ROUTE SERVER IIX-JB
Saat ini, tim IIX-JB APJII Jawa Barat atau JABRIX sedang melakukan proses transisi fungsional Route Server (RS). Berikut detailnya.
BGP Community yang didukung
| No. | Action | Standard | Extended | Large |
|---|---|---|---|---|
| 1 | Do not advertise to peer-as | 0:peer-as | rt:0:peer-as | 7597:0:peer-as |
| 2 | Prefix dari IIX-JK2 | 65000:1040 | ||
| 3 | Prefix ke IIX-JK2 | 65000:2040 |
Cara terhubung ke route server IIX-JB
Detail informasi RS IIX-JB
RS :
ASN : 7597
IPv4 : 103.19.77.2/24
IPv6 : 2001:df7:3400::2/64
Platform : Bird
Transparent AS : Ya
Contoh konfigurasi
Berikut ini beberapa contoh konfigurasi beberapa platform untuk terhubung ke RS IIX-JB.
Cisco
IOS
no bgp enforce-first-as
!
neighbor IIX-peer maximum-prefix 50000
neighbor v6IIX-peer maximum-prefix 10000
!
neighbor 103.19.77.2 remote-as 7597
neighbor 103.19.77.2 peer-group IIX-peer
neighbor 103.19.77.2 description iix_rs2
!
neighbor 2001:df7:3400::2 remote-as 7597
neighbor 2001:df7:3400::2 peer-group v6IIX-peer
neighbor 2001:df7:3400::2 description iix_rs2IOS-XR
neighbor 103.19.77.2
remote-as 7597
use neighbor-group IIX
description iix_rs2
enforce-first-as disable
address-family ipv4 unicast
maximum-prefix 50000 restart 30
!
neighbor 2001:df7:3400::2
remote-as 7597
use neighbor-group IIXv6
description iix_rs2
enforce-first-as disable
address-family ipv6 unicast
maximum-prefix 10000 restart 30
Juniper
"configuration protocols bgp"
group iix-rserver2 {
type external;
neighbor 103.19.77.2 {
description "ipv4 IIX-rserver2";
family inet {
unicast {
prefix-limit {
maximum 50000;
}
}
}
peer-as 7597;
}
}
group v6iix-rserver2 {
type external;
neighbor 2001:df7:3400::2 {
description "ipv6 IIX-rserver2";
family inet {
unicast {
prefix-limit {
maximum 10000;
}
}
}
peer-as 7597;
}
}
Mikrotik
/routing bgp peer
add in-filter="in-iix-jb " max-prefix-limit=50000 max-prefix-restart-time=30s \
name="rs-iix-jb-1-v4 " out-filter="out-iix-jb " remote-address=103.19.77.2 \
remote-as=7597 remove-private-as=yes
add address-families=ipv6 in-filter="in-iix-jb -v6" max-prefix-limit=10000 \
max-prefix-restart-time=30s name=rs-iix-jb-1-v6 out-filter="out-iix-jb -v6" \
remote-address=2001:df7:3400::2 remote-as=7597 remove-private-as=yes
Contoh penggunaan Community
Cisco
R2(config)# ip bgp-community new-format
R2(config)# access-list 1 permit 0.0.0.0 mask 255.255.255.0
R2(config)# route-map out-no-export permit 10
R2(config-route-map)# match ip address 1
R2(config-route-map)# set community 0:23456
R2(config-route-map)# exit
R2(config)# route-map out-no-export permit 20
R2(config-route-map)# exit
R2(config)# router bgp 24521
R2(config-router)# neighbor 103.19.77.2 send-community
R2(config-router)# neighbor 103.19.77.2 route-map out-no-export outJuniper
set policy-options community no-advertise members 0:23456
set policy-statement ke-iix-jb term prefix from 0.0.0.0/24 exact
set policy-statement ke-iix-jb term prefix then community add no-advertise
set policy-statement ke-iix-jb term prefix then accept
set policy-statement ke-iix-jb term liyone then rejectMikrotik
/routing filter
add action=accept chain="out-iix-jb" prefix=x.x.x.x/24 set-bgp-communities=65000:2040
add action=discard chain="out-iix-jb" prefix=x.x.x.x/0 prefix-length=0-32Untuk Prefix Sesuaikan dengan Network masing-masing
Hal-hal yang perlu dihindari
- Tidak menerapkan rule filter pada bgp yang akan diaktifkan
- Kesalahan penulisan commuity tagging
- Apabila telah selesai konfigurasi bisa dicheck pada looking glass yang tersedia.