|Internet protocol suite|
Border Gateway Protocol (BGP) is a standardized exterior gateway protocol designed to exchange routing and reachability information among autonomous systems (AS) on the Internet. BGP is classified as a path-vector routing protocol, and it makes routing decisions based on paths, network policies, or rule-sets configured by a network administrator.
BGP used for routing within an autonomous system is called Interior Border Gateway Protocol, Internal BGP (iBGP). In contrast, the Internet application of the protocol is called Exterior Border Gateway Protocol, External BGP (eBGP).
The Border Gateway Protocol was sketched out in 1989 by engineers on the back of "three ketchup-stained napkins", and is still known as the three-napkin protocol. It was first described in 1989 in RFC 1105, and has been in use on the Internet since 1994. IPv6 BGP was first defined in RFC 1654 in 1994, and it was improved to RFC 2283 in 1998.
The current version of BGP is version 4 (BGP4), which was published as RFC 4271 in 2006. RFC 4271 corrected errors, clarified ambiguities and updated the specification with common industry practices. The major enhancement was the support for Classless Inter-Domain Routing (CIDR) and use of route aggregation to decrease the size of routing tables. The new RFC allows BGP4 to carry a wide range of IPv4 and IPv6 "address families". It is also called the Multiprotocol Extensions which is Multiprotocol BGP (MP-BGP).
BGP neighbors, called peers, are established by manual configuration among routers to create a TCP session on port 179. A BGP speaker sends 19-byte keep-alive messages every 30 seconds (protocol default value, tunable) to maintain the connection. Among routing protocols, BGP is unique in using TCP as its transport protocol.
When BGP runs between two peers in the same autonomous system (AS), it is referred to as Internal BGP (iBGP or Interior Border Gateway Protocol). When it runs between different autonomous systems, it is called External BGP (eBGP or Exterior Border Gateway Protocol). Routers on the boundary of one AS exchanging information with another AS are called border or edge routers or simply eBGP peers and are typically connected directly, while iBGP peers can be interconnected through other intermediate routers. Other deployment topologies are also possible, such as running eBGP peering inside a VPN tunnel, allowing two remote sites to exchange routing information in a secure and isolated manner.
The main difference between iBGP and eBGP peering is in the way routes that were received from one peer are typically propagated by default to other peers:
- New routes learned from an eBGP peer are re-advertised to all iBGP and eBGP peers.
- New routes learned from an iBGP peer are re-advertised to all eBGP peers only.
These route-propagation rules effectively require that all iBGP peers inside an AS are interconnected in a full mesh with iBGP sessions.
How routes are propagated can be controlled in detail via the route-maps mechanism. This mechanism consists of a set of rules. Each rule describes, for routes matching some given criteria, what action should be taken. The action could be to drop the route, or it could be to modify some attributes of the route before inserting it in the routing table.
During the peering handshake, when OPEN messages are exchanged, BGP speakers can negotiate optional capabilities of the session, including multiprotocol extensions and various recovery modes. If the multiprotocol extensions to BGP are negotiated at the time of creation, the BGP speaker can prefix the Network Layer Reachability Information (NLRI) it advertises with an address family prefix. These families include the IPv4 (default), IPv6, IPv4/IPv6 Virtual Private Networks and multicast BGP. Increasingly, BGP is used as a generalized signaling protocol to carry information about routes that may not be part of the global Internet, such as VPNs.
In order to make decisions in its operations with peers, a BGP peer uses a simple finite state machine (FSM) that consists of six states: Idle; Connect; Active; OpenSent; OpenConfirm; and Established. For each peer-to-peer session, a BGP implementation maintains a state variable that tracks which of these six states the session is in. The BGP defines the messages that each peer should exchange in order to change the session from one state to another.
The first state is the Idle state. In the Idle state, BGP initializes all resources, refuses all inbound BGP connection attempts and initiates a TCP connection to the peer. The second state is Connect. In the Connect state, the router waits for the TCP connection to complete and transitions to the OpenSent state if successful. If unsuccessful, it starts the ConnectRetry timer and transitions to the Active state upon expiration. In the Active state, the router resets the ConnectRetry timer to zero and returns to the Connect state. In the OpenSent state, the router sends an Open message and waits for one in return in order to transition to the OpenConfirm state. Keepalive messages are exchanged and, upon successful receipt, the router is placed into the Established state. In the Established state, the router can send and receive: Keepalive; Update; and Notification messages to and from its peer.
- Idle State:
- Refuse all incoming BGP connections.
- Start the initialization of event triggers.
- Initiates a TCP connection with its configured BGP peer.
- Listens for a TCP connection from its peer.
- Changes its state to Connect.
- If an error occurs at any state of the FSM process, the BGP session is terminated immediately and returned to the Idle state. Some of the reasons why a router does not progress from the Idle state are:
- TCP port 179 is not open.
- A random TCP port over 1023 is not open.
- Peer address configured incorrectly on either router.
- AS number configured incorrectly on either router.
- Connect State:
- Waits for successful TCP negotiation with peer.
- BGP does not spend much time in this state if the TCP session has been successfully established.
- Sends Open message to peer and changes state to OpenSent.
- If an error occurs, BGP moves to the Active state. Some reasons for the error are:
- TCP port 179 is not open.
- A random TCP port over 1023 is not open.
- Peer address configured incorrectly on either router.
- AS number configured incorrectly on either router.
- Active State:
- If the router was unable to establish a successful TCP session, then it ends up in the Active state.
- BGP FSM tries to restart another TCP session with the peer and, if successful, then it sends an Open message to the peer.
- If it is unsuccessful again, the FSM is reset to the Idle state.
- Repeated failures may result in a router cycling between the Idle and Active states. Some of the reasons for this include:
- TCP port 179 is not open.
- A random TCP port over 1023 is not open.
- BGP configuration error.
- Network congestion.
- Flapping network interface.
- OpenSent State:
- BGP FSM listens for an Open message from its peer.
- Once the message has been received, the router checks the validity of the Open message.
- If there is an error it is because one of the fields in the Open message does not match between the peers, e.g., BGP version mismatch, the peering router expects a different My AS, etc. The router then sends a Notification message to the peer indicating why the error occurred.
- If there is no error, a Keepalive message is sent, various timers are set and the state is changed to OpenConfirm.
- OpenConfirm State:
- The peer is listening for a Keepalive message from its peer.
- If a Keepalive message is received and no timer has expired before reception of the Keepalive, BGP transitions to the Established state.
- If a timer expires before a Keepalive message is received, or if an error condition occurs, the router transitions back to the Idle state.
- Established State:
- In this state, the peers send Update messages to exchange information about each route being advertised to the BGP peer.
- If there is any error in the Update message then a Notification message is sent to the peer, and BGP transitions back to the Idle state.
Router connectivity and learning routes
This section may be too technical for most readers to understand.(April 2021)
In the simplest arrangement, all routers within a single AS and participating in BGP routing must be configured in a full mesh: each router must be configured as a peer to every other router. This causes scaling problems, since the number of required connections grows quadratically with the number of routers involved. To alleviate the problem, BGP implements two options: route reflectors (RFC 4456) and BGP confederations (RFC 5065). The following discussion of basic update processing assumes a full iBGP mesh.
A given BGP router may accept network-layer reachability information (NLRI) updates from multiple neighbors and advertise NLRI to the same, or a different set, of neighbors. The BGP process maintains several routing information base:
RIB: routers main routing information base table.
Loc-RIB: local routing information base BGP maintains its own master routing table separate from the main routing table of the router.
Adj-RIB-In: For each neighbor, the BGP process maintains a conceptual adjacent routing information base, incoming, containing the NLRI received from the neighbor.
Adj-RIB-Out: For each neighbor, the BGP process maintains a conceptual adjacent routing information base, outgoing , containing the NLRI send to the neighbor.
The physical storage and structure of these conceptual tables are decided by the implementer of the BGP code. Their structure is not visible to other BGP routers, although they usually can be interrogated with management commands on the local router. It is quite common, for example, to store the
Adj-RIB-Out and the
Loc-RIB together in the same data structure, with additional information attached to the RIB entries. The additional information tells the BGP process such things as whether individual entries belong in the
Adj-RIBs for specific neighbors, whether the peer-neighbor route selection process made received policies eligible for the
Loc-RIB, and whether
Loc-RIB entries are eligible to be submitted to the local router's routing table management process.
BGP submits the routes that it considers best to the main routing table process. Depending on the implementation of that process, the BGP route is not necessarily selected. For example, a directly connected prefix, learned from the router's own hardware, is usually most preferred. As long as that directly connected route's interface is active, the BGP route to the destination will not be put into the routing table. Once the interface goes down, and there are no more preferred routes, the Loc-RIB route would be installed in the main routing table.
BGP carries the information with which rules inside BGP-speaking routers can make policy decisions. Some of the information carried that is explicitly intended to be used in policy decisions are:
Route selection process
The BGP standard specifies a number of decision factors, more than the ones that are used by any other common routing process, for selecting NLRI to go into the Loc-RIB. The first decision point for evaluating NLRI is that its next-hop attribute must be reachable (or resolvable). Another way of saying the next-hop must be reachable is that there must be an active route, already in the main routing table of the router, to the prefix in which the next-hop address is reachable.
Next, for each neighbor, the BGP process applies various standard and implementation-dependent criteria to decide which routes conceptually should go into the Adj-RIB-In. The neighbor could send several possible routes to a destination, but the first level of preference is at the neighbor level. Only one route to each destination will be installed in the conceptual Adj-RIB-In. This process will also delete, from the Adj-RIB-In, any routes that are withdrawn by the neighbor.
Whenever a conceptual Adj-RIB-In changes, the main BGP process decides if any of the neighbor's new routes are preferred to routes already in the Loc-RIB. If so, it replaces them. If a given route is withdrawn by a neighbor, and there is no other route to that destination, the route is removed from the Loc-RIB and no longer sent by BGP to the main routing table manager. If the router does not have a route to that destination from any non-BGP source, the withdrawn route will be removed from the main routing table.
As long as there is tiebreaker the route selection process moves to the next step.
|1||Local to router||local Weight||"Off"||Higher||Cisco-specific parameter|
|2||Internal to AS||Local preference||"Off", all set to 100.||Higher||LOCAL_PREF||If there are several iBGP routes from the neighbor, the one with the highest local preference is selected unless there are several routes with the same local preference.|
|3||Accumulated Interior Gateway Protocol (AIGP)||"Off"||Lowest||AIGP||rfc7311|
|4||External to AS||Autonomous system (AS) jumps||"On", skipped if ignored in configuration||Lowest||AS-path||AS jumps is the number of AS numbers that must be traversed to reach the advertised destination. AS1–AS2–AS3 is a shorter path with fewer jumps than AS4–AS5–AS6–AS7.|
|5||origin type||"IGP"||Lowest||ORIGIN||0 = IGP|
1 = EGP
2 = Incomplete
|6||multi-exit discriminator (MED)||"on", imported from IGP||Lowest||MULTI_EXIT_DISC||By default only route with the same autonomous system (AS) is compared. Can be set to ignore same autonomous system (AS). |
By default Internal IGP is not added. Can be set to add IGP metric. Before the most recent edition of the BGP standard, if an update had no MED value, several implementations created a MED with the highest possible value. The current standard specifies that missing MEDs are treated as the lowest possible value. Since the current rule may cause different behavior than the vendor interpretations, BGP implementations that used the nonstandard default value have a configuration feature that allows the old or standard rule to be selected.
|7||Local to router (Loc-RIB)||eBGP over iBGP paths||"on"||Directly connected, over indirectly|
|8||IGP metric to BGP next hop||"on", imported from IGP||Lowest||Continue, even if bestpath is already selected. Prefer the route with the lowest interior cost to the next hop, according to the main routing table. If two neighbors advertised the same route, but one neighbor is reachable via a low-bitrate link and the other by a high-bitrate link, and the interior routing protocol calculates lowest cost based on highest bitrate, the route through the high-bitrate link would be preferred and other routes dropped.|
|9||Path that was received first||"on"||oldest||Used to ignore changes on the steps 10+|
|11||Cluster list length||"on"||Lowest|
The local preference, weight, and other criteria can be manipulated by local configuration and software capabilities. Such manipulation, although commonly used, is outside the scope of the standard. For example, the community attribute (see below) is not directly used by the BGP selection process. The BGP neighbor process can have a rule to set local preference or another factor based on a manually programmed rule to set the attribute if the community value matches some pattern-matching criterion. If the route was learned from an external peer the per-neighbor BGP process computes a local preference value from local policy rules and then compares the local preference of all routes from the neighbor.
BGP communities are attribute tags that can be applied to incoming or outgoing prefixes to achieve some common goal. While it is common to say that BGP allows an administrator to set policies on how prefixes are handled by ISPs, this is generally not possible, strictly speaking. For instance, BGP natively has no concept to allow one AS to tell another AS to restrict advertisement of a prefix to only North American peering customers. Instead, an ISP generally publishes a list of well-known or proprietary communities with a description for each one, which essentially becomes an agreement of how prefixes are to be treated.
|0x00010000-0xFFFEFFFF||Reserved for private use||RFC 1997|
|0xFFFF0000||GRACEFUL_SHUTDOWN||At neighbor AS-peer, set LOCAL_PREF, lower to route away from source.||RFC 8326|
|0xFFFF0001||ACCEPT_OWN||Used to modify how a route originated within one VRF is imported into other VRFs||RFC 7611|
|0xFFFF0009||Standby PE||Allow for faster recovery of connectivity on different types of failures, with multicast in BGP/MPLS VPNs.||RFC 9026|
|0xFFFF029A||BLACKHOLE||To temporary protect against denial-of-service attack, by enable blackhole at neighbour AS-peer||RFC 7999|
|0xFFFFFF01||NO_EXPORT||limit to a BGP confederation boundary||RFC 1997|
|0xFFFFFF02||NO_ADVERTISE||limit to a BGP peer||RFC 1997|
|0xFFFFFF03||NO_EXPORT_SUBCONFED||limit to the autonomous system||RFC 1997|
|0xFFFFFF04||NOPEER||to limited the number of specific routes to all of internet. For multi-home AS, that have 2 or more neighbour, that like to load balance, where they will specific a more detailed route.||RFC 3765|
Examples of common communities include:
- local preference adjustments,
- peer type restrictions
- denial-of-service attack identification
- AS prepending options.
An ISP might state that any routes received from customers with following examples:
- To Customers North America (East Coast) 3491:100
- To Customers North America (West Coast) 3491:200
The customer simply adjusts their configuration to include the correct community or communities for each route, and the ISP is responsible for controlling who the prefix is advertised to. The end user has no technical ability to enforce correct actions being taken by the ISP, though problems in this area are generally rare and accidental.
It is a common tactic for end customers to use BGP communities (usually ASN:70,80,90,100) to control the local preference the ISP assigns to advertised routes instead of using MED (the effect is similar). The community attribute is transitive, but communities applied by the customer very rarely propagated outside the next-hop AS. Not all ISPs give out their communities to the public.
BGP Extended Community Attribute
The BGP Extended Community Attribute was added in 2006, in order to extend the range of such attributes and to provide a community attribute structuring by means of a type field. The extended format consists of one or two octets for the type field followed by seven or six octets for the respective community attribute content. The definition of this Extended Community Attribute is documented in RFC 4360. The IANA administers the registry for BGP Extended Communities Types. The Extended Communities Attribute itself is a transitive optional BGP attribute. A bit in the type field within the attribute decides whether the encoded extended community is of a transitive or non-transitive nature. The IANA registry therefore provides different number ranges for the attribute types. Due to the extended attribute range, its usage can be manifold. RFC 4360 exemplarily defines the "Two-Octet AS Specific Extended Community", the "IPv4 Address Specific Extended Community", the "Opaque Extended Community", the "Route Target Community", and the "Route Origin Community". A number of BGP QoS drafts also use this Extended Community Attribute structure for inter-domain QoS signalling.
With the introduction of 32-bit AS numbers, some issues were immediately obvious with the community attribute that only defines a 16-bit ASN field, which prevents the matching between this field and the real ASN value. Since RFC 7153, extended communities are compatible with 32-bit ASNs. RFC 8092 and RFC 8195 introduce a Large Community attribute of 12 bytes, divided in three field of 4 bytes each (AS:function:parameter).
MEDs, defined in the main BGP standard, were originally intended to show to another neighbor AS the advertising AS's preference as to which of several links are preferred for inbound traffic. Another application of MEDs is to advertise the value, typically based on delay, of multiple ASs that have a presence at an IXP, that they impose to send traffic to some destination.
Some routers (like Juniper) will use the Metric from OSPF to set MED.
Examples of MED used with BGP when exported to BGP on juniper SRX
# run show ospf route Topology default Route Table: Prefix Path Route NH Metric NextHop Nexthop Type Type Type Interface Address/LSP 10.32.37.0/24 Inter Discard IP 16777215 10.32.37.0/26 Intra Network IP 101 ge-0/0/1.0 10.32.37.241 10.32.37.64/26 Intra Network IP 102 ge-0/0/1.0 10.32.37.241 10.32.37.128/26 Intra Network IP 101 ge-0/0/1.0 10.32.37.241 #show route advertising-protocol bgp 10.32.94.169 Prefix Nexthop MED Lclpref AS path * 10.32.37.0/24 Self 16777215 I * 10.32.37.0/26 Self 101 I * 10.32.37.64/26 Self 102 I * 10.32.37.128/26 Self 101 I
Message header format
|0||Marker (always: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff)|
- Marker: Included for compatibility, must be set to all ones.
