From mboxrd@z Thu Jan 1 00:00:00 1970 From: Rene Gallati Date: Wed, 31 Mar 2004 21:01:11 +0000 Subject: Re: [LARTC] large routing table Message-Id: <406B3197.9020206@draxinusom.ch> List-Id: References: <4069FB34.6000507@draxinusom.ch> In-Reply-To: <4069FB34.6000507@draxinusom.ch> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable To: lartc@vger.kernel.org Hello, > this is exactly why ip addresses are already grouped with respect to=20 location. > > So it should be possible to optimize things, maybe use some perl with=20 http://search.cpan.org/~nwetters/IP-Country-2.15/lib/IP/Country.pm > e.g. 194.0.0.0/8 is NL Nope its not, I have 919 prefixes starting with 194 which are located in=20 Switzerland. And they really are, for example picking one out randomly: nslookup 194.242.34.1 yields: Name: switch.swissix.ch Address: 194.242.34.1 whois: inetnum: 194.242.34.0 - 194.242.34.255 netname: SWISSIX descr: swissix, Swiss Internet Exchange country: CH admin-c: MC322-RIPE tech-c: MC322-RIPE status: ASSIGNED PI notify: noc@sissix.ch mnt-by: RIPE-NCC-HM-PI-MNT mnt-by: SWISSIX-MNT mnt-lower: RIPE-NCC-HM-PI-MNT To the best of my knowledge, region based IP-ranges are in IPv6 but not=20 in IPv4. > And I guess you can afford to make some errors, e.g. shaping a=20 destination which shouldn't be shaped is not a crime if it wouldn't=20 happen too often, just make sure you shape foreign IP's, how bad would=20 it be to shape some non-foreign IP's accidently? Problem is the server runs several applications and mine is but one of=20 it. I am to make as little trouble as possible. However I do have a very=20 good list of which IP ranges are ok and the complement are those that=20 are not. My list comes directly from a skript that pulls it out of the=20 core router. Some of the prefixes can be aggregated but that is a minor optimization. > And, ofcourse, either "foreign IP's" or "non foreign IP's" is the=20 smallest list, use the samllest list. I have only the non-foreign list, but I am very sure that this one is=20 smaller than the rest of the internet Its exactly 6486 prefixes atm. (without aggregating those that are=20 possible). In any case too many to process linearly. CU Ren=E9 _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/