Re: [Idr] draft-ymbk-sidrops-rov-no-rr
Robert Raszuk <robert@raszuk.net> Mon, 15 November 2021 18:43 UTC
Return-Path: <robert@raszuk.net>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A9B6D3A0798 for <idr@ietfa.amsl.com>; Mon, 15 Nov 2021 10:43:42 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=raszuk.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qtVHBzgwE_O4 for <idr@ietfa.amsl.com>; Mon, 15 Nov 2021 10:43:37 -0800 (PST)
Received: from mail-ua1-x935.google.com (mail-ua1-x935.google.com [IPv6:2607:f8b0:4864:20::935]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 694A03A0A4A for <idr@ietf.org>; Mon, 15 Nov 2021 10:43:17 -0800 (PST)
Received: by mail-ua1-x935.google.com with SMTP id w23so14019765uao.5 for <idr@ietf.org>; Mon, 15 Nov 2021 10:43:17 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=raszuk.net; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=/PhPCCbgKNYs18VABjXZFICM7q4uYDxG0eU3AOTKcB8=; b=awER98IuhLfNTmKgOVScz31riguxsRAv1jyf/3k/oJwZvBVNszE+CVwieku48c2kiA tkjEB9SaUFliyJogIcU2+BA/h4qYonJNDYItLp0T38DFPf3P37I/wKrsE2B3rwRiFbNb NqW7cIdjUp5vDLNj4PBgrtcZIVsgBcxn8DL9coC5QoqylVQOPHCpQ1Nc4w1hNDNm8D7K atexEyQR2w1kDI7Ojdbjh1L/az1682fMGnx7+ae3ia86F21JtOKYV3hNuB8Sw5//B9GD UTvig4QQCWDPtafYlwwBV6yeSXIGiok9D5jL7j+AeeCKwFc+n3H+2VDVeMgkK6wu/SNG fb4g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=/PhPCCbgKNYs18VABjXZFICM7q4uYDxG0eU3AOTKcB8=; b=swUwqaSt/uUBPeaJD7+9lyHP8Ji9rb1Rh/xU4dtF3gfuuZVQNeNXnQXTIJJVUMRfoq 3TNk6pmRoYZYEet+f9VgwSY/uxrAxoEcu7Xv4Q8T1QrJm9tsWVZMmmGuP5Dj+gbMOSbU QOhSvJd8jVspxidY7/tpKGzPKLCVriXKRhEtKNtLEq1wMPi9WP7czrW3xLYhQ30g4zRL RKg88xuSjKimuUxgcu5Yfjj/ls248vsmqm53Yx4oA6j0WbdRgfSZ/YUIY0F0iWYO7+pw sshb/dawPfqxNF+0DG8fKFHrLoBEHa9GsI1rt9Rs8Y9m/BhhMZNbRITHpvhNQ5cVeXMz Pzrw==
X-Gm-Message-State: AOAM5331hIkPujH2v2ITxB65vjMEoBqOZoRCx1vhYkgicuB0R6IWKkak osgA7HcBQNThxuWac79xBie5id5M/5WWJfopUOYO3I4CJgo=
X-Google-Smtp-Source: ABdhPJyiTsrrZT28/cgRxZDZTiMjuQo+6cQVEp4OFl06w+bGqJzAWM4YnzwZz7syuJ9VXn5x9DdvKaT3jqkF0d/GZLQ=
X-Received: by 2002:a05:6102:b13:: with SMTP id b19mr46446850vst.1.1637001795499; Mon, 15 Nov 2021 10:43:15 -0800 (PST)
MIME-Version: 1.0
References: <E1mmcrF-0007bA-27@ran.psg.com> <m28rxptrw8.wl-randy@psg.com> <CAOj+MMHUZ26KTQje5ZO0wVubHMfvvb3QwZZm_x+TmTpTChdUdw@mail.gmail.com> <YZKpVnY/EORywfIQ@Space.Net>
In-Reply-To: <YZKpVnY/EORywfIQ@Space.Net>
From: Robert Raszuk <robert@raszuk.net>
Date: Mon, 15 Nov 2021 19:43:04 +0100
Message-ID: <CAOj+MMF+2rg69pLzR=xuK=yRKwKr1ochSzfOgYmV2-e5amZOgw@mail.gmail.com>
To: Gert Doering <gert@space.net>
Cc: Randy Bush <randy@psg.com>, "idr@ietf. org" <idr@ietf.org>
Content-Type: multipart/alternative; boundary="00000000000084913905d0d82ec2"
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/tHeIilHVA0PgUyRY7MffUCekTIc>
Subject: Re: [Idr] draft-ymbk-sidrops-rov-no-rr
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 15 Nov 2021 18:43:43 -0000
