SlideShare une entreprise Scribd logo

ExaBGP at LINX 83

Thomas Mangin
Thomas Mangin

Update presented at LINX in November 2013 ( the London Internet Exchange ) regarding ExaBGP, The BGP swiss army knife of networking. It includes information about the latest developments, and features, including RFC support, for ISP and IXP. Users of BIRD and Quagga may find some information about features not yet present in other Open Source BGP implementation.

Technologie
1  sur  24
Télécharger pour lire hors ligne
New Developments in ExaBGP Why should YOU care ? LINX 83 18th/19th of November 2013 Thomas Mangin Exa Networks Whatever a speaker is missing in depth he will compensate for in length Montesquieu
Another presentation to ignore while you have fun on IRC !
Another presentation between you and BEER !
Doing BGP with OSS Well known open source implementations of BGP ! Quagga BIRD http://bird.network.cz/ http://www.quagga.net/ The underdog ! ExaBGP https://github.com/Exa-Networks/exabgp Another UK born and bred ! BGPFeeder https://projects.bytemark.co.uk/projects/bgpfeeder And the others ! https://github.com/Exa-Networks/exabgp/wiki/Other-OSS-BGP-implementations A little learning is a dangerous thing Alexander Pope
ExaBGP .. A “BGP swiss army knife” since 2009.. commit 5490f7baf5981279e2360d88c735570bc9f72532 Author: Thomas Mangin <thomas.mangin@exa-networks.co.uk> Date: Thu Sep 3 22:12:05 2009 +0000 ! initial commit […] announce a route to a 7204 and keep the connection alive Patience is bitter, but its fruit is sweet Rousseau
ExaBGP? NANOG Thread es servic ng arketi m ndy’s A […] you might find ExaBGP more lightweight in this role - see http:// bgp.exa.org.uk/ - do check it out. This has an interface which will feel extremely comfortable to Juniper users. ! Best wishes Andy Work delivers us from three great evils: boredom, vice and want. Voltaire.
Genius … We liked it so much we trademarked it! Pride is the consolation of the weak Vauvenargues
Let’s work on that marketing ! ExaBGP ! “SDN without marketing” “SDN on commodity hardware” ! ExaBGP ! “The BGP swiss army knife of networking” s stion gge ew su red no n equi r Truth is more valuable if it takes you a few years to find it. Renard
Thomas’ idea ! ! ! ! ! Thank you Mike … I expected Malcolm to bring me this kind of bad news Back to square one ! Real knife by Victorinox AG I have always believed that to succeed in life, it is necessary to appear to be mad and to act wisely Montesquieu
Any Good ? Nothing is more humiliating than to see idiots succeed in enterprises we have failed at Flaubert
Up to date ? ! baby eah Oh y … ut it bo ob a rR v id o Da As k I love fools’ experiments. I am always making them. Charles Darwin
What next? I will focus on that… later .. way later in the talk Logic will get you from A to B. Imagination will take you everywhere Albert Einstein
For when? ! I am taking a small break… ! This is my “hobby” be kind I have three jobs ! A hobby which gets ! - Heidi complaining - My colleagues too (I can ignore these) ! Therefore ExaBGP Users are NOT allowed to complain!
What’s the expected use? ! ! ! NOC usage .. DDOS RTBH Flow Spec Interception SDN : : : : prevents bad traffic from reaching its destination RTBH on steroid, firewall rules deployed using BGP Legal requirements (IWF,… ) over 200k routes updates every 5 minutes .. DevOps usage .. Service IPs : servers mobility using extra/32 with BGP Anycast : the same IP at different locations (CDN, DNS, ...) IX usage .. Collector : at IXLeeds Route Server : future development needed Be regular and orderly in your life, so that you may be violent and original in your work Flaubert
Easy to install? ! ! ! ! Use GitHub > wget https://github.com/Exa-Networks/exabgp/archive/3.2.17.tar.gz > tar zxvf 3.2.17.tar.gz > cd exabgp-3.2.17 > ./sbin/exabgp —help Use your distribution (often older code) > > > > apt-get install exabgp pacman -S exabgp port install exabgp emerge exabgp # # # # Debian / Ubuntu ArchLinux OS X / FreeBSD Gentoo (soon? Thank you Tony) Be regular and orderly in your life, so that you may be violent and original in your work Flaubert
Easy to use? ! Not as easy as it could be ! No real documentation elp H ! ! e… com el w The community is stepping up ! HA http://vincent.bernat.im/en/blog/2013-exabgp-highavailability.html DDOS http://media.frnog.org/FRnOG_18/FRnOG_18-6.pdf Be regular and orderly in your life, so that you may be violent and original in your work Flaubert
I can hear Martin Levy ask “Does it supports IPv6 ” IPv4 IPv6 Neighbours Neighbours IPv4 IPv6 Prefixes (and MPLS) Prefixes (MP NLRI) yes yes IPv4 IPv6 Flow Spec (RFC 5575) Flow Spec (draft) yes yes * ! ! ! N Th ati em ve ed IPv sli 6 de yes yes * I do not know any vendors supporting it yet … As you can never fully please Martin, I admit … ! RFC 5701 - IPv6 Address Specific BGP Extended Community Attribute no It is easier to ask for forgiveness than permission - Stewart’s law of retraction fake
Usage RTBH Tell your provider to stop sending you traffic for some IPs ! Announce some more specific routes (/32, /29, …) part of your network and TAG the route with communities so it can be filtered (dropped by your upstream edge routers) Traffic is dropped before it is billed ! Many Talks (NANOG, APRICOT, ...) on the topic and an RFC (5635) > google RTBH or Remotely triggered blackhole ! The goal is to bypass the transit provider NOC and reduce response time when under duress ! Each ISP implements it differently .. level3 > whois -h whois.ripe.net AS3356 | grep -B1 -A15 -i blakhole It is dangerous to be right in matters on which the established authorities are wrong Voltaire
Flow Routes Control the filtering Yourself, do not disconnect the target group ddos { local-as 30740; peer-as 30740; router-id 82.219.0.1; local-address 82.219.0.1; graceful-restart 5; family { ipv4 unicast; ipv4 flow; } flow { route drop-ddos-ntp2 { match { destination 82.219.4.31/32; destination-port >123 <123; protocol udp; } then { discard; } } } neighbor 82.219.0.2 { description “nothing at those IP"; } neighbor 82.219.0.3 { description “no point attacking them"; } } Firewall rules via BGP RFC 5575 Juniper and Alcatel Cisco coming in 2014 for IOS-XR and XE Ask Cisco for more info ExaBGP is the only OSS application to support FlowSpec thomas@mx-80> show route table inetflow.0 ! inetflow.0: 3 destinations, 3 routes (3 active, 0 holddown, 0 hidden) Restart Complete + = Active Route, - = Last Active, * = Both ! 82.219.4.31,*,proto=17,dstport>=124&<=65535,>=0&<=122/term:2 *[BGP/170] 4d 13:48:20, localpref 100, from 82.219.5.101 AS path: I Fictitious […] thomas@mx-80> show firewall filter __flowspec_default_inet__ The secret of business is to know something that nobody else knows Aristotle Onassis
Designed to be scripted Use ANY scripting language perl, python, lua, go, bash, … neighbor 127.0.0.1 { router-id 1.2.3.4; local-address 127.0.0.1; local-as 1; peer-as 1; graceful-restart; ! process announce-routes { run ./api-add-remove.run; } #!/usr/bin/env python ! ! import sys, time messages = [ 'announce route 1.1.0.0/24 next-hop 101.1.101.1', 'announce route 1.1.0.0/25 next-hop 101.1.101.1', 'withdraw route 1.1.0.0/24 next-hop 101.1.101.1', ] ! while messages: message = messages.pop(0) sys.stdout.write( message + 'n') sys.stdout.flush() time.sleep(1) ! while True: time.sleep(1) > ./sbin/exabgp ./api-add-remove.conf An example on the wiki with SHELL PIPE .. for examples, look into /dev/runtest “the test suite” Used in prod as SDN by at least one large network ! Use for DDOS mitigation by MANY networks ! Used by vendor For BGP interrop testing ! Their is two rules for success in business, one do not tell all you know, … Some bad joke site
ExaBGP as a Route Server Why only now? ExaBGP started as a route injector, not a BGP daemon It is single threaded using windows 3.1 like multi-tasking The code was blocking when sending routes Fixed this summer with version 3.2 Hundreds of hours of work Most of the IX effort already on Quagga and BIRD (more mature) How much work is required ? ! ExaBGP already works as route collector only tested on a small scale (IXLeeds) need some more control features (for debugging) but it SHOULD scale Divide and Conquer Julius Caesar
ExaBGP as a Route Server Why would it be better? Much simpler code to understand (python) Much easier to hack (adding draft RFC in hours now) Can still be improved though Can take benefit of multiple cores easily ExaBGP does NOT have a LOCAL RIB The RIB can be implemented as a different process The RIB does not even have to be on the server Possible madness with things like ZeroMQ :-) Possible to have one BGP daemon per switch Possible to detect L2 loss and change announcement ExaBGP is single threaded but can use multiple cores FreeBSD and Linux 3.9 SO_REUSE_PORT Allows to split TCP flows to different process aBGP t Ex lp) All listening on the same port r r en cu he d to t would ir e requ vemen ge chan e impro No om but s ( Divide and Conquer Julius Caesar
Last words… perhaps! Please HELP! I could do with … more contributors need help with documentation Otherwise, just let me know if you use it… Any ‘it works’ mail is always appreciated Need to tidy some code JSON generation Configuration format parsing (started) More .. LINX agreed to let me use their IXIA to see how it performs and compare the result with BIRD who would be interested in seeing the results? I am surprised! you are reading those quotes! Thomas Mangin
Questions? Thank you for your kindness on IRC .. thomas.mangin@exa-networks.co.uk https://github.com/thomas-mangin/exabgp/ Judge a man by his questions rather than by his answers Voltaire

