Re: [Idr] I-D Action: draft-ietf-idr-as0-01.txt
Tony Tauber <ttauber@1-4-5.net> Wed, 11 January 2012 04:21 UTC
Return-Path: <ttauber@1-4-5.net>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7612411E8087 for <idr@ietfa.amsl.com>; Tue, 10 Jan 2012 20:21:10 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.376
X-Spam-Level:
X-Spam-Status: No, score=-102.376 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, J_CHICKENPOX_43=0.6, RCVD_IN_DNSWL_LOW=-1, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id v+gAIPA6dWuE for <idr@ietfa.amsl.com>; Tue, 10 Jan 2012 20:21:09 -0800 (PST)
Received: from mail-vx0-f172.google.com (mail-vx0-f172.google.com [209.85.220.172]) by ietfa.amsl.com (Postfix) with ESMTP id A402A11E8080 for <idr@ietf.org>; Tue, 10 Jan 2012 20:21:06 -0800 (PST)
Received: by vcbfk13 with SMTP id fk13so259278vcb.31 for <idr@ietf.org>; Tue, 10 Jan 2012 20:21:06 -0800 (PST)
MIME-Version: 1.0
Received: by 10.220.155.142 with SMTP id s14mr14287525vcw.20.1326255664489; Tue, 10 Jan 2012 20:21:04 -0800 (PST)
Received: by 10.220.180.200 with HTTP; Tue, 10 Jan 2012 20:21:04 -0800 (PST)
X-Originating-IP: [24.104.152.66]
In-Reply-To: <F8B1F64B-7E4A-4320-9AC9-17F5141B80B5@kumari.net>
References: <20111216182324.17528.28150.idtracker@ietfa.amsl.com> <9CD76392-6F52-441C-BCF5-2335D7F49B8F@kumari.net> <4EEBEAEB.8070304@cisco.com> <0156DFD0-B706-42B0-93AB-89C9E6E252FD@kumari.net> <20120105014532.GC7464@slice> <0ED867EB33AB2B45AAB470D5A64CDBF6181C654044@EUSAACMS0701.eamcs.ericsson.se> <F8B1F64B-7E4A-4320-9AC9-17F5141B80B5@kumari.net>
Date: Tue, 10 Jan 2012 23:21:04 -0500
Message-ID: <CAGQUKcdKRMQGdDME7uAM3hPT3xm25N6S_ZORei=3Geo6-nhB1A@mail.gmail.com>
From: Tony Tauber <ttauber@1-4-5.net>
To: Warren Kumari <warren@kumari.net>
Content-Type: multipart/alternative; boundary="f46d04389439c3671604b638f550"
Cc: "keyupate@cisco.com" <keyupate@cisco.com>, "idr@ietf.org" <idr@ietf.org>
Subject: Re: [Idr] I-D Action: draft-ietf-idr-as0-01.txt
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/idr>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 11 Jan 2012 04:21:10 -0000
A zero in the "ASN portion" of a community value may not be a good practice in that it may be harder to figure out who injected it, but I don't think it needs to be considered an error from a software processing point of view. Tony On Tue, Jan 10, 2012 at 6:53 PM, Warren Kumari <warren@kumari.net> wrote: > > On Jan 4, 2012, at 8:51 PM, Jeff Tantsura wrote: > > > +1 > > > > Thank you. > > I have just uploaded a new version with this text slightly changed, please > confirm that this version is still acceptable to you. > > Keyur also pointed out that AS numbers show up in all sorts of other > places (as an example, AS specific Extended Communities) -- as they may > show up in yet more places as BGP gets extended I also inserted some fairly > generic text saying that you SHOULD handle these as malformed and respond > appropriately. While not ideal, I think it is OK. > > > W > > > > Regards, > > Jeff > > -----Original Message----- > > From: idr-bounces@ietf.org [mailto:idr-bounces@ietf.org] On Behalf Of > Jeffrey Haas > > Sent: Wednesday, January 04, 2012 5:46 PM > > To: Warren Kumari > > Cc: keyupate@cisco.com; idr@ietf.org > > Subject: Re: [Idr] I-D Action: draft-ietf-idr-as0-01.txt > > > > [Explicit cc on the draft-ietf-idr-error-handling authors for the > comments below.] > > > > Warren, > > > > On Sat, Dec 17, 2011 at 