From owner-ptomaine@shrubbery.net Sun Nov 3 18:59:34 2002 Received: from guelah.shrubbery.net (guelah.shrubbery.net [198.58.5.1]) by ni.shrubbery.net (8.11.6/8.11.6) with ESMTP id gA3IxYP20891 for ; Sun, 3 Nov 2002 18:59:34 GMT Received: (from majordom@localhost) by guelah.shrubbery.net (8.11.6/8.11.1) id gA3Iq2J04110 for ptomaine-outgoing; Sun, 3 Nov 2002 18:52:02 GMT Received: (from heas@localhost) by guelah.shrubbery.net (8.11.6/8.11.1) id gA3Iq0T04105 for ptomaine@shrubbery.net; Sun, 3 Nov 2002 18:52:00 GMT Received: from ietf.org (odin.ietf.org [132.151.1.176]) by guelah.shrubbery.net (8.11.6/8.11.1) with ESMTP id gA3G9Ax03608 for ; Sun, 3 Nov 2002 16:09:10 GMT Received: from CNRI.Reston.VA.US (localhost [127.0.0.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id LAA09183; Sun, 3 Nov 2002 11:06:40 -0500 (EST) Message-Id: <200211031606.LAA09183@ietf.org> To: IETF-Announce: ; Cc: ptomaine@shrubbery.net From: The IESG SUBJECT: Last Call: NOPEER community for BGP route scope control to BCP Reply-to: iesg@ietf.org Date: Sun, 03 Nov 2002 11:06:40 -0500 Sender: owner-ptomaine@shrubbery.net Precedence: bulk The IESG has received a request from the Prefix Taxonomy Ongoing Measurement & Inter Network Experiment Working Group to consider NOPEER community for BGP route scope control as a BCP. The IESG plans to make a decision in the next few weeks, and solicits final comments on this action. Please send any comments to the iesg@ietf.org or ietf@ietf.org mailing lists by 2002-11-17. Files can be obtained via http://www.ietf.org/internet-drafts/draft-ietf-ptomaine-nopeer-00.txt From owner-ptomaine@shrubbery.net Sun Nov 3 19:08:07 2002 Received: from guelah.shrubbery.net (guelah.shrubbery.net [198.58.5.1]) by ni.shrubbery.net (8.11.6/8.11.6) with ESMTP id gA3J87P21044 for ; Sun, 3 Nov 2002 19:08:07 GMT Received: (from majordom@localhost) by guelah.shrubbery.net (8.11.6/8.11.1) id gA3J6V804206 for ptomaine-outgoing; Sun, 3 Nov 2002 19:06:31 GMT Received: (from heas@localhost) by guelah.shrubbery.net (8.11.6/8.11.1) id gA3J6SL04200 for ptomaine@shrubbery.net; Sun, 3 Nov 2002 19:06:28 GMT Received: from paixhost.pch.net (host.paix.pch.net [206.220.231.245]) by guelah.shrubbery.net (8.11.6/8.11.1) with ESMTP id gA3J3Nx04174 for ; Sun, 3 Nov 2002 19:03:23 GMT Received: from ns1.pch.net (ns1.pch.net [206.220.231.1]) by paixhost.pch.net (8.11.6/8.11.6) with ESMTP id gA3IvTd04181; Sun, 3 Nov 2002 10:57:29 -0800 (PST) Date: Sun, 3 Nov 2002 10:57:29 -0800 (PST) From: Bill Woodcock To: iesg@ietf.org cc: ptomaine@shrubbery.net Subject: Re: Last Call: NOPEER community for BGP route scope control to BCP In-Reply-To: <200211031606.LAA09183@ietf.org> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-ptomaine@shrubbery.net Precedence: bulk > The IESG has received a request from the Prefix Taxonomy Ongoing > Measurement & Inter Network Experiment Working Group to consider NOPEER > community for BGP route scope control > as a BCP. > The IESG plans to make a decision in the next few weeks, and solicits > final comments on this action. I would like to express my support for moving this draft forward to BCP. -Bill Woodcock From owner-ptomaine@shrubbery.net Thu Nov 7 18:17:32 2002 Received: from guelah.shrubbery.net (guelah.shrubbery.net [198.58.5.1]) by ni.shrubbery.net (8.11.6/8.11.6) with ESMTP id gA7IHWV03173 for ; Thu, 7 Nov 2002 18:17:32 GMT Received: (from majordom@localhost) by guelah.shrubbery.net (8.11.6/8.11.1) id gA7IDKE16059 for ptomaine-outgoing; Thu, 7 Nov 2002 18:13:20 GMT Received: from earthquake.proficient.net (fe0-0-access-1-sfo.proficient.net [65.209.247.5]) by guelah.shrubbery.net (8.11.6/8.11.1) with ESMTP id gA7IDHx16055 for ; Thu, 7 Nov 2002 18:13:17 GMT Received: from riga ([10.0.0.25]) by earthquake.proficient.net with Microsoft SMTPSVC(5.0.2195.4905); Thu, 7 Nov 2002 10:13:07 -0800 Subject: Re: Last Call: NOPEER community for BGP route scope control to BCP From: Justin Fletcher To: iesg@ietf.org Cc: idr@merit.edu, ptomaine@shrubbery.net, Alex Zinin In-Reply-To: <1079106364.20021104000240@psg.com> References: <1079106364.20021104000240@psg.com> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.3 (1.0.3-4) Date: 07 Nov 2002 10:13:03 -0800 Message-Id: <1036692784.2228.123.camel@riga> Mime-Version: 1.0 X-OriginalArrivalTime: 07 Nov 2002 18:13:07.0452 (UTC) FILETIME=[529DF3C0:01C28689] Sender: owner-ptomaine@shrubbery.net Precedence: bulk > The IESG has received a request from the Prefix Taxonomy Ongoing > Measurement & Inter Network Experiment Working Group to consider NOPEER > community for BGP route scope control > as a BCP. > > The IESG plans to make a decision in the next few weeks, and solicits > final comments on this action. Please send any comments to the > iesg@ietf.org or ietf@ietf.org mailing lists by 2002-11-17. I believe this should be considered as an experimental rather than a BCP. It does not document current practice and requires implementation by router vendors before it can be adopted into practice. Other issues: The community field should be previously assigned by IANA and defined in the document. There's a large motivation section, but no implementation section (what do I do with NOPEER if receive it?) The paragraph This approach allows an originator of a prefix to attach a commonly defined policy to a route prefix, indicate that a route should be re-advertised conditionally, based on the characteristics of the inter-AS connection. does not define the conditions under which a route should be re-advertised. Without such, I don't see a difference between NOPEER and NO-ADVERTISE. There should at least be references to RFC1771 and RFC1997. I'd like a clear definition of "bilateral inter-AS peering" early in the document. Best, Justin Fletcher Proficient Networks, Inc. From owner-ptomaine@shrubbery.net Thu Nov 7 19:48:00 2002 Received: from guelah.shrubbery.net (guelah.shrubbery.net [198.58.5.1]) by ni.shrubbery.net (8.11.6/8.11.6) with ESMTP id gA7Jm0V10695 for ; Thu, 7 Nov 2002 19:48:00 GMT Received: (from majordom@localhost) by guelah.shrubbery.net (8.11.6/8.11.1) id gA7Jl3516793 for ptomaine-outgoing; Thu, 7 Nov 2002 19:47:03 GMT Received: from netcore.fi (netcore.fi [193.94.160.1]) by guelah.shrubbery.net (8.11.6/8.11.1) with ESMTP id gA7Jkvx16789 for ; Thu, 7 Nov 2002 19:46:57 GMT Received: from localhost (pekkas@localhost) by netcore.fi (8.11.6/8.11.6) with ESMTP id gA7Jke715637; Thu, 7 Nov 2002 21:46:41 +0200 Date: Thu, 7 Nov 2002 21:46:40 +0200 (EET) From: Pekka Savola To: Justin Fletcher cc: iesg@ietf.org, , , Alex Zinin Subject: Re: Last Call: NOPEER community for BGP route scope control to BCP In-Reply-To: <1036692784.2228.123.camel@riga> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-ptomaine@shrubbery.net Precedence: bulk On 7 Nov 2002, Justin Fletcher wrote: > > The IESG has received a request from the Prefix Taxonomy Ongoing > > Measurement & Inter Network Experiment Working Group to consider NOPEER > > community for BGP route scope control > > as a BCP. > > > > The IESG plans to make a decision in the next few weeks, and solicits > > final comments on this action. Please send any comments to the > > iesg@ietf.org or ietf@ietf.org mailing lists by 2002-11-17. > > I believe this should be considered as an experimental rather than a > BCP. It does not document current practice and requires implementation > by router vendors before it can be adopted into practice. Actually, I don't think this requires _anything_ from router vendors. Taking this into use is, of course, a bit easier if there's something in the routers, but I believe the "promise" of the mechanism is just to specify how to use a new well-known community. Well, seeing that there are different assumptions on this, I believe text should be clarified a bit (one way or the other). > Other issues: > > The community field should be previously assigned by IANA and defined in > the document. > > There's a large motivation section, but no implementation > section (what do I do with NOPEER if receive it?) Do you think example route-map statements are necessary? > The paragraph > > This approach allows an originator of a prefix to attach a commonly > defined policy to a route prefix, indicate that a route should be > re-advertised conditionally, based on the characteristics of the > inter-AS connection. > > does not define the conditions under which a route should be > re-advertised. Without such, I don't see a difference between > NOPEER and NO-ADVERTISE. A route-map is quite an explicit condition. > There should at least be references to RFC1771 and RFC1997. Agreed. > I'd like a clear definition of "bilateral inter-AS peering" > early in the document. Agreed. -- Pekka Savola "Tell me of difficulties surmounted, Netcore Oy not those you stumble over and fall" Systems. Networks. Security. -- Robert Jordan: A Crown of Swords From owner-ptomaine@shrubbery.net Thu Nov 7 21:05:21 2002 Received: from guelah.shrubbery.net (guelah.shrubbery.net [198.58.5.1]) by ni.shrubbery.net (8.11.6/8.11.6) with ESMTP id gA7L5LV18286 for ; Thu, 7 Nov 2002 21:05:21 GMT Received: (from majordom@localhost) by guelah.shrubbery.net (8.11.6/8.11.1) id gA7L4S117164 for ptomaine-outgoing; Thu, 7 Nov 2002 21:04:28 GMT Received: (from heas@localhost) by guelah.shrubbery.net (8.11.6/8.11.1) id gA7L4Qc17159 for ptomaine@shrubbery.net; Thu, 7 Nov 2002 21:04:26 GMT Received: from ietf.org (odin.ietf.org [132.151.1.176]) by guelah.shrubbery.net (8.11.6/8.11.1) with ESMTP id gA7KGAx16952 for ; Thu, 7 Nov 2002 20:16:11 GMT Received: from CNRI.Reston.VA.US (localhost [127.0.0.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id PAA08965 for <1timer>; Thu, 7 Nov 2002 15:11:40 -0500 (EST) Message-Id: <200211072011.PAA08965@ietf.org> From: The IESG To: All IETF Working Groups: ; Subject: Note Well Statement x-msg: NoteWell Date: Thu, 07 Nov 2002 15:11:40 -0500 Sender: owner-ptomaine@shrubbery.net Precedence: bulk >From time to time, especially just before a meeting, this statement is to be sent to each and every IETF working group mailing list. =========================================================================== NOTE WELL All statements related to the activities of the IETF and addressed to the IETF are subject to all provisions of Section 10 of RFC 2026, which grants to the IETF and its participants certain licenses and rights in such statements. Such statements include verbal statements in IETF meetings, as well as written and electronic communications made at any time or place, which are addressed to - the IETF plenary session, - any IETF working group or portion thereof, - the IESG, or any member thereof on behalf of the IESG, - the IAB or any member thereof on behalf of the IAB, - any IETF mailing list, including the IETF list itself, any working group or design team list, or any other list functioning under IETF auspices, - the RFC Editor or the Internet-Drafts function Statements made outside of an IETF meeting, mailing list or other function, that are clearly not intended to be input to an IETF activity, group or function, are not subject to these provisions. From owner-ptomaine@shrubbery.net Thu Nov 7 23:05:54 2002 Received: from guelah.shrubbery.net (guelah.shrubbery.net [198.58.5.1]) by ni.shrubbery.net (8.11.6/8.11.6) with ESMTP id gA7N5rV29151 for ; Thu, 7 Nov 2002 