Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
140078
Views
484
Helpful
30
Replies

When to use BGP address-family?

Go to solution
jwbensley
Level 1
Level 1

‎04-18-2012 01:07 PM - last edited on ‎01-11-2022 01:46 PM by Community Manager

I commonly see BGP configured on a provider (P/PE) router like this (this is a real router snippet just anonymised);

 

router bgp 12345

neighbour 1.1.1.1 remote-as 12345     ! iBGP peer

address-family ipv4

neighbour 1.1.1.1 remote-as 12345     ! iBGP peer

address-family vpnv4

neighbour 1.1.1.1 remote-as 12345     ! iBGP peer

address-family ipv4 vrf Customer1

neighbour 10.0.0.1 remote-as 67890    ! eBGP peer





  • I understand the CE peering defined under "address-family ipv4 vrf Customer1" because we are placing their routes into that VRF
  • I understand that "address-family vpnv4" is used to define provider iBGP peers to which other CE's are going to be attached, carrying this customer VRF
  • Finally, I understand that a provider router is an iBGP peer so it is defined directly under "router bgp 12345"

 

What is the need for "address-family ipv4" (without vrf) here, or ever?

 

What does it provies that "normal" "neighbour" definitions (those directly under "router bgp 12345") and "vpnv4 neighbour" definitions, don't provide?

6 people had this problem
Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Peter Paluch
Cisco Employee
Cisco Employee

‎04-18-2012 03:22 PM - last edited on ‎01-11-2022 01:49 PM by Community Manager

Hello,

 

The BGP, as you surely know, has a multi-protocol capability - in a single session, it is capable of carrying information about diverse routed protocols (IPv4 Unicast, IPv4 Multicast, IPv6 Unicast, IPv6 Multicast, VPNv4, CLNP), in BGP's parlance called "address families". With BGP being a true multiprotocol routing protocol, however, you need some means to tell BGP which "address families" should be exchanged with a particular neighbor. We are accustomed to the fact that if we define an IPv4 neighbor, we are planning to exchange IPv4 routes with that neighbor - but why should that actually be a rule? Why should we make hasty assumptions about the "address family" just because the address of the neighbor is from a particular family itself?

 

This is the point behind diverse "address-family" commands. Defining a neighbor under a particular "address family" means that we want to exchange routes from the particular "address family" with that neighbor. Not having a neighbor listed under a particular "address family" means that we are not planning to exchange information from that "address family" with that neighbor.

 

Now, the "address-family ipv4" declares neighbors with whom we want to exchange normal "IPv4 unicast" routes. This may be surprising because to exchange IPv4 routes with a neighbor, it is sufficient to simply define that neighbor by its address. The fact is that for backward compatibility with older BGP versions that have not been multiprotocol-capable, the BGP implicitly assigns all defined neighbors to an invisible "address-family ipv4" section. In other words, as soon as you define a neighbor, it is automatically being added to an invisible "address-family ipv4" section so that you don't have to do it manually.

 

You can change it, however. First of all, if you enter the BGP configuration and issue the command "bgp upgrade-cli" you will find out that the BGP configuration has been fully converted to the address family style of configuration. Outside any "address-family" stanzas, only the basic neighbor settings are configured like their addresses, AS numbers, update sources. However, all remaining "per-address-family" commands will be automatically moved into "address-family" stanzas. The behavior or operations of BGP do not change with this new style of configuration, only the configuration format is changed.

 

Furthermore, if you enter the "no bgp default ipv4-unicast" command in the BGP configuration, you will prevent BGP from automatically assigning each newly defined neighbor into "address-family ipv4" section. You will then be required to add every defined neighbor to each intended address family automatically - it won't be done automatically for you anymore.

 

So to wrap it up - the "address-family ipv4" is in fact an omnipresent section in the BGP configuration but for backward compatibility purposes, it is not visible by default. However, the configuration can be converted to a "strict per-address-family" configuration, and in fact, I would recommend that for all new deployments.

