[174229] in North American Network Operators' Group
Re: Prefix hijacking, how to prevent and fix currently
daemon@ATHENA.MIT.EDU (Matthew Petach)
Sun Aug 31 18:19:43 2014
X-Original-To: nanog@nanog.org
In-Reply-To: <61053764-5486-4E4A-B56A-644E005405F6@renesys.com>
Date: Sun, 31 Aug 2014 15:19:34 -0700
From: Matthew Petach <mpetach@netflight.com>
To: Doug Madory <dmadory@renesys.com>
Cc: "nanog@nanog.org" <nanog@nanog.org>
Errors-To: nanog-bounces@nanog.org
On Sun, Aug 31, 2014 at 12:47 PM, Doug Madory <dmadory@renesys.com> wrote:
> Ah yes BusinessTorg (AS60937). I have also seen this one doing what you
> are describing. Not to MSFT or GOOG, but another major technology company
> that we peer with. In fact, it is going on right now but only visible if
> you receive routes directly from them. A while ago, I sent them a note
> describing what was happening and suggested they might want to stop
> accepting routes from that AS, but they still do.
>
Be aware that even if you don't think you're
peering with them directly, you may be picking
up routes via the public route servers at exchange
points, so check to see if you need to apply
filters on your route server peerings as well.
Matt
