nanog mailing list archives

Re: Best practices inquiry: filtering 128/1

From: John Kristoff <jtk () ultradns net>
Date: Mon, 10 Jul 2006 22:22:49 -0500


On Mon, 10 Jul 2006 21:56:27 -0500
Jerry Pasker <jerry () jerry org> wrote:

Because you fear that their routers that distribute the feed could 
become own3d and used to cause a massive DoS by filtering out some 
networks?


Someone in the NANOG community, I forget who now, had the sensible
suggestion that you create a filter list based on the bogon list at
the time you setup your feed.  You use that to limit what you will
accept from Cymru.  Since bogon blocks will only get allocated, the
worst that could happen is the breaking of a recently allocated bogon
network.  Even if you don't update your filter list for the next 5
years the damage is likely to be minimal.

John

Current thread:

Best practices inquiry: filtering 128/1 WONG, Yuen-Fung (Jul 10)
- Re: Best practices inquiry: filtering 128/1 Patrick W. Gilmore (Jul 10)
  - Message not available
    - Re: Best practices inquiry: filtering 128/1 Patrick W. Gilmore (Jul 10)
  - Re: Best practices inquiry: filtering 128/1 Jerry Pasker (Jul 10)
    - Re: Best practices inquiry: filtering 128/1 Patrick W. Gilmore (Jul 10)
    - Re: Best practices inquiry: filtering 128/1 Rob Thomas (Jul 10)
    - Re: Best practices inquiry: filtering 128/1 John Kristoff (Jul 10)
  - Re: Best practices inquiry: filtering 128/1 Florian Weimer (Jul 11)
    - Re: Best practices inquiry: filtering 128/1 Joe Abley (Jul 11)
- Re: Best practices inquiry: filtering 128/1 Christopher L. Morrow (Jul 11)
- <Possible follow-ups>
- RE: Best practices inquiry: filtering 128/1 WONG, Yuen-Fung (Jul 10)
- RE: Best practices inquiry: filtering 128/1 WONG, Yuen-Fung (Jul 12)
  - RE: Best practices inquiry: filtering 128/1 Christopher L. Morrow (Jul 12)