Re: [Sidrops] draft-sidrops-maxlen - questions from 110 session
Alexander Azimov <a.e.azimov@gmail.com> Sun, 21 March 2021 15:38 UTC
Return-Path: <a.e.azimov@gmail.com>
X-Original-To: sidrops@ietfa.amsl.com
Delivered-To: sidrops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 98AFD3A0DAC for <sidrops@ietfa.amsl.com>; Sun, 21 Mar 2021 08:38:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.197
X-Spam-Level:
X-Spam-Status: No, score=-0.197 tagged_above=-999 required=5 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dMM15C2JZsyh for <sidrops@ietfa.amsl.com>; Sun, 21 Mar 2021 08:38:05 -0700 (PDT)
Received: from mail-oi1-x22c.google.com (mail-oi1-x22c.google.com [IPv6:2607:f8b0:4864:20::22c]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id ADA473A0DAE for <sidrops@ietf.org>; Sun, 21 Mar 2021 08:38:05 -0700 (PDT)
Received: by mail-oi1-x22c.google.com with SMTP id a8so10479815oic.11 for <sidrops@ietf.org>; Sun, 21 Mar 2021 08:38:05 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=TXhxa00lMUg1x9OlT/moQJMqUgBuQ5ZEHHLbvYN+NbU=; b=qwaTrR42fhIgokuhejLdead/kBkvTz4lnf+J8AVklT1v7yb6qPcMQ2eO6S2R4WG4hW edpJ3pJAYwqzuW+H9vu8gz9julMq15J+1TosTWCUf5ZEWl8gDfkRTYPf6lO0Slss+yPc cz9vYAcfkQFFBgDkqSbsL0Hmxqcv697QmoCnPthW+oc6Yt024IzYdwiMFUovsRNb9NBL /T1dtvdOPxLZx/sp2rtpkZkoE8UVduZxIWuNHtm1CSHjVNYkOzotcA7UZ1yxotLGWgIf JJMj264IIXovvIHr17Mrpha0IlSnFWGUnWcgqla+mGsEqi7XARBUwgHAKDteVdrF6IUt s4HQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=TXhxa00lMUg1x9OlT/moQJMqUgBuQ5ZEHHLbvYN+NbU=; b=Pz3KZn+HIF8hREhn7WMNOVEPcx+5liZzV/T+Cy/YBXcaYHZGAZHrD2xnjoDcVivXYa It1MqN/4svwYpiNKzxYJq8Zx6vsng49vBA/Nt8yDw7Lhk52h5K9e7VvwB+lWz2wz8ROu vO/a7Gqf+Lf57/aRfylD75RIlZKBavcIi2HFiI3P3Pb0gtZz3OoDpCrtB5YkrttlKn7e +TUkpVhv0xjunteXC8tqE91xWy0fbk8oTEa8hK/2gkHw9vQ6pRe6KEo2aZuhaSJzPRVM t8sCvwzvyezLTY+mLLSr1b9/S1ve3pUSkaSkEaSjuV5ulPdMEV/xta3GNk9R/h72sL8X PK1w==
X-Gm-Message-State: AOAM531VRPTWrSyX0vVzYDltFWVlYmxTO7LPpWMh32VHokYNkS/ZVOjK SZLtxJSJxJQhJ4bjJNjW6J0uIlapIHlQwuI2QM1iUWZByNM=
X-Google-Smtp-Source: ABdhPJxPvjnpefIWiZwayWh2mJON/D07OBAY8USgQQV1ZD2Z1WdJeIacvNwoJ3Hz2raC7nDV1p5OwK6Wroa3vEVf6SM=
X-Received: by 2002:a05:6808:bca:: with SMTP id o10mr7171036oik.4.1616341084133; Sun, 21 Mar 2021 08:38:04 -0700 (PDT)
MIME-Version: 1.0
References: <20210311200900.cwrctqybf45cecao@benm-laptop> <20210311210529.ex4fs5stkoxrtmi4@benm-laptop>
In-Reply-To: <20210311210529.ex4fs5stkoxrtmi4@benm-laptop>
From: Alexander Azimov <a.e.azimov@gmail.com>
Date: Sun, 21 Mar 2021 18:37:52 +0300
Message-ID: <CAEGSd=DHm20C95+tvZo7bk92+N66KYxGZcirh5qHJ8_c2Pp++g@mail.gmail.com>
To: Ben Maddison <benm=40workonline.africa@dmarc.ietf.org>
Cc: SIDR Operations WG <sidrops@ietf.org>
Content-Type: multipart/alternative; boundary="00000000000027dcd105be0dbc8e"
Archived-At: <https://mailarchive.ietf.org/arch/msg/sidrops/s2iVhNL_9unPBFZRAt8GU1UgL-U>
Subject: Re: [Sidrops] draft-sidrops-maxlen - questions from 110 session
X-BeenThere: sidrops@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: A list for the SIDR Operations WG <sidrops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidrops>, <mailto:sidrops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidrops/>
List-Post: <mailto:sidrops@ietf.org>
List-Help: <mailto:sidrops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidrops>, <mailto:sidrops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 21 Mar 2021 15:38:09 -0000
Ben, Thank you for this comprehensive analysis. What makes me anxious is the absence of ROV filtering at least at the subset of T1 actors. For example, from my BMP monitor, I see hundreds of Invalid routes coming from Level3, both v4, and v6. This makes the attack scenario in the US region on an ISP connected to, for example, NTT quite straightforward. To summarize my attitude to this document - min roa practice can be useful for a subset of networks (where it is applicable) at the level of the high rate of ROV filtering adoption by transit players of the selected region. It's hard to say if this can be easily evaluated and though be a general suggestion for the community. пт, 12 мар. 2021 г. в 00:05, Ben Maddison <benm= 40workonline.africa@dmarc.ietf.org>: > On 03/11, Ben Maddison wrote: > > Hi all, > > > > <snip/> > > > > 65010 and 65020 perform ROV and drop Invalids on import > > 65020 and 65021 do not. > > > s/^65020/65011/ > > Thanks for reading carefully Randy! > > Cheers, > > Ben > _______________________________________________ > Sidrops mailing list > Sidrops@ietf.org > https://www.ietf.org/mailman/listinfo/sidrops > -- Best regards, Alexander Azimov
- [Sidrops] draft-sidrops-maxlen - questions from 1… Ben Maddison
- Re: [Sidrops] draft-sidrops-maxlen - questions fr… Ben Maddison
- Re: [Sidrops] draft-sidrops-maxlen - questions fr… Alexander Azimov
- Re: [Sidrops] draft-sidrops-maxlen - questions fr… Sriram, Kotikalapudi (Fed)