[107088] in North American Network Operators' Group
RE: Is it time to abandon bogon prefix filters?
daemon@ATHENA.MIT.EDU (Sean Donelan)
Tue Aug 26 03:28:14 2008
Date: Tue, 26 Aug 2008 03:28:04 -0400 (EDT)
From: Sean Donelan <sean@donelan.com>
To: "Tomas L. Byrnes" <tomb@byrneit.net>
In-Reply-To: <70D072392E56884193E3D2DE09C097A9F4E8@pascal.zaphodb.org>
Cc: NANOG list <nanog@nanog.org>
Errors-To: nanog-bounces@nanog.org
On Sun, 24 Aug 2008, Tomas L. Byrnes wrote:
> You're missing one of the basic issues with bogon sources: they are
> often advertised bogons, IE the bad guy DOES care about getting the
> packets back, and has, in fact, created a way to do so.
>
> This is usually VERY BAD traffic, and EVEN WORSE if a user goes TO a
> site hosted in such IP space.
>
> So, Bogon filtering has value beyond mere spoofed source rejection.
Unmanaged (or semi-managed) routers probably should not be running
BGP or other exterior routing protocols. Unmanaged routers with BGP
provide more opportunities to create havoc and mischief.
