IETF Logo Mail Archive

Re: [sidr] draft-sriram-idr-route-leak-detection-mitigation: difference between a peer and a customer

"Sriram, Kotikalapudi" <kotikalapudi.sriram@nist.gov> Fri, 17 July 2015 13:40 UTC

Return-Path: <kotikalapudi.sriram@nist.gov>
X-Original-To: sidr@ietfa.amsl.com
Delivered-To: sidr@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7EFDE1B33AD; Fri, 17 Jul 2015 06:40:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.902
X-Spam-Level:
X-Spam-Status: No, score=-1.902 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Vs3DMlBfteVw; Fri, 17 Jul 2015 06:40:43 -0700 (PDT)
Received: from na01-bn1-obe.outbound.protection.outlook.com (mail-bn1on0762.outbound.protection.outlook.com [IPv6:2a01:111:f400:fc10::762]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 973771B33E9; Fri, 17 Jul 2015 06:40:42 -0700 (PDT)
Received: from CY1PR09MB0795.namprd09.prod.outlook.com (10.163.43.145) by CY1PR09MB0377.namprd09.prod.outlook.com (10.160.147.14) with Microsoft SMTP Server (TLS) id 15.1.213.14; Fri, 17 Jul 2015 13:40:38 +0000
Received: from CY1PR09MB0793.namprd09.prod.outlook.com (10.163.43.143) by CY1PR09MB0795.namprd09.prod.outlook.com (10.163.43.145) with Microsoft SMTP Server (TLS) id 15.1.219.17; Fri, 17 Jul 2015 13:40:37 +0000
Received: from CY1PR09MB0793.namprd09.prod.outlook.com ([10.163.43.143]) by CY1PR09MB0793.namprd09.prod.outlook.com ([10.163.43.143]) with mapi id 15.01.0219.000; Fri, 17 Jul 2015 13:40:37 +0000
From: "Sriram, Kotikalapudi" <kotikalapudi.sriram@nist.gov>
To: Andrei Robachevsky <andrei.robachevsky@gmail.com>
Thread-Topic: draft-sriram-idr-route-leak-detection-mitigation: difference between a peer and a customer
Thread-Index: AQHQvhEfZNxwzI8V2ECO5TICdbuD2Z3cfN/4gAAk8ACAAGNnMIAAvWGAgAHfYks=
Date: Fri, 17 Jul 2015 13:40:37 +0000
Message-ID: <CY1PR09MB07930AC44C76E3456982B61284980@CY1PR09MB0793.namprd09.prod.outlook.com>
References: <005901d0b283$ea07bd20$be173760$@ndzh.com> <m2fv52b1w1.wl%randy@psg.com> <CY1PR09MB07939BA36BB01C19AD9AC2A384930@CY1PR09MB0793.namprd09.prod.outlook.com> <CAL9jLab5LOfeSYGzt=ywAwkoJdbe4moXD2w5LsGF-L_Cju_TUw@mail.gmail.com> <CY1PR09MB0793E39F703D436A3E21805B84900@CY1PR09MB0793.namprd09.prod.outlook.com> <55A4CB9B.2050207@gmail.com> <SN1PR09MB0799CC8746BA0C27BEA5B5D4849A0@SN1PR09MB0799.namprd09.prod.outlook.com> <55A67586.6050604@gmail.com> <CY1PR09MB0793D6E945971BC4B4AD031D849A0@CY1PR09MB0793.namprd09.prod.outlook.com>, <55A767C5.3090805@gmail.com>
In-Reply-To: <55A767C5.3090805@gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: ietf.org; dkim=none (message not signed) header.d=none;
x-originating-ip: [129.6.220.66]
x-microsoft-exchange-diagnostics: 1; CY1PR09MB0795; 5:qXPBUM/eWZOjRi+xfysoNRStpXKd+Ym/paV3PnDw5EvOwFpQTDNwKFt2hOs6IpMshqD4DrQ5JhEMm/JQmzPRlHccW9jc3YnsXKjOtfi7dZlWyFe2BD6apS1S67MECVPFs+VI1h7jSohUEj/M5y/Cfw==; 24:N/LR0ZTDdPcquP5vQEwKqcP55Hl2d8gMFgoMiDr5z/Us64guBSQLd2h37UvXiBJChQT7030CD1tLnMQPqpQL7nd6ChYGw9FF/dd5OI7XLkM=; 20:KmSIltxeAqqYJOJTl8jCDwMGgtRhrMmji+dWiCJ/cz6SA9EpA+5HpveK/s85JWgaq25Eq7LgW3pJ9cUkwJVPZw==
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:; SRVR:CY1PR09MB0795; UriScan:; BCL:0; PCL:0; RULEID:; SRVR:CY1PR09MB0377;
cy1pr09mb0795: X-MS-Exchange-Organization-RulesExecuted
x-microsoft-antispam-prvs: <CY1PR09MB07957F7E4DF1D1CF4204421084980@CY1PR09MB0795.namprd09.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:;
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(601004)(5005006)(3002001); SRVR:CY1PR09MB0795; BCL:0; PCL:0; RULEID:; SRVR:CY1PR09MB0795;
x-forefront-prvs: 06400060E1
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(6009001)(164054003)(2656002)(62966003)(77156002)(46102003)(93886004)(74316001)(122556002)(106116001)(99286002)(40100003)(5003600100002)(230783001)(102836002)(54356999)(92566002)(77096005)(5001920100001)(33656002)(5002640100001)(5001960100002)(110136002)(66066001)(87936001)(76176999)(76576001)(50986999)(189998001)(86362001)(2900100001)(2950100001); DIR:OUT; SFP:1102; SCL:1; SRVR:CY1PR09MB0795; H:CY1PR09MB0793.namprd09.prod.outlook.com; FPR:; SPF:None; MLV:sfv; LANG:en;
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-originalarrivaltime: 17 Jul 2015 13:40:37.6313 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 2ab5d82f-d8fa-4797-a93e-054655c61dec
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CY1PR09MB0795
X-Microsoft-Exchange-Diagnostics: 1; CY1PR09MB0377; 2:ebhUe5LMQm3zPMxTQRRp9OFxVzuC+w+2pKZeW/Z15pFWIwWbe4tKeARDTBTSCRnr; 3:H0LmVNBU/qEuSY+z7s9aoJ2dBsVrk1oGiAoLfoVytqUMUcHXLnmsJEGCAQ9/uHdsOZY8X+nnG5Nylwb349YwnrIgXfjUHc9fqq2JV4+dNd8QZ8xaDvE1brupkH83+Hp3hiMS4NfJ71e+1+GXFsXTIA==; 25:3+EtKf8vQuQjuKopyjMi+AS4meqOkU+rmwRNg3JIbzKZ34WAKvtk7fb2/SY0FWJbYcSxvY1bYooC2/eDU5UJQWbbVpiOZxSgDeiSBfaby+f58WIdGq0n1vG7r4TwV1BDJHmYiXWvkVgDfQjeOL3TT6lLLLkkLFb5Eric9KglNzHc1nfesvfYFxjwzKTrpBvZQdsQ+Z4lpdZ4wCn6CtEcSWn6MKAOLgiCQlVojZjzmEfcUBcCL9TQ7MUtFhfu6eJwh2bQgrbVTxFXtKJPI5fmTw==; 20:DPsoAkzX5KVRjOIQ1Ph2ka+ETbrrSFQ9nVLVEsGphE7l9Qlx94gwRlwl6HkwkBib62/63JkRsqBvlfT9a9m4ug==; 23:5zJUVQ56bGGg/BybalJQZdLQDk0ZrzeMsKFkfjyCeHeIA+shn1mnoBQ5NfWs7uVGjxXPSRggZG3eTqjr3tHoLrMK743jq4flHxSyR7paZkjnWj2/KbzpiDTD0kL/Yd7mBUMRDInMOY66wDnxa8mJbXpfvr7NnqmtcZ8v3Cu5mW277/LuIuFInFJ4vMopDpxhNEQ50TSCDm89uSGrO0v2bnKVlCMyRUZHu8CwiGRrJ0/XuFTWgnXXtUNV2ILNq+Gm
CY1PR09MB0377: X-MS-Exchange-Organization-RulesExecuted
X-OriginatorOrg: nist.gov
Archived-At: <http://mailarchive.ietf.org/arch/msg/sidr/kUU-xaZr3b4hRDzX4F5e-AFYqk0>
Cc: idr wg list <idr@ietf.org>, "sidr wg list (sidr@ietf.org)" <sidr@ietf.org>
Subject: Re: [sidr] draft-sriram-idr-route-leak-detection-mitigation: difference between a peer and a customer
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidr/>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 17 Jul 2015 13:40:44 -0000

