There always is a lot of talk about Mikrotik RouterOS CPU usage. I wanted to take a few minutes and go over a real-world example and explain some of the ins and outs when discussing Mikrotik CPU usage. Let’s talk about the router in question. This is a CCR1016-12s-1S+. This is a 16 core 1.2GHz per core and 2GB RAM tilex based router. It is currently pulling in 1,764,849 IPv4 routes. There are two transit provider BGP feeds, multiple direct peers, an Internet...
Continue reading...bgp
Hurricane Electric Route Filtering Algorithm
The following is from http://routing.he.net/algorithm.html . This outlines the criteria HE.NET uses for filtering routes from peers and customers. This is the route filtering algorithm for customers and peers that have explicit filtering: 1. Attempt to find an as-set to use for this network.1.1 Inspect the aut-num for this ASN to see if we can extract from their IRR policy for what they would announce to Hurricane by finding export or mp-export to AS6939, ANY, or AS-ANY.1.2 Also see if they set what...
Continue reading...Don’t try this at home kids. Automated BGP Optimization
https://radar.qrator.net/blog/as10990-routing-optimization-taleConclusion? Do not try to optimize the routes with automated software – BGP is a distance-vector routing protocol that has proved, throughout the years, its ability to handle the traffic. Software, wanting to “optimize” the system involving thousands of members would never be smart enough to compute all the possible outcomes of such manipulation.
Continue reading...Network troubleshooting tools
Recently, there was a thread on the NANOG list asking what were somne favorite network troubleshooting tools. I have taken many of these tools and created the following list. http://ping.pe/Simple pingport and dig commands https://mtr.sh/BGP Looking glass https://perfops.net/mtr-from-worldTraceroute from various hosts on the net http://www.traceroute6.net/IPV6 tools (ping,traceroute,etc) https://dnsviz.net/Carious DNS tools http://irrexplorer.nlnog.net/Routing Registry object explorer https://mxtoolbox.com/DNS and Mail tools
Continue reading...Hurricane Electric now requires IRR and filters invalid RPKI
If you are a Hurricane Electric customer you may be receiving e-mails like the following: What does this mean for you as a service provider? If you use Hurricane Electric as transit or peer with them on an exchange you will need to have ROAs for your blocksand have routing registry objects. I did a tutorial based upon Arin which can be found at: https://blog.j2sw.com/networking/routing-registries-and-you/ In short you need to do the following: Create a mntner object (equivalent of a user account) to give you...
Continue reading...CCR1016 BGP route pull down
This morning I had a Mikrotik CCR1016 where I had to change the router ID, which caused all the sessions to reset. The following is a screenshot of the time it took to re-learn all of the peers. Obviously, the smaller prefixes were learned pretty quickly. It took about 10 minutes to learn two full IPv4 route tables and about 5 minutes to learn the IPv6 routing tables. This is why I always get full routes plus a default from the upstream when...
Continue reading...Mikrotik BGP firewall rules for security
This content is for Patreon subscribers of the j2 blog. Please consider becoming a Patreon subscriber for as little as $1 a month. This helps to provide higher quality content, more podcasts, and other goodies on this blog.To view this content, you must be a member of Justin’s Patreon Unlock with PatreonAlready a qualifying Patreon member? Refresh to access this content.
Continue reading...My Mum 2019 BGP presentation
In this presentation, I talk about BGP communities, filters, and other cool BGP stuff.
Continue reading...Looking Glass Links
This content is for Patreon subscribers of the j2 blog. Please consider becoming a Patreon subscriber for as little as $1 a month. This helps to provide higher quality content, more podcasts, and other goodies on this blog.To view this content, you must be a member of Justin’s Patreon Unlock with PatreonAlready a qualifying Patreon member? Refresh to access this content.
Continue reading...BGP Local Pref and how it can influence traffic
what does “bgp local-pref” do for me? The short answer is it allows you to prefer which direction a traffic will flow to a given destination
Continue reading...
