Home > World Of ICT > INHERENT – BGP Confederation di Mikrotik

INHERENT – BGP Confederation di Mikrotik


Telah berpulang dengan tidak tenang PowerSupply CISCO seri 7606 dikarenakan sering tidak stabil dan dropnya supply listrik PLN  pada Gedung UPT Puskom, rusaknya Powersupply berakibat pada tidak berfungsinya Router tersebut dengan layanan utama sebagai  Core-Router interkoneksi Node INHERENT antara Jawa dan Sumatera (selain Universitas Sumatera Utara).  Kejadian ini saya ketahui pada saat staff network lainnya melakukan pengecekan atas Failed-nya interkoneksi RING Sumatera menuju ke Jawa, pada saat kejadian saya berada di UI-Salemba karena proses perkuliahan S2 saya sudah dimulai.

Quick Solusinya adalah saya coba gantikan fungsi cisco  ini dengan satu PC router dengan pilihan OS FreeBSD atau Mikrotik, setelah berfikir dan ditimang-timang dipilih Mikrotik sebagai System Operasi PC Router ini.

Quick and Dirty proses pengerjaan bisa dilihat pada langkah perikut;

  • Install Mikrotik Level 6, disaya menggunakan versi IOS versi 5 dengan fitur terbaru yakni virtualisasi router.
  • Karena ada 3 Node terhubung yaitu (Universitas Indonesia – Universitas Sriwijaya – Universitas Bengkulu) , perlu disiapkan 4 unit interface LAN card untuk digunakan sebagai interface Utama.
[admin@IBRUNILA01] > interface print 
Flags: D - dynamic, X - disabled, R - running, S - slave 
 #     NAME                                                                              TYPE               MTU L2MTU  MAX-L2MTU
 0  R  ether1                                                                            ether             1500
 1  R  ether2                                                                            ether             1500
 2  R  ether3                                                                            ether             1500 16383      16383
 3  R  lo                                                                                bridge            1500 65535
 4  R  ether4                                                                            ether             1500
[admin@IBRUNILA01] >
  • Pastikan bahwa interface semuanya telah dapat dibaca oleh Mikrotik, dan lakukan Assign IP Address sesuai dengan ketentuan IP yang sudah disepakati.
[admin@IBRUNILA01] > ip address print 
Flags: X - disabled, I - invalid, D - dynamic 
 #   ADDRESS            NETWORK         INTERFACE                                                                          
 0   167.205.143.1/24   167.205.143.0   ether1                                                                             
 1   167.205.188.198/30 167.205.188.196 ether2                                                                             
 2   167.205.191.174/30 167.205.191.172 ether3                                                                             
 3   118.98.240.171/32  118.98.240.171  lo                                                                                 
[admin@IBRUNILA01] > 

Ether 1 adalah yang mengarah ke Local Area Network Unila (Alokasi Prefix Untuk Unila dari ITB)
Ether 2 adalah IP P2P yang mengarah ke Universitas Sriwijaya
Ether 3 adalah IP P2P yang mengarah ke Universitas Indonesia
Lo adalah Interface Loopback
  • Langkah selanjutnya adalah pengaktifan BGP Routing untuk menghandle prefix INHERENT+TEIN3
Pengaktifan Fitur Instance BGP Confederation pada Mikrotik melibatkan ASN 65001-65007,65011,65017,65051,

[admin@IBRUNILA01] /routing bgp> instance print 
Flags: X - disabled 
 0 X name="default" as=65530 router-id=0.0.0.0 redistribute-connected=no redistribute-static=no redistribute-rip=no redistribute-ospf=no 
     redistribute-other-bgp=no out-filter="" client-to-client-reflection=yes ignore-as-path-len=no routing-table="" 

 1   name="UNILAINH" as=65009 router-id=118.98.240.171 redistribute-connected=yes redistribute-static=no redistribute-rip=no redistribute-ospf=yes 
     redistribute-other-bgp=no out-filter="" confederation=18007 confederation-peers=65001-65007,65011,65017,65051 client-to-client-reflection=no 
     ignore-as-path-len=no routing-table="" 
[admin@IBRUNILA01] /routing bgp> 

Blok IP Prefix Unila yang di Advertise Via BGP 65009
[admin@IBRUNILA01] /routing bgp> network print 
Flags: X - disabled 
 #   NETWORK              SYNCHRONIZE
 0   167.205.143.0/24     yes        
[admin@IBRUNILA01] /routing bgp> 

Peer BGP yang terhubung ke UNILA

[admin@IBRUNILA01] /routing bgp> peer 
add  comment  disable  edit  enable  export  find  print  refresh  refresh-all  remove  resend  resend-all  set  unset
[admin@IBRUNILA01] /routing bgp> peer print 
Flags: X - disabled, E - established 
 #   INSTANCE                                          REMOTE-ADDRESS                                                                    REMOTE-AS  
 0 E UNILAINH                                          167.205.188.197                                                                   65002      
 1 E UNILAINH                                          167.205.191.173                                                                   65011      
 2 E UNILAINH                                          2403:da00:ffff:ffff::9                                                            65002      
 3   UNILAINH                                          2403:da00:ffff:ffff::e                                                            65011      
 4 E UNILAINH                                          (unknown)                                                                         46047      
[admin@IBRUNILA01] /routing bgp>


  • Selanjutnya di Check apakah total prefix INHERENT+TEIN3 sudah terupdate di Router
Prefix dari IPv4

[admin@IBRUNILA01] /routing bgp> advertisements print 
PEER     PREFIX               NEXTHOP          AS-PATH                                                                         ORIGIN     LOCAL-PREF
PEER-UI  118.97.165.0/25      167.205.188.198  (65011)65111                                                                    igp               100
PEER-UI  167.205.191.176/30   167.205.188.198  (65011)                                                                         incomplete        100
PEER-UI  222.124.194.0/27     167.205.188.198  (65011)65111                                                                    igp               1
PEER-UI  167.205.143.0/24     167.205.188.198                                                                                  igp               1
PEER-UI  118.98.248.132/30    167.205.188.198  (65011)46047                                                                    igp               1
PEER-UI  118.98.240.183/32    167.205.188.198  (65011)                                                                         incomplete        1
PEER-UI  167.205.145.252/30   167.205.188.198  (65011)                                                                         igp               1
PEER-UI  167.205.191.44/30    167.205.188.198  (65011)                                                                         incomplete        1
PEER-UI  118.98.240.171/32    167.205.188.198                                                                                  incomplete        1
PEER-UI  118.98.248.96/27     167.205.188.198  (65011)                                                                         igp               1
PEER-UI  202.9.69.0/24        167.205.188.198  (65011)46047                                                                    igp               1
PEER-UI  167.205.191.172/30   167.205.188.198                                                                                  incomplete        1
PEER-UI  118.98.248.104/29    167.205.188.198  (65011)46047                                                                    igp               1
PEER-UI  118.98.248.128/30    167.205.188.198  (65011)46047                                                                    igp               1
PEER-UI  118.98.240.184/32    167.205.188.198  (65011)46047                                                                    igp               1

Prefix dari IPv6

admin@IBRUNILA01] /routing bgp> advertisements print PEER6-UI
PEER     PREFIX               NEXTHOP          AS-PATH                                                                          ORIGIN     LOCAL-PREF
PEER6-UI 2403:da00:ffff:ff... 2403:da00:fff...                                                                                  incomplete        100
PEER6-UI 2403:da00:ffff:ff... 2403:da00:fff...                                                                                  incomplete        100
PEER6-UI 2001:df0:a9::/48     2403:da00:fff... 46047                                                                            igp               100
PEER6-UI 2403:da00:ffff:ff... 2403:da00:fff...                                                                                  incomplete        100
[admin@IBRUNILA01] /routing bgp>
  • Dan terakhir sekali check apakah Network ke Arah INHERENT dan TEIN sudah bisa di reach secara dua arah.
Pengecekan Path Routing ke arah Prefix INHERENT

[admin@IBRUNILA01] > tool traceroute www.its.ac.id
 # ADDRESS                                 RT1   RT2   RT3   STATUS                                                                                  
 1 167.205.188.197                         15ms  15ms  15ms                                                                                          
 2 167.205.188.229                         17ms  17ms  17ms                                                                                          
 3 167.205.188.226                         47ms  47ms  47ms                                                                                          
 4 167.205.188.185                         47ms  47ms  47ms                                                                                          
 5 202.46.129.246                          47ms  47ms  47ms                                                                                          
 6 202.46.129.242                          47ms  47ms  47ms                                                                                          
 7 202.46.129.15                           47ms  47ms  47ms                                                                                          

[admin@IBRUNILA01] > 

Pengecekan Path Routing ke arah Prefix TEIN3

[admin@IBRUNILA01] > tool traceroute www.mit.edu
 # ADDRESS                                 RT1   RT2   RT3   STATUS                                                                                  
 1 167.205.188.197                         15ms  15ms  15ms                                                                                          
 2 167.205.188.246                         22ms  22ms  22ms                                                                                          
 3 202.179.241.69                          84ms  83ms  83ms                                                                                          
 4 202.179.241.78                          134ms 134ms 134ms                                                                                         
 5 203.181.248.250                         134ms 134ms 134ms                                                                                         
 6 192.203.116.145                         248ms 248ms 248ms                                                                                         
 7 207.231.240.144                         248ms 248ms 248ms                                                                                         
 8 216.24.186.72                           324ms 324ms 324ms <MPLS:L=42,E=6>                                                                         
 9 216.24.186.75                           324ms 324ms 324ms <MPLS:L=167,E=6>                                                                        
10 216.24.186.79                           324ms 324ms 324ms <MPLS:L=228,E=6>                                                                        
11 216.24.186.54                           324ms 324ms 324ms <MPLS:L=136,E=6>                                                                        
12 216.24.186.53                           324ms 324ms 324ms <MPLS:L=175,E=6>                                                                        
13 216.24.186.91                           324ms 324ms 324ms <MPLS:L=224,E=6>                                                                        
14 216.24.186.86                           326ms 419ms 409ms <MPLS:L=240,E=6>                                                                        
15 216.24.186.84                           324ms 323ms 324ms                                                                                         
16 216.24.184.102                          324ms 324ms 323ms                                                                                         
17 18.168.1.41                             330ms 330ms 330ms                                                                                         
18 0.0.0.0                                 0ms   0ms   0ms                                                                                           
19 0.0.0.0                                 0ms   0ms   0ms                                                                                           

[admin@IBRUNILA01] > 

Pengecekan dua arah dari http://lg.dikti.go.id kearah NOde yg melewati Unila
Tracing route to: 167.205.145.1

traceroute to 167.205.145.1 (167.205.145.1), 30 hops max, 40 byte packets
 1  118.98.233.1 (118.98.233.1)  1.844 ms  2.142 ms  2.374 ms
 2  118.98.159.1 (118.98.159.1)  0.768 ms  0.775 ms  0.819 ms
 3  118.98.132.114 (118.98.132.114)  1.352 ms  1.373 ms  1.365 ms
 4  118.98.132.118 (118.98.132.118)  1.369 ms  1.412 ms  1.407 ms
 5  metroGBe-dikti-ui.inherent-dikti.net (167.205.188.230)  3.206 ms  3.220 ms  3.212 ms
 6  167.205.188.198 (167.205.188.198)  18.025 ms  17.385 ms  17.481 ms

Pengecekan dua arah dari Lg TEIN 3 http://www.net.princeton.edu/cgi-bin/traceroute.pl

tracing path from http://www.net.princeton.edu to 167.205.145.1

traceroute to 167.205.145.1 (167.205.145.1), 30 hops max, 40 byte packets
 1  gigagate1 (128.112.128.114)  0.714 ms  0.369 ms  0.354 ms
 2  vgate1 (128.112.12.22)  0.451 ms  0.392 ms  0.394 ms
 3  local1.princeton.magpi.net (216.27.98.113)  2.693 ms  2.624 ms  2.683 ms
 4  remote.internet2.magpi.net (216.27.100.54)  4.525 ms  4.648 ms  4.553 ms
 5  64.57.28.19 (64.57.28.19)  10.791 ms  14.266 ms  11.212 ms
 6  ae-8.10.rtr.atla.net.internet2.edu (64.57.28.6)  23.326 ms  22.979 ms  23.487 ms
 7  xe-1-0-0.0.rtr.hous.net.internet2.edu (64.57.28.112)  46.775 ms  46.865 ms  46.785 ms
 8  ge-6-1-0.0.rtr.losa.net.internet2.edu (64.57.28.96)  567.787 ms  581.922 ms  598.916 ms
 9  transpac-1-lo-jmb-702.lsanca.pacificwave.net (207.231.240.136)  78.893 ms  78.867 ms  78.948 ms
10  tokyo-losa-tp2.transpac2.net (192.203.116.146)  192.837 ms  192.828 ms  192.516 ms
11  kote-dc-gm1-xe2-2-1-4005.jp.apan.net (203.181.248.249)  192.912 ms  192.975 ms  192.589 ms
12  hk-xe-01-v4.bb.tein3.net (202.179.241.77)  243.633 ms  243.623 ms  243.520 ms
13  id-pr-v4.bb.tein3.net (202.179.241.70)  305.241 ms  305.175 ms  305.391 ms
14  metroGBe-ui-itb.inherent-dikti.net (167.205.188.245)  312.695 ms  311.810 ms  311.742 ms
15  167.205.188.198 (167.205.188.198)  326.220 ms  326.232 ms  326.776 ms
16  8Mb-unsri-unila.inherent-dikti.net (167.205.191.173)  331.854 ms  331.806 ms *

 


Yak sekian, rencananya sambil kuliah di Salemba juga bakal sambil terus saya monitoring.

  1. May 4, 2013 at 11:19 pm

    Due to be able to styles and colors of UGG boots and UGG shoes, you can
    match your mood along with your clothes. Buy cheap UGG
    boots visit: When you are looking for purchasing for the reason that, world-wide-web retailers offer them with lower prices compared to those from
    local sellers. Delicately wipe it employing a damp material, will not likely brush it fiercely that
    features a brush, don’t melt away these shoes with boiled water, and don’t use washing detergent and alkaline cleaning fluid
    to completely clean it on the same time.

  1. No trackbacks yet.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: