[140214] in North American Network Operators' Group
Re: Suspecious anycast prefixes
daemon@ATHENA.MIT.EDU (Danny McPherson)
Thu May 5 08:59:10 2011
From: Danny McPherson <danny@tcb.net>
In-Reply-To: <3EFFFC7D-08A3-42B3-8CD9-C06C935CB0D2@pch.net>
Date: Thu, 5 May 2011 08:59:00 -0400
To: NANOG list <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On May 3, 2011, at 6:17 AM, Bill Woodcock wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>=20
>=20
> On May 2, 2011, at 12:35 PM, Joe Abley wrote:
>> It's perhaps worth noting that there is work in the IETF to recommend =
that every prefix originated as part of an anycast cloud uses a unique =
origin AS (see =
<http://tools.ietf.org/html/draft-ietf-grow-unique-origin-as-00>). I'm =
not personally convinced of the arguments in the draft, but mentioning =
it in this thread seems reasonable.
>=20
> I'm also not convinced of the arguments in the draft, since it argues =
that it would be a best-practice
'A', not 'the', for the reasons conveyed in the draft (e.g., control=20
plane discriminator, RPKI foundations, etc..). If you don't like it,=20
don't do it, it's certainly easier to not do it.
=20
> for me to originate my address space from more than 8,000 different =
ASNs,
8000 is a very large number.
> when I currently do just fine advertising it from three.
"You" as a service operator do just fine, and it's surely much=20
simpler from a configuration and provisioning standpoint. But=20
what about those folks that consume the service, and have no=20
indication of which node they may be utilizing from an Internet=20
control plane perspective, or all the associated derivatives?
> I'd much rather there not exist a document that clueless people can =
point at and claim is a "best common practice" when it's neither best =
nor common.
'clueless people' wouldn't care which node they utilize, where=20
it resides, or what other attributes might exist and be associated=20
with it. Providing a discriminator in the control plane for the=20
consumer of critical network services might well be of utility to=20
some. =20
-danny
