Home page logo
/

nanog logo nanog mailing list archives

Re: [#135346] Unauthorized BGP Announcements (follow up to Hijacked Networks)
From: Blake Dunlap <ikiris () gmail com>
Date: Wed, 1 Feb 2012 15:07:01 -0600

On Wed, Feb 1, 2012 at 15:00, George Bonser <gbonser () seven com> wrote:

So, to pose the obvious question: Should there be?

(I honestly don't know the answer is to this question, and am asking in
earnest for opinions on the subject)

Nathan



Well, calling the law on someone is kind of the whiner's way out anyway.
 It would seem that the community could agree on a set of standards for
dealing with such problems and if you don't agree to those standards,
nobody routes your traffic.  In other words, if network A finds network B
announcing allocated space belonging to network A and network A makes them
(network B) and their upstream provider(s) aware and they refuse to stop
the announcement, there should be a mechanism by which the community can
agree to filter Network B's AS  *and* the AS of the upstream(s) until the
situation is rectified.  That's a pretty big hammer but verifying someone's
legitimate claim on address space isn't that hard, in most cases.


The problem is no one will actually blacklist a big ASN because its not in
the individual best interest, which scales greatly with size. RPKI is
pretty much the only real fix for this if the chain until the major carrier
refuses to delist, and RPKI has it's own issues.

-Blake


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault