News

ECIX: Route Server Route Policies Just Got Flexible

route_servers_v3

Route servers are great for simplifying the peering process on an IXP peering network. But they don’t always offer much in the way of flexibility - especially if you want to apply specific route policies for specific ASNs.

While it’s always been possible to fully permit or deny routes to and from other ASNs on the ECIX customer portal (portal.ecix.net), this used to be an all-or-nothing deal. If you didn't want the route server to send any routes to a specific ASN then that automatically meant that you yourself also wouldn't receive any routes from that ASN. Now, things have just got a bit easier, and a lot more flexible.

With ECIX’s new separated Import/Export filters, administrators are now able to individually tell the route server to:

  • Allow both import and export to and from an ASN
  • Only permit import form an ASN
  • Only permit export to an ASN
  • Deny both import and export from and to an ASN

With a simple click of a button it is now possible to move your incoming traffic away from one specific ASN while still being able to send them your traffic, or even to flat out deny any route sharing between you and the other ASN.

This also gives you more flexibility during debug sessions as you can simply tell the route servers now to stop sending any of your routes to another AS while you still receive theirs for analysis. This is of course complementary to the ECIX communities which you can use to deny export on a more granular per prefix level.

ECIX’s customer portal helps network admins get away from admin burden and complex policy configurations, and puts flexible route filtering at your fingertips.

Of course, as mentioned before, ECIX also still fully supports the following, also large, BGP communities:
65000:XXX - Do NOT announce this route to AS XXX
65000:0 - Do NOT announce this route to ANY peers
64960:XXX - Do announce this route to AS XXX if 65000:0 set
65001:XXX - Prepend peer AS 1 time to ASN
65002:XXX - Prepend peer AS 2 times to ASN
65003:XXX - Prepend peer AS 3 times to ASN

9033:65000:XXX - Do NOT announce this route to AS XXX
9033:65000:0 - Do NOT announce this route to ANY peers
9033:64960:XXX - Do announce this route to AS XXX if 65000:0 set
9033:65001:XXX - Prepend peer AS 1 time to ASN
9033:65002:XXX - Prepend peer AS 2 times to ASN
9033:65003:XXX - Prepend peer AS 3 times to ASN

Take a look at our route server information page for more details: ecix.net/infrastructure/service-description/routeservers

ECIX route servers can help you:

  • Get complete control of your route server policies
  • Reduce administrative burden
  • Achieve more flexible route filtering

Take a look at your existing peering policies and see if they could benefit from a more simple, flexible approach to import/export data filtering. Visit the ECIX portal today to get started.

Stefan Plug & Matthias Hannig