[106916] in North American Network Operators' Group
Re: Is it time to abandon bogon prefix filters?
daemon@ATHENA.MIT.EDU (Pete Templin)
Sun Aug 17 20:57:02 2008
Date: Sun, 17 Aug 2008 19:57:25 -0500
From: Pete Templin <petelists@templin.org>
To: "Tomas L. Byrnes" <tomb@byrneit.net>
In-Reply-To: <70D072392E56884193E3D2DE09C097A9F492@pascal.zaphodb.org>
Cc: NANOG list <nanog@nanog.org>
Errors-To: nanog-bounces@nanog.org
Tomas L. Byrnes wrote:
> Since there are ways to dynamically filter the bogons, using BGP or DNS,
> I don't really see the need to stop doing so. If you're managing your
> routing and firewall filters manually, you have bigger problems than the
> release of Bogon space.
Can you share the Cisco configuration snippet you recommend to
dynamically FILTER bogons using BGP or DNS? Not just inserting
null-routes for the bogon aggregates, but preventing the acceptance of
more-specifics that transits/peers/customers have managed to sneak past
someone's filters (or lack thereof), please.
(Without an offline configuration generator, I postulate that it can't
be done.)
pt
