bird internet routing daemon
play

BIRD Internet Routing Daemon Ond rej Zaj cek CZ.NIC z.s.p.o. - PowerPoint PPT Presentation

Nov 15, 2023 •349 likes •630 views

BIRD Internet Routing Daemon Ond rej Zaj cek CZ.NIC z.s.p.o. 2015-02-16 Proceedings of netdev 0.1, Feb 14-17, 2015, Ottawa, On, Canada BIRD overview BIRD Internet Routing Daemon Routing protocols BGP, OSPF, RIP and BFD

  1. BIRD Internet Routing Daemon Ondˇ rej Zaj´ ıˇ cek CZ.NIC z.s.p.o. 2015-02-16 Proceedings of netdev 0.1, Feb 14-17, 2015, Ottawa, On, Canada

  2. BIRD overview ◮ BIRD Internet Routing Daemon ◮ Routing protocols BGP, OSPF, RIP and BFD ◮ IPv4 and IPv6 support ◮ Linux and BSD kernel support ◮ Free and open source software (GPL) Proceedings of netdev 0.1, Feb 14-17, 2015, Ottawa, On, Canada

  3. BIRD features ◮ Programmable filters ◮ Clear and structured config files ◮ Multiple protocol instances ◮ Multiple routing tables ◮ Automatic reconfiguration on the fly ◮ Extensive documentation Proceedings of netdev 0.1, Feb 14-17, 2015, Ottawa, On, Canada

  4. Typical applications ◮ OSPF routers in enterprise or small ISP networks ◮ BGP for external routing or route reflectors ◮ Route servers in internet exchange points BGP Route server: ◮ Brokering of routing information in IXPs ◮ Only distribution of routing information ◮ Task not suited for dedicated hardware routers ◮ Requirements for many tables and flexible filtering Proceedings of netdev 0.1, Feb 14-17, 2015, Ottawa, On, Canada

  5. BIRD deployments Euro-IX 2013: BIRD most popular route server in IXPs Proceedings of netdev 0.1, Feb 14-17, 2015, Ottawa, On, Canada

  6. Memory usage comparison Memory usage [MB] / number of paths in RIB [millions]. Results and the graph taken from independent comparison at http://wh.cs.vsb.cz/sps/images/b/ba/BGP route servery.pdf Proceedings of netdev 0.1, Feb 14-17, 2015, Ottawa, On, Canada

  7. BIRD Concepts ◮ Routes ◮ Protocols ◮ Tables ◮ Filters Table Static OSPF Kernel Proceedings of netdev 0.1, Feb 14-17, 2015, Ottawa, On, Canada

  8. Protocols ◮ Represent routing protocols (BGP, OSPF, RIP) ◮ Or other route sources (static, kernel, direct) ◮ Generate and receive routes ◮ Are connected to routing tables ◮ Protocols may have more instances Proceedings of netdev 0.1, Feb 14-17, 2015, Ottawa, On, Canada

  9. Tables ◮ Import and accumulate routes from protocols ◮ Preferred route is selected for each destination ◮ Then exported to attached protocols ◮ BIRD supports any number of tables ◮ Two tables can be connected through pipe Proceedings of netdev 0.1, Feb 14-17, 2015, Ottawa, On, Canada

  10. More routing tables ◮ Usually just one routing table ◮ Linux kernel supports more tables ◮ Can be used for e.g. policy routing ◮ Also for route servers Kernel 1 Kernel 2 Table A Pipe Table B BGP 1U BGP 1D BGP 2U BGP 2D Proceedings of netdev 0.1, Feb 14-17, 2015, Ottawa, On, Canada

  11. Filters ◮ Stand between protocol and table ◮ May modify, reject or accept routes ◮ Scripting language for route filtering ◮ Filter may access all route attributes ◮ Also for filtering of listings of routing tables Proceedings of netdev 0.1, Feb 14-17, 2015, Ottawa, On, Canada

  12. Filters – example define martians = [ 10.0.0.0/8+, 172.16.0.0/12+ 192.168.0.0/16+, 169.254.0.0/16+, 224.0.0.0/4+, 240.0.0.0/4+, 0.0.0.0/32-, 0.0.0.0/0{25,32} ]; filter bgp_in { if net ~ martians then reject; if bgp_path.first != 1234 then reject; if bgp_path.len > 64 then reject; if net ~ [120.10.0.0/16+, 120.20.0.0/16+] then bgp_local_pref = 500; else bgp_local_pref = 100; bgp_med = 0; accept; Proceedings of netdev 0.1, Feb 14-17, 2015, Ottawa, On, Canada }

