MPLS VPNs or not?
Vijay Gill
vijay at umbc.edu
Tue Aug 7 15:49:38 UTC 2001
--On Tuesday, August 07, 2001 08:29 -0700 Robert Raszuk <raszuk at cisco.com>
wrote:
> Vijay,
>
> I am not defending IOS bugs or any particular implementation - I am
> defending the architecture.
>
> R.
Robert,
the point here being that software is a complex beast that is fairly hard
to get right and often has very subtle failure modes. The interactions
between various small bugs in subsystems often result in catastrophic
failures when they interact as a part of a much larger whole. The
architecture is fine, and in fact like all Powered By PowerPoint (tm)
architectures, looks good in labs and papers, runs extremely well on slide
projectors and will probably run fine in the real world for a while too.
However, there are real life operations folks who have to run these things
on large networks with lots of interactions among various components that
are hard to duplicate in a lab setting (else we'd have bug free code on
FCS).
There was no singling out of IOS or any other implementation, I was just
pointing out two fairly recent failure modes in code paths that has been
exercised for years and deal with a "well known" RIB and adjacency
maintenance issues. It is entirely possible that there are no bugs in
current implementations; I just won't bet my day job on that possibility.
> > Besides for those individuals who have problems with maintaining a
> > sinlge RIB with IGP routes I would higly advise a caution in deploying
> > an mpls-vpn service or even touching the routers :).
That was uncalled for. We do have problems maintaining a single RIB with
IGP routes sometimes, mostly they are due to buggy implementations.
/vijay
More information about the NANOG
mailing list