cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
459
Views
0
Helpful
5
Replies

Adverising same route over two AS

mohammedrafiq
Level 1
Level 1

Hi,

I would like to know the danger by advertising your own prefix through two diffrent AS on internet.

Will the prefix be drop by RAD box ?

Regards,

5 Replies 5

Giuseppe Larosa
Hall of Fame
Hall of Fame

Hello Mohammed,

a public ipv4 prefix should be originated by only one AS number that is the legitimate owner of it.

We can say that current Internet is based on this.

As you say if you originate it also from a non legitimate AS number you are doing something wrong (an inconsistent path) that can be filtered by providers that check the validity of advertisements.

If you are meaning insted that you are peering with two different ISPs this is legitimate and actually is a good reason to get a public AS number.

Hope to help

Giuseppe

I am peering with diffrent ISPs but with two my diffrent AS( both own by me), like I have AS 10 and peer with ISP1 and I have another As 20 and peer with ISP2, then I have prefix 1.1.1.0/21 and advertise to ISP 1 and again 1.1.1.0/16 to ISP2.

Hello Mohammed,

you may want to consider the neighbor local-as command that can be used in a scenario like yours.

see

http://www.cisco.com/en/US/docs/ios/iproute/command/reference/irp_bgp3.html#wp1014448

you can use this to pretend to be in AS10 when talking to ISP2 hiding the fact that your second router is actually running in AS20.

ISP2 has to update its configuration accordingly (neigh ... remote-as 10 instead of neigh ... remote-as 20)

Hope to help

Giuseppe

Thanks,

But without this what is the raeal danger?

Hello Mohammed,

the risk is that someone (potentially everyone) has the right to discard the route not originated in the legitimate AS number.

Hope to help

Giuseppe

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Innovations in Cisco Full Stack Observability - A new webinar from Cisco