North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

RE: RBL-type BGP service for known rogue networks?

  • From: Karyn Ulriksen
  • Date: Thu Jul 06 18:12:20 2000

>You can play tricks with BGP to do this.  Here's how MAPS RBL does it, and
>how you can use it:
>
>http://www.mail-abuse.org/rbl/usage.html#BGP
>
>Mark

That's actually pretty clean, too.  I haven't implemented a route server on
my networks.  But I play around on Cerf Net's sometimes when I tracking down
BGP problems.  What's the consensus on using one at the Tier 2 level?

Karyn  


-----Original Message-----
From: Mark Mentovai [mailto:[email protected]]
Sent: Thursday, July 06, 2000 1:23 PM
To: [email protected]
Subject: RE: RBL-type BGP service for known rogue networks?



Karyn Ulriksen wrote:
>What I was saying is that they had already set up some type of blackhole
>system that I was lead to believe they were doing at the router level (not
>mail system level).  When they had us blackhole, we couldn't get past their
>core routers.  I know your next thougt is that they just threw us into
their
>route filter, but my understanding is that they offered a service that you
>subscribed to and the updated the filter on the fly.  Which sounds like it
>would work for what you may be looking for in the "kiddie script network"
>scenario (which I assume means either IRC crapola or DOS crapola in
general)
>or those wonderful .ru sites serving out that hardcore kiddie porn stuff
via
>cgi calls.

You can play tricks with BGP to do this.  Here's how MAPS RBL does it, and
how you can use it:

http://www.mail-abuse.org/rbl/usage.html#BGP

Mark

-- 
Do not reply directly to this e-mail address
--
Mark Mentovai
UNIX Engineer
Gillette Global Network