Original Site BGP attribute

Dear friends,

I tried to get a good understanding of the Site of origin of BGP attribute (not so EIGRP). I understand his idea and its impact, but there is a problem that I couldn't wrap my head around yet.

Quoting RFC 4364, Section 8:

                     We add one more restriction on the distribution of    routes from PE to CE: if a route's Site of Origin attribute    identifies a particular site, that route must never be redistributed    to any CE at that site.

My understanding of this statement is that a site must be identifiable by a given value of the attribute of so, or in other words, there should be a way to assign a specific value of the attribute so to the entire site. Then, knowing the value of the so for the entire site, a route once appeared on this site should never be announced to him.

This is where my problems start. We know that there is not a strict mapping one to one between a site and a VRF. A site can consist of one or several VRF and is not actually represented by a single object in the IOS - it's rather a simple collection of VRF who share routing information in such a way that for mutual communication, the use of the vertebral column is not required. There is no representation of the site as a single object in the IOS and there is therefore no way to assign a particular site so as a whole. In addition, the attribute so is not yet configured on a basis of by-VRF, instead, it is pushed on the individual courses from USING a road map or a per neighbor configuration. What is so attribute on a given prefix from, then? I simply do not see how a whole VRF or an entire site is assigned its own value of so unique for comparison purposes, in a manner similar to the assignment of identifiers of road or road of targets based on per VRF.

So my question is: If the attribute so is pushed on routes from one THIS and these routes are announced to an another EP on the same site, how is the EP another knows the correct value of the site of the so so that it can compare to the so on prefixed receipt and not advertise routes to the site they came from? The VRF simply "inherits" the individual itineraries so as they are received and processed by a road-map set- ting so?

Any help and clarification is appreciated!

Best regards

Peter

Hi Peter,.

So for BGP is "related" to THAT neighbor. Thus, when a prefix must be announced to a neighbor, we check the so of the prefix with the so of the BGP neighbor. For anything else, he is bound to the interface.

The configuration can be done in four different ways (the setting of the so and the verification of the so is related to that):

(1) ' road-map in ' on what neighboring BGP command

(2) directly on the order of CE BGP neighbor

(3) plan of the site on the interface of the VRF and redistribution of the (static) IGP into BGP routes and (static), IGP point to this interface

(4) plan of the site on the command interface and network VRF

General principle (but you know it):

http://www.Cisco.com/en/us/partner/docs/iOS/ios_xe/iproute_bgp/configuration/guide/irg_neighbor_soo_xe.html

With the help of a roadmap and setting different for different prefixes from the same neighbor BGP SoO doesn't make much sense, so I guess that we were never bothered by possible nonuniqueness in the configuration when you look at what a 'site' is.

Thank you

Luke

Tags: Cisco Support

Similar Questions

  • throw in the Tablet I want to copy the original site of the computer, which is horizontal based.

    Throw in the Tablet I want to copy EXACTLY the original site of computer which is horizontal based.

    I don't have to skip a few items to make it fit on a shelf.

    The presentation of the Tablet is vertical.

    How to do this?

    Double Post: Responded to Tablet spread horizontal

  • BGP announcement: How do I remove the attributes "next hop" and "metrics" inherited from OSPF?

    Hello

    I use a router THAT WAN Cisco ASR1001 connected via BGP AS65075 with our ISP.

    This router is connected through OSPF with our Cisco 7206VXR/NPE-G2 firewall.

    Topology:

    ISP <- bgp="" -="">RT 1001 <- ospf="" -="">FW 7206 <->LAN

    On the WAN router, static routes are set to null0 to always announce our class C networks.

    Route IP 192.168.10.0 255.255.255.0 Null0 250

    ...

