On Mon, 2015-07-27 at 22:21 +0000, Todd Dickason wrote:
You are right we have been working on SDN/Openflow solutions for NZIX. In the last month we have finished a Proof of Concept of the SDN for NZIX based on Noviflow hardware that looks at the following use cases.
Thanks for the update.
* Implement IETF BCP38 * Instead of relying on peers to implement BCP38, NZIX2 enforces it by only allowing traffic sourced from a prefix which has been registered on the NZIX2 portal to enter the exchange
To make sure I have this correct, are you talking about dropping frames that don't match the generated list of source IP ranges for a customer port? If so, this is pretty well a show stopper for us. We have downstream customers that don't have all their ducks in a row when they get new prefixes etc, and using an exchange that would blackhole their traffic isn't a risk that I would take. I'm all for BCP38 but it goes at the edge of the network, not in the exchange point.
* Prevent capacity stealing * traffic is allowed on the exchange only if it's sourced/destined from/to a prefix that has been registered on the NZIX2 portal. This means that if a peer configures a static default route to an ISP that has the full internet routing table, his traffic destined to international prefixes will be dropped
Have you considered the existing (mis)use case of Vodafone policy routing traffic from cable modem tails to ISP's on the WIX fabric? I'd love to get them to stop doing that and deliver their cable connections to us across one of the multitude of their own links into us, but they don't seem that interested. In the near past I also knew of multiple instances of backup transit and partial transit across the WIX and APE fabric, no idea if they are still in play or not. Regards, -- Lincoln Reid Head of Networks ACSData - AS18119 lincoln(a)acsdata.co.nz Phone: +64 4 939 2200 Fax: +64 4 939 2201