BMP YANG ModuleNTT164-168, Carrer de NumanciaBarcelona08029Spaincamilo@ntt.netNTTSiriusdreef 70-72HoofddorpWT2132Netherlandspaolo@ntt.netSwisscomBinzring 17Zurich 8045Switzerlandthomas.graf@swisscom.comHuaweibenoit.claise@huawei.com
OPS
GROW
This document proposes a YANG module for BMP (BGP Monitoring Protocol) configuration and monitoring.
A complementary RPC triggers a refresh of the session of a BMP station.
The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL
NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", "NOT RECOMMENDED",
"MAY", and "OPTIONAL" in this document are to be interpreted as
described in BCP 14
when, and only when, they appear in all capitals, as shown here.
Routing Information Bases, peers, monitoring stations are defined in .
This document specifies a YANG module for configuring and
monitoring the BGP Monitoring Protocol (BMP) . The model
provides parameters for defining BMP monitoring stations, the
selection of the BGP Routing Information Bases (RIBs), provides
operational metrics and enables to reset BMP monitoring sessions.
The BMP YANG model provides the methods for managing BMP monitoring stations. It includes:
Connectivity parameters, including station IP address and destination port.
BMP session parameters, such as defining the BMP initiation message
or the interval for statistics messages.
BGP Data sources. The model requires the explicit configuration
of the Network instance, RIBs and address family to send to each monitoring
station. For Adj-RIB-in and Adj-RIB-out, both post and pre policy,
the model also requires to reference the peer.
In those RIBs, the value "all_peers" can be used if the
operators desire to receive data of all peers.
Per BMP station status and statistics, such as established status, number
of route-monitoring messages, number of route-mirroring messages, number
of peer-down and peer-up messages, number of initiation messages.
BMP session reset RPC action.
The following tree diagram provides an overview of the ietf-bmp.yang
data model.
<CODE BEGINS> file "ietf-bmp@2022-01-27.yang"<CODE ENDS>
The YANG module specified in this document defines a schema for data
that is designed to be accessed via network management protocols such
as NETCONF or RESTCONF . The lowest NETCONF layer is the secure transport
layer, and the mandatory-to-implement secure transport is Secure
Shell (SSH) . The lowest RESTCONF layer is
HTTPS, and the mandatory-to-implement secure transport is TLS . The NETCONF Access Control Model (NACM) provides the means to restrict access for
NETCONF or RESTCONF users to a preconfigured subset of all
available NETCONF or RESTCONF protocol operations and content.
BGP data is sensible for security considerations. The model described
in this document could be used to send BGP information to malicious
BMP stations. Write access to this model should therefore be
properly protected.
The session-reset action can demand considerable amount of resources
from network elements. It should thus be protected from illegal access.
This document registers a URIs in the IETF XML
registry . Following the format in
, the following registrations are
requested:
This document registers the following YANG module in the "
YANG Module Names" registry
registry :Shall we leverage other IETF models to specify TCP parameters?The security considerations section will have to be aligned with
https://trac.ietf.org/trac/ops/wiki/yang-security-guidelinesThis section shows an example of a BMP configuration using the model.
In the example, the device will send information from the global
network instance, the adj-rib-out-pre RIB, IPv4 AFI, and only from
peers that are external.
The authors would like to thank Pierre Vander Vorst and Tom Petch for their review and feedback.