Recommandé

Naked BGP
Naked BGPNaked BGP
Naked BGP
Thomas Mangin
 
SDN-IP Peering using BGP
SDN-IP Peering using BGPSDN-IP Peering using BGP
SDN-IP Peering using BGP
Umesh Krishnaswamy
 
ScavengerEXA
ScavengerEXAScavengerEXA
ScavengerEXA
Thomas Mangin
 
Dynamische Routingprotokolle Aufzucht und Pflege - BGP
Dynamische Routingprotokolle Aufzucht und Pflege - BGPDynamische Routingprotokolle Aufzucht und Pflege - BGP
Dynamische Routingprotokolle Aufzucht und Pflege - BGP
Maximilan Wilhelm
 
Fun with PRB, VRFs and NetNS on Linux - What is it, how does it work, what ca...
Fun with PRB, VRFs and NetNS on Linux - What is it, how does it work, what ca...Fun with PRB, VRFs and NetNS on Linux - What is it, how does it work, what ca...
Fun with PRB, VRFs and NetNS on Linux - What is it, how does it work, what ca...
Maximilan Wilhelm
 
6.Routing
6.Routing6.Routing
6.Routing
phanleson
 
2015.7.17 JANOG36 BGP Flowspec Interoperability Test @ Interop Tokyo 2015 Sho...
2015.7.17 JANOG36 BGP Flowspec Interoperability Test @ Interop Tokyo 2015 Sho...2015.7.17 JANOG36 BGP Flowspec Interoperability Test @ Interop Tokyo 2015 Sho...
2015.7.17 JANOG36 BGP Flowspec Interoperability Test @ Interop Tokyo 2015 Sho...
Shuichi Ohkubo
 
IPv6 im Jahre 2018
IPv6 im Jahre 2018IPv6 im Jahre 2018
IPv6 im Jahre 2018
Maximilan Wilhelm
 

Recommandé

Naked BGP
Naked BGPNaked BGP
Naked BGP
Thomas Mangin
 
SDN-IP Peering using BGP
SDN-IP Peering using BGPSDN-IP Peering using BGP
SDN-IP Peering using BGP
Umesh Krishnaswamy
 
ScavengerEXA
ScavengerEXAScavengerEXA
ScavengerEXA
Thomas Mangin
 
Dynamische Routingprotokolle Aufzucht und Pflege - BGP
Dynamische Routingprotokolle Aufzucht und Pflege - BGPDynamische Routingprotokolle Aufzucht und Pflege - BGP
Dynamische Routingprotokolle Aufzucht und Pflege - BGP
Maximilan Wilhelm
 
Fun with PRB, VRFs and NetNS on Linux - What is it, how does it work, what ca...
Fun with PRB, VRFs and NetNS on Linux - What is it, how does it work, what ca...Fun with PRB, VRFs and NetNS on Linux - What is it, how does it work, what ca...
Fun with PRB, VRFs and NetNS on Linux - What is it, how does it work, what ca...
Maximilan Wilhelm
 
6.Routing
6.Routing6.Routing
6.Routing
phanleson
 
2015.7.17 JANOG36 BGP Flowspec Interoperability Test @ Interop Tokyo 2015 Sho...
2015.7.17 JANOG36 BGP Flowspec Interoperability Test @ Interop Tokyo 2015 Sho...2015.7.17 JANOG36 BGP Flowspec Interoperability Test @ Interop Tokyo 2015 Sho...
2015.7.17 JANOG36 BGP Flowspec Interoperability Test @ Interop Tokyo 2015 Sho...
Shuichi Ohkubo
 
IPv6 im Jahre 2018
IPv6 im Jahre 2018IPv6 im Jahre 2018
IPv6 im Jahre 2018
Maximilan Wilhelm
 
Ipv6 cheat sheet
Ipv6 cheat sheetIpv6 cheat sheet
Ipv6 cheat sheet
julianlz
 
Things I wish I had known about IPv6 before I started
Things I wish I had known about IPv6 before I startedThings I wish I had known about IPv6 before I started
Things I wish I had known about IPv6 before I started
Faelix Ltd
 
Ipv6 cheat sheet
Ipv6 cheat sheetIpv6 cheat sheet
Ipv6 cheat sheet
Swarup Hait
 
Linux Networking Explained
Linux Networking ExplainedLinux Networking Explained
Linux Networking Explained
Thomas Graf
 
Netmcr 40 - Salt + Netbox + Vyos = Network Automation + Routing Security
Netmcr 40 - Salt + Netbox + Vyos = Network Automation + Routing SecurityNetmcr 40 - Salt + Netbox + Vyos = Network Automation + Routing Security
Netmcr 40 - Salt + Netbox + Vyos = Network Automation + Routing Security
Faelix Ltd
 
Anycast all the things
Anycast all the thingsAnycast all the things
Anycast all the things
Maximilan Wilhelm
 
Building your own sdn with debian linux salt stack and python
Building your own sdn with debian linux salt stack and pythonBuilding your own sdn with debian linux salt stack and python
Building your own sdn with debian linux salt stack and python
Maximilan Wilhelm
 
Dynamische Routingprotokolle Aufzucht und Pflege - OSPF
Dynamische Routingprotokolle Aufzucht und Pflege - OSPFDynamische Routingprotokolle Aufzucht und Pflege - OSPF
Dynamische Routingprotokolle Aufzucht und Pflege - OSPF
Maximilan Wilhelm
 
L2/L3 für Fortgeschrittene - Helle und dunkle Magie im Linux-Netzwerkstack
L2/L3 für Fortgeschrittene - Helle und dunkle Magie im Linux-NetzwerkstackL2/L3 für Fortgeschrittene - Helle und dunkle Magie im Linux-Netzwerkstack
L2/L3 für Fortgeschrittene - Helle und dunkle Magie im Linux-Netzwerkstack
Maximilan Wilhelm
 
Netzwerkgrundlagen - Von Ethernet bis IP
Netzwerkgrundlagen - Von Ethernet bis IPNetzwerkgrundlagen - Von Ethernet bis IP
Netzwerkgrundlagen - Von Ethernet bis IP
Maximilan Wilhelm
 
IPv6
IPv6IPv6
IPv6
edgarjgonzalezg
 
6LoWPAN: An open IoT Networking Protocol
6LoWPAN: An open IoT Networking Protocol6LoWPAN: An open IoT Networking Protocol
6LoWPAN: An open IoT Networking Protocol
Samsung Open Source Group
 
Best Current Operational Practices - Dos, Don’ts and lessons learned
Best Current Operational Practices - Dos, Don’ts and lessons learnedBest Current Operational Practices - Dos, Don’ts and lessons learned
Best Current Operational Practices - Dos, Don’ts and lessons learned
Maximilan Wilhelm
 
BGP Flowspec (RFC5575) Case study and Discussion
BGP Flowspec (RFC5575) Case study and DiscussionBGP Flowspec (RFC5575) Case study and Discussion
BGP Flowspec (RFC5575) Case study and Discussion
APNIC
 