    Network guidelines are placed in our BGP configuration:

    router bgp 65075

    The log-neighbor BGP-changes

    neighbor EBGP-PEER-IPv4-peer group

    EBGP-PEER-IPv4 neighbor fall-over bfd

    neighbour 192.168.88.138 distance - as 65200

    192.168.88.138 a neighbor EBGP peers PEERS-IPv4

    192.168.88.138 ISP IPv4 neighbor description

    next password 192.168.88.138 7 unknown

    !

    ipv4 address family

    ...

    network 192.168.10.0

    ...

    a neighbor EBGP-PEER-IPv4 soft-reconfiguration inbound

    EBGP-PEER-IPv4 neighbor distribute-list prefix-v4 on

    an EBGP-PEER-IPv4 neighbor prefix-maximum 100

    neighbor EBGP-PEER-IPv4-1 filter list out

    neighbor 192.168.88.138 activate

    neighbor 192.168.88.138 filter-list 2

    output-address-family

    A part of these networs are also learned through OSPF. If these routes are present in the routing table:

    RT-01 #sh ro ip 192.168.10.0

    Routing for 192.168.10.0/24 entry

    Known via "ospf 1", distance 110, metric 20, type extern 2, metric 1 forward

    Published by bgp 65075

    Last update to 192.168.0.79 on Port - channel1.28, 7w0d there is

    Routing descriptor blocks:

    * 192.168.0.79, from 192.168.0.71, 7w0d there is, through Port - channel1.28

    See metric: 20, number of share of traffic is 1

    Because these roads are active in the rounting table. Announcing BGP based on his and attributes "next hop" and "metric" are inherited from OSPF:

    RT-01 #sh ip bgp neighbors 192.168.88.138 announced-routes

    ...

    Network Next Hop path metrics LocPrf weight

    ...

    * > 192.168.10.0 192.168.0.79 20 32768 I

    ...

    Is it possible to remove the legacy of OSPF into BGP attributes?

    How to set the "next hop" to the value 0.0.0.0 and "metric" to 0?

    Thank you

    Best regards

    Jérôme

    Hello Berthier,

    NEXT_HOP is a hill & attribute mandatory path including the eBGP value is the IP address of the BGP peer (specified in the neighbor's remote control) where the router learns the prefix. Thus, your peers (eBGP) will still see the IP 192.168.88.138 in your BGP Next Hop as updates. I agree you the output of the command ' sh ip bgp neighbors 192.168.88.138 roads announced "can be confusing, but not worried about it.

    Metric 20 is cause of path must be acquired by OSPF. Copy in default atributte MED BGP metric. So I see that you have only a peer is very important change this value because MED is not transitive, if this value is not propagated by other ACE access your provider. Anyway, if you want to change, you must:

    1. create a list of prefixes with one or more prefixes that you want to "reset" the MED value:

    list of prefixes prefix-to-reset-MED seq 5 permit 192.168.10.0/24

    list of prefixes prefix-to-reset-MED seq 10 permit X.X.X

    2. create a roadmap

    allowed to reset - MED card route 5

    match of prefix-to-reset-MED IP prefix-list

    the metric value 0

    road map provided to zero-MED allowed 10

    !

    The last road map is necessary to ensure that the rest of the prefixes are sent.

    3. apply the road map

    a neighbor EBGP-PEER-IPv4-roadmap given to zero-MED on

    Concerning

  • Reproduce a Web site, but changes in the dup site meta tags original changes... Pls help!

    I have a website that I built in cs4 and wanted to reproduce the site, change index.htm title, description and meta tags, save it as a separate site and to sepatate IP address. I duplicated the grace site to manage websites, renamed the site duplicated, made sure the new appropriate site was opened and made the changes directly in the code. It has changed and saved correctly in the new duplicate site. I've changed the info to download different IP for the new site of dup and it worked fantastic. I came back to my original site in Dreamweaver to see that make the changes on the duplicate also site index page changed the title, description and meta on my original site tags.

    It seems to me that I can have duplicated the site in the wrong way, because they are connected somehow. Y at - there a way for me to interrupt or "correct" way for me to go to the site of origin of duplication without the link?

    Thank you very much for your time.

    Treat it as you would any new site project.

    Sites > Manage Sites > new >

    http://www.Adobe.com/devnet/Dreamweaver/articles/first_website_pt1.html

    Nancy O.

    ALT-Web Design & Publishing

    Web | Graphics | Print | Media specialists

    http://ALT-Web.com/

    http://Twitter.com/ALTWEB

    http://ALT-Web.blogspot.com/

  • When to use BGP-address family?

    I often see BGP configured on a router of the provider (P/PE) like this (he is a true router just anonymizated extract);

    router bgp 12345

    Remote 1.1.1.1 neighbor - as 12345. iBGP peer

    ipv4 address family

    Remote 1.1.1.1 neighbor - as 12345. iBGP peer

    vpnv4 address family

    Remote 1.1.1.1 neighbor - as 12345. iBGP peer

    address ipv4 vrf Customer1 family

    neighbor 10.0.0.1 remote - as 67890! eBGP peer

    • I understand the CE peering defined under the 'family of addresses ipv4 vrf Customer1' because we put their journey in this VRF
    • I understand that "address-family vpnv4" is used to define peers from iBGP provider to be attached, carrying this customer VRF to another CE
    • Finally, I understand that a provider's router is an iBGP peer so that it is set directly under "router bgp 12345".

    What is the need for a 'family of ipv4 addresses' (without the vrf) here or never?

    What it does the output as 'normal' neighbor definitions (those who are directly under "router bgp 12345") and nearby definitions vpnv4, do not provide?

    Hello

    The BGP, as you know, has a capacity of Multiprotocol - in one sitting, it is capable of carrying information about the various routed protocols (IPv4 Unicast, Multicast IPv4, IPv6 Unicast, Multicast IPv6, VPNv4, CLNP), in the jargon of BGP called "address families. With being a true multiprotocol routing protocol BGP, however, you all way to say BGP address what families should be exchanged with a neighbor especially. We are accustomed to the fact that, if we define a neighboring IPv4, we intend to Exchange IPv4 routes with this neighbour - but why is making a rule? Why do assumptions early on the address simply family because the address of the neighbor is from a family special itself?

    That's the point behind the controls of the address family . Definition of a neighbor in a particular address family means we want to Exchange routes of specific address with this neighbour family. No no not a neighbor listed under a particular address family means that we do not expect to exchange information of this family of addresses with this neighbour.

    Now, ipv4 address family says neighbors with whom we want to Exchange normal IPv4 unicast routes. It's perhaps surprising because to Exchange IPv4 routes with a neighbor, just simply set this neighbour by its address. The fact is that for backward compatibility with older BGP versions that were not Multiprotocol-capable, the BGP attributes implicitly defined all the neighbors to a section of the invisible -ipv4 address family . In other words, as soon as you set a neighbor, it is automatically added to a section of the invisible -ipv4 address family so that you don't have to do it manually.

    You can change, however. First of all, if you enter the BGP configuration command bgp upgrade-cli , you will find that the BGP configuration has been converted entirely to the family style address configuration. Outside any family address stanzas, only the nearby base settings are configured as their addresses, as numbers, updated sources. However, all orders by family of remaining addresses will be automatically moved into the stanzas of the address family. The behavior or BGP operations do not change with this new style of configuration, only the format of configuration is changed.

    In addition, if you enter the No bgp ipv4 unicast default command configuring BGP, BGP will prevent you from automatically assigning each neighbour newly defined in the section of the ipv4 address family . You then must add each neighbor set to each scheduled automatically - address family it does automatically for you more.

    So to wrap - ipv4 address family is in fact a pervasive section in the BGP configuration but for reasons of backward compatibility, it is not visible by default. However, the configuration can be converted into a configuration by address-family-strict, and in fact, I would recommend that for all new deployments.

