SlideShare a Scribd company logo

Cidr police please pull over and show us your bgp announcements

Barry Greene
Barry Greene

Is the growth of the global Internet route table all about growth? Or is there a certain amount of laziness, cluelessness, and insensitivity factored into the growth? Over the past two years we've used e-mail and the top 20 CIDR list to contact ISPs and multihomed enterprises. This volunteer effort draws attention to the impact their announcements are having on the global Internet table. We endeavor to make a difference by pointing out the problem, highlighting available resources, and offering free technical BGP assistance. In addition, over the past year we have encountered many RFC1918 and RFC1930 (private ASN) announcements leaking into the global routing tables. This presentation will show the results of our actions. We will also point out how much of the encountered problem is clue, lameness, or "just don't care." See more at: https://www.nanog.org/meetings/nanog27/agenda#sthash.omWt608q.dpuf

Technology
1 of 18
Download to read offline
1CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements CIDR Police: Please Pull Over andCIDR Police: Please Pull Over and Show Us Your BGPShow Us Your BGP AnnouncementsAnnouncements Hank Nussbacher hank@riverhead.com Barry Greene bgreene@cisco.com V2.0 NANOG 27NANOG 27 Phoenix, AZ, Feb 11, 2003Phoenix, AZ, Feb 11, 2003
2CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements PremisePremise l We have the weekly CIDR reports that use peer pressure to keep try to keep people from abusing their announcements. l Is that enough? l Are there issues with clue, workload, skills, and other knowledge factors that effect the size of the table? l Are people lazy, over worked, or just do not care? l Q. Can true peer pressure dent the growth?
3CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements TechniqueTechnique l Review the Weekly Top 20 list, analysis the change, then E-mail the contacts. l E-mails point out the observation based on the top 20 list, offers assistance, and sometimes recommends remediation. l Whitepapers, presentations, and other materials are created based on the interaction with the Top 20. l E-mails sent out on a time available.
4CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements CIDR results for 2001CIDR results for 2001 l Feb 1, 2001: 95,787 l Dec 31, 2001: 104,932 l Barry+Hank cleanup efforts: 3,884 l CIDR table ends up 30% smaller than it would have been if we hadn’t sent out emails l Total sent: 72 emails
5CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements The Bad Boys of 2001The Bad Boys of 2001 l AS701 – UUnet l AS4151 – USDA l AS2686 – AT&T EMEA l AS13999 – Megacable, Mexico l AS4755 – VSNL, India l AS9498 – Bharti, India l AS724 – DLA, (.mil) l AS577 – Bell Canada l AS376 – RISQ, Canada l AS12302 – Mobifon, Romania
6CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements The Good Boys of 2001The Good Boys of 2001 l AS1221 – Telstra (501 withdrawn) l AS4293 – C&W (361 withdrawn) l AS15412 – Flag Telecom (661 withdrawn) l AS2551 – ICG (619 withdrawn)
7CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements CIDR results for 2002CIDR results for 2002 l Jan 1, 2002: 104,852 l Dec 31, 2002: 117,450 l Barry+Hank cleanup efforts: 4,318 l CIDR table ends up 25% smaller than it would have been if we hadn’t sent out emails l Total sent: 14 emails
8CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements The Bad Boys of 2002The Bad Boys of 2002 l AS17557 – Pakistan Telecom l AS852 – Telus l AS18566 - Covad
9CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements The Good Boys of 2002The Good Boys of 2002 l AS8984 – Internet5 AB, Sweden (1069 withdrawn) l AS209 – Qwest (1276 withdrawn) l AS2548 – Allegiance Internet (1282 withdrawn)
10CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements 20032003 l 23 emails already sent – starting Dec 22 l Only 7 replied l Only one has reduced their announcements: AS1580 – HQ 5th Signal Command l Reduced announcements by 302 prefixes!
11CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements CIDR growthCIDR growth 95000 100000 105000 110000 115000 120000 125000 130000 2001 2002 2003 CIDR CIDR without Barry and Hank 7%
12CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements Total BGP Table GrowthTotal BGP Table Growth Could growth slowdown be attributed to our emails?
13CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements LeakingsLeakings of 2002of 2002 l “Friends” ISPs l Janice/Chandler or Phoebe l 12 IP prefixes l Some RFC1918 l Some unregistered l 22 ASNs l Mostly RFC1930 l 5 interesting cases
14CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements Leaky cases #1 & #2Leaky cases #1 & #2 l AS5050 leaking AS64511 l “remove-private-as” not working since AS64511 is not a private ASN l Private ASNs start at AS64512! l AS1221 leaking AS65000 l Cisco IOS bugs CSCdy59660 & CSCdj19299 l “remove-private-as” not working if as-path is more than 1 and created by as-path prepend
15CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements Leaky cases #3 & #4Leaky cases #3 & #4 l AS701 leaking AS5757 l Not registered in ARIN l Lost allocation in 1995 l Proof sitting on 8mm tape l ARIN’s stuck L l AS1880 leaking AS1877 l Peter Lothberg’s ASN l Paperwork lost in 1994 in RIPE l RIPE willing to re-register it
16CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements Leaky case #5Leaky case #5 l IP range: 192.83.0.0 – 192.83.100.255 l Allocated to Sonera (Finland) in 1992 l Sonera claims all of it l ARIN has records for only parts of this block l Sonera claims paperwork lost by Internic l Announced by AS5515 l ARIN involved
17CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements US Military UnilateralismUS Military Unilateralism –– AS568AS568 l Announcing prefixes not listed anywhere: l 132.0.0.0/10 l 137.0.0.0/13 l 158.0.0.0/13 l 192.153.136.0/21 l 192.172.0.0/19 l No record in ARIN or whois.nic.mil for the first block out of the aggregate (i.e. 132.0.0.0/16) l No answer from anyone at AS 568.
18CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements What now?What now? l We will continue to send emails to CIDR leakers and non-aggregators l We ask that everyone do their share by checking their BGP setups l Will continue to develop materials to help communicate operational clue. l Open for more volunteers to invest their time. Contact Hank or Barry.

