Re: [Sidrops] Comments on draft-ietf-sidrops-validating-bgp-speaker
Jeff Wheeler <jsw@inconcepts.biz> Thu, 15 February 2018 17:37 UTC
Return-Path: <jsw@inconcepts.biz>
X-Original-To: sidrops@ietfa.amsl.com
Delivered-To: sidrops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D835812D0C3 for <sidrops@ietfa.amsl.com>; Thu, 15 Feb 2018 09:37:45 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=inconcepts-biz.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YB5E4pIhQ8kt for <sidrops@ietfa.amsl.com>; Thu, 15 Feb 2018 09:37:43 -0800 (PST)
Received: from mail-ua0-x232.google.com (mail-ua0-x232.google.com [IPv6:2607:f8b0:400c:c08::232]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C36D11289B0 for <sidrops@ietf.org>; Thu, 15 Feb 2018 09:37:43 -0800 (PST)
Received: by mail-ua0-x232.google.com with SMTP id a17so175364uak.13 for <sidrops@ietf.org>; Thu, 15 Feb 2018 09:37:43 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=inconcepts-biz.20150623.gappssmtp.com; s=20150623; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=vx14UPTcI0QNKDKjl1tMEga4IIllxzZDFuufpVpgtlY=; b=WHIvNOexrLmCaGgJA5AkVdL2LcvwedGL3NpCokk/iOv6KW1UiX2tMPZsVFLxZKvMDc UdOvvn/1y71f8JDtuncl8xw2c5bj9TEW84S1C+YOMrJQHhQNqlnb9g8zX3ea2lC82/Ji XMcWacAyfzmuOQaKRY10bqo/DRS8HHhifpNYqV7dJBneJm2BbXtpuDLG17fWAur67yBP wXzhrQ3XMKNy3ozqnIakASh46gqorSD6QRPzAo9d0WGJ5fq6TjlHi6TlIwNXIdTSySiS fKtcWWWFn5oFsW3AM6kiHNf0gY97N8U2Dp3zhgW9hpvnzHbRdJLgjBIPMPyBCcdWtlot Xz7A==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=vx14UPTcI0QNKDKjl1tMEga4IIllxzZDFuufpVpgtlY=; b=iDXaa1RX1EgI/9KuBVNPcRRGVZCToHfuaNzLvKVHXxgM9E3Q46WrvrjGL26Lzb5GR4 4HPXc62kKURGE4MS7u3VWQg4VOBPSBXEzoaD5gPwgt2G2OnpmOxpsQE0rMutk0XA7yO2 mCjALaPmW+ZCPSnuzSucF/TrDnKoMmkd5/KwUjqK7NlpoEt1Gt2k9sbXiK3H6AeqAf1a ciHABvwcdTdcrht5Yqf/dA6wC5wVmYiODg/bd5Ujxm8o9qTdYMHd7XRGzbdvQtUqbdCF SCpgKGAnyEBga5rJYY96lfPqOJ89RKkP3VZCTEY8CMYqAuxJy1/5ViWjIMEvzqjCKj+F WyPA==
X-Gm-Message-State: APf1xPD6IGQ3cmn4U72h6MRzGtGj36/vrUarFMFstE6BZSAJon5pMHpM PGTzWdHYIig0yFFDrhHl1krvoiRICywaz6HJ96/Fuipo
X-Google-Smtp-Source: AH8x226i7rDZhmhAOrxwxiciDaosQDk7aFuk5ReXhd+z/TWS/BYcHB0C5gPCT0EP5qE1xOB6bz2+fNgjhH39QwcO8t8=
X-Received: by 10.176.1.194 with SMTP id 60mr2680657ual.135.1518716262835; Thu, 15 Feb 2018 09:37:42 -0800 (PST)
MIME-Version: 1.0
Received: by 10.103.33.68 with HTTP; Thu, 15 Feb 2018 09:37:42 -0800 (PST)
X-Originating-IP: [74.130.6.149]
In-Reply-To: <5A84B6B8.50207@ams-ix.net>
References: <CAPWAtbJJ3mWXP-d314CbY7n9LSh4KmNjXBCP93Ag_i=0gcAd8Q@mail.gmail.com> <5A84B6B8.50207@ams-ix.net>
From: Jeff Wheeler <jsw@inconcepts.biz>
Date: Thu, 15 Feb 2018 12:37:42 -0500
Message-ID: <CAPWAtbKLzdFcJf3FniXbtVcy8TbRQTpZJsCF2w0oWvEK3gjFaA@mail.gmail.com>
To: Aris Lambrianidis <aris.lambrianidis@ams-ix.net>
Cc: sidrops@ietf.org
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/sidrops/_3Eh6c-L8Ye8Nt0Zy55AC4zmfNA>
Subject: Re: [Sidrops] Comments on draft-ietf-sidrops-validating-bgp-speaker
X-BeenThere: sidrops@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: A list for the SIDR Operations WG <sidrops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidrops>, <mailto:sidrops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidrops/>
List-Post: <mailto:sidrops@ietf.org>
List-Help: <mailto:sidrops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidrops>, <mailto:sidrops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 15 Feb 2018 17:37:46 -0000
On Wed, Feb 14, 2018 at 5:22 PM, Aris Lambrianidis <aris.lambrianidis@ams-ix.net> wrote: > I see two prongs in your email, a technical one (signalling method) and > a "political" one (for > lack of a better term), i.e. whether this draft is misguided in principle. I think your draft has a fair chance of progressing because it's clear some IXPs (and their members) want route-servers to propagate invalid paths, and if they are going to keep doing that, it is easy to understand why the IXPs feel obligated to signal it somehow. Once you decided to signal it, a standard is sensible. Basically, I see you are cutting your own hand. I think that's stupid but I support your plan to standardize the type of knife you use. You're going to spill blood anyway; your members must be demanding it. For the above reason, I would rather focus on the implementation details. I'd like to reiterate that the new propagation scope defined by your draft is a change to the existing, standardized behavior of BGP Extended Communities. The nature of this change almost dictates that you also specify a BGP Capability Code and define a behavior for what you should do when receiving one of these extcomm from a neighbor that has not signaled the capability (probably drop the extcomm since its origin is unknown at that point?) So now you have a new parameter in the connection process (no big deal) and new code when parsing and propagating extcomms. In fact, you might as well define some kind of router-hops-limit and as-hops-limit for extcomms because the implementation cost (in software) of that is essentially the same as what you've already proposed and the new kind of scope would have other uses to operators. So the current draft is more complex than it really needs to be. A lot of implementation obstacles can be removed by simply using a BGP Well-Known Community. If operators want to use your idea they will need to configure their router, but they would not need to wait on their vendor for new software. On your side, you are already using a community to signal so this clearly works fine. I understand the long-term advantage hoped for by limiting the propagation scope, but I think it is a more ambitious and costly plan than the authors realize. I ask them to back off from the extcomm, or in the alternative, approach it as a new propagation behavior to extcomms which can then be re-used. -- Jeff S Wheeler <jsw@inconcepts.biz>
- [Sidrops] Comments on draft-ietf-sidrops-validati… Jeff Wheeler
- Re: [Sidrops] Comments on draft-ietf-sidrops-vali… Aris Lambrianidis
- Re: [Sidrops] Comments on draft-ietf-sidrops-vali… Job Snijders
- Re: [Sidrops] Comments on draft-ietf-sidrops-vali… Job Snijders
- Re: [Sidrops] Comments on draft-ietf-sidrops-vali… Jeff Wheeler
- Re: [Sidrops] Comments on draft-ietf-sidrops-vali… Nick Hilliard