🥇 Mabaadi'da hawlgalka ee hab-maamuuska BGP

Maanta waxaan eegi doonaa borotokoolka BGP. Ka hadli mayno muddo dheer sababta ay tahay iyo sababta loogu isticmaalo borotokoolka keliya. Waxaa jira macluumaad badan oo ku saabsan mawduucan, tusaale ahaan halkan.

Haddaba waa maxay BGP? BGP waa hab-maamuuska hab-maamuuska firfircoon waana borotokoolka kaliya ee EGP (External Gateway Protocol). Hab-maamuuska waxaa loo isticmaalaa in lagu dhiso marin-u-socodka internetka. Aynu eegno sida xaafad u dhexaysa labada router ee BGP.

Tixgeli xaafadda u dhaxaysa Router1 iyo Router3. Aynu u habaynno anagoo adeegsanayna amarada soo socda:

router bgp 10
  network 192.168.12.0
  network 192.168.13.0
  neighbor 192.168.13.3 remote-as 10

router bgp 10
  network 192.168.13.0
  network 192.168.24.0
  neighbor 192.168.13.1 remote-as 10

Xaafad ka mid ah hal nidaam oo madaxbannaan waa AS 10. Ka dib marka la geliyo macluumaadka router, sida Router1, router-kaas wuxuu isku dayaa inuu sameeyo xiriir ku dhow Router3. Xaaladda bilowga ah marka aysan waxba dhicin ayaa la yiraahdaa Idle. Isla marka bgp lagu habeeyo Router1, waxay bilaabi doontaa dhageysiga dekedda TCP 179 - waxay geli doontaa gobolka. Connect, oo marka ay isku daydo in ay kalfadhi la furto Router3, waxay geli doontaa gobolka Active.

Ka dib fadhiga la sameeyo inta u dhaxaysa Router1 iyo Router3, fariimaha furan waa la isweydaarsadaa. Marka fariintan uu diro Router1, gobolkan ayaa la wici doonaa Fur La Diray. Oo marka ay ka hesho fariin furan Router3, waxay geli doontaa gobolka Fur Xaqiiji. Aan si qoto dheer u eegno fariinta Furan:

Fariintani waxay gudbinaysaa macluumaadka ku saabsan borotokoolka BGP laftiisa, kaas oo uu isticmaalo router. Isdhaafsiga fariimaha furan, Router1 iyo Router3 waxay isku gudbiyaan macluumaadka ku saabsan habayntooda midba midka kale. Halbeegyada soo socda ayaa la gudbiyay:

VersionTan waxaa ku jira nooca BGP-ga ee router-ku isticmaalayo. Nooca hadda ee BGP waa nooca 4 kaas oo lagu sifeeyay RFC 4271. Laba router oo BGP ah ayaa isku dayi doona in ay ka wada xaajoodaan nooca ku habboon, marka ay ismaandhaafku dhaco markaas ma jiri doono fadhi BGP ah.

My AS: tan waxaa ku jira lambarka AS ee BGP-ga, router-yadu waa inay ku heshiiyaan nambarada AS waxayna sidoo kale qeexaysaa inay ku shaqeyn doonaan iBGP ama eBGP.

Waqti qabsoHaddii BGP aysan helin wax fariimo ah oo lagu hayo ama cusboonaysiin dhanka kale inta lagu jiro wakhtiga haynta markaas waxay ku dhawaaqi doontaa dhinaca kale 'mid dhintay' waxayna dumin doontaa fadhiga BGP. Sida caadiga ah wakhtiga haynta waxa loo dejiyay 180 ilbidhiqsi oo ku socda Cisco IOS router, fariinta dhawrista waxa la soo diraa 60 sekan kasta. Labada routerba waa inay ku heshiiyaan wakhtiga haynta ama ma jiri doono fadhi BGP ah.

Aqoonsiga BGPKani waa aqoonsiga router BGP ee deegaanka kaas oo loo doortay sida OSPF u sameeyo:

Isticmaal router-ID-ka gacanta lagu habeeyay iyadoo leh bgp router-id command.

Isticmaal ciwaanka IP ugu sarreeya ee loopback interface.

Isticmaal ciwaanka IP-ga ugu sarreeya ee isku-xidhka jirka.

Halbeegyada Ikhtiyaarka ahHalkan waxaad ka heli doontaa qaar ka mid ah awoodaha ikhtiyaarka ah ee router BGP. Goobtan waxaa lagu daray si astaamo cusub loogu daro BGP iyadoon la samayn nooc cusub. Waxyaabaha aad ka heli karto halkan waa:

taageerada MP-BGP (Multi Protocol BGP).

taageerada Jidka Cusbooneysiinta.

taageerada lambarrada AS ee 4-octet.

Si loo dhiso xaafad, shuruudaha soo socda waa in la buuxiyaa:

Nambarka nooca Nooca hadda waa 4.
Lambarka AS waa inuu u dhigmaa waxa aad habaysay deriska 192.168.13.3 fog-sida 10.
Aqoonsiga router waa inuu ka duwan yahay deriska.

Haddii mid ka mid ah xuduudaha uu ku qanci waayo shuruudahan, router ayaa soo diri doona Ogeysiinta fariinta tilmaamaysa qaladka. Kadib dirida iyo helitaanka fariimaha furan, xidhiidhka xaafadu waxa uu galaa gobolka DHAGAYSO. Taas ka dib, router-yadu waxay isweydaarsan karaan macluumaadka ku saabsan waddooyinka oo ay sameeyaan tan iyaga oo isticmaalaya Cusbooneysii fariimaha. Tani waa fariinta cusboonaysiinta uu u diray Router1 ilaa Router3:

Halkan waxa aad ku arki kartaa shabakadaha uu soo sheegay Router1 iyo sifooyinka Jidka, kuwaas oo la mid ah cabbirada. Waxaan si faahfaahsan uga hadli doonaa sifooyinka Jidka. Fariimaha Keepalive sidoo kale waxaa lagu soo diraa fadhiga TCP gudahooda. Waxaa la kala qaadaa, si caadi ah, 60 ilbiriqsi kasta. Kani waa Keepalive Timer. Haddii fariinta Keepalive aan la helin inta lagu jiro Hold Timer, tani waxay ka dhigan tahay luminta xiriirka deriska. Sida caadiga ah, waxay la mid tahay 180 ilbiriqsi.

Calaamad faa'iido leh:

Waxay u muuqataa inaan ogaanay sida router-ku isu gudbiyaan macluumaadka, hadda aan isku dayno inaan fahanno macquulka borotokoolka BGP.

Si loo xayaysiiyo dariiqa loo maro miiska BGP, sida ku jirta borotokoolka IGP-ga, amarka shabakada ayaa la isticmaalaa, laakiin caqli galku wuu ka duwan yahay. Haddii IGP-ga, ka dib marka la qeexo dariiqa taliska shabakada, IGP-gu wuxuu fiiriyaa is-dhexgalka ka tirsan subnet-kan oo uu ku daro miiskiisa, ka dibna taliska shabakada ee BGP wuxuu eegayaa miiska wareegga wuxuuna eegayaa saxda ah waafaqaya dariiqa taliska shabakada Haddii sidaas la helo, waddooyinkani waxay ka soo muuqan doonaan shaxda BGP.

Ka raadi waddo ku jirta jaantuska hadda jira ee IP-ga ee router kaas oo si sax ah u dhigma xuduudaha amarka shabakadda; haddii dariiqa IP uu jiro, dhig NLRI u dhigma miiska BGP-ga deegaanka.

Hadda aan kor u qaadno BGP dhammaan kuwa hadhay oo aan aragno sida dariiqa loogu doortay hal AS. Kadib marka uu BGP-ga ka helo dariiqyada deriskiisa, waxa uu bilaabayaa doorashada dariiqa ugu fiican. Halkan waxaad u baahan tahay inaad fahamto nooca deriska ee jiri kara - gudaha iyo dibadda. Router-ku ma ku fahmaa qaabeynta in deriska la habeeyey uu yahay gudaha ama dibadda? Hadii aad koox tahay:

neighbor 192.168.13.3 remote-as 10

Remote-sida parameter-ku tilmaamayo AS, kaas oo lagu habeeyey router-ka laftiisa ee ku jira router bgp 10. Wadooyinka ka yimaada gudaha AS waxaa loo tixgeliyaa gudaha, iyo waddooyinka AS dibadda ayaa loo tixgeliyaa dibadda. Iyo mid kasta, caqli-gal kala duwan ee helitaanka iyo dirida shaqooyinka. Ka fiirso topology-gan:

