I don’t think that refusing Russian ASNs will do much to stop any kind of attacks. They are going to attack from botnets that are global so that’s not going to stop them. If anything blocking Russian ASNs will stop the flow of information going into Russia. I think we’re better off doing what we can to take down any machines that are participating in attacks if they live on machines that are downstream from you. One of the biggest issues I face in my daily tasks is getting other provers to take down machines. I’m talking to you Microsoft, Amazon, Digital Ocean and the likes….. -richey From: NANOG <nanog-bounces+richey.goldberg=gmail.com@nanog.org> on behalf of William Allen Simpson <william.allen.simpson@gmail.com> Date: Thursday, February 24, 2022 at 7:41 PM To: North American Network Operators Group <nanog@nanog.org> Subject: Russian aligned ASNs? There have been reports of DDoS and new targeted malware attacks. There were questions in the media about cutting off the Internet. Apparently some Russian government sites have already cut themselves off, presumably to avoid counterattacks. Would it improve Internet health to refuse Russian ASN announcements? What is our community doing to assist Ukraine against these attacks?