BGP Timer Policy
Location in GUI: Tenants » XXX » Policies » Protocol » BGP » BGP Timers
Diagram
Section titled “Diagram”
Classes
Section titled “Classes”policies (apic.tenants)
Section titled “policies (apic.tenants)”| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| bgp_timer_policies | List | [bgp_timer_policies] | No |
bgp_timer_policies (apic.tenants.policies)
Section titled “bgp_timer_policies (apic.tenants.policies)”| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| name | String | Regex: ^[a-zA-Z0-9_.:-]{1,64}$ | Yes | |
| description | String | Regex: ^[a-zA-Z0-9\\!#$%()*,-./:;@ _{|}~?&+]{1,128}$ | No | |
| keepalive_interval | Integer | min: 0, max: 3600 | No | 60 |
| hold_interval | Any | Integer[min: 3, max: 3600] or Integer | No | 180 |
| stale_interval | Any | Integer[min: 1, max: 3600] or Choice[default] | No | default |
| graceful_restart_helper | Boolean | true, false | No | true |
| maximum_as_limit | Integer | min: 0, max: 2000 | No | 0 |
Examples
Section titled “Examples”Example-1: The following example defines the BGP-TIMER1 BGP Timer Policy in the ABC tenant. In Cisco ACI, these policies are typically attached to a VRF or L3Out to govern external routing connectivity.
name: This is a unique identifier for the BGP timer policy within the tenant. A unique and descriptive name helps in identifying and managing different BGP timer policies across various tenants or L3Outs, improving network organization and troubleshooting.description: A user-defined string for annotating the policy, providing context or notes for administrators. Including a meaningful description is a best practice for documentation and clarity, especially in complex environments.keepalive_interval: This parameter specifies the interval, in seconds, at which BGP keepalive messages are sent to a neighbor. Keepalive messages maintain the BGP session and ensure the neighbor is still reachable. In this example, it’s set to 30 seconds. While a Cisco default is 60 seconds.hold_interval: This parameter defines the maximum time, in seconds, that a BGP router will wait for a keepalive or update message from a neighbor before declaring the neighbor down and tearing down the BGP session. Here, it’s set to 300 seconds. This directly impacts BGP convergence speed; while a Cisco default is 180 seconds.stale_interval: This timer, in seconds, determines the maximum time BGP will retain “stale” routes from a restarting BGP peer during a graceful restart event. This allows traffic forwarding to continue using the old routes while the peer recovers. It is configured as 200 seconds in this example. This parameter is crucial for maintaining forwarding continuity during peer restarts; the ACI default is typically 300 seconds.graceful_restart_helper: This boolean parameter (trueorfalse) dictates whether the local BGP router acts as a graceful restart helper for its BGP peers. When enabled, it helps maintain routing stability by not immediately removing routes from a peer that is undergoing a restart. The example sets this tofalse. Enabling this is a strong best practice for enhancing network resilience during peer reloads.maximum_as_limit: This integer parameter sets a limit on the number of Autonomous Systems (ASes) allowed in the AS-Path attribute of a BGP route. Routes exceeding this limit are typically discarded, serving as a protective measure against routing loops or misconfigurations. The example sets this to 2. Setting this value greater than 0 is a recommended security and stability control, as it helps protect against routing loops or malicious activity.
Example-2: Full example
apic: tenants: - name: ABC policies: bgp_timer_policies: - name: BGP-TIMER1 description: BGP_POLICY keepalive_interval: 30 hold_interval: 300 stale_interval: 200 graceful_restart_helper: false maximum_as_limit: 2