[76039] in North American Network Operators' Group
Re: size of the routing table is a big deal, especially in IPv6
daemon@ATHENA.MIT.EDU (Jeroen Massar)
Tue Nov 30 03:20:03 2004
From: Jeroen Massar <jeroen@unfix.org>
To: Hank Nussbacher <hank@mail.iucc.ac.il>
Cc: Tony Li <tony.li@tony.li>, NANOG <NANOG@merit.edu>
In-Reply-To: <5.1.0.14.2.20041130095338.00aa71a8@mail.iucc.ac.il>
Date: Tue, 30 Nov 2004 09:17:54 +0100
Errors-To: owner-nanog-outgoing@merit.edu
--=-0e20vdLFQrkwVgqN3H/o
Content-Type: text/plain
Content-Transfer-Encoding: quoted-printable
On Tue, 2004-11-30 at 10:01 +0200, Hank Nussbacher wrote:
> At 08:14 PM 29-11-04 -0800, Tony Li wrote:
<SNIP>
> >My preferred solution at this point is for the UN to take over managemen=
t=20
> >of the entire Internet and for them to issue a policy of one prefix per=20
> >country.
> <SNIP>
> If the customer doesn't mend their ways, then the RIR should be=20
> free to start announcing that IP block and static route it to some RIR=20
> blackhole. That would definitely get the attention of the wayward=20
> ISP/customer. Of course all this would have to be backed up by IAB+IETF =
as=20
> well, but I think we should learn to police ourselves before we ask for t=
he=20
> UN/ITU to do it for us.
Announcing a blackhole by a RIR, does that mean when someone hijacks
a /20 either IPv4 or IPv6, the RIR will blackhole all the more
specifics? :)
Would it not be better to have a *GLOBAL* "Good Prefixes" list then and
of course ones private list that adds some other prefixes that you would
like to see, combined filter on those. Depending on RADB or other
routing databases does help a bit too btw.
In other words, we will have to either extend BGP a lot or we have to
come up with a new protocol to do so. "Redistribution of Cooperative
Filtering Information" could help here of course, as that was where it
was made for.
Oh btw, some other people mentioned the 'sue' word already when a RIR
might interfere in 'ongoing business from certain people :)
Thus it comes down to one thing: money...
Greets,
Jeroen
--=-0e20vdLFQrkwVgqN3H/o
Content-Type: application/pgp-signature; name=signature.asc
Content-Description: This is a digitally signed message part
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (GNU/Linux)
Comment: Jeroen Massar / http://unfix.org/~jeroen/
iD8DBQBBrCyyKaooUjM+fCMRAnvsAKCdZj95qT6sVp7pKo+ivcmwFqsL/QCgsFFr
RbkYQKSezB8lrBe0uzh1L8k=
=rS/P
-----END PGP SIGNATURE-----
--=-0e20vdLFQrkwVgqN3H/o--
