Kenyan Route Hijack

Paul Ferguson fergdawg at netzero.net
Sun Mar 16 05:30:21 UTC 2008


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- -- "Bill Stewart" <nonobvious at gmail.com> wrote:

>I've seen two popular reasons for doing it accidentally
>- Fat fingers when configuring IP addresses by hand
>- Using old routing protocols such as IGRP or RIP and autosummarizing
>routes, 
>  usually done by a customer of an ISP that doesn't bother filtering
> carefully. 
>  This doesn't give you a /24 address by accident,
>  but it lets you take two /24 subnets of a Class B or Class A
>  and turn them into an advertisement for the whole network.

Also: I have seen instances where a static route points to a next
hop that (inadvertently) may be "redistribute-static" injected into
BGP. This happens occasionally due to ad hoc configurations, back-
hole null routing, etc.

- - ferg

-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.6.3 (Build 3017)

wj8DBQFH3LBoq1pz9mNUZTMRAm8qAJwLWej/LjWQo8svLbgmOhe3kOOMCwCg7XZ/
V8/XCEkVEu0h2MAndAIpZ5g=
=jQfu
-----END PGP SIGNATURE-----


--
"Fergie", a.k.a. Paul Ferguson
 Engineering Architecture for the Internet
 fergdawg(at)netzero.net
 ferg's tech blog: http://fergdawg.blogspot.com/




More information about the NANOG mailing list