[Idr] Re: BGP Origin Scrubbing (draft-marenamat-idr-scrub-bgp-origin-00)
Gert Doering <gert@space.net> Tue, 04 November 2025 07:18 UTC
Return-Path: <gert@space.net>
X-Original-To: idr@mail2.ietf.org
Delivered-To: idr@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 26C6E8240710 for <idr@mail2.ietf.org>; Mon, 3 Nov 2025 23:18:37 -0800 (PST)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.1
X-Spam-Level:
X-Spam-Status: No, score=-2.1 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=space.net
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kZZQwDoW7d3l for <idr@mail2.ietf.org>; Mon, 3 Nov 2025 23:18:36 -0800 (PST)
Received: from gatekeeper1-relay.space.net (gatekeeper1-relay.space.net [IPv6:2001:608:3:85::38]) (using TLSv1.2 with cipher ECDHE-ECDSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 1C52E82406F6 for <idr@ietf.org>; Mon, 3 Nov 2025 23:18:35 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=space.net; i=@space.net; q=dns/txt; s=esa; t=1762240716; x=1793776716; h=date:from:to:cc:subject:message-id:references: mime-version:in-reply-to; bh=Zo9a+vw+tJCJRkD9DHcNo8XwMdF4Qb2BwvDC/9EV65I=; b=YDezoPn8I9VBfucbm+cPaEloODR6NFgAh5yiehjkm4zVI6MKew/voBzA glNbzywuo0qrdMR3CeKQmRuYAS1DvynlxJ32Vc6N4bGTPfuPAkVdnDHUg BS3hmVoMuVuK6DRv7V2QyWvWUOj5TZVOL0k9SBhA4Vc0DBl0MFRaRYsjb SOeQWnrc65mFT0HtTlvv1s83wtt57crgcvV03AfICv83m5kb2sLoPBJCj uNsBrw8ej5g27m36czRiJIo6HeLP0AuYVyvld1tKlchADytDgmA3KHg4f CzswCAVPW3zVng4xM9tEJq1Xi5juQrPsIkSPExYBcvFvlx41UIq4TglWZ w==;
X-CSE-ConnectionGUID: Y9XrEFGcTlOt23wheLO+IA==
X-CSE-MsgGUID: 2UKV/dc1S22XTpi4Z03kNw==
X-SpaceNet-SBRS: None
Received: from mobil.space.net ([195.30.115.67]) by gatekeeper1-relay.space.net with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 04 Nov 2025 08:18:28 +0100
X-Original-To: idr@ietf.org
Received: from mobil.space.net (localhost [IPv6:::1]) by mobil.space.net (Postfix) with ESMTP id 57FCB18186C1 for <idr@ietf.org>; Tue, 4 Nov 2025 08:18:28 +0100 (CET)
X-SpaceNet-Relay: true
Received: from moebius6.space.net (moebius6.space.net [IPv6:2001:608:2:2::251]) by mobil.space.net (Postfix) with ESMTP id 4A7891812F11; Tue, 4 Nov 2025 08:18:28 +0100 (CET)
Received: by moebius6.space.net (Postfix, from userid 1007) id 450DB7B997; Tue, 04 Nov 2025 08:18:28 +0100 (CET)
Date: Tue, 04 Nov 2025 08:18:28 +0100
From: Gert Doering <gert@space.net>
To: Robert Raszuk <robert@raszuk.net>
Message-ID: <aQmoxP5q4kaFQH8f@Space.Net>
References: <176220981836.503762.16382714890971746625@dt-datatracker-5df8666cb-7l4w5> <aQkxNvBHOa7tNRn0@struhadlo.private.jmq.cz> <CAOj+MMFk2o0N796XjWOSVF=TqNAhaNLdjBpvxBrzDzoYr_CsLg@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <CAOj+MMFk2o0N796XjWOSVF=TqNAhaNLdjBpvxBrzDzoYr_CsLg@mail.gmail.com>
Message-ID-Hash: MQZNBXRU5ZPKRMXTDFYCX5SGL3QW2R3M
X-Message-ID-Hash: MQZNBXRU5ZPKRMXTDFYCX5SGL3QW2R3M
X-MailFrom: gert@space.net
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-idr.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: Maria Matejka <maria.matejka=40nic.cz@dmarc.ietf.org>, idr@ietf.org, Alexander Zubkov <green@qrator.net>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [Idr] Re: BGP Origin Scrubbing (draft-marenamat-idr-scrub-bgp-origin-00)
List-Id: Inter-Domain Routing <idr.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/-FPHe-hyjZ3_gGZg7dPTYgDXN-8>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Owner: <mailto:idr-owner@ietf.org>
List-Post: <mailto:idr@ietf.org>
List-Subscribe: <mailto:idr-join@ietf.org>
List-Unsubscribe: <mailto:idr-leave@ietf.org>
Hi,
On Tue, Nov 04, 2025 at 12:11:10AM +0100, Robert Raszuk wrote:
> First I disagree that this ORIGIN attribute has been "out of use for
> years". For sure all implementations I am aware of use it.
Whether or not *implementations* use it is not the question (of cause
they do, because it's mandatory). The question is if there is actual
and on-purpose use by operators of this attribute.
For us, this attribute is just a nuisance - different vendors we use
here have different defaults for what origin they generate for basic
"announce this connected network" task, breaking internal TE based
on MED (because origin is checked before MED). So we need to take
extra care to make sure origin is scrubbed.
[..]
> Today it seems that the main role of ORIGIN servers is to prefer routes
> originated with network command from routes injected to BGP via
> redistribution. Is treating them in the same way a good thing ? I am not
> sure.
This is how one particular vendor sets ORIGIN...
Gert Doering
-- NetMaster
--
have you enabled IPv6 on something today...?
SpaceNet AG Vorstand: Sebastian v. Bomhard,
Karin Schuler, Sebastian Cler
Joseph-Dollinger-Bogen 14 Aufsichtsratsvors.: A. Grundner-Culemann
D-80807 Muenchen HRB: 136055 (AG Muenchen)
Tel: +49 (0)89/32356-444 USt-IdNr.: DE813185279
- [Idr] BGP Origin Scrubbing (draft-marenamat-idr-s… Maria Matejka
- [Idr] Re: BGP Origin Scrubbing (draft-marenamat-i… Robert Raszuk
- [Idr] Re: BGP Origin Scrubbing (draft-marenamat-i… Gert Doering
- [Idr] Re: BGP Origin Scrubbing (draft-marenamat-i… heasley
- [Idr] Re: BGP Origin Scrubbing (draft-marenamat-i… Robert Raszuk
- [Idr] Re: BGP Origin Scrubbing (draft-marenamat-i… David Farmer