Recommended

Approaches to application request throttling
Approaches to application request throttlingApproaches to application request throttling
Approaches to application request throttlingMaarten Balliauw
 
Creating Domain Specific Languages in Python
Creating Domain Specific Languages in PythonCreating Domain Specific Languages in Python
Creating Domain Specific Languages in PythonSiddhi
 
PostgreSQL Hem Güçlü Hem Güzel!
PostgreSQL Hem Güçlü Hem Güzel!PostgreSQL Hem Güçlü Hem Güzel!
PostgreSQL Hem Güçlü Hem Güzel!Gulcin Yildirim Jelinek
 
PostgreSQL DBA Neler Yapar?
PostgreSQL DBA Neler Yapar?PostgreSQL DBA Neler Yapar?
PostgreSQL DBA Neler Yapar?Gulcin Yildirim Jelinek
 
OpenDNS Enterprise Web Content Filtering
OpenDNS Enterprise Web Content FilteringOpenDNS Enterprise Web Content Filtering
OpenDNS Enterprise Web Content FilteringOpenDNS
 
DNS for Developers - NDC Oslo 2016
DNS for Developers - NDC Oslo 2016DNS for Developers - NDC Oslo 2016
DNS for Developers - NDC Oslo 2016Maarten Balliauw
 
Managing Postgres with Ansible
Managing Postgres with AnsibleManaging Postgres with Ansible
Managing Postgres with AnsibleGulcin Yildirim Jelinek
 
Remediating Violated Customers
Remediating Violated CustomersRemediating Violated Customers
Remediating Violated CustomersBarry Greene
 

Recommended

Approaches to application request throttling
Approaches to application request throttlingApproaches to application request throttling
Approaches to application request throttlingMaarten Balliauw
 
Creating Domain Specific Languages in Python
Creating Domain Specific Languages in PythonCreating Domain Specific Languages in Python
Creating Domain Specific Languages in PythonSiddhi
 
PostgreSQL Hem Güçlü Hem Güzel!
PostgreSQL Hem Güçlü Hem Güzel!PostgreSQL Hem Güçlü Hem Güzel!
PostgreSQL Hem Güçlü Hem Güzel!Gulcin Yildirim Jelinek
 
PostgreSQL DBA Neler Yapar?
PostgreSQL DBA Neler Yapar?PostgreSQL DBA Neler Yapar?
PostgreSQL DBA Neler Yapar?Gulcin Yildirim Jelinek
 
OpenDNS Enterprise Web Content Filtering
OpenDNS Enterprise Web Content FilteringOpenDNS Enterprise Web Content Filtering
OpenDNS Enterprise Web Content FilteringOpenDNS
 
DNS for Developers - NDC Oslo 2016
DNS for Developers - NDC Oslo 2016DNS for Developers - NDC Oslo 2016
DNS for Developers - NDC Oslo 2016Maarten Balliauw
 
Managing Postgres with Ansible
Managing Postgres with AnsibleManaging Postgres with Ansible
Managing Postgres with AnsibleGulcin Yildirim Jelinek
 
Remediating Violated Customers
Remediating Violated CustomersRemediating Violated Customers
Remediating Violated CustomersBarry Greene
 
Indusrty Strategy For Action
Indusrty Strategy For ActionIndusrty Strategy For Action
Indusrty Strategy For ActionBarry Greene
 
Are you ready for the next attack? reviewing the sp security checklist (apnic...
Are you ready for the next attack? reviewing the sp security checklist (apnic...Are you ready for the next attack? reviewing the sp security checklist (apnic...
Are you ready for the next attack? reviewing the sp security checklist (apnic...Barry Greene
 
TTÜ Geeky Weekly
TTÜ Geeky WeeklyTTÜ Geeky Weekly
TTÜ Geeky WeeklyGulcin Yildirim Jelinek
 
DNS and Troubleshooting DNS issues in Linux
DNS and Troubleshooting DNS issues in LinuxDNS and Troubleshooting DNS issues in Linux
DNS and Troubleshooting DNS issues in LinuxKonkona Basu
 
A Designated ENUM DNS Zone Provisioning Architecture
A Designated ENUM DNS Zone Provisioning ArchitectureA Designated ENUM DNS Zone Provisioning Architecture
A Designated ENUM DNS Zone Provisioning Architectureenumplatform
 
Network security
Network securityNetwork security
Network securityسودان وب لأمن المعلومات
 
150928 - Verisign Public DNS
150928 - Verisign Public DNS150928 - Verisign Public DNS
150928 - Verisign Public DNSMichael Kaczmarek
 
IDNOG - 2014
IDNOG - 2014IDNOG - 2014
IDNOG - 2014Barry Greene
 
BIND’s New Security Feature: DNSRPZ - the "DNS Firewall"
BIND’s New Security Feature: DNSRPZ - the "DNS Firewall"BIND’s New Security Feature: DNSRPZ - the "DNS Firewall"
BIND’s New Security Feature: DNSRPZ - the "DNS Firewall"Barry Greene
 
Hands-on getdns Tutorial
Hands-on getdns TutorialHands-on getdns Tutorial
Hands-on getdns TutorialShumon Huque
 
IoT Security in Action - Boston Sept 2015
IoT Security in Action - Boston Sept 2015IoT Security in Action - Boston Sept 2015
IoT Security in Action - Boston Sept 2015Eurotech
 
Query-name Minimization and Authoritative Server Behavior
Query-name Minimization and Authoritative Server BehaviorQuery-name Minimization and Authoritative Server Behavior
Query-name Minimization and Authoritative Server BehaviorShumon Huque
 
I Have the Power(View)
I Have the Power(View)I Have the Power(View)
I Have the Power(View)Will Schroeder
 
Introduction to DNS
Introduction to DNSIntroduction to DNS
Introduction to DNSJonathan Oxer
 
DANE and Application Uses of DNSSEC
DANE and Application Uses of DNSSECDANE and Application Uses of DNSSEC
DANE and Application Uses of DNSSECShumon Huque
 
Dev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebDev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebUiPathCommunity
 
Gen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfGen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfAddepto
 
CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):comworks
 
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024BookNet Canada
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsSergiu Bodiu
 
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc
 
SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024Lorenzo Miniero
 

More Related Content

Viewers also liked

Indusrty Strategy For Action
Indusrty Strategy For ActionIndusrty Strategy For Action
Indusrty Strategy For ActionBarry Greene
 
Are you ready for the next attack? reviewing the sp security checklist (apnic...
Are you ready for the next attack? reviewing the sp security checklist (apnic...Are you ready for the next attack? reviewing the sp security checklist (apnic...
Are you ready for the next attack? reviewing the sp security checklist (apnic...Barry Greene
 
DNS and Troubleshooting DNS issues in Linux
DNS and Troubleshooting DNS issues in LinuxDNS and Troubleshooting DNS issues in Linux
DNS and Troubleshooting DNS issues in LinuxKonkona Basu
 
A Designated ENUM DNS Zone Provisioning Architecture
A Designated ENUM DNS Zone Provisioning ArchitectureA Designated ENUM DNS Zone Provisioning Architecture
A Designated ENUM DNS Zone Provisioning Architectureenumplatform
 
150928 - Verisign Public DNS
150928 - Verisign Public DNS150928 - Verisign Public DNS
150928 - Verisign Public DNSMichael Kaczmarek
 
BIND’s New Security Feature: DNSRPZ - the "DNS Firewall"
BIND’s New Security Feature: DNSRPZ - the "DNS Firewall"BIND’s New Security Feature: DNSRPZ - the "DNS Firewall"
BIND’s New Security Feature: DNSRPZ - the "DNS Firewall"Barry Greene
 
Hands-on getdns Tutorial
Hands-on getdns TutorialHands-on getdns Tutorial
Hands-on getdns TutorialShumon Huque
 
IoT Security in Action - Boston Sept 2015
IoT Security in Action - Boston Sept 2015IoT Security in Action - Boston Sept 2015
IoT Security in Action - Boston Sept 2015Eurotech
 
Query-name Minimization and Authoritative Server Behavior
Query-name Minimization and Authoritative Server BehaviorQuery-name Minimization and Authoritative Server Behavior
Query-name Minimization and Authoritative Server BehaviorShumon Huque
 
I Have the Power(View)
I Have the Power(View)I Have the Power(View)
I Have the Power(View)Will Schroeder
 
DANE and Application Uses of DNSSEC
DANE and Application Uses of DNSSECDANE and Application Uses of DNSSEC
DANE and Application Uses of DNSSECShumon Huque
 

Viewers also liked (15)

Indusrty Strategy For Action
Indusrty Strategy For ActionIndusrty Strategy For Action
Indusrty Strategy For Action
 
Are you ready for the next attack? reviewing the sp security checklist (apnic...
Are you ready for the next attack? reviewing the sp security checklist (apnic...Are you ready for the next attack? reviewing the sp security checklist (apnic...
Are you ready for the next attack? reviewing the sp security checklist (apnic...
 
TTÜ Geeky Weekly
TTÜ Geeky WeeklyTTÜ Geeky Weekly
TTÜ Geeky Weekly
 
DNS and Troubleshooting DNS issues in Linux
DNS and Troubleshooting DNS issues in LinuxDNS and Troubleshooting DNS issues in Linux
DNS and Troubleshooting DNS issues in Linux
 
A Designated ENUM DNS Zone Provisioning Architecture
A Designated ENUM DNS Zone Provisioning ArchitectureA Designated ENUM DNS Zone Provisioning Architecture
A Designated ENUM DNS Zone Provisioning Architecture
 
Network security
Network securityNetwork security
Network security
 
150928 - Verisign Public DNS
150928 - Verisign Public DNS150928 - Verisign Public DNS
150928 - Verisign Public DNS
 
IDNOG - 2014
IDNOG - 2014IDNOG - 2014
IDNOG - 2014
 
BIND’s New Security Feature: DNSRPZ - the "DNS Firewall"
BIND’s New Security Feature: DNSRPZ - the "DNS Firewall"BIND’s New Security Feature: DNSRPZ - the "DNS Firewall"
BIND’s New Security Feature: DNSRPZ - the "DNS Firewall"
 
Hands-on getdns Tutorial
Hands-on getdns TutorialHands-on getdns Tutorial
Hands-on getdns Tutorial
 
IoT Security in Action - Boston Sept 2015
IoT Security in Action - Boston Sept 2015IoT Security in Action - Boston Sept 2015
IoT Security in Action - Boston Sept 2015
 
Query-name Minimization and Authoritative Server Behavior
Query-name Minimization and Authoritative Server BehaviorQuery-name Minimization and Authoritative Server Behavior
Query-name Minimization and Authoritative Server Behavior
 
I Have the Power(View)
I Have the Power(View)I Have the Power(View)
I Have the Power(View)
 
Introduction to DNS
Introduction to DNSIntroduction to DNS
Introduction to DNS
 
DANE and Application Uses of DNSSEC
DANE and Application Uses of DNSSECDANE and Application Uses of DNSSEC
DANE and Application Uses of DNSSEC
 

Recently uploaded

Dev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebDev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebUiPathCommunity
 
Gen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfGen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfAddepto
 
CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):comworks
 
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024BookNet Canada
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsSergiu Bodiu
 
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc
 
SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024Lorenzo Miniero
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Commit University
 
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks..."LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...Fwdays
 
Story boards and shot lists for my a level piece
Story boards and shot lists for my a level pieceStory boards and shot lists for my a level piece
Story boards and shot lists for my a level piececharlottematthew16
 
How to write a Business Continuity Plan
How to write a Business Continuity PlanHow to write a Business Continuity Plan
How to write a Business Continuity PlanDatabarracks
 
DSPy a system for AI to Write Prompts and Do Fine Tuning
DSPy a system for AI to Write Prompts and Do Fine TuningDSPy a system for AI to Write Prompts and Do Fine Tuning
DSPy a system for AI to Write Prompts and Do Fine TuningLars Bell
 
Vertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsVertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsMiki Katsuragi
 
Unraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfUnraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfAlex Barbosa Coqueiro
 
How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.Curtis Poe
 
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxMerck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxLoriGlavin3
 
Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024Enterprise Knowledge
 
Search Engine Optimization SEO PDF for 2024.pdf
Search Engine Optimization SEO PDF for 2024.pdfSearch Engine Optimization SEO PDF for 2024.pdf
Search Engine Optimization SEO PDF for 2024.pdfRankYa
 
Artificial intelligence in cctv survelliance.pptx
Artificial intelligence in cctv survelliance.pptxArtificial intelligence in cctv survelliance.pptx
Artificial intelligence in cctv survelliance.pptxhariprasad279825
 

Recently uploaded (20)

Dev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebDev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio Web
 
Gen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfGen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdf
 
CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):
 
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platforms
 
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
 
SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!
 
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks..."LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
 
Story boards and shot lists for my a level piece
Story boards and shot lists for my a level pieceStory boards and shot lists for my a level piece
Story boards and shot lists for my a level piece
 
How to write a Business Continuity Plan
How to write a Business Continuity PlanHow to write a Business Continuity Plan
How to write a Business Continuity Plan
 
DSPy a system for AI to Write Prompts and Do Fine Tuning
DSPy a system for AI to Write Prompts and Do Fine TuningDSPy a system for AI to Write Prompts and Do Fine Tuning
DSPy a system for AI to Write Prompts and Do Fine Tuning
 
Vertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsVertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering Tips
 
Unraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfUnraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdf
 
How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.
 
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxMerck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
 
Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024
 
Search Engine Optimization SEO PDF for 2024.pdf
Search Engine Optimization SEO PDF for 2024.pdfSearch Engine Optimization SEO PDF for 2024.pdf
Search Engine Optimization SEO PDF for 2024.pdf
 
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptxE-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
 
Artificial intelligence in cctv survelliance.pptx
Artificial intelligence in cctv survelliance.pptxArtificial intelligence in cctv survelliance.pptx
Artificial intelligence in cctv survelliance.pptx
 

