Route Server

About RS

The Route Server (RS) is a network service that simplifies peering between MSK-IX participants and allows them to reduce the number of individually administered peering sessions. The RS retransmits BGP announcements between the connected participants, thus peering with the RS means establishing peering relations with all the other MSK-IX participants connected to the RS.

Route Server service doesn't influence cross-network delays as the traffic between interfaces of participants is transferred directly.

Available on the common peering VLAN, the RS operates over IPv4 and IPv6 and supports 16bit and 32bit AS numbers.

RS configuration info

City Route Server AS Anonce object IP-addresses of BGP-speakers* Configuration update schedule**
(local time)
Moscow 8631 AS-MSKROUTESERVER 195.208.208.100/21
2001:7F8:20:101::208:100/64
15:30-16:30 (local time)
daily except Sat. and Sun.
195.208.215.100/21
2001:7F8:20:101::215:100/64
11:30-12:30 (local time)
daily except Sat. and Sun.
St.-Petersburg 43690 AS-SPBROUTESERVER 194.226.100.100/23
2001:7f8:20:201::100:100/64
17:00-18:00 (local time)
daily except Sat. and Sun.
194.226.102.100/23
2001:7f8:20:202::102:100/64
13:00-14:00 (local time)
daily except Sat. and Sun.
Rostov-on-Don 48216 AS-RNDROUTESERVER 193.232.140.100/24
2001:7f8:20:501::140:100/64
17:00-18:00 (local time)
daily except Sat. and Sun.
Stavropol 57056 AS-STWROUTESERVER 194.85.177.100/24
2001:7f8:20:901::177:100/64
17:00-18:00 (local time)
daily except Sat. and Sun.
Samara 47882 AS-SMRROUTESERVER 193.232.135.100/24
2001:7f8:20:601::135:100/64
17:00-18:00 (local time)
daily except Sat. and Sun.
193.232.135.200/24
2001:7f8:20:601::135:200/64
12:30-13:30 (local time)
daily except Sat. and Sun.
Kazan 50706 AS-KZNROUTESERVER 194.190.119.100/24
2001:7f8:20:801::119:100/64
17:00-18:00 (local time)
daily except Sat. and Sun.
Ekaterinburg 43213 AS-EKTROUTESERVER 194.85.107.100/24
2001:7f8:20:301::107:100/64
17:00-18:00 (local time)
daily except Sat. and Sun.
194.85.107.200/24
2001:7f8:20:301::107:200/64
12:30-13:30 (local time)
daily except Sat. and Sun.
Novosibirsk 42403 AS-NSKROUTESERVER 193.232.87.100/24
2001:7f8:20:401::87:100/64
17:00-18:00 (local time)
daily except Sat. and Sun.
193.232.87.200/24
2001:7f8:20:401::87:200/64
12:30-13:30 (local time)
daily except Sat. and Sun.
Vladivostok 48531 AS-VLVROUTESERVER 193.232.136.100/24
2001:7f8:20:701::136:100/64
17:00-18:00 (local time)
daily except Sat. and Sun.
Riga n/a

Notes:

* In cities with two addresses of BGP-speakers the RS hardware consists of two redundant servers located at different locations.

** Configuration updates include checks and updates of information in the IRR, updates or the routing policy filters, application of changes to the configuration of the RS. The procedure takes from several minutes to one hour.

How to start using RS?

All participants using the RS must comply with the Technological Requirements.

To start using the RS, a participant must perform the following steps to establish a BGP peering session with Route Server autonomous system (see configuration table upper):

  1. Add peering with Route Server AS to the routing policy description of your AS. The routing policy description must be maintained in RIPE, ARIN, or RADB Internet Routing Registry (IRR).
  2. Send application from authorized contact address to noc@ix.ru containing the ID of the organization, the AS number and the IP address of the border router (IPv4 and/or IPv6).
  3. Configure BGP-sessions with both instances of the RS.
  4. Disable first-as check in your BGP configuration by issuing no bgp enforce-first-as command.

Information about MSK-IX participants peering with the RS may be retrieved at Customer Portal MSK-IX.

Information about RS routing policy may be retrieved from the RIPE database (see https://www.ripe.net or whois -h whois.ripe.net as[Route Server AS]).

Use the RS Looking Glass to view and debug BGP announcements to the RS.

