[87804] in North American Network Operators' Group
Re: do bogon filters still help?
daemon@ATHENA.MIT.EDU (Rob Thomas)
Wed Jan 11 13:17:06 2006
Date: Wed, 11 Jan 2006 12:16:30 -0600 (CST)
From: Rob Thomas <robt@cymru.com>
To: "Steven M. Bellovin" <smb@cs.columbia.edu>
Cc: nanog@nanog.org
In-Reply-To: <20060111180351.34BCE3C0205@berkshire.machshav.com>
Errors-To: owner-nanog@merit.edu
Hi, Steve.
] So -- I'd like people to re-examine the question. Does anyone have more
] recent data on the frequency of bogons as a percentage of attack
] packets? What would that number look like if you filtered just the
] obvious -- the ranges given above, plus the RFC 1918 prefixes? Are
] your defenses against non-spoofed attacks really helped by the extra
] filtering?
Great question, and we're eager to hear the results as well. Our
study is well past its prime, to be sure.
Thanks,
Rob.
--
Rob Thomas
Team Cymru
http://www.cymru.com/
ASSERT(coffee != empty);
