[c-nsp] HIDE AS BGP

jack daniels jckdaniels12 at gmail.com
Mon Aug 10 07:59:23 EDT 2009 

Hi ,

Just to be more specific on the solution requirement -

Customer---ISP1---ISP2---Internet


Internet should not see ISP1 AS number . I 'm looking for L3 solution.

Thanks and Regards
J.daniels


On 8/10/09, jack daniels <jckdaniels12 at gmail.com> wrote:


> Hi,
>
> Customer---ISP1---ISP2---Internet
>
> using "local-as no-prepend replace-as" (Cisco commands)
> configured for ISP1 BGP peering sessions with "Customer" and "ISP2"
> would do the trick of hiding ISP1's AS#. ISP1 will pretend to look
> like "Customer" to ISP2, and look like "ISP2" to "Customer".
> Furthermore, you may use tunneling in ISP1 (e.g. deploy MPLS) and make
> it look almost completely transparent to "Customer".
>
> The following conditions apply:
>   If the AS_PATH includes both private and public AS numbers, BGP doesn't
> remove the private AS numbers. This situation is considered a configuration
> error.<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<
>
> Please advise how to go for this.
> Regards
> J.Daniels
>
>
> On 8/10/09, David Freedman <david.freedman at uk.clara.net> wrote:
>>
>> If the ISP is in the middle , who is the upstream and what does the
>> L2VPN do? can you provide a simple diagram?
>>
>> Dave.
>>
>> jack daniels wrote:
>> > Hi All,
>> >
>> > We had a requirement in which customer wants that the ISP- AS should not
>> be
>> > visible when route are advertised to internet via a upstream(L2 VPN
>> > solution).
>> > Can we use BGP command no-prepend with Replace AS attribute to hide ISP
>> AS
>> > in internet. ------------
>> >
>> > Can we peer with customer using local AS which will be private AS.We
>> will
>> > use no prepend command along with Replace AS which will replace ISP AS
>> with
>> > the private AS which is used for Peering.While going out to any
>> > international Peer we will remove private AS . On internet only customer
>> AS
>> > and Peer AS will be visible.
>> >
>> > Please advise is this solution will work . Also advise if any better
>> > solution for this scenario.
>> >
>> >
>> > Thanks and Regards
>> > J.Daniels
>> > _______________________________________________
>> > cisco-nsp mailing list  cisco-nsp at puck.nether.net
>> > https://puck.nether.net/mailman/listinfo/cisco-nsp
>> > archive at http://puck.nether.net/pipermail/cisco-nsp/
>> >
>>
>>
>

More information about the cisco-nsp mailing list