 

Please feel welcome to ask further!

 

Best regards,

Peter

View solution in original post

30 Replies 30

Go to solution
Peter Paluch
Cisco Employee
Cisco Employee

‎04-18-2012 03:22 PM - last edited on ‎01-11-2022 01:49 PM by Community Manager

Hello,

 

The BGP, as you surely know, has a multi-protocol capability - in a single session, it is capable of carrying information about diverse routed protocols (IPv4 Unicast, IPv4 Multicast, IPv6 Unicast, IPv6 Multicast, VPNv4, CLNP), in BGP's parlance called "address families". With BGP being a true multiprotocol routing protocol, however, you need some means to tell BGP which "address families" should be exchanged with a particular neighbor. We are accustomed to the fact that if we define an IPv4 neighbor, we are planning to exchange IPv4 routes with that neighbor - but why should that actually be a rule? Why should we make hasty assumptions about the "address family" just because the address of the neighbor is from a particular family itself?

 

This is the point behind diverse "address-family" commands. Defining a neighbor under a particular "address family" means that we want to exchange routes from the particular "address family" with that neighbor. Not having a neighbor listed under a particular "address family" means that we are not planning to exchange information from that "address family" with that neighbor.

 

Now, the "address-family ipv4" declares neighbors with whom we want to exchange normal "IPv4 unicast" routes. This may be surprising because to exchange IPv4 routes with a neighbor, it is sufficient to simply define that neighbor by its address. The fact is that for backward compatibility with older BGP versions that have not been multiprotocol-capable, the BGP implicitly assigns all defined neighbors to an invisible "address-family ipv4" section. In other words, as soon as you define a neighbor, it is automatically being added to an invisible "address-family ipv4" section so that you don't have to do it manually.

 

You can change it, however. First of all, if you enter the BGP configuration and issue the command "bgp upgrade-cli" you will find out that the BGP configuration has been fully converted to the address family style of configuration. Outside any "address-family" stanzas, only the basic neighbor settings are configured like their addresses, AS numbers, update sources. However, all remaining "per-address-family" commands will be automatically moved into "address-family" stanzas. The behavior or operations of BGP do not change with this new style of configuration, only the configuration format is changed.

 

Furthermore, if you enter the "no bgp default ipv4-unicast" command in the BGP configuration, you will prevent BGP from automatically assigning each newly defined neighbor into "address-family ipv4" section. You will then be required to add every defined neighbor to each intended address family automatically - it won't be done automatically for you anymore.

 

So to wrap it up - the "address-family ipv4" is in fact an omnipresent section in the BGP configuration but for backward compatibility purposes, it is not visible by default. However, the configuration can be converted to a "strict per-address-family" configuration, and in fact, I would recommend that for all new deployments.

 

Please feel welcome to ask further!

 

Best regards,

Peter

Go to solution
jwbensley
Level 1
Level 1
In response to Peter Paluch

‎04-19-2012 02:50 AM

What an absolutely brilaint answer! You have clearly explained exactly what I wanted to know. Thank you very much

0 Helpful

Go to solution
fahadyousuf
Level 1
Level 1
In response to Peter Paluch

‎08-18-2012 09:27 PM - last edited on ‎01-11-2022 01:30 PM by Community Manager

I have to say this answer is excellent. It completely removed my confusion about BGP "address-family" configurations.

0 Helpful

Go to solution
Patrick Moubarak
Level 4
Level 4
In response to Peter Paluch

‎10-05-2013 08:32 PM

Very helpful.

Thanks

0 Helpful

Go to solution
johnlloyd_13
Level 9
Level 9
In response to Peter Paluch

‎12-16-2013 06:45 PM

hi peter,

was searching on the net for this topic and your explanation is perfect.

it really helped me understand the concept.

0 Helpful

Go to solution
Peter Paluch
Cisco Employee
Cisco Employee
In response to johnlloyd_13

‎12-17-2013 12:29 AM

Hi John,

Thank you... There is no better satisfaction than knowing I could be of help.

