[149343] in North American Network Operators' Group
Re: AS8300 - Swisscom hijacking.. Just what are you testing?
daemon@ATHENA.MIT.EDU (Jeroen Massar)
Wed Feb 1 17:13:39 2012
Date: Wed, 01 Feb 2012 23:12:36 +0100
From: Jeroen Massar <jeroen@unfix.org>
To: "Schiller, Heather A" <heather.schiller@verizon.com>
In-Reply-To: <B9EBD2474913AD4A995B8C7B8BEF8C0E14FD65EEC8@FHDP1LUMXC7V43.us.one.verizon.com>
Cc: "nanog@nanog.org" <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On 2012-02-01 22:44 , Schiller, Heather A wrote:
>
> AS8300 started announcing one of the Rove Digital dns changer IP ranges.
[..]
> I searched around and couldn't find any mention of what they might be testing. Anyone know?
They do internal aggregation of common prefixes to keep their internal
tables small, see for instance this rather old preso:
http://www.swinog.ch/meetings/swinog7/BGP_filtering-swinog.ppt
These prefixes should of course not be leaked outside their own network.
I would say, kick them either directly (yell offlist if you want direct
contacts) or spam the SwiNOG list and you will get a response quickly too.
Greets,
Jeroen
