RARE user and assistance email list

["David Schmitz" <>]

Hi Csaba,

On Wed, 7 Jun 2023, mc36 wrote:

> Date: Wed, 7 Jun 2023 09:52:51 +0200
> From: mc36 <>
> Reply-To: , 
> To: David Schmitz <>, 
> Subject: Re: [freertr] Issues with actual FlowSpec filtering,
>     especially for rules announced via exabgp (fwd)
>
> hmm and well, after some rest, if not flowspec v2 as suggested b4, flowspec 
> for layer2 vpns like
>
> https://datatracker.ietf.org/doc/draft-ietf-idr-flowspec-l2vpn/
>
> should also happen, etc.. this seems a more active draft and a different bgp 
> safi finally... :)
This is a good point.

I have no experience with FlowSpec v2.
I am not sure whether exabgp has support for it yet.

Let's see how we can progress regarding this in future...

> look, flowspec v1 as is have ordering issues when it comes to applying it to 
> the packets but you'll see this later...
Yes, FlowSpec v1 has several limitations, especially regarding ordering.

Best Regards
David

> br,
>
> cs
>
> On 6/7/23 09:50, mc36 wrote:
> > hmmm and a question from me, do you using the http api or a xmlconfig 
> > (netconf 4 example) you tried b4?
> >
> > thx,
> >
> > cs
> >
> > On 6/7/23 09:49, mc36 wrote:
> > > well and after changing the originator node's acls/policymaps/whatever u 
> > > do to originate,
> > >
> > > the ipv4 bgp 1 recompile is a must, as none of these are have bindings to 
> > > the rtr/rtrbgp* at all..
> > >
> > > br,
> > >
> > > cs
> > >
> > > On 6/7/23 09:47, mc36 wrote:
> > > > okkk then, is this still persist if you decouple the 
> > > > flowspec-install/advertise nodes???
> > > >
> > > > thx,
> > > >
> > > > cs
> > > >
> > > > On 6/7/23 08:33, David Schmitz wrote:
> > > > > The actual issue was/is really only about the actual mitigation
> > > > > by these received and installed FlowSpec rules
> > > > > and it seemed to me that

--

David Schmitz

Boltzmannstrasse 1, 85748 Garching
Telefon:   +49 89 35831-8765
Leibniz-Rechenzentrum, Germany
Mail:  




-=-=-=-=-=-=-=-=-=-=-=-
Groups.io Links: You receive all messages sent to this group.
View/Reply Online (#1393): https://groups.io/g/freertr/message/1393
Mute This Topic: https://groups.io/mt/99364239/6413194
Group Owner: 
Unsubscribe: https://groups.io/g/freertr/unsub []
-=-=-=-=-=-=-=-=-=-=-=-