Best regards,

Peter

Go to solution
adrian.taranu
Level 1
Level 1
In response to Peter Paluch

‎07-20-2015 01:30 PM - last edited on ‎01-11-2022 01:31 PM by Community Manager

Hi Peter,

Thank you for the explanation.

--

I would have one question please regarding the following config (taken from here

--

router bgp 60001
bgp log-neighbor-changes
neighbor 100.100.100.100 remote-as 7018
neighbor 100.100.100.100 local-as 22222
neighbor 150.100.12.2 remote-as 109
!
address-family ipv4
neighbor 100.100.100.100 activate
neighbor 150.100.12.2 activate
neighbor 150.100.12.2 route-map TASK out
no auto-summary
no synchronization
network 92.1.80.0 mask 255.255.255.0
network 92.1.81.0 mask 255.255.255.0
network 92.1.82.0 mask 255.255.255.0

..

--

Can you please clarify: is there a reason we don't put all the config under "address-family ipv4" then ?

Thank you.

Regards,

Adrian

0 Helpful

Go to solution
Peter Paluch
Cisco Employee
Cisco Employee
In response to adrian.taranu

‎07-21-2015 08:28 AM - last edited on ‎01-11-2022 01:33 PM by Community Manager

Hi Adrian,

Can you please clarify: is there a reason we don't put all the config under "address-family ipv4" then ?

This is because in BGP, there are essentially two different aspects of having a neighbor:

  1. Who the neighbor is and how shall we talk to it
  2. What content shall be exchanged with this neighbor

Notice that the neighbor's identity (who the neighbor is), that is, its address, autonomous system, etc. - these are qualities that do not depend on the "address family" exchanged with the neighbor (the content). Therefore, after migrating to the "address-family" style of BGP configuration, the definition of neighbors, their ASNs, update-sources, etc. is still maintained in the global level of the BGP process config because for a neighbor, all these settings are the same for every "address-family" the neighbor is added to. Also keep in mind that for a single neighbor, only a single BGP session is established, no matter how many "address families" the neighbor belongs into.

Please feel welcome to ask further!

Best regards,
Peter

Go to solution
adrian.taranu
Level 1
Level 1
In response to Peter Paluch

‎07-21-2015 09:54 AM

Excellent explanation! Thank you very much Peter..

Kind regards,

Adrian

0 Helpful

Go to solution
mcepedar3
Level 1
Level 1
In response to Peter Paluch

‎01-10-2016 04:35 PM

thanx Peter, that answer was pretty clear to solve my doubt too!

0 Helpful

Go to solution
Peter Paluch
Cisco Employee
Cisco Employee
In response to mcepedar3

‎01-11-2016 02:43 AM

Hi,

You are welcome!

Best regards,
Peter

0 Helpful

Go to solution
pruthviraj
Level 1
Level 1
In response to Peter Paluch

‎03-09-2016 08:21 PM - last edited on ‎01-11-2022 01:34 PM by Community Manager

Greatly described. 

I have small query. 

What is the meaning of below command where only "address-family ipv4" command is configured but no neighbor is mentioned on PE router:

address-family ipv4
maximum-paths 2
exit-address-family

 

 

Thanks,

Pruthvi

0 Helpful

Go to solution
Peter Paluch
Cisco Employee
Cisco Employee
In response to pruthviraj

‎03-10-2016 09:26 AM - last edited on ‎01-11-2022 01:35 PM by Community Manager

Hi Pruthvi,

Such configuration has no impact on the current operation of the router. The router is basically told that if there ever are neighbors with whom plain "unicast IPv4" routes are exchanged, then the BGP is allowed to use up to two equal-cost paths. However, at the moment, there are no such neighbors, and so this configuration has no routes to apply to.

Best regards,
Peter

0 Helpful

Go to solution
adrianbcisco
Level 1
Level 1
In response to Peter Paluch

‎09-09-2017 01:47 PM

Very clear, thanks Peter.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card