摘要： 在BGP/MPLS VPN 中，用MP-BGP 交换VPN 路由信息。由于配置错误，AS 可能有意地通告属于其它AS 地址空间的地址前缀或输出违反自己路由策略的路由。检查MP-BGP 配置错误的方法要求每个ASBR 或PE 路由器分别为它所信任的AS 维持一个地址前缀集和AS 关系集。仿真表明通过AS 关系和地址前缀集结合使用的算法，能有效地检查起源配置错误和输出配置错误。

关键词: 边界网关协议；MP-BGP；BGP/MPLS VPN；配置错误

Abstract: In BGP/MPLS VPN, MP-BGP is used to exchange VPN routing information. An AS may accidentally advertise a prefix belonging to someone else’s address space and may also export a route that violates its own routing policy due to misconfiguration. This paper presents an approach which can detect MP-BGP configuration errors based on prefixes sets of neighboring ASes and the AS relationships. This approach requires that every ASBR or PE router respectively remains a prefixes set for each trusted AS and AS relationships constructed according to bilateral economical agreements. Simulation shows that the solution can effectively detect original misconfigurations and export misconfigurations by using the combination of AS relationships and prefixes sets

Key words: BGP; Multiprotocol extensions for border gateway protocol(MP-BGP); BGP/MPLS VPN; Misconfiguration