On Tue, Nov 1, 2011 at 9:01 PM, Edward avanti <edward.avanti@gmail.com> wrote:
many example seem insecure no prefix list so on. ... I am not ignorant with cisco 7201, but am total newby to BGP.
Your concern about a lack of any prefix-lists in the documentation / examples you have read is justified. If you are connecting to an IX it may offer route-servers which have prefix-lists maintained by the IX staff and tools. However, as you may already know, you will only receive the "best path" to each prefix from an IX route-server. This is often a motive (among others) to establish direct eBGP sessions with other IX members. Once you start doing that, you had better filter routes from those neighbors, or you will subject your network to your peers' mistakes and glitches. If you imagine that the IX has other members like yourself, who also do not know much about BGP, then you can understand why you do not want your peers' mistakes to cause outages on your network. Doing a "cut, replace, and paste" from online examples is obviously a bad idea. If I were you, I would find a local consultant (perhaps someone on the staff of the IX or another member) who can assist you with your initial configuration, and help you in the event of a severe emergency. Otherwise, frankly, you are going to be better off by just buying transit from Verizon and being single-homed. The added complexity of BGP is not an asset to an organization that doesn't have adequate expertise. -- Jeff S Wheeler <jsw@inconcepts.biz> Sr Network Operator / Innovative Network Concepts