Re: [Idr] WG Adoption call for draft-wang-idr-rd-orf-05.txt (2/4/2021 to 2/18/2021)

Robert Raszuk <> Tue, 16 February 2021 21:27 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id BAE443A1153 for <>; Tue, 16 Feb 2021 13:27:59 -0800 (PST)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: (amavisd-new); dkim=pass (2048-bit key)
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id x_EDUQsHvLa3 for <>; Tue, 16 Feb 2021 13:27:58 -0800 (PST)
Received: from ( [IPv6:2a00:1450:4864:20::132]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 3FA983A1152 for <>; Tue, 16 Feb 2021 13:27:58 -0800 (PST)
Received: by with SMTP id d3so18215009lfg.10 for <>; Tue, 16 Feb 2021 13:27:57 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=Gg0Fxos41NguVN79Ec8PpLZ3jgRdLo3IXaXXzcpWNmM=; b=d9KVe2hQA7fMWxxKkXSyKE4CKvkssQdFKoRK2sU+GXiMD9pKQoOQBxqBYmXO/QnIYP JdHuzIYq0S7+DSrhE0FzbReKHBs2ULzd8JSYhDA5xkF9lMELaYNeUTV50g3C9206g42j jVG6I3UJ/4IR+scvW0X6RMrOHgzHYiovy1tVvqOL5C8D0OmkZZ/JvEGMNyeRu7zgMnTj Ot/uKijldgwPQg9i4ik9YJVlU4duU2NhHWgB0GcoQ5cSzMzyGeu/68WdkGcGtc2TG/Wi WJ2Zc1B/7RIx96ppOsDdjflOR3sLhd9rupS2P4x7T0ZtmvArvuxHmiwpSsN88bKsdAf8 sBFA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=Gg0Fxos41NguVN79Ec8PpLZ3jgRdLo3IXaXXzcpWNmM=; b=SY15TyMYHPuOswblwGpbjBQX26O7d85c1IOZ+drgCPgJZ7T2H6Yy1zPUrHs6HDLhrv s82C/Mr7WC6F35qVXmMT7tmqRIIWIpe1XzEPxD/di5Xlc3vJFirwmRy+uYcC7PQy5D10 /TX8+t7SDo8LYr//Ue//xn6v2dsvtSYw+6Ru7tukoIO459A+eoGjd7lBlDKj/iTviXan fhd5gudHRsaEyi0elJAPCIbncLytPjSx6JCa2KXyRMOcDq/MJHRsjXeiaajZc2HAxxk4 ZU2EoQIi7xmAUxdPYZ3PGP8yq4fb/z2DmpRYznEzPDlvzDt8Z4ZmMdigUdSwxeafG45b Tinw==
X-Gm-Message-State: AOAM532gbIO8k97BRfwoGCU5UYwjs7pBGIHIrWKQDrhmmcG1mZT8nACy eZ+FgC9SDI/OCzNCChKbjz6XrVSrMqjf5de3ty95i9yCXQ8k8g==
X-Google-Smtp-Source: ABdhPJxYJH7w8N12aeksolV4J63dMSwKVNryMx2JVLu9wo4OdCa3gHUMA3m3mSPB7+pJvJLhxikBn4Y7g8FyCR6C5jk=
X-Received: by 2002:a19:c1d7:: with SMTP id r206mr13388566lff.581.1613510876243; Tue, 16 Feb 2021 13:27:56 -0800 (PST)
MIME-Version: 1.0
References: <> <> <> <> <>
In-Reply-To: <>
From: Robert Raszuk <>
Date: Tue, 16 Feb 2021 22:27:44 +0100
Message-ID: <>
To: Gyan Mishra <>
Cc: Aijun Wang <>, "Jakob Heitz (jheitz)" <>, Susan Hares <>, "idr@ietf. org" <>
Content-Type: multipart/alternative; boundary="0000000000009ec3a105bb7ac6b0"
Archived-At: <>
Subject: Re: [Idr] WG Adoption call for draft-wang-idr-rd-orf-05.txt (2/4/2021 to 2/18/2021)
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Inter-Domain Routing <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Tue, 16 Feb 2021 21:28:00 -0000

Hi Gyan.

>  From an operator standpoint knobs used today as you mentioned Ingres
filtering is not user other then a generic bit wise prefix list to permit a
any  “ge le”.

The point is that if you use existing shipping implementations and apply
correct ingress policy - with zero code change to any shipping
implementation - you will protect from fire hence no need to invent new
extinguishers. Fire always results in damage so it's worth to spend extra
cfg effort to protect from it.

It works and scales for Internet so will work and scale for VPNs. Yes it
requires perhaps change to operational model of some providers on how
L3VPNs or L2VPNs are being offered - but it can be as simple as web page
for customer to enter what routes he intends to send. If he enters
100K routes while his SLA allows max 100 per site simple web page
validation can provide an error and no policy will be installed on the