nanog mailing list archives
Re: Route leak in Bangladesh
From: "Justin M. Streiner" <streiner () cluebyfour org>
Date: Tue, 30 Jun 2015 10:39:56 -0400 (EDT)
On Tue, 30 Jun 2015, Matsuzaki Yoshinobu wrote:
Randy Bush <randy () psg com> wroteA friend in AS58587 confirmed that this was caused by a configuration error - it seems like related to redistribution, and they already fixed that.7007 all over again. do not redistribute bgp into igp. do not redistribute igp into bgp.I also suggested them to implement BGP community based route filtering in their outbound policy. Any other suggestions or thoughts to prevent such incidents in general?
At a minimum, AS-PATH filtering of outgoing routes to just your ASN(s) and your downstream customer ASNs. Whether this is done manually, built using AS-SETs from your route registry of choice, or through some other
automated means is another story. jms
Current thread:
- Re: Route leak in Bangladesh, (continued)
- Re: Route leak in Bangladesh Randy Bush (Jun 30)
- Re: Route leak in Bangladesh Matsuzaki Yoshinobu (Jun 30)
- Re: Route leak in Bangladesh Mark Tinka (Jun 30)
- Re: Route leak in Bangladesh Nick Hilliard (Jun 30)
- Re: Route leak in Bangladesh Job Snijders (Jun 30)
- Re: Route leak in Bangladesh Joe Abley (Jun 30)
- Re: Route leak in Bangladesh Job Snijders (Jun 30)
- Re: Route leak in Bangladesh Mark Tinka (Jun 30)
- Re: Route leak in Bangladesh Job Snijders (Jun 30)
- Re: Route leak in Bangladesh Randy Bush (Jun 30)
- Re: Route leak in Bangladesh Sandra Murphy (Jun 30)
- Re: Route leak in Bangladesh Justin M. Streiner (Jun 30)
- Re: Route leak in Bangladesh Sandra Murphy (Jun 30)
- Re: Route leak in Bangladesh Job Snijders (Jun 30)
- Re: Route leak in Bangladesh Graham Beneke (Jun 30)
- Re: Route leak in Bangladesh Justin M. Streiner (Jun 30)