fbpx
Twitter
Midwest Internet Exchange

IOS-XR Example Config

;
; REPLACE X with your appropriate FD-IX IP Address
;
; REPLACE Y with your appropriate IP blocks
;
; REPLACE 1234 with your ASN
;
; Route Server addresses are specific for Indy. Other locatins will need to be modified

interface TenGigE0/1/0/7.300
description "Midwest IX Peering"
ipv4 address 206.53.139.X 255.255.255.0
ipv6 nd suppress-ra
ipv6 address 2001:504:45:f3e8::X/64
encapsulation dot1q 300

community-set MidwestIX_Transit
8008:13681
end-set
!

prefix-set PS_Long_Masks
0.0.0.0/0 ge 25,
::/0 ge 33
end-set

prefix-set PS_Bogons_v4
# Default
# 0.0.0.0/0,
# Broadcast Messages to Current
0.0.0.0/8 le 32,
# RFC1918
10.0.0.0/8 le 32,
# RFC990
127.0.0.0/8 le 32,
# RFC3927
169.254.0.0/16 le 32,
# RFC1918
172.16.0.0/12 le 32,
# RFC5736
192.0.0.0/24 le 32,
# RFC5737
192.0.2.0/24 le 32,
# RFC3068
192.88.99.0/24,
# RFC1918
192.168.0.0/16 le 32,
# RFC2544
198.18.0.0/15 le 32,
# RFC5737
198.51.100.0/24 le 32,
# RFC5737
203.0.113.0/24 le 32,
# RFC1112 (Multicast)
224.0.0.0/4 le 32
end-set
!
prefix-set PS_Bogons_v6
# Unspecified address
::/128,
# Loopback to Localhost
::1/128,
# IPv4 Mapped Addresses
::fff:0:0/96,
# IPv4/v6 Translation
64:ff9b::/96,
# Discard Prefix RFC 6666
100::/64,
# Teredo Tunneling
2001::/32,
# ORCHID
2001:10::/28,
# ORCHIDv2
2001:20::/28,
# Documentation and Sample Space
2001:db8::/32,
# 6 to 4
2002::/16,
# Unique Local Addressing
fc00::/7,
# Link Local Addressing
fe80::/10,
# Multicast
ff00::/8
end-set

route-policy RP_Deny_Bogons
if destination in PS_Bogons_v4 or destination in PS_Bogons_v6 then
drop
else
pass
endif
end-policy
!
route-policy RP_Deny_Long_Masks
if destination in PS_Long_Masks then
drop
endif
end-policy
!
route-policy RP_Transit_MidwestIX_In_v1
apply RP_Deny_Bogons
delete community all
set community CS_Any_Transit
set community CS_MidwestIX_Transit additive
pass
end-policy
!
route-policy RP_Transit_MidwestIX_Out_v1
apply RP_Deny_Bogons
apply RP_Deny_Long_Masks
if community matches-any CS_Any_Transit then
drop
else
pass
endif
end-policy

router bgp 1234
bgp router-id Y.Y.Y.Y
!
neighbor-group midwest-ix-peers
remote-as 13681
timers 30 90
update-source TenGigE0/1/0/7.300
enforce-first-as disable
session-open-mode active-only
address-family ipv4 unicast
route-policy RP_Transit_MidwestIX_In_v1 in
route-policy RP_Transit_MidwestIX_Out_v1 out
next-hop-self
remove-private-AS
soft-reconfiguration inbound always
!
!
neighbor-group midwest-ix-v6-peers
remote-as 13681
timers 30 90
update-source TenGigE0/1/0/7.300
enforce-first-as disable
session-open-mode active-only
address-family ipv6 unicast
route-policy RP_Transit_MidwestIX_In_v1 in
route-policy RP_Transit_MidwestIX_Out_v1 out
next-hop-self
soft-reconfiguration inbound
!
!
neighbor 206.53.139.2
use neighbor-group midwest-ix-peers
Description Midwest Route Reflector 1
!
neighbor 206.53.139.3
use neighbor-group midwest-ix-peers
Description Midwest Route Reflector 2
!
neighbor 2001:504:45:f3e8::2
use neighbor-group midwest-ix-v6-peers
Description Midwest Route Reflector 1
!
neighbor 2001:504:45:f3e8::3
use neighbor-group midwest-ix-v6-peers
Description Midwest Route Reflector 2
!

Post a Comment

%d bloggers like this: