[107072] in North American Network Operators' Group
Re: Is it time to abandon bogon prefix filters?
daemon@ATHENA.MIT.EDU (Chris Marlatt)
Mon Aug 25 09:38:30 2008
X-Antivirus-RXSEC-Mail-From: cmarlatt@rxsec.com via core.rxsec.com
Date: Mon, 25 Aug 2008 09:38:00 -0400
From: Chris Marlatt <cmarlatt@rxsec.com>
To: Valdis.Kletnieks@vt.edu
In-Reply-To: <12441.1219671165@turing-police.cc.vt.edu>
Cc: NANOG list <nanog@nanog.org>
Errors-To: nanog-bounces@nanog.org
Valdis.Kletnieks@vt.edu wrote:
> On Sun, 24 Aug 2008 23:21:23 PDT, "Tomas L. Byrnes" said:
>> You're missing one of the basic issues with bogon sources: they are
>> often advertised bogons, IE the bad guy DOES care about getting the
>> packets back, and has, in fact, created a way to do so.
>
> But if you've seen a BGP announcement with a prefix that covers the source,
> is it really a bogon anymore?
>
IIRC "bogon" is specific to unallocated space. Whether it be advertised
or not should not matter.
Regards,
Chris
