Spoofer Report for NANOG for Nov 2020

Tue Dec 8 18:00:05 UTC 2020

In response to feedback from operational security communities,
CAIDA's source address validation measurement project
(https://spoofer.caida.org) is automatically generating monthly
reports of ASes originating prefixes in BGP for systems from which
we received packets with a spoofed source address.
We are publishing these reports to network and security operations
lists in order to ensure this information reaches operational
contacts in these ASes.

This report summarises tests conducted within usa, can.

Inferred improvements during Nov 2020:
 none inferred

Source Address Validation issues inferred during Nov 2020:
ASN    Name                           First-Spoofed Last-Spoofed
209    CENTURYLINK-US-LEGACY-QWEST       2016-08-16   2020-11-28
6128   CABLE-NET-1                       2016-09-03   2020-11-29
20412  CLARITY-TELECOM                   2016-09-30   2020-11-30
6181   FUSE-NET                          2016-10-10   2020-11-30
14971  PINETEL                           2016-10-21   2020-11-28
32440  LONI                              2016-11-03   2020-11-30
12083  WOW-INTERNET                      2016-11-09   2020-11-28
30036  MEDIACOM-ENTERPRISE-BUSINESS      2016-11-16   2020-11-29
20473  AS-CHOOPA                         2017-01-08   2020-11-24
25623  CISN2                             2017-03-13   2020-11-17
63296  AWBROADBAND                       2017-09-01   2020-11-24
393564 SPOKANE                           2018-06-05   2020-11-17
33452  RW                                2018-09-19   2020-11-27
20448  VPNTRANET-LLC                     2018-09-20   2020-11-30
8047   GCI                               2019-04-11   2020-11-27
7859   PAIR-NETWORKS                     2020-04-03   2020-11-29
3491   BTN-ASN                           2020-10-18   2020-11-11
13837  POINT5-MS                         2020-11-05   2020-11-05
11814  DISTRIBUTEL-AS11814               2020-11-22   2020-11-22

Further information for these tests where we received spoofed
packets is available at:
https://spoofer.caida.org/recent_tests.php?country_include=usa,can&no_block=1

Source Address Validation issues inferred during Nov 2020
using open resolver tests:
ASN    Name                           Last-Detected
16524  METTEL                            2020-11-30
15081  ASN-CROS-1                        2020-11-30
19257  SUBRIGO                           2020-11-30
395262 CENTRE-OF-EXCELLENCE-IN-NEXT-G    2020-11-30
11260  EASTLINK-HSI                      2020-11-30
53274  3DB-WIRELESS                      2020-11-27
397081 AUWIRELESS-01                     2020-11-27
53338  ITCI                              2020-11-27
47023  NOR-NET-COMM                      2020-11-27
40651  MONSTERGOVSOL                     2020-11-27
32233  PERSONA                           2020-11-26
394232 TELKEL-MTL                        2020-11-26
46375  AS-SONICTELECOM                   2020-11-26
9009   M247                              2020-11-26
46328  FOUR-U                            2020-11-26
6539   GT-BELL                           2020-11-26
16922  OUHSC-EDU                         2020-11-25
29953  MORNCOMM                          2020-11-25
396236 MIMOKC                            2020-11-25
53456  WESTRUX                           2020-11-24
11287  AS-MSEA                           2020-11-24
4565   MEGAPATH2-US                      2020-11-24
55175  CLOUDBURST                        2020-11-24
395261 AS-HCCL-7                         2020-11-24
25636  ONTL-2002                         2020-11-24
30600  AS-CMN                            2020-11-24
53850  GORILLASERVERS                    2020-11-23
14403  JJI-DEFAULT-00                    2020-11-14
577    BACOM                             2020-11-11

Further information for these tests is available at:
https://spoofer.caida.org/ornog.php?country_include=usa,can

Please send any feedback or suggestions to spoofer-info at caida.org