October 1999 - Test - lists.nanog.org

The Cidr Report
by Tony Bates 08 Oct '99

08 Oct '99

This is an auto-generated mail on Fri Oct 8 12:00:00 PDT 1999 It is not checked before it leaves my workstation. However, hopefully you will find this report interesting and will take the time to look through this to see if you can improve the amount of aggregation you perform. The report is split into sections: 0) General Status List the route table history for the last week, list any possibly bogus routes seen and give some status on ASes. 1) Gains by aggregating at the origin AS level This lists the "Top 30" players who if they decided to aggregate their announced classful prefixes at the origin AS level could make a significant difference in the reduction of the current size of the Internet routing table. This calculation does not take into account the inclusion of holes when forming an aggregate so it is possible even larger reduction should be possible. 2) Weekly Delta A summary of the last weeks changes in terms of withdrawn and added routes. Please note that this is only a snapshot but does give some indication of ASes participating in CIDR. Clearly, it is generally a good thing to see a large amont of withdrawls. 3) Interesting aggregates Interesting here means not an aggregate made as a set of classful routes. Thanks to xara.net for giving me access to their routing tables once a day. Please send any comments about this report directly to me. Check http://www.employees.org/~tbates/cidr-report.html for a daily update of this report. ------------------------------------------------------------------------------ CIDR REPORT for 08Oct99 0) General Status Table History ------------- Date Prefixes 011099 64019 021099 64011 031099 64104 041099 64203 051099 64273 061099 64275 071099 64665 081099 64852 Check http://www.employees.org/~tbates/cidr.plot.html for a plot of the table history. Possible Bogus Routes --------------------- AS Summary ---------- Number of ASes in routing system: 5768 Number of ASes announcing only one prefix: 3053 (1673 cidr, 1380 classful) Largest number of cidr routes: 570 announced by AS701 Largest number of classful routes: 929 announced by AS701 1) Gains by aggregating at the origin AS level --- 08Oct99 --- ASnum NetsNow NetsCIDR NetGain % Gain Description AS271 384 144 240 62.5% BCnet Backbone AS719 731 566 165 22.6% LANLINK autonomous system AS2609 127 13 114 89.8% EUnet-TN AS9269 137 24 113 82.5% Hong Kong CTI AS1221 618 509 109 17.6% TELSTRA-AS AS174 583 490 93 16.0% Performance Systems International AS7046 341 255 86 25.2% UUNET-CUSTOMER AS4293 226 141 85 37.6% Internal ASN for C&W AS577 261 177 84 32.2% Bell Canada Backbone AS6944 97 15 82 84.5% RapidSite, Inc. AS7545 140 60 80 57.1% TPG Internet Pty Ltd AS7657 243 165 78 32.1% The Internet Group Limited AS7496 108 31 77 71.3% Power Up AS3749 140 64 76 54.3% TECNET AS4200 181 109 72 39.8% AGIS (Apex Global Information Ser AS4740 343 290 53 15.5% Ozemail Pty Ltd (ASN-OZEMAIL) AS209 310 261 49 15.8% Qwest Communications AS2493 138 91 47 34.1% iSTAR Internet, Inc. AS684 92 46 46 50.0% Manitoba Regional Network Backbon AS816 225 182 43 19.1% UUNET Canada (ASN-UUNETCA-AS4) AS701 929 888 41 4.4% Alternet AS6528 45 7 38 84.4% WORLD-LYNX AS549 200 162 38 19.0% ONet Backbone AS4755 103 68 35 34.0% Videsh Sanchar Nigam Ltd. India AS3737 99 66 33 33.3% PenTeleData Inc. (ASN-PTD) AS7568 45 13 32 71.1% C.S. Communications Co., Ltd. AS1785 236 204 32 13.6% NYSERNet Backbone AS1 492 460 32 6.5% GTE Internetworking AS9453 33 2 31 93.9% Soongsil University AS7745 40 9 31 77.5% BIGSKY-AS For the rest of the previous weeks gain information please see http://www.employees.org:80/~tbates/cidr-report.html 2) Weekly Delta Please see http://www.employees.org:80/~tbates/cidr-report.html for this part of the report 3) Interesting aggregates Please see http://www.employees.org:80/~tbates/cidr-report.html for this part of the report