23:05:53 GMT Received: (from majordom@localhost) by guelah.shrubbery.net (8.11.6/8.11.1) id gA7N4jl17860 for ptomaine-outgoing; Thu, 7 Nov 2002 23:04:45 GMT Received: (from heas@localhost) by guelah.shrubbery.net (8.11.6/8.11.1) id gA7N4gZ17854 for ptomaine@shrubbery.net; Thu, 7 Nov 2002 23:04:42 GMT Received: from workhorse.fictitious.org (workhorse.fictitious.org [209.150.1.230]) by guelah.shrubbery.net (8.11.6/8.11.1) with ESMTP id gA7N29x17835 for ; Thu, 7 Nov 2002 23:02:09 GMT Received: from workhorse.fictitious.org (localhost.fictitious.org [127.0.0.1]) by workhorse.fictitious.org (8.9.3/8.9.3) with ESMTP id RAA25608; Thu, 7 Nov 2002 17:59:14 -0500 (EST) (envelope-from curtis@workhorse.fictitious.org) Message-Id: <200211072259.RAA25608@workhorse.fictitious.org> To: Justin Fletcher cc: iesg@ietf.org, idr@merit.edu, ptomaine@shrubbery.net, Alex Zinin Reply-To: curtis@fictitious.org Subject: Re: Last Call: NOPEER community for BGP route scope control to BCP In-reply-to: Your message of "07 Nov 2002 10:13:03 PST." <1036692784.2228.123.camel@riga> Date: Thu, 07 Nov 2002 17:59:14 -0500 From: Curtis Villamizar Sender: owner-ptomaine@shrubbery.net Precedence: bulk In message <1036692784.2228.123.camel@riga>, Justin Fletcher writes: > > The IESG has received a request from the Prefix Taxonomy Ongoing > > Measurement & Inter Network Experiment Working Group to consider NOPEER > > community for BGP route scope control > > as a BCP. > > > > The IESG plans to make a decision in the next few weeks, and solicits > > final comments on this action. Please send any comments to the > > iesg@ietf.org or ietf@ietf.org mailing lists by 2002-11-17. > > I believe this should be considered as an experimental rather than a > BCP. It does not document current practice and requires implementation > by router vendors before it can be adopted into practice. > > Other issues: > > The community field should be previously assigned by IANA and defined in > the document. > > There's a large motivation section, but no implementation > section (what do I do with NOPEER if receive it?) The ISP configures policy (a single statement) based on the NOPEER BGP community. What the policy does is not sufficiently specified. > The paragraph > > This approach allows an originator of a prefix to attach a commonly > defined policy to a route prefix, indicate that a route should be > re-advertised conditionally, based on the characteristics of the > inter-AS connection. > > does not define the conditions under which a route should be > re-advertised. Without such, I don't see a difference between > NOPEER and NO-ADVERTISE. The semantics are not defined. A customer sends NO-ADVERTISE. A peer sends NOPEER. I would imagine that a customer sending NOPEER would go out of the immediate AS (NOPEER and current AS as the only AS in the path is exported) but no further. If this is what is intended the draft doesn't say so. > There should at least be references to RFC1771 and RFC1997. > > I'd like a clear definition of "bilateral inter-AS peering" > early in the document. > > Best, > Justin Fletcher > Proficient Networks, Inc. I agree with your comments regarding inadequate specification of implementation. This draft has a good motivation but semantics need to be clearly defined. It is also not a BCP since it is not a current practice (unless Geoff is already doing this with his peers, which I doubt). Curtis From owner-ptomaine@shrubbery.net Fri Nov 8 22:58:22 2002 Received: from guelah.shrubbery.net (guelah.shrubbery.net [198.58.5.1]) by ni.shrubbery.net (8.11.6/8.11.6) with ESMTP id gA8MwMX02553 for ; Fri, 8 Nov 2002 22:58:22 GMT Received: (from majordom@localhost) by guelah.shrubbery.net (8.11.6/8.11.1) id gA8MsWw27661 for ptomaine-outgoing; Fri, 8 Nov 2002 22:54:32 GMT Received: from earthquake.proficient.net (fe0-0-access-1-sfo.proficient.net [65.209.247.5]) by guelah.shrubbery.net (8.11.6/8.11.1) with ESMTP id gA8MsTx27657 for ; Fri, 8 Nov 2002 22:54:29 GMT Received: from riga ([10.0.0.25]) by earthquake.proficient.net with Microsoft SMTPSVC(5.0.2195.4905); Fri, 8 Nov 2002 14:54:08 -0800 Subject: Re: Last Call: NOPEER community for BGP route scope control to BCP From: Justin Fletcher To: Pekka Savola Cc: idr@merit.edu, ptomaine@shrubbery.net In-Reply-To: References: Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.3 (1.0.3-4) Date: 08 Nov 2002 14:54:04 -0800 Message-Id: <1036796044.2228.194.camel@riga> Mime-Version: 1.0 X-OriginalArrivalTime: 08 Nov 2002 22:54:08.0765 (UTC) FILETIME=[BF27E2D0:01C28779] Sender: owner-ptomaine@shrubbery.net Precedence: bulk > > > > There's a large motivation section, but no implementation > > section (what do I do with NOPEER if receive it?) > > Do you think example route-map statements are necessary? I believe examples of how this would be applied and what the affect on advertisements would be very helpful; I'd suggest they be as generic as possible rather than a vendor-specific implementation. Justin Fletcher Proficient Networks, Inc. From owner-ptomaine@shrubbery.net Thu Nov 14 00:12:31 2002 Received: from guelah.shrubbery.net (guelah.shrubbery.net [198.58.5.1]) by ni.shrubbery.net (8.11.6/8.11.6) with ESMTP id gAE0CVe25565 for ; Thu, 14 Nov 2002 00:12:31 GMT Received: (from majordom@localhost) by guelah.shrubbery.net (8.11.6/8.11.1) id gAE07C008094 for ptomaine-outgoing; Thu, 14 Nov 2002 00:07:12 GMT Received: (from heas@localhost) by guelah.shrubbery.net (8.11.6/8.11.1) id gAE07Ar08088 for ptomaine@shrubbery.net; Thu, 14 Nov 2002 00:07:10 GMT Received: from felix.automagic.org (felix.automagic.org [204.152.186.101]) by guelah.shrubbery.net (8.11.6/8.11.1) with SMTP id gACNa8x01612 