|
North American Network Operators Group Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical RE: 69/8...this sucks -- Centralizing filtering..
BRG> Date: Mon, 10 Mar 2003 11:17:55 -0800 BRG> From: Barry Raveendran Greene BRG> EBD> Announced via IGP or BGP? I hope/assume the former, BRG> EBD> but am somewhat surprised at the traffic volume... even BRG> EBD> for UUNet. BRG> I'm not surprised. My experience with defaults in ISPs is BRG> the same. The router advertising the default (or any large BRG> prefix) becomes a "packet vacuum" for any spoofed source BRG> packet returning backscatter and all those other auto-bots BRG> and worms looking for vulnerable machines. It turns the BRG> router into a sink hole. Assuming one's upstreams and peers lack 'deny le 7'. BRG> What saves many providers today is that these large route BRG> injections are spread across all their peering routers. This BRG> is like anycasting the prefix advertisements. People are BRG> discussing is putting these advertisements on anycasted Sink BRG> Holes. So instead of having the CIDR prefixes and the Null 0 BRG> lock-ups on the peering routers, you would put them on BRG> anycast Sink Hole routers. The anycast spreads the packet BRG> black hole load over several sink holes spread over the BRG> network. IMHO, this is a good thing. Eddy -- Brotsman & Dreger, Inc. - EverQuick Internet Division Bandwidth, consulting, e-commerce, hosting, and network building Phone: +1 (785) 865-5885 Lawrence and [inter]national Phone: +1 (316) 794-8922 Wichita ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Date: Mon, 21 May 2001 11:23:58 +0000 (GMT) From: A Trap <[email protected]> To: [email protected] Subject: Please ignore this portion of my mail signature. These last few lines are a trap for address-harvesting spambots. Do NOT send mail to <[email protected]>, or you are likely to be blocked.
|