Router kasta wuxuu leeyahay loopback interface oo lagu habeeyay ip: xxxx 255.255.255.0 - halkaasoo x uu yahay lambarka router. Router9 waxaan ku leenahay loopback interface leh ciwaanka - 9.9.9.9 255.255.255.0. Waxaanu kaga dhawaaqi doonaa BGP oo aanu aragnaa sida uu u faafo. Dariiqan waxaa loo gudbin doonaa Router8 iyo Router12. Laga bilaabo Router8, wadadani waxay aadi doontaa Router6, laakiin ilaa Router5 kuma jiri doonto miiska dajinta. Sidoo kale Router12 wadadani waxay ka soo muuqan doontaa shaxda, laakiin Router11 ma jiri doonto sidoo kale. Aan isku dayno inaan ogaano tan. Aynu tixgelinno xogta iyo cabbirrada Router9 u gudbiyo deriskiisa, isaga oo ka warbixinaya waddadan. Xirmada hoose waxaa laga soo diri doonaa Router9 ilaa Router8.

Macluumaadka marinku waxa uu ka kooban yahay sifada Jidka.

Sifooyinka dariiqa waxa loo qaybiyaa 4 qaybood:

Waajib la yaqaan - Dhammaan jiheeyayaasha ku shaqeeya BGP waa inay aqoonsadaan sifooyinkan. Waa inuu joogaa dhammaan wararka.
Caqli-gal la yaqaan - Dhammaan jiheeyayaasha ku shaqeeya BGP waa inay aqoonsadaan sifooyinkan. Waxa laga yaabaa inay ku jiraan warar cusub, laakiin joogitaankooda looma baahna.
Kalaguurka ikhtiyaariga ah - waxaa laga yaabaa in aan la aqoonsan dhammaan fulinta BGP. Haddii router-ku aanu aqoonsan sifada, waxa ay u calaamadisaa cusboonaysiinta qayb ahaan oo u sii gudbisa deriskeeda, isaga oo kaydinaya sifada aan la aqoonsan.
Ikhtiyaar aan ku-meel-gaar ahayn - waxaa laga yaabaa in aan la aqoonsan dhammaan fulinta BGP. Haddii router uusan aqoonsan sifada, markaas sifada waa la iska indhatiray oo la tuuraa marka loo gudbiyo deriska.

Tusaalooyinka sifooyinka BGP:

Waajib la yaqaan:
- Dariiqa ismaamulka
- Next-hop
- Asalka
Caqli-gal la yaqaan:
- Doorashada deegaanka
- Isku geynta atomiga
Kalaguurka ikhtiyaariga ah:
- ururiye
- Communities
Ikhtiyaar aan ku-meel-gaar ahayn:
- Takoor bixiye badan (MED)
- Aqoonsiga asalka
- Liiska kooxda

Xaaladdan oo kale, hadda waxaan xiisayn doonaa Origin, Next-hop, AS Path. Maadaama dariiqdu u kala qaado inta u dhaxaysa Router8 iyo Router9, taas oo ah, gudaha hal AS, waxaa loo tixgeliyaa gudaha waxaanan fiiro gaar ah siin doonaa Origin.

Sifada asalka ah - waxay muujineysaa sida dariiqa cusboonaysiinta loo helay. Qiimaha sifada macquulka ah:

0 - IGP: NLRI waxa lagu helay nidaamka ismaamulka asalka ah;
1 - EGP: NLRI waxaa lagu bartaa iyadoo la isticmaalayo Protocol-ka Kadinka Dibadda (EGP). Kahor BGP, lama isticmaalin
2 - Aan dhamaystirnayn: NLRI waxaa lagu bartay si kale

Xaaladeena, sida laga arki karo xirmada, waxay la mid tahay 0. Marka dariiqan loo gudbiyo Router12, code-kani wuxuu yeelan doonaa koodka 1.

