[103095] in North American Network Operators' Group
Re: Kenyan Route Hijack
daemon@ATHENA.MIT.EDU (Paul Ferguson)
Sun Mar 16 01:43:32 2008
From: "Paul Ferguson" <fergdawg@netzero.net>
Date: Sun, 16 Mar 2008 05:30:21 GMT
To: nonobvious@gmail.com
Cc: nanog@merit.edu, danny@tcb.net
Errors-To: owner-nanog@merit.edu
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- -- "Bill Stewart" <nonobvious@gmail.com> wrote:
>I've seen two popular reasons for doing it accidentally
>- Fat fingers when configuring IP addresses by hand
>- Using old routing protocols such as IGRP or RIP and autosummarizing
>routes, =
> usually done by a customer of an ISP that doesn't bother filtering
> carefully. =
> This doesn't give you a /24 address by accident,
> but it lets you take two /24 subnets of a Class B or Class A
> and turn them into an advertisement for the whole network.
Also: I have seen instances where a static route points to a next
hop that (inadvertently) may be "redistribute-static" injected into
BGP. This happens occasionally due to ad hoc configurations, back-
hole null routing, etc.
- - ferg
-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.6.3 (Build 3017)
wj8DBQFH3LBoq1pz9mNUZTMRAm8qAJwLWej/LjWQo8svLbgmOhe3kOOMCwCg7XZ/
V8/XCEkVEu0h2MAndAIpZ5g=3D
=3DjQfu
-----END PGP SIGNATURE-----
--
"Fergie", a.k.a. Paul Ferguson
Engineering Architecture for the Internet
fergdawg(at)netzero.net
ferg's tech blog: http://fergdawg.blogspot.com/
