peering-toolbox:single_upstream_two_private_peer
Differences
This shows you the differences between two versions of the page.
Next revision | Previous revision | ||
peering-toolbox:single_upstream_two_private_peer [2022/05/14 16:44] – created philip | peering-toolbox:single_upstream_two_private_peer [2022/08/26 19:56] (current) – [Route Object & ROAs] philip | ||
---|---|---|---|
Line 5: | Line 5: | ||
This section discusses the next stage which is commonly encountered after a network operator establishes their first ever peering connection: another party is interested in peering as well, because they see the benefits that can be gained. | This section discusses the next stage which is commonly encountered after a network operator establishes their first ever peering connection: another party is interested in peering as well, because they see the benefits that can be gained. | ||
- | To add the second peering, we build on what we learned in the previous section. | + | To add the second peering, we build on what we learned in the previous section, noting that we have already deployed our address space, set up IBGP, created Route Objects and ROAs, and created policies for our EBGP sessions. |
+ | A diagram showing the typical physical layout of this scenario is shown below: | ||
+ | |||
+ | {{: | ||
===== Enabling the second Peer ===== | ===== Enabling the second Peer ===== | ||
Line 23: | Line 26: | ||
==== Filtering ==== | ==== Filtering ==== | ||
- | As the name suggests, the peering is private. Which means only you see your peers prefixes; and they only see your prefixes. Because your prefix filter only allows your prefixes out, and their prefixes in, nothing else connected to your network (upstream or other private peer) will be able to see their prefixes, or access their network through you. This demonstrates the importance of always implementing prefix filters, inbound and outbound on EBGP sessions. [[https:// | + | As the name suggests, the peering is private. Which means only you see your peers prefixes; and they only see your prefixes. Because your prefix filter only allows your prefixes out, and their prefixes in, nothing else connected to your network (upstream or other private peer) will be able to see their prefixes, or access their network through you. This demonstrates the importance of always implementing prefix filters, inbound and outbound on EBGP sessions. |
+ | |||
+ | [[https:// | ||
+ | |||
+ | And [[https:// | ||
==== Route Object & ROAs ==== | ==== Route Object & ROAs ==== | ||
- | No change is needed in the Route Object in the IRR, or the ROAs created for the address space. Both indicate the ASN originating the prefix and this does not change when a new peering is established. | + | No change is needed in the [[[[peering-toolbox/ |
+ | |||
+ | ==== Scaling ==== | ||
+ | Adding further private peerings can be done using the same process. However, when many of these peers are in the same location, it is more efficient to create what is known as an Internet Exchange Point, and this will be examined in the next section of the Peering Toolbox. | ||
[[: | [[: |
peering-toolbox/single_upstream_two_private_peer.1652510645.txt.gz · Last modified: 2022/05/14 16:44 by philip