[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [RRG] interesting presentations from RIPE

To: Jari Arkko <jari.arkko@piuha.net>
Subject: Re: [RRG] interesting presentations from RIPE
From: Danny McPherson <danny@arbor.net>
Date: Wed, 7 May 2008 07:20:58 -0600
Cc: rrg <rrg@psg.com>
In-reply-to: <48217D2B.5050601@piuha.net>
References: <48217D2B.5050601@piuha.net>


On May 7, 2008, at 3:58 AM, Jari Arkko wrote:

Have people here actually seen such "protection" as a reason forsomeone
to de-aggregate their prefixes?


Indeed, lots, and some with no solid reasoning.  E.g., have a
look at some of the folks that have /8s and announce /9s as
well - simply to avert prefix hijacking via another /8.

Further, consider for example, that google.com has 4 name
servers out of one /19:

danny@pork% dig google.com ns

; <<>> DiG 9.4.1-P1 <<>> google.com ns
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 47647
;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 4

;; QUESTION SECTION:
;google.com.			IN	NS

;; ANSWER SECTION:
google.com.		44733	IN	NS	ns1.google.com.
google.com.		44733	IN	NS	ns2.google.com.
google.com.		44733	IN	NS	ns3.google.com.
google.com.		44733	IN	NS	ns4.google.com.

;; ADDITIONAL SECTION:
ns1.google.com.		86400	IN	A	216.239.32.10
ns2.google.com.		86400	IN	A	216.239.34.10
ns3.google.com.		86400	IN	A	216.239.36.10
ns4.google.com.		86400	IN	A	216.239.38.10

;; Query time: 143 msec
;; SERVER: 10.0.9.11#53(10.0.9.11)
;; WHEN: Wed May  7 07:16:02 2008
;; MSG SIZE  rcvd: 164

route-views.oregon-ix.net>sh ip bgp 216.239.32.0/19 longer-prefixes |include 216.239* 216.239.32.0/19 209.10.12.156 7002 0 451312182 7018 15169 i* 216.239.33.0 209.10.12.156 7002 0 451312182 3561 15169 36385 i* 216.239.34.0 209.10.12.156 7002 0 451312182 3356 15169 i* 216.239.38.0 209.10.12.156 19702 0 451313789 1239 15169 i* 216.239.44.0/23 209.10.12.156 7002 0 451312182 7018 15169 36384 i* 216.239.50.0/23 209.10.12.156 7002 0 451312182 3561 15169 i* 216.239.58.0/23 209.10.12.156 7002 0 451312182 1239 15169 i* 216.239.60.0/23 209.10.12.156 7002 0 451312182 3549 15169 i


It's really ugly, but honestly, folks have very little alternative today
to be "proactive", whatever that means...

-danny

--
to unsubscribe send a message to rrg-request@psg.com with the
word 'unsubscribe' in a single line as the message text body.
archive: <http://psg.com/lists/rrg/> & ftp://psg.com/pub/lists/rrg

References:
- [RRG] interesting presentations from RIPE
  - From: Jari Arkko <jari.arkko@piuha.net>

Prev by Date: Re: [RRG] interesting presentations from RIPE
Next by Date: Re: [RRG] interesting presentations from RIPE
Previous by thread: Re: [RRG] interesting presentations from RIPE
Next by thread: Re: [RRG] interesting presentations from RIPE
Index(es):
- Date
- Thread