RS routing policy

The RS exchanges the routing information with connected participants via BGP4 protocol as described in RFC4271. By default, the RS announces the best of all routes received from its peers. The Next-Hop attribute contains the IP-address of the host from RS received the announcement. The AS_PATH attribute is passed unchanged. Thus, the traffic is exchanged between RS peers directly.

RS is processing the BGP routes on the following rules:

  1. RS does not accept routes of private networks, private AS and default route.
  2. RS does not accept routes for networks where the value "origin" of the object "route/route6" in the database IRR does not match with the starting AS number in the AS_PATH attribute.
  3. RS does not accept routes for networks for which the number of the last added AS in the AS_PATH attribute does not match the AS number of the participant established BGP session.
  4. RS accepts the route if it has corresponding "route/route6" object that exists in IRR DB. This route object's AS number (or AS-SET) must be described in BGP peer "aut-num" object export/mp-export policy for route server AS number. The route and IRR DB route object sizes must be equal except paragraph 5.
  5. RS accepts routes if they has corresponding aggregate route (route with smaller netmask) in IRR DB. These accepted routes are marked with BGP community (RSAS:65500). The aggregate route meets same requirements as in 4 paragraph.

BGP community attributes

RSAS means Route Server AS number in your city.

Route Server supports two groups of BGP community attributes: basic and extra. Basic communities are applied in the table order.

Basic
0:peer-as Block announcement of prefix to AS [peer-as]
RSAS:peer-as Announce prefix to AS [peer-as]
0:RSAS Block announcement of prefix to all participants
RSAS:RSAS Announce prefix to all participants
65535:666 Blackhole community (blocking of incoming traffic)
1:peer-as Prepend once when announcing this prefix to AS [peer-as]
2:peer-as Prepend twice when announcing this prefix to AS [peer-as]
3:peer-as Prepend three times when announcing this prefix to AS [peer-as]
11:City Geolocation specific BGP community to identify the city of interconnection
(inserted automatically at RS side)

Extra
RSAS:65500 Aggregate for this prefix exists in IRR DB5
RSAS:65281 Announce prefix with no-export attribute
RSAS:0 Set local-preference 0
RSAS:50 Set local-preference 50
RSAS:100 Set local-preference 100

Notes:
  1. In case of either no BGP community attribute is set or its format does not fit to the requirements above, prefix is accepted and announced throughout all participants.
  2. The Looking Glass displays prefixes announced to the RS and basic BGP communities. For extra BGP communities, only the result of their application is shown.
  3. When announcing via RS, all MSK-IX control communities are cleared, all the other community attributes are passed transparently.
  4. By default all announcements are assigned with local-preference 100.
  5. BGP community RSAS:65500 is used to mark prefixes which have aggregate route/route6 object (route with lower CIDR) and do not have corresponding route/route6 objects in IRR DB.
    • IPv4: The BGP community is used for prefixes less or equal than /24 CIDR. Prefixes with CIDR from /25 to /32 are not marked and these prefixes are allowed if corresponding route objects exist in IRR DB.
    • IPv6: The BGP community is used for prefixes less or equal than /48 CIDR. Prefixes with CIDR from /49 to /128 are not marked and these prefixes are allowed if corresponding route6 objects exist in IRR DB.
  6. Prefixes with set no-export attribute (65535:65281) are announced to all participants w/o modification.

BGP communities for 32-bit AS numbers

To use BGP communities with 32-bit AS numbers, set peer-as values as listed in the following table:

Member AS number Community City
Oriental Power Holdings LTD 132203 64791 Moscow
NetOne Rus 196695 64712 Moscow
CJSC «GNC-ALFA» 196709 64742 Moscow
ISP WEBA Networks 196750 64771 Moscow
Volkhov-Online Ltd. 196879 64737 Moscow
Azertelecom LLC 196925 64765 Moscow
JSC «R-Pharm» 197062 64711 Moscow
«DS-Connection» 197140 64704 Moscow
TeleMaks 197204 64761 Moscow
CJSC AVANTEL 197235 64773 Moscow
LLC EGS-Telecom 197708 64733 Moscow
SkyNet LTD 197826 64709 Moscow
SPB TV Telecom LLC 197888 64722 Moscow
LTD BeGet 198610 64751 Moscow
StreamLogic corp 199168 64776 Moscow
City Connect LLC 199361 64731 Moscow
«G-CORE RUS» LLC 199524 64769 Moscow
Setevye technologii LLC 199572 64741 Moscow
Limited Liability Company «Telecom-Birja» 199599 64734 Moscow
LLC «RelCom» 199624 64758 Moscow
LLC «Okey-Telecom» 199669 64787 Moscow
DATAPRO 200161 64767 Moscow
LLC «MICROIMPULS» 200172 64725 Moscow
WEBO Group, Ltd 200430 64798 Moscow
OOO Hosting Vashego Uspeha 200487 64756 Moscow
LIFESTREAM LTD 200976 64783 Moscow
COMUTO SA 202069 64777 Moscow
«MaximaTelecom» JSC 202173 64743 Moscow
«Yandex Cloud Technologies» LLC 202611 64768 Moscow
Sistemy svyazi, LLC 203196 64774 Moscow
IE Slepyshkov Maksim Aleksandrovich 203674 64759 Moscow
Global Web Group 203703 64794 Moscow
Game-Insight, Limited Liability Company 204315 64796 Moscow
Company Buster 204600 64789 Moscow
LLC MEGOGO 205216 64781 Moscow
RegionSvyaz, LLC 205460 64779 Moscow
BiZone LLC 207104 64792 Moscow
RUCOMTECH LLC 207133 64785 Moscow
«SUCCESS» Company Limited 196739 64717 St.-Petersburg
ISP WEBA Networks 196750 64763 St.-Petersburg
Volkhov-Online Ltd. 196879 64735 St.-Petersburg
SPB TV Telecom LLC 197888 64739 St.-Petersburg
LTD BeGet 198610 64750 St.-Petersburg
RetnNet 198947 64805 St.-Petersburg
«G-CORE RUS» LLC 199524 64782 St.-Petersburg
LLC «Okey-Telecom» 199669 64788 St.-Petersburg
OOO Hosting Vashego Uspeha 200487 64755 St.-Petersburg
IE Slepyshkov Maksim Aleksandrovich 203674 64760 St.-Petersburg
Global Web Group 203703 64793 St.-Petersburg
Company Buster 204600 64790 St.-Petersburg
CJSC AVANTEL 197235 64707 Samara
CDNvideo 204720 64803 Samara
TaxNet-Service 197169 64714 Kazan
SPB TV Telecom LLC 197888 64762 Ekaterinburg
«G-CORE RUS» LLC 199524 64786 Ekaterinburg
WEBO Group, Ltd 200430 64766 Ekaterinburg
Open technologies 198181 64719 Novosibirsk
WEBO Group, Ltd 200430 64754 Novosibirsk
CDNvideo 204720 64795 Novosibirsk
Cortel Limited liability company 205063 64797 Novosibirsk
Individual entrepreneur Filicheva Natalya Sergeyevna 196949 64752 Vladivostok
LLC ?Zelenaya tochka Vladivostok? 200953 64778 Vladivostok

Protection against DDoS-attacks by blackholing

MSK-IX offers the Blackholing mechanism of protection from DDoS-attacks to all participants using RS. The mechanism allows the participant at the time of the attack to completely filter out incoming traffic directed to the attacked network prefix.

Traffic filtering is performed by rewriting BGP next-hop IP address on unique Blackhole filter interface for the affected network prefix within BGP-announcements of the participant. RS automatically rewrite next-hop for the participant with set Blackhole community 65535:666. Once the participant removes the Blackhole community attribute from its BGP-announcements traffic flow to the affected prefix is automatically resumed.

Notes:
  1. Attribute 65535:666 for Blackhole Community is used according to RFC 7999.
  2. RS accepts networks with attribute 65535:666 and network size ranging from /25 through /32. It is recommended to use the /32 by default.
  3. It is recommended to accept RS announcements of networks with set attribute 65535:666 and size varying from /25 through /32 for all participants using RS.
  4. In accordance with the policy of regional Internet registries RIR (RIPE, RADB and so on), Blackhole community can be set up only for networks that have already been announced to the participant. RS accepts announcements from networks with set BGP community 65535:666 provided such networks have already been announced by the participant without attribute 65535:666.

The parameters of Blackhole filter interface

IPv4-address Moscow 195.208.208.6
St.-Petersburg 194.226.100.6
194.226.102.6
Rostov-on-Don 193.232.140.6
Stavropol 194.85.177.6
Samara 193.232.135.6
Kazan 194.190.119.6
Ekaterinburg 194.85.107.6
Novosibirsk 193.232.87.6
Vladivostok 193.232.136.6
Riga n/a
MAC-address 0066.0066.0066
BGP community 65535:666