nanog mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Juniper BGP Convergence Time

From: Adam Kajtar <akajtar () wadsworthcity org>
Date: Thu, 17 May 2018 10:49:37 -0400
Thomas,

Thanks for the info. This is probably why my multipath configuration wasn't
working as I thought it would. I will give this a test run also.

Mike,

Interesting thought. This would mean rpf-check wouldn't work on my outside
interfaces. Good to know.



On Thu, May 17, 2018 at 8:55 AM Mike Hammett <nanog () ics-il net> wrote:


Just be aware of the impact a default route can have on your
infrastructure, such as uRPF no longer works as expected as everything has
a valid route.



-----
Mike Hammett
Intelligent Computing Solutions
http://www.ics-il.com

Midwest-IX
http://www.midwest-ix.com

------------------------------
*From: *"Adam Kajtar" <akajtar () wadsworthcity org>
*To: *erich () gotfusion net
*Cc: *nanog () nanog org
*Sent: *Wednesday, May 16, 2018 9:32:27 AM
*Subject: *Re: Juniper BGP Convergence Time

Erich,

Good Idea. I can't believe I didn't think of that earlier. Simple and
effective. I will go ahead and request the defaults from my ISP and update
the thread of the findings.

Thanks!

On Wed, May 16, 2018 at 10:03 AM Kaiser, Erich <erich () gotfusion net>
wrote:


A last resort route (default route) could still be good to take from your
ISP(s) even if you still do full routes, as the propagation is happening

on

the internet side, you should at least have a path inbound through the
other provider.  The default route at least would send the traffic out if
it does not see the route locally.  Just an idea.



On Wed, May 16, 2018 at 8:22 AM, Adam Kajtar <akajtar () wadsworthcity org>
wrote:


I could use static routes but I noticed since I moved to full routes I
have had a lot fewer customer complaints about latency(especially when

it

comes to Voice and VPN traffic).

I wasn't using per-packet load balancing. I believe juniper default is

per

IP.

My timers are as follows
 Active Holdtime: 90
 Keepalive Interval: 30

Would I be correct in thinking I need to contact my ISP to lower these
values?

An interesting note is when I had both ISPs connected into a single

MX104

the failover was just a few seconds.

Thanks again.



On Tue, May 15, 2018 at 8:42 PM Ben Cannon <ben () 6by7 net> wrote:


Have you checked your timeouts ?

-Ben


On May 15, 2018, at 4:09 PM, Kaiser, Erich <erich () gotfusion net>

wrote:


Do you need full routes?  What about just a default route from BGP?

Erich Kaiser
The Fusion Network
erich () gotfusion net
Office: 815-570-3101





On Tue, May 15, 2018 at 5:38 PM, Aaron Gould <aaron1 () gvtc com>

wrote:


You sure it doesn't have something to do with 60 seconds * 3 = 180

secs of

BGP neighbor Time out before it believes neighbor is dead and

remove

routes

to that neighbor?

Aaron


On May 15, 2018, at 9:10 AM, Adam Kajtar <

akajtar () wadsworthcity org



wrote:


Hello:

I'm running two Juniper MX104s. Each MX has 1 ISP connected

running

BGP(full routes). iBGP is running between the routers via a two

port

20G

lag. When one of the ISPs fails, it can take upwards of 2 minutes

for

traffic to start flowing correctly. The router has the correct

route

in

the

routing table, but it doesn't install it in the forwarding table

for

the

full two mins.

I have a few questions if anyone could answer them.

 - What would a usual convergence time be for this setup?
 - Is there anything I could do speed this process up? (I tried

Multipath)

 - Any tips and tricks would be much appreciated

Thanks in Advance
--
Adam Kajtar
Systems Administrator
City of Wadsworth
akajtar () wadsworthcity org
-----------------------------------------------------
http://www.wadsworthcity.com

Facebook <http://www.facebook.com/cityofwadsworth>* |* Twitter
<https://twitter.com/CityOfWadsworth> *|* Instagram
<https://www.instagram.com/cityofwadsworth/> *|* YouTube
<https://www.youtube.com/channel/UCymlH-AZgvxTaHtgp3-AmDQ>








--
Adam Kajtar
Systems Administrator, Safety Services
City of Wadsworth
Office 330.335.2865
Cell 330.485.6510
akajtar () wadsworthcity org
-----------------------------------------------------
http://www.wadsworthcity.com

Facebook <http://www.facebook.com/cityofwadsworth>* |* Twitter
<https://twitter.com/CityOfWadsworth> *|* Instagram
<https://www.instagram.com/cityofwadsworth/> *|* YouTube
<https://www.youtube.com/channel/UCymlH-AZgvxTaHtgp3-AmDQ>






--
Adam Kajtar
Systems Administrator, Safety Services
City of Wadsworth
Office 330.335.2865
Cell 330.485.6510
akajtar () wadsworthcity org
-----------------------------------------------------
http://www.wadsworthcity.com

Facebook <http://www.facebook.com/cityofwadsworth>* |* Twitter
<https://twitter.com/CityOfWadsworth> *|* Instagram
<https://www.instagram.com/cityofwadsworth/> *|* YouTube
<https://www.youtube.com/channel/UCymlH-AZgvxTaHtgp3-AmDQ>




-- 
Adam Kajtar
Systems Administrator, Safety Services
City of Wadsworth
Office 330.335.2865
Cell 330.485.6510
akajtar () wadsworthcity org
-----------------------------------------------------
http://www.wadsworthcity.com

Facebook <http://www.facebook.com/cityofwadsworth>* |* Twitter
<https://twitter.com/CityOfWadsworth> *|* Instagram
<https://www.instagram.com/cityofwadsworth/> *|* YouTube
<https://www.youtube.com/channel/UCymlH-AZgvxTaHtgp3-AmDQ>
Previous By Date Next
Previous By Thread Next

Current thread: