Inter-Domain Routing: BGP Brad Karp UCL Computer Science (drawn mostly from lecture notes by Hari Balakrishnan and Nick Feamster, MIT) CS 6007/GC 15/GA 07 18 th March, 2009
Outline • • Context: Inter-Domain Routing Relationships between ASes Enforcing Policy, not Optimality BGP Design Goals BGP Protocol e. BGP and i. BGP Route Attributes Synthesis: Policy through Route Attributes 2
Context: Inter-Domain Routing • So far, have studied intra-domain routing – Domain: group of routers owned by a single entity, typically numbering at most 100 s – Distance Vector, Link State protocols: types of Interior Gateway Protocol (IGP) • Today’s topic: inter-domain routing – Routing protocol that binds domains together into global Internet – Border Gateway Protocol (BGP): type of Exterior Gateway Protocol (EGP) 3
Context: Why Another Routing Protocol? • Scaling challenge: – millions of hosts on global Internet – ultra-naïve approach: use DV or LS routing, each 32 bit host address is a destination – naïve approach: use DV or LS routing, each subnet’s address prefix (i. e. , Ethernet broadcast domain) is a destination – DV and LS cannot scale to these levels • prohibitive message complexity for LS flooding • loops and slow convergence for DV • Keeping routes current costs traffic proportional to product of number of nodes and rate of topological change 4
Context: Scaling Beyond the Domain • Address allocation challenge: – Each host on Internet must have unique 32 bit IP address – How to enforce global uniqueness? – Onerous to consult central authority for each new host • Hierarchical addressing: solves scaling and address allocation challenges 5
Context: Hierarchical Addressing • Divide 32 -bit IP address hierarchically – e. g. , 128. 16. 64. 200 is host at UCL – e. g. , 128. 16. 64 prefix is UCL CS dept – e. g. , 128. 16 prefix is all of UCL – destination is a prefix – writing prefixes: • 128. 16/16 means “high 16 bits of 128. 16. x. y” • netmask 255. 0. 0 means “to find prefix of 32 bit address, bit-wise AND 255. 0. 0 with it” – prefixes need not be multiples of 8 bits long 6
Hierarchical Addressing: Pro • Routing protocols generally incur cost that increases with number of destinations – Hierarchical addresses aggregate – Outside UCL, single prefix 128. 16 can represent thousands of hosts on UCL network – End result: “reduces” number of destinations in global Internet routing system • Centralized address allocation easier for smaller user/host population – Hierarchical addresses assure global uniqueness with only local coordination – Inside UCL, local authority can allocate low-order 16 bits of host IP addresses under 128. 16 prefix – End result: decentralized unique address allocation 7
Hierarchical Addressing: Con • Inherent loss of information from global routing protocol less optimal routes – Nodes outside UCL know nothing about UCL internal topology – UCL host in Antarctica has 128. 16 prefix all traffic to it must be routed via London • Host addresses indicate both host identity and network attachment point – Suppose move my UCL laptop to Berkeley – IP address must change to Berkeley one, so aggregates under Berkeley IP prefix! 8
Context: Autonomous Systems • A routing domain is called an Autonomous System (AS) • Each AS known by unique 16 -bit number • IGPs (e. g. , DV, LS) route among individual subnets • EGPs (e. g. , BGP) route among ASes • AS owns one or handful of address prefixes; allocates addresses under those prefixes • AS typically a commercial entity or other organization • ASes often competitors (e. g. , different ISPs) 9
Global Internet Routing: Naïve View • Find globally shortest paths Dense No correspondence to • reality! connectivity with many redundant paths • Route traffic cooperatively onto lightly loaded paths 10
Global Internet Routing, Socialist Style • Multiple, interconnected ISPs Little correspondence • ISPs all equal: to reality! – in how connected they are to other ISPs – in geographic extent of their networks 11
Global Internet Routing: Capitalist Style • Tiers of ISPs: – Tier 3: local geographically, end customers – Tier 2: regional geographically – Tier 1: global geographically, ISP customers, no default routes Reality! • Each ISP an AS, runs own IGP internally • AS operator sets policies for how to route to others, how to let others route to his AS 12
Outline • • Context: Inter-Domain Routing Relationships between ASes Enforcing Policy, not Optimality BGP Design Goals BGP Protocol e. BGP and i. BGP Route Attributes Synthesis: Policy through Route Attributes 13
AS-AS Relationships: Customers and Providers • Smaller ASes (corporations, universities) typically purchase connectivity from ISPs • Regional ISPs typically purchase connectivity from global ISPs • Each such connection has two roles: – Customer: smaller AS paying for connectivity – Provider: larger AS being paid for connectivity • Other possibility: ISP-to-ISP connection 14
AS-AS Relationship: Transit • Provider-Customer ASAS connections: transit • Provider allows customer to route to (nearly) all destinations in its routing tables • Transit nearly always involves payment from customer to provider 15
AS-AS Relationship: Peering • Peering: two ASes (usually ISPs) mutually allow one another to route to some of the destinations in their routing tables • Typically these are their own customers (whom they provide transit) • By contract, but usually no money changes hands, so long as traffic ratio is narrower than, e. g. , 4: 1 16
Financial Motives: Peering and Transit • Peering relationship often between competing ISPs • Incentives to peer: – Typically, two ISPs notice their own direct customers originate a lot of traffic for the other – Each can avoid paying transit costs to others for this traffic; shunt it directly to one another – Often better performance (shorter latency, lower loss rate) as avoid transit via another provider – Easier than stealing one another’s customers • Tier 1 s must typically peer with one another to build complete, global routing tables 17
Financial Motives: Peering and Transit (cont’d) • Disincentives to peer: – Economic disincentive: transit lets ISP charge customer; peering typically doesn’t – Contracts must be renegotiated often – Need to agree on how to handle asymmetric traffic loads between peers 18
Outline • • Context: Inter-Domain Routing Relationships between ASes Enforcing Policy, not Optimality BGP Design Goals BGP Protocol e. BGP and i. BGP Route Attributes Synthesis: Policy through Route Attributes 19
The Meaning of Advertising Routes • When AS A advertises a route for destination D to AS B, it effectively offers to forward all traffic from AS B to D • Forwarding traffic costs bandwidth • ASes strongly motivated to control which routes they advertise – no one wants to forward packets without being compensated to do so – e. g. , when peering, only let neighboring AS send to specific own customer destinations enumerated peering contract 20
Advertising Routes for Transit Customers • ISP motivated to advertise routes to its own customers to its transit providers – Customers paying to be reachable from global Internet – More traffic to customer, faster link customer must buy • If ISP hears route for its own customer from multiple neighbors, should favor advertisement from own customer 21
Routes Heard from Providers • If ISP hears routes from its provider (via a transit relationship), to whom does it advertise them? – Not to ISPs with peering relationships; they don’t pay, so no motivation to provide transit service for them! – To own customers, who pay to be able to reach global Internet 22
Example: Routes Heard from Providers • ISP P announces route to C’P, own customer, to X • X doesn’t announce C’P to Y or Z; no revenue from peering • X announces C’P to Ci; they’re paying to be able to reach everywhere 23
Routes Advertised to Peers • Which routes should an ISP advertise to ASes with whom it has peering relationships? – Routes for all own downstream transit customers – Routes to ISP’s own addresses – Not routes heard from upstream transit provider of ISP; peer might route via ISP for those destinations, but doesn’t pay – Not routes heard from other peering relationships (same reason!) 24
Example: Routes Advertised to Peers • ISP X announces Ci to Y and Z • ISP X doesn’t announce routes heard from ISP P to Y or Z • ISP X doesn’t announce routes heard from ISP Y to ISP Z, or vice-versa 25
Route Export: Summary • ISPs typically provide selective transit – Full transit (export of all routes) for own transit customers in both directions – Some transit (export of routes between mutual customers) across peering relationship – Transit only for transit customers (export of routes to customers) to providers • These decisions about what routes to advertise motivated by policy (money), not by optimality (e. g. , shortest paths) 26
Route Import • Router may hear many routes to same destination network • Identity of advertiser very important • Suppose router hears advertisement to own transit customer from other AS – Shouldn’t route via other AS; longer path! – Customer routes higher priority than routes to same destination advertised by providers or peers • Routes heard over peering higher priority than provider routes – Peering is free; you pay provider to forward via them • customer > peer > provider 27
Outline • • Context: Inter-Domain Routing Relationships between ASes Enforcing Policy, not Optimality BGP Design Goals BGP Protocol e. BGP and i. BGP Route Attributes Synthesis: Policy through Route Attributes 28
Border Gateway Protocol (BGP): Design Goals • Scalability in number of ASes • Support for policy-based routing – tagging of routes with attributes – filtering of routes • Cooperation under competitive pressure – BGP designed to run on successor to NSFnet, the former single, government-run backbone 29
BGP Protocol • BGP runs over TCP, port 179 • Router connects to other router, sends OPEN message • Both routers exchange all active routes in their tables (possibly minutes, depending on routing table sizes) • In steady state, two main message types: – announcements: changes to existing routes or new routes – withdrawals: retraction of previously advertised route • No periodic announcements needed; TCP provides reliable delivery 30
BGP Protocol (cont’d) • BGP doesn’t chiefly aim to compute shortest paths (or minimize other metric, as do DV, LS) • Chief purpose of BGP is to announce reachability, and enable policy-based routing • BGP announcement: – IP prefix: [Attribute 0] [Attribute 1] […] 31
Outline • • Context: Inter-Domain Routing Relationships between ASes Enforcing Policy, not Optimality BGP Design Goals BGP Protocol e. BGP and i. BGP Route Attributes Synthesis: Policy through Route Attributes 32
