OpenBGPd experiences sought and configuration comments.

[David <davidu_(_at_)_gmail_(_dot_)_com>]

Hi Misc'ers,

I am looking for some feedback and/or tips along with some experiences
people have had with openbgpd.  I'll be happy to summarize to the list
in a week or so if desired.

Our current network is singly homed with a multi-homed ISP.  We have
grown considerably since we first started and have now nearly finished
going through the steps to get our own racks, ASN and a couple transit
providers.  We will be announcing PA space assigned from one of our
transit providers.

The network we are putting together is 90%+ used for webserving.  We
will not be running any IGP nor will we ever have any downstreams.  We
are also unlikely to ever have any peering.

The configuration I am planning on is one of these two options:
     1) Two openbgpd routers each connecting to at least one upstream
via eBGP and connected to each other over an iBGP session.  Each
router would then connect into our switching fabric (almost
exclusively layer 2 via cisco 2924 switches)
OR
     2) One openbgpd router connecting to all upstreams and feeding
into our switch fabric with a failover router configured with CARP
and/or pfsync...

My main question is, with option 2, has anyone done this using CARP as
a BGP failover?   I would assume this might involve some pfsync
hackery too because I am not sure how the kernel routing tables and
openbgpd RIB/FIB tables would sync in the event of a router
failure....has anyone explored this?  If so, why might it be better
than the iBGP setup mentioned in option 1.

Lastly, are there any people using option number 1 above in
production?  That is most likely the option I will go with as I would
like to eliminate the SPOF in having one router.  Are there any other
design configurations I should consider or caveats?  (Note, aside from
this fixed bug: http://thread.gmane.org/gmane.os.openbsd.misc/69601)

Thanks in advance,
david