SRX Services Gateway
Reply
Visitor
gnarvaez
Posts: 6
Registered: ‎11-14-2011
0

Trying to balance traffic through two BGP peers.

the context
===========
We have a SRX650 (AS-1) and two providers (AS-2, AS-3). We have a static route defined to reach the AS-2 across an external router (R).
We have two ip range to advertise.

This is the config:
-------------------
routing-options {
static {
route 10.0.0.2/30 next-hop 10.0.0.2;
route 10.0.0.3/29 next-hop 10.0.0.3;
route 192.168.0.2/32 next-hop 10.0.0.3;
}
router-id 10.0.0.1;
autonomous-system 1;

protocols {
bgp {
traceoptions {
file analisis_bgp world-readable;
}
multihop {
ttl 255;
}
group ebgp_telecom {
type external;
import desde_bgp;
export para_bgp;
neighbor 10.0.0.2 {
peer-as 3;
}
}
group ebgp_telefonica {
type external;
import desde_bgp;
export para_bgp;
neighbor 192.168.0.2 {
peer-as 2;
}
}
}
}

policy-options {
policy-statement anteposicion {
term todas {
then as-path-prepend "28048 28048 28048 28048";
}
}
policy-statement balanceo {
from {
route-filter 209.13.97.33/32 exact;
route-filter 190.227.196.165/32 exact;
}
then {
load-balance per-packet;
}
}
policy-statement desde_bgp {
term full_table {
from protocol bgp;
then accept;
}
term martians {
from {
route-filter 10.0.0.0/8 orlonger;
route-filter 172.16.0.0/12 orlonger;
route-filter 192.168.0.0/16 orlonger;
}
then reject;
}
}
policy-statement para_bgp {
term export_pooles {
from {
route-filter 190.112.64.0/18 exact;
route-filter 200.91.32.0/21 exact;
}
then accept;
}
term otras {
from protocol local;
then reject;
}
term locales {
from protocol direct;
then reject;
}
}
}

the requirements
================
We need to balance our traffic through those ASs.

the problem
===========
The major traffic goes through AS-3 and only the 2.5% through AS-2. We had probed as-path-prepend, as-path-expand, multipath with an export in forwarding-table, statics routes to 0.0.0.0/0 using two next-hops (the AS-2 and AS-3 routers).
When I turn more preferable AS-2 the traffic across this AS is the 25% of the traffic when it goes through AS-3 and I can't reach some sites.

I'm working on that issue through months and can't find a resolution.

 

Recognized Expert
JunOS_Fan
Posts: 241
Registered: ‎02-13-2012
0

Re: Trying to balance traffic through two BGP peers.

Hi,

 

what's the need for these 2  static routes ? Has the system accepted this config with out any commit error?

 

route 10.0.0.2/30 next-hop 10.0.0.2;
route 10.0.0.3/29 next-hop 10.0.0.3;

what routes are you(AS1) learning from your peers (AS-2 and AS3) ? Just default route or full routing table ?  Take any one prefix which you are learning from both neighbors and check for "show route x.x.x.x/x detail"  this should show two versions of BGP entries (one active *, and other inactive ) . In the inactive route, check for the inactive reason . This should give you an idea of what attribute is causing this inactive.

 

Best regards
Pradeep (JNCIP-SEC,ENT,SP)
www.networker.co.in
Visitor
gnarvaez
Posts: 6
Registered: ‎11-14-2011
0

Re: Trying to balance traffic through two BGP peers.

Hi, 

When I show the route table, I only see BGP on the 0.0.0.0/0 route(BGP/170) and the two AS are in that route.

The "show bgp summary" output is 1/1/1/0 for the AS-3 and 0/1/1/0 to the AS-2 without setting manual preferences, then I make the AS-3 preference lower than AS-2 the data if that command is reversed.

 

All the data in the scheme are fictitious, but respecting relevant data.

Recognized Expert
mhariry
Posts: 340
Registered: ‎06-01-2011
0

Re: Trying to balance traffic through two BGP peers.

Hi,

 

you could check this KB it gives you example for similar to your case and if anything not clear just let me know

 

http://kb.juniper.net/InfoCenter/index?page=content&id=KB17223&actp=RSS

 

Regards,

 

Mohamed Elhariry

 

JNCIE-M/T # 1059, CCNP & CCIP

 

----------------------------------------------------------------------------------------------------------------------------------------

If this post was helpful, please mark this post as an "Accepted Solution".Kudos are always appreciated!

Regards,
Mohamed Elhariry
2* JNCIE (SEC # 159, SP # 1059),JNCIP-ENT

[Click the "Star" for Kudos if you think I earned it!
If this solution worked for you please flag my post as an "Accepted Solution" so others can benefit..]
Copyright© 1999-2013 Juniper Networks, Inc. All rights reserved.