Home page logo

nanog logo nanog mailing list archives

Re: using IRR tools for BGP route filtering
From: Jared Mauch <jared () puck Nether net>
Date: Tue, 20 Jun 2000 06:50:25 -0400

On Tue, Jun 20, 2000 at 01:29:04AM -0700, Sean Donelan wrote:
Are engineers keeping their managers' in the dark.  Does management
not know there is a potential solution to the problem.  Or does
their management really think its Ok their customers are at risk
of losing service at any time due to unfiltered routes.  When you
speak with your Cisco sales rep, do you tell them one of the requirements
is being able to filter the entire route table with multiple peers.

        I think that some of the problem is that not all of the managers
are aware of all the risks related to this, because they have not seen
or heard of any problems related to not using a routing registry.

        Imagine the meeting that gte.net had after their domain name was
transferred to some other dns servers (or so i heard).  I suspect
that a number of them are either aware of the amount of trust that
folks have for one and another, otherwise they are just totally oblivious
to the fact that there are so many ways that there can be problems.

        I suspect in cases where the engineers don't have the ability to
create policies such as their own registries, or configure off of an existing
IRR, or don't have the time to deal with supporting, or configuration
of all the routers off of the tools.  (i mean both internal support and
external support).

        - Jared

Jared Mauch  | pgp key available via finger from jared () puck nether net
clue++;      | http://puck.nether.net/~jared/  My statements are only mine.

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]