  13. Essentials ◮ Separation of IPv4 and IPv6 ◮ Config file and reconfiguration ◮ Control socket, birdc shell and commands ◮ Logging ◮ show route [all] ◮ show protocols [all] ◮ show interfaces ◮ show ospf ... Proceedings of netdev 0.1, Feb 14-17, 2015, Ottawa, On, Canada

  14. Basic configuration router id 192.168.1.1; log syslog all; protocol device { } protocol static { import all; route 192.168.10.0/24 via 192.168.1.2; route 192.168.20.0/24 unreachable; } protocol kernel { export all; scan time 10; Proceedings of netdev 0.1, Feb 14-17, 2015, Ottawa, On, Canada }

  15. Commands – examples ◮ show route 192.168.1.0/24 ◮ show route for 192.168.1.10 ◮ show route protocol ospf1 ◮ show route where gw ∼ 192.168.0.0/16 ◮ show route where net.len ∼ [16..24, 32] ◮ show route where bgp path.len > 4 ◮ show route where proto ∼ ”bpg*” ◮ show route where ifname = ”eth0” ◮ show route filter myfilter ◮ show protocols ◮ enable | disable | restart ospf1 ◮ configure [timeout | undo | confirm] Proceedings of netdev 0.1, Feb 14-17, 2015, Ottawa, On, Canada ◮ down

  16. OSPF – Open Shortest Path First ◮ Popular protocol for internal routing ◮ OSPFv2 for IPv4 (RFC 2328) ◮ OSPFv3 for IPv6 (RFC 5340) ◮ Router monitors reachability of its neighbors ◮ Local network topology is distributed to neighbors (LSA - Link State Advertisement) ◮ Every router gets complete map of network ◮ And computes shortest paths to all destinations Proceedings of netdev 0.1, Feb 14-17, 2015, Ottawa, On, Canada

  17. OSPF configuration protocol ospf { import all; export filter { ospf_metric1 = 1000; if source = RTS_STATIC then accept; else reject; }; area 0 { interface "eth0" { cost 5; hello 5; wait 10; dead 60; }; interface "eth*" { cost 100; type pointopoint; }; }; Proceedings of netdev 0.1, Feb 14-17, 2015, Ottawa, On, Canada }

  18. BGP – Border Gateway Protocol ◮ Standard protocol for internet routing ◮ BGPv4 (RFC 4271) ◮ Router receives routes from its neighbors ◮ Chooses preferred routes by local policy ◮ Preferred routes are used for forwarding ◮ And possibly propagated to other neighbors ◮ Forwarded routes contain many additional route attributes Proceedings of netdev 0.1, Feb 14-17, 2015, Ottawa, On, Canada

  19. BIRD as BGP router protocol static { import all; route 10.10.0.0/16 reject; route 10.20.0.0/16 reject; } protocol bgp { import all; export where source = RTS_STATIC; local 192.168.1.1 as 65100; neighbor 192.168.1.2 as 65200; } Proceedings of netdev 0.1, Feb 14-17, 2015, Ottawa, On, Canada

  20. BFD – Bidirectional Forwarding Detection ◮ Protocol for neighbor reachability and liveness testing ◮ Supplementary protocol to OSPF, BGP, . . . ◮ Reaction time in tens to hundreds of ms ◮ Command show bfd sessions Proceedings of netdev 0.1, Feb 14-17, 2015, Ottawa, On, Canada

  21. BFD – Bidirectional Forwarding Detection protocol bfd { interface "eth*" { interval 50 ms; multiplier 4; }; } protocol bgp { . . . local 192.168.1.1 as 65100; neighbor 192.168.1.2 as 65200; bfd; } Proceedings of netdev 0.1, Feb 14-17, 2015, Ottawa, On, Canada

  22. IPv6 router advertisements ◮ For IPv6 stateless address autoconfiguration ◮ Easy way to generate IPv6 RAs from BIRD ◮ Support of RDNSS a DNSSL in RAs ◮ Dynamic IPv6 router advertisements protocol radv { interface "eth*"; rdnss 2001:0DB8:1234::10; dnssl "domain.cz"; trigger 2000::/3; } Proceedings of netdev 0.1, Feb 14-17, 2015, Ottawa, On, Canada

  23. Future plans ◮ Integrated multiprotocol design ◮ MPLS/VPN support ◮ Ethernet AF / bridge FDB support ◮ IS-IS protocol Proceedings of netdev 0.1, Feb 14-17, 2015, Ottawa, On, Canada

  24. Pitfalls Sockets API ◮ Nice for simple TCP sockets ◮ Not so nice for raw or multicast sockets ◮ Sending packets with specified src addr and iface ◮ bind() overloaded / useless for multicast ◮ On Linux, at least we have SO BINDTOIFACE ◮ IP PKTINFO vs IP SENDSRCADDR vs IP HDRINCL ◮ For IPv6, IPV6 PKTINFO works well Proceedings of netdev 0.1, Feb 14-17, 2015, Ottawa, On, Canada

  25. Pitfalls Ephemeral Source Port Selection ◮ IANA, RFC 6335 – range 49152–65535 should be used ◮ Linux – by default 32768–61000 ◮ Tunable by net.ipv4.ip local port range ◮ FreeBSD – by default 10000–65535, also tunable ◮ In FreeBSD, we have IP PORTRANGE HIGH cmsg ◮ Some BFD implmnttns reject packets with sport < 49152 Proceedings of netdev 0.1, Feb 14-17, 2015, Ottawa, On, Canada

  26. Pitfalls FIB, Netlink ◮ Multipath routes in IPv4 and IPv6 ◮ Missing RTM DELROUTE notifications for removed routes due to iface down ◮ IPv6 kernel device routes did not use RTPROT KERNEL ◮ IPv6 routes did not support RTN BLACKHOLE, RTN PROHIBIT ◮ net.ipv6.route.max size limit Proceedings of netdev 0.1, Feb 14-17, 2015, Ottawa, On, Canada

  27. Questions? http://labs.nic.cz/ http://bird.network.cz/ Proceedings of netdev 0.1, Feb 14-17, 2015, Ottawa, On, Canada

Recommend

BIRD Internet Routing Daemon Ond rej Zaj cek CZ.NIC z.s.p.o. RIPE 66 BIRD overview

BIRD Internet Routing Daemon Ond rej Zaj cek CZ.NIC z.s.p.o. RIPE 66 BIRD overview

BIRD Internet Routing Daemon Ond rej Zaj cek CZ.NIC z.s.p.o. RIPE 66 BIRD overview BIRD Internet Routing Daemon Routing protocols BGP, OSPF and RIP IPv4 and IPv6 support Linux and BSD kernel support Free and open

241 views • 13 slides
Internet routing is based on routing protocols that collect the input data No off-line route

Internet routing is based on routing protocols that collect the input data No off-line route

Introduction to Routing in Internet Internet basics IPv4 and ICMP Internet Addressing ARP - Address Resolution Protocol Routing Information (Distance Vector ) Protocol Principles 3-1 S-38.121 S-02 Rka, NB Internet routing is based on

214 views • 18 slides
Introduction to routing in the Internet Ethernet, switching vs. routing Internet architecture

Introduction to routing in the Internet Ethernet, switching vs. routing Internet architecture

Introduction to routing in the Internet Ethernet, switching vs. routing Internet architecture Addressing, routing principles Protocols: IPv4, ICMP, ARP (Chapters 23 in Huitema) Internet-1 S-38.2121 / Fall-07 / RKa, NB Ethernet Most

635 views • 26 slides
CS 557 Routing Measurements End to End Routing Behavior in the Internet Vern Paxson, 1996

CS 557 Routing Measurements End to End Routing Behavior in the Internet Vern Paxson, 1996

CS 557 Routing Measurements End to End Routing Behavior in the Internet Vern Paxson, 1996 Internet Routing Instability Labovitz, Malan, Jahanian, 1997 Spring 2013 End to End Routing Behavior Objective: Understand the actual behavior of

595 views • 22 slides
Internet Protocol: Routing Algorithms Internet Protocol: Routing Algorithms Srinidhi Varadarajan

Internet Protocol: Routing Algorithms Internet Protocol: Routing Algorithms Srinidhi Varadarajan

Internet Protocol: Routing Algorithms Internet Protocol: Routing Algorithms Srinidhi Varadarajan Routing Routing Rout ing prot ocol 5 Goal: det ermine good pat h (sequence of rout ers) t hru 3 B C net work f rom source t o dest .