- Length: Total length of the message in octets, including the header.
- Type: Type of BGP message. The following values are defined:
- Open (1)
- Update (2)
- Notification (3)
- KeepAlive (4)
- Route-Refresh (5)
note: "Marker" and "Length" is omitted from the examples.
- Version (8bit)
- Version of BGP used.
- My AS (16bit)
- Senders autonomous system number.
- Hold Time (16bit)
- Timeout timer, used to calculate KeepAlive messages. Default 90 seconds.
- BGP Identifier (32bit)
- IP-address of sender.
- Optional Parameters Length (8 bit): total length of the Optional parameters field.
Example of Open Message
Type: Open Message (1) Version: 4 My AS: 64496 Hold Time: 90 BGP Identifier: 192.0.2.254 Optional Parameters Length: 16 Optional Parameters: Capability: Multiprotocol extensions capability (1) Capability: Route refresh capability (2) Capability: Route refresh capability (Cisco) (128)
Only changes are sent, after initial exchange, only difference (add/change/removed) are sent.
Example of UPDATE Message
Type: UPDATE Message (2) Withdrawn Routes Length: 0 Total Path Attribute Length: 25 Path attributes ORIGIN: IGP AS_PATH: 64500 NEXT_HOP: 192.0.2.254 MULTI_EXIT_DISC: 0 Network Layer Reachability Information (NLRI) 192.0.2.0/27 192.0.2.32/27 192.0.2.64/27
If there is an error it is because one of the fields in the OPEN or UPDATE message does not match between the peers, e.g., BGP version mismatch, the peering router expects a different My AS, etc. The router then sends a Notification message to the peer indicating why the error occurred.
|1||Message Header Error||1||Connection Not Synchronized|
|2||Bad Message Length|
|3||Bad Message Type|
|2||OPEN Message Error||1||Unsupported Version Number.|
|2||Bad Peer AS.|
|3||Bad BGP Identifier.|
|4||Unsupported Authentication Code.|
|6||Unacceptable Hold Time.|
|3||UPDATE Message Error||1||Malformed Attribute List.|
|2||Unrecognized Well-known Attribute.|
|3||Missing Well-known Attribute.|
|4||Attribute Flags Error.|
|5||Attribute Length Error.|
|6||Invalid ORIGIN Attribute|
|7||AS Routing Loop.|
|8||Invalid NEXT_HOP Attribute.|
|9||Optional Attribute Error.|
|10||Invalid Network Field.|
|4||Hold Timer Expired|
|5||Finite State Machine Error|
Example of NOTIFICATION Message
Type: NOTIFICATION Message (3) Major error Code: OPEN Message Error (2) Minor error Code (Open Message): Bad Peer AS (2) Bad Peer AS: 65200
KeepAlive messages are sent periodically, to verify that remote peer is still alive.
keepalives should be sent at intervals of one third the
Example of KEEPALIVE Message
Type: KEEPALIVE Message (4)
Defined in RFC7313.
Allows for soft updating of
Adj-RIB-in, without resetting connection.
Example of ROUTE-REFRESH Message
Type: ROUTE-REFRESH Message (5) Address family identifier (AFI): IPv4 (1) Subtype: Normal route refresh request [RFC2918] with/without ORF [RFC5291] (0) Subsequent address family identifier (SAFI): Unicast (1)
BGP is "the most scalable of all routing protocols."
An autonomous system with internal BGP (iBGP) must have all of its iBGP peers connect to each other in a full mesh (where everyone speaks to everyone directly). This full-mesh configuration requires that each router maintain a session with every other router. In large networks, this number of sessions may degrade the performance of routers, due to either a lack of memory, or high CPU process requirements.
Route reflectors (RRs) reduce the number of connections required in an AS. A single router (or two for redundancy) can be made an RR: other routers in the AS need only be configured as peers to them. An RR offers an alternative to the logical full-mesh requirement of iBGP. The purpose of the RR is concentration. Multiple BGP routers can peer with a central point, the RR – acting as an RR server – rather than peer with every other router in a full mesh. All the other iBGP routers become RR clients.
This approach, similar to OSPF's DR/BDR feature, provides large networks with added iBGP scalability. In a fully meshed iBGP network of 10 routers, 90 individual CLI statements (spread throughout all routers in the topology) are needed just to define the remote-AS of each peer: this quickly becomes a headache to manage. An RR topology can cut these 90 statements down to 18, offering a viable solution for the larger networks administered by ISPs.
An RR is a single point of failure, therefore at least a second RR may be configured in order to provide redundancy. As it is an additional peer for the other 10 routers, it approximately doubles the number of CLI statements, requiring an additional 11 × 2 − 2 = 20 statements in this case. In a BGP multipath environment the additional RR also can benefit the network by adding local routing throughput if the RRs are acting as traditional routers instead of just a dedicated RR server role.
RRs and confederations both reduce the number of iBGP peers to each router and thus reduce processing overhead. RRs are a pure performance-enhancing technique, while confederations also can be used to implement more fine-grained policy.
RR servers propagate routes inside the AS based on the following rules:
- Routes are always reflected to eBGP peers.
- Routes are never reflected to the originator of the route.
- If a route is received from a non-client peer, reflect to client peers.
- If a route is received from a client peer, reflect to client and non-client peers.
An RR and its clients form a cluster. The cluster ID is then attached to every route advertised by the RR to its client or nonclient peers. A cluster ID is a cumulative, non-transitive BGP attribute, and every RR must prepend the local cluster ID to the cluster list to avoid routing loops.
