[168803] in North American Network Operators' Group
Re: BCP38 is hard, was TWC (AS11351) blocking all NTP?
daemon@ATHENA.MIT.EDU (Randy Bush)
Tue Feb 4 20:17:25 2014
Date: Wed, 05 Feb 2014 10:13:41 +0900
From: Randy Bush <randy@psg.com>
To: Mark Andrews <marka@isc.org>
In-Reply-To: <20140205004806.C3F97E542B1@rock.dv.isc.org>
Cc: John Levine <johnl@iecc.com>, nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
>> How does the customer do that in a way that scales?
> You implement SIDR to the extent where you issue your multi homed
> customers CERTs for the address space you allocated to them. The
> customer can then just send signed requests to a automated service
> at the other ISPs along with the CERT which then builds the filters
> based on that information after verifying the CERTs authenticity.
you have done this in your network, the isp for which you are an
engineer?
randy
