[106871] in North American Network Operators' Group
Re: Is it time to abandon bogon prefix filters?
daemon@ATHENA.MIT.EDU (Randy Bush)
Fri Aug 15 09:26:56 2008
Date: Fri, 15 Aug 2008 06:26:44 -0700
From: Randy Bush <randy@psg.com>
To: "Robert E. Seastrom" <rs@seastrom.com>
In-Reply-To: <86tzdmzcv3.fsf@seastrom.com>
Cc: NANOG list <nanog@nanog.org>
Errors-To: nanog-bounces@nanog.org
> In other words, our earlier estimate of 60% was way off... you can
> get 92.1% effectiveness at bogon filtering by just dropping 1918
> addresses, a filter that you will never have to change.
my read is that the 60% was an alleged 60% of attacks came from *all*
bogon space. this now seems in the low single digit percentge. of
that, the majority is from 1918 space.
randy
