[j-nsp] Which BOGON filter strategy you would recommend IPv4 and IPv6

Dave Bell me at geordish.org
Tue Feb 16 06:48:46 EST 2016


Hi,

I would follow RFC 6890 when creating my bogon list. I would be a bit
nervous about taking a BGP feed of bogons from a 3rd party in case
they were compromised, and valid address space was introduced into, or
invalid address space was removed from their feed.

Regards,
Dave

On 16 February 2016 at 11:37, Saku Ytti <saku at ytti.fi> wrote:
> On 16 February 2016 at 09:49, Alexander Marhold
> <alexander.marhold at gmx.at> wrote:
>
> Hey,
>
>> What do you recommend, and which way to get the lists and how often is an
>> update needed
>
> I recommend bogonising only statically bogons, which never change. No
> unallocated bogonising (calling those bogons is false anyhow), it has
> brought lot more harm than good.
>
> --
>   ++ytti
> _______________________________________________
> juniper-nsp mailing list juniper-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/juniper-nsp


More information about the juniper-nsp mailing list