[nsp-sec] ACK 174 RE: Cogent hijacking many Israeli IPs
Shelton, Steve
sshelton at Cogentco.com
Wed Apr 1 10:26:30 EDT 2009
Hank,
Thanks, I have directed the issue to our senior engineering staff to
take a look at and correct.
Steve Shelton
Security Engineer
Cogent Communication
-----Original Message-----
From: nsp-security-bounces at puck.nether.net
[mailto:nsp-security-bounces at puck.nether.net] On Behalf Of Hank
Nussbacher
Sent: Wednesday, April 01, 2009 5:07 AM
To: nsp-security at puck.nether.net
Subject: [nsp-sec] Cogent hijacking many Israeli IPs
----------- nsp-security Confidential --------
What started out this morning as just one /32
(192.116.154.209/32) being announced by AS174 - has now turned into a
free-for-all with the following /32s being announced by AS174:
AS1680
93.173.40.204/32
93.173.134.97/32
217.132.154.96/32
93.172.104.38/32
217.132.61.27/32
85.250.53.236/32
89.0.134.96/32
89.138.97.39/32
62.0.167.181/32
AS8584
212.150.129.205/32
212.150.164.114/32
AS9116
192.116.154.209/32
195.189.140.80/32
84.94.229.73/32
The 192.116.154.209/32 was announced directly by AS174 but now all the
newer /32s are being announced by AS65334.
Are other ISPs seeing this or is it just a Cogent/Israeli thing? IAR is
showing lots of interesting announcements at Cogent:
http://cs.unm.edu/~karlinjf/IAR/subprefix.php?filter=most
Is IAR hosed or is Cogent?
Thanks,
Hank
_______________________________________________
nsp-security mailing list
nsp-security at puck.nether.net
https://puck.nether.net/mailman/listinfo/nsp-security
Please do not Forward, CC, or BCC this E-mail outside of the
nsp-security community. Confidentiality is essential for effective
Internet security counter-measures.
_______________________________________________
More information about the nsp-security
mailing list