"Defensive" BGP hijacking?
Bryan Fields
Bryan at bryanfields.net
Wed Sep 14 20:04:43 UTC 2016
On 9/14/16 3:09 AM, Scott Weeks wrote:
>
> Yes, RPKI. That's what I was waiting for. Now we can get to
> a real discussion
Problem is, RPKI does not work for people with legacy blocks who will not sign
a Legacy RSA. ARIN doesn't own or have any say on how we use it, and we're
sure as heck not going to sign a legally binding contract saying they do :)
I'm a bit ambivalent about BGP hijacking as a DDOS mitigation strategy.
Really there is no authority to say it's wrong. If your peers are cool with
it, and their peers are cool with it who's to say it's wrong?
--
Bryan Fields
727-409-1194 - Voice
http://bryanfields.net
More information about the NANOG
mailing list