Re: BGP Attack - Best Defense ?
----- Original Message ----- Let's say the attacker is announcing one or more /24s of mine and announcing a more specific is not possible. I figure it out somehow and begin announcing the same. The attacker doesn't stop his attack. What happens? The part of the internet closest in topology to me sends their traffic to me and the part of the internet closest to the attacker sends traffic to him? ----------------------------------- --- Guy_Shields@Stream.Com wrote:------- Correct, as you would then be contending with the path length portion of the 10 determistic citeria in the bgp protocol. --------------------------------------- And the only one that'd really come into play would be shortest number of AS hops, so topological closeness would be the deciding factor on whether the traffic transits the attacker's network or properly comes directly to me. scott
participants (1)
-
Scott Weeks