04-24-2014 12:54 AM - edited 03-04-2019 10:50 PM
Hi all
when people normally peer with isp for internet do most people use as path access lists ?
if so what would you normally put in there, would it be allow only routes coming from the isp as etc ? can someone give an example ?
cheers
Carl
04-24-2014 01:18 AM
Hi Carl,
It depends on the local policy. But is not mandatory to have AS Path ACL always.
Few Enterprise which are dual homed might result in acting as transit AS if one AS prefer the Enterprise as best path. To avoid, they can use AS Path ACL to advertise only the prefixes originated from self AS.
04-24-2014 02:27 AM
how would I make sure I only receive routes coming from my ISP's AS ?
04-24-2014 03:37 AM
Carl
It's not what you receive in terms of routes because your ISP will send you all routes (if that is what you want) or they can send partial routes or just a default.
It is to do with which routes you advertise. Imagine you are dual homed to the internet either with one ISP or more. You need to make sure that the routes you receive on one connection are not then advertised back out the other connection.
If they are then you may become a transit AS ie. your site may be seen as the best path to get to locations that are not in your company.
So a common use of AS Path acls is to filter outgoing advertisements to your ISP(s). You would match on routes with no AS in the path ie. the routes that are local to your company. Any other routes ie. the ones received from either ISP would already have AS numbers in the path so they would not be advertised.
Jon
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide