0.0/8 [200/0] via 2.2.2.1, 00:00:56 B 20.0.0.0/8 [200/0] via 2.2.2.1, 00:00:56 B 10.0.0.0/8 [200/0] via 1.1.1.1, 00:00:51 Enable Synchronization on all the three routers for verification: Ri(config)# router bgp 500 Ri(config-router)#_ synchronit Ri(config-router)#end R2(config)#router bgp 600 R2(config-router)#synchronization R2(config-router)#exit R2#sh ip bgp BGP table version is 9, local router ID is 12.0.3.1 Status codes: s suppressed, d damped, h history, * valid, > best, i r RIB-failure, S Stale internal, Origin codes: i - IGP, e - EGP, ? - incomplete Network Next Hop Metric LocPrf Weight Path *> 1.0.0.0 0.0.0.0 0 327681 a Mall ° 0500; *> 2.0.0.0 0.0.0.0 0 327681 "1 2.2.2.2 0 100 01 *>10.0.0.0 9 LLL ° 050i *>20.0.0.0 0 32768 i R2ifsh ip bgp 30.0.0.0 BGP routing table entry for 30.0.0.0/8, version 0 Paths: (1 available, no best path) Not advertised to any peer Local 2.2.2.2 from 2.2.2.2 (13.0.3.1) Origin IGP, metric 0, localpref 100, valid, internal, RBERYRERFORIZEA R2#sh ip route bgp NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 75B_10.0.0.0/8 [20/0] via 1.1.1.1, 00:04:05 Ri#sh ip bgp BGP table version is 12, local router ID is 11. Status codes: s suppressed, d damped, h history, * valid, > best, i- internal, F RIB-failure, $ Stale (Origin codes: i - IGP, e - EGP, ? - incomplete Network Next Hop Metric LocPrf Weight Path #1000 112 ° 0 600i > 0.0.0.0 0 327681 *> 2.00.0 11.12 0 0.6001 *>10.0.0.0 0.0.0.0 0 327681 *>20.0.0.0 1. 2 0 0.600; Ri#sh ip bgp 30.0.0.0 % Network not in table © RB advertises 30,0.0.0. to R2 + R2 will not use of advertise this network as synchorization rule is enabled, and as per the rule the same matching route has to be learned from IGP inside AS 600 * TO fix it, Ensure that all the routes used in BGP has to be advertised in IGP running inside AS Or Disable Synchorization Rule TASK: Configure OSPF area 0 inside AS 600 and advertise all the interafaces as per the Diagram R3(config)#router ospf 1 R3(config-router)#network 30.0.0.0 0.255.255.255 area 0 R3(config-router)#network 2.0.0.0 0.255.255.255 area 0 R3(config-router)#exit R2(config)#router ospf 1 R2(config-router)#network 20.0.0.0 0.255.255.255 a 0 R2(config-router)#network 2.0.0.0 0.255.255.255 area 0 R2(config-router) exit R2(configh# R2#sh ip ospf neighbor Neighbor ID Pri_ State Dead Time Address Interface 13.0.3.1 © FULV- — 00:00:32 2.2.2.2 Seriali/1 R2#sh ip route ospf NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 76R2¥#sh ip bep BGP table version is 1, local router ID is 12.0.3.1 Status codes: s suppressed, d damped, h history, * valid, > best, i - internal, + RIB-failure, S Stale Origin codes: i - IGP, e - EGP, ? - incomplete Network Next Hop Metric LocPrf Weight Path *> 10.0.0 0.0.0.0 0 327681 * 11d 0 05001 *> 2.0.00 0.0.0.0 0 32768i i 2.2.2.2 0 100 Oi *>10.0.0.0 9 14d o 05001 *>20.0.0.0 0.0.0.0 0 32768i 1>130.0.0.0 2.2.2.2 0 100 0% Rush ip bgp BGP table version is 24, local router ID is 11.0.3.1 Status codes: s suppressed, d damped, h history, * valid, > best. F RIB-failure, S Stale ternal, Origin codes: i - IGP, e - EGP. ? -incomplete Network Next Hop Metric LocPrf Weight Path * 10.0.0 11.12 0 0.600: *> 0.0.0.0 0 327681 *> 2.00.0 11.12 ° 0.6001 *>10.0.0.0 0.0.0.0 0 327681 *>20.0.0.0 11.1.2 0 0600 *> 3000.0 112 0.6001 Rl#sh ip route bgp B 2.0.0.0/8 [20/0] via 1.1.1.2, 00:02:28 B__20.0.0.0/8 [20/0] via 1.1.1.2, 00:01:58 TASK: + Remove the OSPF configurations on R2/R3 * Disable Synchronization Rule on all three Routers (RI. R2. R3) R2/R3 R3 (config) # no router ospf I R2/R3 Rx(config)# router bgp 600 Rx(config-router)#no synchronization Rx(config-router)#end RI NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 77RI(config)#router bgp 500 Ri(config-router)#no synchronization Ri(config-router)#end Raifdlear ip bgp * Ra#tsh ip bgp BGP table version is 6, local router ID is 12.0.3.1 Status codes: s suppressed, d damped, h history, * valid, > best, F RIB-failure, $ Stale Origin codes: i - IGP, e - EGP, ? - incomplete Network Next Hop Metric LocPrf Weight Path * 1.0.0.0 1d o 0500: *> 0.0.0.0 0 327681 *>2.0.00 0.0.0.0 0 32768i fi 2.2.2 0 100 Oi *> 100.00 11d ° 05001 *>20.0.0.0 0.0.0.0 0 32768: *>i30.0.0.0 2.2.22 = 0 100 Oi R2#sh ip bgp 3.1.1.1 BGP routing table entry for 30.0.0.0/8. version 6 Paths: (1 available, best #1, table Default-IP-Routing-Table) Flag: 0x20 Advertised to update-groups: 1 Local 2.2.2.2 from 2.2.2.2 (13.0.3.1) Origin IGP, metric 0, localpref 100, valid, internal, best RlAsh ip bgp 30.0.0.0 BGP routing table entry for 30.0.0.0/8, version 17 1 available, best #1, table Default-IP-Routing-Table) Flag: 0x820 Not advertised to any peer 600 1.1.1.2 from 1.1.1.2 (12.0.3.1) (Origin IGP, localpref 100, valid, external, best Rifsh ip bgp BGP table version is 17, local router ID is 11.0.3.1 Status codes: s suppressed, d damped, h history, * valid, > best, i- internal, r RIB-failure, $ Stale Origin codes: i - IGP, e - EGP, ? - incomplete NOA solutions, N.K Arcade, 2nd & 3rd floor,Opposite to banjara function hall,Banjarahills Road-no- 1 Hyderabad, INDIA. +91 40 65890380, +91 7036826345 www.noasolutions.com Page 78