nanog mailing list archives

Re: Kenyan Route Hijack

From: "Paul Ferguson" <fergdawg () netzero net>
Date: Sun, 16 Mar 2008 05:30:21 GMT


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- -- "Bill Stewart" <nonobvious () gmail com> wrote:

I've seen two popular reasons for doing it accidentally
- Fat fingers when configuring IP addresses by hand
- Using old routing protocols such as IGRP or RIP and autosummarizing
routes, 
 usually done by a customer of an ISP that doesn't bother filtering
carefully. 
 This doesn't give you a /24 address by accident,
 but it lets you take two /24 subnets of a Class B or Class A
 and turn them into an advertisement for the whole network.


Also: I have seen instances where a static route points to a next
hop that (inadvertently) may be "redistribute-static" injected into
BGP. This happens occasionally due to ad hoc configurations, back-
hole null routing, etc.

- - ferg

-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.6.3 (Build 3017)

wj8DBQFH3LBoq1pz9mNUZTMRAm8qAJwLWej/LjWQo8svLbgmOhe3kOOMCwCg7XZ/
V8/XCEkVEu0h2MAndAIpZ5g=
=jQfu
-----END PGP SIGNATURE-----


--
"Fergie", a.k.a. Paul Ferguson
 Engineering Architecture for the Internet
 fergdawg(at)netzero.net
 ferg's tech blog: http://fergdawg.blogspot.com/

Current thread:

Re: Kenyan Route Hijack Paul Ferguson (Mar 15)
- Re: Kenyan Route Hijack Glen Kent (Mar 15)
  - Re: Kenyan Route Hijack Christopher Morrow (Mar 15)
    - Re: Kenyan Route Hijack Kameron Gasso (Mar 16)
    - Re: Kenyan Route Hijack Alastair Johnson (Mar 16)
    - Re: Kenyan Route Hijack Jon Lewis (Mar 16)
    - Re: Kenyan Route Hijack John Payne (Mar 16)
    - Re: Kenyan Route Hijack Paul Vixie (Mar 16)
    - Re: Kenyan Route Hijack Suresh Ramasubramanian (Mar 17)
    - Re: Kenyan Route Hijack Ross Vandegrift (Mar 17)
- <Possible follow-ups>
- Re: Kenyan Route Hijack Paul Ferguson (Mar 15)

(Thread continues...)