[Int-area] Where to aggregate, where to drop
Dino Farinacci <farinacci@gmail.com> Fri, 01 April 2022 21:06 UTC
Return-Path: <farinacci@gmail.com>
X-Original-To: int-area@ietfa.amsl.com
Delivered-To: int-area@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 37CE33A08CE for <int-area@ietfa.amsl.com>; Fri, 1 Apr 2022 14:06:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.108
X-Spam-Level:
X-Spam-Status: No, score=-2.108 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id W_FhCxfTswZW for <int-area@ietfa.amsl.com>; Fri, 1 Apr 2022 14:06:05 -0700 (PDT)
Received: from mail-pj1-x102b.google.com (mail-pj1-x102b.google.com [IPv6:2607:f8b0:4864:20::102b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6D7333A08BE for <int-area@ietf.org>; Fri, 1 Apr 2022 14:06:05 -0700 (PDT)
Received: by mail-pj1-x102b.google.com with SMTP id bx24-20020a17090af49800b001c6872a9e4eso3603230pjb.5 for <int-area@ietf.org>; Fri, 01 Apr 2022 14:06:05 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=from:mime-version:subject:message-id:date:to; bh=Q/aNogTIoruJEifzRaOD46XZoAZJyRZEskEGrR4f7sA=; b=eZ82pEHy/NcXAw2CrvcQueDRW1DIL9f4zuHBNVExWzUvrZH+hHEsybLV3/gAD4mqWz H0qyEHC9QlZ6Z4XuyKLuIi5f65Y+OpwB0LfKQyaHZqFlN7yqUFr0OZ1s+WOgVIOhZRKG pFQom2Hrh7qgFwX1Dj/LOvyUPLSoNXvZOW0TG2XLs2S4GYJsMkd1n73cTlCfz9f3LlnC z6YVNE+VqmfZXoOMOKSythf785g2xt9PkFs4fQdX2BguRL3OT9NNOM3Xsz8ZG1EsKqYP CTTh0OaSRNM9UA7OR26fFhctREyopFEVbBqAk9lJc7T25SPI4sTgIvkYz4+7gAjCNHsC QTSg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:from:mime-version:subject:message-id:date:to; bh=Q/aNogTIoruJEifzRaOD46XZoAZJyRZEskEGrR4f7sA=; b=4cHoO8a6MWfkjpIQDc6JJzKeoAsxcIl5BzlbmKGNVlvvFRYi4MTDZAm3GliOXktfpu z4Bumub5CoAeybISMZt86Kny0AhbuRElRKhRf8uuYEgLJtPXonyqFqErYa0Ud4qS1DJY QB2xu8Tl1d5LBivjSzr7iqP4M9oi9s1s9VbXkUGurwy1LzfPJrCLNyJtiQ+qaCyj07iX ySFoji8gs73jMA0VAglpv8j44BhBDiyQAtYiAhBYOsz71UDxNTuXKAZZqjNO3/BX5BSD 4wtAoiqzqDuwCUqsN4W43+cBTW2arBZbvkzorcnP8itkRCfwmLVl+O+CL9snxMjWxc8q 3dtA==
X-Gm-Message-State: AOAM530G6BsTytV00RpsAHrFhr3iPD8mjKoYRFq2YNqfk2J1wn/ECnYv o3giIP8wFjMDVCjY+U2S3XctTTEoNL0=
X-Google-Smtp-Source: ABdhPJzsKkC/U3zqnjEq1223W5OBQ0ZsMna0dGuyJdkrvIAThrFzeGZf68ndT1wN1A+8kKa/8j9SBg==
X-Received: by 2002:a17:902:db0e:b0:154:8682:c1db with SMTP id m14-20020a170902db0e00b001548682c1dbmr11904895plx.128.1648847163690; Fri, 01 Apr 2022 14:06:03 -0700 (PDT)
Received: from smtpclient.apple (c-98-234-33-188.hsd1.ca.comcast.net. [98.234.33.188]) by smtp.gmail.com with ESMTPSA id m15-20020a638c0f000000b003827bfe1f5csm3208091pgd.7.2022.04.01.14.06.01 for <int-area@ietf.org> (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Fri, 01 Apr 2022 14:06:02 -0700 (PDT)
From: Dino Farinacci <farinacci@gmail.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_52FD9CF1-5B05-4DFC-A420-ADE611BF5F5A"
Mime-Version: 1.0 (Mac OS X Mail 15.0 \(3693.60.0.1.1\))
Message-Id: <D9CC0098-7D52-4E91-B154-41BCA59DC82A@gmail.com>
Date: Fri, 01 Apr 2022 14:06:00 -0700
To: int-area <int-area@ietf.org>
X-Mailer: Apple Mail (2.3693.60.0.1.1)
Archived-At: <https://mailarchive.ietf.org/arch/msg/int-area/BqYfUrwcXpdVHNdpM-YxsX0MJ0o>
Subject: [Int-area] Where to aggregate, where to drop
