[116770] in North American Network Operators' Group
RE: Anyone else seeing "(invalid or corrupt AS path) 3 bytes E01100" ?
daemon@ATHENA.MIT.EDU (Ballard, Eric)
Mon Aug 17 18:21:33 2009
From: "Ballard, Eric" <Eric.Ballard@suddenlink.com>
To: "nanog-post@rsuc.gweep.net" <nanog-post@rsuc.gweep.net>, randal k
<nanog@data102.com>, "nanog@nanog.org" <nanog@nanog.org>,
"as9354@cnci.co.jp" <as9354@cnci.co.jp>
Date: Mon, 17 Aug 2009 17:21:08 -0500
In-Reply-To: <20090817214840.GA76062@gweep.net>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
With the help from our transit providers and Cisco TAC the issues looks to =
be that AS9354 is sending AS0 and causing the corruption when processed in =
our Cisco CRS routers.=20
AS9354 shows to be Community Network Center Inc. (CNCI) or TDNC and directl=
y connected to KDDI AS2516.=20=20
If anyone from AS9354 is on this list please contact me or stop this advert=
isement or someone from KDDI please assist.=20=20
Thanks
ERIC
-----Original Message-----
From: Joe Provo [mailto:nanog-post@rsuc.gweep.net]=20
Sent: Monday, August 17, 2009 4:49 PM
To: randal k
Cc: nanog@nanog.org
Subject: Re: Anyone else seeing "(invalid or corrupt AS path) 3 bytes E0110=
0" ?
On Mon, Aug 17, 2009 at 03:37:07PM -0600, randal k wrote:
> Yep, we started seeing this right around 12:20pm MST. We saw it from a
> customer's rapidly-flapping BGP peer. We told them to configure bgp
> maxas-limit, but apparently CRS1s don't have that command.
>=20
> Anybody have a handy route-map that will deny anything with a as-path
> longer than say 15-20? ;-)
=20
Been a while since I had to throw this on cisco, but I since it lacks
sane repeat constraint, you have to either choose to iterate over your
acceptable space or deny on the longer-than-acceptable. For the latter,
^[0-9]+_[0-9]+_[0-9]+_[0-9]+_[0-9]+_[0-9]+_[0-9]+_[0-9]+_[0-9]+_[0-9]+_[0-9=
]+_[0-9]+_[0-9]+_[0-9]+_([0-9]+_)+
clobbers 15 ASNs and longer.
--=20
RSUC / GweepNet / Spunk / FnB / Usenix / SAGE
