[Idr] some questions from {RC, LC, EC} analysis presentation in GROW

"Sriram, Kotikalapudi (Fed)" <kotikalapudi.sriram@nist.gov> Tue, 03 August 2021 15:14 UTC

Return-Path: <kotikalapudi.sriram@nist.gov>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1E8D73A2729; Tue, 3 Aug 2021 08:14:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.165
X-Spam-Level:
X-Spam-Status: No, score=-3.165 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.452, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FROM_GOV_DKIM_AU=-0.612, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=nist.gov
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id VWXt0TfsllNs; Tue, 3 Aug 2021 08:14:45 -0700 (PDT)
Received: from GCC02-DM3-obe.outbound.protection.outlook.com (mail-dm3gcc02on2104.outbound.protection.outlook.com [40.107.91.104]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6CA6E3A270C; Tue, 3 Aug 2021 08:14:41 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=mBNYl96o5PWQeD5oyjCh5fhWUXjnbVYzD3iFm8/lRqzljhrliBPiIEckrldkeHIERvi8hb9iARQsANuOGQMfwc0LTLnjco4CjVISXBcpQG57zYcGfVeQ85w1t0HAt3twREqhxFpc/lgEH9A8pJy1EFZXtHohzxx1Kufq2woM7sMDwI8KPq1l7+CPwoFi7IwPLJUtlLrhpEJ9wjXsHHJrELRN/8YW+m4AyNWLsx3by8PbysF8i4Bfq3kTdF6RuB/svCyQGj9h5O+042y8Um9CGJjdK/ayz8XkCEM8MCwjprkxvcc1i8JIayn2UGImPx+Ko8sjtXYrsto1PNpmi7I7Pw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=hWjT5Hg2vVrr8Jt0GD5/RArx8nYgnCdzd8VK4X5FLhI=; b=PJrDXfgUlVTT+BqwKzcS+xjr1lDHy2EC+nCw9f2W6bNWVkVjm4m2JQP9uyjBjrsXA0FTOZZUIVRejQoLicGNCl++OUy5FwbMbmTmpSoubDFup4prJuKXxcfHFLgkaPIp0q+Nod6eYaSaIfPKLW0hHbshXgm5ExCN6/lIerqFzFVfwUbjk4lr6f9bMMvnxG2Eu4Hkn9V+uY1zP/C5mmBCDtaLN1rTRdWPUyjNiQ1+QBJkLfL5PP5oaYD0zbz0hFfCk4Mr3g9jSHOwmomuvdNsE3K36ZJobFQ39PsRMruX4hXFVCxnSH2r4H8z6sNkjQ/+0O8vgPz5DuL2kz35VDCL8g==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=nist.gov; dmarc=pass action=none header.from=nist.gov; dkim=pass header.d=nist.gov; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nist.gov; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=hWjT5Hg2vVrr8Jt0GD5/RArx8nYgnCdzd8VK4X5FLhI=; b=W6wmGGY9Sv4dD/uV2cNYJ8hMSktneMW6qB8Q+PkOEFvUaziOOWinMHTLOVataMVMBCdSjBY5IxiIEBjMvGnDmyibBOqZoIcS3yTtfqs3S/F+2jCJapDyZnQlYRVDvpaWoF8zO1mjQkc21ezjG8ykPOZ+sB0nNIXSXpmAdmsuyuA=
Received: from SA1PR09MB8142.namprd09.prod.outlook.com (2603:10b6:806:171::8) by SA1PR09MB8656.namprd09.prod.outlook.com (2603:10b6:806:172::21) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4373.22; Tue, 3 Aug 2021 15:14:39 +0000
Received: from SA1PR09MB8142.namprd09.prod.outlook.com ([fe80::153f:4e8c:eadd:935d]) by SA1PR09MB8142.namprd09.prod.outlook.com ([fe80::153f:4e8c:eadd:935d%7]) with mapi id 15.20.4373.026; Tue, 3 Aug 2021 15:14:39 +0000
From: "Sriram, Kotikalapudi (Fed)" <kotikalapudi.sriram@nist.gov>
To: GROW WG <grow@ietf.org>
CC: IDR <idr@ietf.org>
Thread-Topic: some questions from {RC, LC, EC} analysis presentation in GROW
Thread-Index: AQHXiHXG0T0iPqYYLk6NCjnOwJ+5gQ==
Date: Tue, 3 Aug 2021 15:14:39 +0000
Message-ID: <SA1PR09MB8142ADE02512DB13887086AC84F09@SA1PR09MB8142.namprd09.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: ietf.org; dkim=none (message not signed) header.d=none;ietf.org; dmarc=none action=none header.from=nist.gov;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: ecb92fc2-e119-4eb7-4004-08d9569169cd