1 0

Regarding global BGP community values
by Aleksi Suhonen 08 Oct '99

08 Oct '99

Hello, I've also come to think that there should be global communities for the basic purposes that most autonomous systems have built their own communities for. My approach is probably a little different to those of the other contributers to this discussion. Here is a sketch of the new well-known communities I have come up with: 0xFFFn:arg where n designates a function and arg designates a parameter to the function. These could be the functions: n=0 Never announce to AS <arg>. n=1 May announce to AS <arg>. n=2 If you announce to AS <arg>, prepend your own AS once. n=3 If you announce to AS <arg>, prepend your own AS twice. : : n=7 If you announce to AS <arg>, prepend your own AS six times. n=8 When announcing to AS <arg>, change this community to "local-AS" n=9 When announcing to AS <arg>, change this community to "no-advertise" n=10 When announcing to AS <arg>, change this community to "no-export" n=11 Reserved for brainstorming. n=12 Reserved for brainstorming. n=13 Reserved for brainstorming. n=14 Reserved for brainstorming. n=15 This contains the old well-known communities. Perhaps this could also double as "set local preference to <arg>?" 0xFFF0 is 65520, so 0xFFFn is 65520+n. Now I'm not saying these are all useful. I for one don't like to see anyone prepend more than three times and setting "no-advertise" at a distant location can also have quite nasty consequences. They may still have use in some special circumstances. Further brainstorming: an arg of 0 could be interpreted as "all transits" and 65535 as "all peers." If these special cases were to be hard coded into the BGP implementation, then there should be a way to mark sessions as transit/peering/other. If on the other hand support for these communities would be simply via auto-generated route-maps, you would only have to tell the generator the type of the session, and since the data for the generator would most probably come from a database of some kind the generator would get the type from there automagically. These communities should be able to travel through multiple autonomous systems. They should be usable to influence not only your transits' transits' routing decisions, but your transits' peers', your transits' transits' peers', your transits' transits' transits' peers' and so on. Getting all involved parties to turn on send-community on all involved BGP sessions is of course a challenge, but a one that has already been overcome with the existing "transit provider proprietary" communities where needed. Randy Bush pointed out an underlying problem with trusting preference hints from distant autonomous systems. I would like to argue the case against him and for letting everyone influence one's routing decisions. Suppose I have a transit T, a peer P, a customer C and a distant third party D. Suppose also that D has contractual agreements that result in me hearing D's routes from all of T, P and C. By default I would prefer D's routes heard from C. However, if D wishes me to use T or P to reach D instead, D can do so without the use of any communities. D can lower the preference of a path through P or C by arranging it so that I don't hear D from P or C, and D can increase the preference of a path by making me hear D's routes as more specifics from there. Both of these practises I frown upon. I would therefore see that it would be in my best interest to let D influence my routing decisions directly instead of littering my routing table or eating at the redundancy between my customers and D. Furthermore it should be in D's best interest not to give hints to use a bad path between D and me. If D would choose to maliciously abuse my trust (whether via the kludges or via the preference hints presented) I can always work to override or filter the bad routes and try to contact D's upstreams or D directly to resolve the issue. Alex Bligh noted that main stream IOS has insufficient means of manipulating communities. The bleeding edge versions have had methods for removing only some communities while preserving others for a good time now. I do agree though that routing policies can often be much more complicated than what is implementable with route-maps no matter how modern. -- Aleksi Suhonen Here is a sample shell script that does simple automagic. If anyone would use it, it would need to be modified to implement one's own routing policy too. It is included only as an example and proof of concept. I have not tested that what it produces actually works. #!/bin/sh # Usage: this-program my-as their-as their-ip comm-list session-type # comm-list: index of first available "ip community-list" # session-type: (T)ransit (P)eer (C)ustomer my_as=$1 their_as=$2 their_ip=$3 comm_deny=$4 comm_pre1=`echo 1+$4|bc` comm_pre2=`echo 2+$4|bc` comm_pre3=`echo 3+$4|bc` comm_pre4=`echo 4+$4|bc` comm_pre5=`echo 5+$4|bc` comm_pre6=`echo 6+$4|bc` comm_loas=`echo 7+$4|bc` comm_noad=`echo 8+$4|bc` comm_noex=`echo 9+$4|bc` # these can be reused for all sessions comm_local_pref_80=1 comm_local_pref_90=2 comm_local_pref_110=3 comm_remove=4 # set these to your values transit_route_tag=${my_as}:666 peer_route_tag=${my_as}:555 customer_route_tag=${my_as}:777 route_map_name_prefix=axu-${their_as} case $5 in T*) announce_community=$customer_route_tag denounce_community="$transit_route_tag $peer_route_tag" tag_community=$transit_route_tag default_preference=90 their_class=0 ;; P*) announce_community=$customer_route_tag denounce_community="$transit_route_tag $peer_route_tag" tag_community=$peer_route_tag default_preference=100 their_class=65535 ;; *) announce_community="$transit_route_tag $peer_route_tag $customer_route_t ag" denounce_community="" tag_community=$customer_route_tag default_preference=101 their_class=65534 ;; esac denounce_community="$denounce_community 65520:${their_as} 65520:${their_class}" cat <<EOF ! reused community-lists ip community-list $comm_local_pref_80 deny 65535:100 ip community-list $comm_local_pref_80 permit 65535:80 ip community-list $comm_local_pref_90 deny 65535:100 ip community-list $comm_local_pref_90 permit 65535:90 ip community-list $comm_local_pref_110 deny 65535:100 ip community-list $comm_local_pref_110 permit 65535:110 ip community-list $comm_remove permit 65535:80 65535:90 65535:100 65535:110 ip community-list $comm_remove permit $transit_route_tag $peer_route_tag ip community-list $comm_remove permit $customer_route_tag ! new community-lists ip community-list $comm_deny permit $denounce_community ip community-list $comm_pre1 permit 65522:${their_as} ip community-list $comm_pre1 permit 65522:${their_class} ip community-list $comm_pre2 permit 65523:${their_as} ip community-list $comm_pre2 permit 65523:${their_class} ip community-list $comm_pre3 permit 65524:${their_as} ip community-list $comm_pre3 permit 65524:${their_class} ip community-list $comm_pre4 permit 65525:${their_as} ip community-list $comm_pre4 permit 65525:${their_class} ip community-list $comm_pre5 permit 65526:${their_as} ip community-list $comm_pre5 permit 65526:${their_class} ip community-list $comm_pre6 permit 65527:${their_as} ip community-list $comm_pre6 permit 65527:${their_class} ip community-list $comm_loas permit 65528:${their_as} ip community-list $comm_loas permit 65528:${their_class} ip community-list $comm_noad permit 65529:${their_as} ip community-list $comm_noad permit 65529:${their_class} ip community-list $comm_noex permit 65530:${their_as} ip community-list $comm_noex permit 65530:${their_class} route-map ${route_map_name_prefix}-in permit 10 match community $comm_local_pref_80 set local-preference 80 set comm-list $comm_remove delete set community $tag_community additive ! route-map ${route_map_name_prefix}-in permit 20 match community $comm_local_pref_90 set local-preference 90 set comm-list $comm_remove delete set community $tag_community additive ! route-map ${route_map_name_prefix}-in permit 30 match community $comm_local_pref_110 set local-preference 110 set comm-list $comm_remove delete set community $tag_community additive ! route-map ${route_map_name_prefix}-in permit 40 set local-preference $default_preference set comm-list $comm_remove delete set community $tag_community additive ! route-map ${route_map_name_prefix}-out deny 10 match community $comm_deny ! route-map ${route_map_name_prefix}-out permit 20 match community $comm_pre1 set as-path prepend ${my_as} ! route-map ${route_map_name_prefix}-out permit 30 match community $comm_pre2 set as-path prepend ${my_as} ${my_as} ! route-map ${route_map_name_prefix}-out permit 40 match community $comm_pre3 set as-path prepend ${my_as} ${my_as} ${my_as} ! route-map ${route_map_name_prefix}-out permit 50 match community $comm_pre4 set as-path prepend ${my_as} ${my_as} ${my_as} ${my_as} ! route-map ${route_map_name_prefix}-out permit 60 match community $comm_pre5 set as-path prepend ${my_as} ${my_as} ${my_as} ${my_as} ${my_as} ! route-map ${route_map_name_prefix}-out permit 70 match community $comm_pre6 set as-path prepend ${my_as} ${my_as} ${my_as} ${my_as} ${my_as} ${my_as} ! route-map ${route_map_name_prefix}-out permit 80 match community $comm_loas set comm-list $comm_loas delete set community local-AS additive ! route-map ${route_map_name_prefix}-out permit 90 match community $comm_noad set comm-list $comm_noad delete set community no-advertise additive ! route-map ${route_map_name_prefix}-out permit 100 match community $comm_noex set comm-list $comm_noex delete set community no-export additive ! route-map ${route_map_name_prefix}-out permit 110 router bgp ${my_as} neighbor ${their_ip} remote-as ${their_as} neighbor ${their_ip} next-hop-self neighbor ${their_ip} send-community neighbor ${their_ip} remove-private-AS neighbor ${their_ip} route-map ${route_map_name_prefix}-in in neighbor ${their_ip} route-map ${route_map_name_prefix}-out out EOF

4 4

Network Diagrams
by Steve Baker 08 Oct '99

08 Oct '99

I was wondering, if anyone had, or knew where might gain access to network diagrams for MAE-East and MAE-West. Thanks -S

1 0

RE: Regarding global BGP community values
by Hayden, Robin 08 Oct '99

08 Oct '99

Aleks Suhonen wrote: >Here is a sketch of the new well-known communities I have come >up with: > >0xFFFn:arg ... > n=0 Never announce to AS <arg>. ... Not a bad idea but how would you strip out the "arg" portion of the community value for use in your route maps (on a cisco that is)? Is this currently possible, or are you proposing that vendors (who can't already do this) upgrade their implementation in newer code versions? Robin Hayden

2 1

a moment of silence
by Randy Bush 08 Oct '99

08 Oct '99

october 16th is the first anniversary of the death of jon postel. while it might be tempting to shut the net off for an hour in memoriam, it does not seem very responsible. i intend to shut down my personal home/office site and all servers there for the day. others may have their own ways of expressing respect and regret. randy

2 1

McLeodUSA Fiber cut in Chicago, IL
by Charley Kline 07 Oct '99

07 Oct '99

One of our OC-3's went into path AIS at 2:55pm CDT today. McLeodUSA reports they have a cut fiber in the Chicago area. The repair crew has been on site since 5pm CDT, but they didn't give me an ETR. /cvk

1 0

Re: MCI WorldCom fiber cut - Syracuse, NY
by Andrew Odlyzko 07 Oct '99

07 Oct '99

Could the explanation be simpler? Effects of gas pipeline and water main breaks tend to be localized because they supply commodity goods, and there is local storage (and, especially in case of water, local supplies) of those. Hence such breaks affect fewer people. The gas supply to my kitchen does not depend on maintenance of uniform pressure in all the gas pipelines from the well off the shore of Louisiana all the way to New Jersey; my supplier has enough gas stored around here to keep pumping for quite a while even if a pipeline in Kentucky is cut. On the other hand, when a fiber gets cut in Ohio, and I am trying to get some bits from California, it does not help me to know that somebody in Pennsylvania has terabits on her server that she is willing to ship to me. Andrew At 07:27 PM 10/5/99 -0400, Mike Heller wrote: >I find it interesting that we don't hear about more accidental gas >explosions and water main breaks from backhoes. Are the blueprints and >posted warnings more detailed or is there more fiber than utility pipe in >the ground? > >Michael Heller >Sr. Systems Engineer >Earthweb, Inc. >212.448.4175 >mikeh(a)earthweb.com > followed by other contributions from Derek Balling, Charles Sprickman, and Nathan Stratton. ************************************************************************ Andrew Odlyzko amo(a)research.att.com AT&T Labs - Research voice: 973-360-8410 http://www.research.att.com/~amo fax: 973-360-8178 ************************************************************************

