"Tactical" /24 announcements

Amir Herzberg amir.lists at gmail.com
Thu Aug 12 17:38:48 UTC 2021

On Thu, Aug 12, 2021 at 1:22 PM William Herrin <bill at herrin.us> wrote:

> On Thu, Aug 12, 2021 at 9:41 AM Hank Nussbacher <hank at interall.co.il>
> wrote:
> > On 12/08/2021 17:59, William Herrin wrote:
> > > If you prune the routes from the Routing Information Base instead, for
> > > any widely accepted size (i.e. /24 or shorter netmask) you break the
> > > Internet.
> >
> > How does this break the Internet?  I would think it would just result in
> > sub-optimal routing (provided there is a covering larger prefix) but
> > everything should continue to work.  Clue me in, please.
> A originates to paid transit C
> B originates also to paid transit C
> C offers both routes to D. D discards from the RIB based
> on same-next-hop
> You peer with A and D. You receive only since A doesn't
> originate and D has discarded it.
> You send packets for to A (the shortest path for
>, stealing A's paid transit to C to get to B.

Unless A filters C-bound packets purportedly from B
> doesn't currently transit for A so from B's perspective that's not an
> allowed path. In which case, your path to is black holed.

Bill, I beg to respectfully differ, knowing that I'm just a researcher and
working `for real' like you guys, so pls take no offence.

I don't think A would be right to filter these packets to; A
has announced so should route to that (entire) prefix, or A is
misleading its peers.

If A doesn't, though, then B receives a packet from A to
Unless B is filtering based on the specific IP prefixes of A - which seems
to me unlikely - then B has no way to know that this packet is from `you'
rather than from A itself (or a customer of A). So B will carry this
traffic, imho.

So A is just paying for the traffic since it announced the prefix.

Such situations, to best of my knowledge, actually happen on the Internet
when a subprefix is filtered for different reasons. We observed it happens
with ROV , in our ROV++ simulations, but I'll refrain
from attaching the URL again so not to be `plugging' that paper (and since
I'm lazy to look it up hhh)

have great day and I'll be happy to learn if I'm wrong. Amir
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.nanog.org/pipermail/nanog/attachments/20210812/edc905e7/attachment.html>

More information about the NANOG mailing list