Data Center BGP: Autonomous Systems and AS Numbers
Two weeks ago we discussed whether it makes sense to use BGP as the routing protocol in a data center fabric. Today we’ll tackle three additional design challenges:
- Should you use IBGP or EBGP?
- When should you run BGP on the spine switches?
- Should every leaf switch have a different AS number or should they share the same AS number?
JAUT Course – Review Midweek
Hi,
Its been 3/5 Days in JAUT training and I should say Juniper has done a great job in introducing various training concept and methodologies towards Network scripting / automation.
Here are some-thing that helped
– No high stress on learning programming , they kept it to minimal and interestingly they made it more on how automation works and done instead of programming concepts – this is done in many courses
– Stress on PYEZ and Good Introduction to Ansible, simple labs and then making the lab cover all the concepts is another great way Juniper helped to Learn us the course
– Main take-away till now is Ansible / intro to Jinja2 & YAML and templating configuration which i felt very refreshing and all my fears about templating has atleast vanished till now.
I cant wait to blog on things that i have learnt during the training and implement it in my own lab, i will keep this topic alive for a while.
Cheers
Rakesh M
Chris Rice Explains AT&T’s White Box Plans via the Disaggregated Network Operating System
DNOS will be AT&T’s network operating system for white box.
Another BGP Routing Incident Highlights an Internet Without Checkpoints
Yesterday, there were two BGP routing incidents in which several high-profile sites (Google, Apple, Facebook, Microsoft, Twitch, NTT Communications and Riot Games) were rerouted to a previously unused Russian AS. The incidents only lasted about three minutes each, but demonstrated once again the lack of routing controls like those called for in MANRS that could have prevented this from happening.
As reported in BGPmon’s blog post on 12 December 12,
“…our systems detected a suspicious event where many prefixes for high profile destinations were being announced by an unused Russian Autonomous System.
Starting at 04:43 (UTC) 80 prefixes normally announced by organizations such Google, Apple, Facebook, Microsoft, Twitch, NTT Communications and Riot Games were now detected in the global BGP routing tables with an Origin AS of 39523 (DV-LINK-AS), out of Russia.”
Either a configuration mistake or a malicious attack, it propagated quickly through the Internet without visible obstacles. This was one of almost 5000 route leaks and hijacks in 11 months of 2017. For comparison, network outages during the same period caused almost 8000 incidents (source: https://bgpstream.com/):
In practice, the efficacy of corrective actions strongly depends on the reliability and completeness of information related to Continue reading
Masergy Adds More Butter to Bread-and-Butter Go SD-WAN Product
The updated Go product uses a smaller device footprint to lower operating costs.
Datanauts 114: Unikernels And IncludeOS
Today the Datanauts we talk unikernels and IncludeOS with guest Per Buer. We discuss how unikernels differ from a traditional OS, advantages and tradeoffs, and unikernel use cases. The post Datanauts 114: Unikernels And IncludeOS appeared first on Packet Pushers.
Internet Giants Should Be Broken Up
This is a 30 minute presentation that highlights the lack of societal value that Google, Apple, Facebook and Amazon deliver. Galloway examines their market dominance and how the market is failing to regulate or control the tech companies. I recommend watching this and considering the ideas proposed here. Galloway is well known and worth listening […]
AT&T Wants to Expand AirGig Trials to More Markets
But power companies can be challenging tech partners.
Juniper Talks Up Expanded Contrail SDN Vision
Networking vendor says it's focused on simplifying multi-cloud management.
Episode 17 – BGP: Peering and Reachability
In this Community Roundtable episode, returning guests Russ White and Nick Russo start our three part deep dive into the Border Gateway Protocol, or BGP, with a look at terminology, how peer relationships form, the differences between internal and external BGP, and scaling techniques.
Show Links
https://tools.ietf.org/html/rfc4271
https://www.ietf.org/rfc/rfc1771.txt
Show Notes
Overview
- BGP is an external gateway protocol used widely in both the public internet and with enterprise organizations
- BGP is the only external gateway protocol and is traditionally used primarily to connect networks to other networks
- BGP was built primarily for policy propagation to provide reliability, scalability, and control
- BGP v4 is created which is the base version we still use today though updated over the year
Terminology
- Devices running BGP are called speakers
- A connection between two speakers is called a peering session
- The two speakers are often called peers or neighbors
- Network Layer Reachability Information is a key term to remember — NLRI
- Address Families (AFs) carry NLRIs for different topologies and different kinds of reachability information (v4, v6, ethernet, mpls, etc.
- Autonomous System–a set of bgp speakers contained within a single administrative domain (with some rather loose Continue reading
The Curious Case of Caching CSRF Tokens
It is now commonly accepted as fact that web performance is critical for business. Slower sites can affect conversion rates on e-commerce stores, they can affect your sign-up rate on your SaaS service and lower the readership of your content.
In the run-up to Thanksgiving and Black Friday, e-commerce sites turned to services like Cloudflare to help optimise their performance and withstand the traffic spikes of the shopping season.
In preparation, an e-commerce customer joined Cloudflare on the 9th November, a few weeks before the shopping season. Instead of joining via our Enterprise plan, they were a self-serve customer who signed-up by subscribing to our Business plan online and switching their nameservers over to us.
Their site was running Magento, a notably slow e-commerce platform - filled with lots of interesting PHP, with a considerable amount of soft code in XML. Running version 1.9, the platform was somewhat outdated (Magento was totally rewritten in version 2.0 and subsequent releases).
Despite the somewhat dated technology, the e-commerce site was "good enough" for this customer and had done it's job for many years.
They were the first to notice an interesting technical issue surrounding how performance and security can often Continue reading
The Curious Case of Caching CSRF Tokens
It is now commonly accepted as fact that web performance is critical for business. Slower sites can affect conversion rates on e-commerce stores, they can affect your sign-up rate on your SaaS service and lower the readership of your content.
In the run-up to Thanksgiving and Black Friday, e-commerce sites turned to services like Cloudflare to help optimise their performance and withstand the traffic spikes of the shopping season.
In preparation, an e-commerce customer joined Cloudflare on the 9th November, a few weeks before the shopping season. Instead of joining via our Enterprise plan, they were a self-serve customer who signed-up by subscribing to our Business plan online and switching their nameservers over to us.
Their site was running Magento, a notably slow e-commerce platform - filled with lots of interesting PHP, with a considerable amount of soft code in XML. Running version 1.9, the platform was somewhat outdated (Magento was totally rewritten in version 2.0 and subsequent releases).
Despite the somewhat dated technology, the e-commerce site was "good enough" for this customer and had done it's job for many years.
They were the first to notice an interesting technical issue surrounding how performance and security can often Continue reading
6 Cutting-Edge Certifications for Infrastructure Pros
These IT certs can help you demonstrate your understanding of the latest technology.
