05-06-2019 10:11 AM
I am moving to BGP internally in my network core. I have an internet assigned ASN so my question is do people use their Public ASN internally so minimize the eBGP peering with their internet edge?
Solved! Go to Solution.
05-08-2019 05:55 AM
05-08-2019 05:08 AM
05-08-2019 05:23 AM
So even through your core network and or Datacenter you are using public ASN? So iBGP for your internal network and the only eBGP is from your CE to PE?
05-08-2019 05:29 AM
05-08-2019 05:35 AM
05-08-2019 05:55 AM
05-08-2019 06:01 AM
06-10-2019 06:19 AM
So working with my lab I have noticed that route reflectors are going to come into place with iBGP obviously. But I think I am going to need a few route reflectors here.
The following diagram BGP will be ran at Core-sw-01 and 02, PA-FW-01 and 02, and Edge-ASA-01 and 02.
So with me using the public ASN all the way to the ISP01 router My route reflectors would have to be the palo alto Fw and how does it work north of the Edge firewalls if I am using my public ASN and my ISP routers are my CEs running also my public ASN? So now I have iBGP running though from the Core-sw-01 and 02 all the way to the CE routers. All iBGP peers need to be directly connected to the route reflectors correct? So in this case the CEs would not be. So am I better running private ASN from Core-sw-01 and 02 all the way to Edge ASAs then eBGP from ASAs to ISP CEs?
06-10-2019 06:52 AM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide