was bogon filters, now "Brief Segue on 1918"

• From: Darden, Patrick S.
• Date: Wed Aug 06 09:25:43 2008

• List-archive: <http://mailman.nanog.org/pipermail/nanog>
• List-help: <mailto:[email protected]?subject=help>
• List-id: North American Network Operators Group <nanog.nanog.org>
• List-post: <mailto:[email protected]>
• List-subscribe: <http://mailman.nanog.org/mailman/listinfo/nanog>, <mailto:[email protected]?subject=subscribe>
• List-unsubscribe: <http://mailman.nanog.org/mailman/listinfo/nanog>, <mailto:[email protected]?subject=unsubscribe>

Was looking over 1918 again, and for the record I have only run into one
network that follows:

   "If two (or more) organizations follow the address allocation
   specified in this document and then later wish to establish IP
   connectivity with each other, then there is a risk that address
   uniqueness would be violated.  To minimize the risk it is strongly
   recommended that an organization using private IP addresses choose
   *randomly* from the reserved pool of private addresses, when
allocating
   sub-blocks for its internal allocation."

I added the asterisks.

Most private networks start at the bottom and work up: 192.168.0.X++,
10.0.0.X++, etc.  This makes
any internetworking (ptp, vpn, etc.) ridiculously difficult.  I've seen
a lot of hack jobs
using NAT to get around this.  Ugly.

--Patrick Darden


-----Original Message-----
From: Darden, Patrick S. 
Sent: Wednesday, August 06, 2008 9:19 AM
To: 'Leo Bicknell'; [email protected]
Subject: RE: Is it time to abandon bogon prefix filters?



Yes.  1918 (10/8, 172.16/12, 192.168/16), D, E, reflective (outgoing
mirroring), and as always individual discretion.

--Patrick Darden
 

-----Original Message-----
From: Leo Bicknell [mailto:[email protected]]
Sent: Wednesday, August 06, 2008 9:10 AM
To: [email protected]
Subject: Is it time to abandon bogon prefix filters?



"Bogon" filters made a lot of sense when most of the Internet was
bogons.  Back when 5% of the IP space was allocated blocking the
other 95% was an extremely useful endevour.  However, by the same
logic as we get to 80-90% used, blocking the 20-10% unused is
reaching diminishing returns; and at the same time the rate in which
new blocks are allocated continues to increase causing more and
more frequent updates.

Have bogon filters outlived their use?  Is it time to recommend people
go to a simpler bogon filter (e.g. no 1918, Class D, Class E) that
doesn't need to be updated as frequently?

-- 
       Leo Bicknell - [email protected] - CCIE 3440
        PGP keys at http://www.ufp.org/~bicknell/

• Follow-Ups:
  • Re: was bogon filters, now "Brief Segue on 1918" Joel Jaeggli
  • Re: was bogon filters, now "Brief Segue on 1918" Matthew Kaufman
  • RE: was bogon filters, now "Brief Segue on 1918" Blake Pfankuch

• References:
  • RE: Is it time to abandon bogon prefix filters? Darden, Patrick S.

• Prev by Date: RE: Is it time to abandon bogon prefix filters?
• Next by Date: RE: was bogon filters, now "Brief Segue on 1918"
• Date Index
• Thread Index
• Author Index
• Historical