X-BeenThere: int-area@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF Internet Area WG Mailing List <int-area.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/int-area>, <mailto:int-area-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/int-area/>
List-Post: <mailto:int-area@ietf.org>
List-Help: <mailto:int-area-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/int-area>, <mailto:int-area-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 01 Apr 2022 21:06:09 -0000
Tony, sorry for the delay on this. Thanks for your patience and for poking me about it. For the list, I had a question about Tony bringing up *where* to do proxy aggregation and what the tradeoffs are. I asked a question about having a discussion about it. Lets use his slide below for reference to list the tradeoffs. When a provider proxy aggregates, it means they will summarized more specific routes they have stored in their routing table. Like ISP-A above has routes P.1, P.2, and P.3. When ISP-A advertises a P prefix, it is indicating it can reach all more specifics, even though it may not have a full-set of those more specifics that are covered by P. So here are the options: (1) ISP-A advertises P to ISP-B (and may also advertise more specifics to other peers for policy reasons). (2) ISP-A advertises P.1, P.2, and P.3 to ISP-B and ISP-B advertises P to its peers. The questions is *where is the best place to aggregate*. Its a tradeoff on routing table savings and how far a packet can travel to either (1) get delivered to the destination or (2) get dropped by a router that doesn't have a more-specific for the destination (thereby wasting resources from the source to the drop point). (1) If ISP-B aggregates P to the links you see above to stub peers, then the stubs can load-split on P and ISP-B can drop packets for say P.4 and deliver packets for P.3. The drop can happen at the PE router relatively soon. (2) If ISP-B gets P from ISP-A and advertises to the links you see above to stub peers, then P.3 and P.4 packets move through ISP-B where the edge router in ISP-A delivers to P.3 and drops for P.4. All things not considered and looking at this specific topology, I would vote for (1). Another issue, which I think Tony brought up is, if P gets sent to peers, hijackers have a better opportunity to hijack routes by injecting more-specifics to direct traffic to a bad acting honey pot. This has been known for a long time though so we are not bringing up a new issue. Another question is, if all more-specfics are not stored (due to major link failure), is the aggregate withdrawn from the routing system. That is, if you want less route flapping, you may just want to keep P advertised. That optimizes FIB add/delete entropy everywhere that wants to store P. I would rather have hardware routers drop packets fast, then to have route oscillation. Comments? Thanks, Dino
- [Int-area] Where to aggregate, where to drop Dino Farinacci
- Re: [Int-area] Where to aggregate, where to drop Tony Li
- Re: [Int-area] Where to aggregate, where to drop Dino Farinacci
- Re: [Int-area] Where to aggregate, where to drop Tony Li
- Re: [Int-area] Where to aggregate, where to drop Dino Farinacci
- Re: [Int-area] Where to aggregate, where to drop Tony Li
- Re: [Int-area] Where to aggregate, where to drop Dino Farinacci
- Re: [Int-area] Where to aggregate, where to drop Tony Li