636 views • 40 slides
THE LIBRESWAN PROJECT An Internet Key Exchange (IKE) daemon for IPsec Enterprise IPsec

THE LIBRESWAN PROJECT An Internet Key Exchange (IKE) daemon for IPsec Enterprise IPsec

THE LIBRESWAN PROJECT An Internet Key Exchange (IKE) daemon for IPsec Enterprise IPsec based VPN solution Make encryption the default mode of communication Certifjcations (FIPS, Common Criteria, USGv6, etc.)

917 views • 25 slides
Routing Jeff Chase Duke University IP Routing From Click IP Routing From Click Internet Map

Routing Jeff Chase Duke University IP Routing From Click IP Routing From Click Internet Map

Routing Jeff Chase Duke University IP Routing From Click IP Routing From Click Internet Map The Internet From CAIDA IP Address Allocation Originally (classful addrs), 4 address classes A: 0 | 7 bit network | 24 bit

573 views • 21 slides
Libreswan Teaching old code new tricks! Libreswan is an IKE (Internet Key Exchange) daemon. Its

Libreswan Teaching old code new tricks! Libreswan is an IKE (Internet Key Exchange) daemon. Its

Libreswan Teaching old code new tricks! Libreswan is an IKE (Internet Key Exchange) daemon. Its origins can be traced back to the 90s. But what is IKE and why should it run on NetBSD? BSDCan 2020 Andrew Cagney freenode.net #swan cagney

681 views • 40 slides
Securing Internet Routing Securing Internet Routing $ Local ISP Sharon Goldberg g Princeton

Securing Internet Routing Securing Internet Routing $ Local ISP Sharon Goldberg g Princeton

Jobtalk Securing Internet Routing Securing Internet Routing $ Local ISP Sharon Goldberg g Princeton University Based on work with: Based on work with: Boaz Barak, Shai Halevi, Aaron Jaggard, Vijay Ramachandran, Jennifer Rexford, Eran

1.12k views • 42 slides
10/20/08 Today P561: Network Systems Internet routing (BGP) Week 4: Internetworking II

10/20/08 Today P561: Network Systems Internet routing (BGP) Week 4: Internetworking II

10/20/08 Today P561: Network Systems Internet routing (BGP) Week 4: Internetworking II Tunneling and MPLS Wireless routing Wireless handoffs Tom Anderson Ratul Mahajan TA: Colin Dixon 2 Internet today Key goals for Internet routing

488 views • 11 slides
End-to-End Routing Behavior in the Internet in the Internet

End-to-End Routing Behavior in the Internet in the Internet

End-to-End Routing Behavior in the Internet in the Internet Objective Understand the large-scale behavior of routing in the

533 views • 25 slides
End-to-end principle All control in end stations by Dave Clark e.g. error and flow

End-to-end principle All control in end stations by Dave Clark e.g. error and flow

Introduction to routing in the Internet Internet architecture IPv4, ICMP, ARP Addressing, routing principles (Chapters 23 in Huitema) Internet-1 S-38.121 / Fall-04 / RKa, NB Internet Architecture Principles End-to-end principle All

893 views • 21 slides
Network Layer: Control Plane Part II Routing in the Internet: Intra vs. Inter-AS Routing

Network Layer: Control Plane Part II Routing in the Internet: Intra vs. Inter-AS Routing

Network Layer: Control Plane Part II Routing in the Internet: Intra vs. Inter-AS Routing Intra-AS: RIP and OSPF (quick recap) Inter-AS: BGP and Policy Routing Internet Control Message Protocol: ICMP network management

888 views • 61 slides
Internet Routing Dr. Miled M. Tezeghdanti May 8, 2012 Dr. Miled M. Tezeghdanti () Internet

Internet Routing Dr. Miled M. Tezeghdanti May 8, 2012 Dr. Miled M. Tezeghdanti () Internet

Internet Routing Dr. Miled M. Tezeghdanti May 8, 2012 Dr. Miled M. Tezeghdanti () Internet Routing May 8, 2012 1 / 71 Introduction Networks may be interconnected using Repeaters Work at the Physical layer Bridges Work at the Data-Link

997 views • 84 slides
On Inferring and Characterizing On Inferring and Characterizing Internet Routing Policies

