Route filtering

From Wikipedia, the free encyclopedia

This article or section is in need of attention from an expert on the subject.

WikiProject Computer networking or the Computer networking Portal may be able to help recruit one.

If a more appropriate WikiProject or portal exists, please adjust this template accordingly.

In the context of network routing, route filtering is the concept, especially used on the global Internet with BGP, of filtering (removing from your routing table) routes for certain prefixes (destination address ranges). Route filtering can apply both to routes learned from other routers, and routes announced to other routers.

Route filtering is generally carried out by ISPs for security reasons; for example, upstream ISPs generally only permit each of their transit customers to announce a limited range of IP addresses, to prevent route hijacking attacks from within their customer networks. They are also likely to filter the routes they accept from other interconnected networks, to avoid their customers being the victims of route hijacking attacks from other networks.

Route filtering is also done because some routers have an insufficient amount of RAM in which to store the routing tables; as the global BGP table has grown, older routers (or any router running out of RAM) must filter routes in order to keep from running out of RAM (and crashing). This is usually done by removing of a route for any prefix more specific than a certain length (anything more specific than a /24, for example). This is not an ideal practice, as it may result in loss of connectivity if less-specific covering routes are not available for dropped prefixes, and even if connectivity is maintained, may result in sub-optimal routes by frustrating the traffic engineering intentions of the announcing networks.