4byte As Number Migration Suggestion
-
Upload
kae-hsu -
Category
Technology
-
view
1.503 -
download
0
description
Transcript of 4byte As Number Migration Suggestion
![Page 1: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/1.jpg)
11th TWNIC IP Open Policy Meeting2008/11/12, Taipei
4-Byte AS Number Migration Suggestion
![Page 2: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/2.jpg)
2008/11/12, Taipei 2
Agenda
• Quickly Recap• Assumptions before implementation• Common BGP deployments• 4-byte AS number implementation• Operational issues• Summary
![Page 3: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/3.jpg)
2008/11/12, Taipei 3
Quickly Recap
• Changes in BGP 4-byte AS:– New BGP capability advertisement
• Capability code: 65• Capability length: 4
– Attribute update• AS_PATH attribute carry 4 byte AS• AGGREGATOR attribute carry 4 byte AS
– New attribute• Add AS4_PATH attribute
– optional, transitive– Construct from AS_PATH attribute by 4-byte AS enabled router when face to 2-
byte AS only router• Add AS4_AGGREGATOR attribute
– optional, transitive– Construct from AGGREGATOR attribute by 4-byte AS enabled router when face
to 2-byte AS only router
![Page 4: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/4.jpg)
2008/11/12, Taipei 4
Quickly Recap
• Limitations:– NEW BGP speaker need a 2 byte AS to peer with the OLD BGP
speaker.• No-mappable 4 byte AS can use “23456” as 2 byte AS
– AS4_PATH is not compatible with:• AS_CONFED_SEQUENCE• AS_CONFED_SET• Must use mappable 4 byte member ASN during the migration
– i.e. 0.64512 ~ 0.65535
• Other considerations– BGP community handling
• Current AS encoding method in BGP community should be updated• ref: draft-rekhter-as4octet-ext-community-03.txt
– Netflow statistics• Netflow version 9 support 4-byte AS number
![Page 5: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/5.jpg)
2008/11/12, Taipei 5
Quickly Recap
» From “4-Byte AS Numbers, The view from the Old BGP world, p21” by Geoff Huston, APNIC
![Page 6: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/6.jpg)
2008/11/12, Taipei 6
• AS4_PATH example– 193.5.68.0/23
– Attribute Type/Length/Value• Attribute Type (2 octets)
– 0xe0 => optional, transitive– 0x11 => AS4_PATH (TYPE CODE 17)
• Attribute Length (Variable)• AS Path Segments (Variable), which includes
– Segment Type (1 octet)» 0x02 => AS Sequence
– Segment Length (1 octet)» 0x03 => AS numbers in the AS Sequence
– Value (Variable)» 0x00 00 1a ae => 6830 (The AS who generated the AS4_PATH)» 0x00 00 22 36 => 8758» 0x00 03 00 0d => 3.13
Quickly Recap
![Page 7: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/7.jpg)
2008/11/12, Taipei 7
• AS4_PATH example– 195.47.195.0/24
– Attribute Type/Length/Value• Attribute Type (2 octets)
– 0xe0 => optional, transitive– 0x11 => AS4_PATH (TYPE CODE 17)
• Attribute Length (Variable)• AS Path Segments (Variable), which includes
– Segment Type (1 octet)» 0x02 => AS Sequence
– Segment Length (1 octet)» 0x01 => AS numbers in the AS Sequence
– Value (Variable)» 0x00 03 00 10 => 3.16 (The AS who generated the AS4_PATH)
Quickly Recap
![Page 8: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/8.jpg)
2008/11/12, Taipei 8
• AS4_PATH example– 2001:7fb:ff00::/48
– Attribute Type/Length/Value• Attribute Type (2 octets)
– 0xe0 => optional, transitive– 0x11 => AS4_PATH (TYPE CODE 17)
• Attribute Length (Variable)• AS Path Segments (Variable), which includes
– Segment Type (1 octet)» 0x02 => AS Sequence
– Segment Length (1 octet) » 0x03 => AS numbers in the AS Sequence
– Value (Variable)» 0x00 00 04 65 => 1125 (The AS who generated the AS4_PATH)» 0x00 03 00 05 => 3.5» 0x00 00 31 6e => 12654
Quickly Recap
![Page 9: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/9.jpg)
2008/11/12, Taipei 9
» From “4-Byte AS Numbers, The view from the Old BGP world, p23” by Geoff Huston, APNIC
Quickly Recap
![Page 10: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/10.jpg)
2008/11/12, Taipei 10
» From “4-Byte AS Numbers, The view from the Old BGP world, p24” by Geoff Huston, APNIC
Quickly Recap
![Page 11: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/11.jpg)
2008/11/12, Taipei 11
Assumptions before implementation
• Everyone (uplink ISP, peering ISP, transit customers and yourself)– enable BGP– has at least one 2 bytes ASN before 2 byte ASN exhausting
• Following common BGP deployments are considered:– Only border routers enable BGP– All routers enable BGP and full-mesh with each other– All routers enable BGP and implement Route-Reflector– All routers enable BGP with BGP confederation– There are more than one AS in the same ISP domain
![Page 12: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/12.jpg)
2008/11/12, Taipei 12
Common BGP deployment
• Only border routers enable BGPeBGP sessioniBGP session
eBGP session in conf. BGP
Your BGP domain
![Page 13: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/13.jpg)
2008/11/12, Taipei 13
Common BGP deployment
• All routers enable BGP and full-mesh with each othereBGP sessioniBGP session
eBGP session in conf. BGP
Your BGP domain
![Page 14: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/14.jpg)
2008/11/12, Taipei 14
Common BGP deployment
• All routers enable BGP and implement Route-Reflector
RR
RR
eBGP sessioniBGP session
eBGP session in conf. BGP
Your BGP domain
![Page 15: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/15.jpg)
2008/11/12, Taipei 15
Common BGP deployment
• All routers enable BGP with BGP confederationeBGP sessioniBGP session
eBGP session in conf. BGP
Your BGP domain
![Page 16: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/16.jpg)
2008/11/12, Taipei 16
Common BGP deployment
• There are more than one AS in the same ISP domaineBGP sessioniBGP session
eBGP session in conf. BGP
Your BGP domain
![Page 17: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/17.jpg)
2008/11/12, Taipei 17
4-byte AS number implementation
• What we have to do?– Arrange a perfect plan first– Upgrade the router operating system (ROS) then
• What is the safe implementation approach?– from border router?– from Route-Reflector?