On Inferring and Characterizing On Inferring and Characterizing Internet Routing Policies

On Inferring and Characterizing On Inferring and Characterizing Internet Routing Policies Internet Routing Policies Feng Wang Lixin Gao Department of Electrical and Computer Engineering University of Massachusetts, Amherst MA 01002, USA 1

450 views • 18 slides
Interplay between routing and forwarding routing algorithm Routing Algorithms and Routing local

Interplay between routing and forwarding routing algorithm Routing Algorithms and Routing local

Interplay between routing and forwarding routing algorithm Routing Algorithms and Routing local forwarding table header value output link in the Internet 0100 3 0101 2 0111 2 1001 1 value in arriving packets header 1 0111 2 3

403 views • 8 slides
End-to-end principle by Dave Clark Hop-by-hop control vs. End-to-end control In X.25

End-to-end principle by Dave Clark Hop-by-hop control vs. End-to-end control In X.25

Introduction to routing in the Internet Internet architecture IPv4, ICMP, ARP Addressing, routing principles (Chapters 23 in Huitema) Internet-1 S-38.2121 / Fall-06 / RKa, NB Internet Architecture Principles End-to-end principle by Dave

669 views • 23 slides
HAIR: Hierarchical Architecture for Internet Routing Re-Architecting the Internet ReArch 09

HAIR: Hierarchical Architecture for Internet Routing Re-Architecting the Internet ReArch 09

HAIR: Hierarchical Architecture for Internet Routing Re-Architecting the Internet ReArch 09 Wolfgang Mhlbauer ETH Zrich / TU Berlin wolfgang.muehlbauer@tik.ee.ethz.ch Anja Feldmann Luca Cittadini Randy Bush Olaf Maennel Deutsche

403 views • 21 slides
Internet Routing Inefficient BGP is designed for scalability, sacrificing performance

Internet Routing Inefficient BGP is designed for scalability, sacrificing performance

Internet Routing Inefficient BGP is designed for scalability, sacrificing performance Resilient Overlay Networks Link outages common, but routing tables take minutes to update CS294-4 Presentation Summarized data creates

708 views • 4 slides
End-to-end Routing Behavior in the Internet: A Re-Appraisal from Access Networks Introduction

End-to-end Routing Behavior in the Internet: A Re-Appraisal from Access Networks Introduction

End-to-end Routing Behavior in the Internet: A Re-Appraisal from Access Networks Introduction Large scale behavior of end-to-end routing Collect traceroutes and other network performance metrics BISmark routers all over the world

548 views • 22 slides
Routing Bottlenecks in the Internet: Causes, Exploits, and Countermeasures Min Suk Kang Virgil

Routing Bottlenecks in the Internet: Causes, Exploits, and Countermeasures Min Suk Kang Virgil

Routing Bottlenecks in the Internet: Causes, Exploits, and Countermeasures Min Suk Kang Virgil D. Gligor ECE Department and CyLab, Carnegie Mellon University Nov 4, 2014 Route Diversity is Critical to Resiliency of Internet Connectivity

387 views • 22 slides
Reconsidering the Internet Routing Architecture Olivier Bonaventure Universit catholique de

Reconsidering the Internet Routing Architecture Olivier Bonaventure Universit catholique de

Reconsidering the Internet Routing Architecture Olivier Bonaventure Universit catholique de Louvain, Belgium March 12, 2007 1 Introduction The current growth of the BGP routing tables [15] and Forwarding Information bases (FIB) on core

299 views • 9 slides
Or Routing is as Insecure as the Rest of the Flippin Internet, but its Scarier Steven M

Or Routing is as Insecure as the Rest of the Flippin Internet, but its Scarier Steven M

This Space Intentionally Left Blank to Hold Space Just in Case Routing Security Appears Or Routing is as Insecure as the Rest of the Flippin Internet, but its Scarier Steven M Bellovin &lt;smb@cs.columbia.edu&gt; Randy Bush

478 views • 14 slides
the real-time Internet routing observatory Alessandro Improta alessandro.improta@iit.cnr.it Our

the real-time Internet routing observatory Alessandro Improta alessandro.improta@iit.cnr.it Our

the real-time Internet routing observatory Alessandro Improta alessandro.improta@iit.cnr.it Our research focus: the Internet AS-level ecosystem Why is it important? To identify Internet topological properties and drawbacks To build realistic

452 views • 23 slides

More recommend