Ipv6 cheat sheet
Ipv6 cheat sheetIpv6 cheat sheet
Ipv6 cheat sheet
balamurugan N
 
VPP for Stateless SRv6/GTP-U Translation
VPP for Stateless SRv6/GTP-U TranslationVPP for Stateless SRv6/GTP-U Translation
VPP for Stateless SRv6/GTP-U Translation
Satoru Matsushima
 
Ospfv3 News version 2
Ospfv3 News version 2Ospfv3 News version 2
Ospfv3 News version 2
Fred Bovy
 
AusNOG 2014 - Network Virtualisation: The Killer App for IPv6?
AusNOG 2014 - Network Virtualisation: The Killer App for IPv6?AusNOG 2014 - Network Virtualisation: The Killer App for IPv6?
AusNOG 2014 - Network Virtualisation: The Killer App for IPv6?
Mark Smith
 
6 Lo Wpan Tutorial 20080206
6 Lo Wpan Tutorial 200802066 Lo Wpan Tutorial 20080206
6 Lo Wpan Tutorial 20080206
pauldeng
 
AS201701 - Building an Internet backbone with pure 1he servers and Linux
AS201701 - Building an Internet backbone with pure 1he servers and LinuxAS201701 - Building an Internet backbone with pure 1he servers and Linux
AS201701 - Building an Internet backbone with pure 1he servers and Linux
Maximilan Wilhelm
 
Bgp (1)
Bgp (1)Bgp (1)
Bgp (1)
Vamsidhar Naidu
 
BGP persistence
BGP persistenceBGP persistence
BGP persistence
Bertrand Duvivier
 

Contenu connexe

Tendances

Building your own sdn with debian linux salt stack and python
Building your own sdn with debian linux salt stack and pythonBuilding your own sdn with debian linux salt stack and python
Building your own sdn with debian linux salt stack and python
Maximilan Wilhelm
 
Netzwerkgrundlagen - Von Ethernet bis IP
Netzwerkgrundlagen - Von Ethernet bis IPNetzwerkgrundlagen - Von Ethernet bis IP
Netzwerkgrundlagen - Von Ethernet bis IP
Maximilan Wilhelm
 
6 Lo Wpan Tutorial 20080206
6 Lo Wpan Tutorial 200802066 Lo Wpan Tutorial 20080206
6 Lo Wpan Tutorial 20080206
pauldeng
 

Tendances (20)

Ipv6 cheat sheet
Ipv6 cheat sheetIpv6 cheat sheet
Ipv6 cheat sheet
 
Things I wish I had known about IPv6 before I started
Things I wish I had known about IPv6 before I startedThings I wish I had known about IPv6 before I started
Things I wish I had known about IPv6 before I started
 
Ipv6 cheat sheet
Ipv6 cheat sheetIpv6 cheat sheet
Ipv6 cheat sheet
 
Linux Networking Explained
Linux Networking ExplainedLinux Networking Explained
Linux Networking Explained
 
Netmcr 40 - Salt + Netbox + Vyos = Network Automation + Routing Security
Netmcr 40 - Salt + Netbox + Vyos = Network Automation + Routing SecurityNetmcr 40 - Salt + Netbox + Vyos = Network Automation + Routing Security
Netmcr 40 - Salt + Netbox + Vyos = Network Automation + Routing Security
 
Anycast all the things
Anycast all the thingsAnycast all the things
Anycast all the things
 
Building your own sdn with debian linux salt stack and python
Building your own sdn with debian linux salt stack and pythonBuilding your own sdn with debian linux salt stack and python
Building your own sdn with debian linux salt stack and python
 
Dynamische Routingprotokolle Aufzucht und Pflege - OSPF
Dynamische Routingprotokolle Aufzucht und Pflege - OSPFDynamische Routingprotokolle Aufzucht und Pflege - OSPF
Dynamische Routingprotokolle Aufzucht und Pflege - OSPF
 
L2/L3 für Fortgeschrittene - Helle und dunkle Magie im Linux-Netzwerkstack
L2/L3 für Fortgeschrittene - Helle und dunkle Magie im Linux-NetzwerkstackL2/L3 für Fortgeschrittene - Helle und dunkle Magie im Linux-Netzwerkstack
L2/L3 für Fortgeschrittene - Helle und dunkle Magie im Linux-Netzwerkstack
 
Netzwerkgrundlagen - Von Ethernet bis IP
Netzwerkgrundlagen - Von Ethernet bis IPNetzwerkgrundlagen - Von Ethernet bis IP
Netzwerkgrundlagen - Von Ethernet bis IP
 
IPv6
IPv6IPv6
IPv6
 
6LoWPAN: An open IoT Networking Protocol
6LoWPAN: An open IoT Networking Protocol6LoWPAN: An open IoT Networking Protocol
6LoWPAN: An open IoT Networking Protocol
 
Best Current Operational Practices - Dos, Don’ts and lessons learned
Best Current Operational Practices - Dos, Don’ts and lessons learnedBest Current Operational Practices - Dos, Don’ts and lessons learned
Best Current Operational Practices - Dos, Don’ts and lessons learned
 
BGP Flowspec (RFC5575) Case study and Discussion
BGP Flowspec (RFC5575) Case study and DiscussionBGP Flowspec (RFC5575) Case study and Discussion
BGP Flowspec (RFC5575) Case study and Discussion
 
Ipv6 cheat sheet
Ipv6 cheat sheetIpv6 cheat sheet
Ipv6 cheat sheet
 
VPP for Stateless SRv6/GTP-U Translation
VPP for Stateless SRv6/GTP-U TranslationVPP for Stateless SRv6/GTP-U Translation
VPP for Stateless SRv6/GTP-U Translation
 
Ospfv3 News version 2
Ospfv3 News version 2Ospfv3 News version 2
Ospfv3 News version 2
 
AusNOG 2014 - Network Virtualisation: The Killer App for IPv6?
AusNOG 2014 - Network Virtualisation: The Killer App for IPv6?AusNOG 2014 - Network Virtualisation: The Killer App for IPv6?
AusNOG 2014 - Network Virtualisation: The Killer App for IPv6?
 
