[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [RRG] interesting presentations from RIPE
On May 7, 2008, at 3:58 AM, Jari Arkko wrote:
Have people here actually seen such "protection" as a reason for
someone
to de-aggregate their prefixes?
Indeed, lots, and some with no solid reasoning. E.g., have a
look at some of the folks that have /8s and announce /9s as
well - simply to avert prefix hijacking via another /8.
Further, consider for example, that google.com has 4 name
servers out of one /19:
danny@pork% dig google.com ns
; <<>> DiG 9.4.1-P1 <<>> google.com ns
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 47647
;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 4
;; QUESTION SECTION:
;google.com. IN NS
;; ANSWER SECTION:
google.com. 44733 IN NS ns1.google.com.
google.com. 44733 IN NS ns2.google.com.
google.com. 44733 IN NS ns3.google.com.
google.com. 44733 IN NS ns4.google.com.
;; ADDITIONAL SECTION:
ns1.google.com. 86400 IN A 216.239.32.10
ns2.google.com. 86400 IN A 216.239.34.10
ns3.google.com. 86400 IN A 216.239.36.10
ns4.google.com. 86400 IN A 216.239.38.10
;; Query time: 143 msec
;; SERVER: 10.0.9.11#53(10.0.9.11)
;; WHEN: Wed May 7 07:16:02 2008
;; MSG SIZE rcvd: 164
route-views.oregon-ix.net>sh ip bgp 216.239.32.0/19 longer-prefixes |
include 216.239
* 216.239.32.0/19 209.10.12.156 7002 0 4513
12182 7018 15169 i
* 216.239.33.0 209.10.12.156 7002 0 4513
12182 3561 15169 36385 i
* 216.239.34.0 209.10.12.156 7002 0 4513
12182 3356 15169 i
* 216.239.38.0 209.10.12.156 19702 0 4513
13789 1239 15169 i
* 216.239.44.0/23 209.10.12.156 7002 0 4513
12182 7018 15169 36384 i
* 216.239.50.0/23 209.10.12.156 7002 0 4513
12182 3561 15169 i
* 216.239.58.0/23 209.10.12.156 7002 0 4513
12182 1239 15169 i
* 216.239.60.0/23 209.10.12.156 7002 0 4513
12182 3549 15169 i
It's really ugly, but honestly, folks have very little alternative today
to be "proactive", whatever that means...
-danny
--
to unsubscribe send a message to rrg-request@psg.com with the
word 'unsubscribe' in a single line as the message text body.
archive: <http://psg.com/lists/rrg/> & ftp://psg.com/pub/lists/rrg