Route Server Configuration
Listed below are the configuration details for connecting to IndyIX Route Servers, including BGP session parameters and filtering policies.
Route Server Details
Connect to either or both route servers for optimal redundancy and peering opportunities.
| Server | IPv4 Address | IPv6 Address | ASN | Location |
|---|---|---|---|---|
| Route Server 1 | 149.112.132.1 | 2001:505:143::fe:1 | 32801 | Lifeline Eastgate |
| Route Server 2 | 149.112.132.254 | 2001:505:143::fe:254 | 32801 | Lifeline Eastgate |
Looking Glass
IndyIX provides a public looking glass in IXP Manager to diagnose BGP sessions and view routes and their attributes.
BGP Session Configuration
Default BGP session parameters applied to all route server connections.
| Configuration Parameter | Value |
|---|---|
| Session Type | Passive BGP sessions are configured by default for all members |
| AS_PATH Handling | Route server ASN is not prepended to the AS_PATH of routes announced to clients |
| Community Pass-through | RFC 1997 well-known community pass-through is enabled |
BFD Session Configuration
Bidirectional Forwarding Detection (BFD) parameters for fast failure detection.
| BFD Parameter | Value |
|---|---|
| Session Type | Passive BFD sessions are configured by default for all members |
| Minimum Interval | 500ms |
| BFD Multiplier | 3 |
Filtering Policy
The route server implements comprehensive filtering to ensure routing security and stability. Routes that fail validation are tagged with specific communities and may be rejected.
NEXT_HOP Attribute Validation
The route server verifies that the NEXT_HOP attribute of routes received from a client matches one of the IP addresses assigned to the client for the respective VLAN. If the NEXT_HOP does not match, but is within the client's IP set, it is tagged with a community; otherwise, it is rejected.
AS_PATH Attribute Validation
| Validation Rule | Action | Community Tag |
|---|---|---|
| AS_PATH longer than 64 ASNs | Rejected | 32801:1101:5 |
| AS_PATH length of 0 | Rejected | 32801:1101:6 |
| Left-most ASN not client ASN | Rejected | 32801:1101:7 |
| Contains transit-free ASNs | Rejected | 32801:1101:14 |
IRRDBs Prefix/Origin ASN Enforcement
| Validation Type | Rule | Community Tag |
|---|---|---|
| Origin ASN Validity | Origin ASN not authorized by client's AS-SET | 32801:1101:10 |
| Prefix Validity | Prefix not part of client's AS-SET | 32801:1101:9 |
| RPKI Valid | Valid RPKI ROA - accepted | 32801:1000:1 |
| RPKI Invalid | Invalid RPKI ROA - rejected | 32801:1101:13 |
| RPKI Unknown | Unknown RPKI status - further processed | 32801:1000:2 |
Additional Filtering Rules
| Filter Type | Description | Community Tag |
|---|---|---|
| Bogon Prefixes | RFC 1918, RFC 5735, RFC 6598, RFC 3927, RFC 6890, RFC 5737, RFC 2544, RFC 1112 (private, reserved, multicast) | 32801:1101:3 |
| Prefix Length | Prefixes longer than /24 (e.g., /25 to /32) | 32801:1101:1 |