Confederations are sets of autonomous systems. In common practice, only one of the confederation AS numbers is seen by the Internet as a whole. Confederations are used in very large networks where a large AS can be configured to encompass smaller more manageable internal ASs.
The confederated AS is composed of multiple ASs. Each confederated AS alone has iBGP fully meshed and has connections to other ASs inside the confederation. Even though these ASs have eBGP peers to ASs within the confederation, the ASs exchange routing as if they used iBGP. In this way, the confederation preserves next hop, metric, and local preference information. To the outside world, the confederation appears to be a single AS. With this solution, iBGP transit AS problems can be resolved as iBGP requires a full mesh between all BGP routers: large number of TCP sessions and unnecessary duplication of routing traffic.[clarification needed]
Confederations can be used in conjunction with route reflectors. Both confederations and route reflectors can be subject to persistent oscillation unless specific design rules, affecting both BGP and the interior routing protocol, are followed.
These alternatives can introduce problems of their own, including the following:
- route oscillation
- sub-optimal routing
- increase of BGP convergence time
Additionally, route reflectors and BGP confederations were not designed to ease BGP router configuration. Nevertheless, these are common tools for experienced BGP network architects. These tools may be combined, for example, as a hierarchy of route reflectors.
The routing tables managed by a BGP implementation are adjusted continually to reflect actual changes in the network, such as links or routers going down and coming back up. In the network as a whole, it is normal for these changes to happen almost continuously, but for any particular router or link, changes are expected to be relatively infrequent. If a router is misconfigured or mismanaged then it may get into a rapid cycle between down and up states. This pattern of repeated withdrawal and re-announcement known as route flapping can cause excessive activity in all the other routers that know about the cycling entity, as the same route is continually injected and withdrawn from the routing tables. The BGP design is such that delivery of traffic may not function while routes are being updated. On the Internet, a BGP routing change may cause outages for several minutes.
A feature known as route flap damping (RFC 2439) is built into many BGP implementations in an attempt to mitigate the effects of route flapping. Without damping, the excessive activity can cause a heavy processing load on routers, which may in turn delay updates on other routes, and so affect overall routing stability. With damping, a route's flapping is exponentially decayed. At the first instance when a route becomes unavailable and quickly reappears, damping does not take effect, so as to maintain the normal fail-over times of BGP. At the second occurrence, BGP shuns that prefix for a certain length of time; subsequent occurrences are ignored exponentially longer. After the abnormalities have ceased and a suitable length of time has passed for the offending route, prefixes can be reinstated with a clean slate. Damping can also mitigate denial-of-service attacks.
It is also suggested in RFC 2439: Section 4 that route flap damping is a feature more desirable if implemented to Exterior Border Gateway Protocol Sessions (eBGP sessions or simply called exterior peers) and not on Interior Border Gateway Protocol Sessions (iBGP sessions or simply called internal peers). With this approach when a route flaps inside an autonomous system, it is not propagated to the external ASs – flapping a route to an eBGP will cause a chain of flapping for the particular route throughout the backbone. This method also successfully avoids the overhead of route flap damping for iBGP sessions.
Subsequent research has shown that flap damping can actually lengthen convergence times in some cases, and can cause interruptions in connectivity even when links are not flapping. Moreover, as backbone links and router processors have become faster, some network architects have suggested that flap damping may not be as important as it used to be, since changes to the routing table can be handled much faster by routers. This has led the RIPE Routing Working Group to write, "With the current implementations of BGP flap damping, the application of flap damping in ISP networks is NOT recommended. ... If flap damping is implemented, the ISP operating that network will cause side-effects to their customers and the Internet users of their customers' content and services ... . These side-effects would quite likely be worse than the impact caused by simply not running flap damping at all." Improving stability without the problems of flap damping is the subject of current research.[needs update]
Routing table growth
One of the largest problems faced by BGP, and indeed the Internet infrastructure as a whole, is the growth of the Internet routing table. If the global routing table grows to the point where some older, less capable routers cannot cope with the memory requirements or the CPU load of maintaining the table, these routers will cease to be effective gateways between the parts of the Internet they connect. In addition, and perhaps even more importantly, larger routing tables take longer to stabilize after a major connectivity change, leaving network service unreliable, or even unavailable, in the interim.
Until late 2001, the global routing table was growing exponentially, threatening an eventual widespread breakdown of connectivity. In an attempt to prevent this, ISPs cooperated in keeping the global routing table as small as possible, by using Classless Inter-Domain Routing (CIDR) and route aggregation. While this slowed the growth of the routing table to a linear process for several years, with the expanded demand for multihoming by end-user networks the growth was once again superlinear by the middle of 2004.
A Y2K-like overflow triggered in 2014 for those models that were not appropriately updated.
While a full IPv4 BGP table as of August 2014[update] (512k day) was in excess of 512,000 prefixes, many older routers had a limit of 512k (512,000–524,288) routing table entries. On August 12, 2014, outages resulting from full tables hit eBay, LastPass and Microsoft Azure among others. A number of Cisco routers commonly in use had TCAM, a form of high-speed content-addressable memory, for storing BGP advertised routes. On impacted routers, the TCAM was by default allocated as 512k IPv4 routes and 256k IPv6 routes. While the reported number of IPv6 advertised routes was only about 20k, the number of advertised IPv4 routes reached the default limit, causing a spillover effect as routers attempted to compensate for the issue by using slow software routing (as opposed to fast hardware routing via TCAM). The main method for dealing with this issue involves operators changing the TCAM allocation to allow more IPv4 entries, by reallocating some of the TCAM reserved for IPv6 routes, which requires a reboot on most routers. The 512k problem was predicted by a number of IT professionals.
