"Defensive" BGP hijacking?

Bryan Fields Bryan at bryanfields.net
Wed Sep 14 20:04:43 UTC 2016

On 9/14/16 3:09 AM, Scott Weeks wrote:
> Yes, RPKI.  That's what I was waiting for.  Now we can get to
> a real discussion

Problem is, RPKI does not work for people with legacy blocks who will not sign
a Legacy RSA.  ARIN doesn't own or have any say on how we use it, and we're
sure as heck not going to sign a legally binding contract saying they do :)

I'm a bit ambivalent about BGP hijacking as a DDOS mitigation strategy.
Really there is no authority to say it's wrong.  If your peers are cool with
it, and their peers are cool with it who's to say it's wrong?

Bryan Fields

727-409-1194 - Voice

More information about the NANOG mailing list