AS path question.

Jon Lewis jlewis at lewis.org
Thu Nov 11 02:35:50 UTC 2010


On Wed, 10 Nov 2010, Scott Weeks wrote:

> Why did that make you feel safe?  Other than a bug, and ignorance of 
> BGP, what is unsafe about a lotta prepends?

Ignorance of BGP?  There's a known cisco bug that causes BGP session 
resets when as as-path length exceeds 255.  I've been running with bgp 
maxas-limit 75 for years as a "just in case there are other bugs & I find 
it very hard to believe anyone legitimately needs an as-path length 
anywhere near that long".  Worst case, someone is silly with their number 
of prepends, we don't see their route.  I can't say how long I've been 
doing this...it predates our rancid setup, which means >6 years.  Though 
it's caused numerous dropped routes, it hasn't generated a single 
complaint.

In your opinion, is filtering of BGP routes based on prefix length also a 
sign of ignorance?  Everyone should just be letting all the crap through?

----------------------------------------------------------------------
  Jon Lewis, MCP :)           |  I route
  Senior Network Engineer     |  therefore you are
  Atlantic Net                |
_________ http://www.lewis.org/~jlewis/pgp for PGP public key_________




More information about the NANOG mailing list