for ; Tue, 12 Nov 2002 23:36:08 GMT Received: (qmail 17899 invoked by uid 0); 12 Nov 2002 23:36:07 -0000 Received: from localhost.automagic.org (HELO automagic.org) (127.0.0.1) by localhost.automagic.org with SMTP; 12 Nov 2002 23:36:07 -0000 Date: Tue, 12 Nov 2002 18:36:10 -0500 Subject: Re: Last Call: NOPEER community for BGP route scope control to BCP Content-Type: text/plain; charset=US-ASCII; format=flowed Mime-Version: 1.0 (Apple Message framework v548) Cc: Pekka Savola , idr@merit.edu, ptomaine@shrubbery.net To: Justin Fletcher From: Joe Abley In-Reply-To: <1036796044.2228.194.camel@riga> Message-Id: <85E2652E-F697-11D6-9B14-00039312C852@automagic.org> Content-Transfer-Encoding: 7bit X-Mailer: Apple Mail (2.548) Sender: owner-ptomaine@shrubbery.net Precedence: bulk On Friday, Nov 8, 2002, at 17:54 Canada/Eastern, Justin Fletcher wrote: >>> >>> There's a large motivation section, but no implementation >>> section (what do I do with NOPEER if receive it?) >> >> Do you think example route-map statements are necessary? > > I believe examples of how this would be applied and what the affect > on advertisements would be very helpful; I'd suggest they be as generic > as possible rather than a vendor-specific implementation. There is a standards-track way to represent such policy in the form of RPSL, although it's debatable whether that would be more useful to operators than (say) a sample IOS config and a sample JUNOS config. From owner-ptomaine@shrubbery.net Fri Nov 15 03:16:54 2002 Received: from guelah.shrubbery.net (guelah.shrubbery.net [198.58.5.1]) by ni.shrubbery.net (8.11.6/8.11.6) with ESMTP id gAF3Gse17022 for ; Fri, 15 Nov 2002 03:16:54 GMT Received: (from majordom@localhost) by guelah.shrubbery.net (8.11.6/8.11.1) id gAF3BmU02275 for ptomaine-outgoing; Fri, 15 Nov 2002 03:11:48 GMT Received: from roam.psg.com (mailnull@roam.psg.com [204.42.73.254]) by guelah.shrubbery.net (8.11.6/8.11.1) with ESMTP id gAF3BjW02269 for ; Fri, 15 Nov 2002 03:11:45 GMT Received: from localhost ([127.0.0.1] helo=roam.psg.com.psg.com ident=randy) by roam.psg.com with esmtp (Exim 4.10) id 18CQuW-000O9x-00; Thu, 14 Nov 2002 12:48:24 -0800 From: Randy Bush MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit To: ptomaine@shrubbery.net Cc: Steve Bellovin Subject: draft-ietf-ptomaine-nopeer-00.txt Message-Id: Date: Thu, 14 Nov 2002 12:48:24 -0800 Sender: owner-ptomaine@shrubbery.net Precedence: bulk on todday's iesg call, a number of folk were concerned about the issues raised in smb's comment below. i think it is a legitimate issue. randy --- From: "Steven M. Bellovin" The Security Considerations section is a bit scary. It says, in effect, "this makes an existing attack worse". Do we really want that? Absent something like sbgp, one defense is monitoring AS paths to important destinations -- this can, to some extent, prevent such monitoring. In a separate vein, routing games are useful adjuncts to eavesdropping and MITM attacks (if no crypto us used), not just DoS attacks. That should be clarified. From owner-ptomaine@shrubbery.net Fri Nov 15 03:47:02 2002 Received: from guelah.shrubbery.net (guelah.shrubbery.net [198.58.5.1]) by ni.shrubbery.net (8.11.6/8.11.6) with ESMTP id gAF3l2e18314 for ; Fri, 15 Nov 2002 03:47:02 GMT Received: (from majordom@localhost) by guelah.shrubbery.net (8.11.6/8.11.1) id gAF3jSs02428 for ptomaine-outgoing; Fri, 15 Nov 2002 03:45:28 GMT Received: from kahuna.telstra.net (kahuna.telstra.net [203.50.0.6]) by guelah.shrubbery.net (8.11.6/8.11.1) with ESMTP id gAF3jPW02424 for ; Fri, 15 Nov 2002 03:45:25 GMT Received: from gih505.telstra.net (rsdhcp13.telstra.net [203.50.0.207]) by kahuna.telstra.net (8.12.3/8.11.3) with ESMTP id gAF3inaV028922; Fri, 15 Nov 2002 14:44:50 +1100 (EST) (envelope-from gih@telstra.net) Message-Id: <5.1.0.14.2.20021115143819.02106d20@kahuna.telstra.net> X-Sender: gih@kahuna.telstra.net X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Fri, 15 Nov 2002 14:44:14 +1100 To: Randy Bush , ptomaine@shrubbery.net From: Geoff Huston Subject: Re: draft-ietf-ptomaine-nopeer-00.txt Cc: Steve Bellovin In-Reply-To: Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-ptomaine@shrubbery.net Precedence: bulk At 12:48 PM 11/14/2002 -0800, Randy Bush wrote: >on todday's iesg call, a number of folk were concerned about the >issues raised in smb's comment below. i think it is a legitimate >issue. > >randy > >--- > >From: "Steven M. Bellovin" > >The Security Considerations section is a bit scary. It says, in >effect, "this makes an existing attack worse". Do we really want that? >Absent something like sbgp, one defense is monitoring AS paths to >important destinations -- this can, to some extent, prevent such >monitoring. > >In a separate vein, routing games are useful adjuncts to eavesdropping >and MITM attacks (if no crypto us used), not just DoS attacks. That >should be clarified. Randy had already forwarded this comment to me a few days ago, and my response at the time went along the following lines: Obviously I'd be interested in comments from the WG on wording that can be used in the Security Considerations section that would address Steve's concerns. Geoff --- My original response Not quite - it says "adoption of use of this attribute can allow yet another form of attack within BGP." In terms of truth in advertising, yes, I believe that this statement is an accurate portrayal of the situation. The next question was "Do we really want that?" And the ideal response is that no, what we would all want us a more secure form of operating inter-domain routing that allows others to identify and discard attempts to inject false information. There