>> o a prefix against which validation has not been run (no validation
>> at all or some knob turned off) should not be marked Valid. that
>> would be a lie. it should be marked NotFound.
> FWIW - the JUNOS implementation has got this 4th state, called
> "Unverified".
the only problem i see with this is that, if i do not test for it in
policy, i will fall off the end.
policy-statement route-validation {
term valid {
from {
protocol bgp;
validation-state valid;
}
then {
local-preference 110;
validation-state valid;
accept;
}
}
term invalid {
from {
protocol bgp;
validation-state invalid;
}
then {
local-preference 90;
validation-state invalid;
deny;
}
}
term unknown {
from {
protocol bgp;
validation-state unknown;
}
then {
validation-state unknown;
accept;
}
}
}
randy
_______________________________________________
sidr mailing list
sidr@ietf.org
https://www.ietf.org/mailman/listinfo/sidr