Cidr police please pull over and show us your bgp announcements

  • 1. 1CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements CIDR Police: Please Pull Over andCIDR Police: Please Pull Over and Show Us Your BGPShow Us Your BGP AnnouncementsAnnouncements Hank Nussbacher hank@riverhead.com Barry Greene bgreene@cisco.com V2.0 NANOG 27NANOG 27 Phoenix, AZ, Feb 11, 2003Phoenix, AZ, Feb 11, 2003
  • 2. 2CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements PremisePremise l We have the weekly CIDR reports that use peer pressure to keep try to keep people from abusing their announcements. l Is that enough? l Are there issues with clue, workload, skills, and other knowledge factors that effect the size of the table? l Are people lazy, over worked, or just do not care? l Q. Can true peer pressure dent the growth?
  • 3. 3CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements TechniqueTechnique l Review the Weekly Top 20 list, analysis the change, then E-mail the contacts. l E-mails point out the observation based on the top 20 list, offers assistance, and sometimes recommends remediation. l Whitepapers, presentations, and other materials are created based on the interaction with the Top 20. l E-mails sent out on a time available.
  • 4. 4CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements CIDR results for 2001CIDR results for 2001 l Feb 1, 2001: 95,787 l Dec 31, 2001: 104,932 l Barry+Hank cleanup efforts: 3,884 l CIDR table ends up 30% smaller than it would have been if we hadn’t sent out emails l Total sent: 72 emails
  • 5. 5CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements The Bad Boys of 2001The Bad Boys of 2001 l AS701 – UUnet l AS4151 – USDA l AS2686 – AT&T EMEA l AS13999 – Megacable, Mexico l AS4755 – VSNL, India l AS9498 – Bharti, India l AS724 – DLA, (.mil) l AS577 – Bell Canada l AS376 – RISQ, Canada l AS12302 – Mobifon, Romania
  • 6. 6CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements The Good Boys of 2001The Good Boys of 2001 l AS1221 – Telstra (501 withdrawn) l AS4293 – C&W (361 withdrawn) l AS15412 – Flag Telecom (661 withdrawn) l AS2551 – ICG (619 withdrawn)
  • 7. 7CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements CIDR results for 2002CIDR results for 2002 l Jan 1, 2002: 104,852 l Dec 31, 2002: 117,450 l Barry+Hank cleanup efforts: 4,318 l CIDR table ends up 25% smaller than it would have been if we hadn’t sent out emails l Total sent: 14 emails
  • 8. 8CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements The Bad Boys of 2002The Bad Boys of 2002 l AS17557 – Pakistan Telecom l AS852 – Telus l AS18566 - Covad
  • 9. 9CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements The Good Boys of 2002The Good Boys of 2002 l AS8984 – Internet5 AB, Sweden (1069 withdrawn) l AS209 – Qwest (1276 withdrawn) l AS2548 – Allegiance Internet (1282 withdrawn)
  • 10. 10CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements 20032003 l 23 emails already sent – starting Dec 22 l Only 7 replied l Only one has reduced their announcements: AS1580 – HQ 5th Signal Command l Reduced announcements by 302 prefixes!
  • 11. 11CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements CIDR growthCIDR growth 95000 100000 105000 110000 115000 120000 125000 130000 2001 2002 2003 CIDR CIDR without Barry and Hank 7%
  • 12. 12CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements Total BGP Table GrowthTotal BGP Table Growth Could growth slowdown be attributed to our emails?
  • 13. 13CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements LeakingsLeakings of 2002of 2002 l “Friends” ISPs l Janice/Chandler or Phoebe l 12 IP prefixes l Some RFC1918 l Some unregistered l 22 ASNs l Mostly RFC1930 l 5 interesting cases
  • 14. 14CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements Leaky cases #1 & #2Leaky cases #1 & #2 l AS5050 leaking AS64511 l “remove-private-as” not working since AS64511 is not a private ASN l Private ASNs start at AS64512! l AS1221 leaking AS65000 l Cisco IOS bugs CSCdy59660 & CSCdj19299 l “remove-private-as” not working if as-path is more than 1 and created by as-path prepend
  • 15. 15CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements Leaky cases #3 & #4Leaky cases #3 & #4 l AS701 leaking AS5757 l Not registered in ARIN l Lost allocation in 1995 l Proof sitting on 8mm tape l ARIN’s stuck L l AS1880 leaking AS1877 l Peter Lothberg’s ASN l Paperwork lost in 1994 in RIPE l RIPE willing to re-register it
  • 16. 16CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements Leaky case #5Leaky case #5 l IP range: 192.83.0.0 – 192.83.100.255 l Allocated to Sonera (Finland) in 1992 l Sonera claims all of it l ARIN has records for only parts of this block l Sonera claims paperwork lost by Internic l Announced by AS5515 l ARIN involved
  • 17. 17CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements US Military UnilateralismUS Military Unilateralism –– AS568AS568 l Announcing prefixes not listed anywhere: l 132.0.0.0/10 l 137.0.0.0/13 l 158.0.0.0/13 l 192.153.136.0/21 l 192.172.0.0/19 l No record in ARIN or whois.nic.mil for the first block out of the aggregate (i.e. 132.0.0.0/16) l No answer from anyone at AS 568.
  • 18. 18CIDR Police: Pull Over and Show Us Your BGP AnnouncementsCIDR Police: Pull Over and Show Us Your BGP Announcements What now?What now? l We will continue to send emails to CIDR leakers and non-aggregators l We ask that everyone do their share by checking their BGP setups l Will continue to develop materials to help communicate operational clue. l Open for more volunteers to invest their time. Contact Hank or Barry.