[j-nsp] BGP Peering Policies - Best Practices

Niall Donaghy niall.donaghy at geant.org
Wed May 22 07:30:50 EDT 2019


OP>> Are there non-technical reasons for leaving the Internet on the default RIB?
Adam> Are there technical reasons please?

How about:

  uRPF causing discarded packets in a multi-VRF environment, eg:
    - Internet VRF, Private VRF #1, Private VRF #2.
    - Customers connect to all and advertise same prefixes to all.
    - Peers connect to perhaps Internet and a Private VRF and advertise same prefixes to all.
    - Private VRFs reach Internet VRF via default routes over logical tunnels (BGP).
    - uRPF loose causes discards for some asymmetric traffic flows crossing multiple VRFs.

We've hit this problem.

Br,
Niall

-----Original Message-----
From: juniper-nsp [mailto:juniper-nsp-bounces at puck.nether.net] On Behalf Of adamv0025 at netconsultings.com
Sent: 22 May 2019 09:46
To: 'Louis Kowolowski' <louisk at cryptomonkeys.org>; 'Mark Tinka' <mark.tinka at seacom.mu>
Cc: juniper-nsp at puck.nether.net
Subject: Re: [j-nsp] BGP Peering Policies - Best Practices

> Louis Kowolowski
> Sent: Monday, May 20, 2019 5:58 PM
> 
> On May 20, 2019, at 11:50 AM, Mark Tinka <mark.tinka at seacom.mu> wrote:
> >
> > On 20/May/19 18:40, Richard Hicks wrote:
> >
> >> - Do you use policies to put prefixes into specific RIB groups?  
> >> For what
> >
> > I know many people put the Internet in a VRF, so my only comment on 
> > this one is that we don't do it.
> >
> > In case you are looking for folk that don't, we are in that space.
> >
> > The rest of your points should attract quite a few opinions :-).
> >
> Are there non-technical reasons for leaving the Internet on the 
> default
RIB?
> 
Are there technical reasons please?

adam

_______________________________________________
juniper-nsp mailing list juniper-nsp at puck.nether.net https://puck.nether.net/mailman/listinfo/juniper-nsp


More information about the juniper-nsp mailing list