nanog mailing list archives

Previous By Date Next
Previous By Thread Next

Spoofer Report for NANOG for Apr 2024

From: CAIDA Spoofer Project <spoofer-info () caida org>
Date: Wed, 8 May 2024 10:00:13 -0700
In response to feedback from operational security communities,
CAIDA's source address validation measurement project
(https://spoofer.caida.org) is automatically generating monthly
reports of ASes originating prefixes in BGP for systems from which
we received packets with a spoofed source address.
We are publishing these reports to network and security operations
lists in order to ensure this information reaches operational
contacts in these ASes.

This report summarises tests conducted within usa, can.

Inferred improvements during Apr 2024:
ASN    Name                                           Fixed-By
202400                                                2024-04-30

Further information for the inferred remediation is available at:
https://spoofer.caida.org/remedy.php

Source Address Validation issues inferred during Apr 2024:
ASN    Name                           First-Spoofed Last-Spoofed
209    CENTURYLINK-US-LEGACY-QWEST       2016-08-16   2024-04-27
40676  AS40676                           2016-08-29   2024-04-27
27364  ACS-INTERNET                      2016-09-27   2024-04-25
20412  CLARITY-TELECOM                   2016-09-30   2024-04-30
11427  TWC-11427-TEXAS                   2016-10-21   2024-04-09
10796  TWC-10796-MIDWEST                 2016-10-24   2024-04-21
701    UUNET                             2017-06-14   2024-04-06
46573  GLOBAL-FRAG-NETWORKS              2019-05-16   2024-04-26
21804  ACCESS-SK                         2019-06-09   2024-04-25
22773  ASN-CXA-ALL-CCI-22773-RDC         2021-10-24   2024-04-16
46997                                    2021-12-22   2024-04-26
12183  TALKIE-COMMUNICATIONS             2022-12-10   2024-04-26
3701   NERONET                           2023-04-18   2024-04-26
400282                                   2023-04-27   2024-04-25
202400                                   2023-05-08   2024-04-28
394684 WISPERNET                         2024-01-17   2024-04-25
55     UPENN                             2024-01-30   2024-04-26
25853  ELJY30540                         2024-02-01   2024-04-28
394195 CLEARNETWORX                      2024-03-22   2024-04-26
40850  ENKI                              2024-04-03   2024-04-03
20326  TERASWITCH                        2024-04-15   2024-04-15
203168                                   2024-04-25   2024-04-25

Further information for these tests where we received spoofed
packets is available at:
https://spoofer.caida.org/recent_tests.php?country_include=usa,can&no_block=1

Please send any feedback or suggestions to spoofer-info () caida org
Previous By Date Next
Previous By Thread Next

Current thread: