Re: Bit-dumping [Was: Re: Peering Policy]
Here's a possibility offered for discussion for minimizing the effect of someone pointing default to you at an exchange point. This would not defeat all defaulting but might make the effect less painful. Do not carry a full routing table on your exchange point router. Only carry routes to your customers and to networks with which you peer at that particular exchange point. That way if someone sends you traffic destined for a peer that you do not see at that exchange point, like via private peering on another router or at another exchange point, your exchange point router will not have a route to it. Traffic from a defaulting network destined for one of your local peers could be forwarded to that peer directly without crossing your backbone. Also, it may help in detecting a defaulting network. If a customer of the evil defaulting network traceroutes to a destination that ends on your exchange point router and sends it to your NOC as a problem - their caught. This would work best at exchange points that are less than fully attended. -Andy
Do not carry a full routing table on your exchange point router. Only carry routes to your customers and to networks with which you peer at that particular exchange point.
If you are someone who is not going to be easilly able to detect this through traffic stats, the likelihood is you are near enough tier one that your routes + all your peer routes is very near a full routing table anyway. I prefer Avi F's (?) idea pinging thru ach router on the fabric occasionally using a dest address which is not in the routing table. If you see the packets coming back at you rather than !H you know someone is defaulting. Alex Bligh Xara Networks
participants (2)
-
Alex.Bligh
-
Andy lague