• Route-Reflector is so important, it seems not a good choice to upgradeRoute-Reflector first
– from iBGP client?
eBGP iBGP
border Route-Reflector iBGP client
iBGP
2-byte 2-byte 2-byte2-byte2-byte 2-byte 2-byte 2-byte
![Page 18: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/18.jpg)
2008/11/12, Taipei 18
4-byte AS number implementation
• Example 1-1-1– Your partner is NOT 4-byte AS ready yet
• 1st: You upgrade your border router ROS
eBGP iBGP iBGP
2-byte 2-byte 2-byte2-byte2-byte 4-byte 2-byte 2-byte
border Route-Reflector iBGP client
![Page 19: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/19.jpg)
2008/11/12, Taipei 19
4-byte AS number implementation
• Example 1-1-2– Your partner is NOT 4-byte AS ready yet
• 1st: You upgrade your border router ROS• 2nd: You upgrade your iBGP client ROS
eBGP iBGP iBGP
2-byte 2-byte 2-byte2-byte2-byte 4-byte 2-byte 4-byte
border Route-Reflector iBGP client
![Page 20: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/20.jpg)
2008/11/12, Taipei 20
4-byte AS number implementation
• Example 1-1-3– Your partner is NOT 4-byte AS ready yet
• 1st: You upgrade your border router ROS• 2nd: You upgrade your iBGP client ROS• 3rd: You upgrade your Route-Reflector ROS
eBGP iBGP iBGP
2-byte 4-byte 4-byte2-byte2-byte 4-byte 4-byte 4-byte
border Route-Reflector iBGP client
![Page 21: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/21.jpg)
2008/11/12, Taipei 21
4-byte AS number implementation
• Example 1-2-1– Your partner is NOT 4-byte AS ready yet
• 1st: You upgrade your iBGP client ROS
eBGP iBGP iBGP
2-byte 2-byte 2-byte2-byte2-byte 2-byte 2-byte 4-byte
border Route-Reflector iBGP client
![Page 22: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/22.jpg)
2008/11/12, Taipei 22
4-byte AS number implementation
• Example 1-2-2– Your partner is NOT 4-byte AS ready yet
• 1st: You upgrade your iBGP client ROS• 2nd: You upgrade your border router ROS
eBGP iBGP iBGP
2-byte 2-byte 2-byte2-byte2-byte 4-byte 2-byte 4-byte
border Route-Reflector iBGP client
![Page 23: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/23.jpg)
2008/11/12, Taipei 23
4-byte AS number implementation
• Example 1-2-3– Your partner is NOT 4-byte AS ready yet
• 1st: You upgrade your iBGP client ROS• 2nd: You upgrade your border router ROS• 3rd: You upgrade your Route-Reflector ROS
eBGP iBGP iBGP
2-byte 4-byte 4-byte2-byte2-byte 4-byte 4-byte 4-byte
border Route-Reflector iBGP client
![Page 24: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/24.jpg)
2008/11/12, Taipei 24
4-byte AS number implementation
• Example 2-1-1– Your partner is 4-byte AS ready
• 1st: You upgrade your border router ROS
eBGP iBGP iBGP
4-byte 2-byte 2-byte4/2-byte4-byte 4-byte 2-byte 2-byte
border Route-Reflector iBGP client
![Page 25: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/25.jpg)
2008/11/12, Taipei 25
4-byte AS number implementation
• Example 2-1-2– Your partner is 4-byte AS ready
• 1st: You upgrade your border router ROS• 2nd: You upgrade your iBGP client ROS
eBGP iBGP iBGP
4-byte 2-byte 2-byte4/2-byte4-byte 4-byte 2-byte 4-byte
border Route-Reflector iBGP client
![Page 26: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/26.jpg)
2008/11/12, Taipei 26
4-byte AS number implementation
• Example 2-1-3– Your partner is 4-byte AS ready
• 1st: You upgrade your border router ROS• 2nd: You upgrade your iBGP client ROS• 3rd: You upgrade your Route-Reflector ROS
eBGP iBGP iBGP
4-byte 4-byte 4-byte4/2-byte4-byte 4-byte 4-byte 4-byte
border Route-Reflector iBGP client
![Page 27: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/27.jpg)
2008/11/12, Taipei 27
4-byte AS number implementation
• Example 2-2-1– Your partner is 4-byte AS ready
• 1st: You upgrade your iBGP client ROS
eBGP iBGP iBGP
2-byte 2-byte 2-byte4/2-byte4-byte 2-byte 2-byte 4-byte
border Route-Reflector iBGP client
