[164895] in North American Network Operators' Group
Spoofing ASNs (Re: SNMP DDoS: the vulnerability you might not know
daemon@ATHENA.MIT.EDU (Jared Mauch)
Thu Aug 8 13:29:53 2013
From: Jared Mauch <jared@puck.nether.net>
In-Reply-To: <20130801063151.GA16879@pob.ytti.fi>
Date: Thu, 8 Aug 2013 13:29:30 -0400
To: Saku Ytti <saku@ytti.fi>
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Aug 1, 2013, at 2:31 AM, Saku Ytti <saku@ytti.fi> wrote:
> On (2013-07-31 17:07 -0700), bottiger wrote:
>=20
>> But realistically those 2 problems are not going to be solved any =
time
>> in the next decade. I have tested 7 large hosting networks only one =
of
>> them had BCP38.
>=20
> I wonder if it's truly that unrealistic. If we target access networks, =
it
> seems impractical target.
>=20
> We have about 40k origin only ASNs and about 7k ASNs which offer =
transit,
> who could arguably trivially ACL those 40k peers.
>=20
> If we truly tried, as a community to make deploying these ACLs easy =
and
> actively reach out those 7k ASNs and offer help, would it be =
unrealistic to
> have ACL deployed to sufficiently large portion of networks to make
> spoofing impractical/expensive?
The following is a sorted list from worst to best of networks that allow =
spoofing: (cutoff here is 25k)
(full list - =
http://openresolverproject.org/full-spoofer-asn-list-201307.txt )
Count ASN#
------------
1323950 3462=20
1300938 4134=20
1270046 8151=20
1213972 9737=20
851124 22927=20
706434 45899=20
532546 3816=20
497303 1267=20
487965 17974=20
486882 4837=20
433170 9829=20
425991 18403=20
422356 19429=20
406870 24560=20
378440 4766=20
357974 6697=20
341044 6147=20
332602 18881=20
251074 7303=20
238461 9318=20
221201 4812=20
217794 7418=20
213049 17552=20
181995 7552=20
159078 13489=20
153877 9299=20
142740 7738=20
138730 209=20
120860 8452=20
118506 46606=20
117700 14420=20
107600 17813=20
101967 36947=20
98708 6400=20
93526 36351=20
92471 4788=20
89976 9198=20
88570 11556=20
81665 9050=20
81624 27695=20
80837 13354=20
80415 701=20
79032 6332=20
78164 4808=20
77937 55430=20
75800 2554=20
65618 9394=20
63992 4713=20
60380 9808=20
59274 6057=20
55177 8400=20
53862 9269=20
53266 13285=20
51620 9329=20
50822 22833=20
50320 16276=20
49847 23752=20
48998 4780=20
48278 31549=20
47195 8167=20
46484 10299=20
46270 21844=20
43439 26599=20
43211 32475=20
43048 36444=20
41688 27668=20
35448 24863=20
34160 27866=20
33068 26496=20
32166 14754=20
31656 2379=20
31450 32613=20
30641 27699=20
29225 45951=20
28804 6389=20
27836 56040=20
27406 5617=20
26758 39501=20
26454 24940=20
26175 13999=20
25736 7018=20
25482 131090=20
25478 1221=20