are way too many games that can be played in BGP to create all kinds of havoc, and I'm sure that I can dream up only a small proportion of the attack vulnerabilities in the eBGP space, and that the true extent of our vulnerabilities in this area is a sobering thought. NOPEER is a very small and very modest contribution to the BGP environment and its motive is to allow operators some additional capability to limit the propagation of Traffic-Engineering-motivated small prefix advertisements into the broader eBGP world. The intent is to assist in limiting massive growth rates in the eBGP space as a palliative measure to assist in scaling. The downside is that BGP has no clean way to verify and validate the information that is being exchanged acorss any arbitrary eBGP session, and any mechanism to allow an originator to scope the extent of a route advertisement allows an attacker to scope the extent of an attack vector. Now that's a pretty large problem with BGP and this draft does not pretend that the problem does not exist, nor does it pretend that this particular attribute assists with BGP verification and validity. I believe that there is a very real operations / routing / security issue with BGP as practised today. To what extent we want to focus effort on this to the exclusion of all other inter-domain routing activities is an open question. Adding more knobs and whistles to BGP while we are still pondering what is required in the security and integrity may not be wise. Just a few thoughts in any case From owner-ptomaine@shrubbery.net Fri Nov 15 06:39:31 2002 Received: from guelah.shrubbery.net (guelah.shrubbery.net [198.58.5.1]) by ni.shrubbery.net (8.11.6/8.11.6) with ESMTP id gAF6dVe23387 for ; Fri, 15 Nov 2002 06:39:31 GMT Received: (from majordom@localhost) by guelah.shrubbery.net (8.11.6/8.11.1) id gAF6Zod03221 for ptomaine-outgoing; Fri, 15 Nov 2002 06:35:50 GMT Received: from cisco.com (router.cisco.com [171.69.182.20]) by guelah.shrubbery.net (8.11.6/8.11.1) with ESMTP id gAF6ZkW03217 for ; Fri, 15 Nov 2002 06:35:47 GMT Received: from [192.168.0.5] (ssh-sjc-1.cisco.com [171.68.225.134]) by cisco.com (8.8.8/2.6/Cisco List Logging/8.8.8) with ESMTP id BAA00776; Fri, 15 Nov 2002 01:35:38 -0500 (EST) User-Agent: Microsoft-Entourage/10.1.1.2418 Date: Fri, 15 Nov 2002 01:35:31 -0500 Subject: ptomaine wg agenda for Atlanta From: Mark Knopper To: , Message-ID: Mime-version: 1.0 Content-type: text/plain; charset="US-ASCII" Content-transfer-encoding: 7bit Sender: owner-ptomaine@shrubbery.net Precedence: bulk Prefix Taxonomy Ongoing Measurement & Inter Network Experiment (ptomaine) TUESDAY, Nov. 19 at 1545-1645 ======================================= CO-CHAIRS: Sean Doran Mark Knopper PROPOSED AGENDA: 0. Agenda bashing and administrivia 1. WG documents - 15 mins a. draft-ietf-ptomaine-nopeer-00.txt (Geoff) b. draft-ietf-ptomaine-bgp-redistribution-01.txt (Andrew Lange) c. bounded longest match draft - (Russ White) 2. WG charter (5 mins) 3. Cengiz talk (London Internet Exchange - data analysis) - 20 mins 4. Geoff talk - CIDR report www.cidr-report.org - 20 mins From owner-ptomaine@shrubbery.net Fri Nov 15 21:37:11 2002 Received: from guelah.shrubbery.net (guelah.shrubbery.net [198.58.5.1]) by ni.shrubbery.net (8.11.6/8.11.6) with ESMTP id gAFLbAe24689 for ; Fri, 15 Nov 2002 21:37:10 GMT Received: (from majordom@localhost) by guelah.shrubbery.net (8.11.6/8.11.1) id gAFLZp407873 for ptomaine-outgoing; Fri, 15 Nov 2002 21:35:51 GMT Received: from roam.psg.com (mailnull@roam.psg.com [204.42.73.254]) by guelah.shrubbery.net (8.11.6/8.11.1) with ESMTP id gAFLZmW07869 for ; Fri, 15 Nov 2002 21:35:48 GMT Received: from localhost ([127.0.0.1] helo=roam.psg.com.psg.com ident=randy) by roam.psg.com with esmtp (Exim 4.10) id 18Co7s-000Pd5-00; Fri, 15 Nov 2002 16:35:44 -0500 From: Randy Bush MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit To: "IANA" Cc: ptomaine@shrubbery.net Subject: RE: Comments References: Message-Id: Date: Fri, 15 Nov 2002 16:35:44 -0500 Sender: owner-ptomaine@shrubbery.net Precedence: bulk > As far as the IANA Considerations section, shouldn't it say > something more like the following: > > 4. IANA considerations > > This document defines new BGP well-known transitive community > field in section xxxx. IANA is requested to register XXXX > upon publication of this document. > > ....or something like that. > > I can't really tell which registry this should go in, the name > of the field should be included in the IANA Considerations section, > etc. i think you are correct randy From owner-ptomaine@shrubbery.net Mon Nov 18 22:58:57 2002 Received: from guelah.shrubbery.net (guelah.shrubbery.net [198.58.5.1]) by ni.shrubbery.net (8.11.6/8.11.6) with ESMTP id gAIMwve28303 for ; Mon, 18 Nov 2002 22:58:57 GMT Received: (from majordom@localhost) by guelah.shrubbery.net (8.11.6/8.11.1) id gAIMt7m00725 for ptomaine-outgoing; Mon, 18 Nov 2002 22:55:08 GMT Received: (from heas@localhost) by guelah.shrubbery.net (8.11.6/8.11.1) id gAIMt5q00720 for ptomaine@shrubbery.net; Mon, 18 Nov 2002 22:55:05 GMT Received: from demiurge.exodus.net (demiurge.exodus.net [216.32.171.82]) by guelah.shrubbery.net (8.11.6/8.11.1) with ESMTP id gAIMXRW00505 for ; Mon, 18 Nov 2002 22:33:27 GMT Received: (from andrewl@localhost) by demiurge.exodus.net (8.9.3+Sun/8.9.3) id OAA18921; Mon, 18 Nov 2002 14:29:52 -0800 (PST) Date: Mon, 18 Nov 2002 14:29:52 -0800 From: andrewl@xix-w.bengi.exodus.net To: Mark Knopper Cc: ptomaine@shrubbery.net, andrewl@cw.net Subject: Re: ptomaine wg agenda for Atlanta Message-ID: <20021118142952.A18524@demiurge.exodus.net> References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: ; from mknopper@cisco.com on Fri, Nov 15, 2002 at 01:35:31AM -0500 Sender: owner-ptomaine@shrubbery.net Precedence: bulk > Prefix Taxonomy Ongoing Measurement & Inter Network Experiment (ptomaine) > > TUESDAY, Nov. 19 at 1545-1645 > ======================================= > > CO-CHAIRS: Sean Doran > Mark Knopper > > PROPOSED AGENDA: > > 0. Agenda bashing and administrivia > > 1. WG documents - 15 mins > a. draft-ietf-ptomaine-nopeer-00.txt (Geoff) > b. draft-ietf-ptomaine-bgp-redistribution-01.txt (Andrew Lange) Since I, unfortunately, will not be in Atlanta for this meeting, I'll give my update to the list. During the Yokohama meeting we discussed the possibility that the current idr extended communities draft might undergo alterations before it is standardized. In the idr meeting, I outlined a proposal for an new, more flexible and extensible community type. My proposal received a good response, however, we decided that since current extended communities are well deployed in RFC2547 BGP VPN's that replacing them would be impractical. Instead, the new community propsal will be written up as a seperate draft documenting third-generation communities. This draft will be forthcomming. Since extended communties will likely be advanced in one form or another to RFC at some point there doesn't seem to be any reason to hold up discussion of the redist draft pending idr work. We should continue our discussion of the technical and practical merits of the redist draft. Andrew From owner-ptomaine@shrubbery.net Wed Nov 20 18:50:23 2002 Received: from guelah.shrubbery.net (guelah.shrubbery.net [198.58.5.1]) by ni.shrubbery.net (8.11.6/8.11.6) with ESMTP id gAKIoMe14965 for ; Wed, 20 Nov 2002 18:50:22 GMT Received: (from majordom@localhost) by guelah.shrubbery.net (8.11.6/8.11.1) id gAKIjUQ14312 for ptomaine-outgoing; Wed, 20 Nov 2002 18:45:31 GMT Received: from sj-msg-core-2.cisco.com (sj-msg-core-2.cisco.com [171.70.145.30]) by guelah.shrubbery.net (8.11.6/8.11.1) with ESMTP id gAKIjSW14308 for ; Wed, 20 Nov 2002 18:45:28 GMT Received: from sj-msg-av-2.cisco.com (sj-msg-av-2.cisco.com [171.70.145.31]) by sj-msg-core-2.cisco.com (8.12.2/8.12.2) with ESMTP id gAKIjHu4029095 for ; Wed, 20 Nov 2002 10:45:17 -0800 (PST) Received: from nisser.cisco.com (localhost [127.0.0.1]) by sj-msg-av-2.cisco.com (8.12.2/8.12.2) with ESMTP id gAKIj9Ln012939 for ; Wed, 20 Nov 2002 10:45:09 -0800 (PST) Received: from cisco.com (sjc-vpn1-328.cisco.com [10.21.97.72]) by nisser.cisco.com (8.8.6 (PHNE_14041)/CISCO.SERVER.1.2) with ESMTP id KAA22962 for ; Wed, 20 Nov 2002 10:45:18 -0800 (PST) Message-ID: <3DDBD83C.7090002@cisco.com> Date: Wed, 20 Nov 2002 10:45:16 -0800 From: Eliot Lear User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.3a) Gecko/20021118 X-Accept-Language: en-us, en MIME-Version: 1.0 To: ptomaine@shrubbery.net Subject: draft-ietf-ptomaine-nopeer-00 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-ptomaine@shrubbery.net Precedence: bulk My question from the BoF. Is *anyone* planning to deploy this? Thanks, Eliot From owner-ptomaine@shrubbery.net Wed Nov 20 19:33:49 2002 Received: from guelah.shrubbery.net (guelah.shrubbery.net [198.58.5.1]) by ni.shrubbery.net (8.11.6/8.11.6) with ESMTP id gAKJXme16101 for ; Wed, 20 Nov 2002 19:33:48 GMT Received: (from majordom@localhost) by guelah.shrubbery.net (8.11.6/8.11.1) id gAKJWG814522 for ptomaine-outgoing; Wed, 20 Nov 2002 19:32:16 GMT Received: from mesa.bbnplanet.com (mesa.bbnplanet.com [171.78.172.21]) by guelah.shrubbery.net (8.11.6/8.11.1) with ESMTP id gAKJWDW14518 for ; Wed, 20 Nov 2002 19:32:13 GMT Received: from localhost (ttauber@localhost) by mesa.bbnplanet.com (8.10.2+Sun/8.10.2) with ESMTP id gAKJVhu29561; Wed, 20 Nov 2002 14:31:43 -0500 (EST) X-Authentication-Warning: mesa.bbnplanet.com: ttauber owned process doing -bs Date: Wed, 20 Nov 2002 14:31:43 -0500 (EST) From: Tony Tauber X-X-Sender: ttauber@mesa.bbnplanet.com To: Eliot Lear cc: ptomaine@shrubbery.net Subject: Re: draft-ietf-ptomaine-nopeer-00 In-Reply-To: <3DDBD83C.7090002@cisco.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-ptomaine@shrubbery.net Precedence: bulk On Wed, 20 Nov 2002, Eliot Lear wrote: > My question from the BoF. Is *anyone* planning to deploy this? So, would it count if someone were already to have a community (or two) that customers can use to control the redist. of their prefixes, but it's not the well-known one? Tony From owner-ptomaine@shrubbery.net Wed Nov 20 20:09:36 2002 Received: from guelah.shrubbery.net (guelah.shrubbery.net [198.58.5.1]) by ni.shrubbery.net (8.11.6/8.11.6) with ESMTP id gAKK9Ze16755 for ; Wed, 20 Nov 2002 20:09:35 GMT Received: (from majordom@localhost) by guelah.shrubbery.net (8.11.6/8.11.1) id gAKK7bc14696 for ptomaine-outgoing; Wed, 20 Nov 2002 20:07:38 GMT Received: from presque.djinesys.com (dns.nexthop.com [64.211.218.216]) by guelah.shrubbery.net (8.11.6/8.11.1) with ESMTP id gAKK7YW14692 for ; Wed, 20 Nov 2002 20:07:35 GMT Received: (from root@localhost) by presque.djinesys.com (8.11.3/8.11.1) id gAKK7Hi45148; Wed, 20 Nov 2002 15:07:17 -0500 (EST) (envelope-from jhaas@jhaas.nexthop.com) Received: from jhaas.nexthop.com (jhaas.nexthop.com [64.211.218.31]) by presque.djinesys.com (8.11.3/8.11.1) with ESMTP id gAKK7CC45130; Wed, 20 Nov 2002 15:07:12 -0500 (EST) (envelope-from jhaas@jhaas.nexthop.com) Received: (from jhaas@localhost) by jhaas.nexthop.com (8.11.3nb1/8.11.3) id gAKK78N07440; Wed, 20 Nov 2002 15:07:08 -0500 (EST) Date: Wed, 20 Nov 2002 15:07:08 -0500 From: Jeffrey Haas To: Tony Tauber Cc: Eliot Lear , ptomaine@shrubbery.net Subject: Re: draft-ietf-ptomaine-nopeer-00 Message-ID: <20021120150708.B29057@nexthop.com> References: <3DDBD83C.7090002@cisco.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: ; from ttauber@genuity.net on Wed, Nov 20, 2002 at 02:31:43PM -0500 X-Virus-Scanned: by AMaViS perl-11 Sender: owner-ptomaine@shrubbery.net Precedence: bulk On Wed, Nov 20, 2002 at 02:31:43PM -0500, Tony Tauber wrote: > So, would it count if someone were already to have a community (or > two) that customers can use to control the redist. of their prefixes, > but it's not the well-known one? The problem with those is that this is meant to be far more transitive than other internal communities. I would suspect that this may reach 2-3 as hops away from the person who attaches the community while current globally well known ones, such as NO_EXPORT, etc. only go as far as the first AS. > Tony -- Jeff Haas NextHop Technologies From owner-ptomaine@shrubbery.net Wed Nov 20 22:04:06 2002 Received: from guelah.shrubbery.net (guelah.shrubbery.net [198.58.5.1]) by ni.shrubbery.net (8.11.6/8.11.6) with ESMTP id gAKM46e19749 for ; Wed, 20 Nov 2002 22:04:06 GMT Received: (from majordom@localhost) by guelah.shrubbery.net (8.11.6/8.11.1) id gAKM24q15347 for ptomaine-outgoing; Wed, 20 Nov 2002 22:02:05 GMT Received: from mx3out.umbc.edu (mx3out.umbc.edu [130.85.25.12]) by guelah.shrubbery.net (8.11.6/8.11.1) with ESMTP id gAKM21W15343 for ; Wed, 20 Nov 2002 22:02:02 GMT Received: from gl.umbc.edu (vijay@irix2.gl.umbc.edu [130.85.60.11]) by mx3out.umbc.edu (8.12.1/8.12.0/UMBC-Central 1.11 mxout 1.2.2.3 $) with ESMTP id gAKM1wuc007077; Wed, 20 Nov 2002 17:01:58 -0500 (EST) Received: from localhost (vijay@localhost) by gl.umbc.edu (8.9.0/8.9.0) with ESMTP id RAA3506435; Wed, 20 Nov 2002 17:01:58 -0500 (EST) X-Authentication-Warning: irix2.gl.umbc.edu: vijay owned process doing -bs Date: Wed, 20 Nov 2002 17:01:58 -0500 From: Vijay Gill X-X-Sender: vijay@irix2.gl.umbc.edu To: Eliot Lear cc: ptomaine@shrubbery.net Subject: Re: draft-ietf-ptomaine-nopeer-00 In-Reply-To: <3DDBD83C.7090002@cisco.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Avmilter-Status: Skipped (size) Sender: owner-ptomaine@shrubbery.net Precedence: bulk On Wed, 20 Nov 2002, Eliot Lear wrote: > My question from the BoF. Is *anyone* planning to deploy this? > Not AOL /vijay From owner-ptomaine@shrubbery.net Wed Nov 20 22:26:20 2002 Received: from guelah.shrubbery.net (guelah.shrubbery.net [198.58.5.1]) by ni.shrubbery.net (8.11.6/8.11.6) with ESMTP id gAKMQKe20144 for ; Wed, 20 Nov 2002 22:26:20 GMT Received: (from majordom@localhost) by guelah.shrubbery.net (8.11.6/8.11.1) id gAKMOpa15431 for ptomaine-outgoing; Wed, 20 Nov 2002 22:24:51 GMT Received: from kahuna.telstra.net (kahuna.telstra.net [203.50.0.6]) by guelah.shrubbery.net (8.11.6/8.11.1) with ESMTP id gAKMOmW15427 for ; Wed, 20 Nov 2002 22:24:48 GMT Received: from gih505.telstra.net (kahuna.telstra.net [203.50.0.6]) by kahuna.telstra.net (8.12.3/8.11.3) with ESMTP id gAKMOZaV087046 for ; Thu, 21 Nov 2002 09:24:38 +1100 (EST) (envelope-from gih@telstra.net) Message-Id: <5.1.0.14.2.20021121092011.02018658@localhost> X-Sender: gih@localhost X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Thu, 21 Nov 2002 09:23:49 +1100 To: ptomaine@shrubbery.net From: Geoff Huston Subject: Re: draft-ietf-ptomaine-nopeer-00 In-Reply-To: References: <3DDBD83C.7090002@cisco.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-ptomaine@shrubbery.net Precedence: bulk At 05:01 PM 11/20/2002 -0500, Vijay Gill wrote: >On Wed, 20 Nov 2002, Eliot Lear wrote: > > > My question from the BoF. Is *anyone* planning to deploy this? > > sorry, not empowered to answer definitively on behalf of my employer. otoh, in a competitive upstream market where providing various forms of control mechanisms to customers to allow the customer to engineer various forms of policy-based solutions, then it is conceivable that support of such a routing option is not inconsistent with such a general objective. Geoff Huston From owner-ptomaine@shrubbery.net Thu Nov 21 05:09:07 2002 Received: from guelah.shrubbery.net (guelah.shrubbery.net [198.58.5.1]) by ni.shrubbery.net (8.11.6/8.11.6) with ESMTP id gAL596e01162 for ; Thu, 21 Nov 2002 05:09:06 GMT Received: (from majordom@localhost) by guelah.shrubbery.net (8.11.6/8.11.1) id gAL54xM17481 for ptomaine-outgoing; Thu, 21 Nov 2002 05:04:59 GMT Received: from sj-msg-core-2.cisco.com (sj-msg-core-2.cisco.com [171.70.145.30]) by guelah.shrubbery.net (8.11.6/8.11.1) with ESMTP id gAL54vW17477 for ; Thu, 21 Nov 2002 05:04:57 GMT Received: from sj-msg-av-3.cisco.com (sj-msg-av-3.cisco.com [171.69.17.42]) by sj-msg-core-2.cisco.com (8.12.2/8.12.2) with ESMTP id gAL54ku4011638; Wed, 20 Nov 2002 21:04:46 -0800 (PST) Received: from nisser.cisco.com (localhost [127.0.0.1]) by sj-msg-av-3.cisco.com (8.12.2/8.12.2) with ESMTP id gAL54oJt017914; Wed, 20 Nov 2002 21:04:50 -0800 (PST) Received: from cisco.com (sjc-vpn1-602.cisco.com [10.21.98.90]) by nisser.cisco.com (8.8.6 (PHNE_14041)/CISCO.SERVER.1.2) with ESMTP id VAA21144; Wed, 20 Nov 2002 21:04:47 -0800 (PST) Message-ID: <3DDC6971.9090109@cisco.com> Date: Wed, 20 Nov 2002 21:04:49 -0800 From: Eliot Lear User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.3a) Gecko/20021118 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Geoff Huston CC: ptomaine@shrubbery.net Subject: Re: draft-ietf-ptomaine-nopeer-00 References: <3DDBD83C.7090002@cisco.com> <5.1.0.14.2.20021121092011.02018658@localhost> In-Reply-To: <5.1.0.14.2.20021121092011.02018658@localhost> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-ptomaine@shrubbery.net Precedence: bulk Geoff Huston wrote: > otoh, in a competitive upstream market where providing various forms of > control mechanisms to customers to allow the customer to > engineer various forms of policy-based solutions, then it is conceivable > that support of such a routing option is not inconsistent with such > a general objective. While I appreciate your response, Geoff, (even if I don't completely understand it), let me clarify my question. In order to label NOPEER a Best Current Practice it would seem appropriate (a) that it be Best and (b) that it be a current practice. Best is, of course, subject to debate. However, "current practice" would indicate that people had either implemented it or will do so in the future. Eliot From owner-ptomaine@shrubbery.net Thu Nov 21 23:03:43 2002 Received: from guelah.shrubbery.net (guelah.shrubbery.net [198.58.5.1]) by ni.shrubbery.net (8.11.6/8.11.6) with ESMTP id gALN3he29700 for ; Thu, 21 Nov 2002 23:03:43 GMT Received: (from majordom@localhost) by guelah.shrubbery.net (8.11.6/8.11.1) id gALMxMA23185 for ptomaine-outgoing; Thu, 21 Nov 2002 22:59:22 GMT Received: from sidehack.sat.gweep.net (qmailr@sidehack.sat.gweep.net [204.145.148.154]) by guelah.shrubbery.net (8.11.6/8.11.1) with SMTP id gALMxJW23181 for ; Thu, 21 Nov 2002 22:59:19 GMT Received: (qmail 23238 invoked by uid 524); 21 Nov 2002 22:59:17 -0000 Date: Thu, 21 Nov 2002 17:59:17 -0500 From: Joe Provo To: ptomaine@shrubbery.net Subject: Re: draft-ietf-ptomaine-nopeer-00 Message-ID: <20021121225917.GA18219@gweep.net> Reply-To: crimson@gweep.net References: <3DDBD83C.7090002@cisco.com> <20021120150708.B29057@nexthop.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20021120150708.B29057@nexthop.com> User-Agent: Mutt/1.4i X-PGP-Key: http://www.gweep.net/~crimson/pgp.txt X-Disclaimer: "I'm the only one foolish enough to claim these opinions." Organization: Russell Street UN*X Consultations - NT? No Thanks! X-Do-Not-Email-Here: churlish@spammers.can-bite-me.com Sender: owner-ptomaine@shrubbery.net Precedence: bulk On Wed, Nov 20, 2002 at 03:07:08PM -0500, Jeffrey Haas wrote: > On Wed, Nov 20, 2002 at 02:31:43PM -0500, Tony Tauber wrote: > > So, would it count if someone were already to have a community (or > > two) that customers can use to control the redist. of their prefixes, > > but it's not the well-known one? > > The problem with those is that this is meant to be far more transitive > than other internal communities. I would suspect that this may > reach 2-3 as hops away from the person who attaches the community > while current globally well known ones, such as NO_EXPORT, etc. > only go as far as the first AS. Transitive comunities do exist in multi-AS providers' environments (701 customers can influence route policy at edges of 702, etc). Considering the number of "make me prepend at my edge", "send to customers only", "send to customers but not tagged as your customer", etc communities that are deployed in provider-specific manners, end users are counting up as-paths, making policy configurations and tweaks per-provider. Certainly the ability to smooth out the per-provider configurations can only help reduce complexity and therefore reduce the oft-cited operator-induced errors? Does that make it "best current"? I don't know - I stayed out of arguments of that lingo when 1597 and 1627 begat 1918. The only "current" I can think of off the top is 70x example; I know Level3 had communities that were transitive between their ASNs as well, but they no longer run multi-ASN. Does this translate to people operating at a distance through peers? I don't know, but there are networks who do handle MEDs and deaggregates with peers on an as-agreed basis. Would that be considered prior art for operating at a distance through peers? Cheers, Joe -- crimson@sidehack.gweep.net * jprovo@gnu.ai.mit.edu * jzp@rsuc.gweep.net RSUC / GweepNet / Spunk / FnB / Usenix / SAGE From owner-ptomaine@shrubbery.net Mon Nov 25 17:45:12 2002 Received: from guelah.shrubbery.net (guelah.shrubbery.net [198.58.5.1]) by ni.shrubbery.net (8.11.6/8.11.6) with ESMTP id gAPHjC105895 for ; Mon, 25 Nov 2002 17:45:12 GMT Received: (from majordom@localhost) by guelah.shrubbery.net (8.11.6/8.11.1) id gAPHg5g26995 for ptomaine-outgoing; Mon, 25 Nov 2002 17:42:05 GMT Received: (from heas@localhost) by guelah.shrubbery.net (8.11.6/8.11.1) id gAPHg3O26990 for ptomaine@shrubbery.net; Mon, 25 Nov 2002 17:42:03 GMT Received: from laptop2.kurtis.pp.se (tlp1.cobweb.autonomica.se [130.244.10.138]) by guelah.shrubbery.net (8.11.6/8.11.1) with ESMTP id gAP93rK19782 for ; Mon, 25 Nov 2002 09:03:53 GMT Received: from kurtis.pp.se (localhost [127.0.0.1]) by laptop2.kurtis.pp.se (8.12.2/8.10.2) with ESMTP id gANIV0ve027758; Sat, 23 Nov 2002 19:31:01 +0100 (CET) Date: Sat, 23 Nov 2002 19:30:59 +0100 Subject: Re: draft-ietf-ptomaine-nopeer-00 Content-Type: text/plain; charset=US-ASCII; format=flowed Mime-Version: 1.0 (Apple Message framework v548) Cc: ptomaine@shrubbery.net To: crimson@gweep.net From: Kurt Erik Lindqvist In-Reply-To: <20021121225917.GA18219@gweep.net> Message-Id: Content-Transfer-Encoding: 7bit X-Mailer: Apple Mail (2.548) Sender: owner-ptomaine@shrubbery.net Precedence: bulk > Does that make it "best current"? I don't know - I stayed out of > arguments of that lingo when 1597 and 1627 begat 1918. The only > "current" I can think of off the top is 70x example; I know Level3 > had communities that were transitive between their ASNs as well, but > they no longer run multi-ASN. > KPNQwest was also using transitive communities for our network. Each country had it's own AS with various communities defined. This was transited over our backbone AS. Best regards, - kurtis -