Marka xigta, Next-hop. Xiga-hop sifada

Kani waa ciwaanka IP-ga ee eBGP router kaas oo uu maraayo dariiqa loo maro shabakada loo socdo.
Sifada ayaa isbedesha marka horgalaha loo diro AS kale.

Marka laga hadlayo iBGP, taas oo ah, gudaha hal AS, Next-hop waxaa muujin doona kii bartay ama u sheegay jidkan. Xaaladeena, waxay noqon doontaa 192.168.89.9. Laakin marka dariiqan laga soo gudbiyo Router8 ilaa Router6, Router8 ayaa badali doonta oo ku badali doonta keeda. Rajada xigta waxay noqon doontaa 192.168.68.8. Tani waxay inoo horseedaysaa laba xeer:

Haddii router-ku u gudbiyo dariiqa deriskiisa gudaha, ma beddelo qiyaasta Next-hop.
Haddii router uu u gudbiyo dariiqa deriskiisa dibadda, wuxuu u beddelaa Next-hop ip-ka interface-ka uu ka soo gudbiyo router.

Tani waxay noo horseedaysaa inaan fahamno dhibaatada koowaad - Waa maxay sababta aysan u jiri doonin waddo ku jirta miiska dariiqa ee Router5 iyo Router11. Aan si hoose u eegno. Marka, Router6 wuxuu helay macluumaadka ku saabsan marinka 9.9.9.0/24 wuxuuna si guul leh ugu daray miiska khadka:

Router6#show ip route bgp
Codes: L - local, C - connected, S - static, R - RIP, M - mobile, B - BGP
       D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
       N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
       E1 - OSPF external type 1, E2 - OSPF external type 2
       i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
       ia - IS-IS inter area, * - candidate default, U - per-user static route
       o - ODR, P - periodic downloaded static route, H - NHRP, l - LISP
       a - application route
       + - replicated route, % - next hop override, p - overrides from PfR

Gateway of last resort is not set

      9.0.0.0/24 is subnetted, 1 subnets
B        9.9.9.0 [20/0] via 192.168.68.8, 00:38:25<source>
Теперь Router6 передал маршрут Router5 и первому правилу Next-hop не изменил. То есть, Router5 должен добавить  <b>9.9.9.0 [20/0] via 192.168.68.8</b> , но у него нет маршрута до 192.168.68.8 и поэтому данный маршрут добавлен не будет, хотя информация о данном маршруте будет храниться в таблице BGP:

<source><b>Router5#show ip bgp
BGP table version is 1, local router ID is 5.5.5.5
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
              r RIB-failure, S Stale, m multipath, b backup-path, f RT-Filter,
              x best-external, a additional-path, c RIB-compressed,
Origin codes: i - IGP, e - EGP, ? - incomplete
RPKI validation codes: V valid, I invalid, N Not found

     Network          Next Hop            Metric LocPrf Weight Path
 * i 9.9.9.0/24       192.168.68.8             0    100      0 45 i</b>

Xaalad la mid ah ayaa ka dhici doonta inta u dhaxaysa Router11-Router12. Si aad uga fogaato xaaladan, waxaad u baahan tahay inaad dejiso Router6 ama Router12, marka aad marin u marinayso deriskooda gudaha, si aad ugu badasho ciwaanka IP-ga sida Next-hop. Tan waxaa lagu sameeyaa iyadoo la adeegsanayo amarka:

neighbor 192.168.56.5 next-hop-self

Ka dib amarkan, Router6 ayaa soo diri doonta fariinta Cusbooneysii, halkaas oo ip ee interface Gi0/0 Router6 lagu qeexi doono Next-hop ee waddooyinka - 192.168.56.6, ka dib markii dariiqan mar hore lagu dari doonaa miiska wadista.

Aan sii socono oo aan aragno in wadadani ay ku muuqato Router7 iyo Router10. Kuma jiri doonto miiska dariiqa waxaana laga yaabaa inaan u maleyno in dhibaatadu la mid tahay kan ugu horreeya ee leh xuduudaha Next-hop, laakiin haddii aan eegno wax soo saarka ip bgp amarka, waxaan arki doonaa in Waddada lama helin halkaas xitaa iyadoo khaldan Next-hop, taas oo macnaheedu yahay in waddada aan xitaa la gudbin. Taasina waxay inoo horseedi doontaa jiritaanka xeer kale:

Wadooyinka laga helo deriska gudaha laguma faafiyo deriska kale ee gudaha.

