Re: [Idr] WG LC on draft-ietf-idr-large-community-03.txt (10/17/2016 to 10/31/2016)
Brian Dickson <brian.peter.dickson@gmail.com> Fri, 21 October 2016 20:32 UTC
Return-Path: <brian.peter.dickson@gmail.com>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id ADCFE12969E for <idr@ietfa.amsl.com>; Fri, 21 Oct 2016 13:32:11 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.699
X-Spam-Level:
X-Spam-Status: No, score=-2.699 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ftqpKpgDBn1G for <idr@ietfa.amsl.com>; Fri, 21 Oct 2016 13:32:10 -0700 (PDT)
Received: from mail-wm0-x233.google.com (mail-wm0-x233.google.com [IPv6:2a00:1450:400c:c09::233]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 342FF12967D for <idr@ietf.org>; Fri, 21 Oct 2016 13:32:10 -0700 (PDT)
Received: by mail-wm0-x233.google.com with SMTP id c78so5176572wme.0 for <idr@ietf.org>; Fri, 21 Oct 2016 13:32:10 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=6NfBdnR3Gp5zE2Rp+pFO/NKfsSKhWxswfKZfIf7otMQ=; b=TP3vPZUcR8RnYuSDlv/aiyHvbSNOymVMTotws8UY63XZMYawaePKU36lahejlbhB35 GvwSMvie5JRJ1j/WtDumGP9Z8AhPCHxMEdTPinba3uqWD6ijy31KfW6aHGAgwvInpOe0 e/R705PaTlsQZVhotcEcrZkYG+OUwdsZwSvAqDShUponZ2ry5GAKJFPrtzJQZDLXU21D bi3jQN40KgImc6y61hIcGn+5tJ5qd3immAzlcLM6J+zcw7wiTZeCkmGTUE3fTkms2rQ3 BAa34KlGvghouzhDA5xVvAC4P0BlGPkU1KxXL0NS/KoP7sLm5l9Wn7gVDvZPY6TEy50N vPmg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=6NfBdnR3Gp5zE2Rp+pFO/NKfsSKhWxswfKZfIf7otMQ=; b=S5VhKOgt6S1kbwnwOouphj/FqHioW4zludjIkVpBOr6LUrCgJfJSUfQauKBs1Zb1gz FwFx7bU4lunU4uoWxwRttCNq0+xvMzY/j8Dq+YAbmH/ZHIxnydvAEWZ6h2DoLRhEux/x R47s8i3YjVGBgyw/pjtD3B1KXUOTYtfyqDEWO+NS215zHXgaVP2RD72NJjR7BfJ0wtuu s4Ho3ZC6HVDzNfcruI+Krh0BsmETn4IPnHmcRU9rUuHnEzHYFJqxnXoNgzgAQAOGPEuJ Vuqa7xsRoJmTGRWn0g53sTrEqCp8/xtdYLvUq1WEmAJacqcCKenHmcyIOhRdkQshmxgX GqKQ==
X-Gm-Message-State: ABUngvdkXcD8QK/YX2Zj1b2M5l8Ot/k+wk/dSn44oFz/zT9jjwHh1UWyn2g9OLovyQNhOeHsrsReOH8UwMNwGw==
X-Received: by 10.194.93.234 with SMTP id cx10mr2245043wjb.140.1477081928627; Fri, 21 Oct 2016 13:32:08 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.28.203.207 with HTTP; Fri, 21 Oct 2016 13:32:06 -0700 (PDT)
In-Reply-To: <CA+b+ERnbUxrY6hgocQNBxL9PppuGMcf4f1Zzhu0P-ekj1R0GyQ@mail.gmail.com>
References: <20161018191521.GT95811@Vurt.local> <9EFC9BAA-F917-4C70-A139-1F69CAECF9C0@pfrc.org> <20161020215938.GE1074@Vurt.local> <adb00bcd7b8e45db857eae7019c646fc@XCH-ALN-014.cisco.com> <ae5da282-201c-f745-9f26-67ce73826bd5@i3d.net> <CA+b+ERkV2PBtzzx=uoygDzvTyJzunROCNX=0Y4phvGdn=oK5Xw@mail.gmail.com> <20161021154958.GR27221@gir.theapt.org> <CA+b+ERmrzCtFLP98D0YzRc-BJNbBWp3Ce6yKZr2cg1_QS0Oz5w@mail.gmail.com> <2ddbfbaf-7b99-53b9-365c-269fcc7746e7@i3d.net> <CA+b+ERn6dG+R8+UV-jaRXAV7eWQBygqEQp4VY4x1yKukpVKhTA@mail.gmail.com> <20161021164241.GC32387@Vurt.local> <CA+b+ERkAJDFPwmiNr7_UiaKfRQnt=8h9d9JM6B4oFgU_P1S1cQ@mail.gmail.com> <711ba725-7304-5122-cfb2-2a40c2d76ca9@i3d.net> <CA+b+ERmrEtSYTc2PN8fu3VogbMPK7yQR_GM3yJwuFF-zeO0u0Q@mail.gmail.com> <c3fc9f46-fb66-76a0-0efd-9669207729b9@i3d.net> <CA+b+ERnbUxrY6hgocQNBxL9PppuGMcf4f1Zzhu0P-ekj1R0GyQ@mail.gmail.com>
From: Brian Dickson <brian.peter.dickson@gmail.com>
Date: Fri, 21 Oct 2016 13:32:06 -0700
Message-ID: <CAH1iCir+mjiOvc_F1FZgbp0aNgRARRtPBdtC9o545ybbBFxD5A@mail.gmail.com>
To: Robert Raszuk <robert@raszuk.net>
Content-Type: multipart/alternative; boundary="047d7beb9340a901d6053f65efcb"
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/XWbkEOIxiuoNYd-SFibSm4rxNzg>
Cc: idr wg <idr@ietf.org>
Subject: Re: [Idr] WG LC on draft-ietf-idr-large-community-03.txt (10/17/2016 to 10/31/2016)
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 21 Oct 2016 20:32:11 -0000
On Fri, Oct 21, 2016 at 12:51 PM, Robert Raszuk <robert@raszuk.net> wrote: > > Please let operators worry about their own filtering policies (or lack >> thereof) and leave such recommendations to the BCP/GROW document. >> > This is IETF WG and I find such comment inappropriate. This discussion is > about extending BGP protocol and we all should be worried how to apply > effective policy on something which is being defined here. > > So triggered by the above let me ask a very simple question. You and > others expressed very clearly that LCs should traverse N-ASes and be > executed somewhere remotely. Great. > > Let's also assume that you talk to everyone in the path and convince them > to let your LC go through. > This is not how communities (large or RFC1997) work, generally. The general flow of BGP announcements is; originator -> (0 or more transit hops "upward" toward the DFZ) -> (across 0 or 1 peering connections) -> (0 or more hops "downward" from provider to customer, away from the DFZ) When flowing "upward", if communities are sent, the are generally propagated. AS hops in the middle may add additional communities (large or RFC1997 or both). When crossing a "peer" connection, some filtering and/or evaluation may occur, on either the sending side or the receiving side, or both. When flowing "downward", whether communities are sent AT ALL is typically a local configuration thing, but if they are sent, typically they are sent unmodified. Other than local agreements between peers, or between transit providers and their customers, NO TALKING OCCURS, and it is unreasonable and unscalable to assume or require that activity. > > Question: > > If you choose to inject LC in the format TARGET_ASN:ACTION:PARAMETER based > on what field is anyone in the BGP propagation path supposed to let's your > LCs go and stop all other 1000s of LCs injected by anyone else ? > (I assume you meant "stomp" not stop.) Based on no field. Everyone in the BGP propagation path is expected to pass it or not, based only on local policy for the incoming or outgoing peering session, and NOT BASED ON THE LC. The exception is when the local ASN of the particular BGP hop, is the TARGET_ASN. The decision by any ASN will generally be one of: - I don't send communities to neighbor X (where X can be upstream transit, downstream client, or peer), so I strip ALL communities (or more correctly, don't send the communities) - I do send communities to neighbor Y (and pass the communities untouched, or with an injection of my own set of configured communities per local policies) - I am TARGET_ASN, and do something special to the specific LC that starts with TARGET_ASN, but DO NOT touch any other LC's attached to the prefix LC are transitive, opaque, and additive; injecting an LC does not "stomp" on any other LC in the sequence of LCs. There is a possibility that the number of LCs exceed the capacity of the UPDATE, in which case something has to happen according to the general RFCs dictating error handling for this prefix. The AS_PATH or AS4_PATH observed on the internet (excluding AS-path padding via AS prepends) is typically on the order of 4-10, including the up, peer, and down hops. This does not reach "1000s", as those are per-prefix counts. > > Today RFC1997 don't go far as they have no way to apply per their > originator permit or deny statements. > Correct, and that is all that is being asked here - parity with RFC1997. There is no requirement or demand for originator -anything-. Brian
- [Idr] WG LC on draft-ietf-idr-large-community-03.… Susan Hares
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Peter Hessler
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Christopher Morrow
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Jeffrey Haas
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Dickinson, Ian
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Jeff Tantsura
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Wesley George
- Re: [Idr] WG LC on draft-ietf-idr-large-community… heasley
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Job Snijders
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Jeffrey Haas
- Re: [Idr] WG LC on draft-ietf-idr-large-community… t.petch
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Jeffrey Haas
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Jakob Heitz (jheitz)
- Re: [Idr] WG LC on draft-ietf-idr-large-community… David Farmer
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Jeffrey Haas
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Jared Mauch
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Brian Dickson
- Re: [Idr] WG LC on draft-ietf-idr-large-community… David Farmer
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Nick Hilliard
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Jeffrey Haas
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Nick Hilliard
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Jeffrey Haas
- Re: [Idr] WG LC on draft-ietf-idr-large-community… David Farmer
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Robert Raszuk
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Brian Dickson
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Robert Raszuk
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Brian Dickson
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Mikael Abrahamsson
- Re: [Idr] WG LC on draft-ietf-idr-large-community… t.petch
- Re: [Idr] WG LC on draft-ietf-idr-large-community… t.petch
- Re: [Idr] WG LC on draft-ietf-idr-large-community… t.petch
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Mikael Abrahamsson
- Re: [Idr] WG LC on draft-ietf-idr-large-community… bruno.decraene
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Job Snijders
- Re: [Idr] WG LC on draft-ietf-idr-large-community… bruno.decraene
- Re: [Idr] WG LC on draft-ietf-idr-large-community… bruno.decraene
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Job Snijders
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Jeffrey Haas
- Re: [Idr] WG LC on draft-ietf-idr-large-community… t.petch
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Peter Hessler
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Job Snijders
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Job Snijders
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Job Snijders
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Job Snijders
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Job Snijders
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Job Snijders
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Job Snijders
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Jakob Heitz (jheitz)
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Job Snijders
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Jakob Heitz (jheitz)
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Jakob Heitz (jheitz)
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Brian Dickson
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Jakob Heitz (jheitz)
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Brian Dickson
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Jakob Heitz (jheitz)
- Re: [Idr] WG LC on draft-ietf-idr-large-community… t.petch
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Adam Chappell
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Jared Mauch
- Re: [Idr] WG LC on draft-ietf-idr-large-community… i3D.net - Martijn Schmidt
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Robert Raszuk
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Peter Hessler
- Re: [Idr] WG LC on draft-ietf-idr-large-community… heasley
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Robert Raszuk
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Peter Hessler
- Re: [Idr] WG LC on draft-ietf-idr-large-community… i3D.net - Martijn Schmidt
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Robert Raszuk
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Job Snijders
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Robert Raszuk
- Re: [Idr] WG LC on draft-ietf-idr-large-community… i3D.net - Martijn Schmidt
- Re: [Idr] WG LC on draft-ietf-idr-large-community… i3D.net - Martijn Schmidt
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Robert Raszuk
- Re: [Idr] WG LC on draft-ietf-idr-large-community… i3D.net - Martijn Schmidt
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Robert Raszuk
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Brian Dickson
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Paul Jakma
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Brian Dickson
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Julian Seifert
- Re: [Idr] WG LC on draft-ietf-idr-large-community… i3D.net - Martijn Schmidt
- Re: [Idr] WG LC on draft-ietf-idr-large-community… i3D.net - Martijn Schmidt
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Gert Doering
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Gert Doering
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Robert Raszuk
- Re: [Idr] WG LC on draft-ietf-idr-large-community… John Scudder
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Robert Raszuk
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Richard Hartmann
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Brian Dickson
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Joe Provo
- Re: [Idr] WG LC on draft-ietf-idr-large-community… John G. Scudder
- Re: [Idr] WG LC on draft-ietf-idr-large-community… marco
- Re: [Idr] WG LC on draft-ietf-idr-large-community… heasley
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Robert Raszuk
- Re: [Idr] WG LC on draft-ietf-idr-large-community… heasley
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Jakob Heitz (jheitz)
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Brian Dickson
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Nick Hilliard
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Richard A Steenbergen
- Re: [Idr] WG LC on draft-ietf-idr-large-community… t.petch
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Brian Dickson
- Re: [Idr] WG LC on draft-ietf-idr-large-community… David Farmer
- Re: [Idr] WG LC on draft-ietf-idr-large-community… Nick Hilliard
- Re: [Idr] WG LC on draft-ietf-idr-large-community… John G. Scudder