[Idr] Keyur's question -- draft-sriram-idr-route-leak-detection-mitigation
"Sriram, Kotikalapudi" <kotikalapudi.sriram@nist.gov> Wed, 25 March 2015 23:53 UTC
Return-Path: <kotikalapudi.sriram@nist.gov>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A9B1F1A87A4 for <idr@ietfa.amsl.com>; Wed, 25 Mar 2015 16:53:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.902
X-Spam-Level:
X-Spam-Status: No, score=-1.902 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id T-eQspQoIWie for <idr@ietfa.amsl.com>; Wed, 25 Mar 2015 16:53:05 -0700 (PDT)
Received: from na01-by2-obe.outbound.protection.outlook.com (mail-by2on0143.outbound.protection.outlook.com [207.46.100.143]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 954C41A7017 for <idr@ietf.org>; Wed, 25 Mar 2015 16:52:59 -0700 (PDT)
Received: from DM2PR09MB0302.namprd09.prod.outlook.com (25.160.96.147) by DM2PR09MB0302.namprd09.prod.outlook.com (25.160.96.147) with Microsoft SMTP Server (TLS) id 15.1.118.21; Wed, 25 Mar 2015 23:52:58 +0000
Received: from DM2PR09MB0302.namprd09.prod.outlook.com ([25.160.96.147]) by DM2PR09MB0302.namprd09.prod.outlook.com ([25.160.96.147]) with mapi id 15.01.0118.022; Wed, 25 Mar 2015 23:52:58 +0000
From: "Sriram, Kotikalapudi" <kotikalapudi.sriram@nist.gov>
To: "idr@ietf.org" <idr@ietf.org>
Thread-Topic: Keyur's question -- draft-sriram-idr-route-leak-detection-mitigation
Thread-Index: AQHQZ1bRHfhygyu980qTB9I2Y8Bktw==
Date: Wed, 25 Mar 2015 23:52:57 +0000
Message-ID: <1427327576605.11421@nist.gov>
References: <mailman.178.1427310035.14341.idr@ietf.org>
In-Reply-To: <mailman.178.1427310035.14341.idr@ietf.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [129.6.223.238]
authentication-results: ietf.org; dkim=none (message not signed) header.d=none;
x-microsoft-antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:DM2PR09MB0302;
x-forefront-antispam-report: BMV:1; SFV:NSPM; SFS:(10019020)(6009001)(561944003)(87936001)(2656002)(86362001)(66066001)(99286002)(102836002)(110136001)(92566002)(117636001)(2900100001)(46102003)(40100003)(2950100001)(122556002)(230783001)(106116001)(62966003)(77156002)(2501003)(76176999)(107886001)(50986999)(54356999)(2351001)(450100001)(36756003)(229853001); DIR:OUT; SFP:1102; SCL:1; SRVR:DM2PR09MB0302; H:DM2PR09MB0302.namprd09.prod.outlook.com; FPR:; SPF:None; MLV:sfv; LANG:en;
x-microsoft-antispam-prvs: <DM2PR09MB03023225B9B2DF1B2E8C7B63840B0@DM2PR09MB0302.namprd09.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:;
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(601004)(5002010)(5005006); SRVR:DM2PR09MB0302; BCL:0; PCL:0; RULEID:; SRVR:DM2PR09MB0302;
x-forefront-prvs: 052670E5A4
Content-Type: text/plain; charset="Windows-1252"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: nist.gov
X-MS-Exchange-CrossTenant-originalarrivaltime: 25 Mar 2015 23:52:57.4166 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 2ab5d82f-d8fa-4797-a93e-054655c61dec
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM2PR09MB0302
Archived-At: <http://mailarchive.ietf.org/arch/msg/idr/lEuhsAIjYzSULLfvVHrKCAHkb8A>
Subject: [Idr] Keyur's question -- draft-sriram-idr-route-leak-detection-mitigation
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 25 Mar 2015 23:53:06 -0000
Posting this message on the list per Sue’s request. Keyur asked a question about the proposed solution at the mike during my presentation yesterday. I spoke with him afterwards to fully understand his question/suggestion. As I understand now, his question is: Is it possible to augment your route-leak solution with another solution that is based on AS path filtering? This should be especially easy for ISPs that have only stub AS customers. My answer: Using a combination of different approaches makes sense. Also, in cases when the ISP has a complete and accurate view of its customer cone (CC), then also the AS path filtering can be applied for the set of ASes in the CC (by the ISP’s customer facing routers). The draft does present a stopgap solution in the form of construction of a customer-cone prefix filter list from ROAs (when RPKI is in a mature state). For ISPs to have an accurate picture of their CCs is easier when closer to the edges of the Internet, but much harder for the ISPs in the middle or at the top. Keyur also mentioned about the possibility of augmenting the RLP indicator based proposal with the use of AS path based Outbound Router Filter (ORF). This needs further discussion. Sriram
- [Idr] Keyur's question -- draft-sriram-idr-route-… Sriram, Kotikalapudi