[j-nsp] BGP Peering Policies - Best Practices
Niall Donaghy
niall.donaghy at geant.org
Wed May 22 07:30:50 EDT 2019
OP>> Are there non-technical reasons for leaving the Internet on the default RIB?
Adam> Are there technical reasons please?
How about:
uRPF causing discarded packets in a multi-VRF environment, eg:
- Internet VRF, Private VRF #1, Private VRF #2.
- Customers connect to all and advertise same prefixes to all.
- Peers connect to perhaps Internet and a Private VRF and advertise same prefixes to all.
- Private VRFs reach Internet VRF via default routes over logical tunnels (BGP).
- uRPF loose causes discards for some asymmetric traffic flows crossing multiple VRFs.
We've hit this problem.
Br,
Niall
-----Original Message-----
From: juniper-nsp [mailto:juniper-nsp-bounces at puck.nether.net] On Behalf Of adamv0025 at netconsultings.com
Sent: 22 May 2019 09:46
To: 'Louis Kowolowski' <louisk at cryptomonkeys.org>; 'Mark Tinka' <mark.tinka at seacom.mu>
Cc: juniper-nsp at puck.nether.net
Subject: Re: [j-nsp] BGP Peering Policies - Best Practices
> Louis Kowolowski
> Sent: Monday, May 20, 2019 5:58 PM
>
> On May 20, 2019, at 11:50 AM, Mark Tinka <mark.tinka at seacom.mu> wrote:
> >
> > On 20/May/19 18:40, Richard Hicks wrote:
> >
> >> - Do you use policies to put prefixes into specific RIB groups?
> >> For what
> >
> > I know many people put the Internet in a VRF, so my only comment on
> > this one is that we don't do it.
> >
> > In case you are looking for folk that don't, we are in that space.
> >
> > The rest of your points should attract quite a few opinions :-).
> >
> Are there non-technical reasons for leaving the Internet on the
> default
RIB?
>
Are there technical reasons please?
adam
_______________________________________________
juniper-nsp mailing list juniper-nsp at puck.nether.net https://puck.nether.net/mailman/listinfo/juniper-nsp
More information about the juniper-nsp
mailing list