11. BGP

Question 1

What is a BGP session?

Answer 1

An esthablished adjacency between 2 BGP routers

Question 2

What are the 2 types of BGP sessions?

Answer 2

• iBGP (in the same ASN)

- eBGP (not in the same ASN)

Question 3

What are the 4 BP path attributes (PAs)?

Answer 3

• Well-known mandatory
• Well-known discretionary
• Optional transative
• Optional non-transative

Question 4

What is the difference between well-known and optional PAs?

Answer 4

Well-known PAs need to be recognized by all BGP implementations

Question 5

What is the difference between well-known mandatory and discretionary?

Answer 5

Mandatory must be included in every prefix advertisement, discretionary may of may not

Question 6

What is the difference between transative and non-transative PAs?

Answer 6

Transative stay with the route advertisement. Non-transative cannot be shared from AS to AS.

Question 7

What is the Network Layer Reachability Information?

Answer 7

The NLRI is the routing update that consists of:

• The network prefix
• Prefix length
• Any BGP PAs for that specific route

Question 8

What type of routing protocol is BGP?

Answer 8

A path vector, but behaves as a distance vector.

Question 9

What is the AS_path attribute?

Answer 9

A well-know mandatory that prevents routing loops. If a router receives an advertisement with his AS, it discards

Question 10

What is AFI?

Answer 10

Address family identifier, it correlates to a specific network protocol

Question 11

What is SAFI?

Answer 11

Subsequent address family identifier, such as unicast or multicast

Question 12

What is the MP_REACH_NRLI?

Answer 12

A multiprotocol attribute to allow advertisement of various protocols

Question 13

What is the MP_UNREACH_NRLI?

Answer 13

Used to withdraw routes or removing them from advertisement

Question 14

What is the BGP port number?

Answer 14

179

Question 15

Can BGP run over multiple hops?

Answer 15

Yes, but an underlaying route is needed for this. This can be static or via a routing protocol.

Question 16

How do BGP neighbors connect?

Answer 16

They use the ARP table, or routing table for Multi-hop

Question 17

What are the 4 BGP messages?

Answer 17

• Open
• Update
• Notification
• Keepalive

Question 18

What is in the open message?

Answer 18

• BGP version
• ASN
• Hold time
• BGP identifier (RID)

Question 19

What is the hold time attribute?

Answer 19

It sets the hold timer. Upon receipt of an update or keepalive the timer will resets. If the timer reaches 0 the session will be torn down.

Question 20

What is the default hold time?

Answer 20

180 seconds, must be at least 3

Question 21

What is the BGP identifier?

Answer 21

The RID which must be higher than 0

Question 22

What is in the keepalive message?

Answer 22

Messages that are exchanged every 1/3 between peers. Can be turned of by placing the hold timer on 0. KEEPALIVE is also used as ACK.

Question 23

What is in the update message?

Answer 23

The NLRI, routing updates etc

Question 24

What is the finite-state machine?

Answer 24

FSM is used to maintain a table of all BGP peers and their status.

Question 25

What are the 6 BGP states?

Answer 25

- Idle - Connect - Active - OpenSent - OpenConfirm - Established

Question 26

What happens in the Idle stage?

Answer 26

BGP detects a start event, tries to initiate a TCP connection, and listens for a new connection from another peer

Question 27

What happens if an error causes BGP to go back to the Idle state for the second time?

Answer 27

The ConnectRetry timers is set to 60 seconds and must decrement to 0 before a new connection can be initiated. Further errors wil double the timer in legnth of the previous one

Question 28

What happens in the Connect stage?

Answer 28

BGP initiates the connection. If the three-way handshake completes, the ConnectRetry timer resets, an OPEN message will be send to the neighbor. The status will be changed to OpenSent

Question 29

What happens if the ConnectRetry timer depletes before the Connect stage has completed?

Answer 29

A new TCP connection is attempted, the ConnectRetry timer is reset and the state is set to Active. The neighbor with the higher IP manages the connection

Question 30

What happens in the Active stage?

Answer 30

BGP start a new three-way handshake,. If succesful an OPEN message is send, the hold timer placed 4 minutes and the status changed to OpenSent.

Question 31

What happens if the connection attempt fails in the Active state?

Answer 31

The state moves back to Connect and the ConnectRetry timer is reset

Question 32

What happens in the OpenSent stage?

Answer 32

The router will wait for an open message and will compare: - BGP version - Source IP - AS - RID - Security parameters The hold timer is negotiated (lower wins) and a KEEPALIVE is send (if not set to 0). The state if moved to OpenConfirm

Question 33

What happens when an error is found in the OPEN message during the OpenSent stage?

Answer 33

A notification message is sent, and the state is moved back to Idle

Question 34

What happens when TCP receives a disconnect message in the OpenSent state?

Answer 34

BGP closes the connection and goes back to Active

Question 35

What happens in the OpenConfirm stage?

