Re: [Idr] Review of draft-ietf-idr-error-handling-18
"Alvaro Retana (aretana)" <aretana@cisco.com> Fri, 13 March 2015 22:35 UTC
Return-Path: <aretana@cisco.com>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CC9EE1A872A; Fri, 13 Mar 2015 15:35:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -13.911
X-Spam-Level:
X-Spam-Status: No, score=-13.911 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, J_CHICKENPOX_31=0.6, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RRBLj48A1ycE; Fri, 13 Mar 2015 15:35:51 -0700 (PDT)
Received: from alln-iport-4.cisco.com (alln-iport-4.cisco.com [173.37.142.91]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1EDCE1A0217; Fri, 13 Mar 2015 15:35:51 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=1799; q=dns/txt; s=iport; t=1426286151; x=1427495751; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-id:content-transfer-encoding: mime-version; bh=UX4kCY2Pn9szfnY4VPhFFvvlxccp+c9q9MUyPoMN5ws=; b=XGLbtmBFfJ1WlNJi2orYe8ZzSRI78oZq9IsT3LsMFt7SfIMJvqmumydT QWn+WGHD6zye9yrVIwJJZpZvL7ySdRYFy+yq2hRZnzHUqvvWRSNJKHdDB 4dwa5c8EupLQH7DsG0rlnRSsEIlAlOWe8yJ5M4/8JPJSziWZIGOeTfSjo M=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0A8BQBxZQNV/4gNJK1bgwaBLATJbwKBLkwBAQEBAQF9hBABAQR5EAIBCA4KLjIlAgQOBR+IEM5WAQEBAQEBAQMBAQEBAQEBG4sXhD4zB4QtAQSKUYNcggiJZYEajAmGbCODbm+BAgY8fwEBAQ
X-IronPort-AV: E=Sophos;i="5.11,397,1422921600"; d="scan'208";a="131896527"
Received: from alln-core-3.cisco.com ([173.36.13.136]) by alln-iport-4.cisco.com with ESMTP; 13 Mar 2015 22:35:50 +0000
Received: from xhc-rcd-x05.cisco.com (xhc-rcd-x05.cisco.com [173.37.183.79]) by alln-core-3.cisco.com (8.14.5/8.14.5) with ESMTP id t2DMZo6s016522 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL); Fri, 13 Mar 2015 22:35:50 GMT
Received: from xmb-aln-x15.cisco.com ([169.254.9.38]) by xhc-rcd-x05.cisco.com ([173.37.183.79]) with mapi id 14.03.0195.001; Fri, 13 Mar 2015 17:35:50 -0500
From: "Alvaro Retana (aretana)" <aretana@cisco.com>
To: Jeffrey Haas <jhaas@pfrc.org>
Thread-Topic: [Idr] Review of draft-ietf-idr-error-handling-18
Thread-Index: AQHQWpDLKAsEqqfj4UCra5AsX2rR050a5seA///+qAA=
Date: Fri, 13 Mar 2015 22:35:49 +0000
Message-ID: <D128B248.9B000%aretana@cisco.com>
References: <D1235488.9A4A0%aretana@cisco.com> <20150313154035.GD6431@pfrc>
In-Reply-To: <20150313154035.GD6431@pfrc>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.24.2.197]
Content-Type: text/plain; charset="iso-8859-1"
Content-ID: <7B3F807755921842BA6E5CEB76A44A8A@emea.cisco.com>
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Archived-At: <http://mailarchive.ietf.org/arch/msg/idr/gauyLRC8ke0i7GOz4CbF4pKncNk>
Cc: "idr@ietf.org" <idr@ietf.org>, "draft-ietf-idr-error-handling.all@ietf.org" <draft-ietf-idr-error-handling.all@ietf.org>, "rob.shakir@bt.com" <rob.shakir@bt.com>, "idr-chairs@ietf.org" <idr-chairs@ietf.org>
Subject: Re: [Idr] Review of draft-ietf-idr-error-handling-18
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 13 Mar 2015 22:35:53 -0000
On 3/13/15, 8:40 AM, "Jeffrey Haas" <jhaas@pfrc.org> wrote: Jeff: Hi! >On Mon, Mar 09, 2015 at 05:45:13PM +0000, Alvaro Retana (aretana) wrote: >> 5. Security Considerations (Section 10). It is true that malformed >>optional transitive attributes should not cause remote session resets. >>Are remote withdrawals a new threat? Following the logic in the >>introduction, an update with a malformed optional transitive attribute >>may not be properly checked for several hops..but once the error is >>detected then the NLRI may use Treat-as-withdraw.. Assuming an AS-level >>granularity in checking, this won?t cause loops or major disruptions, >>but nonetheless it can result in not everyone receiving the information >>it should.. > >I'm not sure one can really stretch this point to be an attack vector. >Normal BGP operational policy permits an operator to advertise or not a >given prefix. If an upstream injects malformed information and some >subset >of routers are capable of announcing it and others are not the issue >remains >that the upstream reachability is invalid. The inability to advertise (or receive) a prefix because of malformed information is not normal BGP operational policy. That¹s all I¹m pointing to: the local ability to advertise/receive is dictated by someone else (the upstream)..which may result in a different transit or just simply not having reachability what should be present. As I mentioned in another e-mail, not all prefixes are made the same. Yes, I realize that all this depends on that upstream (I would even call it an attacker) knowing what will happen potentially several hops downstream.. The odds are obviously reduced as sw is hardened, people implement this document, etc. Thanks! Alvaro.
- [Idr] Review of draft-ietf-idr-error-handling-18 Alvaro Retana (aretana)
- Re: [Idr] Review of draft-ietf-idr-error-handling… Jeffrey Haas
- Re: [Idr] Review of draft-ietf-idr-error-handling… Alvaro Retana (aretana)