Other-Sean writes: | Other than making it difficult for people to figure out WHOIS using that | ASN, "yanking" an ASN's registration has little practical effect. You | can use an un-allocated ASN almost as easily as using an un-allocated | address block. Well, the hidden point here was that the registries act on behalf of the communities of ISPs who form the registries' paying customer base / membership, and there is no particular reason why they could not alert their membership to "evil doers". What is done with such an alert is of course up to each individual member/network, however I imagine several of them would set up filtering, perhaps including the ones closest to the source of the "evil doing". Obvious candidates for reportable behaviour include the use of unregistered prefixes and ASNs. In the past in the odd case where an addressing registrar asked for assistance in dealing with such a thing she or he had discovered, I was happy to provide it. Sean.
It would seem to me that ARIN and its counterparts should get together and provide a "blackhole" BGP feed (the NBL?) where all packets destined for unallocated, restricted, or private space go bye-bye.
Only I drop my unallocated/private packets at my core routers, if you set up routes to ARIN/whoever then I would transmit out those packets and my transits would carry them for me if I dont connect directly.. extra traffic all round really. why not just let the core routers bin the rogue packets? (ip route 0.0.0.0 0.0.0.0 null0) Steve -- Stephen J. Wilcox Internet Manager, Opal Telecom http://www.opaltelecom.co.uk/ Tel: 0161 222 2000 Fax: 0161 222 2008 On Tue, 13 Feb 2001, Roy wrote:
It would seem to me that ARIN and its counterparts should get together and provide a "blackhole" BGP feed (the NBL?) where all packets destined for unallocated, restricted, or private space go bye-bye.
You can configure the BGP feed to set next hop to an unused interface or null0 or (your hardware's efficient null spot). The idea of BGP feed, if I am not mistaken, is to allow dynamic configuration/reconfiguration as blocks are allocated to keep from having to revise hundreds of routers' filters. In practice, I am not sure I'd feel comfortable with it, but surely many would use it. Deepak Jain AiNET On Tue, 13 Feb 2001, Stephen J. Wilcox wrote:
Only I drop my unallocated/private packets at my core routers, if you set up routes to ARIN/whoever then I would transmit out those packets and my transits would carry them for me if I dont connect directly..
extra traffic all round really. why not just let the core routers bin the rogue packets? (ip route 0.0.0.0 0.0.0.0 null0)
Steve
-- Stephen J. Wilcox Internet Manager, Opal Telecom http://www.opaltelecom.co.uk/ Tel: 0161 222 2000 Fax: 0161 222 2008
On Tue, 13 Feb 2001, Roy wrote:
It would seem to me that ARIN and its counterparts should get together and provide a "blackhole" BGP feed (the NBL?) where all packets destined for unallocated, restricted, or private space go bye-bye.
so why bother advertising all these unnecessary blocks increasing the bgp table size and increasing traffic when you can just add a default route to null0 as per previous email?? On Tue, 13 Feb 2001, Deepak Jain wrote:
You can configure the BGP feed to set next hop to an unused interface or null0 or (your hardware's efficient null spot). The idea of BGP feed, if I am not mistaken, is to allow dynamic configuration/reconfiguration as blocks are allocated to keep from having to revise hundreds of routers' filters.
In practice, I am not sure I'd feel comfortable with it, but surely many would use it.
Deepak Jain AiNET
On Tue, 13 Feb 2001, Stephen J. Wilcox wrote:
Only I drop my unallocated/private packets at my core routers, if you set up routes to ARIN/whoever then I would transmit out those packets and my transits would carry them for me if I dont connect directly..
extra traffic all round really. why not just let the core routers bin the rogue packets? (ip route 0.0.0.0 0.0.0.0 null0)
Steve
-- Stephen J. Wilcox Internet Manager, Opal Telecom http://www.opaltelecom.co.uk/ Tel: 0161 222 2000 Fax: 0161 222 2008
On Tue, 13 Feb 2001, Roy wrote:
It would seem to me that ARIN and its counterparts should get together and provide a "blackhole" BGP feed (the NBL?) where all packets destined for unallocated, restricted, or private space go bye-bye.
Laziness? Deepak On Tue, 13 Feb 2001, Stephen J. Wilcox wrote:
so why bother advertising all these unnecessary blocks increasing the bgp table size and increasing traffic when you can just add a default route to null0 as per previous email??
On Tue, 13 Feb 2001, Deepak Jain wrote:
You can configure the BGP feed to set next hop to an unused interface or null0 or (your hardware's efficient null spot). The idea of BGP feed, if I am not mistaken, is to allow dynamic configuration/reconfiguration as blocks are allocated to keep from having to revise hundreds of routers' filters.
In practice, I am not sure I'd feel comfortable with it, but surely many would use it.
Deepak Jain AiNET
On Tue, 13 Feb 2001, Stephen J. Wilcox wrote:
Only I drop my unallocated/private packets at my core routers, if you set up routes to ARIN/whoever then I would transmit out those packets and my transits would carry them for me if I dont connect directly..
extra traffic all round really. why not just let the core routers bin the rogue packets? (ip route 0.0.0.0 0.0.0.0 null0)
Steve
-- Stephen J. Wilcox Internet Manager, Opal Telecom http://www.opaltelecom.co.uk/ Tel: 0161 222 2000 Fax: 0161 222 2008
On Tue, 13 Feb 2001, Roy wrote:
It would seem to me that ARIN and its counterparts should get together and provide a "blackhole" BGP feed (the NBL?) where all packets destined for unallocated, restricted, or private space go bye-bye.
What would be nice is that there was an offical list of private, unallocated, or reserved ranges kept somewhere that we could use and generate filters from. Roy Engehausen Deepak Jain wrote:
Laziness?
Deepak
On Tue, 13 Feb 2001, Stephen J. Wilcox wrote:
so why bother advertising all these unnecessary blocks increasing the bgp table size and increasing traffic when you can just add a default route to null0 as per previous email??
On Tue, 13 Feb 2001, Deepak Jain wrote:
You can configure the BGP feed to set next hop to an unused interface or null0 or (your hardware's efficient null spot). The idea of BGP feed, if I am not mistaken, is to allow dynamic configuration/reconfiguration as blocks are allocated to keep from having to revise hundreds of routers' filters.
In practice, I am not sure I'd feel comfortable with it, but surely many would use it.
Deepak Jain AiNET
On Tue, 13 Feb 2001, Stephen J. Wilcox wrote:
Only I drop my unallocated/private packets at my core routers, if you set up routes to ARIN/whoever then I would transmit out those packets and my transits would carry them for me if I dont connect directly..
extra traffic all round really. why not just let the core routers bin the rogue packets? (ip route 0.0.0.0 0.0.0.0 null0)
Steve
-- Stephen J. Wilcox Internet Manager, Opal Telecom http://www.opaltelecom.co.uk/ Tel: 0161 222 2000 Fax: 0161 222 2008
On Tue, 13 Feb 2001, Roy wrote:
It would seem to me that ARIN and its counterparts should get together and provide a "blackhole" BGP feed (the NBL?) where all packets destined for unallocated, restricted, or private space go bye-bye.
Like someone else's RPSL suggestion which is the best idea I've heard on the topic. Deepak Jain AiNET On Tue, 13 Feb 2001, Roy wrote:
What would be nice is that there was an offical list of private, unallocated, or reserved ranges kept somewhere that we could use and generate filters from.
Roy Engehausen
Deepak Jain wrote:
Laziness?
Deepak
On Tue, 13 Feb 2001, Stephen J. Wilcox wrote:
so why bother advertising all these unnecessary blocks increasing the bgp table size and increasing traffic when you can just add a default route to null0 as per previous email??
On Tue, 13 Feb 2001, Deepak Jain wrote:
You can configure the BGP feed to set next hop to an unused interface or null0 or (your hardware's efficient null spot). The idea of BGP feed, if I am not mistaken, is to allow dynamic configuration/reconfiguration as blocks are allocated to keep from having to revise hundreds of routers' filters.
In practice, I am not sure I'd feel comfortable with it, but surely many would use it.
Deepak Jain AiNET
On Tue, 13 Feb 2001, Stephen J. Wilcox wrote:
Only I drop my unallocated/private packets at my core routers, if you set up routes to ARIN/whoever then I would transmit out those packets and my transits would carry them for me if I dont connect directly..
extra traffic all round really. why not just let the core routers bin the rogue packets? (ip route 0.0.0.0 0.0.0.0 null0)
Steve
-- Stephen J. Wilcox Internet Manager, Opal Telecom http://www.opaltelecom.co.uk/ Tel: 0161 222 2000 Fax: 0161 222 2008
On Tue, 13 Feb 2001, Roy wrote:
It would seem to me that ARIN and its counterparts should get together and provide a "blackhole" BGP feed (the NBL?) where all packets destined for unallocated, restricted, or private space go bye-bye.
On Tue, Feb 13, 2001 at 08:31:51AM -0800, Roy wrote:
It would seem to me that ARIN and its counterparts should get together and provide a "blackhole" BGP feed (the NBL?) where all packets destined for unallocated, restricted, or private space go bye-bye.
Far better would be for them to provide, say in RPSL format, route-set objects for all delegations. Then anyone can filter as they please. -- Jeff Haas NextHop Technologies
participants (5)
-
Deepak Jain
-
Jeffrey Haas
-
Roy
-
smd@clock.org
-
Stephen J. Wilcox