nanog%70%hackathon% · openbmp%hackathon%group!% • akshatsharma:%cisco% • mike%korshunov:cisco%...
TRANSCRIPT
![Page 1: NANOG%70%Hackathon% · OpenBMP%Hackathon%Group!% • AkshatSharma:%Cisco% • Mike%Korshunov:Cisco% • %Garegin%Grigoryan:% Clarkson%University% • Anup%Javdekar:Google%](https://reader034.vdocument.in/reader034/viewer/2022052100/60396af0d656e877b91092e0/html5/thumbnails/1.jpg)
RUNNERS-UP PRESENTATIONS - OPENBMP CONTROLLER - IXMON
NANOG 70 Hackathon
![Page 2: NANOG%70%Hackathon% · OpenBMP%Hackathon%Group!% • AkshatSharma:%Cisco% • Mike%Korshunov:Cisco% • %Garegin%Grigoryan:% Clarkson%University% • Anup%Javdekar:Google%](https://reader034.vdocument.in/reader034/viewer/2022052100/60396af0d656e877b91092e0/html5/thumbnails/2.jpg)
OPENBMP CONTROLLER
• Save TCAM space! • Create off-‐box programmable route policies! • Implement custom path selecDon algorithms!
![Page 3: NANOG%70%Hackathon% · OpenBMP%Hackathon%Group!% • AkshatSharma:%Cisco% • Mike%Korshunov:Cisco% • %Garegin%Grigoryan:% Clarkson%University% • Anup%Javdekar:Google%](https://reader034.vdocument.in/reader034/viewer/2022052100/60396af0d656e877b91092e0/html5/thumbnails/3.jpg)
OpenBMP Hackathon Group!
• Akshat Sharma : Cisco
• Mike Korshunov: Cisco
• Garegin Grigoryan : Clarkson University
• Anup Javdekar: Google
• Palak Mehta: Facebook
• Rupesh Patro : MicrosoO • Yaoqing Liu: Clarkson
University
![Page 4: NANOG%70%Hackathon% · OpenBMP%Hackathon%Group!% • AkshatSharma:%Cisco% • Mike%Korshunov:Cisco% • %Garegin%Grigoryan:% Clarkson%University% • Anup%Javdekar:Google%](https://reader034.vdocument.in/reader034/viewer/2022052100/60396af0d656e877b91092e0/html5/thumbnails/4.jpg)
rtr1 rtr2
RPL configured to drop ALL routes in RIB/FIB learnt via BGP for parDcular Neighbor
iBGP
OpenBMP
KaXa consumer
BGP in-‐RIB synced to openBMP server
Custom Filtering of routes
ApplicaDon/ staDc routes
GRPC/Netconf
RIB API Client
Routes learnt from rtr2 over iBGP session
BGP SelecDve Route Download
![Page 5: NANOG%70%Hackathon% · OpenBMP%Hackathon%Group!% • AkshatSharma:%Cisco% • Mike%Korshunov:Cisco% • %Garegin%Grigoryan:% Clarkson%University% • Anup%Javdekar:Google%](https://reader034.vdocument.in/reader034/viewer/2022052100/60396af0d656e877b91092e0/html5/thumbnails/5.jpg)
Adj-‐in RIB
OpenBMP
Adj-‐in RIB Post Policy
Local RIB
redis
adj-‐in rib
adj-‐in Rib
Post policy
Local RIB
Router Client
• RIB API (Cisco Service Layer API)
• StaDc Routes API
Adj-‐out RIB
Redistribute applicaDon/staDc
User defined Route policies: Python/YAML
User Defined Path selecDon algorithm: Python/YAML Redis-‐CLI/API to
access each RIB
![Page 6: NANOG%70%Hackathon% · OpenBMP%Hackathon%Group!% • AkshatSharma:%Cisco% • Mike%Korshunov:Cisco% • %Garegin%Grigoryan:% Clarkson%University% • Anup%Javdekar:Google%](https://reader034.vdocument.in/reader034/viewer/2022052100/60396af0d656e877b91092e0/html5/thumbnails/6.jpg)
h^ps://github.com/akshshar/openbmp-‐controller
ContribuDons Welcome!
