IETF Logo Mail Archive

Re: [Idr] update proposal to draft-ietf-idr-rfc5575bis-14

Jeffrey Haas <jhaas@pfrc.org> Wed, 15 May 2019 21:11 UTC

Return-Path: <jhaas@slice.pfrc.org>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5265D1200FE for <idr@ietfa.amsl.com>; Wed, 15 May 2019 14:11:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id i5ikcU9IC6Jz for <idr@ietfa.amsl.com>; Wed, 15 May 2019 14:11:50 -0700 (PDT)
Received: from slice.pfrc.org (slice.pfrc.org [67.207.130.108]) by ietfa.amsl.com (Postfix) with ESMTP id 42ABA1200FB for <idr@ietf.org>; Wed, 15 May 2019 14:11:50 -0700 (PDT)
Received: by slice.pfrc.org (Postfix, from userid 1001) id BBA321E2D8; Wed, 15 May 2019 17:12:20 -0400 (EDT)
Date: Wed, 15 May 2019 17:12:20 -0400
From: Jeffrey Haas <jhaas@pfrc.org>
To: ERCIN TORUN <ercin.torun@turkcell.com.tr>
Cc: "idr@ietf.org" <idr@ietf.org>
Message-ID: <20190515211220.GC2207@pfrc.org>
References: <d0255cf9976644d7a29b11f2fc68fa98@turkcell.com.tr>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
In-Reply-To: <d0255cf9976644d7a29b11f2fc68fa98@turkcell.com.tr>
User-Agent: Mutt/1.5.21 (2010-09-15)
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/d2NBA41bWPARZrjmHIoRAOcH_W8>
Subject: Re: [Idr] update proposal to draft-ietf-idr-rfc5575bis-14
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 15 May 2019 21:11:52 -0000

Erçin,

On Thu, May 09, 2019 at 12:02:42PM +0000, ERCIN TORUN wrote:
> Hello All,
> 
> My name is Ercin TORUN<https://tr.linkedin.com/in/ercintorun> and I’m working in Turkcell Turkey (35M-mobile/2M-fixed customer, +digital services) as an IP/MPLS Network Planning Engineer.  I would like to propose an update to draft-ietf-idr-rfc5575bis-14<https://tools.ietf.org/html/draft-ietf-idr-rfc5575bis-14>.
> 
> By default all flowspec entries (filters..) are applied to all routers, and unnecessary application of many filters can easily owerwhelm the capacity of routers resources (e.g. TCAM). We are pushing layer3 to the edges with solutions like seamless-mpls or leaf-spine next-generation DC topologies which widens the layer3 domain easily over thousands of devices. It is best to filter “dirty” traffic where it first enters a network. There are ways to accept BGP announcements only on the targeted router, like defining a community for each router and configuring policies, but an automated way would be much more easier and less error-prone. Our idea is using a route-taget to match with BGP Identifier so that only the targeted router might accept the announcement.

You may find the following draft (expired - sorry... we need to fix it) of
interest:

https://tools.ietf.org/html/draft-ietf-idr-flowspec-interfaceset-04

-- Jeff

v2.23.0 | Report a Bug | By Email