06-08-2009 02:52 AM - edited 03-04-2019 05:01 AM
Hi,
I would like to know the danger by advertising your own prefix through two diffrent AS on internet.
Will the prefix be drop by RAD box ?
Regards,
06-08-2009 03:19 AM
Hello Mohammed,
a public ipv4 prefix should be originated by only one AS number that is the legitimate owner of it.
We can say that current Internet is based on this.
As you say if you originate it also from a non legitimate AS number you are doing something wrong (an inconsistent path) that can be filtered by providers that check the validity of advertisements.
If you are meaning insted that you are peering with two different ISPs this is legitimate and actually is a good reason to get a public AS number.
Hope to help
Giuseppe
06-08-2009 03:28 AM
I am peering with diffrent ISPs but with two my diffrent AS( both own by me), like I have AS 10 and peer with ISP1 and I have another As 20 and peer with ISP2, then I have prefix 1.1.1.0/21 and advertise to ISP 1 and again 1.1.1.0/16 to ISP2.
06-08-2009 04:33 AM
Hello Mohammed,
you may want to consider the neighbor local-as command that can be used in a scenario like yours.
see
http://www.cisco.com/en/US/docs/ios/iproute/command/reference/irp_bgp3.html#wp1014448
you can use this to pretend to be in AS10 when talking to ISP2 hiding the fact that your second router is actually running in AS20.
ISP2 has to update its configuration accordingly (neigh ... remote-as 10 instead of neigh ... remote-as 20)
Hope to help
Giuseppe
06-08-2009 05:59 AM
Thanks,
But without this what is the raeal danger?
06-08-2009 06:40 AM
Hello Mohammed,
the risk is that someone (potentially everyone) has the right to discard the route not originated in the legitimate AS number.
Hope to help
Giuseppe
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide