nanog mailing list archives
Re: v6 route mess frm AS266970
From: Hank Nussbacher <hank () efes iucc ac il>
Date: Tue, 29 Aug 2023 19:37:21 +0300
On 29/08/2023 18:41, Randy Bush wrote:
is a massive route leak not even menntioned when it is only ipv6? the guess i heard was it looked like a classic config reorigination disaster. randy
Has the route leak been resolved? BGPstream still shows it as active: https://bgpstream.crosswork.cisco.com/ RPKI only worked where it is implemented.I saw one path via Lumen (AS3356) and was disappointed to see it based on their blog from 2.5 years ago:
https://blog.lumen.com/lumen-enhances-routing-security-with-resource-public-key-infrastructure-rpki/
"Once implemented, Lumen will use RPKI route validation on all BGP sessions for both customers and peers. Lumen’s RPKI validation servers download the ROAs, examine them, then send the tables to routers that can determine the validity of an IP prefix."
MANRS confirms that AS3356 does not do much RPKI (see attachment). Regards, Hank
Current thread:
- v6 route mess frm AS266970 Randy Bush (Aug 29)
- Re: v6 route mess frm AS266970 Tarko Tikan (Aug 29)
- Re: v6 route mess frm AS266970 Randy Bush (Aug 29)
- Re: v6 route mess frm AS266970 Doug Kenline (Aug 29)
- Re: v6 route mess frm AS266970 Hank Nussbacher (Aug 29)
- Re: v6 route mess frm AS266970 Jon Lewis (Aug 29)
- Re: v6 route mess frm AS266970 Tarko Tikan (Aug 29)