On Mon, Oct 12, 1998 at 04:21:54PM +1000, Dean Pemberton wrote:
Yeah - I noticed the same thing when I was putting together BGP route filters for Citylink. It's just a mess out there.
How to you create and manage this filter list?
I'm looking at writing something to automate that here for various reasons, I know the are the radb tools, but they are really quite nasty and horrible.
I'm more looking at doing some kind of RA in a box - just add water.
Easy - you set the filters up and then accept a job in another country =) But seriously. Most of the people that I peered with are in the Merit RADB. I used the RAToolkit to do the generation and management. I agree that the tools are pretty crap and I ended up hacking most of them apart so that they worked in my environment. If you were to rewrite some tools they would be in great demand. More so in light of the recent thread about a public WIX RADB server.
I like the idea of ``If you want more numbers than you have to give them all back and renumber.'' That way they are going to be forced to renumber at some stage (due to network expansion), or look at using NAT (also a good thing as far as address saving goes).
NAT has its merits, but hasn't been much of an option until recently as most commercial vendors ignored it. (Even though Linux and *BSD have had it since Noah was a boy).
NAT doesn't work in all cases though, most NAT implementations don't do protocol translation so things like IRC, non-PASV ftp, real audio, etc. break.
It is getting better though... the latest cisco IOS images have NAT (and PAT?) for even the low end routers such as the 1001 and 1003 models, which pretty much brings them in line with the 160x. (Alas, you need more flash and ram than these units come with by default, considerably more, so its not really a cheap solution).
Buy Ascend gear then *cough* - opps, did I say that outloud? =) Seriously. I was only using NAT as an example - I'm well aware of how hard it is to implement in a large network. Thats why I think we should not be pushing people into that sort of stuff unnecessarily. Dean -- ----------------------------------------------------------------------- Dean Pemberton Ph: +61-3-9656-7000 Regional Technical Specialist Asia-Pacific Fx: +61-3-9656-7003 Ascend Communications, Inc Mb: +61-419-117-321 Lvl 38, ANZ Tower, 55 Collins St Melbourne, AUS mailto:dpemberton(a)ascend.com.au ----------------------------------------------------------------------- --------- To unsubscribe from nznog, send email to majordomo(a)list.waikato.ac.nz where the body of your message reads: unsubscribe nznog