Re: [sidr] [Idr] operator inputs -- route leak solution
Brian Dickson <brian.peter.dickson@gmail.com> Tue, 21 March 2017 22:19 UTC
Return-Path: <brian.peter.dickson@gmail.com>
X-Original-To: sidr@ietfa.amsl.com
Delivered-To: sidr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4F0121293E4; Tue, 21 Mar 2017 15:19:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.698
X-Spam-Level:
X-Spam-Status: No, score=-2.698 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Yop8UWtzmMYZ; Tue, 21 Mar 2017 15:19:43 -0700 (PDT)
Received: from mail-io0-x233.google.com (mail-io0-x233.google.com [IPv6:2607:f8b0:4001:c06::233]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A0E561299D6; Tue, 21 Mar 2017 15:19:43 -0700 (PDT)
Received: by mail-io0-x233.google.com with SMTP id b140so57059674iof.1; Tue, 21 Mar 2017 15:19:43 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=qsY+bWNf4uVp4x+J0c2SJTRhOlzE4eRrYm0v2JAQb9g=; b=WSsVexnRwM6tmHe16Ea4zuR6nKfRzYrtIWdztwRtFSYinnCQkiiHgZ0ZWkVNcKdVY/ s+/zCHz1kjfmCQr0e9fZ8ItumA2s+FGeF6myOKzTis/uZiTmIOcqj5qKFwOL+6jG48IB AchG8r9wT0SIOkLCVCG/sg4jEJAnPkVQyBgqwAeFH1sHQ13I9whZpNTiX24f7WW43mNB wNuBrQ4eT9yOa+jPC5gR3m4T7WyhPRb8oipfLACKl7i5rWD9bG/twvcqFvtOWXr4AF8q 4FGBCSzq89v6ii7mHikRKYzo86RXRuaY9s0LrpZKRxBaHX2h5ncbzStJmIYhAKQOmKU4 Kg6Q==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=qsY+bWNf4uVp4x+J0c2SJTRhOlzE4eRrYm0v2JAQb9g=; b=RQtP8FZ0VUYanPXF0akXdX7cvNcCa1riN86eDNsU0ud2SShc+/9AEnOSmVpHInGGK2 Bn+rHGyeVJiPTL/PvRIi2J14RIRJ5YLJ4cZSdUbpznuqo3GqcZWqyICo1CmgeLRdBL6r B7rqSU1lWCP/nZu2+5FbcehJ0CPPza83SxwIm3pcDVPPR2glKW3Dkh14oGAocVYXybti xs6lo+gOUEVKz1KCF1y7i/tFaV5ayGz8hFKYYUhoFO3GE2nd89pN+P0g2DhSeEkjHfNp Y4vW0zer+ETx//jj+AupHwEA5fiBvTwWi/QcEAqVXQAnJiBUotgAq5llN8ynqVHnremX 1vkg==
X-Gm-Message-State: AFeK/H2y8fy8wQgmMhfoLSTc20qd6oqwQhRbqAslaPRUHO2K1hOlt9lPBrephBjB/shOT0ER3O8VLmXu/nfn1Q==
X-Received: by 10.107.157.146 with SMTP id g140mr32456766ioe.63.1490134783056; Tue, 21 Mar 2017 15:19:43 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.36.121.77 with HTTP; Tue, 21 Mar 2017 15:19:42 -0700 (PDT)
In-Reply-To: <20170321205513.GA2367@Space.Net>
References: <DM2PR09MB044656C168037D0BEF7A78CB843D0@DM2PR09MB0446.namprd09.prod.outlook.com> <20170321205513.GA2367@Space.Net>
From: Brian Dickson <brian.peter.dickson@gmail.com>
Date: Tue, 21 Mar 2017 15:19:42 -0700
Message-ID: <CAH1iCirbAnj+Tyn0rs5Zs9-RyY=Qj2onqNh=DehEkDQtPrRSJA@mail.gmail.com>
To: Gert Doering <gert@space.net>
Cc: "Sriram, Kotikalapudi (Fed)" <kotikalapudi.sriram@nist.gov>, "grow@ietf.org" <grow@ietf.org>, "idr@ietf.org" <idr@ietf.org>, "sidrops@ietf.org" <sidrops@ietf.org>, "draft-ietf-idr-route-leak-detection-mitigation.authors@ietf.org" <draft-ietf-idr-route-leak-detection-mitigation.authors@ietf.org>, "sidr wg list (sidr@ietf.org)" <sidr@ietf.org>
Content-Type: multipart/alternative; boundary="001a11409824696c41054b450a11"
Archived-At: <https://mailarchive.ietf.org/arch/msg/sidr/_aVkbdTTeN3Z63GoKvQTZrWXca0>
Subject: Re: [sidr] [Idr] operator inputs -- route leak solution
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidr/>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 21 Mar 2017 22:19:45 -0000
Pre-emptive top-post in case anyone mistakes the technique proposed: This will NOT be implemented via communities. The proposal is for a NEW optional transitive attribute. If any operators can answer the original question, this will be very helpful. Thank you in advance to any and all operators. Reminder on optional+transitive logic - If the attribute is not understood/implemented/enabled, the attribute is passed unmodified. - If it is understood & implemented & enabled, behavior is subject to the applicable standards. - Thus, optional transitives are "opt-in", by definition. The proposal itself is an IDR WG I-D, and as such not finalized; input here is definitely helpful in reaching consensus, understanding requirements, etc. Brian On Tue, Mar 21, 2017 at 1:55 PM, Gert Doering <gert@space.net> wrote: > Hi, > > On Tue, Mar 21, 2017 at 06:00:36PM +0000, Sriram, Kotikalapudi (Fed) wrote: > > >>From an operator point of view, > > are you willing to place a piece of relationship info (as stated above) > > in the BGP update for the significant gain of a route leak solution > > that works well to detect/stop route leaks that do happen, > > and prevents single point of failures in incremental/partial > > deployment scenarios? > > I'm not sure it will do any good. > > Those ISPs that care about the garbage their customers try to inject > already do prefix/as-path filtering. > > Those ISPs that do not care today will not add bother to add a filter on > this well-known community value (... and most likely, the customer > router sending out unfiltered garbage won't have "send-community" > enabled either). > > Gert Doering > -- NetMaster > -- > have you enabled IPv6 on something today...? > > SpaceNet AG Vorstand: Sebastian v. Bomhard > Joseph-Dollinger-Bogen 14 Aufsichtsratsvors.: A. Grundner-Culemann > D-80807 Muenchen HRB: 136055 (AG Muenchen) > Tel: +49 (0)89/32356-444 USt-IdNr.: DE813185279 >
- [sidr] operator inputs -- route leak solution Sriram, Kotikalapudi (Fed)
- Re: [sidr] [Idr] operator inputs -- route leak so… Gert Doering
- Re: [sidr] [Idr] operator inputs -- route leak so… Brian Dickson
- Re: [sidr] [Idr] operator inputs -- route leak so… Neil J. McRae
- Re: [sidr] [Idr] operator inputs -- route leak so… Gert Doering
- Re: [sidr] [Idr] operator inputs -- route leak so… Brian Dickson
- Re: [sidr] [Sidrops] operator inputs -- route lea… Randy Bush
- Re: [sidr] [Sidrops] operator inputs -- route lea… Brian Dickson
- Re: [sidr] [Sidrops] operator inputs -- route lea… Randy Bush
- Re: [sidr] [Sidrops] operator inputs -- route lea… Sriram, Kotikalapudi (Fed)
- Re: [sidr] [Idr] operator inputs -- route leak so… Gert Doering
- Re: [sidr] [GROW] [Sidrops] operator inputs -- ro… Susan Hares
- Re: [sidr] [Idr] operator inputs -- route leak so… Randy Bush