6 Lo Wpan Tutorial 20080206
6 Lo Wpan Tutorial 200802066 Lo Wpan Tutorial 20080206
6 Lo Wpan Tutorial 20080206
 
AS201701 - Building an Internet backbone with pure 1he servers and Linux
AS201701 - Building an Internet backbone with pure 1he servers and LinuxAS201701 - Building an Internet backbone with pure 1he servers and Linux
AS201701 - Building an Internet backbone with pure 1he servers and Linux
 

En vedette

21st Century iBGP Route Reflection by Mark Tinka
21st Century iBGP Route Reflection by Mark Tinka21st Century iBGP Route Reflection by Mark Tinka
21st Century iBGP Route Reflection by Mark Tinka
MyNOG
 
LINX 83 ExaBGP as a route server ?
LINX 83 ExaBGP as a route server ?LINX 83 ExaBGP as a route server ?
LINX 83 ExaBGP as a route server ?
Thomas Mangin
 

En vedette (20)

Bgp (1)
Bgp (1)Bgp (1)
Bgp (1)
 
BGP persistence
BGP persistenceBGP persistence
BGP persistence
 
Create New Value for You - Huawei Agile Network
Create New Value for You - Huawei Agile NetworkCreate New Value for You - Huawei Agile Network
Create New Value for You - Huawei Agile Network
 
21st Century iBGP Route Reflection by Mark Tinka
21st Century iBGP Route Reflection by Mark Tinka21st Century iBGP Route Reflection by Mark Tinka
21st Century iBGP Route Reflection by Mark Tinka
 
Summit 16: Open-O Mini-Summit - Architecture & Technology
Summit 16: Open-O Mini-Summit - Architecture & TechnologySummit 16: Open-O Mini-Summit - Architecture & Technology
Summit 16: Open-O Mini-Summit - Architecture & Technology
 
LINX 83 ExaBGP as a route server ?
LINX 83 ExaBGP as a route server ?LINX 83 ExaBGP as a route server ?
LINX 83 ExaBGP as a route server ?
 
Summit 16: Open-O Mini-Summit - Orchestrating Network Connectivity Services
Summit 16: Open-O Mini-Summit - Orchestrating Network Connectivity ServicesSummit 16: Open-O Mini-Summit - Orchestrating Network Connectivity Services
Summit 16: Open-O Mini-Summit - Orchestrating Network Connectivity Services
 
Blackholing from a_providers_perspektive_theo_voss
Blackholing from a_providers_perspektive_theo_vossBlackholing from a_providers_perspektive_theo_voss
Blackholing from a_providers_perspektive_theo_voss
 
Jon Nield FastNetMon
Jon Nield FastNetMonJon Nield FastNetMon
Jon Nield FastNetMon
 
Detecting and mitigating DDoS ZenDesk by Vicente De Luca
Detecting and mitigating DDoS ZenDesk by Vicente De LucaDetecting and mitigating DDoS ZenDesk by Vicente De Luca
Detecting and mitigating DDoS ZenDesk by Vicente De Luca
 
Janog 39: speech about FastNetMon by Yutaka Ishizaki
Janog 39: speech about FastNetMon by Yutaka IshizakiJanog 39: speech about FastNetMon by Yutaka Ishizaki
Janog 39: speech about FastNetMon by Yutaka Ishizaki
 
GoBGP : yet another OSS BGPd
GoBGP : yet another OSS BGPdGoBGP : yet another OSS BGPd
GoBGP : yet another OSS BGPd
 
Peering and Transit Tutorials: Practical Every Day BGP Filtering
Peering and Transit Tutorials: Practical Every Day BGP FilteringPeering and Transit Tutorials: Practical Every Day BGP Filtering
Peering and Transit Tutorials: Practical Every Day BGP Filtering
 
Summit 16: Open-O Mini-Summit - VF Event Streaming Project Proposal
Summit 16: Open-O Mini-Summit - VF Event Streaming Project ProposalSummit 16: Open-O Mini-Summit - VF Event Streaming Project Proposal
Summit 16: Open-O Mini-Summit - VF Event Streaming Project Proposal
 
9534715
95347159534715
9534715
 
03 estrategia-ddos
03 estrategia-ddos03 estrategia-ddos
03 estrategia-ddos
 
Ultra fast DDoS Detection with FastNetMon at Coloclue (AS 8283)
Ultra fast DDoS Detection with FastNetMon at Coloclue (AS 8283)Ultra fast DDoS Detection with FastNetMon at Coloclue (AS 8283)
Ultra fast DDoS Detection with FastNetMon at Coloclue (AS 8283)
 
FastNetMon - ENOG9 speech about DDoS mitigation
FastNetMon - ENOG9 speech about DDoS mitigationFastNetMon - ENOG9 speech about DDoS mitigation
FastNetMon - ENOG9 speech about DDoS mitigation
 
Protect your edge BGP security made simple
Protect your edge BGP security made simpleProtect your edge BGP security made simple
Protect your edge BGP security made simple
 
Distributed Denial of Service Attack - Detection And Mitigation
Distributed Denial of Service Attack - Detection And MitigationDistributed Denial of Service Attack - Detection And Mitigation
Distributed Denial of Service Attack - Detection And Mitigation
 

Similaire à ExaBGP at LINX 83

Picobgp - A simple deamon for routing advertising
Picobgp - A simple deamon for routing advertisingPicobgp - A simple deamon for routing advertising
Picobgp - A simple deamon for routing advertising
Claudio Mignanti
 
T4 Handout3
T4 Handout3T4 Handout3
T4 Handout3
gobed
 
OSDC 2016 - Ingesting Logs with Style by Pere Urbon-Bayes
OSDC 2016 - Ingesting Logs with Style by Pere Urbon-BayesOSDC 2016 - Ingesting Logs with Style by Pere Urbon-Bayes
OSDC 2016 - Ingesting Logs with Style by Pere Urbon-Bayes
NETWAYS
 
Infrastructure as code might be literally impossible part 2
Infrastructure as code might be literally impossible part 2Infrastructure as code might be literally impossible part 2
Infrastructure as code might be literally impossible part 2
ice799
 

Similaire à ExaBGP at LINX 83 (20)

The benefit of BGP for every service provider
The benefit of BGP for every service providerThe benefit of BGP for every service provider
The benefit of BGP for every service provider
 
BGP Overview
BGP OverviewBGP Overview
BGP Overview
 
IPv6 IAB/IETF Activities Report from ARIN 32
IPv6 IAB/IETF Activities Report from ARIN 32IPv6 IAB/IETF Activities Report from ARIN 32
IPv6 IAB/IETF Activities Report from ARIN 32
 
VYOS & RPKI at the BGP as edge
VYOS & RPKI at the BGP as edgeVYOS & RPKI at the BGP as edge
VYOS & RPKI at the BGP as edge
 
Basics of IPv6
Basics of IPv6Basics of IPv6
Basics of IPv6
 
Dan York - Presentation at Emerging Communications Conference & Awards (eComm...
Dan York - Presentation at Emerging Communications Conference & Awards (eComm...Dan York - Presentation at Emerging Communications Conference & Awards (eComm...
Dan York - Presentation at Emerging Communications Conference & Awards (eComm...
 
AutoIP -A mechanism for IPv6 migration and IPv4 sunsetting by Shishio Tsuchiy...
AutoIP -A mechanism for IPv6 migration and IPv4 sunsetting by Shishio Tsuchiy...AutoIP -A mechanism for IPv6 migration and IPv4 sunsetting by Shishio Tsuchiy...
AutoIP -A mechanism for IPv6 migration and IPv4 sunsetting by Shishio Tsuchiy...
 
When a robot is smart enough?
When a robot is smart enough?When a robot is smart enough?
When a robot is smart enough?
 
Picobgp - A simple deamon for routing advertising
Picobgp - A simple deamon for routing advertisingPicobgp - A simple deamon for routing advertising
Picobgp - A simple deamon for routing advertising
 
T4 Handout3
T4 Handout3T4 Handout3
T4 Handout3
 
Bare Metal Club ATX: Networking Discussion
Bare Metal Club ATX: Networking DiscussionBare Metal Club ATX: Networking Discussion
Bare Metal Club ATX: Networking Discussion
 
Kernel load-balancing for Docker containers using IPVS
Kernel load-balancing for Docker containers using IPVSKernel load-balancing for Docker containers using IPVS
Kernel load-balancing for Docker containers using IPVS
 
IPV6 Hands on Lab
IPV6 Hands on Lab IPV6 Hands on Lab
IPV6 Hands on Lab
 
OSDC 2016 - Ingesting Logs with Style by Pere Urbon-Bayes
OSDC 2016 - Ingesting Logs with Style by Pere Urbon-BayesOSDC 2016 - Ingesting Logs with Style by Pere Urbon-Bayes
OSDC 2016 - Ingesting Logs with Style by Pere Urbon-Bayes
 
Kernel Recipes 2019 - Metrics are money
Kernel Recipes 2019 - Metrics are moneyKernel Recipes 2019 - Metrics are money
Kernel Recipes 2019 - Metrics are money
 
IPv6 enterprise security - The NAT Returns
IPv6 enterprise security - The NAT ReturnsIPv6 enterprise security - The NAT Returns
IPv6 enterprise security - The NAT Returns
 
Infrastructure as code might be literally impossible part 2
Infrastructure as code might be literally impossible part 2Infrastructure as code might be literally impossible part 2
Infrastructure as code might be literally impossible part 2
 
Tutorial: Using GoBGP as an IXP connecting router
Tutorial: Using GoBGP as an IXP connecting routerTutorial: Using GoBGP as an IXP connecting router
Tutorial: Using GoBGP as an IXP connecting router
 
FD.io - The Universal Dataplane
FD.io - The Universal DataplaneFD.io - The Universal Dataplane
FD.io - The Universal Dataplane
 
Realtime communication over a dual stack network
Realtime communication over a dual stack networkRealtime communication over a dual stack network
Realtime communication over a dual stack network
 

Plus de Thomas Mangin

Plus de Thomas Mangin (6)

VOIP QOS
VOIP QOSVOIP QOS
VOIP QOS
 
ExaProxy
ExaProxyExaProxy
ExaProxy
 
AS-STATS
AS-STATSAS-STATS
AS-STATS
 
BGP route leak
BGP route leakBGP route leak
BGP route leak
 
IXLeeds 2 Technical Update
IXLeeds 2 Technical UpdateIXLeeds 2 Technical Update
IXLeeds 2 Technical Update
 
IXLeeds
IXLeeds IXLeeds
IXLeeds
 

Dernier

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc
 
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdfRising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Orbitshub
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Safe Software
 
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
?#DUbAI#??##{{(☎️+971_581248768%)**%*]'#abortion pills for sale in dubai@
 
Why Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire businessWhy Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire business
panagenda
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
sammart93
 

Dernier (20)

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
 
Artificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : UncertaintyArtificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : Uncertainty
 
Six Myths about Ontologies: The Basics of Formal Ontology
Six Myths about Ontologies: The Basics of Formal OntologySix Myths about Ontologies: The Basics of Formal Ontology
Six Myths about Ontologies: The Basics of Formal Ontology
 
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdfRising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
 
