nanog mailing list archives
Attacks on BGP Routing Ranges
From: Ryan Hamel <Ryan.Hamel () quadranet com>
Date: Wed, 18 Apr 2018 10:37:57 +0000
Hello, I wanted to poll everyones thoughts on how to deal with attacks directly on BGP peering ranges (/30's, /127's). I know that sending an RTBH for our side of the upstream routing range does not resolve the issue, and it would actually make things worse by blackholing all inbound traffic on the carrier I send the null to. What are my options for carriers that are not willing to help investigate the situation or write up a firewall rule to mitigate it on the circuit? I am not a fan of naming and shaming because it has unintended consequences. Thanks in advance for everyone's suggestions. Ryan Hamel
Current thread:
- Attacks on BGP Routing Ranges Ryan Hamel (Apr 18)
- Re: Attacks on BGP Routing Ranges Job Snijders (Apr 18)
- Re: Attacks on BGP Routing Ranges Ryan Hamel (Apr 18)
- Re: Attacks on BGP Routing Ranges Saku Ytti (Apr 18)
- Re: Attacks on BGP Routing Ranges Ryan Hamel (Apr 18)
- Re: Attacks on BGP Routing Ranges Jon Lewis (Apr 18)
- Re: Attacks on BGP Routing Ranges Saku Ytti (Apr 18)
- Re: Attacks on BGP Routing Ranges William Herrin (Apr 18)
- Re: Attacks on BGP Routing Ranges Roland Dobbins (Apr 18)
- Re: Attacks on BGP Routing Ranges Jean | ddostest.me via NANOG (Apr 19)
- Re: Attacks on BGP Routing Ranges Ryan Hamel (Apr 18)
- Re: Attacks on BGP Routing Ranges Job Snijders (Apr 18)
- RE: Attacks on BGP Routing Ranges Nikos Leontsinis (Apr 19)