Differences

This shows you the differences between two versions of the page.

--- wiki:bgp_ip_transit_info [2025/12/18 12:11] – add more info antisa
+++ wiki:bgp_ip_transit_info [2026/04/13 09:46] (current) – [References] add netactuate link antisa
@@ Line 35: / Line 35: @@
 if you do split it smaller then a /32, then you should create that route object as well to match.
+===== gobgp software example =====
+A working BGP session with [[https://github.com/osrg/gobgp/blob/master/docs/sources/getting-started.md|gobgp software]].
+You need to allow inbound port 179 in the firewall for both v4 and v6.
+For IPv6 you need to have that set up on the network interface as well:
+<code>
+: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP group default qlen 1000
+    link/ether a0:36:9f:d6:67:c0 brd ff:ff:ff:ff:ff:ff
+    inet 198.44.157.3/29 brd 198.44.157.7 scope global noprefixroute eth0
+       valid_lft forever preferred_lft forever
+    inet6 2607:9000:600:24::2/64 scope global noprefixroute
+       valid_lft forever preferred_lft forever
+    inet6 fe80::a236:9fff:fed6:67c0/64 scope link noprefixroute
+       valid_lft forever preferred_lft forever
+</code>
+//gobgpd.conf//:
+<code>
+[global.config]
+  as = 203619
+  router-id = "198.44.157.3"
+[[neighbors]]
+  [neighbors.config]
+    neighbor-address = "198.44.157.1"
+    peer-as = 11878
+[[neighbors]]
+  [neighbors.config]
+    neighbor-address = "2607:9000:600:24::1"
+    peer-as = 11878
+</code>
+//router-id// should be the IP address of your interface (eth0)
+//as// is your assigned ASN number.
+//neighbor-address// is the IP of the peer, provider should give you this info.
+//peer-as// is peer ASN, also given by provider.
+Provider might also give you a //multihop-ttl// value. If this is the case you need to [[https://github.com/osrg/gobgp/blob/master/docs/sources/ebgp-multihop.md|add]] the following to both ipv4 and ipv6  configuration to above (change the value):
+<code>
+[neighbors.ebgp-multihop.config]
+    enabled = true
+    multihop-ttl = 64
+</code>
+After starting gobgp you should see the session is established:
+<code>
+# gobgp neighbor
+Peer                   AS     Up/Down State       |#Received  Accepted
+.44.157.1        11878 1d 19:27:31 Establ      |        9         9
+:9000:600:24::1 11878    00:13:06 Establ      |        1         1
+</code>
+Check the routing table
+<code>
+# gobgp global rib -a ipv4
+   Network              Next Hop             AS_PATH              Age        Attrs
+*  0.0.0.0/0            198.44.157.1         11878 36236          00:06:22   [{Origin: i}]
+*  23.234.84.0/24       198.44.157.1         11878                00:06:22   [{Origin: i}]
+*  23.234.85.0/24       198.44.157.1         11878                00:06:22   [{Origin: i}]
+*  23.234.86.0/24       198.44.157.1         11878                00:06:22   [{Origin: i}]
+*  23.234.87.0/24       198.44.157.1         11878                00:06:22   [{Origin: i}]
+*  89.124.253.0/24      0.0.0.0                                   00:06:23   [{Origin: ?}]
+*  198.44.132.0/24      198.44.157.1         11878                00:06:22   [{Origin: i}]
+*  198.44.140.0/24      198.44.157.1         11878                00:06:22   [{Origin: i}]
+*  198.44.157.0/24      198.44.157.1         11878                00:06:22   [{Origin: i}]
+*  198.54.132.0/24      198.44.157.1         11878                00:06:22   [{Origin: i}]
+# gobgp global rib -a ipv6
+   Network              Next Hop             AS_PATH              Age        Attrs
+*  ::/0                 2607:9000:600:24::1  11878 36236          00:06:27   [{Origin: i}]
+*  2a03:c040::/48       ::                                        00:06:24   [{Origin: ?}]
+</code>
+Now you can assing IPs from the subnet you own to the loopback interface. It should work even though its not on the eth0 interface.
