Escenario BGP 2 Carries Prepend con Juniper

**NEMUELOXTE** · hoy, 14:31

Nota

En este post se representará un escenario donde simulamos que redes de internet se están comunicando con una red ISP a través de un Carrier. Los prefijos y ASN utilizados son sólo para emular el laboratorio generado en eve-ng

Se pretende llegar al siguiente diagrama

Nombre: conprependjuniper.jpg
Visitas: 0
Tamaño: 149.0 KB

Nota

Si el juniper esta buscando conectarse por DHCP eliminar la interfaz de DCHCP con:

delete chassis auto-image-upgrade

commit

Nota

Se debe configurar la contraseña y el nombre del juniper para que al aplicar commit se permita correctamente







configure



set system root-authentication plain-text-password



set system host-name NOMBREDELRB



commit

Configuracion de GOOGLE





configure





set system host-name  GOOGLE





set interfaces ge-0/0/0 unit 0 family inet address 8.8.8.1/24

set interfaces ge-0/0/2 unit 0 family inet address 2.2.2.2/24

set interfaces ge-0/0/3 unit 0 family inet address 3.3.3.2/24





set routing-options autonomous-system 15169





set policy-options policy-statement EXPORT-GOOGLE term RED-8 from route-filter 8.8.8.0/24 exact

set policy-options policy-statement EXPORT-GOOGLE term RED-8 then accept

set policy-options policy-statement EXPORT-GOOGLE term DENY then reject





set protocols bgp group EBGP type external

set protocols bgp group EBGP neighbor 2.2.2.1 peer-as 6830

set protocols bgp group EBGP neighbor 3.3.3.1 peer-as 272314

set protocols bgp group EBGP export EXPORT-GOOGLE





commit

Nombre: prependgoogle.png
Visitas: 0
Tamaño: 53.7 KB

Configuracion LIBERTY



configure





set system host-name LIBERTY





set interfaces ge-0/0/2 unit 0 family inet address 2.2.2.1/24

set interfaces ge-0/0/1 unit 0 family inet address 181.191.190.54/28





set routing-options autonomous-system 6830





set protocols bgp group EBGP type external

set protocols bgp group EBGP neighbor 2.2.2.2 peer-as 15169

set protocols bgp group EBGP neighbor 181.191.190.55 peer-as 270200





commit

Nombre: prependLIBERTY.png
Visitas: 0
Tamaño: 44.5 KB

Configuracion FESOGO



configure





set system host-name FESOGO





set interfaces ge-0/0/3 unit 0 family inet address 3.3.3.1/24

set interfaces ge-0/0/2 unit 0 family inet address 204.199.201.98/30





set routing-options autonomous-system 272314



set policy-options policy-statement EXPORT-FESOCO term TRANSITO-BORDE from route-filter 204.199.201.96/30 exact

set policy-options policy-statement EXPORT-FESOCO term TRANSITO-BORDE then accept



set protocols bgp group EBGP type external

set protocols bgp group EBGP neighbor 3.3.3.2 peer-as 15169

set protocols bgp group EBGP neighbor 204.199.201.97 peer-as 270200





commit

Nombre: prependFESOGO.png
Visitas: 0
Tamaño: 51.6 KB

Configuracion BORDE



configure





set system host-name BORDE





set interfaces ge-0/0/1 unit 0 family inet address 181.191.190.55/28 

set interfaces ge-0/0/2 unit 0 family inet address 204.199.201.97/30 

set interfaces ge-0/0/0 unit 0 family inet address 190.9.108.1/24 





set routing-options autonomous-system 270200





set routing-options static route 190.9.108.0/24 discard





set policy-options policy-statement EXPORT-SIN-PREPEND term RED-CLIENTE from route-filter 190.9.108.0/24 exact

set policy-options policy-statement EXPORT-SIN-PREPEND term RED-CLIENTE then accept

set policy-options policy-statement EXPORT-SIN-PREPEND term DENY then reject





set policy-options policy-statement EXPORT-CON-PREPEND term RED-CLIENTE from route-filter 190.9.108.0/24 exact

set policy-options policy-statement EXPORT-CON-PREPEND term RED-CLIENTE then as-path-prepend "270200 270200 270200"

set policy-options policy-statement EXPORT-CON-PREPEND term RED-CLIENTE then accept

set policy-options policy-statement EXPORT-CON-PREPEND term DENY then reject





set policy-options policy-statement EXPORT-CON-PREPEND term TRANSITO-FESOCO from route-filter 204.199.201.96/30 exact

set policy-options policy-statement EXPORT-CON-PREPEND term TRANSITO-FESOCO then accept





set protocols bgp group LIBERTY type external

set protocols bgp group LIBERTY neighbor 181.191.190.54 peer-as 6830

set protocols bgp group LIBERTY export EXPORT-SIN-PREPEND





set protocols bgp group FESOCO type external

set protocols bgp group FESOCO neighbor 204.199.201.98 peer-as 272314

set protocols bgp group FESOCO export EXPORT-CON-PREPEND





commit

Nombre: prependborde.png
Visitas: 0
Tamaño: 81.1 KB

Configuracion MIKROTIK



/interface wireless security-profiles

set [ find default=yes ] supplicant-identity=MikroTik

/ip address

add address=190.9.108.2/24 comment=BORDE interface=ether2 network=190.9.108.0

add address=192.168.100.1/24 comment=LAN interface=ether3 network=\

    192.168.100.0

/ip dhcp-client

add interface=ether1

/ip firewall nat

add action=masquerade chain=srcnat out-interface=ether2

/ip route

add distance=1 gateway=190.9.108.1

SERVER



IP 8.8.8.8/24 

GATEWAY: 8.8.8.1

CLIENTE FINAL

IP 192.168.100.2/24

GATEWAY: 192.168.100.1

Validamos el prepend

Nombre: prepend.png
Visitas: 0
Tamaño: 14.9 KB

User Tag List

Tema: Escenario BGP 2 Carries Prepend con Juniper

Herramientas

Buscar tema

Visualizar

Ver modo hilado