The actual allocations which pushed the number of routes above 512k was the announcement of about 15,000 new routes in short order, starting at 07:48 UTC. Almost all of these routes were to Verizon Autonomous Systems 701 and 705, created as a result of deaggregation of larger blocks, introducing thousands of new /24 routes, and making the routing table reach 515,000 entries. The new routes appear to have been reaggregated within 5 minutes, but instability across the Internet apparently continued for a number of hours. Even if Verizon had not caused the routing table to exceed 512k entries in the short spike, it would have soon happened through natural growth.
Route summarization is often used to improve aggregation of the BGP global routing table, thereby reducing the necessary table size in routers of an AS. Consider AS1 has been allocated the big address space of 172.16.0.0/16, this would be counted as one route in the table, but due to customer requirements or traffic engineering purposes, AS1 wants to announce smaller, more specific routes of 172.16.0.0/18, 172.16.64.0/18, and 172.16.128.0/18. The prefix 172.16.192.0/18 does not have any hosts so AS1 does not announce a specific route 172.16.192.0/18. This all counts as AS1 announcing four routes.
AS2 will see the four routes from AS1 (172.16.0.0/16, 172.16.0.0/18, 172.16.64.0/18, and 172.16.128.0/18) and it is up to the routing policy of AS2 to decide whether or not to take a copy of the four routes or, as 172.16.0.0/16 overlaps all the other specific routes, to just store the summary, 172.16.0.0/16.
If AS2 wants to send data to prefix 172.16.192.0/18, it will be sent to the routers of AS1 on route 172.16.0.0/16. At AS1, it will either be dropped or a destination unreachable ICMP message will be sent back, depending on the configuration of AS1's routers.
If AS1 later decides to drop the route 172.16.0.0/16, leaving 172.16.0.0/18, 172.16.64.0/18, and 172.16.128.0/18, the number of routes AS1 announces drops to three. Depending on the routing policy of AS2, it will store a copy of the three routes, or aggregate 172.16.0.0/18 and 172.16.64.0/18 to 172.16.0.0/17, thereby reducing the number of routes AS2 stores to two (172.16.0.0/17 and 172.16.128.0/18).
If AS2 now wants to send data to prefix 172.16.192.0/18, it will be dropped or a destination unreachable ICMP message will be sent back at the routers of AS2 (not AS1 as before), because 172.16.192.0/18 is not in the routing table.
AS number depletion and 32-bit ASNs
The RFC 1771 BGP-4 specification coded AS numbers on 16 bits, for 64,510 possible public AS numbers.[a] In 2011, only 15,000 AS numbers were still available, and projections were envisioning a complete depletion of available AS numbers in September 2013.
RFC 6793 extends AS coding from 16 to 32 bits,[b] which now allows up to 4 billion available AS. An additional private AS range is also defined in RFC 6996.[c] To allow the traversal of router groups not able to manage those new ASNs, the new attribute AS4_PATH (optional transitive) is used. 32-bit ASN assignments started in 2007.
Another factor contributing to the growth of the routing table is the need for load balancing of multi-homed networks. It is not a trivial task to balance the inbound traffic to a multi-homed network across its multiple inbound paths, due to limitation of the BGP route selection process. For a multi-homed network, if it announces the same network blocks across all of its BGP peers, the result may be that one or several of its inbound links become congested while the other links remain under-utilized, because external networks all picked that set of congested paths as optimal. Like most other routing protocols, BGP does not detect congestion.
To work around this problem, BGP administrators of that multihomed network may divide a large contiguous IP address block into smaller blocks and tweak the route announcement to make different blocks look optimal on different paths, so that external networks will choose a different path to reach different blocks of that multi-homed network. Such cases will increase the number of routes as seen on the global BGP table.
One method to address the routing table issue associated with load balancing is to deploy Locator/Identifier Separation Protocol (BGP/LISP) gateways within an Internet exchange point to allow ingress traffic engineering across multiple links. This technique does not increase the number of routes seen on the global BGP table.
By design, routers running BGP accept advertised routes from other BGP routers by default. This allows for automatic and decentralized routing of traffic across the Internet, but it also leaves the Internet potentially vulnerable to accidental or malicious disruption, known as BGP hijacking. Due to the extent to which BGP is embedded in the core systems of the Internet, and the number of different networks operated by many different organizations which collectively make up the Internet, correcting this vulnerability (such as by introducing the use of cryptographic keys to verify the identity of BGP routers) is a technically and economically challenging problem.
Multiprotocol Extensions for BGP (MBGP), sometimes referred to as Multiprotocol BGP or Multicast BGP and defined in RFC 4760, is an extension to BGP that allows different types of addresses (known as address families) to be distributed in parallel. Whereas standard BGP supports only IPv4 unicast addresses, Multiprotocol BGP supports IPv4 and IPv6 addresses and it supports unicast and multicast variants of each. Multiprotocol BGP allows information about the topology of IP multicast-capable routers to be exchanged separately from the topology of normal IPv4 unicast routers. Thus, it allows a multicast routing topology different from the unicast routing topology. Although MBGP enables the exchange of inter-domain multicast routing information, other protocols such as the Protocol Independent Multicast family are needed to build trees and forward multicast traffic.
Multiprotocol BGP is also widely deployed in case of MPLS L3 VPN, to exchange VPN labels learned for the routes from the customer sites over the MPLS network, in order to distinguish between different customer sites when the traffic from the other customer sites comes to the provider edge router for routing.
Another extension to BGP is multipath routing. This typically requires identical MED, weight, origin, and AS-path although some implementations provide the ability to relax the AS-path checking to only expect an equal path length rather than the actual AS numbers in the path being expected to match too. This can then be extended further with features like Cisco's dmzlink-bw which enables a ratio of traffic sharing based on bandwidth values configured on individual links.
BGP4 is standard for Internet routing and required of most Internet service providers (ISPs) to establish routing between one another. Very large private IP networks use BGP internally. An example is the joining of a number of large Open Shortest Path First (OSPF) networks, when OSPF by itself does not scale to the size required. Another reason to use BGP is multihoming a network for better redundancy, either to multiple access points of a single ISP or to multiple ISPs.
Routers, especially small ones intended for small office/home office (SOHO) use, may not include BGP software. Some SOHO routers simply are not capable of running BGP or using BGP routing tables of any size. Other commercial routers may need a specific software executable image that contains BGP, or a license that enables it. Devices marketed as Layer 3 switches are less likely to support BGP than devices marketed as routers, but high-end Layer 3 switches usually can run BGP.
Products marketed as switches may or may not have a size limitation on BGP tables, such as 20,000 routes, far smaller than a full Internet table plus internal routes. These devices may be perfectly reasonable and useful when used for BGP routing of some smaller part of the network, such as a confederation-AS representing one of several smaller enterprises that are linked, by a BGP backbone of backbones, or a small enterprise that announces routes to an ISP but only accepts a default route and perhaps a small number of aggregated routes.
A BGP router used only for a network with a single point of entry to the Internet may have a much smaller routing table size (and hence RAM and CPU requirement) than a multihomed network. Even simple multihoming can have modest routing table size. See RFC 4098 for vendor-independent performance parameters for single-BGP-router convergence in the control plane. The actual amount of memory required in a BGP router depends on the amount of BGP information exchanged with other BGP speakers and the way in which the particular router stores BGP information. The router may have to keep more than one copy of a route, so it can manage different policies for route advertising and acceptance to a specific neighboring AS. The term view is often used for these different policy relationships on a running router.
If one router implementation takes more memory per route than another implementation, this may be a legitimate design choice, trading processing speed against memory. A full IPv4 BGP table as of August 2015[update] is in excess of 590,000 prefixes. Large ISPs may add another 50% for internal and customer routes. Again depending on implementation, separate tables may be kept for each view of a different peer AS.
Notable free and open-source implementations of BGP include:
- BIRD, a GPL routing package for Unix-like systems.
- FRRouting, a fork of Quagga for Unix-like systems ; and its ancestors:
- OpenBGPD, a BSD-licensed implementation by the OpenBSD team.
- XORP, the eXtensible Open Router Platform, a BSD-licensed suite of routing protocols.
Systems for testing BGP conformance, load or stress performance come from vendors such as:
- RFC 1772, Application of the Border Gateway Protocol in the Internet Protocol (BGP-4) using SMIv2
- RFC 1997, BGP Communities Attribute
- RFC 2439, BGP Route Flap Damping
- RFC 2918, Route Refresh Capability for BGP-4
- RFC 3765, NOPEER Community for Border Gateway Protocol (BGP) Route Scope Control
- RFC 4271, A Border Gateway Protocol 4 (BGP-4)
- RFC 4272, BGP Security Vulnerabilities Analysis
- RFC 4273, Definitions of Managed Objects for BGP-4
- RFC 4274, BGP-4 Protocol Analysis
- RFC 4275, BGP-4 MIB Implementation Survey
- RFC 4276, BGP-4 Implementation Report
- RFC 4277, Experience with the BGP-4 Protocol
- RFC 4278, Standards Maturity Variance Regarding the TCP MD5 Signature Option (RFC 2385) and the BGP-4 Specification
- RFC 4360, BGP Extended Communities Attribute
- RFC 4456, BGP Route Reflection – An Alternative to Full Mesh Internal BGP (iBGP)
- RFC 4724, Graceful Restart Mechanism for BGP
- RFC 4760, Multiprotocol Extensions for BGP-4
- RFC 5065, Autonomous System Confederations for BGP
- RFC 5492, Capabilities Advertisement with BGP-4
- RFC 5575, Dissemination of Flow Specification Rules
- RFC 5701, IPv6 Address Specific BGP Extended Community Attribute
- RFC 6793, BGP Support for Four-Octet Autonomous System (AS) Number Space
- RFC 7153, IANA Registries for BGP Extended Communities
- RFC 7606, Revised Error Handling for BGP UPDATE Messages
- RFC 7752, North-Bound Distribution of Link-State and Traffic Engineering Information Using BGP
- RFC 7911, Advertisement of Multiple Paths in BGP
- RFC 8092, BGP Large Communities Attribute
- RFC 8195, Use of BGP Large Communities
- RFC 8642, Policy Behavior for Well-Known BGP Communities
- draft-ietf-idr-custom-decision-08 – BGP Custom Decision Process, Feb 3, 2017
- Selective Route Refresh for BGP, IETF draft
- RFC 1105, Obsolete – Border Gateway Protocol (BGP)
- RFC 1654, Obsolete – A Border Gateway Protocol 4 (BGP-4)
- RFC 1655, Obsolete – Application of the Border Gateway Protocol in the Internet
- RFC 1657, Obsolete – Definitions of Managed Objects for the Fourth Version of the Border Gateway
- RFC 1771, Obsolete – A Border Gateway Protocol 4 (BGP-4)
- RFC 1965, Obsolete – Autonomous System Confederations for BGP
- RFC 2796, Obsolete – BGP Route Reflection – An Alternative to Full Mesh iBGP
- RFC 2858, Obsolete – Multiprotocol Extensions for BGP-4
- RFC 3065, Obsolete – Autonomous System Confederations for BGP
- RFC 3392, Obsolete – Capabilities Advertisement with BGP-4
- RFC 4893, Obsolete – BGP Support for Four-octet AS Number Space
- 2021 Facebook outage
- AS 7007 incident
- Internet Assigned Numbers Authority
- Packet forwarding
- Private IP
- Regional Internet registry
- Route analytics
- Route filtering
- Routing Assets Database
- ASN 64512 to 65534 were reserved for private use and 0 and 65535 are forbidden.