Answer 35

BGP waits for a KEEPALIVE of NOTIFICATION. If a KEEPALIVE is received the state will move to established. With NOTIFICATION back to idle

Question 36

What happens in the Established stage?

Answer 36

Routes will be exchanged with UPDATE messages.

Question 37

What are the steps to activate BGP?

Answer 37

- Router BGP - RID - Neighbor IP - Neighbor interface (optional) - Authentication (optional) - Modify timers (optional) - Address family - Activate

Question 38

What differs the IPv4 address family from the others?

Answer 38

The IPv4 address family is activated by default

Question 39

What is the command to turn off automatic address family activation?

Answer 39

no bgp default ip4-unicast

Question 40

What is the command to verify BGP sessions?

Answer 40

show bgp afi safi summary

Question 41

What are the three types of tables that BGP uses and how many are there?

Answer 41

- Adj-RIB-in (1 per peer) - Loc-RIB - Adj-RIB-out (1 per peer)

Question 42

What is in the Adj-RIB-in ?

Answer 42

NLRI routes before inbound policies have been applied. The table is cleared after all route policies are processed. All unprocessed routes.

Question 43

What is in the Loc-RIB?

Answer 43

Contains the NLRI routes originated locally or received from other peers. After the validity and next-hop reachability check, BGP best path algorithm selects the best NLRI for a prefix

Question 44

What is in the Adj-RIB-out?

Answer 44

Contains NLRI routes after policies have been applied. All processed routes.

Question 45

What happens if you use the network statement in BGP?

Answer 45

The BGP process will search the global RIB for an exact network prefix. If this is visible it will install the prefix in the Loc-RIB

Question 46

What are the PAs given to a prefix installed in the Loc-RIB?

Answer 46

Connected: Next-hop 0.0.0.0, Origin i for iBGP, weight 32,768 -> no metric Static/protocol: Next-hop RIB, Origin i for iBGP, weight 32,768, MED is the IBP metric

Question 47

What is the process for advertisement to other peers in BGP?

Answer 47

- Verify if the NLRI is valid and that it can be resolved in the RIB - Place in Loc-RIB - Validity check - Process outbound policies - Place in Adj-RIB-out - Advertise

Question 48

What is the BGP process for routes received from other peers?

Answer 48

- Store the route in Adj-RIB-in - Apply inbound policies - Update the Loc-RIB and clear Adj-RIB-in - Validity check (if fails the route remains in the loc-RIB) - Identify best path and pass only the best path and its attributes - Install best path in the global RIB - Apply outbound policies - Place in Adj-RIB-out - Advertise to other peers

Question 49

What command shows the Loc-RIB?

Answer 49

show bgp afi safi

Question 50

What does the asterix indicatie in the Loc-RIB table?

Answer 50

That the route is valid

Question 51

What does the angle bracket indicatie in the Loc-RIB table?

Answer 51

That this is the best path

Question 52

What type of PA is next hop?

Answer 52

Well-known mandatory

Question 53

What type of PA is Multiple-exit discriminator (MED) 'metric'?

Answer 53

Optional non-transative

Question 54

What type of PA is LocPrf (local preference)?

Answer 54

Well-known discretionary

Question 55

With what command can you check the Adj-RIB-out table?

Answer 55

Show bgp afi safi neighbors A.A.A.A advertised routes

Question 56

What is the AD of BGP?

Answer 56

20 for EBGP | 200 for IBGP

Question 57

Why must iBGP require full mesh?

Answer 57

iBGP is not allowed to advertise routes received by other BGP peers. To overcome this BGP peers must establish connections to all BGP peers in the AS

Question 58

What are the reserved 2-octet ASNs?

Answer 58

- 0 - 23456 - 64496 - 64511 - 64512 - 65534 (private) - 65535

Question 59

What is the capability code of the 4-octet ASN?

Answer 59

65

Question 60

What are the reserved 4-octet ASNs?

Answer 60

4,200.000.000 - 4,294,967,295

Question 61

What are the public 4-octet ASNs?

Answer 61

1.16 - 4,199,999,999

Question 62

What is the differene between ASDOT and ASPLAIN notations?

Answer 62

ASPLAIN is decimal and default | ASDOT is binairy

Question 63

What are type of PAs are AS4_PATH & AS4_AGGREGATOR?

Answer 63

Optional transative that provide backwards compatibility

Question 64

Where is the ASN 23456 for?

Answer 64

To provide transition between 2-octet and 4-octet systems

Question 65

Where do the TCP messages FIN, PSH, RST & ECN stand for?

Answer 65

FIN - Finish session PSH - Needs to happen right now RST - Reset ECN - network congestion

Question 66

What is the command to turn on the neighbors received routes?

Answer 66

neighbors NETWORK soft-reconfiguration inbound

Question 67

How can you connect not directly connected peers in eBGP?

Answer 67

- Enable the eBGP multihop | - Disable the connected-check

Question 68

What is the default eBGP TTL?

Answer 68

1