IETF Logo Mail Archive

Re: [Idr] draft-ymbk-sidrops-rov-no-rr

Jeffrey Haas <jhaas@pfrc.org> Mon, 15 November 2021 20:29 UTC

Return-Path: <jhaas@slice.pfrc.org>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AE07B3A08FF for <idr@ietfa.amsl.com>; Mon, 15 Nov 2021 12:29:28 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PaexU-cg19fK for <idr@ietfa.amsl.com>; Mon, 15 Nov 2021 12:29:27 -0800 (PST)
Received: from slice.pfrc.org (slice.pfrc.org [67.207.130.108]) by ietfa.amsl.com (Postfix) with ESMTP id 522843A08FC for <idr@ietf.org>; Mon, 15 Nov 2021 12:29:27 -0800 (PST)
Received: by slice.pfrc.org (Postfix, from userid 1001) id 601E61E2D8; Mon, 15 Nov 2021 15:29:25 -0500 (EST)
Date: Mon, 15 Nov 2021 15:29:25 -0500
From: Jeffrey Haas <jhaas@pfrc.org>
To: Job Snijders <job@fastly.com>
Cc: Randy Bush <randy@psg.com>, idr@ietf.org
Message-ID: <20211115202925.GE25878@pfrc.org>
References: <CAOj+MMHUZ26KTQje5ZO0wVubHMfvvb3QwZZm_x+TmTpTChdUdw@mail.gmail.com> <YZKpVnY/EORywfIQ@Space.Net> <CAOj+MMF+2rg69pLzR=xuK=yRKwKr1ochSzfOgYmV2-e5amZOgw@mail.gmail.com> <YZKrRx8G5SroAZ0v@Space.Net> <m2sfvxs0zd.wl-randy@psg.com> <m2r1bhs0pw.wl-randy@psg.com> <20211115190737.GB25878@pfrc.org> <YZKzwWiFFLnkvGf5@snel> <20211115195850.GD25878@pfrc.org> <YZLAG03yK4F4ZqiB@snel>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <YZLAG03yK4F4ZqiB@snel>
User-Agent: Mutt/1.5.21 (2010-09-15)
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/F3w0RDyv9dK4w15fzuDZx3P4Jw0>
Subject: Re: [Idr] draft-ymbk-sidrops-rov-no-rr
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 15 Nov 2021 20:29:29 -0000

On Mon, Nov 15, 2021 at 09:16:27PM +0100, Job Snijders wrote:
> On Mon, Nov 15, 2021 at 02:58:50PM -0500, Jeffrey Haas wrote:
> > Randy's other commentary seems to be emphasizing the main part of the
> > pain is effectively self-inflicted: If you quickly and consistently
> > distribute route validation updates in a consuming network,
> > implementations that are using route refresh to deal with those
> > updates by doing what they're told - issuing refreshes.
> 
> I concur it partially self-inflicted, but keep in mind that any EBGP
> peers receiving those ROUTE REFRESH messages as a result of this
> phenomenon didn't ask for refreshes. Operators are learning about this
> infliction 'the hard way'.

That's understood.  This isn't any different than any other over-aggressive
provisioning tool's impact.  In this case, it just happens to be coming in
from a protocol.

As this thread points out, the industry seems to be moving to more and more
aggressive distribution of the RPKI state.  While we often talk about
"boiling the ocean" in terms of trying to solve too large of a problem,
we're highlighting that we may be trending the other way.  Given an
aggressive enough ROA distribution infrastructure, a single update may cause
the Internet at large to burn CPU to deal with the route re-evaluation
impact.  

A pebble tossed into the ocean and causing it to boil is likely not the
intended impact.

-- Jeff (the IGP people are likely laughing at us now...)

v2.23.0 | Report a Bug | By Email