[174209] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Prefix hijacking, how to prevent and fix currently

daemon@ATHENA.MIT.EDU (Saku Ytti)
Fri Aug 29 07:47:42 2014

X-Original-To: nanog@nanog.org
Date: Fri, 29 Aug 2014 14:47:29 +0300
From: Saku Ytti <saku@ytti.fi>
To: nanog@nanog.org
In-Reply-To: <20140829113710.GA13827@pob.ytti.fi>
Errors-To: nanog-bounces@nanog.org

On (2014-08-29 14:37 +0300), Saku Ytti wrote:

> > clearly i am missing something.  got a write-up?
> 
> Loose mode RPKI:
>  - verified or unknown less-specific route is preferable to failing more-specific

Or said otherwise when choosing route from Adj-RIBs-In to Loc-RIB longest
match is not done to whole population, population is first divided to
'verified', 'unknown' and 'failed' routes, and longest match is done for each
sub-population in order, until match is found.

-- 
  ++ytti


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[174209] in North American Network Operators' Group

Re: Prefix hijacking, how to prevent and fix currently

daemon@ATHENA.MIT.EDU (Saku Ytti)Fri Aug 29 07:47:42 2014

daemon@ATHENA.MIT.EDU (Saku Ytti)
Fri Aug 29 07:47:42 2014