SEED Project

BGP Exploration and Attack Lab

Overview

Border Gateway Protocol (BGP) is the standard exterior gateway protocol designed to exchange routing and reachability information among autonomous systems (AS) on the Internet. It is the "glue" of the Internet, and is an essential piece of the Internet infrastructure. It is also a primary target of attacks, because if attackers can compromise BGP, they can cut off the Internet.

The goal of this lab is to help students understand how BGP "glues" the Internet together, and how the Internet is actually connected. This lab is based on the Internet Emulator that we developed. Students will conduct a series of experiments on the Emulator to see how BGP works. Students will also configure a stub and a transit autonomous system. Finally, students will launch the network prefix hijacking attack on one of the autonomous systems.

Tasks (PDF)

VM version: This lab has been tested on our SEED Ubuntu-20.04 VM
Lab setup files
- Labsetup.zip
Manual:: Docker manual
Book Chapter:: Border Gateway Protocol (BGP) and Attacks

Time (Suggested)

Supervised (closely-guided lab session): 2-3 hours
Unsupervised (take-home project): 1 week

SEED Videos

YouTube: BGP Attacks using SEED Emulator
Udemy: Internet Security: A Hands-on Approach (§ 10)
Identical videos are available on NetEase (for Mainland China)

SEED Books (English)

Internet Security: A Hands-on Approach, 3rd edition (§ 12)

Feedback and Help

	Please give us your feedback on this lab using this feedback form.
	The SEED Labs project is open source. If you are interested in contributing to this project, please check out our Github page: https://github.com/seed-labs/seed-labs.