nanog mailing list archives
Re: Peering with the Internet Alert Registry
From: "Josh Karlin" <karlinjf () cs unm edu>
Date: Mon, 10 Mar 2008 20:02:12 -0600
Chris, That's a good question. IAR peers that also wish to run PGBGP will transmit their anomalous routes out of band to the IAR. This will likely be done via logs and a simple forwarding script. Josh On Mon, Mar 10, 2008 at 4:01 PM, Christopher Morrow < christopher.morrow () gmail com> wrote:
On Mon, Mar 10, 2008 at 11:01 AM, Josh Karlin <karlinjf () cs unm edu> wrote:All, Some of you are aware of the site for network operators: http://iar.cs.unm.edu/ which has running for two years now. Thepurpose ofthe site is to detect and distribute network anomaly information to the network operators that need to know. The flip side of our proposedsecuritysystem, Pretty Good BGP (PGBGP), lowers the local preference ofanomalousroutes on BGP routers for 24 hours, giving operators time to respond to anomalous routes before they can fully propagate.does pgbgp toss out alerts/snmp-traps/log-messages when these anomalous announcements arrive? if not, how does one know they are inside the 24hr window?
Current thread:
- Peering with the Internet Alert Registry Josh Karlin (Mar 10)
- Re: Peering with the Internet Alert Registry Christopher Morrow (Mar 10)
- Re: Peering with the Internet Alert Registry Josh Karlin (Mar 10)
- Re: Peering with the Internet Alert Registry Christopher Morrow (Mar 10)