Re: AS11296 -- Hijacked?

[khatfield () socllc net]

Now that's some paranoia ;)

-----Original Message-----
From: "Heath Jones" <hj1980 () gmail com>
Sent: Tuesday, September 28, 2010 4:05pm
To: nanog () nanog org
Subject: Re: AS11296 -- Hijacked?

He blocked google mail? WTF?


---------- Forwarded message ----------
From: Mail Delivery Subsystem <mailer-daemon () googlemail com>
Date: 28 September 2010 20:49
Subject: Delivery Status Notification (Failure)
To: hj1980 () gmail com


Delivery to the following recipient failed permanently:

    rfg () tristatelogic com

Technical details of permanent failure:
Google tried to deliver your message, but it was rejected by the
recipient domain. We recommend contacting the other email provider for
further information about the cause of this error. The error that the
other server returned was: 550 550 5.7.1
<mail-qy0-f176.google.com[209.85.216.176]>: Client host rejected:
Domain google.com BLACKLISTED - Use
http://www.tristatelogic.com/contact.html (state 14).

----- Original message -----

MIME-Version: 1.0
Received: by 10.224.62.217 with SMTP id y25mr308053qah.193.1285703359508; Tue,
 28 Sep 2010 12:49:19 -0700 (PDT)
Received: by 10.229.226.204 with HTTP; Tue, 28 Sep 2010 12:49:12 -0700 (PDT)
In-Reply-To: <63619.1285701703 () tristatelogic com>
References: <63619.1285701703 () tristatelogic com>
Date: Tue, 28 Sep 2010 20:49:12 +0100
Message-ID: <AANLkTi=qX7cX4F3Y_AZ803WdPmKMTC_hZZPsmdqS1v3r () mail gmail com>
Subject: Re: AS11296 -- Hijacked?
From: Heath Jones <hj1980 () gmail com>
To: "Ronald F. Guilmette" <rfg () tristatelogic com>
Cc: nanog () nanog org
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable

Out of curiosity, what led you to this conclusion?

> Evidence strongly suggests that AS11296 together with all of the IPv4
> space it is currently announcing routes for, i.e.:
> have all been hijacked.  I will be reporting this formally to ARIN today,
> via their helpful fraud reporting web form.