IETF Logo Mail Archive

Re: [Sidrops] I-D Action: draft-ietf-sidrops-bar-sav-02.txt

Kotikalapudi Sriram <sriram.ietf@gmail.com> Sun, 10 December 2023 12:12 UTC

Return-Path: <sriram.ietf@gmail.com>
X-Original-To: sidrops@ietfa.amsl.com
Delivered-To: sidrops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C57F5C236E41; Sun, 10 Dec 2023 04:12:06 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.107
X-Spam-Level:
X-Spam-Status: No, score=-2.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jISMyKpgJnNj; Sun, 10 Dec 2023 04:12:02 -0800 (PST)
Received: from mail-yb1-xb2e.google.com (mail-yb1-xb2e.google.com [IPv6:2607:f8b0:4864:20::b2e]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4408FC137367; Sun, 10 Dec 2023 04:11:59 -0800 (PST)
Received: by mail-yb1-xb2e.google.com with SMTP id 3f1490d57ef6-db54ec0c7b8so3037304276.0; Sun, 10 Dec 2023 04:11:59 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1702210318; x=1702815118; darn=ietf.org; h=cc:to:subject:message-id:date:from:mime-version:from:to:cc:subject :date:message-id:reply-to; bh=0dfR2H92CWVCNnOeU3Y4GKSmQV3FW36NeMhFE3SRzeg=; b=HnFxcspSJ00FUblA0J9Se6i205Tg0e0Mw2qq1SDgHoRSzgeSL8Z9+Eh13rUjcrzwg3 SCHWiaJM8efrUVQGbfx5m/agKBqAI36Fj6WbmrWSoYuGbOopoeZbSnJnc8ZirM+iuUvJ WVg371/TN7RED/DfecHaiLuIvViZ0Rk8LnnyOqGEGVV+iGAKuAxkOAJIBXDELnmFLFin ERvLpt1WVZo7jIN5kOIpBTwxnWFA+eZ3ErW97S27jV9XStUgLA5nc9KwSIrENeZnqDKK wxDYdB8IsRWM7IGlqzRZIV2N+3t3OKBvZus0uf6IQxLpTA742mzbzmXhU9lrnc+aPCGm 6bDQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1702210318; x=1702815118; h=cc:to:subject:message-id:date:from:mime-version:x-gm-message-state :from:to:cc:subject:date:message-id:reply-to; bh=0dfR2H92CWVCNnOeU3Y4GKSmQV3FW36NeMhFE3SRzeg=; b=fC64DXvQgKGiZxCTC8OoJY/7njaai65sdG2rg7PhVa8+d7mtd7mnHIeFH0HbQVd9VF zuqj0VOfUPGHUsHVn0z7B8h6PlxXu3I//FWYxCZMK9iNvoLLgseW5oyVxlcNhFSoaQZ0 UbSJ/ddV2TfFKSHwLNheo9tcV1ltTmGwc9sCuwxLf+f4P/fcSc1cNvU4azjiwi3UyUmK ZQTUxNbzJPpWiEy/gVMRdI3IwNEbGqt1YglZC/hUaN8oFvknRO3cS9/hsm/p+vS+VdMH uB6vseQ9G/ciOiNPSScCl/1GTRafncUoO+OrSt8uLgXK/I81a0q5IlzQ68m90l7lC8zi sU+g==
X-Gm-Message-State: AOJu0Yx5it2WMPeCqBf2BDkwLPAyvO/VObAu86/BID6WMxpxdYKqwAIa gUMzdzzQ3dJfjajOt8n4tydSi0mjU8cbdra5CHY=
X-Google-Smtp-Source: AGHT+IFcuG4P+i2d6ty09AF58zgaw08adzKZ1oqK9C+1P/gHDgCw1js4F5EjbJrb19CXeTJOB7uSrHgdAqHXgxIKcD0=
X-Received: by 2002:a25:ac94:0:b0:d9a:5792:51db with SMTP id x20-20020a25ac94000000b00d9a579251dbmr2007548ybi.25.1702210318290; Sun, 10 Dec 2023 04:11:58 -0800 (PST)
MIME-Version: 1.0
From: Kotikalapudi Sriram <sriram.ietf@gmail.com>
Date: Sun, 10 Dec 2023 17:41:45 +0530
Message-ID: <CAKqPU27msOvsidHepzWwL_ToXVOcsjZp8d=ozBwxdY-EEEosWQ@mail.gmail.com>
To: Mingxing Liu <liumingxing7@huawei.com>
Cc: sidrops@ietf.org, draft-ietf-sidrops-bar-sav@ietf.org
Content-Type: multipart/alternative; boundary="0000000000005ad36b060c26b9c0"
Archived-At: <https://mailarchive.ietf.org/arch/msg/sidrops/BpeK8nDFYO4xif_inj_gDAG8eKE>
Subject: Re: [Sidrops] I-D Action: draft-ietf-sidrops-bar-sav-02.txt
X-BeenThere: sidrops@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: A list for the SIDR Operations WG <sidrops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidrops>, <mailto:sidrops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidrops/>
List-Post: <mailto:sidrops@ietf.org>
List-Help: <mailto:sidrops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidrops>, <mailto:sidrops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 10 Dec 2023 12:14:55 -0000

Hi Mingxing,

I think aggregation (without AS_SET) does not pose a problem for BAR-SAV.

Consider AS1 and AS2 announce p1/24 and p2/24, respectively, to their
transit provider AS3.

AS3 aggregates p1/24 and p2/24 with its own p3/23 and announces p/22
to its transit provider AS4.

(p1/24 + p2/24 + p3/23 = p/22)

In this case, AS4 will include p/22 in its SAV table (allow list) for
the customer interface

with AS3 (based on BGP updates alone).

There will be no improper block of addresses in p1/24 or p2/24 or
p3/23 (the aggregation components)

at AS4 in this scenario. Let me know if I am missing something?

Sriram

=================================================

From: "liumingxing (E)" <liumingxing7@huawei.com>

BGP route aggregation will lose the origin AS information of the
prefix. The as-set is configured by the operator and may not be
generated. As a result, An AS may receive such a prefix which is
advertised by the provider AS and contains the sub-prefix that has
been allocated to the customer AS. So, only BGP update and ASPA cannot
generate a complete allowlist on the customer interface. Only when all
customer ASes register all prefix in RKPI, BAR-SAV is accurate.
Therefore, the deployment of BAR-SAV should be a process that starts
at the edge of the Internet.

I suggest that section 5 should add the analysis of BGP route
aggregation and section 6.5 should add some related guidelines.

v2.23.0 | Report a Bug | By Email