![Page 7: NANOG%70%Hackathon% · OpenBMP%Hackathon%Group!% • AkshatSharma:%Cisco% • Mike%Korshunov:Cisco% • %Garegin%Grigoryan:% Clarkson%University% • Anup%Javdekar:Google%](https://reader034.vdocument.in/reader034/viewer/2022052100/60396af0d656e877b91092e0/html5/thumbnails/7.jpg)
IXmon
By Tbl9 NANOG 70 - June 6th 2017
![Page 8: NANOG%70%Hackathon% · OpenBMP%Hackathon%Group!% • AkshatSharma:%Cisco% • Mike%Korshunov:Cisco% • %Garegin%Grigoryan:% Clarkson%University% • Anup%Javdekar:Google%](https://reader034.vdocument.in/reader034/viewer/2022052100/60396af0d656e877b91092e0/html5/thumbnails/8.jpg)
Team ● Sumeet
● Paul
● Marc
● Matt
● Chris
● Me
![Page 9: NANOG%70%Hackathon% · OpenBMP%Hackathon%Group!% • AkshatSharma:%Cisco% • Mike%Korshunov:Cisco% • %Garegin%Grigoryan:% Clarkson%University% • Anup%Javdekar:Google%](https://reader034.vdocument.in/reader034/viewer/2022052100/60396af0d656e877b91092e0/html5/thumbnails/9.jpg)
What did we want to do? ● Test connectivity to
members on an IX ● Find IX locations where
ASN’s have equipment but do not have a neighbor
![Page 10: NANOG%70%Hackathon% · OpenBMP%Hackathon%Group!% • AkshatSharma:%Cisco% • Mike%Korshunov:Cisco% • %Garegin%Grigoryan:% Clarkson%University% • Anup%Javdekar:Google%](https://reader034.vdocument.in/reader034/viewer/2022052100/60396af0d656e877b91092e0/html5/thumbnails/10.jpg)
Testing Connectivity to others in the IX
![Page 11: NANOG%70%Hackathon% · OpenBMP%Hackathon%Group!% • AkshatSharma:%Cisco% • Mike%Korshunov:Cisco% • %Garegin%Grigoryan:% Clarkson%University% • Anup%Javdekar:Google%](https://reader034.vdocument.in/reader034/viewer/2022052100/60396af0d656e877b91092e0/html5/thumbnails/11.jpg)
![Page 12: NANOG%70%Hackathon% · OpenBMP%Hackathon%Group!% • AkshatSharma:%Cisco% • Mike%Korshunov:Cisco% • %Garegin%Grigoryan:% Clarkson%University% • Anup%Javdekar:Google%](https://reader034.vdocument.in/reader034/viewer/2022052100/60396af0d656e877b91092e0/html5/thumbnails/12.jpg)
Testing Connectivity to others in the IX
Things that are working:
● Source a ping from a Juniper router
● Putting the result into a database
Things to do:
● Build an interface for reviewing ping output
● Automatic querying of PeeringDB to find other members on the exchange
● Add handling for other vendors
![Page 13: NANOG%70%Hackathon% · OpenBMP%Hackathon%Group!% • AkshatSharma:%Cisco% • Mike%Korshunov:Cisco% • %Garegin%Grigoryan:% Clarkson%University% • Anup%Javdekar:Google%](https://reader034.vdocument.in/reader034/viewer/2022052100/60396af0d656e877b91092e0/html5/thumbnails/13.jpg)
Find IX locations where ASN’s have equipment but do not have
a neighbor
![Page 14: NANOG%70%Hackathon% · OpenBMP%Hackathon%Group!% • AkshatSharma:%Cisco% • Mike%Korshunov:Cisco% • %Garegin%Grigoryan:% Clarkson%University% • Anup%Javdekar:Google%](https://reader034.vdocument.in/reader034/viewer/2022052100/60396af0d656e877b91092e0/html5/thumbnails/14.jpg)
![Page 15: NANOG%70%Hackathon% · OpenBMP%Hackathon%Group!% • AkshatSharma:%Cisco% • Mike%Korshunov:Cisco% • %Garegin%Grigoryan:% Clarkson%University% • Anup%Javdekar:Google%](https://reader034.vdocument.in/reader034/viewer/2022052100/60396af0d656e877b91092e0/html5/thumbnails/15.jpg)
Find IX locations where
ASN’s have equipment but do not have a
neighbor
Things that are working:
● Query an Arista and Juniper router to receive neighbors
● Find ASN peering locations from PeeringDB
● Showing locations without neighbors
Things to do:
● Maybe make a web app
![Page 16: NANOG%70%Hackathon% · OpenBMP%Hackathon%Group!% • AkshatSharma:%Cisco% • Mike%Korshunov:Cisco% • %Garegin%Grigoryan:% Clarkson%University% • Anup%Javdekar:Google%](https://reader034.vdocument.in/reader034/viewer/2022052100/60396af0d656e877b91092e0/html5/thumbnails/16.jpg)
Where to next? 1. Code clean-up
2. Complete our to-do’s
3. ??????
4. Profit!
![Page 17: NANOG%70%Hackathon% · OpenBMP%Hackathon%Group!% • AkshatSharma:%Cisco% • Mike%Korshunov:Cisco% • %Garegin%Grigoryan:% Clarkson%University% • Anup%Javdekar:Google%](https://reader034.vdocument.in/reader034/viewer/2022052100/60396af0d656e877b91092e0/html5/thumbnails/17.jpg)
What can you do? Fork or Join the group:
● github.com/Tbl9/ixmon