Routing

Hi guys,

I  would like to hear from community  what they think using EBGP as WAN   IGP , replacing OSPF.

Currently , we have 50 sites, connected over OSPF WAN.  Our new architecture wants to replace OSPF with EBGP .

What are some reasons you guys would do or would not do it?

Much appreciated!!

------------------------------
Be kind!!
------------------------------

I worked at a company that just finished making this transition to EBGP as the primary routing for the WAN back in 2012.  The primary factor driving the change was the advantage of detailed control at scale.  With EBGP each site having their own AS and a flexible import and export policy made security of the sites to the dual data centers much smaller in scope.  We could use simple unreachability to preclude intrusions, escalation and penetration deeper into the sites and infrastructure without the need for even more firewalls, monitoring and other intrusion prevention.

The setup also made mergers of new sites from acquisitions a simpler process.  The initial routing interface to the new sites provided a simple point to apply temporary NAT during migration processes and again a simpler security choke point. 

------------------------------
Steve Puluka BSEET - Juniper Ambassador
IP Architect - DQE Communications Pittsburgh, PA (Metro Ethernet & ISP - Retired)
http://puluka.com/home
------------------------------

Original Message:
Sent: 03-01-2025 23:53
From: LEEBAHI
Subject: EBGP as replacement for WAN IGP say OSPF

Hi guys,

I  would like to hear from community  what they think using EBGP as WAN   IGP , replacing OSPF.

Currently , we have 50 sites, connected over OSPF WAN.  Our new architecture wants to replace OSPF with EBGP .

What are some reasons you guys would do or would not do it?

Much appreciated!!

------------------------------
Be kind!!
------------------------------

Thanks Steve

------------------------------
Be kind!!
------------------------------

Original Message:
Sent: 03-02-2025 10:27
From: spuluka
Subject: EBGP as replacement for WAN IGP say OSPF

I worked at a company that just finished making this transition to EBGP as the primary routing for the WAN back in 2012.  The primary factor driving the change was the advantage of detailed control at scale.  With EBGP each site having their own AS and a flexible import and export policy made security of the sites to the dual data centers much smaller in scope.  We could use simple unreachability to preclude intrusions, escalation and penetration deeper into the sites and infrastructure without the need for even more firewalls, monitoring and other intrusion prevention.

The setup also made mergers of new sites from acquisitions a simpler process.  The initial routing interface to the new sites provided a simple point to apply temporary NAT during migration processes and again a simpler security choke point. 

------------------------------
Steve Puluka BSEET - Juniper Ambassador
IP Architect - DQE Communications Pittsburgh, PA (Metro Ethernet & ISP - Retired)
http://puluka.com/home

Original Message:
Sent: 03-01-2025 23:53
From: LEEBAHI
Subject: EBGP as replacement for WAN IGP say OSPF

Hi guys,

I  would like to hear from community  what they think using EBGP as WAN   IGP , replacing OSPF.

Currently , we have 50 sites, connected over OSPF WAN.  Our new architecture wants to replace OSPF with EBGP .

What are some reasons you guys would do or would not do it?

Much appreciated!!

------------------------------
Be kind!!
------------------------------

Generally, It's good to used BGP to replace OSPF. And I will recommend to use BGP.

You will have some advantages:

• Unicast peering, cause OSPF uses multicast, it has some certain risks and bandwidth consumption (not much but it's still there compare with BGP).
• Flexible routing policy, traffic path control is managed usefully by multiple BGP's attributes.
• Scalability, BGP provides easier ways and network parameters to scale out your sites (It was born for scalability).

You should care about:

• More flexibilty, more scalability, lead to more efforts, knowledge for management and monitorings.
• Your network device 's performance, one more protocol is add to your router (especially BGP),  your network devices's workload will be increased. If it's obsolated (over 5 years). In your case, guess no impacts happen.
• Slow convergence (compare with OSPF). Running BGP may cause a bit slower routing convergence than OSPF (but not much with recently router's performace, you won't realize that unless doing some tests with exact measurement).

------------------------------
TUAN PHAM
------------------------------

Original Message:
Sent: 03-01-2025 23:53
From: LEEBAHI
Subject: EBGP as replacement for WAN IGP say OSPF

Hi guys,

I  would like to hear from community  what they think using EBGP as WAN   IGP , replacing OSPF.

Currently , we have 50 sites, connected over OSPF WAN.  Our new architecture wants to replace OSPF with EBGP .

What are some reasons you guys would do or would not do it?

Much appreciated!!

------------------------------
Be kind!!
------------------------------