BGP offloading (fixing legacy router BGP scalability issues)

Stefan Neufeind nanog at
Thu Apr 2 07:52:14 UTC 2015

Of course it's not something you should generalise about all people or
all traffic from certain countries. But it's obvious that there are some
countries which seem to care almost not at all about abuse or maybe even
are sources for planned hack-attempts. And at least some large ISPs
there seem to do nothing for their reputation or the reputation of their

Kind regards,

On 04/02/2015 09:40 AM, Paul S. wrote:
> Do you have data on '100% of the traffic' being bad?
> I happen to have a large Chinese clientbase, and this is not the case on
> my network.
> On 4/2/2015 午後 04:35, Colin Johnston wrote:
>> or ignore/block russia and north korea and china network blocks
>> takes away 5% of network ranges for memory headroom, especially the
>> large number of smaller china blocks.
>> Some may say this is harsh but is the network contacts refuse to
>> co-operate with abuse and 100% of the traffic is bad then why not
>> Colin
>>> On 2 Apr 2015, at 07:59, Mark Tinka <mark.tinka at> wrote:
>>> On 1/Apr/15 19:01, Frederik Kriewitz wrote:
>>>> We're wondering if anyone has experience with such a setup?
>>> Cisco have a feature called BGP-SD (BGP Selective Download).
>>> With BGP-SD, you can hold millions of entries in RAM, but decide what
>>> gets downloaded into the FIB. By doing this, you can still export a full
>>> BGP table to customers directly connected to your 6500, and only have a
>>> 0/0 + ::/0 (and some more customer routes) in the FIB to do forwarding
>>> to a bigger box.
>>> BGP-SD started shipping in IOS XE, but I now understand that the feature
>>> is on anything running IOS 15.
>>> This would be my recommendation.
>>> Mark.

More information about the NANOG mailing list