Ok I buy this line of thinking/explanation ... But what still bothers me is the root cause stating that BGP speaker can not have few extra MB of RAM to keep peer's full advertisement yet we want to run RPKI Origin Validation on it. Thx, R. On Mon, Nov 15, 2021 at 7:39 PM Gert Doering <gert@space.net> wrote: > Hi, > > On Mon, Nov 15, 2021 at 03:45:05PM +0100, Robert Raszuk wrote: > > When RPKI data cause one or more paths to be dropped, withdrawn, or > > merely not chosn as best path due to RPKI-based policy (ROV, ASPA, > > etc.), those paths MUST be saved and marked so that later VRPs can > > reevaluate them against then current policy. > > > > > > And how about the case when we have an inbound policy and today RPKI says > > this is a VALID path. Well tomorrow it may say it is INVALID for zoo of > > reasons. So the above paragraph no longer covers those cases as those > VALID > > today would not be per the above definition (specified in section 4) in > its > > original format kept in the Adj-Rib-In. > > Those prefixes that are accepted "today" (for whatever RPKI status) are > not the problematic ones - those are already there, to be re-evaluated if > needed. > > Problematic is the stuff that the router forgot about, and now needs to > re-evaluate - without "soft in always", a route refresh is needed, which > is costly if the RTR database changes often. > > So, yes, I support this draft. Need to move over and subscribe there :-) > > Gert Doering > -- NetMaster > -- > have you enabled IPv6 on something today...? > > SpaceNet AG Vorstand: Sebastian v. Bomhard, Michael > Emmer > Joseph-Dollinger-Bogen 14 Aufsichtsratsvors.: A. Grundner-Culemann > D-80807 Muenchen HRB: 136055 (AG Muenchen) > Tel: +49 (0)89/32356-444 USt-IdNr.: DE813185279 >
- [Idr] draft-ymbk-sidrops-rov-no-rr Randy Bush
- Re: [Idr] draft-ymbk-sidrops-rov-no-rr Robert Raszuk
- Re: [Idr] draft-ymbk-sidrops-rov-no-rr Jeff Tantsura
- Re: [Idr] draft-ymbk-sidrops-rov-no-rr Robert Raszuk
- Re: [Idr] draft-ymbk-sidrops-rov-no-rr Gert Doering
- Re: [Idr] draft-ymbk-sidrops-rov-no-rr Job Snijders
- Re: [Idr] draft-ymbk-sidrops-rov-no-rr Robert Raszuk
- Re: [Idr] draft-ymbk-sidrops-rov-no-rr Robert Raszuk
- Re: [Idr] draft-ymbk-sidrops-rov-no-rr Gert Doering
- Re: [Idr] draft-ymbk-sidrops-rov-no-rr Randy Bush
- Re: [Idr] draft-ymbk-sidrops-rov-no-rr Randy Bush
- Re: [Idr] draft-ymbk-sidrops-rov-no-rr Robert Raszuk
- Re: [Idr] draft-ymbk-sidrops-rov-no-rr Randy Bush
- Re: [Idr] draft-ymbk-sidrops-rov-no-rr Jeffrey Haas
- Re: [Idr] draft-ymbk-sidrops-rov-no-rr Job Snijders
- Re: [Idr] draft-ymbk-sidrops-rov-no-rr Randy Bush
- Re: [Idr] draft-ymbk-sidrops-rov-no-rr Jeffrey Haas
- Re: [Idr] draft-ymbk-sidrops-rov-no-rr Job Snijders
- Re: [Idr] draft-ymbk-sidrops-rov-no-rr Robert Raszuk
- Re: [Idr] draft-ymbk-sidrops-rov-no-rr Jeffrey Haas
- Re: [Idr] draft-ymbk-sidrops-rov-no-rr Job Snijders