[56764] in North American Network Operators' Group
Re: route filtering in large networks
daemon@ATHENA.MIT.EDU (Stephen Sprunk)
Thu Mar 13 16:14:03 2003
From: "Stephen Sprunk" <stephen@sprunk.org>
To: "Dorian Kim" <dorian@blackrose.org>, "Andy Dills" <andy@xecu.net>
Cc: "North American Noise and Off-topic Gripes" <nanog@merit.edu>
Date: Thu, 13 Mar 2003 15:13:08 -0600
Errors-To: owner-nanog-outgoing@merit.edu
Thus spake "Dorian Kim" <dorian@blackrose.org>
> Route filtering and route validation are not necessarily the same things.
> AFAIK, there are no scalable mechanisms for route validation deployed
> today.
A few years ago, I saw an I-D that proposed BGP route repudiation, e.g. you
can't be sure a route is _good_, but you can be sure some routes are _bad_.
This seems to solve our bogon problem if not the general case.
In the meantime, we're still waiting for uRPF implementations that are
useful in multihomed networks -- a must-have for widespread deployment.
S
Stephen Sprunk "God does not play dice." --Albert Einstein
CCIE #3723 "God is an inveterate gambler, and He throws the
K5SSS dice at every possible opportunity." --Stephen Hawking
