Solved: Re: Same BGP AS across mutliple sites

rraver · ‎03-31-2009

I am applying for another BGP AS for another site we are deploying and ARIN asked why we can't use our current AS? Is it possible to use the same AS across multiple sites that are connected to different service providers and have no connections between them?

Harold Ritter · ‎03-31-2009

Robert,

It is certainly possible to do that. If you need site 1 to communicate with site 2 and vice versa, you will need to use the command "neighbor allowas-in" on the upstream provider connection, so that both sites can receive the updates from the other. I assumed that each site only has one connection to the upstream provider, correct?

Regards

Harold Ritter
Sr Technical Leader
CCIE 4168 (R&S, SP)
harold@cisco.com
México móvil: +52 1 55 8312 4915
Cisco México
Paseo de la Reforma 222
Piso 19
Cuauhtémoc, Juárez
Ciudad de México, 06600
México

View solution in original post

rraver · ‎03-31-2009

Here is a quick image of what I am trying to do..

-----------

|Corporate|

-----------

AS# 12345

Subnet: 1.1.1.X

-----------

| DC 1 |

-----------

AS# ??NEW?? or 12345?

Subnet: 1.1.2.X

-----------

| DC 2 |

-----------

AS# ??NEW?? or 12345?

Subnet: 1.1.3.X

Again, none of these sites are connected with private links and have dual links to the service provider/hosting facility. The subnets are also being requested from ARIN.

Harold Ritter · ‎03-31-2009

Robert,

It is certainly possible to do that. If you need site 1 to communicate with site 2 and vice versa, you will need to use the command "neighbor allowas-in" on the upstream provider connection, so that both sites can receive the updates from the other. I assumed that each site only has one connection to the upstream provider, correct?

Regards

Harold Ritter
Sr Technical Leader
CCIE 4168 (R&S, SP)
harold@cisco.com
México móvil: +52 1 55 8312 4915
Cisco México
Paseo de la Reforma 222
Piso 19
Cuauhtémoc, Juárez
Ciudad de México, 06600
México

rraver · ‎03-31-2009

Each site has dual connections for HA to the upstream provider(hosting facility) in the future we are looking at getting direct links from carriers but currently its from the hosting provider.

Harold Ritter · ‎03-31-2009

Robert,

Another option would be not to use the allowas-in and just rely on a default that would be received from your SP in addition to the full internet routing table that you probably already receive from them.

Regards

Harold Ritter
Sr Technical Leader
CCIE 4168 (R&S, SP)
harold@cisco.com
México móvil: +52 1 55 8312 4915
Cisco México
Paseo de la Reforma 222
Piso 19
Cuauhtémoc, Juárez
Ciudad de México, 06600
México

Mohamed Sobair · ‎03-31-2009

Hi,

You have One of two Options:

1) Neighbor x.x.x.x as-overide , has to be configured on the provider in order to ur own AS with it AS when BGP updates are recieved.

2) As pointed by Harold, The (Neighbor allow-as in) on ur edge router to permit updates from ur OWN AS and prevent bgp dropping the updates since ur AS in the AS path.

HTH

Mohamed

yuhuiyao · ‎03-31-2009

neighbor x.x.x.x allowas-in

rraver · ‎03-31-2009

Thanks guys, I was missing the allowas-in when thinking and it makes sense now.