Re: Graceful restart comment
Jeffrey Haas <jhaas@nexthop.com> Tue, 30 April 2002 14:17 UTC
Received: from trapdoor.merit.edu (postfix@trapdoor.merit.edu [198.108.1.26]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id KAA21533 for <idr-archive@ietf.org>; Tue, 30 Apr 2002 10:17:02 -0400 (EDT)
Received: by trapdoor.merit.edu (Postfix) id 27E0291232; Tue, 30 Apr 2002 10:16:34 -0400 (EDT)
Delivered-To: idr-outgoing@trapdoor.merit.edu
Received: by trapdoor.merit.edu (Postfix, from userid 56) id EE11C91236; Tue, 30 Apr 2002 10:16:33 -0400 (EDT)
Delivered-To: idr@trapdoor.merit.edu
Received: from segue.merit.edu (segue.merit.edu [198.108.1.41]) by trapdoor.merit.edu (Postfix) with ESMTP id AADC391232 for <idr@trapdoor.merit.edu>; Tue, 30 Apr 2002 10:16:32 -0400 (EDT)
Received: by segue.merit.edu (Postfix) id 7E2EB5DFB6; Tue, 30 Apr 2002 10:16:32 -0400 (EDT)
Delivered-To: idr@merit.edu
Received: from presque.djinesys.com (dns.nexthop.com [64.211.218.216]) by segue.merit.edu (Postfix) with ESMTP id E325F5DDB3 for <idr@merit.edu>; Tue, 30 Apr 2002 10:16:31 -0400 (EDT)
Received: (from root@localhost) by presque.djinesys.com (8.11.3/8.11.1) id g3UEGKY43714; Tue, 30 Apr 2002 10:16:20 -0400 (EDT) (envelope-from jhaas@nexthop.com)
Received: from jhaas.nexthop.com (jhaas.nexthop.com [64.211.218.31]) by presque.djinesys.com (8.11.3/8.11.1) with ESMTP id g3UEGHO43706; Tue, 30 Apr 2002 10:16:17 -0400 (EDT) (envelope-from jhaas@nexthop.com)
Received: (from jhaas@localhost) by jhaas.nexthop.com (8.11.0/8.11.0) id g3UEGH502855; Tue, 30 Apr 2002 10:16:17 -0400 (EDT)
Date: Tue, 30 Apr 2002 10:16:17 -0400
From: Jeffrey Haas <jhaas@nexthop.com>
To: Pedro Roque Marques <roque@juniper.net>
Cc: idr@merit.edu
Subject: Re: Graceful restart comment
Message-ID: <20020430101617.B2745@nexthop.com>
References: <20020429195659.4509F15D3C1@popserv1.redback.com> <3CCDA914.92FE8548@cisco.com> <20020429162659.F21276@nexthop.com> <200204292058.g3TKw4r95825@roque-bsd.juniper.net> <20020429172231.G21276@nexthop.com> <200204292204.g3TM4f697665@roque-bsd.juniper.net>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <200204292204.g3TM4f697665@roque-bsd.juniper.net>; from roque@juniper.net on Mon, Apr 29, 2002 at 03:04:41PM -0700
X-Virus-Scanned: by AMaViS perl-11
Sender: owner-idr@merit.edu
Precedence: bulk
On Mon, Apr 29, 2002 at 03:04:41PM -0700, Pedro Roque Marques wrote: > There have been several incidents in the past related to information > that was propagated incorrectly and/or crashed the receivers... do you > mind providing a pointer to the specific incident that you want to > refer to... ? also in some of those incidents, the "rumor" explanation > tends to sometimes differ from reality. IDR list, approximately last week of June 2001. Subject of "Re: RFC 3065, confeds.." In this particular case, the rumor was "private as's were killing peering sessions". In reality, confederation AS segments were leaking outside of a confederation boundary due to someone's bug, propagating across the entire Internet, and killing the peering session of some implementations that chose to read the specification as saying "if you're not a confederation peer, I should never see confederation segments from you". > So, if you detect that your peer is sending you semantically incorrect > information shouldn't you discard all information that the peer sent > you ? In some cases, no. The confed case above is one example. Another example would be an ORIGIN of value 4 or higher. > If the peer is leaking you bad attributes of some kind