<div dir="ltr">Hi,<div><br></div><div>There are three RTR timers defined in RFC8210: Refresh, Retry, and Expire, and they are configurable in the Routinator config file. </div><div>There could also be timers at play on the fetching-ROA-from-Repository side. I wonder what they are and where they are set.</div><div><br></div><blockquote style="margin:0 0 0 40px;border:none;padding:0px"><div><div>40c1e6082c94:~$ more .routinator.conf</div></div><div><div>...</div></div><div><div>expire = 7200</div></div><div><div>refresh = 600</div></div><div><div>retry = 600</div></div><div><div>...</div></div></blockquote><div><br></div><div>1. RTR Side</div><div>=========</div><blockquote style="margin:0 0 0 40px;border:none;padding:0px"><div>1. In RTRv0, none of the 3 timers has any effect on the RTR side. A router defines its own Refresh/Retry/Expire time. There is no communication about them between a validator and a router over RTR.</div><div>2. In RTRv1, all 3 timers have effect on the RTR side. A validator dictates them via EoD PDU and tells the router what to use. Communication is one way only, from the validator to the router, it's dictation, not negotiation.</div><div><br></div><div>Is this understanding correct?</div></blockquote><div><br></div><div><br></div><div>2. Repository Side<br></div><div>==============</div><blockquote style="margin:0 0 0 40px;border:none;padding:0px"><div>There definitely is a refresh timer to tell how often Routinator should poll the Repository to fetch ROAs. As there are no other config parameters in the conf file, "refresh" timer must be for this.</div><div>Is there a retry timer as well? The Routinator could lose its Internet connection due to a firewall or routing fault. When that happens, is there a retry timer at play?</div><div>What about the expire timer? In the event a Routinator loses its Internet connection, does it hold the VRPs for a period of time (Expire Time) then delete them?</div><div><br></div><div><br></div><div>This is what I think:</div><blockquote style="margin:0 0 0 40px;border:none;padding:0px"><div><div><div><br></div></div></div></blockquote><blockquote style="margin:0 0 0 40px;border:none;padding:0px"><div><div><div>refresh = 600 [meaningful in RTRv1 only, not meaningful in RTRv0. Also meaningful on the Repository side]</div></div></div></blockquote><blockquote style="margin:0 0 0 40px;border:none;padding:0px"><div><div><div>retry = 600 [meaningful in RTRv1 only, not meaningful in RTRv0. Not meaningful on the Repository side]</div></div></div></blockquote><blockquote style="margin:0 0 0 40px;border:none;padding:0px"><div>expire = 7200 [meaningful in RTRv1 only, not meaningful in RTRv0. Not meaningful on the Repository side]</div></blockquote><br><br><br></blockquote>3. Objects in the Repository<div>===================== <br><blockquote style="margin:0 0 0 40px;border:none;padding:0px"><div>From Routinator document:</div><div><br></div><div><pre class="gmail-man" style="box-sizing:border-box;font-family:fira-mono,monospace;font-size:14px;margin-top:0px;margin-bottom:1rem;overflow:auto"><span style="color:rgb(33,37,41)"> <span style="box-sizing:border-box;font-weight:bolder">--refresh=</span><i style="box-sizing:border-box">seconds</i></span></pre></div><div><pre class="gmail-man" style="box-sizing:border-box;font-family:fira-mono,monospace;font-size:14px;margin-top:0px;margin-bottom:1rem;overflow:auto"><span style="color:rgb(33,37,41)"> The amount of seconds the server should wait after having fin-</span></pre></div><div><pre class="gmail-man" style="box-sizing:border-box;font-family:fira-mono,monospace;font-size:14px;margin-top:0px;margin-bottom:1rem;overflow:auto"><span style="color:rgb(33,37,41)"> ished updating and validating the local repository before start-</span></pre></div><div><pre class="gmail-man" style="box-sizing:border-box;font-family:fira-mono,monospace;font-size:14px;margin-top:0px;margin-bottom:1rem;overflow:auto"><span style="color:rgb(33,37,41)"> ing to update again. </span><font color="#ff00ff">The next update will start earlier if ob-</font></pre></div><div><pre class="gmail-man" style="box-sizing:border-box;font-family:fira-mono,monospace;font-size:14px;margin-top:0px;margin-bottom:1rem;overflow:auto"><font color="#ff00ff"> jects in the repository expire earlier. </font><font color="#212529"> The default value is
</font></pre></div><div><pre class="gmail-man" style="box-sizing:border-box;font-family:fira-mono,monospace;font-size:14px;margin-top:0px;margin-bottom:1rem;overflow:auto"><font color="#212529"> 600 seconds.</font></pre></div><div><pre class="gmail-man" style="box-sizing:border-box;margin-top:0px;margin-bottom:1rem;overflow:auto"><font color="#212529" style="" face="arial, sans-serif">Can someone please explain what "objects in the repository expire earlier" mean? Which expire timer is this? I see ROAs have expiration in the RIRs, but that expiration is normally a year and I read ROAs will be auto-renewed when they expire, so I don't think it is this one. </font></pre></div></blockquote><blockquote style="margin:0 0 0 40px;border:none;padding:0px"><div><pre class="gmail-man" style="box-sizing:border-box;font-family:fira-mono,monospace;font-size:14px;margin-top:0px;margin-bottom:1rem;overflow:auto"><img src="cid:ii_ku85gurh1" alt="image.png" width="562" height="301"></pre></div></blockquote><font face="fira-mono, monospace"><span style="font-size:14px;white-space:pre"><div>
</div></span></font></div><blockquote style="margin:0 0 0 40px;border:none;padding:0px"><div><font face="fira-mono, monospace"><span style="white-space:pre"><div style=""><div style=""><pre class="gmail-man" style="box-sizing:border-box;margin-top:0px;margin-bottom:1rem;overflow:auto"><font color="#212529" face="arial, sans-serif" style="">And it says "objects in the repository", so it's not the VRPs in the Routinator after ROAs have been processed, so I think this doesn't indicate there is an expire timer for the VRPs.</font></pre></div></div></span></font></div></blockquote><div><font face="fira-mono, monospace"><span style="font-size:14px;white-space:pre"><div>
</div><br></span></font><div><div>4. My Cisco and Juniper Routers Only Support RTRv0 <br></div><div>====================================== </div></div><blockquote style="margin:0 0 0 40px;border:none;padding:0px"><div>Because the routers don't support RTRv1, I am thinking whether I should disable RTRv0 explicitly in the Routinator and set retry and expire time to 0, that is, if my understanding is correct, they do nothing in RTRv0.</div><div>Should I do this? Where to disable it, go to the source code? Is setting to 0 allowed?</div><div><br></div><div>Is anyone aware of any router vendor or router model that supports RTRv1? Cisco TAC told me RTRv1, RFC8210, will be revised so they have skipped RTRv1 altogether. Sounded like they will never support RTRv1.</div></blockquote><div><br></div><div><br></div><div>Thanks for your time reading this post to the end.</div><div><br></div><div>Best regards,</div><div>Jacquie</div></div></div>