+<code>
+: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
+    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
+    inet 127.0.0.1/8 scope host lo
+       valid_lft forever preferred_lft forever
+    inet 89.124.253.5/32 scope global lo
+       valid_lft forever preferred_lft forever
+    inet6 2a03:c040::5/128 scope global
+       valid_lft forever preferred_lft forever
+    inet6 ::1/128 scope host
+       valid_lft forever preferred_lft forever
+</code>
+<WRAP center round box 60%>
+Sometimes you might get an IP address from the private space from the provider like 10.255.0.2 for your side of the BGP session. You need to add it (via ''ip'', ''nmcli'' etc.) to your main interface for it to work e.g.
+<code>
+: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
+    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
+    inet 127.0.0.1/8 scope host lo
+       valid_lft forever preferred_lft forever
+    inet 89.124.253.5/32 scope global lo
+       valid_lft forever preferred_lft forever
+    inet6 2a03:c040::5/128 scope global
+       valid_lft forever preferred_lft forever
+    inet6 ::1/128 scope host
+       valid_lft forever preferred_lft forever
+: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP group default qlen 1000
+    link/ether 5c:b9:01:90:1c:e8 brd ff:ff:ff:ff:ff:ff
+    inet 45.128.135.226/32 scope global noprefixroute eth0
+       valid_lft forever preferred_lft forever
+    inet 10.255.0.2/30 scope global eth0
+       valid_lft forever preferred_lft forever
+...
+# gobgp neighbor
+Peer            AS  Up/Down State       |#Received  Accepted
+.255.0.1  206804 00:00:55 Establ      |        1         1
+fd00:136::1 206804    never Active      |        0         0
+</code>
+</WRAP>
+===== Checking propagation =====
+RIPE has BG play tool to check the history of route propagation here https://stat.ripe.net/bgplay/ and https://stat.ripe.net/lg.
+{{:wiki:screenshots:2026:02:ripe_bgplay.png?direct&600|}}
+Here's an example of Tzulo server provider which advertises to multiple upstreams
+https://bgp.he.net/AS11878#_graph4
+https://bgp.tools/as/11878#connectivity
+which has multiple arrows pointing to upstreams.
+===== Updating AS path length =====
+When advertising IP from multiple providers, one can have a shorter AS path and take all the traffic for itself. You can adjust the length of the AS path on your side by prepending your AS number 1 or more times to extend the path.
+Example using gobgp:
+<code>
+[global.config]
+...
+[global.apply-policy.config]
+export-policy-list = ["prepend_as_path"]
+default-import-policy = "accept-route"
+default-export-policy = "accept-route"
+[[neighbors]]
+...
+...
+[[policy-definitions]]
+name = "prepend_as_path"
+  [[policy-definitions.statements]]
+  name = "stmt_prepend"
+    [policy-definitions.statements.actions]
+      route-disposition = "accept-route"
+    # number of times to prepend our asn. This allows for controlling
+    # the length of th AS path that packet takes so it affects routing
+    # https://www.noction.com/blog/as-path-and-as-path-prepending
+    [policy-definitions.statements.actions.bgp-actions.set-as-path-prepend]
+      as = "203619"
+      repeat-n = 1
+</code>
+Here we're prepending the path 1 additional time. After restarting the service notice a repeating ASN in //AS_PATH// column
+   # gobgp neighbor 213.155.129.101 adj-out
+   ID  Network              Next Hop             AS_PATH              AttrsFiltered
+   89.124.253.0/24      185.229.190.69       203619 203619        [{Origin: ?}]not filtered
+On RIPE Looking glass this will be shown as
+{{:wiki:screenshots:2026:02:ripe_lg.png?direct&600|}}
 ====== Tested on ======
-  *
+  * gobgp_version: 4.2.0
+  * January 2026.
 ====== See also ======
 ====== References ======
+  * https://null.53bits.co.uk/page/example-gobgp-config
+  * https://cs249i.stanford.edu/projects/project_1.pdf
+  * https://www.noction.com/blog/bgp-anycast
+  * https://render.com/blog/how-to-build-an-anycast-network
+  * https://datatracker.ietf.org/doc/html/rfc4271#autoid-1
+  * https://www.noction.com/blog/as-path-and-as-path-prepending
+  * https://www.netactuate.com/docs/guides/mixed-provider-anycast