how do you know > which attributes to accept... ? That is the challenge. > The tradeoff here is that while by droping the session one may be > rejecting NLRI that would otherwise have a valid path, by resseting it > one makes sure that you don't accept information that may poison other > valid routes. In pratice i believe that the worse incidents that we > have faced have been the ones related to poison information... thus my > preference to err on the side of reseting the session. I would tend to agree with the exception of the fact that stuff from "far away" that is propagated may kill your session with your peer, just because they chose to propagate it. Discarding bad PDU's blackholes some reachability for you. Killing your peering session blackholes it all. > > RFC 2858, section 6, paragraph 1. :-) > > Which suggests that one 'may' zap the other guy... imho, one should do > it if the routers support capability negociation. If one doesn't support dynamic capabilities, one should probably drop the entire peering session. Otherwise you start discarding routes and you may not know why - exactly the scenario you were worried about. > imho, the best way to keep OAM people happy is to make things fail in > a detectable and most predictable way... having an information msg hit > the logs somewhere while you are propagating bogus information would > be an unfriendly thing to do. The point is that one should discard the reachability that is questionable and not propagate it. > However pesonally i'm very sceptic of the informational message > concept... The big motivator is the ability to tell your peer that they're doing something you don't like without dropping the peering session. > Pedro. -- Jeff Haas NextHop Technologies
- Re: as4bytes - 4byte speaker receiving new* attri… Enke Chen
- Re: as4bytes - 4byte speaker receiving new* attri… Jeffrey Haas
- Re: as4bytes - 4byte speaker receiving new* attri… Jeffrey Haas
- Re: as4bytes - 4byte speaker receiving new* attri… Enke Chen
- as4bytes - 4byte speaker receiving new* attribute… Jeffrey Haas
- Re: Another suggestion for draft-ietf-idr-bgp4-12… Enke Chen
- Re: Another suggestion for draft-ietf-idr-bgp4-12… Jeffrey Haas
- Re: Another suggestion for draft-ietf-idr-bgp4-12… Jeffrey Haas
- Re: Another suggestion for draft-ietf-idr-bgp4-12… Enke Chen
- Re: Suggested changes to bgp4 draft for maximum p… Enke Chen
- Re: AS-wide Unique BGP Identifier Enke Chen
- Re: A Question about Tie breaking rules (draft-ie… Enke Chen
- Re: Maximum Prefix Limit Enke Chen
- Re: IDR WG Last Call Jeffrey Haas
- Re: IDR WG Last Call Susan Hares
- Re: IDR WG Last Call Susan Hares
- Re: IDR WG Last Call Russ White
- Re: IDR WG Last Call Enke Chen
- Re: IDR WG Last Call Jeffrey Haas
- Re: IDR WG Last Call Enke Chen
- Re: processing order of reach/unreach in rfc2858b… Alex Zinin
- Re: processing order of reach/unreach in rfc2858b… Jeffrey Haas
- Re: processing order of reach/unreach in rfc2858b… Enke Chen
- Re: Graceful restart comment Enke Chen
- Re: Graceful restart comment Gargi Nalawade
- Re: Graceful restart comment Jeffrey Haas
- Re: Graceful restart comment Pedro Roque Marques
- Re: Graceful restart comment Jeffrey Haas
- Re: Graceful restart comment Pedro Roque Marques
- Re: Graceful restart comment Jeffrey Haas
- Re: Graceful restart comment Jeffrey Haas
- Re: Graceful restart comment Kaarthik Sivakumar
- Re: Graceful restart comment Manav Bhatia
- Re: admin dist/gp spec proposal Enke Chen
- Re: [Idr] Last Call on draft-ietf-idr-rfc2796bis-… Enke Chen