Sales: +41 58 018 00 00
My customer account
Panier
Votre panier est vide
Notre gamme de produits & services
Domains
Secure your brand with the market leader
Search for a domain name

Start your online presence here

 Renew your domain name

Keep your services running with renewal

 Transfer your domain to Boxis

Already own a domain? Move it to Boxis

 TLD pricing

Compare registration, transfer & renew

 Domain WHOIS lookup

Check domain ownership instantly
Web Hosting
Complete hosting plans for every web project
All Web Plans

Comprehensive hosting for every website

 WordPress Hosting

Optimized hosting engineered for WordPress

 AI Site Builder Hosting

Design and host with our integrated AI tools

 SSL Certificates

Boost trust with best-in-class SSL protection

 CDN

Accelerate pages and shield against attacks
Email Hosting
A sovereign email suite that fully protects data
All email plans

Enterprise-grade email with full protection

 All Exchange plans

Industry-standard Exchange hosted securely

 Microsoft 365 licenses

Centralized licensing for every Microsoft seat
Cloud SSD Servers
Raw dedicated power with full control at top value
Bare Metal Servers

Enterprise performance available in minutes

 Cloud VPS

Balanced resources with predictable pricing

 Network

Secure enterprise connectivity engineered for you

 Storage & backup

Business continuity through resilient backup

 Distribution & Licenses

Deploy your images on any chosen instance

 Security & Observability

Maintain visibility and control across workloads
Bare Metal Servers
Raw dedicated power with full control at top value
Bare Metal Servers

Deploy in minutes with enterprise performance

 Cloud VPS

Balance performance, flexibility and budget

 Network

Secure connectivity tailored to your needs

 Storage & backup

Safeguard data and ensure continuity

 Storage & backup solutions

Comprehensive storage and backup solutions

 Backup Solutions

Reliable backup solutions for your data

 Distribution & Licenses

Deploy images across any chosen instance

 Security & Observability

Keep environments visible and under control
Colocation & Housing
Secure colocation in Swiss data centers
Colocation overview

Secure housing in Swiss data centers

 Rack unit colocation

1U to 4U space with redundant power

 Private racks

Full racks with dedicated power & cooling

 Network services

Enterprise transit and cross-connects

 Hands & Eyes support

On-site remote hands when you need it
Enterprise Solutions
Custom infrastructure services
Connectivity
Faster connectivity to accelerate productivity
Check your service eligibility

See which solutions are available for you

 All Fibre Pro offers

Explore FTTH, FTTO and FTTE fibre offers

 Copper broadband offers

ADSL & VDSL access for every site

 Aggregate multiple links with OTB

Combine connections and boost throughput

 LTE / 4G / 5G connectivity

Resilient mobile broadband for business

 IP Transit / BGP

Deliver enterprise-grade IP routing performance
Telephony
Enterprise VoIP & PBX
Compare VoIP plans

Professional calling in the office or on the go

 Compare Cloud PABX offers

Scale SIP trunks to match your call volume

 Business numbers

Choose memorable numbers customers trust

 Send business SMS

Notify customers instantly with secure SMS

 Conference calling

Host secure audio conferences instantly

 Receive and send faxes

Send and receive faxes as easily as printing

 Comparez les offres PABX (SIP Trunk)

Compare PABX offers (SIP Trunk)

 OTP services

One-time password services
Enterprise Solutions
Comprehensive telecom solutions
Industry-specific solutions Managed support services Professional consultation
Solutions by industry
Industry-specific solutions
Healthcare Finance Retail Education
Support and services
Comprehensive support & professional services
Boxis support plans & SLAs

Tailored support tiers for every project

 Standard Support

Essential support for your services

 Business Support

Guidance dedicated to your business teams

 Enterprise Support

Advanced expertise for mission-critical workloads

 High Availability Services

Ensure critical services remain online 24/7

 Professional Services

End-to-end consulting and implementation
Request a callback
Schedule a consultation
Schedule a consultation

Speak with experts about your requirements

 Discuss technical design

Arrange a deep dive with a solution architect

 Request a tailored quote

Get pricing aligned with your infrastructure

 Explore partnership opportunities

Connect with our partner and alliance team
APIs and Developer Tools
APIs & developer tools
Frequently Asked Questions
Common questions & answers
Network & Infrastructure Status
Real-time status updates
Knowledge Base
In-depth tutorials, guides & best practices
About Us
Company history & mission
Our Team
Meet our expert team
Partners
Partner programs
Careers
Career opportunities
News
Latest news & updates
Contact
Contact our team
Sales: +41 22 520 20 20
Knowledge Base
  • English
  • Deutch
  • Français

What Is BGP (Border Gateway Protocol)? How It Works, Use Cases & Security

Array Array Array Array Array Array Array Array Array Array
10 fois

Learning Center / What is BGP?

What is BGP (Border Gateway Protocol)?

Border Gateway Protocol (BGP) is the routing protocol that keeps the global Internet connected. It coordinates how independent networks exchange routing information so that data can find the best path from source to destination.

BGP Internet routing Networking Border Gateway Protocol

On this page

Every time you visit a website, stream a video or use a cloud application, your data travels across multiple independent networks. BGP is the protocol that allows these networks to communicate with one another and decide which path traffic should take.

In this article, we explain what BGP is, how it works, the difference between iBGP and eBGP, and the main use cases and security considerations for modern infrastructures.

What is BGP?

Border Gateway Protocol (BGP) is a standardised routing protocol used to exchange reachability information between large networks called Autonomous Systems (AS) on the Internet.

BGP allows networks to:

  • Announce which IP prefixes (IP address ranges) they can reach
  • Learn paths to distant networks through their neighbours
  • Apply routing policies to choose the preferred path

Because nearly all interconnection between ISPs, cloud providers and large enterprises relies on BGP, it is often described as the “routing protocol of the Internet”.

Why is BGP important for the Internet?

BGP is essential because it transforms thousands of independent networks into a single, globally reachable Internet.

Global reachability

Each Autonomous System announces the IP prefixes it can deliver traffic to. BGP propagates these announcements across the Internet so that routers can build a global routing table and deliver packets to almost any destination.

Network stability

When a link fails or a network goes offline, BGP updates the routes and converges towards an alternative path. This dynamic behaviour helps to maintain service availability and avoid large-scale outages.

Traffic engineering

BGP is a policy-based protocol. Network operators can adjust preferences to:

  • Use low-latency paths for critical applications
  • Avoid expensive or congested links
  • Distribute traffic across multiple providers

Core BGP concepts

Autonomous Systems (AS) and AS numbers

An Autonomous System (AS) is a group of IP networks and routers under a single administrative control, such as an ISP, a cloud provider or a large enterprise. Each AS is identified by an Autonomous System Number (ASN), assigned by a regional Internet registry.

IP prefixes and routes

A BGP route describes how to reach a specific IP prefix, such as 203.0.113.0/24. Each route contains:

  • The destination IP prefix
  • The AS path (the sequence of ASNs the route has traversed)
  • Additional attributes used in path selection

Key BGP attributes

When multiple routes exist for the same prefix, BGP uses attributes to select the best path. Common attributes include:

  • AS_PATH – the list of ASNs a route has passed through
  • LOCAL_PREF – local preference value inside an AS
  • MED (Multi-Exit Discriminator) – suggests a preferred entry point
  • Communities – tags used to apply flexible policy rules

How does BGP work?

BGP peers (also called neighbours) are configured manually between routers. They establish a TCP session, usually on port 179, and then exchange routing information.

The basic steps are:

  1. Session establishment – two routers open a TCP connection and exchange BGP OPEN messages.
  2. Initial table exchange – each router sends the routes it knows to its neighbour.
  3. Path selection – the router compares all available routes for each prefix and selects a single best path, based on attributes and local policies.
  4. Routing table update – the best path is installed in the forwarding table so traffic can be sent to the chosen next hop.
  5. Incremental updates – after the initial exchange, only changes (new routes, modified attributes, withdrawals) are sent.

Types of BGP: iBGP vs eBGP

External BGP (eBGP)

eBGP is used between different Autonomous Systems. Typical examples include:

  • Between an ISP and a customer network
  • Between two ISPs at an Internet Exchange Point
  • Between a cloud provider and a transit provider

Internal BGP (iBGP)

iBGP is used inside a single AS. It distributes routes learned via eBGP (or from other internal routers) throughout the AS so all edge routers have a consistent view of external destinations.

Large networks often combine iBGP with an interior gateway protocol (such as OSPF or IS-IS) that provides internal reachability information.

Benefits of using BGP

  • Scalability: designed to handle hundreds of thousands of routes.
  • Policy control: fine-grained control over inbound and outbound traffic.
  • Redundancy: support for multi-homing with multiple ISPs.
  • Flexibility: easy integration with VPNs, data centres and cloud networks.

BGP challenges and security risks

BGP was designed in a more trusted phase of the Internet and has limited built-in security. Misconfigurations or malicious announcements can have a global impact.

BGP hijacking

BGP hijacking occurs when a network improperly announces IP prefixes it does not own. Traffic can then be redirected, intercepted or dropped.

Route leaks

A route leak happens when routes learned from one peer or provider are mistakenly advertised to another, violating routing policy and potentially causing sub-optimal paths or outages.

Best practices to secure BGP

  • Apply strict route filters per neighbour
  • Use RPKI and route origin validation where possible
  • Set max-prefix limits to protect against route table floods
  • Monitor BGP announcements and paths for anomalies

Common BGP use cases

Multi-homing with multiple ISPs

Organisations that require high availability often connect to two or more ISPs and use BGP to maintain Internet connectivity even if one provider fails.

Traffic engineering and load balancing

With techniques such as AS path prepending, MEDs and BGP communities, operators can steer traffic over preferred links and balance loads across different connections.

Data centre and cloud interconnection

Cloud providers, content delivery networks and data centre operators rely on BGP to connect multiple sites, peer with other networks and implement anycast routing for distributed services.

BGP and modern cloud networking

In cloud and hosting environments, BGP is commonly used at the network edge to connect data centres to the Internet, to build private interconnects and to secure redundant VPN or SD-WAN topologies.

Understanding how BGP policies influence routing decisions helps you optimise latency, availability and resilience for your applications.

FAQ: BGP in brief

What is BGP in simple terms?

BGP is like a global navigation system for the Internet. It tells large networks which paths to use so that data can travel from one network to another.

Is BGP the same as OSPF?

No. OSPF is an interior gateway protocol used inside a single organisation’s network. BGP is an exterior gateway protocol used between different networks (ISPs, cloud providers, enterprises) on the global Internet.

Do small businesses need BGP?

Most small businesses that use a single ISP and private addressing do not need BGP. BGP becomes relevant when you have your own public IP ranges, an ASN or multiple upstream providers.

Is BGP secure?

BGP itself does not offer strong security features. It should be combined with authentication on BGP sessions, strict filtering, RPKI and continuous monitoring to reduce the risk of hijacks and route leaks.

Related topics

Need BGP-ready connectivity?

Contact our team to discuss IP transit, colocation and cloud connectivity options tailored to your infrastructure.

Contact sales
Was this article helpful?
Dislike 0
Like 1
Views: 10