    Please feel welcome to ask for more!

    Best regards

    Peter

  • BGP community send - how does it work?

    Hi guys,.

    I hope that if anyone can help me understand how to send a community attributes work between ISP?

    We have an internet connection to multihomed with two Internet service providers of peering with two local routers (R01 - INT and INT - R02) and we are prefer isps1 on the other. Please attached flowchart along.

    We run iBGP between the local routers (R01 - INT and INT - R02) and R01 has a higher local preference which is looked at with isps1 and R02 has lower local preference which is looked at with ISP2.

    We are a consignment attribute ISP2 community with advertising prefixes they use to manipulate the routing. I have also read on their site with this community attribute, they alter the local preference of roads so that it is less than one received a counterpart road but is not less than a transit provider.

    I understand that they will lower the local on their router preference so that it is not preferred but how IPS2 say other ISPS is not the way through their network if you go to those specific prefixes.

    Really appreciate your help.

    Thanks in advance.

    Jay

    Hello

    In my humble OPINION, they can manipulate BGP attributes again (BY adding or MED, for example) or even to use the special communities agreed with their neighbour ISPS in advertising prefixes to them?

    Best regards

    Milan

  • Cannot open links Web site

    I can get on the original site, but when I click on a link, it displays the page I'm trying to get, but there is no information. Ex: Site of the library of Alisweb - tried to click on the link LILink - it goes to this page but doesn't show a cap. He liked it is blocked or something. How do I unlock? I don't have this problem with internet explore.

    What is this on the pages opened via a secure https connection?

    If the content is missing or otherwise does not when a secure connection https is used then check if there is a shield icon to the left of the "Site Identity" (globe/lock) key on the location indicating that the content has been blocked.

  • When &lt; CTRL &gt; + click on ANY link on ANY site, the ZOOM REAR (decrease font size). How to avoid it?

    When I'm browsing ANY site and open the link in a new tab (in the context menu 'Open link in a new tab' OR CTRL + click) site where I am (where the link is indicated) decrease the fonts and images (such as 'zoom out'). It happens on ANY site. When I CTRL + clisk on a few links on the same site, to open new tabs for future reading, original site became so small (fonts, images) that it cannot be read

    Start Firefox in Firefox to solve the issues in Safe Mode to check if one of the extensions of the origin of the problem (switch to the DEFAULT theme: Firefox (Tools) > Add-ons > appearance/themes).

  • All trying to download um windons original appears um cavalo e troya

    Microsoft mostrou o meu Windons e pirata, mostrou um lembrete para buscar um of the original site, muito bem fled ago but all trying me appears um downloads para download e um cavalo troya

    You posted your question at a Forum on English language.

    Please select your language from the list after clicking on the icon at the bottom of this Web page.

    English

    You can also use this link to find your particular region language:

    http://support.Microsoft.com/common/international.

  • At the opening of the various programs I get the error message 'extended attributes are incompatible' and "Consent UI has stopped working" in windows vista.

    Original title: extended attributes

    I started getting the following errors with various programs "extended attributes are incompatible" and "Consent UI has stopped working". I tried to do a system restore but get error inconsistent attributes for 'rstrui.exe '. I also had the message to ShellExecuteEX.exe when you try to install an application and even trying to download the Windows 7 Upgrade advisor. Just to check, I tried to run msconfig from the start and even gives me the message attributes. I am running Vista Home Premium with Service Pack 2 installed. Advice please. Thank you, Roger P

    Hi Roger P.

    ·         When the issue started?

    ·         Remember to make any hardware or software comes to the computer before this problem?

    ·         What antivirus application is installed on your computer?

    Method 1:

    You can try to run a SFC scan and check.

    This problem may occur if a system file is missing or damaged.

    You can refer to the method-the System File Checker tool in the following article:

    How to use the System File Checker tool to fix the system files missing or corrupted on Windows Vista or Windows 7

    http://support.Microsoft.com/kb/929833

    I suggest you to follow these steps and check if that helps.

    Methoad 2: try to run the windows recovery option system restore.

    What are the system recovery options in Windows Vista?

    http://Windows.Microsoft.com/en-us/Windows-Vista/what-are-the-system-recovery-options-in-Windows-Vista

    It could be useful!

  • ASA from Site to Site and SSL VPN stop working

    Thanks in advance for any advice

    We have an ASA 5510, users were able to connect via to all connect without any problems. We opened a new office with an ASA 5505 and decided to give VPN site-to-site on IPSec. We used the basic wizard and everything went smoothly at both ends. However, users who always used SSL VPN says so that they can connect to the original site, they are no longer in their RDP virtual machines or get anywhere on the network. I don't know why something like this can happen.

    You can change the SSL VPN DHCP scope to give a different subnet for IP addresses. Maybe try 192.168.10.0 255.255.255.0. Let me know if you can and if that corrects the issue.

    Sent by Cisco Support technique iPhone App

  • Prevent the specific Web site to store the user name in the drop-down list

    I have a site that I connect to frequently. Their home page has a login field. If I double-click on this area, it shows me several login names to automatically fill the area with. I want to prevent Firefox (or other) to remember those login names, for safety because of my personal paranoia.

    I'm using Firefox 49.0.2.

    • I added this site to my list of blocking Cookies. New Cookies are not displayed to the top, when I connect.
    • I do NOT have the connections stored for this site (they were removed and new not appear when I enter a name).
    • Firefox does NOT show me the dialog box "do you want to remember?
    • I removed each stored in AutoComplete list in this field by using the 'shift + Delete' keys to select and delete the headings that appear when I double click on the field.
    • The list that appears when I double click is NOT specific to this site... or rather, the entries in the list seem to come from almost any site that I connected. For example, I have deleted all entries in this site, I worry; I have then is come to Mozilla's Support forum and tried connecting; I had to try several times; all of these names that I used on the login field Mozilla now appear in the list for the original site.
    • Curiously... If I hit 'back' after typing my name (causing the site to go to the next page), the name that I typed in the field seems NOT to remember. However, if I click on the button "login" next to the field after you type a user name, the name seems to remember.
    • Even if I disable 'Remember connections... ". "in Firefox, UN I enter this field to remember.

    A screenshot is provided the field of seizure and the drop-down list of names (which I deleted several times).

    I turn off history form of Firefox, so I don't know if this is specific to the site (such as the saved connections) or could possible appear on all sites with a named field in a similar way, which seems a little odd.

    If you clear history of Firefox form feature, is the unwanted suggestion stop appearing? You can do this on the preferences page, Privacy panel:

    "3-bar" menu button (or Firefox) > Preferences

    In the left column, click on privacy. On the right side, if you do not see "conservation rules: use the custom settings for history" go ahead and make that choice.

    Then you can uncheck the box ' Remember search and form history.

    When you return to the site and reload the page, the suggestions disappear?

  • Twitter feed widget disappears on sensitive site

    Hi, there seems to exist a few discussion threads on similar questions but nothing that comes up with a fix.

    I have a sensitive site of the Muse and have created a direct 300 pixels wide Twitter widget of Twitter. The code has been properly placed in the site. I put the widget, so when it gets to a point particular break Muse hides. However when you resize the window to its original size when previewing in the browser or when the site has been uploaded to the server, the widget does re - not appear. And before anyone asks I also created 600, 450 and 350 widgets wide just in case the wide version of 300 pixels pixel was the issue. Same result for all sizes.

    I tried to use the widget with both resize the value none and also get and sensitive width the same question. For most visitors to the site it will not be a problem as mobile tablet and small users have the hidden widget and everyone watching on a large desk / laptop screen go to him. But if for any reason no one resizes the window on their desktop, then dragged it réécrirait full size again, feeding does not appear re = who doesn't seem very professional.

