Re: [RPSEC] FW: AS 8437 announced a quarter of the net for half of an hour
Iljitsch van Beijnum <iljitsch@muada.com> Mon, 14 August 2006 22:31 UTC
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com)
by megatron.ietf.org with esmtp (Exim 4.43)
id 1GCky8-0007Yh-Qz; Mon, 14 Aug 2006 18:31:36 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org)
by megatron.ietf.org with esmtp (Exim 4.43) id 1GCky6-0007RN-Rx
for rpsec@ietf.org; Mon, 14 Aug 2006 18:31:34 -0400
Received: from [2001:1af8:2:5::2] (helo=sequoia.muada.com)
by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1GCky5-0001qd-Jl
for rpsec@ietf.org; Mon, 14 Aug 2006 18:31:34 -0400
Received: from [IPv6:2001:1af8:6::20a:95ff:fef5:246e] (alumange.muada.com
[IPv6:2001:1af8:6:0:20a:95ff:fef5:246e]) (authenticated bits=0)
by sequoia.muada.com (8.13.3/8.13.3) with ESMTP id k7EMUuH4079943
(version=TLSv1/SSLv3 cipher=RC4-SHA bits=128 verify=NO);
Tue, 15 Aug 2006 00:30:57 +0200 (CEST)
(envelope-from iljitsch@muada.com)
In-Reply-To: <007501c6bfdb$4696f880$807d14ac@tropos.com>
References: <007501c6bfdb$4696f880$807d14ac@tropos.com>
Mime-Version: 1.0 (Apple Message framework v752.2)
Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed
Message-Id: <61CD5836-AA9C-4D07-BEDD-976642406608@muada.com>
Content-Transfer-Encoding: 7bit
From: Iljitsch van Beijnum <iljitsch@muada.com>
Subject: Re: [RPSEC] FW: AS 8437 announced a quarter of the net for half of an
hour
Date: Tue, 15 Aug 2006 00:31:30 +0200
To: tony.li@tony.li
X-Mailer: Apple Mail (2.752.2)
X-Spam-Status: No, score=-2.5 required=5.0 tests=AWL,BAYES_00 autolearn=ham
version=3.0.2
X-Spam-Checker-Version: SpamAssassin 3.0.2 (2004-11-16) on sequoia.muada.com
X-Spam-Score: -2.8 (--)
X-Scan-Signature: 68c8cc8a64a9d0402e43b8eee9fc4199
Cc: rpsec@ietf.org
X-BeenThere: rpsec@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Routing Protocol Security Requirements <rpsec.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/rpsec>,
<mailto:rpsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/rpsec>
List-Post: <mailto:rpsec@ietf.org>
List-Help: <mailto:rpsec-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/rpsec>,
<mailto:rpsec-request@ietf.org?subject=subscribe>
Errors-To: rpsec-bounces@ietf.org
On 14-aug-2006, at 21:53, Tony Li wrote: >> Today (Aug 14th 2006) AS 8437 announced 63 /8 nets from 14:30 to >> 15:00 >> UTC. I don't believe that this is normal, but please correct me if I >> am wrong. Looks like they inject these prefixes into their routers to blacklist them (if you route the next hop address to some place unreachable and also do a reverse path forwarding check you filter both to and from these addresses) but somehow they leaked the prefixes. _______________________________________________ RPSEC mailing list RPSEC@ietf.org https://www1.ietf.org/mailman/listinfo/rpsec
- [RPSEC] FW: AS 8437 announced a quarter of the ne… Tony Li
- Re: [RPSEC] FW: AS 8437 announced a quarter of th… Iljitsch van Beijnum
- Re: [RPSEC] FW: AS 8437 announced a quarter of th… Curtis Villamizar
- RE: [RPSEC] FW: AS 8437 announced a quarter of th… Tony Li
- RE: [RPSEC] FW: AS 8437 announced a quarter of th… william(at)elan.net
- RE: [RPSEC] FW: AS 8437 announced a quarter of th… Tony Li
- Re: [RPSEC] FW: AS 8437 announced a quarter of th… Curtis Villamizar
- Re: [RPSEC] FW: AS 8437 announced a quarter of th… Iljitsch van Beijnum