What is MED (Multi-Exit Discriminator) and how can misconfiguration impact security or policy?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $24.99Unlock all

Master RIPE BGP Security with our comprehensive test. Understand the Border Gateway Protocol, explore multiple choice questions, and get ready for your exam with detailed hints and explanations.

Multiple Choice

What is MED (Multi-Exit Discriminator) and how can misconfiguration impact security or policy?

Explanation:
Multi-Exit Discriminator is an optional BGP path attribute that neighboring networks use to indicate a preferred ingress point into your network when you have multiple exit points. It acts as a traffic engineering hint for inbound traffic: a peer evaluating routes for a prefix may prefer the route with a lower MED value, steering traffic into your AS via that particular edge. It isn’t a security mechanism, and it isn’t used to authenticate routes or validate ROAs, nor does it relate to measuring or enforcing path length. Because MED values are hints and not guaranteed across all peers, their impact depends on how each neighbor treats them. If MEDs are misconfigured, two main issues can arise. First, they can reveal topology: the advertised values imply which exit points you intend to use, giving observers clues about your network layout. Second, they can shift traffic flows in ways that undermine policy or performance—sending inbound traffic through a less desirable or less secure path, or causing suboptimal routing if peers misinterpret or ignore the MED values. In short, MED guides inbound traffic engineering, and misconfiguring it can expose topology and affect security-aware routing decisions.

Multi-Exit Discriminator is an optional BGP path attribute that neighboring networks use to indicate a preferred ingress point into your network when you have multiple exit points. It acts as a traffic engineering hint for inbound traffic: a peer evaluating routes for a prefix may prefer the route with a lower MED value, steering traffic into your AS via that particular edge.

It isn’t a security mechanism, and it isn’t used to authenticate routes or validate ROAs, nor does it relate to measuring or enforcing path length. Because MED values are hints and not guaranteed across all peers, their impact depends on how each neighbor treats them.

If MEDs are misconfigured, two main issues can arise. First, they can reveal topology: the advertised values imply which exit points you intend to use, giving observers clues about your network layout. Second, they can shift traffic flows in ways that undermine policy or performance—sending inbound traffic through a less desirable or less secure path, or causing suboptimal routing if peers misinterpret or ignore the MED values. In short, MED guides inbound traffic engineering, and misconfiguring it can expose topology and affect security-aware routing decisions.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy