Kenyan Route Hijack
Paul Ferguson
fergdawg at netzero.net
Sun Mar 16 05:30:21 UTC 2008
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- -- "Bill Stewart" <nonobvious at gmail.com> wrote:
>I've seen two popular reasons for doing it accidentally
>- Fat fingers when configuring IP addresses by hand
>- Using old routing protocols such as IGRP or RIP and autosummarizing
>routes,
> usually done by a customer of an ISP that doesn't bother filtering
> carefully.
> This doesn't give you a /24 address by accident,
> but it lets you take two /24 subnets of a Class B or Class A
> and turn them into an advertisement for the whole network.
Also: I have seen instances where a static route points to a next
hop that (inadvertently) may be "redistribute-static" injected into
BGP. This happens occasionally due to ad hoc configurations, back-
hole null routing, etc.
- - ferg
-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.6.3 (Build 3017)
wj8DBQFH3LBoq1pz9mNUZTMRAm8qAJwLWej/LjWQo8svLbgmOhe3kOOMCwCg7XZ/
V8/XCEkVEu0h2MAndAIpZ5g=
=jQfu
-----END PGP SIGNATURE-----
--
"Fergie", a.k.a. Paul Ferguson
Engineering Architecture for the Internet
fergdawg(at)netzero.net
ferg's tech blog: http://fergdawg.blogspot.com/
More information about the NANOG
mailing list