-
Notifications
You must be signed in to change notification settings - Fork 2
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
Wolfgang Tremmel
committed
Feb 9, 2024
1 parent
3b69400
commit 6ef7f62
Showing
1 changed file
with
25 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,25 @@ | ||
# Require policy to start a BGP session | ||
|
||
Some routers accept configuration commands as you type them in line by line. At others you *commit* your configuration once you have completed it. | ||
|
||
Now, if you setup a BGP session to a neighbor and the router accepts it line by line, the session will be established once "enough" configuration is entered, independent if you have completed the configuration or not. | ||
|
||
So imagine you enter the neigbhbors AS number and IP address and then you go for a coffee. This might be enough to establish a session. Without any filtering, you now will receive everything from that neighbor and also announce every valid prefix in your own BGP tables. Most of the times, this is not what you want. | ||
|
||
[RFC8212](https://www.rfc-editor.org/rfc/rfc8212.html) | ||
requires that you *must* configure an import and an export policy (= some filtering) on any external BGP session, otherwise the session will not be initiated or accepted. | ||
|
||
The compliance of BGP implementations of RFC8212 is tracked | ||
[here](https://github.com/bgp/RFC8212). | ||
|
||
Configuration examples: | ||
|
||
=== "Cisco IOS XR" | ||
No configuration necessary, RFC8212 is supported by default. | ||
|
||
=== "FRRouting" | ||
This is enabled by default for traditional configuration. | ||
``` | ||
router bgp 64500 | ||
bgp ebgp-requires-policy | ||
``` |