[180966] in North American Network Operators' Group
Re: Open letter to Level3 concerning the global routing issues on
daemon@ATHENA.MIT.EDU (Jared Mauch)
Fri Jun 12 14:01:41 2015
X-Original-To: nanog@nanog.org
From: Jared Mauch <jared@puck.nether.net>
In-Reply-To: <CAJL_ZMM_1bUGnUPQyM9FciZgou9tyNMvR7dSCrL1t6rRzvgJBw@mail.gmail.com>
Date: Fri, 12 Jun 2015 14:01:35 -0400
To: jim deleskie <deleskie@gmail.com>
Cc: NANOG <nanog@nanog.org>
Errors-To: nanog-bounces@nanog.org
> On Jun 12, 2015, at 1:40 PM, jim deleskie <deleskie@gmail.com> wrote:
>=20
> Todd,
>=20
> One of my few work "regrets" is we where not able to move this =
forward.
> There was/is lots of value in it.
There are many of us trying to tilt at these topics in various ways.
I know that at $dayjob we try to keep things clean, monitor what=E2=80=99s=
going on
etc..
I=E2=80=99m happy to dump any ASN into my leak detector stuff here that =
wants
it:
http://puck.nether.net/bgp/leakinfo.cgi
it only looks for one type of thing, but with =E2=80=9Cthe cloud=E2=80=9D =
it=E2=80=99s much easier
to toss feeds and compute at these things than 10-20 years ago.
I=E2=80=99m always disappointed to find that people just =E2=80=9Cgive =
up=E2=80=9D at a certain
scale in trying to filter things.
I blame many of the vendors for not having the will to fix their BGP
implementations to advertise no routes to a new peer without policy.
I blame vendors for failing to train/test people on filtering routes
as part of their *IE certification. If you=E2=80=99re an internet =
expert you
don=E2=80=99t make these errors, or don=E2=80=99t have them occur for =
such a long duration.
I blame vendors for selling devices route optimization that translate a=20=
regular BGP feed into a garbage feed that can cause global pollution.
Many people don=E2=80=99t understand their IP routing =E2=80=9Csupply =
chain=E2=80=9D so lines of people
waiting to pay because you can=E2=80=99t swipe your card is the fault of =
many
people, including the people without cash to cover their food bills.
I can rant all day about this amongst other things. What have you done
today to improve your routing security?
- Jared
