[102969] in North American Network Operators' Group
Re: Peering with the Internet Alert Registry
daemon@ATHENA.MIT.EDU (Christopher Morrow)
Mon Mar 10 18:06:36 2008
Date: Mon, 10 Mar 2008 18:01:10 -0400
From: "Christopher Morrow" <christopher.morrow@gmail.com>
To: "Josh Karlin" <karlinjf@cs.unm.edu>
Cc: nanog@merit.edu
In-Reply-To: <71051fe20803100801i2ba99cd4uadbd2a191e1c8cfb@mail.gmail.com>
Errors-To: owner-nanog@merit.edu
On Mon, Mar 10, 2008 at 11:01 AM, Josh Karlin <karlinjf@cs.unm.edu> wrote:
> All,
>
> Some of you are aware of the site for network operators:
> http://iar.cs.unm.edu/ which has running for two years now. The purpose of
> the site is to detect and distribute network anomaly information to the
> network operators that need to know. The flip side of our proposed security
> system, Pretty Good BGP (PGBGP), lowers the local preference of anomalous
> routes on BGP routers for 24 hours, giving operators time to respond to
> anomalous routes before they can fully propagate.
>
does pgbgp toss out alerts/snmp-traps/log-messages when these
anomalous announcements arrive? if not, how does one know they are
inside the 24hr window?