x-ms-traffictypediagnostic: SA1PR09MB8656:
x-microsoft-antispam-prvs: <SA1PR09MB86561AA6C6E05A6386B2A1C784F09@SA1PR09MB8656.namprd09.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:SA1PR09MB8142.namprd09.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(366004)(2906002)(52536014)(86362001)(5660300002)(55016002)(508600001)(33656002)(91956017)(4326008)(38070700005)(122000001)(38100700002)(76116006)(66946007)(71200400001)(64756008)(66476007)(66556008)(66446008)(6916009)(6506007)(26005)(8936002)(966005)(83380400001)(7696005)(8676002)(316002)(9686003)(186003); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: =?Windows-1252?Q?ZldqJvdajdYousmmA5p6mCspidWSLKZTvtTnSPxKkS8LF/tbSaY8kBO3?= =?Windows-1252?Q?DgYC24BwRWX8C0sivwq8wukYhCpzlCPnlMqS4+GZu5ODdjlxPil7LqXb?= =?Windows-1252?Q?XHuLsgA4/DpCiKt4vvcrsywNz2TMAV8VdrveHcCTD2JmzPfDY4fGZ88F?= =?Windows-1252?Q?XWbDH1y2c7rFMUI4jgZvWQ3E64bBC92DNtaKIDsmR2qm4ug8GT2Wh8sc?= =?Windows-1252?Q?L8wF99gp6eQe6nxx8R17B2ZtBMX5BBm+Wj1+NztY+stOurEzAZTKoej5?= =?Windows-1252?Q?TXxF2esua2XrdGI5Fw+tdb3yGkFD4uXNZLcieRHLADZ89b1JcNq3WClE?= =?Windows-1252?Q?STaLNxMEIdoTBs1a6J778crtfn2m4N9MFOFjFOaIHhFA9qj151WBIpAr?= =?Windows-1252?Q?XmGQOKGTQ8mLhMPti6WKHuN/nrfFP8rhsCK5fDOI51E1oTsFG6I2F/P8?= =?Windows-1252?Q?wYXnsWNN0kjlULDCz84p/7NyFofc/i/NFrdbSgUoLk4qDuxnILVYboPx?= =?Windows-1252?Q?9t2orDDigvkPNdtQk2C+LMyi5a5o/BcBuCg4kgc42VlNbIUgmgKaHR0t?= =?Windows-1252?Q?ZwV4AIhBHfXL0ZZSSENWdl0k/51n9c9kQHvXhKKoCCd9O8OAEJyLtxzz?= =?Windows-1252?Q?hKhcKfmJ5RYNT2pouGwX9cfMpLrMrAaLy/dLJj4aKuZzcZmU5YplrSBy?= =?Windows-1252?Q?MFNWzbP3OyrUxI5yUDJAMoXoeChG0nhiJn6WoYo7n8+EcbKRs4sOSK1h?= =?Windows-1252?Q?rfN7dx9Wxu0eJWStkXeu3CVwRg0rrFfDeZ98kCxQpwVi79a7GRA6704Z?= =?Windows-1252?Q?aBcvlqMGXMJsWrc+jhNKtpxi4xDPkmlwt2XZ+qxND3Bz6vxyjyUImlWn?= =?Windows-1252?Q?Kul8sZLyHUbqG/TrRlTr/8UXQcL8SVYwrtV8RLFH6n6DAzm1vDX5XGxe?= =?Windows-1252?Q?Jvcrbfw2v3HA3XTd7IRZW7FAVgHha9PbX3l1D3v9oECtHmQcNYd/aC+s?= =?Windows-1252?Q?yrk9lnIv8Vh5iPqQy0vuCrbSyzkB8HA5C+979nJWnTDFOWHGDM0N5hEw?= =?Windows-1252?Q?Z5JBYdmcmMUvY4GBYzvjPyHmyVDIljb8kXMS+HyH7hz3TEpuYNX2fHJ7?= =?Windows-1252?Q?dsottE2Bb6A4AHwEmeQ+/vcBpOeJF9Jj+PhwSJ/38wd2LHZePQsaotxe?= =?Windows-1252?Q?ACkXAwz6Ro44kYEW+bMphZjx1zJLcMM5AGDyCV2bXHgOU1eQ1pucvfXQ?= =?Windows-1252?Q?BiNsCIFCvQoxifebnJt/451mF9XdWPiTVZnpnok2q4DW4KyDo21tMcQB?= =?Windows-1252?Q?3RroFQMfVCzixiDZhY2Eou073Lc/X2ymsoypO/am+cpCgb4wmIJA37Fn?= =?Windows-1252?Q?KcHL5uJlzYjW/XHtb4D66q9bxIBp+iofrgE=3D?=
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="Windows-1252"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: nist.gov
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: SA1PR09MB8142.namprd09.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: ecb92fc2-e119-4eb7-4004-08d9569169cd
X-MS-Exchange-CrossTenant-originalarrivaltime: 03 Aug 2021 15:14:39.4035 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 2ab5d82f-d8fa-4797-a93e-054655c61dec
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SA1PR09MB8656
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/G3QhyByRbkG_VeNfvdP62QvLPbg>
Subject: [Idr] some questions from {RC, LC, EC} analysis presentation in GROW
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 03 Aug 2021 15:14:56 -0000

Some questions raised at the mike or in the chat window during my GROW presentation last week on the analysis of {Regular, Large, Extended} Communities are worth a revisit. The presentation slides are here:
https://datatracker.ietf.org/meeting/111/materials/slides-111-grow-bgp-regularextendedlarge-community-analysis-01 

Comment (Jeff): Your slides have proven that stuff is being passed around in a transitive fashion. The thing that is not necessarily a clear conclusion is that service providers are willing to pass them around in a way that allows you to safely use them in a transitive fashion for any given application.  

Related comment (Ruediger): There is a need for consideration of what hygiene should be applied to the communities you are propagating. Typically, people are concerned about the hygiene of what they accept. But in a peering relationship, you as the sender are also responsible for what you are sending; you should not propagate without understanding the security [safety] implications. Today this type of hygiene is generally lacking.

Response: We welcome any ideas that may help compile RC/LC/EC application types and their propagation requirements to perform measurements against them. Also, it is good to follow Ruediger’s suggestion and have a GROW document that provides operator guidance on what hygiene to apply on the sender side so that the propagation happens safely. Having said that, our measurements focused on whether or not ASes propagate transitive communities. The results are correct in that respect. One AS in the path may not have removed the community or stopped propagating the route further, but the other ASes that propagated are indeed correctly propagating transitive stuff. When it is not participating in the specific community application, it seems correct behavior for an AS to simply pass on the transitive community to the next AS. In general, LC and RC are transitive (unless NO_EXPORT or NO_ADVERTISE is also present). Minor point: The measurements also show that non-transitive ECs do not propagate; only transitive ECs are seen propagating (slide 15). 

Question (Chris): Why is it assumed (on slide 11) that the Blackhole community is added at the origin AS? 

Response: The RTBH service is requested by the prefix owner. That is why it is assumed that it is added at the AS where the prefix is located, i.e., the origin AS. Are there legitimate circumstances where an AS that is 2 or 3 hops upstream from the prefix can make that request? 

Thanks.
Sriram