ProHoster > Blog > internet nhau > Nzira dzeBGP dzakaburitswa dzinotungamira kukanganisa kukuru kwekubatana kweInternet

Nzira dzeBGP dzakaburitswa dzinotungamira kukanganisa kukuru kwekubatana kweInternet

Cloudflare Company yakabudiswa taura nezve chiitiko chanezuro, chakakonzera maawa matatu kubva ku13: 34 kusvika ku16: 26 (MSK) pakanga paine matambudziko nekuwana zviwanikwa zvakawanda pane network yepasi rose, kusanganisira zvivakwa zve Cloudflare, Facebook, Akamai, Apple, Linode uye Amazon AWS. Matambudziko muCloudflare zvivakwa, izvo zvinopa CDN yegumi nematanhatu masaiti, akacherechedza kubva 14:02 kusvika 16:02 (MSK). Cloudflare inofungidzira kuti inenge 15% yetraffic yepasi rose yakarasika panguva yekubuda.

Dambudziko raivepo zvakakonzera BGP nzira inodonha, panguva iyo inenge zviuru makumi maviri prefixes ye20 network yakadzoserwa zvisizvo. Kwakabva kuvuza kwacho aive mupi weDQE Communications, akashandisa software BGP Optimizer kugadzirisa nzira. BGP Optimizer inopatsanura IP prefixes kuita diki, semuenzaniso kupatsanura 104.20.0.0/20 kuita 104.20.0.0/21 uye 104.20.8.0/21, uye nekudaro, DQE Communications yakachengeta kudivi kwayo nhamba huru yenzira dzakananga dzinopfuura zvimwe. nzira dzakajairika (kureva pachinzvimbo chenzira dzakajairwa kuenda kuCloudflare, nzira dzakawanda dzakasimba kune dzakananga Cloudflare subnets dzakashandiswa).

Aya mapoinzi nzira akaziviswa kune mumwe wevatengi (Allegheny Technologies, AS396531), aive zvakare nekubatana kuburikidza nemumwe mupi. Allegheny Technologies yakatepfenyura nzira dzakazobuda kune mumwe mupi wekufambisa (Verizon, AS701). Nekuda kwekushaikwa kwekusefa kwezviziviso zveBGP uye zvirambidzo pahuwandu hwe prefixes, Verizon yakatora chiziviso ichi uye yakatepfenyura zvakaguma zviuru makumi maviri zve prefixes kuInternet yese. Maprefixes asiri iwo, nekuda kwekukura kwawo, aionekwa seanonyanya kukosha sezvo imwe nzira iine yakakosha kupfuura yakajairika.

Nzira dzeBGP dzakaburitswa dzinotungamira kukanganisa kukuru kwekubatana kweInternet

Nekuda kweizvozvo, traffic yema network akawanda mahombe akatanga kufambiswa kuburikidza neVerizon kune mudiki mupi weDQE Communications, uyo akange atadza kubata traffic yaikwira, izvo zvakakonzera kudonha (mhedzisiro yacho inofananidzwa nekutsiva chikamu chemugwagwa wakabatikana uine mugwagwa wenyika).

Kudzivirira zviitiko zvakafanana kuti zvirege kuitika mune ramangwana
yakakurudzirwa:

  • Kushandisa verification zviziviso zvakavakirwa paRPKI (BGP Origin Validation, inobvumira kugamuchira zviziviso chete kubva kuvaridzi venetiweki);
  • Deredzai huwandu hwepamusoro hwevakagamuchirwa prefixes yeese EBGP masesheni (yakanyanya-prefix kuseta ingabatsira nekukasira kurasa kufambisa kwemakumi maviri ezviuru prefixes mukati mechikamu chimwe);
  • Isa kusefa zvichibva pane IRR registry (Internet Routing Registry, inosarudza maASes ayo nzira yezvirevo zvakatarwa inotenderwa);
  • Shandisa zvigadziriso zvekuvharisa zvinokurudzirwa muRFC 8212 pane marouters ('default kuramba');
  • Rega kusangwarira kushandiswa kweBGP optimizers.

Nzira dzeBGP dzakaburitswa dzinotungamira kukanganisa kukuru kwekubatana kweInternet

Source: opennet.ru

Voeg