[107293] in North American Network Operators' Group
Re: BGP Attack - Best Defense ?
daemon@ATHENA.MIT.EDU (Jon Lewis)
Fri Aug 29 18:57:54 2008
Date: Fri, 29 Aug 2008 18:57:37 -0400 (EDT)
From: Jon Lewis <jlewis@lewis.org>
To: Scott Weeks <surfer@mauigateway.com>
In-Reply-To: <20080829155045.AE9625D@resin13.mta.everyone.net>
Cc: nanog@merit.edu
Errors-To: nanog-bounces@nanog.org
On Fri, 29 Aug 2008, Scott Weeks wrote:
> Restating my question differently: If the attacker is announcing a /24
> of mine, I figure it out some how and I start announcing the same.
> What happens if the attacker doesn't stop?
You may as well announce both the same /24 and /25s if you can...though
those probably won't make it far. If they hijack something less
specific than a /24, go one bit more specific than the rogue
announcement.
After that, try contacting the rogue ASN's upstreams. After that? See if
you can find a backhoe for hire?
----------------------------------------------------------------------
Jon Lewis | I route
Senior Network Engineer | therefore you are
Atlantic Net |
_________ http://www.lewis.org/~jlewis/pgp for PGP public key_________
