@techreport{ietf-idr-flowspec-redirect-ip-03, number = {draft-ietf-idr-flowspec-redirect-ip-03}, type = {Internet-Draft}, institution = {Internet Engineering Task Force}, publisher = {Internet Engineering Task Force}, note = {Work in Progress}, url = {https://datatracker.ietf.org/doc/draft-ietf-idr-flowspec-redirect-ip/03/}, author = {Jim Uttaro and Jeffrey Haas and akarch@cisco.com and Saikat Ray and Prodosh Mohapatra and Wim Henderickx and Adam Simpson and Matthieu Texier}, title = {{BGP Flow-Spec Redirect-to-IP Action}}, pagetotal = 9, year = 2024, month = sep, day = 8, abstract = {Flow-spec is an extension to BGP that allows for the dissemination of traffic flow specification rules. This has many possible applications, but the primary one for many network operators is the distribution of traffic filtering actions for distributed denial of service (DDoS) mitigation. The flow-spec standard {[}RFC5575{]} defines a redirect-to-VRF action for policy-based forwarding. This mechanism can be difficult to use, particularly in networks without L3 VPN infrastructure. This draft defines a new redirect-to-IP flow-spec action that provides a simpler method of policy-based forwarding. The details of the action, including the IPv4 or IPv6 target address, are encoded in newly defined BGP extended communities.}, }