AW: AW: Prefix-Hijack by AS7514

• Previous message (by thread): AW: AW: Prefix-Hijack by AS7514
• Next message (by thread): Prefix-Hijack by AS7514
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 17/Jul/15 11:46, Matsuzaki Yoshinobu wrote:
> Yes, I agree, and we have done that.  How about peering partners -
> which is our case this time.  Is it feasible to maintain strict
> inbound prefix filters for all peering relationships?

To be honest, not really.

Some countries I know do this for their exchange points. But
by-and-large, it is not scalable. Same goes for AS_PATH lists for peering.

One can be liberal at peering points but have max-prefix as a basic
protection mechanism (which is what we do).

Of course, IRR's are the other way to go.

Mark.

• Previous message (by thread): AW: AW: Prefix-Hijack by AS7514
• Next message (by thread): Prefix-Hijack by AS7514
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]