[75850] in North American Network Operators' Group
Re: Best way to get of Bogon list?
daemon@ATHENA.MIT.EDU (alex@pilosoft.com)
Fri Nov 26 00:08:45 2004
Date: Fri, 26 Nov 2004 00:03:10 -0500 (EST)
From: alex@pilosoft.com
To: Jon Lewis <jlewis@lewis.org>
Cc: nanog@merit.edu
In-Reply-To: <Pine.LNX.4.58.0411252225300.13931@web1.mmaero.com>
Errors-To: owner-nanog-outgoing@merit.edu
On Thu, 25 Nov 2004, Jon Lewis wrote:
> Its not even just providers. If it were, it'd be relatively easy to
> just find and call each NOC. You're likely to have bogon issues with
> few large providers. It's mostly smaller providers and end user
> networks...some of which are quite large or high profile.
>
> Do what I did and give people a way to test connectivity from both
> affected and unaffected space and setup a 'hall of shame' page listing
> the IPs/networks that are behind broken filters.
Can someone identify the *benefits* of using bogon lists for unallocated
space? It appears that it only hurts connectivity, but does not help in
any significant way to enhance security.
Possibly, whoever are the vendors of software that recommends this
practice (and authors of security handbooks) should be show the error of
their ways?
-alex
