Re: [sidr] adopt a mib
"Bert (IETF) Wijnen" <bertietf@bwijnen.net> Fri, 05 August 2011 07:01 UTC
Return-Path: <bertietf@bwijnen.net>
X-Original-To: sidr@ietfa.amsl.com
Delivered-To: sidr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5061811E807F for <sidr@ietfa.amsl.com>; Fri, 5 Aug 2011 00:01:17 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.599
X-Spam-Level:
X-Spam-Status: No, score=-102.599 tagged_above=-999 required=5 tests=[AWL=0.000, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Fu5RT6R8xSwf for <sidr@ietfa.amsl.com>; Fri, 5 Aug 2011 00:01:16 -0700 (PDT)
Received: from postlady.ripe.net (postlady.ipv6.ripe.net [IPv6:2001:67c:2e8:11::c100:1341]) by ietfa.amsl.com (Postfix) with ESMTP id 5CBFC11E8073 for <sidr@ietf.org>; Fri, 5 Aug 2011 00:01:16 -0700 (PDT)
Received: from dodo.ripe.net ([193.0.23.4]) by postlady.ripe.net with esmtps (TLSv1:AES256-SHA:256) (Exim 4.72) (envelope-from <bertietf@bwijnen.net>) id 1QpEPO-0000s0-Kw; Fri, 05 Aug 2011 09:01:31 +0200
Received: from dog.ripe.net ([193.0.1.217] helo=BWMACBOOK.local) by dodo.ripe.net with esmtp (Exim 4.72) (envelope-from <bertietf@bwijnen.net>) id 1QpEPO-000860-EK; Fri, 05 Aug 2011 09:01:26 +0200
Message-ID: <4E3B9546.4000808@bwijnen.net>
Date: Fri, 05 Aug 2011 09:01:26 +0200
From: "Bert (IETF) Wijnen" <bertietf@bwijnen.net>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.6; rv:5.0) Gecko/20110624 Thunderbird/5.0
MIME-Version: 1.0
To: raszuk@cisco.com
References: <m2d3gkepg8.wl%randy@psg.com> <4E3B8930.9090605@cisco.com> <4E3B8EB1.7030007@bwijnen.net> <4E3B9018.80808@cisco.com>
In-Reply-To: <4E3B9018.80808@cisco.com>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
X-RIPE-Spam-Level: --
X-RIPE-Spam-Report: Spam Total Points: -2.9 points pts rule name description ---- ---------------------- ------------------------------------ -1.0 ALL_TRUSTED Passed through trusted hosts only via SMTP -1.9 BAYES_00 BODY: Bayes spam probability is 0 to 1% [score: 0.0000]
X-RIPE-Signature: 86ab03e524994f79ca2c75a176445dd4e765352ec59c48178628518ca9053e35
Cc: sidr wg list <sidr@ietf.org>
Subject: Re: [sidr] adopt a mib
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/sidr>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 05 Aug 2011 07:01:17 -0000
Inline
On 8/5/11 8:39 AM, Robert Raszuk wrote:
> Hi Bert,
>
> Many thx for your comment .. I was not able to stay at the IETF till the SIDR session.
>
> If that is the case the draft-ymbk-bgp-origin-validation-mib is just completely not ready for adoption until it contains bare
> minimum which will allow operators to use it.
>
The MIB module is not ready for WGLC, I agree on that.
In my feel, the adoption question is more of: Does the WG want to work on
these 2 MIB modules. The exact content then needs to be agreed on by the WG.
If you want to see another individual draft with better content first.. I have
no problem with that, up to the chair to decide I think.
> It would be insane to list 1 million of valid prefixes as opposed to little fractionof them being in question. Whoever authored
> that draft needs to develop a bit more real network operational experience :)
>
I did not author it, but I am now working on it.
I am a MIB/SMI/SNMP guy. Not a router or BGP or RPKI expert.
Constructive input is helpfull
The table (as in the current I-D) has this attribute:
bgpVRTValid OBJECT-TYPE
SYNTAX INTEGER { unknown(1), valid(2), invalid(3) }
MAX-ACCESS read-create
STATUS current
DESCRIPTION
"This is indicates if the state of the roa associated with
this row."
DEFVAL { unknown }
::= { bgpValROATableEntry 5 }
So my answer to your comments:
- listing the status (unknown, valid or invalid) will only result in
MORE entries than just listing the valid ones.
- My understanding is/was that the table might have some 300K entries
But that is from hearsay.
Anyways, that is still a lot, I Understand that. And therefor, proper
indexing is important. I need to know what sort of queries operators
are most likely to do on this table.
If you (with lots of operator experience I assume) or others can help
me with that, that would be great.
Bert
> Best regards,
> R.
>
>> During the discussion at the SIDR WG session at IETF81 we
>> found that the bgpVRTValid attribute in that table makes no
>> sense, because we do not have that info. These are ALL
>> validated ROAs (or better validated prefixes) as I understand
>> it.
>>
>> Bert
>> On 8/5/11 8:09 AM, Robert Raszuk wrote:
>>> Hi,
>>>
>>> Just looking at draft-ymbk-bgp-origin-validation-mib may I ask what
>>> would be the root OID string to start SNMP tree walk (or set the trap)
>>> to list all INVALID or NOT_FOUND BGP entries ?
>>>
>>> Rgs,
>>> R.
>
>
>
- Re: [sidr] adopt a mib Bert (IETF) Wijnen
- [sidr] adopt a mib Randy Bush
- Re: [sidr] adopt a mib Roque Gagliano
- Re: [sidr] adopt a mib Randy Bush
- Re: [sidr] adopt a mib Robert Raszuk
- Re: [sidr] adopt a mib Robert Raszuk
- Re: [sidr] adopt a mib Bert (IETF) Wijnen
- Re: [sidr] adopt a mib Robert Raszuk
- Re: [sidr] adopt a mib Sean Turner
- Re: [sidr] adopt a mib Rob Austein
- Re: [sidr] adopt a mib Warren Kumari
- Re: [sidr] adopt a mib Randy Bush
- Re: [sidr] adopt a mib Matthias Waehlisch
- Re: [sidr] adopt a mib Arturo Servin
- Re: [sidr] adopt a mib Carlos Martinez-Cagnazzo
- Re: [sidr] adopt a mib Randy Bush
- Re: [sidr] adopt a mib t.petch
- Re: [sidr] adopt a mib Michael Baer
- Re: [sidr] adopt a mib Robert Raszuk