>Your explanations make it very clear, thanks.

Thanks, Andrei. 
Looks like we've converged on pretty much all issues that we've discussed so far in this thread.
One comment inline below.

[...]
>>> If my considerations are correct, there are only two cases -
>>> upstreams/transit providers, for which RLP doesn't matter, and others
>>> (customers and peers) where an RLP indicates a leak and has to be dealt
>>> accordingly.
>>
>> Yes, I agree that detecting route leaks from customers/peers matters.
>> Detecting route leaks from upstreams/transit providers does not really matter
>> (as explained above).

>I guess what I am arguing for is that the semantics of RLP 01 should be
>"propagate only down" rather than "do not propagate up" and any updates
>with the RLP field set from a peer or a customer should be treated as a
>leak.

OK, I see now what you meant. Your suggestion is good. 
In the draft, currently in Section 3.2.2 "do not propagate up" 
is interpreted (implicitly) as "propagate only down" for a peer.  
But with this change (as suggested above by you) , we no longer have to 
make that distinction. The semantics of RLP 01 would be the same 
whether an update is received from a customer or a peer. 
Then route leak detection algorithm would be the same for customer or peer,
and sections 3.2.1 and 3.2.2 can be merged into one. Thanks.

Sriram

v2.23.0 | Report a Bug | By Email