s*****g 发帖数: 1055 | 1 Can not be, BGP table has zero (almost zero) correlation with live IP
addresses. |
|
s*****g 发帖数: 1055 | 2 inet6? you must work for Juniper, hehhee
AS6447's IPv6 BGP table as of Feb 17 6:00AM is 4.5K, considering small percentage of aggregation, I would say 5K is current global IPv6 table size |
|
|
s*******8 发帖数: 12734 | 4 ISP side,PE router上配RIPv2,MPLS,iBGP,一个口配vrf,
layer 3,就有2个routing protocol了,如果都配上,router会用哪个呢?还是不能都
配上?
Q2:我知道现实中不可能,实验环境下,如果一个boarder router,一边是rip,一边
是BGP,那么需要redistribute,如果我另一边再配一个rip,那么是不是不需要
redistribute了?
不好意思,小弟新人,问题有点傻,包涵。 |
|
s*****g 发帖数: 1055 | 5 Come on guys ... you always need IGP full-mesh iBGP or not, think about it,
iBGP relies on TCP, without IGP, how do you route BGP's TCP taffic?
"TE需不需要mpls", what kind of question is that? |
|
z**r 发帖数: 17771 | 6
then
TE can establish the LSP you want, but you still need MPLS functionality to
switch the labeled packets.
configuring mpls means enable ldp right? if you have full meshed bi-
directonal TE tunnels for each VPN, the P routers don't have to have LDP
tuned on.
I just checked this in "mpls fundamentals", page 321, and I am posting the
content here:
TE Tunnels Between PE Routers
When two TE tunnels (one for each direction) exist between a pair of PE
routers and the Border Gateway Protocol (BGP) n... 阅读全帖 |
|
s******v 发帖数: 4495 | 7 RD是local的,在Routing Tablet里面的;RT是global的,attached在BGP update上。
例如,client HQ在PE1上,RD is :100, client NY office 在PE2上,RD is
100:800,client SF在另外一个ISP PE上市200:900,不过可以export一样的RT,象
999:
999, 大家全都import 999:999,
当然还可以有mulitiple RT.
RD |
|
s*****g 发帖数: 1055 | 8 This is not quite right ...
RD is not local, distinguish-er means it is unique, so it has to be global,
such that vpnv4 routes are uniquely identified when learned through BGP.Once
the routes are filtered to different VRFs, RD loses its meaning.
While RT is kind of local in the sense that it is just a tag added in
community such that other sides can selectively filter the prefixes to
achieve complex connectivity requirement between VRFs such that different
VPNs can be established, so within an I... 阅读全帖 |
|
a***n 发帖数: 262 | 9 What's the difference of logical-system from Cisco Nexus Virtual Device
Context?
How do you leak route from one LS to another LS?
Is it software based or external physical link required like in VDC?
What's the 业务 in English? Functional? 不好意思,俺是半路出家, 好多
国内术语不懂。
Does each LS support all routing protocols like OSPF/BGP?
The big complaint about Cisco ASA is its lacking of
dynamic routing protocols support in multi-context mode.
Does SRX support all this LS thing?
Thanks
理( |
|
s********k 发帖数: 6180 | 10 相比无线,数通技术门槛更高吗?我一个华为北研BGP的同学说,华为曾经托关系让欧
洲某运营商试验
了他们的国际端口局路由,结果一直handle不了 |
|
t*******r 发帖数: 3271 | 11 国内的内幕更是多得很啊^_^
05年还是07年忘了, 广东电信NE5000E上线, 20万BGP就死了.
最后只好配个静态路由.
服了~ |
|
c*******n 发帖数: 72 | 12 05年还是07年忘了, 广东电信NE5000E上线, 20万BGP就死了.
=====================
死了回去改一下,继续上,最后ciso还是会扛不住的 |
|
w***s 发帖数: 321 | 13 就是个过程,当初alcatel的7770上这么多路由也有毛病,因为BGP收敛的时候CPU 100%
,keepalive都丢了,必须将hold-time加到600秒以上才可以。 |
|
s*******8 发帖数: 12734 | 14 是不是ibgp必须要有一个IGP在下面,才能运行啊?
或者,直接directly connect才行? |
|
|
|
|
m********d 发帖数: 188 | 18 真想不出来你是怎么把log抓成图片的...
想充高手给你答答疑,可看你提的问题还得猜实际情况是什么样子,还是等真正的高手
来吧。
不过我觉得你要是能逐字节decode那个msgdump,你学到的应该比这儿所有的高手能告诉
你的都多。 |
|
s*******8 发帖数: 12734 | 19 alt+ PrtSc, 我也想不通你为什么这么问。
告诉 |
|
m********d 发帖数: 188 | 20
别生气,就是奇怪log不能直接copy/paste么?
不十分清楚你的整个问题,不过从配置看不是native v6 session,要注意next-hop。 |
|
s*******8 发帖数: 12734 | 21 我没有生气啊。。。哎。。。
我也没看懂你说的。。。
对哦。是可以copy paste的,忘了。。呵呵。 |
|
s*******8 发帖数: 12734 | 22 对啊,是6PE,谢谢指点,回头给你发几个包子吃吃。
safi 2 |
|
s*****g 发帖数: 1055 | 23 I 指点 what? you did not know you were configuring 6PE? hehe ... |
|
z**r 发帖数: 17771 | 24 his pe-ce is RIPng instead of IPV6 eBGP
safi 2 |
|
z**r 发帖数: 17771 | 25 这也不对呀,你在ipv6 address-family里面是redistribute rip,并没有给出"
custone",如果你6pe configuration还是上面那样,还通不了的,你看看你是不是有
router rip,这个很可能就是为啥有mal-formatted message received了。 |
|
|
|
f*******8 发帖数: 3612 | 28 哇,我得赶快补补课,
如果能每个问题都跟上思路、细节的话,就发达了。 |
|
t*******r 发帖数: 3271 | 29 没细看题目. 因为不鳝鱼解答别人的协议问题.
