RE: RBL-type BGP service for known rogue networks?

[Karyn Ulriksen <kulriksen () publichost com>]

> You can play tricks with BGP to do this.  Here's how MAPS RBL does it, and
> how you can use it:
>
> http://www.mail-abuse.org/rbl/usage.html#BGP
>
> Mark

That's actually pretty clean, too.  I haven't implemented a route server on
my networks.  But I play around on Cerf Net's sometimes when I tracking down
BGP problems.  What's the consensus on using one at the Tier 2 level?

Karyn  


-----Original Message-----
From: Mark Mentovai [mailto:marklist () ggn net]
Sent: Thursday, July 06, 2000 1:23 PM
To: nanog () merit edu
Subject: RE: RBL-type BGP service for known rogue networks?



Karyn Ulriksen wrote:
> What I was saying is that they had already set up some type of blackhole
> system that I was lead to believe they were doing at the router level (not
> mail system level).  When they had us blackhole, we couldn't get past their
> core routers.  I know your next thougt is that they just threw us into
their
> route filter, but my understanding is that they offered a service that you
> subscribed to and the updated the filter on the fly.  Which sounds like it
> would work for what you may be looking for in the "kiddie script network"
> scenario (which I assume means either IRC crapola or DOS crapola in
general)
> or those wonderful .ru sites serving out that hardcore kiddie porn stuff
via
> cgi calls.

You can play tricks with BGP to do this.  Here's how MAPS RBL does it, and
how you can use it:

http://www.mail-abuse.org/rbl/usage.html#BGP

Mark

-- 
Do not reply directly to this e-mail address
--
Mark Mentovai
UNIX Engineer
Gillette Global Network