[186652] in North American Network Operators' Group
Re: de-peering for security sake
daemon@ATHENA.MIT.EDU (Hugo Slabbert)
Sun Dec 27 01:32:23 2015
X-Original-To: nanog@nanog.org
Date: Sat, 26 Dec 2015 22:32:20 -0800
From: Hugo Slabbert <hugo@slabnet.com>
To: Suresh Ramasubramanian <ops.lists@gmail.com>
In-Reply-To: <D9BA146E-CD8F-45A2-AD5D-2FA9C2177224@gmail.com>
Cc: nanog@nanog.org
Errors-To: nanog-bounces@nanog.org
--HKEL+t8MFpg/ASTE
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
On Fri 2015-Dec-25 08:55:24 +0530, Suresh Ramasubramanian <ops.lists@gmail.=
com> wrote:
>Hmm, has anyone at all kept count of the number of times such a discussion=
has started up in just the last year...
Not on an ongoing basis, but I was curious as well, so a quick mailbox=20
search for 2015:
http://mailman.nanog.org/pipermail/nanog/2015-January/072841.html
subject: Facebook outage?
author: Colin Johnston <colinj@gt86car.org.uk>
http://mailman.nanog.org/pipermail/nanog/2015-February/073556.html
subject: AOL Postmaster
author: Colin Johnston <colinj@gt86car.org.uk>
http://mailman.nanog.org/pipermail/nanog/2015-March/074251.html
http://mailman.nanog.org/pipermail/nanog/2015-March/074241.html
subject: Getting hit hard by CHINANET
author: Colin Johnston <colinj@gt86car.org.uk>
http://mailman.nanog.org/pipermail/nanog/2015-April/074432.html
subject: BGP offloading (fixing legacy router BGP scalability issues)
author: Colin Johnston <colinj@gt86car.org.uk>
http://mailman.nanog.org/pipermail/nanog/2015-July/077790.html
subject: 20-30Gbps UDP 1720 traffic appearing to originate from CN in last=
=20
24 hours
author: Colin Johnston <colinj@gt86car.org.uk>
http://mailman.nanog.org/pipermail/nanog/2015-December/083104.html
subject: de-peering for security sake
author: Colin Johnston <colinj@gt86car.org.uk>
I tried to be pretty wide in the search and filter through a decent chunk=
=20
of false positives manually, though of course I could have missed some. It=
=20
does skip a few of the "all of their traffic is crap and abuse reports are=
=20
ignored" messages that don't *explicitly* call for wholesale country-level=
=20
blocks or de-peering.
>...and how many more times in the past 16 or so years?
I was curious, but not masochistic ;)
--=20
Hugo
hugo@slabnet.com: email, xmpp/jabber
PGP fingerprint (B178313E):
CF18 15FA 9FE4 0CD1 2319 1D77 9AB1 0FFD B178 313E
(also on textsecure & redphone)
>
>Mind you, back in say 2004, this discussion would have run to 50 or 60 ema=
ils at a bare minimum, in no time at all.
>
>--srs
>
>On 25-Dec-2015, at 6:55 AM, Stephen Satchell <list@satchell.net> wrote:
>
>>> On 12/24/2015 04:50 PM, Daniel Corbe wrote:
>>> Let=E2=80=99s just cut off the entirety of the third world instead of h=
aving
>>> a tangible mitigation plan in place.
>>
>> While you thing you are making a snarky response, it would be handy for =
end users to be able to turn on and off access to other countries retail.
--HKEL+t8MFpg/ASTE
Content-Type: application/pgp-signature; name="signature.asc"
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=we9H
-----END PGP SIGNATURE-----
--HKEL+t8MFpg/ASTE--
