[149273] in North American Network Operators' Group
Re: [#135346] Unauthorized BGP Announcements (follow up to Hijacked
daemon@ATHENA.MIT.EDU (David Conrad)
Tue Jan 31 20:16:31 2012
From: David Conrad <drc@virtualized.org>
In-Reply-To: <CANEysbFGHpDOYOEPou4o5jNzZ9G0qsJyW0PQgosagikQbEDaJQ@mail.gmail.com>
Date: Tue, 31 Jan 2012 17:15:29 -0800
To: Kelvin Williams <kwilliams@altuscgi.com>
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
> I hope none of you ever get hijacked by a spammer housed at Phoenix =
NAP. :)
In the dim past, I had a somewhat similar situation:
- A largish (national telco of a small country) ISP started announcing =
address space a customer of theirs provided. Unfortunately, the address =
space wasn't the ISP's customer's to provide.
- When the ISP was notified by both their RIR and the organization to =
which the address space was rightfully delegated, the ISP's response =
was:
"We have a contractual relationship with our customer to announce that =
space. We have neither a contractual relationship (in this context) =
with the RIR nor the RIR's customer. The RIR and/or the RIR's customer =
should resolve this issue with our customer."
It as an eye-opening experience.
Regards,
-drc
On Jan 31, 2012, at 4:49 PM, Kelvin Williams wrote:
>=20
> We're still not out of the woods, announcing /24s and working with =
upper
> tier carriers to filter out our lists. However, I just got this =
response
> from Phoenix NAP and found it funny. The "thief" is a former =
customer,
> whom we terminated their agreement with. They then forged an LOA,
> submitted it to CWIE.net and Phoenix NAP and resumed using space above =
and
> beyond their terminated agreement. So now any request for assistance =
to
> stop our networks from being announced is now responded to with an
> instruction to contact the thief's lawyer.
>=20
> kw
>=20
> ---------- Forwarded message ----------
> From: Kelvin Williams <kwilliams@altuscgi.com>
> Date: Tue, Jan 31, 2012 at 7:43 PM
> Subject: Re: [#135346] Unauthorized BGP Announcements
> To: noc@phoenixnap.com
>=20
>=20
> We'll be forwarding this to our peers in the industry--rather funny =
that
> Phoenix NAP would rather send us to the attorney of the people =
stealing our
> space than bothering to perform an ARIN WHOIS search, or querying any =
of
> the IRRs.
>=20
> Interesting... Very interesting... So, who all do you have
> there--spammers and child pornographers? Is this level of protection =
what
> you give to them all?
>=20
>=20
>=20
> On Tue, Jan 31, 2012 at 7:30 PM, Brandon S <BrandonS@phoenixnap.com> =
wrote:
>=20
>> Hello,
>>=20
>> Thank you for your email. Please direct any further questions =
regarding
>> this issue to the following contact.
>>=20
>> Bennet Kelley
>> 100 Wilshire Blvd.
>> Suite 950
>> Santa Monica, CA 90401
>> bkelley@internetlawcenter.net
>>=20
>> Telephone
>> 310-452-0401
>>=20
>> Facsimile
>> 702-924-8740
>>=20
>> --
>> Brandon S.
>> NOC Services Technician
>>=20
>> ** We want to hear from you!**
>> We care about the quality of our service. If you=92ve received
>> anything less than a prompt response or exceptional service or would =
like
>> to share any
>> feedback regarding your experience, please let us know by sending an =
email
>> to management:
>> supportfeedback@phoenixnap.com
>>=20
>> --
> Kelvin Williams
> Sr. Service Delivery Engineer
> Broadband & Carrier Services
> Altus Communications Group, Inc.
>=20
>=20
> "If you only have a hammer, you tend to see every problem as a nail." =
--
> Abraham Maslow
