nanog mailing list archives

Re: Route leak in Bangladesh

From: Job Snijders <job () instituut net>
Date: Tue, 30 Jun 2015 16:24:43 +0200

On Tue, Jun 30, 2015 at 09:44:12AM -0400, Joe Abley wrote:

On 30 Jun 2015, at 9:41, Job Snijders wrote:

In addition to the BGP community scheme, outbound as-path filters could
help.


I agree, but possibly not in the case of a redistribution loop.

(We don't know that's what happened, exactly, but I thought it was worth
mentioning.)


Joe, you are right.

In this specific situation, for a small to medium sized network, it
might be prudent to apply an outbound prefix-filter on all transit &
peering sessions and thus only allowing prefixes which actually belong
to downstream customers and the network itself.

One could generate that prefix-list based on the network's AS-SET. I
wouldn't deploy /only/ outbound prefix-filters. This method should be
viewed as complementary to other methods such as the already mentioned a
BGP community scheme.

Kind regards,

Job

Current thread:

Re: NTT->HE earlier today (~10am EDT), (continued)
- - - Re: NTT->HE earlier today (~10am EDT) Job Snijders (Jun 30)
    - Re: NTT->HE earlier today (~10am EDT) Randy Bush (Jun 30)
    - Re: NTT->HE earlier today (~10am EDT) Job Snijders (Jun 30)
- Re: Route leak in Bangladesh Matsuzaki Yoshinobu (Jun 30)
  - Re: Route leak in Bangladesh Randy Bush (Jun 30)
    - Re: Route leak in Bangladesh Matsuzaki Yoshinobu (Jun 30)
    - Re: Route leak in Bangladesh Mark Tinka (Jun 30)
    - Re: Route leak in Bangladesh Nick Hilliard (Jun 30)
    - Re: Route leak in Bangladesh Job Snijders (Jun 30)
    - Re: Route leak in Bangladesh Joe Abley (Jun 30)
    - Re: Route leak in Bangladesh Job Snijders (Jun 30)
    - Re: Route leak in Bangladesh Mark Tinka (Jun 30)
    - Re: Route leak in Bangladesh Job Snijders (Jun 30)
    - Re: Route leak in Bangladesh Sandra Murphy (Jun 30)
    - Re: Route leak in Bangladesh Justin M. Streiner (Jun 30)
    - Re: Route leak in Bangladesh Sandra Murphy (Jun 30)
    - Re: Route leak in Bangladesh Job Snijders (Jun 30)
    - Re: Route leak in Bangladesh Graham Beneke (Jun 30)
    - Re: Route leak in Bangladesh Justin M. Streiner (Jun 30)
  - Re: Route leak in Bangladesh Andree Toonk (Jun 30)
- RE: Route leak in Bangladesh Adam Datacenter - NOC (Jun 30)