12:26:10PM -0500, Warren Kumari wrote: > >> On Dec 16, 2011, at 8:05 PM, Enke Chen wrote: > >>> 1) Is it really necessary to make AS 0 an error in the AGGREGATOR and > AS4_AGGREGATOR attributes? What is the gain? > >> > >> I'll double check with co-authors on Monday -- I don't think it is > strictly necessary to prevent attack, rather it seemed more elegant to > check AS 0 where ever it occurs. > > > > While I generally agree with Enke that treating as a malformed route is > probably excessive, I think the recommended behavior is desirable. The > mandate that the error-handling draft procedures must be used makes it > acceptable. Without those procedures, bouncing the session is almost > certainly the wrong thing to do. > > > >> It was brought up on the NANOG list that some vendors support zero'ing > >> out the AGGREGATOR (see Junipers "no-aggregator-id" as an example -- > >> this appears to only zero out the router ID, but I haven't checked all > >> implementations), so checking for AS 0 in the .*AGGREGATOR may be a > >> bad idea, so at the moment I'm leaning towards removing it (obviously, > >> this being a WG doc, with the WG's approval) > > > > Older varieties of gated had bugs with respect to the AS number that was > selected to be placed in the aggregator AS field. JunOS may have had > similar bugs at one point but the behavior that I can see in a cursory > check of the code should result in a system AS number being placed there. > > > > My recommendation for the as0 draft is that we leave in the current text > and let the attribute be treated as "malformed" by the error-handling draft. > > The behavior in that draft of attribute-discard is reasonable. > > > >>> 2) The error handling for AS4_PATH / AS4_AGGREGATOR is specified in > rfc4893bis (draft-ietf-idr-rfc4893bis-04.txt). Thus it should be referenced > if you specify AS 0 as an error for the AS4_PATH / AS4_AGGREGATOR. > >>> > >> > >> Doh! This was mentioned a few times and I intended to do so, but it > completely slipped my mind when typing... Thanks for reminding me.... > > > > Similarly, there should be references for these attributes added to the > error-handling draft. > > > > -- Jeff > > _______________________________________________ > > Idr mailing list > > Idr@ietf.org > > https://www.ietf.org/mailman/listinfo/idr > > > > > --- > Don't be impressed with unintelligible stuff said condescendingly . > -- Radia Perlman. > > Warren Kumari > warren@kumari.net > > > > _______________________________________________ > Idr mailing list > Idr@ietf.org > https://www.ietf.org/mailman/listinfo/idr >
- [Idr] I-D Action: draft-ietf-idr-as0-01.txt internet-drafts
- Re: [Idr] I-D Action: draft-ietf-idr-as0-01.txt Warren Kumari
- Re: [Idr] I-D Action: draft-ietf-idr-as0-01.txt Jakob Heitz
- Re: [Idr] I-D Action: draft-ietf-idr-as0-01.txt Warren Kumari
- Re: [Idr] I-D Action: draft-ietf-idr-as0-01.txt Jeffrey Haas
- Re: [Idr] I-D Action: draft-ietf-idr-as0-01.txt Enke Chen
- Re: [Idr] I-D Action: draft-ietf-idr-as0-01.txt Warren Kumari
- Re: [Idr] I-D Action: draft-ietf-idr-as0-01.txt Jeff Tantsura
- Re: [Idr] I-D Action: draft-ietf-idr-as0-01.txt Warren Kumari
- Re: [Idr] I-D Action: draft-ietf-idr-as0-01.txt Tony Tauber
- [Idr] draft-ietf-idr-as0-02 bruno.decraene
- Re: [Idr] draft-ietf-idr-as0-02 Enke Chen
- Re: [Idr] draft-ietf-idr-as0-02 Jeffrey Haas
- Re: [Idr] draft-ietf-idr-as0-02 Jie Dong
- Re: [Idr] draft-ietf-idr-as0-02 Russ White