Example Configuration
IIX-BA will have two route servers . The following are some examples of multiple platform configurations to connect to the IIX-BA Route Server that you can adjust to your needs.
Example Configuration on Cisco Cisco IOS
no bgp enforce-first-as
!
neighbor IIX-peer maximum-prefix 20000
neighbor v6IIX-peer maximum-prefix 10000
!
neighbor 103.19.76.2 remote-as 7597
neighbor 103.19.76.2 peer-group IIX-peer
neighbor 103.19.76.2 description iix_rs2
!
neighbor 103.19.76.3 remote-as 7597
neighbor 103.19.76.3 peer-group IIX-peer
neighbor 103.19.76.3 description iix_rs3
!
neighbor 2001:7fa:2:50ba:0:0:2:2 remote-as 7597
neighbor 2001:7fa:2:50ba:0:0:2:2 peer-group v6IIX-peer
neighbor 2001:7fa:2:50ba:0:0:2:2 description iix_rs2
!
neighbor 2001:7fa:2:50ba:0:0:2:3 remote-as 7597
neighbor 2001:7fa:2:50ba:0:0:2:3 peer-group v6IIX-peer
neighbor 2001:7fa:2:50ba:0:0:2:3 description iix_rs3
Cisco IOS-XR
neighbor 103.19.76.2
remote-as 7597
use neighbor-group IIX
description iix_rs2
enforce-first-as disable
address-family ipv4 unicast
maximum-prefix 20000 restart 30
!
neighbor 103.19.76.3
remote-as 7597
use neighbor-group IIX
description iix_rs3
enforce-first-as disable
address-family ipv4 unicast
maximum-prefix 20000 restart 30
!
neighbor 2001:7fa:2:50ba:0:0:2:2
remote-as 7597
use neighbor-group IIXv6
description iix_rs2
enforce-first-as disable
address-family ipv6 unicast
maximum-prefix 10000 restart 30
!
neighbor 2001:7fa:2:50ba:0:0:2:3
remote-as 7597
use neighbor-group IIXv6
description iix_rs3
enforce-first-as disable
address-family ipv6 unicast
maximum-prefix 10000 restart 30
Contoh Konfigurasi pada Juniper
"configuration protocols bgp"
group iix-rserver2 {
type external;
neighbor 103.19.76.2 {
description "ipv4 IIX-rserver2";
family inet {
unicast {
prefix-limit {
maximum 20000;
}
}
}
peer-as 7597;
}
}
group iix-rserver3 {
type external;
neighbor 103.19.76.3 {
description "ipv4 IIX-rserver3";
family inet {
unicast {
prefix-limit {
maximum 20000;
}
}
}
peer-as 7597;
}
}
group v6iix-rserver2 {
type external;
neighbor 2001:7fa:2:50ba:0:0:2:2 {
description "ipv6 IIX-rserver2";
family inet {
unicast {
prefix-limit {
maximum 10000;
}
}
}
peer-as 7597;
}
}
group v6iix-rserver3 {
type external;
neighbor 2001:7fa:2:50ba:0:0:2:3 {
description "ipv6 IIX-rserver3";
family inet {
unicast {
prefix-limit {
maximum 10000;
}
}
}
peer-as 7597;
}
}
Example Configuration on Mikrotik
/routing bgp peer
add in-filter="in-iix-ji " max-prefix-limit=20000 max-prefix-restart-time=30s \
name="rs-iix-ji-1-v4 " out-filter="out-iix-ji " remote-address=103.19.76.2 \
remote-as=7597 remove-private-as=yes
add in-filter="in-iix-ji " max-prefix-limit=20000 max-prefix-restart-time=30s \
name="rs-iix-ji-2-v4 " out-filter="out-iix-ji " remote-address=103.19.76.3 \
remote-as=7597 remove-private-as=yes
add address-families=ipv6 in-filter="in-iix-ji -v6" max-prefix-limit=10000 \
max-prefix-restart-time=30s name=rs-iix-ji-1-v6 out-filter="out-iix-ji -v6" \
remote-address=2001:7fa:2:50ba::2:2 remote-as=7597 remove-private-as=yes
add address-families=ipv6 in-filter="in-iix-ji -v6" max-prefix-limit=10000 \
max-prefix-restart-time=30s name=rs-iix-ji-2-v46 out-filter=\
"out-iix-ji -v6" remote-address=2001:7fa:2:50ba::2:3 remote-as=7597 \
remove-private-as=yes
Contoh Penggunaan Community Cisco
R2(config)# ip bgp-community new-format
R2(config)# access-list 1 permit 203.89.31.0 mask 255.255.255.0
R2(config)# route-map out-no-export permit 10
R2(config-route-map)# match ip address 1
R2(config-route-map)# set community 0:23456
R2(config-route-map)# exit
R2(config)# route-map out-no-export permit 20
R2(config-route-map)# exit
R2(config)# router bgp 24521
R2(config-router)# neighbor 103.19.76.2 send-community
R2(config-router)# neighbor 103.19.76.2 route-map out-no-export out
Juniper
Untuk Prefix Out
set policy-options community no-advertise members 0:23456 set policy-statement ke-iix-ji term prefix from 203.89.31.0/24 exact set policy-statement ke-iix-ji term prefix then community add no-advertise set policy-statement ke-iix-ji term prefix then accept set policy-statement ke-iix-ji term liyone then
reject
Untuk Prefix IN
setpolicy-options policy-statement FILTER-IN term 1 from community PREFIX_JKT
set policy-options policy-statement FILTER-IN term 1 then reject
set policy-options community PREFIX_JKT members 65000:1040
set protocols bgp group external-peers neighbor xx.xx.xx.xx import FILTER-IN
Mikrotik
/routing filter
add action=accept bgp-communities=0:23456 chain="out-iix-ji" prefix=203.89.31.0/24
add action=discard chain="out-iix-ji" prefix=0.0.0.0/0 prefix-length=0-32