Newbie x Cisco IOS-XR x ROV: BCP to not harassing peer(s)

• Previous message (by thread): Newbie x Cisco IOS-XR x ROV: BCP to not harassing peer(s)
• Next message (by thread): Newbie x Cisco IOS-XR x ROV: BCP to not harassing peer(s)
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, 24 May 2022 at 11:23, Max Tulyev <maxtul at netassist.ua> wrote:

> To make a working hijack of the routed prefix (for sniffing traffic,
> DDoS or something similar), you have to announce a more specific
> prefix(es). It can be denied by RPKI.
>
> If you signed RPKI prefix is still unannounced - yes, somebody can
> hijack it by forging the origin ASN - that's quite easy.

This axiomatically assumes first come, first serve, which is obviously
not complete understanding of BGP best path algorithm.

-- 
  ++ytti

• Previous message (by thread): Newbie x Cisco IOS-XR x ROV: BCP to not harassing peer(s)
• Next message (by thread): Newbie x Cisco IOS-XR x ROV: BCP to not harassing peer(s)
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]