[106631] in North American Network Operators' Group
Re: Is it time to abandon bogon prefix filters?
daemon@ATHENA.MIT.EDU (Pete Templin)
Thu Aug 7 14:04:07 2008
Date: Thu, 07 Aug 2008 14:04:19 -0400
From: Pete Templin <petelists@templin.org>
To: "Patrick W. Gilmore" <patrick@ianai.net>
In-Reply-To: <1169F62F-3043-4D15-80C3-2D083744C22D@ianai.net>
Cc: NANOG list <nanog@nanog.org>
Errors-To: nanog-bounces@nanog.org
Patrick W. Gilmore wrote:
> Filter your bogons. But do it in an automated fashion, from a trusted
> source.
>
> Of course, I recommend Team Cymru, which has a most sterling record.
> Nearly perfect (other than the fact they still recommend MD5 on BGP
> sessions :).
How can you recommend Team Cymru, when their product is not in any way a
filter? It is merely an automated method of injecting aggregate null
routes for bogons, but in no way prevents a network from accepting
aggregate or specific bogon announcements (i.e. it does not _filter_).
pt
