Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
962
Views
0
Helpful
2
Replies

Added value of having multiple BGP AS# for a single VRF on IP-VPN

Go to solution
ccie16351
Level 1
Level 1

‎02-27-2012 06:24 PM - edited ‎03-04-2019 03:27 PM

Hi folks,

  I just wonder if there is any added value of having mutiple private AS numbers for a single VRF, compared to the usual practise of having one single AS for the entire enterprise network of a given customer.  The solution provider is presenting a solution, basically connecting branches to Primary Data Center & DRC using 3-AS numbers, one AS for Primary Data Center, and one for Disaster Recovery Center and one for all the 1,000+ branaches.

Appreciate your input.

Sami

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
milan.kulik
Level 10
Level 10

‎02-28-2012 12:17 AM

Hi,

if the provider is using the same AS number for all sites belonging to the cusomer, it's sometimes difficult to troubleshoot possible routing problems from the CE router point of view.

As the provider has to use BGP features like as-override or allowas-in to make a CE router to accept prefixes originated be other sites using the same AS number. And then looking into a CE router BGP table it's not clear which site the prefix was originated from.

So IMHO, the 3-AS number concept you mentioned is a minimum which should be used.

HTH,

Milan

View solution in original post

0 Helpful

Go to solution
Giuseppe Larosa
Hall of Fame
Hall of Fame

‎02-28-2012 02:39 AM

Hello Sami,

as explained by Milan using multiple AS numbers can provide advantages in troubleshooting.

I would add that in your scenario the use of multiple AS numbers on the customer side allows to build a clear hiearchy of BGP routes from the point of view of branch offices.

By using different AS numbers, as-override feature is not needed on the provider(s) side, and routes originated on the disaster recovery site can be made less preferred by simply using AS path prepending that is reported to every branch site.

If also branch to branch communication should be blocked for any reason it is enough to skip the as-override on the provider site of each branch facing PE node.

Hope to help

Giuseppe

View solution in original post

0 Helpful
2 Replies 2

Go to solution
milan.kulik
Level 10
Level 10

‎02-28-2012 12:17 AM

Hi,

if the provider is using the same AS number for all sites belonging to the cusomer, it's sometimes difficult to troubleshoot possible routing problems from the CE router point of view.

As the provider has to use BGP features like as-override or allowas-in to make a CE router to accept prefixes originated be other sites using the same AS number. And then looking into a CE router BGP table it's not clear which site the prefix was originated from.

So IMHO, the 3-AS number concept you mentioned is a minimum which should be used.

HTH,

Milan

0 Helpful

Go to solution
Giuseppe Larosa
Hall of Fame
Hall of Fame

‎02-28-2012 02:39 AM

Hello Sami,

as explained by Milan using multiple AS numbers can provide advantages in troubleshooting.

I would add that in your scenario the use of multiple AS numbers on the customer side allows to build a clear hiearchy of BGP routes from the point of view of branch offices.

By using different AS numbers, as-override feature is not needed on the provider(s) side, and routes originated on the disaster recovery site can be made less preferred by simply using AS path prepending that is reported to every branch site.

If also branch to branch communication should be blocked for any reason it is enough to skip the as-override on the provider site of each branch facing PE node.

Hope to help

Giuseppe

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card