SRX Services Gateway
SRX Services Gateway

Trying to balance traffic through two BGP peers.

04.20.12   |  
‎04-20-2012 12:36 PM

the context
===========
We have a SRX650 (AS-1) and two providers (AS-2, AS-3). We have a static route defined to reach the AS-2 across an external router (R).
We have two ip range to advertise.

This is the config:
-------------------
routing-options {
static {
route 10.0.0.2/30 next-hop 10.0.0.2;
route 10.0.0.3/29 next-hop 10.0.0.3;
route 192.168.0.2/32 next-hop 10.0.0.3;
}
router-id 10.0.0.1;
autonomous-system 1;

protocols {
bgp {
traceoptions {
file analisis_bgp world-readable;
}
multihop {
ttl 255;
}
group ebgp_telecom {
type external;
import desde_bgp;
export para_bgp;
neighbor 10.0.0.2 {
peer-as 3;
}
}
group ebgp_telefonica {
type external;
import desde_bgp;
export para_bgp;
neighbor 192.168.0.2 {
peer-as 2;
}
}
}
}

policy-options {
policy-statement anteposicion {
term todas {
then as-path-prepend "28048 28048 28048 28048";
}
}
policy-statement balanceo {
from {
route-filter 209.13.97.33/32 exact;
route-filter 190.227.196.165/32 exact;
}
then {
load-balance per-packet;
}
}
policy-statement desde_bgp {
term full_table {
from protocol bgp;
then accept;
}
term martians {
from {
route-filter 10.0.0.0/8 orlonger;
route-filter 172.16.0.0/12 orlonger;
route-filter 192.168.0.0/16 orlonger;
}
then reject;
}
}
policy-statement para_bgp {
term export_pooles {
from {
route-filter 190.112.64.0/18 exact;
route-filter 200.91.32.0/21 exact;
}
then accept;
}
term otras {
from protocol local;
then reject;
}
term locales {
from protocol direct;
then reject;
}
}
}

the requirements
================
We need to balance our traffic through those ASs.

the problem
===========
The major traffic goes through AS-3 and only the 2.5% through AS-2. We had probed as-path-prepend, as-path-expand, multipath with an export in forwarding-table, statics routes to 0.0.0.0/0 using two next-hops (the AS-2 and AS-3 routers).
When I turn more preferable AS-2 the traffic across this AS is the 25% of the traffic when it goes through AS-3 and I can't reach some sites.

I'm working on that issue through months and can't find a resolution.

 

Attachments

3 REPLIES
Highlighted
SRX Services Gateway

Re: Trying to balance traffic through two BGP peers.

04.20.12   |  
‎04-20-2012 11:18 PM

Hi,

 

what's the need for these 2  static routes ? Has the system accepted this config with out any commit error?

 

route 10.0.0.2/30 next-hop 10.0.0.2;
route 10.0.0.3/29 next-hop 10.0.0.3;

what routes are you(AS1) learning from your peers (AS-2 and AS3) ? Just default route or full routing table ?  Take any one prefix which you are learning from both neighbors and check for "show route x.x.x.x/x detail"  this should show two versions of BGP entries (one active *, and other inactive ) . In the inactive route, check for the inactive reason . This should give you an idea of what attribute is causing this inactive.

 

Regards,
Pradeep JNCIE-SEC
SRX Services Gateway

Re: Trying to balance traffic through two BGP peers.

04.22.12   |  
‎04-22-2012 03:59 PM

Hi, 

When I show the route table, I only see BGP on the 0.0.0.0/0 route(BGP/170) and the two AS are in that route.

The "show bgp summary" output is 1/1/1/0 for the AS-3 and 0/1/1/0 to the AS-2 without setting manual preferences, then I make the AS-3 preference lower than AS-2 the data if that command is reversed.

 

All the data in the scheme are fictitious, but respecting relevant data.

SRX Services Gateway

Re: Trying to balance traffic through two BGP peers.

04.24.12   |  
‎04-24-2012 12:49 AM

Hi,

 

you could check this KB it gives you example for similar to your case and if anything not clear just let me know

 

http://kb.juniper.net/InfoCenter/index?page=content&id=KB17223&actp=RSS

 

Regards,

 

Mohamed Elhariry

 

JNCIE-M/T # 1059, CCNP & CCIP

 

----------------------------------------------------------------------------------------------------------------------------------------

If this post was helpful, please mark this post as an "Accepted Solution".Kudos are always appreciated!

Regards,
Mohamed Elhariry
2* JNCIE (SEC # 159, SP # 1059),JNCIP-ENT

[Click the "Star" for Kudos if you think I earned it!
If this solution worked for you please flag my post as an "Accepted Solution" so others can benefit..]