87 messages in net.nether.puck.cisco-nsp[c-nsp] Growing BGP tables
FromSent OnAttachments
Vincent De KeyzerNov 19, 2004 6:46 am 
Gert DoeringNov 19, 2004 9:01 am 
David J. HughesNov 21, 2004 5:15 pm 
Ryan O'ConnellNov 21, 2004 5:43 pm 
Brian FeenyNov 21, 2004 9:16 pm 
Jon LewisNov 21, 2004 9:49 pm 
Gert DoeringNov 22, 2004 2:55 am 
Ian DickinsonNov 22, 2004 4:11 am 
Neil J. McRaeNov 22, 2004 4:52 am 
Ian DickinsonNov 22, 2004 5:47 am 
David J. HughesNov 22, 2004 6:45 am 
Gert DoeringNov 22, 2004 7:36 am 
Rainer BorromeoNov 22, 2004 8:39 am 
Jared MauchNov 22, 2004 10:19 am 
Gert DoeringNov 22, 2004 11:07 am 
Łukasz BromirskiNov 22, 2004 11:15 am 
Brian FeenyNov 22, 2004 12:04 pm 
Gunther StammwitzNov 22, 2004 1:51 pm 
Jared MauchNov 22, 2004 2:03 pm 
Michael LyngbølNov 22, 2004 2:15 pm 
Gunther StammwitzNov 22, 2004 2:19 pm 
David J. HughesNov 22, 2004 2:44 pm 
Brian FeenyNov 22, 2004 4:48 pm 
David J. HughesNov 22, 2004 4:53 pm 
Rodney DunnNov 22, 2004 4:58 pm 
David J. HughesNov 22, 2004 4:59 pm 
David J. HughesNov 22, 2004 5:17 pm 
Randy BushNov 22, 2004 5:21 pm 
David J. HughesNov 22, 2004 5:31 pm 
Randy BushNov 22, 2004 5:34 pm 
Brian FeenyNov 22, 2004 5:38 pm 
Rodney DunnNov 22, 2004 8:17 pm 
Rodney DunnNov 22, 2004 8:31 pm 
Michael LyngbølNov 23, 2004 2:44 am 
Neil J. McRaeNov 23, 2004 5:10 am 
Neil J. McRaeNov 23, 2004 5:10 am 
Gert DoeringNov 23, 2004 5:24 am 
Michael LyngbølNov 23, 2004 5:29 am 
Neil J. McRaeNov 23, 2004 5:38 am 
Michael LyngbølNov 23, 2004 5:39 am 
Martin RobinsonNov 23, 2004 5:50 am 
Tantsura, JeffNov 23, 2004 5:51 am 
Neil J. McRaeNov 23, 2004 6:42 am 
Ben CrockerNov 23, 2004 6:54 am 
ege iyiogluNov 23, 2004 9:28 am 
Tantsura, JeffNov 23, 2004 10:17 am 
Rodney DunnNov 23, 2004 10:39 am 
Tantsura, JeffNov 23, 2004 11:12 am 
Rodney DunnNov 23, 2004 11:38 am 
Brian FeenyNov 23, 2004 12:11 pm 
Rodney DunnNov 23, 2004 12:33 pm 
Gert DoeringNov 23, 2004 3:01 pm 
David J. HughesNov 23, 2004 4:42 pm 
Rodney DunnNov 23, 2004 7:33 pm 
Brian FeenyNov 23, 2004 7:37 pm 
David J. HughesNov 23, 2004 8:30 pm 
Mihai CHELARUNov 24, 2004 5:07 am 
Gert DoeringNov 24, 2004 7:27 am 
Rodney DunnNov 24, 2004 8:27 am 
David J. HughesNov 24, 2004 6:28 pm 
Krzysztof AdamskiNov 24, 2004 10:33 pm 
Robert BoyleNov 25, 2004 12:48 am 
Bill WichersNov 25, 2004 12:56 am 
Krzysztof AdamskiNov 25, 2004 9:44 am 
Stephen J. WilcoxNov 26, 2004 9:21 am 
Gert DoeringNov 26, 2004 10:03 am 
Stephen J. WilcoxNov 26, 2004 11:09 am 
Gert DoeringNov 26, 2004 11:20 am 
Stephen J. WilcoxNov 27, 2004 6:53 am 
Rodney DunnNov 30, 2004 6:40 pm 
David J. HughesNov 30, 2004 7:26 pm 
Rodney DunnNov 30, 2004 10:30 pm 
Randy BushDec 1, 2004 12:30 am 
David J. HughesDec 1, 2004 12:57 am 
lee....@census.govDec 1, 2004 8:59 am 
Rodney DunnDec 1, 2004 9:18 am 
lee....@census.govDec 1, 2004 11:18 am 
David J. HughesDec 1, 2004 8:40 pm 
Randy BushDec 1, 2004 8:51 pm 
Rodney DunnJan 27, 2005 11:41 am 
Gert DoeringJan 27, 2005 11:45 am 
Rodney DunnJan 27, 2005 11:48 am 
David J. HughesJan 27, 2005 11:42 pm 
Joe MaimonJan 28, 2005 8:28 am 
Jon LewisJan 28, 2005 9:25 am 
Joe MaimonJan 28, 2005 9:52 am 
Jon LewisJan 28, 2005 10:25 am 
Actions with this message:
Paste this link in email or IM:
Paste this link in email or IM:
Atom feed for this thread
Paste this URL into your reader:
Subject:[c-nsp] Growing BGP tablesActions...
From:Jon Lewis (jle@lewis.org)
Date:Jan 28, 2005 9:25:31 am
List:net.nether.puck.cisco-nsp

On Fri, 28 Jan 2005, Joe Maimon wrote:

That's incredible. I can't believe that so few people would see the benefit in this. I know one of those attachments was mine.

This is something discussed a while back, how to deal with those who insert more specifics, right? This was also mentioned as neccessary to avoid the loophole in Team Cymru bogons, correct?

I think these are two similar but very separate issues being talked about together, when maybe they shouldn't.

In the bogons case, I'd love to be able to take a bogon feed from a trusted source (i.e. team cymru) and have those routes put in the table as "special poison routes". I don't ever want another peer to be able to advertise any of those routes or more specifics, and if they do, I want to ignore those routes. The same logic could be applied to abusive networks you don't want to exchange traffic with.

The more general issue of ignoring more specifics for those who announce CIDRs and subnets of them for no obvious (or operational to me) reason is far more complicated as ideally you'd like the previously ignored more specifics to magically resurface if the aggregate route disappears.

If we treat these as separate issues/features, would it be that hard to have a route-map match statement in the very near future that could check incoming routes against a certain set of routes (perhaps by the next hop IP of the already installed routes) and reject them based on that?

i.e. Assume I have a feed of bogon routes and have their next-hop IP set to 192.0.2.1.

route-map blah-input deny 10 match existing-next-hop 192.0.2.1 route-map blah-input permit 20 ....

That doesn't seem like it'd be rocket science to implement...but then I've never seen cisco's BGP code.

---------------------------------------------------------------------- Jon Lewis | I route Senior Network Engineer | therefore you are Atlantic Net | _________ http://www.lewis.org/~jlewis/pgp for PGP public key_________