![Page 28: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/28.jpg)
2008/11/12, Taipei 28
4-byte AS number implementation
• Example 2-2-2– Your partner is 4-byte AS ready
• 1st: You upgrade your iBGP client ROS• 2nd: You upgrade your border router ROS
eBGP iBGP iBGP
4-byte 2-byte 2-byte4/2-byte4-byte 4-byte 2-byte 4-byte
border Route-Reflector iBGP client
![Page 29: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/29.jpg)
2008/11/12, Taipei 29
4-byte AS number implementation
• Example 2-2-3– Your partner is 4-byte AS ready
• 1st: You upgrade your iBGP client ROS• 2nd: You upgrade your border router ROS• 3rd: You upgrade your Route-Reflector ROS
eBGP iBGP iBGP
4-byte 4-byte 4-byte4/2-byte4-byte 4-byte 4-byte 4-byte
border Route-Reflector iBGP client
![Page 30: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/30.jpg)
2008/11/12, Taipei 30
Summary
• It is fine to upgrade ROS no matter– from border router, iBGP client then Route-Reflector– from iBGP client, border router then Route-Reflector
• Thank you• But…..
Are they still good approaches when consider
operational issues?
![Page 31: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/31.jpg)
2008/11/12, Taipei 31
Operational issues
• AS-PATH issues on border router– AS-PATH is a very important attribute for BGP policy design
• Allow or deny BGP routes• Set local preference• Set BGP community
– If the border router did not support 4-byte AS number, we can NOT handle 4-byte AS BGP routes by AS-PATH attribute
• Can NOT permit/deny BGP routes by AS path information– Old ROS can not recognize AS4_PATH attribute either
• Can NOT set BGP local preference on border router by AS path information• Can NOT set BGP community on border router by AS path information
![Page 32: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/32.jpg)
2008/11/12, Taipei 32
Operational issues
• Upgrade Router Operating System issues– It is not a easy work
• Heavy loading in testing the new ROS• Much different from patch/upgrade personal computer OS
– Upgrade ROS then reboot router impact the network and SLA• Especially in those network environments without appropriate redundant
design• Higher SLA requirement is a challenge: 99.99% even 99.999%
– With a serious, detail plan, upgrade all router ROS will spend many months even more than one year.
• Upgrade processes are risky• Any un-conditional network event will postpone the scheduled upgrade
process– Upgrade ROS guide in operation:
• DON’T TOUCH YOUR ROS UNLESS YOU HAVE TO!!!!!
![Page 33: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/33.jpg)
2008/11/12, Taipei 33
Summary
• If we want to consider the operational issues, to upgrade borderrouter ROS first is a better approach– The AS-PATH handling will not be a problem anymore– It is fine to upgrade border router only
• Old BGP router will NOT be confused by duplicate AS23456• We can reboot the router for serious ROS bug-fix patch only rather than just
4-byte AS upgrade– After the border router, the upgrade sequence could be considered by
• (option) other eBGP router in the same autonomous domain• (option) CONFED border router• (option) iBGP client• (option) Route-Reflector
![Page 34: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/34.jpg)
2008/11/12, Taipei 34
Reference
• TWNIC OPM– 8th OPM
• 4 byte ASN的現況
• 4-byte ASNs Test Scenarios– 6th OPM
• BGP Support for Four-octet AS Number Space
• RFC– RFC4271 - “A Border Gateway Protocol 4 (BGP-4)”– RFC4893 - “BGP Support for Four-octet AS Number Space”
• NANOG– NANOG 39; “4-Byte AS Numbers, The view from the Old BGP world” by
Geoff Huston, APNIC• IETF draft
– Four-octet AS Specific BGP Extended Community
![Page 35: 4byte As Number Migration Suggestion](https://reader034.fdocuments.net/reader034/viewer/2022051609/547c4f9ab4af9fc9158b50e6/html5/thumbnails/35.jpg)
2008/11/12, Taipei 35
Thank you
• Questions?