9 9

Re: MCI WorldCom fiber cut - Syracuse, NY
by Michael Heller 07 Oct '99

07 Oct '99

Has anyone come to the conclusion that there might be a market for titanium-reinforced innerduct? Add up the yearly costs of outages for the average provider and the high costs of indestructable conduit make more sense. At 02:02 PM 10/5/99 -0400, Scott Drassinower wrote: > > >MCI WorldCom claims that they have located a fiber cut in or near >Syracuse, NY (300+ miles northwest of NYC and White Plains) that is >the cause of the outage. They say crews have been dispatched. > >We had several MCI WorldCom circuits go out of service at about 12:40 EDT. >Some of the circuits are totally within WorldCom's fiber network, some >have endpoints on Bell Atlantic's network. All are in the NYC area. > >Unconfirmed by WorldCom, but apparently this cut has taken out two OC-48s. > >It's very interesting (and seemingly absurd) that to go 25 miles south, we >first must go 300 miles in the totally opposite direction. > >-- > Scott M. Drassinower scottd(a)cloud9.net > Cloud 9 Consulting, Inc. White Plains, NY > +1 914 696-4000 http://www.cloud9.net > > > > Michael Heller Sr. Systems Engineer Earthweb, Inc. 212.448.4175 mikeh(a)earthweb.com

10 12

Fiber cuts, telcos and excavators
by Sean Donelan 07 Oct '99

07 Oct '99

"Derek J. Balling" <dredd(a)megacity.org> writes: > I know some telcos do this already. When I worked for GTE (years ago), > we had this construction guy calling into the call-center asking when > the "call before you dig" guy would be there. We had no idea (I worked > in the billing department at the time), and simply referred him back > to the Dig-#.... he called about 10 times in 20 minutes (literally) > and finally he said to the last rep "Fuck it, I'm digging..." Sounds like the construction guy went out of his way to notify the utility the cable locate guy hadn't shown up on time. I have heard from the excavator community over the years. They often point out the utilities seem to not care, and don't show up to mark their utilities on-time. The famous telco appointment time of between 8 and 5, if at all. The excavator is losing money for every minute the locate marker is late, or doesn't show up at all. This isn't a lot of profit margin in excavation. Sometimes the choice is between not digging and definitely going out of business, or digging and possibly going out of business. My question is where was the cable locate marker? I know, people who live in glass houses etc., and I guess I now live in a glass house. But I wonder if telco's really consider it a high priority? It wasn't worth the effort to contact the repair or locate department before the cut happened. But afterwards when the "idiot overflow calls" started coming in, then the call-center made the effort to contacted the other departments. How much money did the telco end up costing itself by not making that call before the cut? As far as sending a big bill to the contractor. As has been pointed out before, most excavators have the minimum insurance and few assets. And the cynic may look at the number of contractors hired by utilities to outsource their construction, as if it is just a shield. There have been a few cases of fiber laying contractors hired by a telco, cutting the fiber of the same telco. There is even a case in the last six months of one telco's sub-contractor cutting their fiber, being warned and fined; and doing the same thing a few weeks later. The last FCC outage report from the telco reported the telco will terminate the sub-contactor, but not until after they finish the rest of the job.

1 0

Fwd: Other types of underground utilities
by Sean Donelan 06 Oct '99

06 Oct '99

Mike Heller <mikeh(a)earthweb.com> writes: > I find it interesting that we don't hear about more accidental gas > explosions and water main breaks from backhoes. Are the blueprints and > posted warnings more detailed or is there more fiber than utility pipe in > the ground? This forum isn't as sensitized when the problem affects other utilities. All underground utilities have the problem. In fact the US Federal Call Before You Dig program is administered by the Department of Transportation pipeline group because so many of the incidents involve them. You might think excavators are more careful around explosive and deadly things like high-pressure pipelines or high-voltage electrical lines. But I don't see it. But this isn't the North American Gas Pipeline Operators Group (NAGPOG).

1 0