[133416] in North American Network Operators' Group
Re: Are you ready for RPKI in your BGP?
daemon@ATHENA.MIT.EDU (Randy Bush)
Thu Dec 9 07:54:43 2010
Date: Thu, 09 Dec 2010 04:54:36 -0800
From: Randy Bush <randy@psg.com>
To: Arturo Servin <arturo.servin@gmail.com>
In-Reply-To: <41D087EB-6E3B-44D3-84DF-DB5FEDB9EEEA@gmail.com>
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
> IMHO one piece missing (not the only one, but one important in this
> stage) is RTR (RPKI/Router Protocol) working in routers.
i have been running test versions on ios xr on a gsr and ios classic on
a 7200 for a while now.
> I am only aware of one big vendor with testing code.
see your sales team
> Also open-source implementations (Quagga, Xorp, Bird, etc.) are not
> actively (or at all) working in RPKI
first a nit. i would like to differentiate the RPKI, a certificate and
routing infrastructure, from route origin validation. this is needed
because there may be other uses of the RPKI.
seondly, i believe NIST has a quagga hacked to do origin validation
based on rpki-rtr protocol.
randy
