Home page logo
/

nanog logo nanog mailing list archives

RE: Anyone notice strange announcements for 174.128.31.0/24
From: "Paul Stewart" <pstewart () nexicomgroup net>
Date: Mon, 12 Jan 2009 14:29:11 -0500

Absolutely - according to their website " No real or production prefixes
or data packets are being harmed in this experiment. If you become aware
that this experiment causes any actual real operational problem, please
write to us immediately. "

I have asked them to have some courtesy next time before wasting a lot
of people's time...

Paul


-----Original Message-----
From: Michienne Dixon [mailto:mdixon () nkc org]
Sent: Monday, January 12, 2009 2:20 PM
To: nanog () nanog org
Subject: RE: Anyone notice strange announcements for 174.128.31.0/24

The IAR was the source of my notice as well and is what started me down
this path of cat herding.
I would think that it would only be polite to notify people about what
is going on so that other people do not waste their time looking for
phantom issues.


-
Michienne Dixon
Network Administrator
liNKCity
312 Armour Rd.
North Kansas City, MO  64116
www.linkcity.org <http://www.linkcity.org/>
(816) 412-7990


________________________________

From: karlinjf () gmail com [mailto:karlinjf () gmail com] On Behalf Of Josh
Karlin
Sent: Monday, January 12, 2009 12:57 PM
To: Paul Stewart
Cc: Majdi S. Abbas; Michienne Dixon; nanog () nanog org
Subject: Re: Anyone notice strange announcements for 174.128.31.0/24


At some point 3130 announced these prefixes, and is now prepending other
ASes to them.  Pretty Good BGP (and hence the IAR) sees them as prefix
hijacks.  If you'd like to see the entire list of prefixes, check out:
http://iar.cs.unm.edu/search.php and enter in 3130 as the "Victim AS"

Josh


On Mon, Jan 12, 2009 at 11:52 AM, Paul Stewart
<pstewart () nexicomgroup net> wrote:


        Same here.. got a notice this morning and while it's false, I
still have
        no response from Randy neither on this matter...

        If they are going to involve our AS numbers and trigger alarms
it would
        be nice to notify us first... especially on something as major
as a
        prefix hijacking (potentially)

        Paul





----------------------------------------------------------------------------

"The information transmitted is intended only for the person or entity to which it is addressed and contains 
confidential and/or privileged material. If you received this in error, please contact the sender immediately and then 
destroy this transmission, including all attachments, without copying, distributing or disclosing same. Thank you."


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]