
When deploying [BGP](/bgp) within an AS, a prerequisite of its implementation is that [full mesh peering](/bgp-ibgp-full-mesh-peering) be configured between all [iBGP](/bgp-definition-of-internal-bgp-ibgp) routers.  However, this requirement doesn't scale well because the number of peerings increases exponentially.  

Specifically, for every N iBGP routers, you must have N(N-1)/2 peerings.  If we have 10 iBGP routers in an AS, we will require 10*(10-1)/2 = 45 peerings.

To resolve this problem, we can use one of two features of BGP:

* [BGP Route Reflector](/bgp-route-reflector)
* [BGP Confederations](/bgp-confederations)

Both route reflectors (RRs) and confederations are used to manage large ASes where a conventional iBGP full-mesh would be too cumbersome to deploy.  When should we use one or the other? Here are some guidelines that will help to make such a decision:

* RRs are generally preferred in networks where **simplicity of configuration and maintenance are paramount**. The primary use case for RRs is within a single, large AS. One drawback of using RRs is the fact that you have a single point of failure (the RR) but that can be remedied by applying a redundant RR.
* Confederations, on the other hand, are typically used in complex network environments where the organization has a need for extensive control over routing policy and wants to manage it in a hierarchical way. They are particularly useful for large, complex networks divided into many different segments or subnetworks. Essentially we are saying that confederations scale better than RRs simply because you are breaking your AS into smaller ASes.
* Additionally, confederations give you a higher degree of control over routing policies between different parts of your AS, assuming your AS can be organized in such a way that it is effectively divided into sub-ASes with a clear hierarchy. Of course, as you mentioned, there is a tradeoff. Confederations are more complex, but they give you more control.

So in a nutshell, while both techniques can be used to simplify iBGP configurations, RRs are typically easier to implement and manage, making them suitable for simpler networks. Confederations, while more complex, offer more fine-grained control and flexibility, making them more suitable for larger or more complex networks.

Tags:

https://forum.networklessons.com/t/bgp-confederation-explained/1130/74?u=lagapides

https://networklessons.com/bgp/bgp-confederation-explained

https://networklessons.com/bgp/bgp-route-reflector

BGP - RRs vs confederations

ASA prerequisites for high availability

ASA redirect IP SLA messages to log buffer

ASA redundant interface

ASA security levels

ASA syslog logging in multiple context mode

ASA to Firepower migration

ASA troubleshooting IPSec

ASA tunnel-group

ASA understanding version numbers

ASA what triggers an active-standby failover

ASA won't respond to pings from different subnet

Anycast

Automation - Ansible connection plugins

BFD - Control Plane Independent (CPI) bit

BFD - intervals and timers

BFD - slow-timers

BFD - with multiple routing protocols

BFD echo mode and operation details

BFD how an administrative change differs from a failure

BFD one-arm echo

BGP - 4-byte ASN Backward Compatibility

BGP - AFI and SAFI

BGP - AS_Path filtering use cases

BGP - AS_SET and AS_CONFED_SET are deprecated

BGP - Accumulated IGP metric

BGP - Atomic Aggregate Attribute

BGP - Autonomous System (AS)

BGP - Autonomous System Number

BGP - BGP Algorithm within confederations

BGP - Discontiguous Autonomous Systems

BGP - ECMP for specific prefixes

BGP - End-of-RIB marker

BGP - Equal Cost Multipath AS_Path Attribute

BGP - FSM - Active state

BGP - Finite State Machine (FSM)

BGP - Flowspec

BGP - Graceful Restart Mechanism

BGP - Handling Multiple Communities on a Single Route

BGP - IGP-BGP redistribution best practices

BGP - Labeled Unicast

BGP - Large BGP communities

BGP - Leaking more specific routes

BGP - Loop Prevention

BGP - MED vs AS Prepending

BGP - Multipath Attribute Prerequisites

BGP - Network Layer Reachability Information (NLRI)

BGP - Next Hop Address Tracking vs Route Dampening

BGP - Outbound Route Filtering

BGP - Synchronization Rule

BGP - TCP Peering Session Process

BGP - The BGP Table

BGP - The BGP table vs the Routing table

BGP - Why is MED non-transitive

BGP - aggregate-address command in action

BGP - aggregate-address default route

BGP - aggregate-address with a single subnet

BGP - auto-summary best practices

BGP - auto-summary feature

BGP - definition of External BGP (eBGP)

BGP - definition of Internal BGP (iBGP)

BGP - eBGP loop prevention mechanism same AS number

BGP - eBGP next hop optimization

BGP - eBGP peerings

BGP - eBGP third party next hop

BGP - iBGP full-mesh peering

BGP - iBGP split horizon rule

BGP - multicast routing

BGP - multihop vs disable-connected-check

BGP - multipath in a DMVPN environment

BGP - multiprotocol BGP

BGP - network command with subnet mask

BGP - network vs redistribute commands

BGP - next-hop-self vs update source

BGP - oldest path attribute

BGP - preventing transit traffic

BGP - redistributing iBGP routes into an IGP

BGP - remove private AS

BGP - route maps and using the continue clause

BGP - routing table entry without exit interface

BGP - transitive and non-transitive attributes

BGP - update-source command

BGP - using peer-groups with multiple outbound policies

BGP - using private ASNs with private IPs

BGP - using public IPs with private ASes

BGP - why is eBGP preferred over iBGP

BGP 4-Byte AS Number - Asdot notation

BGP 4-Byte AS Number - Asdot plus notation

BGP 4-Byte AS Number - Asplain notation

BGP AS Override feature

BGP AS number notation

BGP AS_PATH when using aggregate-address

BGP AS_TRANS

BGP Advertising a prefix

BGP Advertising a route using the Null0 exit interface

BGP Allow-AS in

BGP Asymmetric routing when using ASA with AWS

BGP Attributes - route map direction

BGP Authentication