最好的办法是打印相关RFC章节(帧格式), 再把packet抓下来, 用wireshark打开, 一个
bit一个bit去核对.
这样学得快~
以后面试时还可以用来恶心别人 ^_^ |
|
|
t*******r 发帖数: 3271 | 31 如果想再深刻一点儿呢, 那就别光死记硬背, 自己也动动脑子, 想想为什么需要这些
bits/bytes
要知道这些可都不是自然天生的, 都是人类制造的东西, 所以它的存在必然有用处.
要么是做一件或某件事情, 要么是预留的bits |
|
f*******8 发帖数: 3612 | 32
这倒也符合信解行证的路数。
要相信那些些标准的人还是深思熟虑过的。
一个 |
|
m********d 发帖数: 188 | 33
有点儿装了吧?好像你没靠它混过饭吃似的。LOL |
|
m********d 发帖数: 188 | 34
支持。这是网络这碗饭吃的舒服点儿的必经之路,不管你是在那一边儿。 |
|
t*******r 发帖数: 3271 | 35 说得很对, 偶尔稍微装一下, 哈哈
不过, L3VPN配置的确很烦, instance一侧和core facing一侧的配置经常搞乱. |
|
|
z**r 发帖数: 17771 | 37 l3vpn其实还好,毕竟好几个feature都那样配。比较烦的是ipv6的配置,和ipv4的很不
同。这点上还是xr好多了,所有的都很consistency。毕竟ios是20多年的OS了,当初根
本想不到这么多新feature |
|
|
a***n 发帖数: 262 | 39 I am always curious about how big service provider
do this.
Take an example, I have two sites, running BGP with
one service provider at each location. How do you
implement the firewall failover at these two locations?
For Cisco ASA or FWSM, my understanding is that you
have to run ASA/FWSM in transparent mode, and put them
in a failover pair which means these two sites has to
be in HSRP/VRRP for the pass thru VLANs.
Another mode I used in our campus, just stateless
symmetric routing failover. E... 阅读全帖 |
|
s*****g 发帖数: 1055 | 40 来自主题: EmergingNetworking版 - 一个面试题 Internet access inside VRFs? how scalable is that going to be? say customers want to have full Internet BGP feed, so each VRF will have 350K FIB entries, in that case how many VRFs can a typical PE provide? 3?
Also how is SP's IGP prefixes size relevant? SP's IGP prefixes can well be in RFC1918 space. If PE-CE connection is Ethernet, can't we configure VLAN/sub-interfaces on both sides, one VLAN/subinterface for L3 VPN access and the other one for Internet access? that way each VRF FIB can be sm... 阅读全帖 |
|
a***n 发帖数: 262 | 41 来自主题: EmergingNetworking版 - 一个面试题 Actually this is what we are doing with our regional education network. We
have several VLANs to them, each is a different VRF on SP PE side. For
example, one for commodity internet, one for research and education network,
the other is for SP commercial peering. We took full internet routing
table from commodity internet connection.
Then we have flexibility of putting any VLAN on our end to a vrf/GRT in back
-to-back vrf architecture.
customers want to have full Internet BGP feed, so each VR... 阅读全帖 |
|
z**r 发帖数: 17771 | 42 来自主题: EmergingNetworking版 - 一个面试题 let's assume the service is private service.
customers want to have full Internet BGP feed, so each VRF will have 350K
FIB entries, in that case how many VRFs can a typical PE provide? 3?
in RFC1918 space. If PE-CE connection is Ethernet, can't we configure VLAN/
sub-interfaces on both sides, one VLAN/subinterface for L3 VPN access and
the other one for Internet |
|
s*******8 发帖数: 12734 | 43 这个我一直不太理解。
这个是一个软件模拟的interface么?虚拟的?
如果是虚拟的,那么对方的router怎么知道你的loopback address呢?比如bgp里面
network xxxx remote-as x |
|
t*********e 发帖数: 1136 | 44 这和其它static IP 的路由设置一样吧,和loopback 没有关系。直接定死了。
另外也不一定非得用 loopback。没有设 loopback,BGP自动对照相应的 vlan IP。一
样是直接用static route定死了。 |
|
t*********e 发帖数: 1136 | 45 Any packet the forwarding plane cannot forward is punted to the control
plane. Forwarding plane does not have the concept of "loopback" address or
interface.
If you don't specify loopback address, control plane kernel uses SVI IP
addresses to filter traffic coming to the BGP port. But SVI is only
associated with the ports that are assigned to the same network. loopback IP
is just a notation to tell kernel to use this "universal" IP to match
traffic coming from all L2 ports, regardless of what L3... 阅读全帖 |
|
b******s 发帖数: 5329 | 46 语音最近几年没搞了。sp环境单一,每天就是igp, bgp, mpls,vpls, label,tunnel,
再不就是76, asr, crs,linecard, RSP, MX,T。。玩段时间就累了。 |
|
x*********n 发帖数: 28013 | 47 我听说一块白板,一支笔,讲BGP的啊,听上去不容易啊。 |
|
x*********n 发帖数: 28013 | 48 因为carrier要用BGP?
我有说没有区别么? |
|
|
l******2 发帖数: 18 | 50 cleared IP bgp nei, still does not work |
|