BGP prefix filter list

Dan White dwhite at olp.net
Wed May 15 13:36:55 UTC 2019


We recently filtered out >=/24 prefixes since we're impacted by 768k day.
I'm attaching our lightly researched list of exceptions. I'm interested in
what others' operational experience is with filtering in this way.

Filtering /24s cut our table down to around 315K.

On 05/15/19 13:43 +0200, Baldur Norddahl wrote:
>Hello
>
>This morning we apparently had a problem with our routers not handling 
>the full table. So I am looking into culling the least useful prefixes 
>from our tables. I can hardly be the first one to take on that kind of 
>project, and I am wondering if there is a ready made prefix list or 
>similar?
>
>Or maybe we have a list of worst offenders? I am looking for ASN that 
>announces a lot of unnecessary /24 prefixes and which happens to be 
>far away from us? I would filter those to something like /20 and then 
>just have a default route to catch all.
>
>Thanks,
>
>Baldur
>

-- 
Dan White
BTC Broadband
Network Admin Lead
Ph  918.366.0248 (direct)   main: (918)366-8000
Fax 918.366.6610            email: dwhite at mybtc.com
http://www.btcbroadband.com
-------------- next part --------------
ip prefix-list root-dns seq 1 permit 198.41.0.0/24
ip prefix-list root-dns seq 2 permit 199.9.14.0/24
ip prefix-list root-dns seq 3 permit 192.33.4.0/24
ip prefix-list root-dns seq 4 permit 199.7.91.0/24
ip prefix-list root-dns seq 5 permit 192.203.230.0/24
ip prefix-list root-dns seq 6 permit 192.5.5.0/24
ip prefix-list root-dns seq 7 permit 192.112.36.0/24
ip prefix-list root-dns seq 8 permit 198.97.190.0/24
ip prefix-list root-dns seq 9 permit 192.36.148.0/24
ip prefix-list root-dns seq 10 permit 192.58.128.0/24
ip prefix-list root-dns seq 11 permit 193.0.14.0/24
ip prefix-list root-dns seq 12 permit 199.7.83.0/24
ip prefix-list root-dns seq 13 permit 202.12.27.0/24

ip prefix-list arpa-dns seq 1 permit 199.180.182.0/24
ip prefix-list arpa-dns seq 2 permit 199.253.183.0/24
ip prefix-list arpa-dns seq 3 permit 196.216.169.0/24
ip prefix-list arpa-dns seq 4 permit 203.119.86.0/24
ip prefix-list arpa-dns seq 5 permit 193.0.9.0/24

ip prefix-list gtld-dns seq 1 permit 192.5.6.0/24
ip prefix-list gtld-dns seq 2 permit 192.33.14.0/24
ip prefix-list gtld-dns seq 3 permit 192.26.92.0/24
ip prefix-list gtld-dns seq 4 permit 192.31.80.0/24
ip prefix-list gtld-dns seq 5 permit 192.12.94.0/24
ip prefix-list gtld-dns seq 6 permit 192.35.51.0/24
ip prefix-list gtld-dns seq 7 permit 192.42.93.0/24
ip prefix-list gtld-dns seq 8 permit 192.54.112.0/24
ip prefix-list gtld-dns seq 9 permit 192.43.172.0/24
ip prefix-list gtld-dns seq 10 permit 192.48.79.0/24
ip prefix-list gtld-dns seq 11 permit 192.52.178.0/24
ip prefix-list gtld-dns seq 12 permit 192.41.162.0/24
ip prefix-list gtld-dns seq 13 permit 192.55.83.0/24

ip prefix-list common-public-dns seq 1 permit 8.8.8.0/24
ip prefix-list common-public-dns seq 2 permit 8.8.4.0/24
ip prefix-list common-public-dns seq 3 permit 199.85.126.0/24
ip prefix-list common-public-dns seq 4 permit 199.85.127.0/24
ip prefix-list common-public-dns seq 5 permit 208.67.222.0/24
ip prefix-list common-public-dns seq 6 permit 208.67.220.0/24
ip prefix-list common-public-dns seq 7 permit 8.26.56.0/24
ip prefix-list common-public-dns seq 8 permit 8.20.247.0/24
ip prefix-list common-public-dns seq 9 permit 64.6.64.0/24
ip prefix-list common-public-dns seq 10 permit 64.6.65.0/24
ip prefix-list common-public-dns seq 11 permit 1.1.1.0/24
ip prefix-list common-public-dns seq 12 permit 1.0.0.0/24