Maadaama Router5 uu ka helay wadada Router6, looma gudbin doono deriskeeda kale ee gudaha. Si wareejintu u dhacdo, waxaad u baahan tahay inaad habayso shaqada Milicsiga Jidka, ama habee cilaaqaadyada xaafadaha si buuxda ugu xidhan (Full Mesh), taas oo ah, Router5-7 qof walba wuxuu deris la noqon doonaa qof walba. Xaaladdan oo kale waxaan isticmaali doonaa Route Reflector. Router5 waxaad u baahan tahay inaad isticmaasho amarkan:

neighbor 192.168.57.7 route-reflector-client

Route-Reflector waxay beddeshaa habdhaqanka BGP marka uu marin u marayo deris gudaha ah. Haddii deriska gudaha lagu tilmaamo sida jidka-milicsada-macmiilka, ka dibna waddooyinka gudaha ayaa loo xayeysiin doonaa macaamiishan.

Waddadu kama soo muuqan Router7? Ha iloobin Next-hop sidoo kale. Wax-is-daba-marintan ka dib, jidku waa inuu sidoo kale aadaa Router7, laakiin tani ma dhacayso. Tani waxay ina keenaysaa xeer kale:

Xeerka soo socda-hop wuxuu u shaqeeyaa kaliya waddooyinka Dibadda. Wadooyinka gudaha, sifada soo socota lama beddelo.

Oo waxaan helnaa xaalad ay lagama maarmaan tahay in la abuuro jawi iyadoo la adeegsanayo hab-maamuuska joogtada ah ama borotokoolka IGP si loogu wargaliyo router-yada dhammaan waddooyinka AS. Aynu iska diiwaan gelino dariiqyada taagan ee Router6 iyo Router7 ka bacdina waxaan heli doonaa dariiqa la rabo miiska router-ka. AS 678, waxaan u samayn doonaa wax yar si ka duwan - waxaan diiwaangelin doonaa waddooyinka taagan 192.168.112.0/24 ee Router10 iyo 192.168.110.0/24 ee Router12. Marka xigta, waxaan dhisi doonaa xiriirka deriska ee u dhexeeya Router10 iyo Router12. Waxaan sidoo kale habeyn doonaa Router12 si uu u soo diro rajada xigta ee Router10:

neighbor 192.168.110.10 next-hop-self

Natiijadu waxay noqon doontaa in Router10 uu heli doono wadada 9.9.9.0/24, waxaa laga heli doonaa labadaba Router7 iyo Router12. Aan aragno waxa uu sameeyo Router10:

Router10#show ip bgp
BGP table version is 3, local router ID is 6.6.6.6
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
              r RIB-failure, S Stale, m multipath, b backup-path, f RT-Filter,
              x best-external, a additional-path, c RIB-compressed,
Origin codes: i - IGP, e - EGP, ? - incomplete
RPKI validation codes: V valid, I invalid, N Not found

     Network              Next Hop            Metric LocPrf Weight Path
 *>i 9.9.9.0/24       192.168.112.12           0    100       0      45 i

                               192.168.107.7                                0     123 45 i

Sida aan arki karno, laba waddo iyo fallaadho (>) waxay ka dhigan tahay in waddada loo marayo 192.168.112.12 la doortay.
Aynu aragno sida habka xulashada dariiqu u shaqeeyo:

