Global Akamai Outage
Mark Tinka
mark at tinka.africa
Mon Jul 26 12:42:07 UTC 2021
On 7/26/21 14:20, Lukas Tribus wrote:
> Some specific failure scenarios are currently being addressed, but
> this doesn't make monitoring optional:
>
> rpki-client 7.1 emits a new per VRP attribute: expires, which makes it
> possible for RTR servers to stop considering outdated VRP's:
> https://github.com/rpki-client/rpki-client-openbsd/commit/9e48b3b6ad416f40ac3b5b265351ae0bb13ca925
>
> stayrtr (a gortr fork), will consider this attribute in the future:
> https://github.com/bgp/stayrtr/issues/3
I was just about to cite these two as improving this particular issue in
upcoming releases.
I am running RPKI-Client + StayRTR, alongside Fort, and yes, while
monitoring should be standard, improvements in the validation and RTR
objectives will also go a long way in mitigating these issues.
What's quickly happening in this space is that not all validators and
RTR servers are going to made equal. There are a number of options
currently available (both deprecated and current), but I expect that we
may settle on just a handful, as experience increases. And in what
remains, I anticipate that they will be bolstered to consider these very
problems.
Mark.
More information about the NANOG
mailing list