Hi,
On Tue, Jan 07, 2025 at 02:12:47PM +0100, Tobias Fiebig wrote:
> The above document now does that, stating on Page 25:
>
> """
> Security Recommendation 27: An Internet exchange point (IXP) should
> announce???from its route server to all its member ASes???its LAN prefix or
> its entire prefix, which would be the same as or less specific than its
> LAN prefix. Each IXP member AS should, in turn, accept this prefix from
> the IXP and reject any more-specific prefixes (of the IXP announced
> prefix) from any of its eBGP peers.
> """
Yes...? So why is this a bad thing?
The "reject any more-specific prefixes" is a good thing, and the other
part is somewhat moot (when you're connected to it, the "connected prefix"
will take precedence before "learned by BGP" anyway). So I fail to
see why they would recommend something which doesn't have an effect,
but I also fail to see why this is something to be massively upset
about...
> I believe that _something_ should be done to prevent this from going
> further.
>
> I see four options here:
>
> - Move ahead _quickly_ with replacing RFC7454 in BCP194
> - Move ahead _quickly_ with a -bis just dropping the IXP-LAN related
> text
> - Move ahead _quickly_ and write a short document saying 'no IXP prefix
> in the GRT, set ROAs for AS0' (This, though, might make some non-
> friends among some IXes as well, as it takes away choice to a degree)
The IXP crowd told me in no uncertain terms that it's their choice to
make on whether a peering LAN prefix should be visible or not.
> - Accept that we will all need way more space in our FIB and RIB.
I fail to see why the paragraph quoted above would change the amount
of FIB/RIB space needed here in significant ways (like "at max one extra
prefix v4 + v6 per IXP in the world", which is like "a few hundred")..
Gert Doering
-- NetMaster
--
have you enabled IPv6 on something today...?
SpaceNet AG Vorstand: Sebastian v. Bomhard, Ingo Lalla,
Karin Schuler, Sebastian Cler
Joseph-Dollinger-Bogen 14 Aufsichtsratsvors.: A. Grundner-Culemann
D-80807 Muenchen HRB: 136055 (AG Muenchen)
Tel: +49 (0)89/32356-444 USt-IdNr.: DE813185279
_______________________________________________
GROW mailing list -- grow@ietf.org
To unsubscribe send an email to grow-le...@ietf.org
