nanog mailing list archives
Re: do not filter your customers
From: Leo Bicknell <bicknell () ufp org>
Date: Fri, 24 Feb 2012 12:59:50 -0800
In a message written on Fri, Feb 24, 2012 at 01:04:20PM -0700, Shane Amante wrote:
Solving for route leaks is /the/ "killer app" for BGPSEC. I can't understand why people keep ignoring this.
Not all "leaks" are bad. I remember when there was that undersea landside in Asia that took out a bunch of undersea cables. Various providers quickly did mutual transit and other arrangements to route around the problem, getting a number of things back up quite quickly. These did not match IRR records though, and likely would not have matached BGPSEC information, at least not initially. There are plenty of cases where someone "leaks" more specifics with NO_EXPORT to only one of their BGP peers for the purposes of TE. The challenge of securing BGP isn't crypto, and it isn't enough ram/cpu/whatever to process it. The challenge is getting a crypto scheme that operators can use to easily represent the real world. It turns out the real world is quite messy though, often full of temporary hacks, unusual relationships and other issues. I'm sure it will be solved, one day. -- Leo Bicknell - bicknell () ufp org - CCIE 3440 PGP keys at http://www.ufp.org/~bicknell/
Attachment:
_bin
Description:
Current thread:
- Re: do not filter your customers, (continued)
- Re: do not filter your customers Dobbins, Roland (Feb 24)
- Re: do not filter your customers Valdis . Kletnieks (Feb 25)
- Re: do not filter your customers Tom Hill (Feb 25)
- Looking For Tinet NOC Contact Faisal Imtiaz (Feb 25)
- Re: do not filter your customers Christopher Morrow (Feb 25)
- Re: do not filter your customers Dobbins, Roland (Feb 25)
- Re: do not filter your customers Jeff Young (Feb 24)
- Re: do not filter your customers Shane Amante (Feb 24)
- Re: do not filter your customers Christopher Morrow (Feb 24)
- Re: do not filter your customers Geoff Huston (Feb 24)
- Re: do not filter your customers Leo Bicknell (Feb 24)
- Re: do not filter your customers Christopher Morrow (Feb 24)
- Re: do not filter your customers Leo Bicknell (Feb 24)
- Re: do not filter your customers Christopher Morrow (Feb 24)
- RE: do not filter your customers George Bonser (Feb 24)
- Re: do not filter your customers Nick Hilliard (Feb 24)
- Re: do not filter your customers Nick Hilliard (Feb 24)
- Re: do not filter your customers Shane Amante (Feb 24)
- Re: do not filter your customers Nick Hilliard (Feb 25)
- Re: do not filter your customers Dongting Yu (Feb 25)
- Re: do not filter your customers Dobbins, Roland (Feb 25)