IETF Logo Mail Archive

Re: [RPSEC] Basis of Requirements?

Russ White <riw@cisco.com> Wed, 28 September 2005 12:48 UTC

Received: from localhost.localdomain ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1EKbMd-0008Hj-Ef; Wed, 28 Sep 2005 08:48:47 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1EKbMc-0008DD-Cl for rpsec@megatron.ietf.org; Wed, 28 Sep 2005 08:48:46 -0400
Received: from ietf-mx.ietf.org (ietf-mx [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id IAA03614 for <rpsec@ietf.org>; Wed, 28 Sep 2005 08:48:45 -0400 (EDT)
Received: from rtp-iport-1.cisco.com ([64.102.122.148]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1EKbU3-0003iZ-0C for rpsec@ietf.org; Wed, 28 Sep 2005 08:56:29 -0400
Received: from rtp-core-1.cisco.com ([64.102.124.12]) by rtp-iport-1.cisco.com with ESMTP; 28 Sep 2005 05:48:36 -0700
X-BrightmailFiltered: true
X-Brightmail-Tracker: AAAAAA==
X-IronPort-AV: i="3.97,154,1125903600"; d="scan'208"; a="11562104:sNHT21524908"
Received: from russpc (rtp-vpn4-190.cisco.com [10.82.208.190]) by rtp-core-1.cisco.com (8.12.10/8.12.6) with ESMTP id j8SCmUT7004978; Wed, 28 Sep 2005 08:48:32 -0400 (EDT)
Received: from [10.82.208.190] by russpc (PGP Universal service); Wed, 28 Sep 2005 08:48:32 -0500
X-PGP-Universal: processed; by russpc on Wed, 28 Sep 2005 08:48:32 -0500
Message-ID: <433A9118.3020808@cisco.com>
Date: Wed, 28 Sep 2005 08:48:24 -0400
From: Russ White <riw@cisco.com>
User-Agent: Mozilla Thunderbird 1.0.6 (Windows/20050716)
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: Sandy Murphy <sandy@tislabs.com>
Subject: Re: [RPSEC] Basis of Requirements?
References: <200509281238.j8SCc438011883@tislabs.com>
In-Reply-To: <200509281238.j8SCc438011883@tislabs.com>
X-PGP-Encoding-Version: 2.0.2
X-Content-PGP-Universal-Saved-Content-Transfer-Encoding: 7bit
X-Content-PGP-Universal-Saved-Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Type: text/plain; charset="ISO-8859-1"
X-Spam-Score: 0.0 (/)
X-Scan-Signature: bb8f917bb6b8da28fc948aeffb74aa17
Cc: rpsec@ietf.org, kent@bbn.com
X-BeenThere: rpsec@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Routing Protocol Security Requirements <rpsec.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/rpsec>, <mailto:rpsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/rpsec>
List-Post: <mailto:rpsec@ietf.org>
List-Help: <mailto:rpsec-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/rpsec>, <mailto:rpsec-request@ietf.org?subject=subscribe>
Sender: rpsec-bounces@ietf.org
Errors-To: rpsec-bounces@ietf.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


>>Well, the _intent_ of the document is that the AS_PATH contain _all_
>>of the ASes.  This is obviously necessary for loop avoidance.

> Yes, as Russ White et all say in draft-white-pathconsiderations-05.txt:

>>path vector
>>protocols, such as [BGP], prove a path is loop free by carrying a
>>list of nodes the advertisement itself has traversed.

Note it doesn't say, anyplace that I can find, that the AS Path 
constitutes an "authorization chain," and such thing. Yes, it does prove 
loop freeness, as I've said many times before. Receiving a route with 
NLRI X doesn't prove that every AS given in the AS Path has authorized 
the transiting of traffic to every destination within the address block, 
as the draft mentioned also shows.

:-)

Russ

- -- 
riw@cisco.com CCIE <>< Grace Alone


-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.0.2 (Build 2424)

iQA/AwUBQzqRIBEdu7FIVPTkEQI4bACg6niAKJ7vzTHtS5zmBGeZoUtSu8UAnizk
77kN2XBkTs/jFozg+4/kEH9y
=whho
-----END PGP SIGNATURE-----

_______________________________________________
RPSEC mailing list
RPSEC@ietf.org
https://www1.ietf.org/mailman/listinfo/rpsec

v2.23.0 | Report a Bug | By Email