IETF Logo Mail Archive

Re: [OPSEC] Start of 2nd WGLC for draft-ietf-opsec-bgp-security

Ronald Bonica <rbonica@juniper.net> Wed, 16 April 2014 14:51 UTC

Return-Path: <rbonica@juniper.net>
X-Original-To: opsec@ietfa.amsl.com
Delivered-To: opsec@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7593F1A01D6 for <opsec@ietfa.amsl.com>; Wed, 16 Apr 2014 07:51:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -104.2
X-Spam-Level:
X-Spam-Status: No, score=-104.2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, USER_IN_WHITELIST=-100] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UMovVWdzRpEv for <opsec@ietfa.amsl.com>; Wed, 16 Apr 2014 07:51:19 -0700 (PDT)
Received: from co9outboundpool.messaging.microsoft.com (co9ehsobe004.messaging.microsoft.com [207.46.163.27]) by ietfa.amsl.com (Postfix) with ESMTP id 99B9A1A01C0 for <opsec@ietf.org>; Wed, 16 Apr 2014 07:51:19 -0700 (PDT)
Received: from mail169-co9-R.bigfish.com (10.236.132.246) by CO9EHSOBE017.bigfish.com (10.236.130.80) with Microsoft SMTP Server id 14.1.225.22; Wed, 16 Apr 2014 14:50:35 +0000
Received: from mail169-co9 (localhost [127.0.0.1]) by mail169-co9-R.bigfish.com (Postfix) with ESMTP id D9C852405DC; Wed, 16 Apr 2014 14:50:34 +0000 (UTC)
X-Forefront-Antispam-Report: CIP:157.56.240.101; KIP:(null); UIP:(null); IPV:NLI; H:BL2PRD0510HT002.namprd05.prod.outlook.com; RD:none; EFVD:NLI
X-SpamScore: -20
X-BigFish: VPS-20(zz9371Ic85fh4015Izz1f42h2148h1ee6h1de0h1fdah2073h2146h1202h1e76h2189h1d1ah1d2ah21bch1fc6h208chzz1d7338h1de098h1033IL17326ah8275bh8275dh18c673h1de097h186068hz2fh109h2a8h839hd24hf0ah1288h12a5h12bdh137ah1441h1504h1537h153bh162dh1631h1758h18e1h1946h19b5h19ceh1ad9h1b0ah1bceh224fh1d07h1d0ch1d2eh1d3fh1de9h1dfeh1dffh1e1dh1fe8h1ff5h20f0h2216h22d0h2336h2461h2487h24d7h2516h2545h255eh25cch25f6h2605h268bh26c8h26d3h9a9j1155h)
Received-SPF: pass (mail169-co9: domain of juniper.net designates 157.56.240.101 as permitted sender) client-ip=157.56.240.101; envelope-from=rbonica@juniper.net; helo=BL2PRD0510HT002.namprd05.prod.outlook.com ; .outlook.com ;
X-Forefront-Antispam-Report-Untrusted: SFV:NSPM; SFS:(10009001)(428001)(199002)(189002)(377454003)(164054003)(74316001)(31966008)(20776003)(19300405004)(83072002)(66066001)(19580395003)(33646001)(80976001)(83322001)(85852003)(19580405001)(80022001)(2656002)(79102001)(4396001)(74502001)(81342001)(87936001)(86362001)(92566001)(16236675002)(46102001)(81542001)(54356999)(76482001)(76176999)(50986999)(15202345003)(74662001)(99396002)(99286001)(76576001)(19609705001)(77982001)(15975445006)(24736002); DIR:OUT; SFP:1101; SCL:1; SRVR:CO1PR05MB443; H:CO1PR05MB442.namprd05.prod.outlook.com; FPR:FCBEF03E.BCE295A3.BDC7BF7F.AEA4930.202FC; MLV:sfv; PTR:InfoNoRecords; A:1; MX:1; LANG:en;
Received: from mail169-co9 (localhost.localdomain [127.0.0.1]) by mail169-co9 (MessageSwitch) id 1397659833667814_3364; Wed, 16 Apr 2014 14:50:33 +0000 (UTC)
Received: from CO9EHSMHS022.bigfish.com (unknown [10.236.132.233]) by mail169-co9.bigfish.com (Postfix) with ESMTP id 98CDCD80063; Wed, 16 Apr 2014 14:50:33 +0000 (UTC)
Received: from BL2PRD0510HT002.namprd05.prod.outlook.com (157.56.240.101) by CO9EHSMHS022.bigfish.com (10.236.130.32) with Microsoft SMTP Server (TLS) id 14.16.227.3; Wed, 16 Apr 2014 14:50:32 +0000
Received: from CO1PR05MB443.namprd05.prod.outlook.com (10.141.73.152) by BL2PRD0510HT002.namprd05.prod.outlook.com (10.255.100.37) with Microsoft SMTP Server (TLS) id 14.16.435.0; Wed, 16 Apr 2014 14:50:59 +0000
Received: from CO1PR05MB442.namprd05.prod.outlook.com (10.141.73.146) by CO1PR05MB443.namprd05.prod.outlook.com (10.141.73.152) with Microsoft SMTP Server (TLS) id 15.0.918.8; Wed, 16 Apr 2014 14:50:57 +0000
Received: from CO1PR05MB442.namprd05.prod.outlook.com ([169.254.13.244]) by CO1PR05MB442.namprd05.prod.outlook.com ([169.254.13.244]) with mapi id 15.00.0918.000; Wed, 16 Apr 2014 14:50:56 +0000
From: Ronald Bonica <rbonica@juniper.net>
To: "Gunter Van de Velde (gvandeve)" <gvandeve@cisco.com>, opsec wg mailing list <opsec@ietf.org>
Thread-Topic: Start of 2nd WGLC for draft-ietf-opsec-bgp-security
Thread-Index: Ac9TCpCty6WW3UV9Rc+t1rBkEBAqQQGX/bdQAAN0kZAAAonwsA==
Date: Wed, 16 Apr 2014 14:50:56 +0000
Message-ID: <cda8642294584887a88ba505424a2c19@CO1PR05MB442.namprd05.prod.outlook.com>
References: <67832B1175062E48926BF3CB27C49B24113958CB@xmb-aln-x12.cisco.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [66.129.241.17]
x-forefront-prvs: 01834E39B7
Content-Type: multipart/alternative; boundary="_000_cda8642294584887a88ba505424a2c19CO1PR05MB442namprd05pro_"
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-FOPE-CONNECTOR: Id%0$Dn%*$RO%0$TLS%0$FQDN%$TlsDn%
Archived-At: http://mailarchive.ietf.org/arch/msg/opsec/EaU9bFz0I6EzGAOm67faDbp806U
Cc: "draft-ietf-opsec-bgp-security@tools.ietf.org" <draft-ietf-opsec-bgp-security@tools.ietf.org>, "kk@dropbox.com" <kk@dropbox.com>
Subject: Re: [OPSEC] Start of 2nd WGLC for draft-ietf-opsec-bgp-security
X-BeenThere: opsec@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: opsec wg mailing list <opsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsec>, <mailto:opsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/opsec/>
List-Post: <mailto:opsec@ietf.org>
List-Help: <mailto:opsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsec>, <mailto:opsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 16 Apr 2014 14:51:23 -0000

Folks,


In Sections 5.1.1.1 and 5.1.1.2, you say, "Only prefixes with value "False" in column "Global" MUST be discarded on Internet BGP peerings."



This statement is mostly true, but I can think of a corner case. Assume that two autonomous systems are cooperating to provide a DS-lite or some similar service. They might agree to co-ordinate assignment of non-global routes and exchange non-global routes with one another.



                                                                                  Ron


From: Ronald Bonica
Sent: Wednesday, April 16, 2014 9:34 AM
To: 'Gunter Van de Velde (gvandeve)'; opsec wg mailing list
Cc: draft-ietf-opsec-bgp-security@tools.ietf.org; kk@dropbox.com
Subject: RE: Start of 2nd WGLC for draft-ietf-opsec-bgp-security

Folks,

This document is very comprehensive and well-written. Kudos to the authors.

However, please take a look at the Forward.

                                                Ron


From: OPSEC [mailto:opsec-bounces@ietf.org] On Behalf Of Gunter Van de Velde (gvandeve)
Sent: Wednesday, April 16, 2014 7:56 AM
To: opsec wg mailing list
Cc: draft-ietf-opsec-bgp-security@tools.ietf.org<mailto:draft-ietf-opsec-bgp-security@tools.ietf.org>; kk@dropbox.com<mailto:kk@dropbox.com>
Subject: Re: [OPSEC] Start of 2nd WGLC for draft-ietf-opsec-bgp-security

Please find this reminder to query for your feedback.

Brgds,
G/

From: Gunter Van de Velde (gvandeve)
Sent: 08 April 2014 11:18
To: opsec wg mailing list
Cc: KK (kk@google.com<mailto:kk@google.com>); draft-ietf-opsec-bgp-security@tools.ietf.org<mailto:draft-ietf-opsec-bgp-security@tools.ietf.org>
Subject: Start of 2nd WGLC for draft-ietf-opsec-bgp-security


Dear OpSec WG,


This starts a 2nd Working Group Last Call for draft-ietf-opsec-bgp-security.

Due to the time taken to integrate all comments from the first WGLC this 2nd WGLC is initiated.



All three authors have replied, stating that they do not know of any IPR associated with this draft.


The draft is available here: https://datatracker.ietf.org/doc/draft-ietf-opsec-bgp-security/<https://datatracker.ietf.org/doc/draft-ietf-opsec-lla-only/>


Please review this draft to see if you think it is ready for publication and comments to the list, clearly stating your view.


This WGLC ends 22-April-2014.


Thanks,

G/

v2.23.0 | Report a Bug | By Email