From: Ash (nester2k@gmail.com)
Date: Thu Oct 04 2007 - 13:57:07 ART
Raul,
I don't think you can tell if somebody tried to peer with you unless one of
the following is true
a) you have logging enabled on the router which would show successful or
failed BGP connection attempt incase there was MD5 auth failures or Wrong
Peering AS related failures
b) You have ip accounting enabled on the egress interface to the ISP
tracking the sessions
c) You have an ACL thats logging connection attempts
d) You have netflow on the router tracking sessions
regards,
On 10/4/07, shiran guez <shiranp3@gmail.com> wrote:
>
> ok, may be you can clarify what do you consider as a proof?
>
> if you have configured a peer relation and you have connectivity to the
> other side and all looking ok on your side show all the outputs of the
> verification you did to the ISP and your configuration this should be
> sufficient proof.
>
> as the peering it is either you do or you don't have. nothing complex!
>
>
> On 10/4/07, raul raul <juvenn@hotmail.com> wrote:
> >
> >
> > yes this is the basic troubleshooting step that i have done early
> > but till now i still puzzle how to proved this peering issued.
> >
> >
> >
> > ------------------------------
> > Date: Thu, 4 Oct 2007 12:08:38 +0200
> > From: shiranp3@gmail.com
> > To: juvenn@hotmail.com; ccielab@groupstudy.com
> > Subject: Re: BGP Peering
> >
> > you can ping that address but is it directly connected to you? or you
> pass
> > some more hopes to get to him?
> > in addition to the first step that Ben suggested witch is more important
> > to see that port 179 is responding see that he is directly connected to
> you
> > or he could be neighboring from several hops away.
> >
> >
> > On 10/4/07, *raul raul* <juvenn@hotmail.com> wrote:
> >
> >
> > let assume all bgp have enable on my side ; no config error on my side
> ...
> > let focus ; how to prove to them they dint have any peering with my AS
> >
> > even if the use neigh x.x.x.x with password , when i do a debug i still
> > will see peering faill , tcp connection open fail etc
> > no i do a debug ip packet detail ....i dint see anything related to bgp
> > ... that strange ...they claim they have peering with my AS
> >
> >
> > > Date: Thu, 4 Oct 2007 10:08:03 +0200
> > > From: shiranp3@gmail.com
> > > To: juvenn@hotmail.com; ccielab@groupstudy.com
> > > Subject: Re: BGP Peering
> > >
> > > if you didn't see anything at all when you did sh ip bg sum then you
> > didn't
> > > enable BGP on your side.
> > > do sh ip protocols and see if you have BGP there, see if you set
> > neighbor
> > > relation with the ISP...
> > >
> > >
> > >
> > >
> > > On 10/4/07, raul raul <juvenn@hotmail.com > wrote:
> > > >
> > > >
> > > >
> > > > hey mate ;
> > > >
> > > > i dint see anything , but i am able to ping the remote ip add
> > > > i did show ip bgp sum ..i dint see anything at all ...i suspect they
> > dint
> > > > have peer to my AS , so how to prove ?
> > > >
> > > >
> > > > ------------------------------
> > > > Date: Thu, 4 Oct 2007 09:55:33 +0200
> > > > From: shiranp3@gmail.com
> > > > To: juvenn@hotmail.com
> > > > Subject: Re: BGP Peering
> > > >
> > > >
> > > > show ip bgp summary
> > > >
> > > > you will see that the peer should be Active or any other they a
> number
> > > >
> > > > Neighbor V AS MsgRcvd MsgSent TblVer InQ OutQ Up/Down State/PfxRcd
> > > >
> > > > 10.100.1.1 4 200 26 22 199 0 0 00:14:23 23
> > > >
> > > > 10.200.1.1 4 300 21 51 199 0 0 Never Active
> > > >
> > > > in this example you see that the peer to 10.100.1.1 is OK as you can
> > see you recived 23 updates but the status to 10.200.1.1
> > > > is Active and the up/down is showing you nevered formed a peearing
> > with that peer.
> > > >
> > > >
> > > >
> > > >
> > > >
> > > >
> > > > On 10/4/07, *juvenn@hotmail.com* < juvenn@hotmail.com> wrote:
> > > >
> > > > Hi All
> > > >
> > > > is it a way to prove to ISP that they dint peer with my AS ?
> > > > when i do a debug i dint see any thing like timeout etc ...nothing
> at
> > all
> > > >
> > > > Thanks
> > > >
> > > >
> > _______________________________________________________________________
> > > > Subscription information may be found at:
> > > > http://www.groupstudy.com/list/CCIELab.html
> > > >
> > > >
> > > >
> > > >
> > > > --
> > > > Shiran Guez
> > > > MCSE CCNP NCE1
> > > > http://cciep3.blogspot.com
> > > > http://www.linkedin.com/in/cciep3
> > > >
> > > >
> > > > ------------------------------
> > > > Express yourself instantly with MSN Messenger! MSN Messenger<
> http://clk.atdmt.com/AVE/go/onm00200471ave/direct/01/
> > >
> > > >
> > >
> > >
> > >
> > > --
> > > Shiran Guez
> > > MCSE CCNP NCE1
> > > http://cciep3.blogspot.com
> > > http://www.linkedin.com/in/cciep3
> > >
> > >
> _______________________________________________________________________
> > > Subscription information may be found at:
> > > http://www.groupstudy.com/list/CCIELab.html
> >
> >
> > ------------------------------
> > Express yourself instantly with MSN Messenger! MSN Messenger<
> http://clk.atdmt.com/AVE/go/onm00200471ave/direct/01/>
> >
> >
> >
> >
> > --
> > Shiran Guez
> > MCSE CCNP NCE1
> > http://cciep3.blogspot.com
> > http://www.linkedin.com/in/cciep3
> >
> >
> > ------------------------------
> > Express yourself instantly with MSN Messenger! MSN Messenger<
> http://clk.atdmt.com/AVE/go/onm00200471ave/direct/01/>
> >
>
>
>
> --
> Shiran Guez
> MCSE CCNP NCE1
> http://cciep3.blogspot.com
> http://www.linkedin.com/in/cciep3
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
This archive was generated by hypermail 2.1.4 : Fri Nov 16 2007 - 13:11:12 ART