- The 16-bit AS range 0 to 65535 and its reserved AS numbers are retained.
- ASN 4200000000 to 4294967294 are private and 4294967295 is forbidden by RFC 7300.
- "BGP: Border Gateway Protocol Explained". Orbit-Computer Solutions.Com. Archived from the original on 2013-09-28. Retrieved 2013-10-08.
- Sobrinho, João Luís (2003). "Network Routing with Path Vector Protocols: Theory and Applications" (PDF). Archived (PDF) from the original on 2010-07-14. Retrieved March 16, 2018.
- Timberg, Craig (31 May 2015). "Net of Insecurity; Quick fix for an early Internet problem lives on a quarter-century later". The Washington Post. Archived from the original on 1 June 2015. Retrieved 4 January 2021.
As the prospect of system meltdown loomed, the men began scribbling ideas for a solution onto the back of a ketchup-stained napkin. Then a second. Then a third. The "three-napkins protocol," as its inventors jokingly dubbed it, would soon revolutionize the Internet. And though there were lingering issues, the engineers saw their creation as a "hack" or "kludge," slang for a short-term fix to be replaced as soon as a better alternative arrived.
- "The History of Border Gateway Protocol". blog.datapath.io. Archived from the original on 29 October 2020.
- A Border Gateway Protocol 4 (BGP-4). RFC 4271.
- RFC 4274
- R. Chandra; J. Scudder (May 2000). Capabilities Advertisement with BGP-4. doi:10.17487/RFC2842. RFC 2842.
- T. Bates; et al. (June 2000). Multiprotocol Extensions for BGP-4. doi:10.17487/RFC2858. RFC 2858.
- E. Rosen; Y. Rekhter (April 2004). BGP/MPLS VPNs. doi:10.17487/RFC2547. RFC 2547.
- "BGP Best Path Selection Algorithm". Cisco.com.
- "Understanding BGP Path Selection". Juniper.com.
- RFC 1997
- "Border Gateway Protocol (BGP) Well-known Communities". www.iana.org. Retrieved 2022-12-04.
- "BGP Community Support | iFog GmbH". ifog.ch. Retrieved 2022-12-04.
- "BGP communities". retn.net. Retrieved 2022-12-04.
- "BGP Community Guides". Retrieved 13 April 2015.
- RFC 4360
- "Border Gateway Protocol (BGP) Extended Communities". www.iana.org. Retrieved 2022-12-04.
- IETF drafts on BGP signalled QoS Archived 2009-02-23 at the Wayback Machine, Thomas Knoll,2008
- "Large BGP Communities". Retrieved 2021-11-27.
- Y. Rekhter; T. Li; S. Hares, eds. (January 2006). A Border Gateway Protocol 4 (BGP-4). Network Working Group. doi:10.17487/RFC4271. RFC 4271. Draft Standard. sec. 4.1.
- "Border Gateway Protocol (BGP)". Cisco.com.
- T. Bates; et al. (April 2006). BGP Route Reflection: An Alternative to Full Mesh Internal BGP (iBGP). RFC 4456.
- "Info". www.ietf.org. Retrieved 2019-12-17.
- "Info". www.ietf.org. Retrieved 2019-12-17.
- "Info". www.ietf.org. Retrieved 2019-12-17.
- "Route Flap Damping Exacerbates Internet Routing Convergence" (PDF). November 1998. Archived (PDF) from the original on 2022-10-09.
- Zhang, Beichuan; Pei Dan; Daniel Massey; Lixia Zhang (June 2005). "Timer Interaction in Route Flap Damping" (PDF). IEEE 25th International Conference on Distributed Computing Systems. Retrieved 2006-09-26.
We show that the current damping design leads to the intended behavior only under persistent route flapping. When the number of flaps is small, the global routing dynamics deviates significantly from the expected behavior with a longer convergence delay.
- Villamizar, Curtis; Chandra, Ravi; Govindan, Ramesh (November 1998). "BGP Route Flap Damping". Ietf Datatracker. Tools.ietf.org.
- "RIPE Routing Working Group Recommendations On Route-flap Damping". RIPE Network Coordination Centre. 2006-05-10. Retrieved 2013-12-04.
- "draft-ymbk-rfd-usable-02 - Making Route Flap Damping Usable". Ietf Datatracker. Tools.ietf.org. Retrieved 2013-12-04.
- "Cisco switch problem".
- Cowie, Jim (13 August 2014). "Internet Touches Half Million Routes: Outages Possible Next Week". renesys.com. Archived from the original on 13 August 2014.
- "BGP Reports". potaroo.net.
- "CAT 6500 and 7600 Series Routers and Switches TCAM Allocation Adjustment Procedures". Cisco. 9 March 2015.
- Jim Cowie. "Internet Touches Half Million Routes: Outages Possible Next Week". Dyn Research.
- Garside, Juliette; Gibbs, Samuel (14 August 2014). "Internet infrastructure 'needs updating or more blackouts will happen'". The Guardian. Retrieved 15 Aug 2014.
- "BOF report" (PDF). www.nanog.org. Archived (PDF) from the original on 2022-10-09. Retrieved 2019-12-17.
- Greg Ferro (26 January 2011). "TCAM — a Deeper Look and the impact of IPv6". EtherealMind.
- "The IPv4 Depletion site". ipv4depletion.com.
- "What caused today's Internet hiccup". bgpmon.net.
- 16-bit Autonomous System Report, Geoff Huston 2011 (original archived at https://web.archive.org/web/20110906085724/http://www.potaroo.net/tools/asn16/)
- Craig Timberg (2015-05-31). "Quick fix for an early Internet problem lives on a quarter-century later". The Washington Post. Retrieved 2015-06-01.
- "GNU Zebra".
- Chapter "Border Gateway Protocol (BGP)" Archived 2011-07-08 at the Wayback Machine in the Cisco "IOS Technology Handbook"