BGP Operations and Security
2015
The Border Gateway Protocol (BGP) is the protocol almost exclusively
used in the Internet to exchange routing information between network
domains. Due to this central nature, it is important to understand the
security measures that can and should be deployed to prevent
accidental or intentional routing disturbances. This document
describes measures to protect the BGP sessions itself such as Time to
Live (TTL), the TCP Authentication Option (TCP-AO), and control-plane
filtering. It also describes measures to better control the flow of
routing information, using prefix filtering and automation of prefix
filters, max-prefix filtering, Autonomous System (AS) path filtering,
route flap dampening, and BGP community scrubbing.
Keywords:
- Correction
- Source
- Cite
- Save
- Machine Reading By IdeaReader
1
References
11
Citations
NaN
KQI