Re: [Bgp-autoconf] Discussion about BGP autoconf requirements in DC
Randy Bush <randy@psg.com> Sat, 08 February 2020 19:08 UTC
Return-Path: <randy@psg.com>
X-Original-To: bgp-autoconf@ietfa.amsl.com
Delivered-To: bgp-autoconf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C3AB412006B for <bgp-autoconf@ietfa.amsl.com>; Sat, 8 Feb 2020 11:08:43 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 23dkRl5wnjFS for <bgp-autoconf@ietfa.amsl.com>; Sat, 8 Feb 2020 11:08:42 -0800 (PST)
Received: from ran.psg.com (ran.psg.com [IPv6:2001:418:8006::18]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6849E120059 for <bgp-autoconf@ietf.org>; Sat, 8 Feb 2020 11:08:42 -0800 (PST)
Received: from localhost ([127.0.0.1] helo=ryuu.rg.net) by ran.psg.com with esmtp (Exim 4.90_1) (envelope-from <randy@psg.com>) id 1j0VT5-0000Zb-OE; Sat, 08 Feb 2020 19:08:39 +0000
Date: Sat, 08 Feb 2020 11:08:39 -0800
Message-ID: <m2mu9s3nig.wl-randy@psg.com>
From: Randy Bush <randy@psg.com>
To: Robert Raszuk <robert@raszuk.net>
Cc: bgp-autoconf@ietf.org
In-Reply-To: <CAOj+MMGeCS10NpXxaWj82urs8xV03oF8Lm6B_xxxkZduBMUcRA@mail.gmail.com>
References: <89bb996682564b99af57133a76b8dc6b@huawei.com> <m2a75u3tcx.wl-randy@psg.com> <CAOj+MMH7ERDbHt6jy1guLUg-ncqbVhv5GaYTd2Hb4a6R82sd7w@mail.gmail.com> <m27e0y3rfq.wl-randy@psg.com> <CAOj+MMGeCS10NpXxaWj82urs8xV03oF8Lm6B_xxxkZduBMUcRA@mail.gmail.com>
User-Agent: Wanderlust/2.15.9 (Almost Unreal) Emacs/26.3 Mule/6.0 (HANACHIRUSATO)
MIME-Version: 1.0 (generated by SEMI-EPG 1.14.7 - "Harue")
Content-Type: text/plain; charset="US-ASCII"
Archived-At: <https://mailarchive.ietf.org/arch/msg/bgp-autoconf/rbXItvF4ryvMYSAVcS56t_GQCPI>
Subject: Re: [Bgp-autoconf] Discussion about BGP autoconf requirements in DC
X-BeenThere: bgp-autoconf@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: BGP autoconfiguration design team discussion list <bgp-autoconf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bgp-autoconf>, <mailto:bgp-autoconf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bgp-autoconf/>
List-Post: <mailto:bgp-autoconf@ietf.org>
List-Help: <mailto:bgp-autoconf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bgp-autoconf>, <mailto:bgp-autoconf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 08 Feb 2020 19:08:44 -0000
mornin' robert > So as proven in working implementations (see Cumulus) bare min you > need to automagically operate is a peer's address. They take it from > link local and are done. SAFI is always 1. AFI depends on the IP as > you suggested. eBGP AS is learned from OPEN. > > So their basic interface level bgp cfg is this: > > - add bgp autonomous-system 65000 > - add bgp neighbor swp51 interface remote-as external > - add bgp neighbor swp52 interface remote-as external > > Anything else seems topping on the cake. > > There is also an interesting case Cumulus did for unnumbered loopback > peering ... well it is actually IPv4 loopback to lPv4 loopback but > using IPv6 link local as next hops. Works on p2p breaks few hops away. being a simple guy, i like simple! > I am not stating that we should or should not but do we have full > agreement that DC case must cover any other BGP peering except p2p and > lo2lo over p2p ? Is there a real requirement to discover your peers > few IP hops away ? how do we socialize this question? maybe we, as the dt, put out a short goals statement on idr and see if it flies? > As far as md5, A0, XYZ to validate if you are legitimate peer this > really is not an autodiscovery part. IMO it should be part of > preconfigured template. having a bit of infosec blood, i am a bit more concerned. but you are right, it's tough; either a leap of faith or a bleedin' infrastructure; see draft-ymbk-lsvr-l3dl-signing. randy
- [Bgp-autoconf] Discussion about BGP autoconf requ… Dongjie (Jimmy)
- Re: [Bgp-autoconf] Discussion about BGP autoconf … Randy Bush
- Re: [Bgp-autoconf] Discussion about BGP autoconf … Robert Raszuk
- Re: [Bgp-autoconf] Discussion about BGP autoconf … Randy Bush
- Re: [Bgp-autoconf] Discussion about BGP autoconf … Robert Raszuk
- Re: [Bgp-autoconf] Discussion about BGP autoconf … Randy Bush
- Re: [Bgp-autoconf] Discussion about BGP autoconf … Robert Raszuk
- Re: [Bgp-autoconf] Discussion about BGP autoconf … Zhuangshunwan
- Re: [Bgp-autoconf] Discussion about BGP autoconf … Dongjie (Jimmy)
- Re: [Bgp-autoconf] Discussion about BGP autoconf … Dongjie (Jimmy)
- Re: [Bgp-autoconf] Discussion about BGP autoconf … Jeffrey Haas