Vector Search -An Introduction in Oracle Database 23ai.pptx
Vector Search -An Introduction in Oracle Database 23ai.pptxVector Search -An Introduction in Oracle Database 23ai.pptx
Vector Search -An Introduction in Oracle Database 23ai.pptx
 
DBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor PresentationDBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor Presentation
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
 
Elevate Developer Efficiency & build GenAI Application with Amazon Q​
Elevate Developer Efficiency & build GenAI Application with Amazon Q​Elevate Developer Efficiency & build GenAI Application with Amazon Q​
Elevate Developer Efficiency & build GenAI Application with Amazon Q​
 
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWEREMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
 
Platformless Horizons for Digital Adaptability
Platformless Horizons for Digital AdaptabilityPlatformless Horizons for Digital Adaptability
Platformless Horizons for Digital Adaptability
 
Corporate and higher education May webinar.pptx
Corporate and higher education May webinar.pptxCorporate and higher education May webinar.pptx
Corporate and higher education May webinar.pptx
 
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
 
Why Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire businessWhy Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire business
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
[BuildWithAI] Introduction to Gemini.pdf
[BuildWithAI] Introduction to Gemini.pdf[BuildWithAI] Introduction to Gemini.pdf
[BuildWithAI] Introduction to Gemini.pdf
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
 
Introduction to Multilingual Retrieval Augmented Generation (RAG)
Introduction to Multilingual Retrieval Augmented Generation (RAG)Introduction to Multilingual Retrieval Augmented Generation (RAG)
Introduction to Multilingual Retrieval Augmented Generation (RAG)
 
CNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In PakistanCNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In Pakistan
 
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
 
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingRepurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
 

