North American Network Operators Group|
Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical
Re: 200K prefixes - Weekly Routing Table Report
Sorry, I got several questions emailed to me, so I'll save my own bandwidth at the expense of everyone else's, and hopefully answer some people that didn't take the time/effort to ask...
The Dirty-Thirty is what I called the list of "Aggregation Summery" in the cidr report (cidr-report.org) that gets posted to the NANOG list. They put the top 30 ASes that have the most to gain through aggregation in their report for all to see. When discussing this in the past I referred to it as the dirty thirty.
In the past, I suggested giving out "I'm the dirty thirty" t-shirts at NANOG meetings to those attending from the networks listed. Require them to be worn to attend. Put slogans on them like "Aggregate is what you put in concrete, right?" Have a cute picture of a stick person on it with a concrete block for a head, next to a router or something.
More affective, less funny, and also somewhat discussed in the past, was my suggestion of the creation of a route-server style of distribution of filters (like the cymru bogon servers) that would filter routes to the top 5 people on the list, essentially black holing the absolute worst of the worst.
It basically would be similar to email RBL, except that it would break the entire net, not just SMTP. ;-) While it may be sacrilegious to discuss such things like purposely breaking parts of the net on the NANOG list, it's for the greater good. So hear me now, and belive me later.........
It would work like this:
Step 1) Read the cidr report
2)Contact those top 5 networks with a simple message. "Congratulations! You're in the top 5 of the dirty thirty! Aggregate now, because if you're still on the dirty-thirty list 60 days from now, and your entry can gain more than a 30% reduction size through aggregation, we're going to add you do the black hole server. Have a nice day."
3)Do this weekly.
3a)Shrug off threats of lawsuits.
4)In the mean time, a few crazy network operators would actually subscribe to the "Aggregation Route Server." It might be a guy with an ASN and a /24 in his apartment, or a small company with an underpowered router that's facing an upgrade and wants to try to change the world, maybe a small host or ISP, or whatever. Or maybe a larger organization might actually be insane enough to apply this to all of their border routers.
"Crazy" is the key operator here. And I mean that in a good way. :-) It's crazy that the net even works... just announce some routes, and the world accepts them? Now *THAT'S* crazy!
The whole idea is a terror tactic like weapons of mass destruction and mine fields. And email RBLs. Remember when some through RBLs to be crazy? Who would block email and cause collateral damage for themselves just to stop a few spams? Turned out that the answer to that question was "Everybody." Getting blacklisted had quite an affect on people, and that alone closed a lot of open relays. Being responsible, and working to fight spam wasn't enough. It took a terror weapon like RBLs to get people to close their relays. I maintain that we are at the same point with the routing table. It would provide motivation to aggregate,to stay as far away from that top 30 list as possible. And because the rest of the world wouldn't actually know WHO is subscribed, or what impact it might actually have, or if say, a large tier-1 nsp might actually subscribe to it just to be belligerent (tired of needing more RAM for their core routers, and can make a crazy business case for it [didn't Sprint do something like that a long time ago or something?] ) or actually just plan crazy.
Maybe no one would join. That's OK too. The dirty thirty participants don't get to know that information. No one would know except for the operators of the (free) service. Because while you may have to be crazy to subscribe to it, you'd have to be equally crazy to sit on the top of the dirty thirty, and ignore the warnings that you might be black holed. Maybe a single tier-1 nsp decides to use it. That's pretty significant. Fight crazy with more crazy!
5)After 60 days, if the network that was in the top 5 to qualify hasn't moved out of the dirty thirty all together, actually go add all their un-aggregated space to the route server. Because we only really want to block the more specifics that are causing the bloat....
5a)Continuously monitor the actually global routing table, in somewhat real time... when they get aggregated, stop the madness immediately, and automagically.
6)Avoid lawsuits. Or get sued. Or fold and comply with the lawyers' demands. Whatever.
(I don't have a solution to this.... it's just a general requirement... I didn't say this would be easy, or even possible to operate in a sustainable manor.... I'm just saying that it is technically possible. Logic would dictate that RBL operators *shouldn't* be liable to lawsuits from spammers, but this is a pretty messed up world....)
7)Check to see if there routing suddenly becomes more aggregated. At some point, of the table as aggregated enough, it's not worth continuing. The point is maximize gains (go after the worst offenders, and scare everyone else in to being responsible too) with minimal effort. It's not possible to max aggregate everything, and that's not the point. The point is to get the worst of the worst to be more responsible.
Unfortunately, experience has taught me that there will always be plenty of irresponsible and/or clueless people to go around. So it very well may be a never ending process.
8)Return to step 1.
I've got some old routers sitting around, and a network to host them on..... I've wanted to do this now for quite some time, but don't have the time resources to make it all work. Anyone game to help me out with this? It's just crazy enough to work. Or am *I* just crazy for thinking so?
"I'll reboot mine, if you reboot yours."