nanog mailing list archives

Re: Blackhole Routes

From: Randy Bush <randy () psg com>
Date: Thu, 30 Sep 2004 18:04:39 -0700

If every BGP session in your network is protected by a
max-prefix limit, no matter who leaks, the damage will be
limited and contained.

true, also not univeral,

the problem with max-prefix is it does not say *which* prefixes.
so even if the drop-bgp stoopidity is corrected, you could end
up holding the bogus prefixes, not the good ones.

true, however, my point was that not even the basics are being
done :(


darwinian motion

Current thread:

Re: Blackhole Routes Randy Bush (Sep 30)
- <Possible follow-ups>
- Re: Blackhole Routes Bill Stewart (Oct 01)
- RE: Blackhole Routes Matt Ryan (Oct 01)
- Re: Blackhole Routes Ian Dickinson (Oct 02)
  - Re: Blackhole Routes Richard A Steenbergen (Oct 02)
    - Re: Blackhole Routes Ian Dickinson (Oct 03)
    - Re: Blackhole Routes Robert E . Seastrom (Oct 03)
    - Re: Blackhole Routes Ian Dickinson (Oct 03)
- Re: Blackhole Routes guy (Oct 03)
- Re: Blackhole Routes Petri Helenius (Oct 03)
  - RE: Blackhole Routes Wayne Gustavus (nanog) (Oct 04)

(Thread continues...)