! ARIN
ip prefix-list critical-infrastructure seq 1 permit 149.112.112.0/24
ip prefix-list critical-infrastructure seq 2 permit 149.112.149.0/24
ip prefix-list critical-infrastructure seq 6 permit 192.30.45.0/24
ip prefix-list critical-infrastructure seq 9 permit 192.34.238.0/24
ip prefix-list critical-infrastructure seq 13 permit 192.42.173.0/24
ip prefix-list critical-infrastructure seq 14 permit 192.42.178.0/24
ip prefix-list critical-infrastructure seq 21 permit 192.68.130.0/24
ip prefix-list critical-infrastructure seq 22 permit 192.81.185.0/24
ip prefix-list critical-infrastructure seq 23 permit 192.82.133.0/24
ip prefix-list critical-infrastructure seq 24 permit 192.82.138.0/24
ip prefix-list critical-infrastructure seq 25 permit 192.149.62.0/24
ip prefix-list critical-infrastructure seq 26 permit 192.149.63.0/24
ip prefix-list critical-infrastructure seq 27 permit 192.149.64.0/24
ip prefix-list critical-infrastructure seq 28 permit 192.149.65.0/24
ip prefix-list critical-infrastructure seq 29 permit 192.149.66.0/24
ip prefix-list critical-infrastructure seq 30 permit 192.158.252.0/24
ip prefix-list critical-infrastructure seq 31 permit 192.228.21.0/24
ip prefix-list critical-infrastructure seq 32 permit 192.228.79.0/24
ip prefix-list critical-infrastructure seq 33 permit 192.228.92.0/24
ip prefix-list critical-infrastructure seq 34 permit 199.4.137.0/24
ip prefix-list critical-infrastructure seq 35 permit 199.4.138.0/24
ip prefix-list critical-infrastructure seq 36 permit 199.4.144.0/24
ip prefix-list critical-infrastructure seq 37 permit 199.5.26.0/24
ip prefix-list critical-infrastructure seq 38 permit 199.6.14.0/24
ip prefix-list critical-infrastructure seq 39 permit 199.7.64.0/24
ip prefix-list critical-infrastructure seq 40 permit 199.7.65.0/24
ip prefix-list critical-infrastructure seq 41 permit 199.7.71.0/24
ip prefix-list critical-infrastructure seq 42 permit 199.7.76.0/24
ip prefix-list critical-infrastructure seq 43 permit 199.7.77.0/24
ip prefix-list critical-infrastructure seq 44 permit 199.7.80.0/24
ip prefix-list critical-infrastructure seq 45 permit 199.7.81.0/24
ip prefix-list critical-infrastructure seq 47 permit 199.7.86.0/24
ip prefix-list critical-infrastructure seq 48 permit 199.7.87.0/24
ip prefix-list critical-infrastructure seq 49 permit 199.7.90.0/24
ip prefix-list critical-infrastructure seq 51 permit 199.7.92.0/24
ip prefix-list critical-infrastructure seq 52 permit 199.10.66.0/24
ip prefix-list critical-infrastructure seq 53 permit 199.15.88.0/24
ip prefix-list critical-infrastructure seq 54 permit 199.43.0.0/24
ip prefix-list critical-infrastructure seq 55 permit 199.71.0.0/24
ip prefix-list critical-infrastructure seq 56 permit 199.84.0.0/24
ip prefix-list critical-infrastructure seq 57 permit 199.115.158.0/24
ip prefix-list critical-infrastructure seq 58 permit 199.212.0.0/24
ip prefix-list critical-infrastructure seq 59 permit 199.233.56.0/24
ip prefix-list critical-infrastructure seq 60 permit 199.249.255.0/24
ip prefix-list critical-infrastructure seq 61 permit 199.253.62.0/24
ip prefix-list critical-infrastructure seq 62 permit 199.253.63.0/24
ip prefix-list critical-infrastructure seq 63 permit 199.253.181.0/24
ip prefix-list critical-infrastructure seq 64 permit 199.253.249.0/24
ip prefix-list critical-infrastructure seq 65 permit 199.254.27.0/24


More information about the NANOG mailing list