Tallaabada ugu horreysa marka la helayo dariiqa waa in la hubiyo helitaanka Next-hop-keeda. Taasi waa sababta, markii aan helnay dariiqa Router5 iyada oo aan la dejin Next-hop-self, dariiqan lama sii socodsiin.
Waxa ku xiga cabbirka Miisaanka. Halbeeggani maaha sifo Waddo (PA) oo laguma soo diro fariimaha BGP. Waxaa loo habeeyey gudaha router kasta waxaana kaliya loo isticmaalaa in lagu maamulo xulashada dariiqa router laftiisa. Bal aan tusaale u soo qaadano. In yar oo ka sarreysa waxaad arki kartaa in Router10 uu doortay waddo 9.9.9.0/24 iyada oo loo marayo Router12 (192.168.112.12). Si aad u bedesho cabbirka Wieight, waxaad isticmaali kartaa khariidad-maabka si aad u dejiso waddooyin gaar ah, ama aad u qoondayso miisaan deriskeeda adoo isticmaalaya amarka:
```
 neighbor 192.168.107.7 weight 200       
```
Hadda dhammaan waddooyinka ka yimaada deriskan waxay yeelan doonaan miisaankan. Aynu aragno sida doorashada dariiqu isu beddesho ka dib wax-is-daba-marintan:
```
Router10#show bgp
*Mar  2 11:58:13.956: %SYS-5-CONFIG_I: Configured from console by console
BGP table version is 2, local router ID is 6.6.6.6
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
              r RIB-failure, S Stale, m multipath, b backup-path, f RT-Filter,
              x best-external, a additional-path, c RIB-compressed,
Origin codes: i - IGP, e - EGP, ? - incomplete
RPKI validation codes: V valid, I invalid, N Not found

     Network          Next Hop            Metric LocPrf Weight      Path
 *>  9.9.9.0/24       192.168.107.7                        200      123 45 i
 * i                          192.168.112.12           0          100      0 45 i
```
Sida aad arki karto, dariiqa loo maro Router7 hadda waa la doortay, laakiin tani wax saameyn ah kuma yeelan doonto router-yada kale.
Booska saddexaad waxaan ku leenahay Preference Local. Halbeegyadani waa sifada go'aan qaadashada ee aad loo yaqaan, taas oo macnaheedu yahay in joogistiisu ay tahay ikhtiyaari. Halbeeggaani wuxuu ku ansaxayaa hal AS oo kaliya wuxuuna saameeyaa doorashada dariiqa kaliya ee deriska gudaha. Taasi waa sababta loogu gudbiyo kaliya fariimaha Cusboonaysiinta ee loogu talagalay deriska gudaha. Kuma jiro fariimaha Cusboonaysiinta ee deriska dibadda. Sidaa darteed, waxaa loo kala saaray inay tahay caqli-gal la yaqaan. Aan isku dayno inaan ku dabaqno Router5. Router5 waa in aan yeelanaa laba wado oo ah 9.9.9.0/24 - mid dhexmarta Router6 iyo tan labaad ee loo maro Router7.
Waxaan eegnaa:
```
Router5#show bgp
BGP table version is 2, local router ID is 5.5.5.5
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
              r RIB-failure, S Stale, m multipath, b backup-path, f RT-Filter,
              x best-external, a additional-path, c RIB-compressed,
Origin codes: i - IGP, e - EGP, ? - incomplete
RPKI validation codes: V valid, I invalid, N Not found

     Network          Next Hop            Metric LocPrf Weight Path
 *>i 9.9.9.0/24       192.168.56.6             0    100      0 45 i
```
Laakiin sida aan aragno hal waddo oo loo maro Router6. Aaway jidka loo maro Router7? Waxaa laga yaabaa in Router7 uusan sidoo kale haysan? Aan eegno:
```
Router#show bgp
BGP table version is 10, local router ID is 7.7.7.7
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
              r RIB-failure, S Stale, m multipath, b backup-path, f RT-Filter,
              x best-external, a additional-path, c RIB-compressed,
Origin codes: i - IGP, e - EGP, ? - incomplete
RPKI validation codes: V valid, I invalid, N Not found

     Network                Next Hop            Metric LocPrf  Weight    Path
 *>i 9.9.9.0/24       192.168.56.6             0     100           0      45 i

                              192.168.107.10                                  0     678 45 i 
```
La yaab leh, wax walba waxay u muuqdaan inay fiican yihiin. Waa maxay sababta loogu gudbin waayay Router5? Shaydu waa in BGP leeyahay xeer:

Router-ku waxa uu gudbiyaa kaliya dariiqyada uu isticmaalo.

