Spoofer Report for NANOG for Sep 2019

CAIDA Spoofer Project spoofer-info at caida.org
Tue Oct 8 17:00:06 UTC 2019 

In response to feedback from operational security communities,
CAIDA's source address validation measurement project
(https://spoofer.caida.org) is automatically generating monthly
reports of ASes originating prefixes in BGP for systems from which
we received packets with a spoofed source address.
We are publishing these reports to network and security operations
lists in order to ensure this information reaches operational
contacts in these ASes.

This report summarises tests conducted within usa, can.

Inferred improvements during Sep 2019:
   ASN Name                                           Fixed-By
 13427 SOFTCOM-INTERNET-COMMUNICATION                 2019-09-12
  3807 UMTNET-ASN                                     2019-09-16
  8047 GCI                                            2019-09-16
   225 VIRGINIA                                       2019-09-18
 16787 CHARTER-16787-DC                               2019-09-23
 22402 NEXTCO                                         2019-09-23
  2828 XO-AS15                                        2019-09-26

Further information for the inferred remediation is available at:
https://spoofer.caida.org/remedy.php

Source Address Validation issues inferred during Sep 2019:
   ASN Name                           First-Spoofed Last-Spoofed
 40065 CNSERVERS                         2016-05-01   2019-09-04
   209 CENTURYLINK-US-LEGACY-QWEST       2016-08-16   2019-09-25
  6128 CABLE-NET-1                       2016-09-03   2019-09-25
 27364 ACS-INTERNET                      2016-09-27   2019-09-19
 20412 CLARITY-TELECOM                   2016-09-30   2019-09-27
  6181 FUSE-NET                          2016-10-10   2019-09-29
 15305 SYRINGANETWORKS                   2016-10-21   2019-09-19
 14971 PINETEL                           2016-10-21   2019-09-19
 25787 ROWE-NETWORKS                     2016-10-21   2019-09-29
   174 COGENT-174                        2016-10-21   2019-09-26
 32440 LONI                              2016-11-03   2019-09-26
 12083 WOW-INTERNET                      2016-11-09   2019-09-30
 39939 RISE-CO-AS39939                   2016-11-11   2019-09-12
  1403 EBOX                              2016-11-12   2019-09-27
  2828 XO-AS15                           2016-11-21   2019-09-11
  9009 M247                              2017-01-10   2019-09-04
   701 UUNET                             2017-06-14   2019-09-30
 63296 AMARILLO-WIRELESS                 2017-09-01   2019-09-27
   546 PARSONS-PGS-1                     2017-11-20   2019-09-12
 54540 INCERO-HVVC                       2018-01-15   2019-09-16
 12222 AKAMAI                            2018-02-14   2019-09-30
  4201 ORST                              2018-04-19   2019-09-25
 11827 WSU                               2018-05-07   2019-09-26
 19016 WCG                               2018-05-19   2019-09-01
   225 VIRGINIA                          2018-06-18   2019-09-27
 33452 RW                                2018-09-19   2019-09-28
 20448 VPNTRANET-LLC                     2018-09-20   2019-09-10
 63275 RADIOWIRE                         2019-02-07   2019-09-23
 15290 ALLST-15290                       2019-04-09   2019-09-19
  8047 GCI                               2019-04-11   2019-09-24
 10745 ARIN-ASH-CHA                      2019-04-29   2019-09-30
 38235 MEKONGNET-ADC                     2019-05-09   2019-09-22
    32 STANFORD                          2019-08-21   2019-09-24
 21709 IMPLEX-NET                        2019-09-24   2019-09-24

Further information for these tests where we received spoofed
packets is available at:
https://spoofer.caida.org/recent_tests.php?country_include=usa,can&no_block=1

Please send any feedback or suggestions to spoofer-info at caida.org

More information about the NANOG mailing list