e. BGP and i. BGP • e. BGP: external BGP advertises routes between ASes • i. BGP: internal BGP propagates external routes throughout receiving AS 33
e. BGP and i. BGP (cont’d) • Each e. BGP participant hears different advertisements from neighboring ASes • Within propagate routes learned to e. BGP Must AS 1, choosing external route via destination in AS 2 amounts to choosing egress throughout AS router within AS 1 • Design goals: – Loop-free forwarding: forwarding paths over routes learned via e. BGP should not loop – Complete visibility: all routers within AS must choose same, best route to destination learned via e. BGP 34
Simple i. BGP: Full Mesh • How to achieve complete visibility? – Push all routes learned via e. BGP to all internal routers using i. BGP Pro: simple • Full Mesh: each e. BGP Con: scales badly in intra-AS router count: router floods routes it learns O(e 2 + ei) i. BGP sessions to all other routers in AS (where e e. BGP routers, i i. BGP routers) More scalable i. BGP uses • Flooding doneor route reflectors over TCP, notes confederations; details in lectureusing intra-AS routing provided by IGP (e. g. , link state routing) 35
Synthesis: Routing with IGP + i. BGP • Every router in AS now learns two routing tables – IGP (e. g. , link state) table: routes to every router within AS, via interface – EGP (e. g. , i. BGP) table: routes to every prefix in global Internet, via egress router IP • Produce one integrated forwarding table – All IGP entries kept as-is – For each EGP entry • find next-hop interface i for egress router IP in IGP table • add entry: <foreign prefix, i> – End result: O(prefixes) entries in all routers’ tables 36
Outline • • Context: Inter-Domain Routing Relationships between ASes Enforcing Policy, not Optimality BGP Design Goals BGP Protocol e. BGP and i. BGP Route Attributes Synthesis: Policy through Route Attributes 37
Using Route Attributes • Recall: BGP route advertisement is simply: – IP Prefix: [Attribute 0] [Attribute 1] […] • Administrators enforce policy routing using attributes: – filter and rank routes based on attributes – modify “next hop” IP address attribute – tag a route with attribute to influence ranking and filtering of route at other routers 38
NEXT HOP Attribute • Indicates IP address of next-hop router • Modified as routes are announced – e. BGP: when border router announces outside of AS, changes to own IP address – i. BGP: when border router disseminates within AS, changes to own IP address – i. BGP: any i. BGP router that repeats route to other i. BGP router leaves unchanged 39
ASPATH Attribute: Path Vector Routing • Contains full list of AS numbers along path to destination prefix • Ingress router prepends own AS number to ASPATH of routes heard over e. BGP • Functions like distance vector routing, but with explicit enumeration of AS “hops” • Barring local policy settings, shorter ASPATHs preferred to longer ones • If reject routes that contain own AS number, cannot choose route that loops among ASes! 40
MED Attribute: Choosing Among Multiple Exit Points • ASes often connect at multiple points (e. g. , global backbones) • ASPATHs will be same length • But AS’ administrator may prefer a particular transit point – …often the one that saves him money! • MED Attribute: Multi-Exit Discriminator, allows choosing transit point between two ASes 41
MED Attribute: Example • Provider P, customer C • Source: Boston on P, Destination: San Francisco on C • Whose backbone for cross-country trip? • C wants traffic to cross country on P 42
MED Attribute: Example (cont’d) • C adds MED attribute to advertisements of routes to DSF – Integer cost AS need not honor MEDs from neighbor • C’s router in other AS SF AS only motivated to honor MEDs from advertises MED 100; with whom financial settlement in place; i. e. , not in BOS advertises 500 done in peering arrangements • P should choose MED Most ISPs prefer shortest-exit routing: get packet onto someone else’s backbone as quickly with least cost for as possible destination DSF Result: highly asymmetric routes! (why? ) • Result: traffic crosses country on P 43
Outline • • Context: Inter-Domain Routing Relationships between ASes Enforcing Policy, not Optimality BGP Design Goals BGP Protocol e. BGP and i. BGP Route Attributes Synthesis: Policy through Route Attributes 44
Synthesis: Multiple Attributes into Policy Routing • How do attributes interact? Priority order: Priority Rule Details 1 LOCAL PREF Highest LOCAL PREF (e. g. , prefer transit customer routes over peer and provider routes) 2 ASPATH Shortest ASPATH length 3 MED Lowest MED 4 e. BGP > i. BGP Prefer routes learned over e. BGP vs. over i. BGP 5 IGP path “Nearest” egress router 6 Router ID Smallest router IP address 45
Summary: Inter-Domain Routing with BGP • Inter-domain routing chiefly concerned with policy, not optimality – Economic motivation: cost of carrying traffic – Different relationships demand different routing: customer-provider vs. peering • BGP: Path-Vector inter-domain routing protocol – – Scalable in number of ASes Route attributes support policy routing Loop-free at AS granularity Shortest ASPATHs achieved, after policy enforced • Behavior and configuration of BGP very complex and poorly understood; open research problem! 46
Скачать презентацию Inter-Domain Routing BGP Brad Karp UCL Computer Science
45b4e2869b1a06d4fccf8953139eee3e.ppt