[161544] in North American Network Operators' Group
Re: [c-nsp] DNS amplification
daemon@ATHENA.MIT.EDU (Leo Bicknell)
Tue Mar 19 14:59:37 2013
Date: Tue, 19 Mar 2013 11:57:06 -0700
From: Leo Bicknell <bicknell@ufp.org>
To: "nanog@nanog.org Group" <nanog@nanog.org>
Mail-Followup-To: "nanog@nanog.org Group" <nanog@nanog.org>
In-Reply-To: <153E118A-70F0-484D-AEBE-F744C372ABC3@virtualized.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
--EuxKj2iCbKjpUGkD
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
In a message written on Tue, Mar 19, 2013 at 11:33:33AM -0700, David Conrad=
wrote:
> LISP doesn't replace BGP. It merely adds a layer of indirection so you do=
n't have to propagate identity information along with routing topology, all=
owing much greater aggregation.
The problem with LISP is that when the complexity of the entire
system is taken into account it is not signficantly more efficient
than the current system. Even if it works perfectly, it makes no
economic sense to spend the time and money to swap out the current
system for something with approximately the same scaling properties
and costs going forward. Any replacement would probably have to
be an order of magnitude better at least to justify the pain of
switching.
LISP also has some potential downsides at Internet scale. Those
who remember the 7500 platform when caching was the rage know what
happens when you have to flush the cache for example. A LISP network
is a similar model, with LISP nodes caching rather than linecards.
There is potential for distributed uglyness.
However, the LISP folks made a rather smart course correction in
my opinion, and one I never would have thought to make. The LISP
testbed network proved that LISP was a nice way to overlay an
arbitrary topoligy on top of the existing Internet. Compared to
many other "VPN" solutions it has a lot of nice properties. Some
folks are now using LISP to network a collection of sites using
commodity internet access making very resiliant topologies quickly
and easily. I suspect LISP may find a very productive niche.
--=20
Leo Bicknell - bicknell@ufp.org - CCIE 3440
PGP keys at http://www.ufp.org/~bicknell/
--EuxKj2iCbKjpUGkD
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.18 (FreeBSD)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=x+sX
-----END PGP SIGNATURE-----
--EuxKj2iCbKjpUGkD--