    Someone at - it ideas?

    I use a MBP OSX 10.11.4 retina and all software and applications Adobe CC to day running.

    Thanks in advance.

    Simon

    Tried with a new empty site and the Twitter widget seems to work very well. Tried 30 times with the original site and also creates a lot of widgets more just in case, but was always the same questions. So ultimately I've recreated the original location of the zero and the working widget.

    Not sure what was causing the problem as used the same elements and set up as before. My guess is that there was a confrontation between either the simple email contact widget that was also on the page and / or the 3 buttons of photoshop in the foot 'sticky' at the bottom of the page.

    On the new site, I pasted in the Twitter widget first then added the widget contact then it may be an order of the item before issuing.

    Anyway for some reason any new site works now.

    Concerning

    Simon

  • Download of an adobe Web site problems muse fast host

    I always post with BC, so load on the ftp host is new to me, so please forgive my rookie post here.


    I designed a website for a local group, they have an existing website that is hosted by the fast host.

    The new site (that I put together using Muse) a site architecture, to their current very different.

    The client provided me with the ftp software settings: hostname, username, password. But nothing for the details of the folder or web directory or other details.

    I called FastHost, a double check what to add in the field FOLDER when downloading, they told me to leave the FILE empty. But it technical knowledge was sketchy at best, I don't think they were particularly happy to discuss the details with me as I am not an account holder.

    Clearly, it did not work, the old original site is still present, but now with my site as live: see below

    www.Boogie-me.co.uk

    www.Boogie-me.co.uk/index.html

    Are they supposed to have deleted the old site first?

    Or should I have specified a specific folder (httpdocs, public_html, for example) when the download of FTP and if yes, how do I get this setting? Fast home were not particularly to come, and there is no help file on their Web site, unless you have an account.

    Penny

    Hi Penny,

    As you mentioned, it seems that the files for the current Web site are still hosted on the server. I reach out to your client and ask them to remove their existing site. FastHost should be able to help your client with it.

    If they accidentally remove all Muse files on the server, I advise to use FTP client internal of Muse to re - upload your site using the credentials that they have you provided.

    https://helpx.Adobe.com/Muse/using/uploading-site-third-party-hosting.html

    Feel free to join us if you come across any other Muse related issues.

    Kind regards

    Marc

  • Splitting of an existing in two web site...

    Is there a simple way to split an existing web site created in MUSE in two Web sites? I have a site that has a web subsite. It seems that I could save the site of origin under a different name and delete the subweb. Then return to the original location of the files and delete the files from the original site and letting the subweb as the new site. Hope this makes since.

    Hello Webdesignnm,

    Now the procedure mentioned by you is the easiest to achieve, but you can try the option "Save as" instead of duplicating the site.

    Kind regards

    Vivek

Maybe you are looking for

  • Message error "Could not activate iPad."

    I have an older iPad (2, I think) and he has recently released an update, but now I get this error.  The details say "your iPad could not be activated because the activation server is temporarily unavailable."  I tried to connect to iTunes as it sugg

  • A few different questions with Satellite A80 116

    Hello I'm having strange problems with my recently bought A80 - 116. I bought this computer in Germany a month ago, and problems seem to be showed up quickly after I received it.1. when the computer begins to start suddenly just for some reason, the

  • Satellite L10-102 drivers windows 2003

    My laptop will not connect to my wireless adsl modem even not wpa or wep password is enabled on windows server 2003.

  • How to detect negative exceedances in pow()?

    Hello CVI the pow() function does not set the errno variable to indicate that an overflow condition has occurred - is this by design, is there a work around? (I would have assumed the value ERANGE errno). Thank you!

  • Problem cooling fan

    Hello, I had the same problem as Luthfy: when I turned on my laptop, it says "the system has detected that a cooling fan does not work correctly. Continued operation is not recommended and can result in unpredictable behavior that may cause stop rand