Friday's Random Comment - About: Arista and FIB/RIB's

Saku Ytti saku at
Sat Apr 30 15:12:26 UTC 2016

On 29 April 2016 at 13:25, Nick Hilliard <nick at> wrote:
>> The more paths you receive from different sources, the more likely it
>> is that this list of 120k "superfluous" prefixes will converge
>> towards zero.
> Agreed that small numbers of paths are most unlikely to create the
> conditions for this problem to occur.

If these compression schemes are implemented, and our compressed count
is near the limit of hardware, it creates interesting new attack
vector for attackers. Pump carefully crafted updated to global table
and watch networks melt.

I think compression makes more sense in controlled environments, but
controlled environments with large scale are likely to be exact
matches (i.e. bunch of host routes) not LPM anyhow. I'm not optimistic
about the technology.


More information about the NANOG mailing list