ExaBGP at LINX 83

  • 1. New Developments in ExaBGP Why should YOU care ? LINX 83 18th/19th of November 2013 Thomas Mangin Exa Networks Whatever a speaker is missing in depth he will compensate for in length Montesquieu
  • 2. Another presentation to ignore while you have fun on IRC !
  • 4. Doing BGP with OSS Well known open source implementations of BGP ! Quagga BIRD http://bird.network.cz/ http://www.quagga.net/ The underdog ! ExaBGP https://github.com/Exa-Networks/exabgp Another UK born and bred ! BGPFeeder https://projects.bytemark.co.uk/projects/bgpfeeder And the others ! https://github.com/Exa-Networks/exabgp/wiki/Other-OSS-BGP-implementations A little learning is a dangerous thing Alexander Pope
  • 5. ExaBGP .. A “BGP swiss army knife” since 2009.. commit 5490f7baf5981279e2360d88c735570bc9f72532 Author: Thomas Mangin <thomas.mangin@exa-networks.co.uk> Date: Thu Sep 3 22:12:05 2009 +0000 ! initial commit […] announce a route to a 7204 and keep the connection alive Patience is bitter, but its fruit is sweet Rousseau
  • 6. ExaBGP? NANOG Thread es servic ng arketi m ndy’s A […] you might find ExaBGP more lightweight in this role - see http:// bgp.exa.org.uk/ - do check it out. This has an interface which will feel extremely comfortable to Juniper users. ! Best wishes Andy Work delivers us from three great evils: boredom, vice and want. Voltaire.
  • 7. Genius … We liked it so much we trademarked it! Pride is the consolation of the weak Vauvenargues
  • 8. Let’s work on that marketing ! ExaBGP ! “SDN without marketing” “SDN on commodity hardware” ! ExaBGP ! “The BGP swiss army knife of networking” s stion gge ew su red no n equi r Truth is more valuable if it takes you a few years to find it. Renard
  • 9. Thomas’ idea ! ! ! ! ! Thank you Mike … I expected Malcolm to bring me this kind of bad news Back to square one ! Real knife by Victorinox AG I have always believed that to succeed in life, it is necessary to appear to be mad and to act wisely Montesquieu
  • 10. Any Good ? Nothing is more humiliating than to see idiots succeed in enterprises we have failed at Flaubert
  • 11. Up to date ? ! baby eah Oh y … ut it bo ob a rR v id o Da As k I love fools’ experiments. I am always making them. Charles Darwin
  • 12. What next? I will focus on that… later .. way later in the talk Logic will get you from A to B. Imagination will take you everywhere Albert Einstein
  • 13. For when? ! I am taking a small break… ! This is my “hobby” be kind I have three jobs ! A hobby which gets ! - Heidi complaining - My colleagues too (I can ignore these) ! Therefore ExaBGP Users are NOT allowed to complain!
  • 14. What’s the expected use? ! ! ! NOC usage .. DDOS RTBH Flow Spec Interception SDN : : : : prevents bad traffic from reaching its destination RTBH on steroid, firewall rules deployed using BGP Legal requirements (IWF,… ) over 200k routes updates every 5 minutes .. DevOps usage .. Service IPs : servers mobility using extra/32 with BGP Anycast : the same IP at different locations (CDN, DNS, ...) IX usage .. Collector : at IXLeeds Route Server : future development needed Be regular and orderly in your life, so that you may be violent and original in your work Flaubert
  • 15. Easy to install? ! ! ! ! Use GitHub > wget https://github.com/Exa-Networks/exabgp/archive/3.2.17.tar.gz > tar zxvf 3.2.17.tar.gz > cd exabgp-3.2.17 > ./sbin/exabgp —help Use your distribution (often older code) > > > > apt-get install exabgp pacman -S exabgp port install exabgp emerge exabgp # # # # Debian / Ubuntu ArchLinux OS X / FreeBSD Gentoo (soon? Thank you Tony) Be regular and orderly in your life, so that you may be violent and original in your work Flaubert
  • 16. Easy to use? ! Not as easy as it could be ! No real documentation elp H ! ! e… com el w The community is stepping up ! HA http://vincent.bernat.im/en/blog/2013-exabgp-highavailability.html DDOS http://media.frnog.org/FRnOG_18/FRnOG_18-6.pdf Be regular and orderly in your life, so that you may be violent and original in your work Flaubert
  • 17. I can hear Martin Levy ask “Does it supports IPv6 ” IPv4 IPv6 Neighbours Neighbours IPv4 IPv6 Prefixes (and MPLS) Prefixes (MP NLRI) yes yes IPv4 IPv6 Flow Spec (RFC 5575) Flow Spec (draft) yes yes * ! ! ! N Th ati em ve ed IPv sli 6 de yes yes * I do not know any vendors supporting it yet … As you can never fully please Martin, I admit … ! RFC 5701 - IPv6 Address Specific BGP Extended Community Attribute no It is easier to ask for forgiveness than permission - Stewart’s law of retraction fake
  • 18. Usage RTBH Tell your provider to stop sending you traffic for some IPs ! Announce some more specific routes (/32, /29, …) part of your network and TAG the route with communities so it can be filtered (dropped by your upstream edge routers) Traffic is dropped before it is billed ! Many Talks (NANOG, APRICOT, ...) on the topic and an RFC (5635) > google RTBH or Remotely triggered blackhole ! The goal is to bypass the transit provider NOC and reduce response time when under duress ! Each ISP implements it differently .. level3 > whois -h whois.ripe.net AS3356 | grep -B1 -A15 -i blakhole It is dangerous to be right in matters on which the established authorities are wrong Voltaire
  • 19. Flow Routes Control the filtering Yourself, do not disconnect the target group ddos { local-as 30740; peer-as 30740; router-id 82.219.0.1; local-address 82.219.0.1; graceful-restart 5; family { ipv4 unicast; ipv4 flow; } flow { route drop-ddos-ntp2 { match { destination 82.219.4.31/32; destination-port >123 <123; protocol udp; } then { discard; } } } neighbor 82.219.0.2 { description “nothing at those IP"; } neighbor 82.219.0.3 { description “no point attacking them"; } } Firewall rules via BGP RFC 5575 Juniper and Alcatel Cisco coming in 2014 for IOS-XR and XE Ask Cisco for more info ExaBGP is the only OSS application to support FlowSpec thomas@mx-80> show route table inetflow.0 ! inetflow.0: 3 destinations, 3 routes (3 active, 0 holddown, 0 hidden) Restart Complete + = Active Route, - = Last Active, * = Both ! 82.219.4.31,*,proto=17,dstport>=124&<=65535,>=0&<=122/term:2 *[BGP/170] 4d 13:48:20, localpref 100, from 82.219.5.101 AS path: I Fictitious […] thomas@mx-80> show firewall filter __flowspec_default_inet__ The secret of business is to know something that nobody else knows Aristotle Onassis
  • 20. Designed to be scripted Use ANY scripting language perl, python, lua, go, bash, … neighbor 127.0.0.1 { router-id 1.2.3.4; local-address 127.0.0.1; local-as 1; peer-as 1; graceful-restart; ! process announce-routes { run ./api-add-remove.run; } #!/usr/bin/env python ! ! import sys, time messages = [ 'announce route 1.1.0.0/24 next-hop 101.1.101.1', 'announce route 1.1.0.0/25 next-hop 101.1.101.1', 'withdraw route 1.1.0.0/24 next-hop 101.1.101.1', ] ! while messages: message = messages.pop(0) sys.stdout.write( message + 'n') sys.stdout.flush() time.sleep(1) ! while True: time.sleep(1) > ./sbin/exabgp ./api-add-remove.conf An example on the wiki with SHELL PIPE .. for examples, look into /dev/runtest “the test suite” Used in prod as SDN by at least one large network ! Use for DDOS mitigation by MANY networks ! Used by vendor For BGP interrop testing ! Their is two rules for success in business, one do not tell all you know, … Some bad joke site
  • 21. ExaBGP as a Route Server Why only now? ExaBGP started as a route injector, not a BGP daemon It is single threaded using windows 3.1 like multi-tasking The code was blocking when sending routes Fixed this summer with version 3.2 Hundreds of hours of work Most of the IX effort already on Quagga and BIRD (more mature) How much work is required ? ! ExaBGP already works as route collector only tested on a small scale (IXLeeds) need some more control features (for debugging) but it SHOULD scale Divide and Conquer Julius Caesar
  • 22. ExaBGP as a Route Server Why would it be better? Much simpler code to understand (python) Much easier to hack (adding draft RFC in hours now) Can still be improved though Can take benefit of multiple cores easily ExaBGP does NOT have a LOCAL RIB The RIB can be implemented as a different process The RIB does not even have to be on the server Possible madness with things like ZeroMQ :-) Possible to have one BGP daemon per switch Possible to detect L2 loss and change announcement ExaBGP is single threaded but can use multiple cores FreeBSD and Linux 3.9 SO_REUSE_PORT Allows to split TCP flows to different process aBGP t Ex lp) All listening on the same port r r en cu he d to t would ir e requ vemen ge chan e impro No om but s ( Divide and Conquer Julius Caesar
  • 23. Last words… perhaps! Please HELP! I could do with … more contributors need help with documentation Otherwise, just let me know if you use it… Any ‘it works’ mail is always appreciated Need to tidy some code JSON generation Configuration format parsing (started) More .. LINX agreed to let me use their IXIA to see how it performs and compare the result with BIRD who would be interested in seeing the results? I am surprised! you are reading those quotes! Thomas Mangin
  • 24. Questions? Thank you for your kindness on IRC .. thomas.mangin@exa-networks.co.uk https://github.com/thomas-mangin/exabgp/ Judge a man by his questions rather than by his answers Voltaire