Philip Smith's Internet Development Site

User Tools

Site Tools

Trace:
rpki

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
Last revisionBoth sides next revision
rpki [2021/11/25 10:42] – [RPKI Notes] philiprpki [2021/11/25 10:56] – [ROV] philip
Line 6: Line 6:
  
 Also presented at [[https://ripe83.ripe.net/archives/video/636 | RIPE 83]] for additional background and context. Also presented at [[https://ripe83.ripe.net/archives/video/636 | RIPE 83]] for additional background and context.
 +
 +It has been noted by several operators that their Cisco routers implementing ROV were bombarding peers with Route Refresh requests. This is challenging for those routers which are "control plane challenged" and can be construed as a denial of service on those peering routers.
 ===== ROV ===== ===== ROV =====
 +
 +The following table documents ROV behaviours on receipt of updated RPKI information from validators.
 +
 +"Adj-RIB-In" is the BGP table as received from BGP peers, prior to processing by inbound policy. Retaining this BGP table requires extra memory (not a hardship in this day and age), and makes processing incoming BGP policy changes simple. Without Adj-RIB-In, the router has to send a [[https://datatracker.ietf.org/doc/html/rfc2918 | Route Refresh]] to the peer to request all BGP updates again. Which can be exciting when today's IPv4 table is heading to 900k prefixes, and IPv6 table is heading to 150k prefixes.
  
 ^ Implementation ^ Adj-RIB-In ^ ROV behaviour ^ Notes ^ ^ Implementation ^ Adj-RIB-In ^ ROV behaviour ^ Notes ^
rpki.txt · Last modified: 2021/11/25 11:03 by philip