IETF Logo Mail Archive

Re: [GROW] ISC Response to draft-ietf-grow-unique-origin-as

Christopher Morrow <christopher.morrow@gmail.com> Thu, 29 September 2011 19:46 UTC

Return-Path: <christopher.morrow@gmail.com>
X-Original-To: grow@ietfa.amsl.com
Delivered-To: grow@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 471881F0C53 for <grow@ietfa.amsl.com>; Thu, 29 Sep 2011 12:46:27 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -103.468
X-Spam-Level:
X-Spam-Status: No, score=-103.468 tagged_above=-999 required=5 tests=[AWL=0.131, BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mjUjO5zm9At5 for <grow@ietfa.amsl.com>; Thu, 29 Sep 2011 12:46:26 -0700 (PDT)
Received: from mail-iy0-f172.google.com (mail-iy0-f172.google.com [209.85.210.172]) by ietfa.amsl.com (Postfix) with ESMTP id A8B961F0C4E for <grow@ietf.org>; Thu, 29 Sep 2011 12:46:26 -0700 (PDT)
Received: by iaby26 with SMTP id y26so1285394iab.31 for <grow@ietf.org>; Thu, 29 Sep 2011 12:49:18 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; bh=rhgI1JD/eIcL3WqE7xuHpY4T7IMMnBfSI0k1fcu6Rho=; b=PYlqVN5YBCDoz8RgA97U9tG3712wgjLW/wUCLp7tb9Ie/d1OjRRzibnA+OmlnU8M/Y IzER/9aOaelkFImjd3SBJ6XdJI/sBxh/3A6KQOV8FRr41J+VPxcIrSrrv4tUISe1wGJk zW2lYz0XvKxUMdgpOVQUK7lEd4U8fjkkz6TrI=
MIME-Version: 1.0
Received: by 10.231.24.224 with SMTP id w32mr8564434ibb.75.1317325758346; Thu, 29 Sep 2011 12:49:18 -0700 (PDT)
Received: by 10.231.59.206 with HTTP; Thu, 29 Sep 2011 12:49:18 -0700 (PDT)
In-Reply-To: <20110929190706.GA84607@bikeshed.isc.org>
References: <20110928193323.GA57548@bikeshed.isc.org> <CC4CB415-C615-4379-842F-2177B333D380@tcb.net> <20110928235156.GA65454@bikeshed.isc.org> <352BFFD6-B2C3-4ACD-96C1-46F28B5E5719@tcb.net> <20110929130632.GA76531@bikeshed.isc.org> <E6D92094-5836-4BB8-8E3A-5F620AA67696@tcb.net> <20110929133512.GA77671@bikeshed.isc.org> <10DB5C60-A228-4877-9EF0-F14F20DB06F5@tcb.net> <20110929190706.GA84607@bikeshed.isc.org>
Date: Thu, 29 Sep 2011 15:49:18 -0400
Message-ID: <CAL9jLabCR=wSz=iv+be+2cBEyxJyTamDwZT-C9zT1oqKvqzs6Q@mail.gmail.com>
From: Christopher Morrow <christopher.morrow@gmail.com>
To: Leo Bicknell <bicknell@isc.org>
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: quoted-printable
Cc: "grow@ietf.org grow@ietf.org" <grow@ietf.org>
Subject: Re: [GROW] ISC Response to draft-ietf-grow-unique-origin-as
X-BeenThere: grow@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Grow Working Group Mailing List <grow.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/grow>, <mailto:grow-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/grow>
List-Post: <mailto:grow@ietf.org>
List-Help: <mailto:grow-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/grow>, <mailto:grow-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 29 Sep 2011 19:46:27 -0000

jumping in in the middle...

On Thu, Sep 29, 2011 at 3:07 PM, Leo Bicknell <bicknell@isc.org> wrote:
> In a message written on Thu, Sep 29, 2011 at 11:22:45AM -0400, Danny McPherson wrote:
>> With normal unicast there's a single tree for the prefix in the routing
>> system, while anycasting inherently introduces a polytree for the prefix.
>> However, anycasting with a common origin AS creates a 'pseudo AS' at the
>> root of the graph (i.e., the illusion of a single tree).  By doing what
>> you describe, you force anyone doing routing system analysis to know 'a
>> priori' which prefixes employ a pseudo AS at the root of the tree - only
>> so that they can step deeper into the tree, to the actual polytree roots,
>> and then evaluate the adjacent nodes of those roots.  This is particularly
>> problematic when new nodes are introduced to the system.
>
> I'm sure you have studied this in great detail, and so I will simply
> assume you're correct that the method described is easier when
> writing a program to find hijacked routes.
>
> However, that is a small part of operating an Anycast system.  Far
> more frequently than I help folks find hijacked routes (which are
> fortunately rare) I help troubleshoot ordinary performance problems.
> It's far easier for me to say "send me show ip bgp regex _3557$"
> and get all the info I need than send a list of routes (3 in our
> case) or local ASN's (about 55 in our case).  The same goes for
> when I'm looking at various looking glasses to see what is going
> on.
>

it sounds like for the case of (for example) Leo troubleshooting
specific ISC problems one method he has works well. (and if you see
F-root originated from anything BUT 3557 you KNOW there's a problem..
again, as an example he could have 25 asns for this, but I'm assuming
1)

For a more generic problem that Danny/authors are attempting to make
simpler, each 'anycast service' would have it's own group of asn's
which would correlate to a set of both transits/peers AND geographic
locations... So, (again as a purely hypothetical example) A-root from
AS123333 behind AS4134 seen in London is likely far, far less happy
than A-root from AS123333 behind AS9150 in London. Also, A-root from
AS15169 anywhere is just bad news... (again, making up an example of
both 'location aware' troubleshooting for performance and one for
'mis-originated')

I don't think that the subject doc was intended to force compliance in
one way or the other, just to document one possibly reasonable method
to do anycast service hosting (and show how it is considered
reasonable).

Smart operators of services likely already have lots of these guts for
themselves done, if it works don't fix it.

-chris

v2.23.0 | Report a Bug | By Email