Router7 wuxuu isticmaalaa dariiqa loo maro Router5, markaa dariiqa loo maro Router10 lama gudbin doono. Aan ku soo laabano Dookhyada Deegaanka. Aynu dejino Dookhyada Maxalliga ah ee Router7 oo aynu aragno sida Router5 uga falceliyo tan:
```
route-map BGP permit 10
 match ip address 10
 set local-preference 250
access-list 10 permit any
router bgp 123
 neighbor 192.168.107.10 route-map BGP in</b>
```
Markaa, waxaanu abuurnay khariidad-maab ka kooban dhammaan waddooyinka, waxaanu u sheegnay Router7 inuu beddelo meertada Dookhyada Maxalliga ah oo uu ka dhigo 250 marka la helo, waxa caadiga ah waa 100. Aan aragno waxa ka dhacay Router5:
```
Router5#show bgp
BGP table version is 8, local router ID is 5.5.5.5
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
              r RIB-failure, S Stale, m multipath, b backup-path, f RT-Filter,
              x best-external, a additional-path, c RIB-compressed,
Origin codes: i - IGP, e - EGP, ? - incomplete
RPKI validation codes: V valid, I invalid, N Not found

     Network          Next Hop            Metric LocPrf Weight        Path
 *>i 9.9.9.0/24       192.168.57.7             0          250      0 678 45 i
```
Sida aan hadda arki karno Router5 ayaa doorbidaya dariiqa loo maro Router7. Sawir la mid ah ayaa ku jiri doona Router6, inkastoo ay faa'iido badan u leedahay isaga inuu doorto dariiqa loo maro Router8. Waxa kale oo aanu ku darnay in beddelka cabbirkan uu u baahan yahay dib-u-bilaabida xaafadda si isbeddelku u hirgalo. Akhriso halkan. Waxaan xallinay Dookhyada Deegaanka. Aan u gudubno halbeegga xiga.

Ku door bidaa dariiqa cabbirka Next-hop 0.0.0.0, taas oo ah, waddooyinka maxalliga ah ama kuwa la isku daray. Dariiqyadan waxaa si toos ah loogu qoondeeyaa cabbirka Miisaanka la mid ah kan ugu sarreeya—32678—ka dib marka la geliyo amarka shabakadda:

Router#show bgp
BGP table version is 2, local router ID is 9.9.9.9
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
              r RIB-failure, S Stale, m multipath, b backup-path, f RT-Filter,
              x best-external, a additional-path, c RIB-compressed,
Origin codes: i - IGP, e - EGP, ? - incomplete
RPKI validation codes: V valid, I invalid, N Not found

     Network          Next Hop            Metric LocPrf Weight    Path
 *>  9.9.9.0/24       0.0.0.0                  0            32768    i

Wadada ugu gaaban ee loo maro AS. Qiyaasta ugu gaaban AS_Path waa la doortay. Mar kasta oo AS-yada yar ay maraan, way fiicnaan doontaa. Tixgeli jidka 9.9.9.0/24 ee Router10:

Router10#show bgp
BGP table version is 2, local router ID is 6.6.6.6
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
              r RIB-failure, S Stale, m multipath, b backup-path, f RT-Filter,
              x best-external, a additional-path, c RIB-compressed,
Origin codes: i - IGP, e - EGP, ? - incomplete
RPKI validation codes: V valid, I invalid, N Not found

     Network          Next Hop            Metric LocPrf Weight Path
 *   9.9.9.0/24     192.168.107.7                           0           123 45 i
 *>i                     192.168.112.12           0    100       0       45 i

Sida aad arki karto, Router10 wuxuu doortay dariiqa 192.168.112.12 sababtoo ah dariiqa AS_Path halbeegga wuxuu ka kooban yahay 45 kaliya, iyo xaalad kale 123 iyo 45. Si caqli gal ah.

Halbeegga xiga waa Asalka. IGP (dariiqa lagu helo iyadoo la isticmaalayo BGP) ayaa ka wanaagsan EGP (dariiqa lagu helo iyadoo la adeegsanayo tii hore ee BGP, oo aan hadda la isticmaalin), EGP-guna wuu ka fiican yahay Aan dhamaystirnayn? (waxaa helay hab kale, tusaale ahaan dib u qaybinta).
Halbeegga xiga waa MED. Waxaan haysanay Wieight kaas oo ka shaqeeya maxalli ahaan router-ka. Waxa jiray Doorbid Maxali ah, kaas oo ka shaqaynayay hal nidaam oo madaxbanaan. Sida aad qiyaasi karto, MED waa halbeeg lagu kala qaado nidaamyada ismaamulka. Aad u wanaagsan maqaal ku saabsan cabbirkan.

Sifooyin dambe lama isticmaali doono, laakiin haddii laba waddo ay leeyihiin sifooyin isku mid ah, markaa xeerarka soo socda ayaa la isticmaalaa:

Dooro jidka loo maro deriska IGP-ga kuugu dhow.
Dooro dariiqa ugu da'da weyn ee dariiqa eBGP
Dooro jidka loo maro deriska leh kan ugu yar ee BGP router ID.
Dooro waddo loo maro deriska leh cinwaanka IP-ga ugu hooseeya.

Haddaba aan eegno arrinta ku saabsan isu-ururinta BGP.

Aynu aragno waxa dhacaya haddii Router6 uu lumiyo jidka 9.9.9.0/24 ee loo maro Router9. Aynu joojino interface Gi0/1 ee Router6, kaas oo isla markiiba fahmi doona in fadhigii BGP ee Router8 la joojiyay iyo deriskii la waayay, taas oo macnaheedu yahay in dariiqa laga helay aanu ansax ahayn. Router6 wuxuu isla markiiba soo diraa fariimaha Cusboonaysiinta, halkaas oo ay ku muujinayso shabakada 9.9.9.0/24 ee ku taal garoonka Wadooyinka La Baxo. Isla marka uu Router5 helo fariinta noocaas ah, waxay u diri doontaa Router7. Laakin maadaama Router7 uu leeyahay wado loo maro Router10, isla markiiba waxay kaga jawaabi doontaa Cusbooneysii waddo cusub. Haddii aysan suurtagal ahayn in la ogaado dhicitaanka deriska ee ku salaysan xaaladda is-dhexgalka, markaa waxaad u baahan doontaa inaad sugto Timer si uu u shido.

Confederation.

Haddii aad xasuusato, waxaan ka hadalnay xaqiiqda ah inaad inta badan isticmaasho topology si buuxda ugu xiran. Iyada oo tiro badan oo router ah oo ku jira hal AS tani waxay sababi kartaa dhibaatooyin waaweyn, si taas looga fogaado waxaad u baahan tahay inaad isticmaasho konfederasyada. Mid ka mid ah AS wuxuu u qaybsan yahay dhowr-hoosaadyada AS, kaas oo u oggolaanaya inay ku shaqeeyaan iyada oo aan loo baahnayn topology si buuxda ugu xiran.

Halkan waxaa ah xiriirinta tan labiyo halkan qaabeynta GNS3.

Tusaale ahaan, topology-gan waa inaan isku xirno dhammaan router-yada ku jira AS 2345 midba midka kale, laakiin annagoo adeegsanayna Confederation, waxaan samayn karnaa xiriirro dhow oo keliya oo u dhexeeya router-yada si toos ah midba midka kale ugu xiran. Aan si faahfaahsan uga hadalno arrintan. Haddii aan haysano oo kaliya AS 2345, markaa laForge isagoo socod ka helay Picard u sheegi lahaa router-yada Data и Worf, laakiin ma aysan u sheegin router waxa ku saabsan Crusher . Sidoo kale waddooyinka uu qaybiyo router laftiisa laForge, aan la wareejin Crusher iyo sidoo kale Worf-ah, maya Data.

Waa inaad habaysataa Jidka-Reflector ama xidhiidh xaafadeed oo dhamaystiran. Marka loo qaybiyo mid AS 2345 4 sub-AS (2,3,4,5) ee router kasta, waxaan ku dhamaaneynaa caqli-gal shaqo oo ka duwan. Wax walba si fiican ayaa loo sharraxay halkan.

Ilaha:

Jideynta iyo Beddelka CCIE v5.0 Hagaha Shahaadada Rasmiga ah, Mugga 2, Daabcaadda Shanaad, Narbik Kocharians, Terry Vinson.
website xgu.ru
website GNS3Vault.

Source: www.habr.com

Sida BGP u shaqeyso

Add a comment cancel reply