Rob,
Your reply did not contain any info that would cause me to change my mind
about the staging period. I think we agree that the staging period cannot
guarantee that all RPs have the new CA cert before the old data is replaced.
What it can do is increase the likelihood that this will happen.
At 1:06 PM -0500 2/18/11, Russ White wrote:
...
Let me ask you something --does IPsec try to verify the path the packet
takes, or the contents of the packet? If the right solution for IPsec is
to validate the content of the packet, then why is the right solution
for BGP to verify the path of the
... the semantic of BGP has never been that the AS Path is used
for anything other than determining if the path is loop free.
That assertion seems to ignore the fact that routing decisions often
take into account path length. Are you saying that such decisions are
not part of the semantics
... the semantic of BGP has never been that the AS Path is used
for anything other than determining if the path is loop free.
That assertion seems to ignore the fact that routing decisions often
take into account path length. Are you saying that such decisions are
not part