[nsp-sec] Cogent hijacking many Israeli IPs
John Fraizer
john at op-sec.us
Wed Apr 1 17:21:07 EDT 2009
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Aaron,
Aaron Weintraub wrote:
> mpd01.sjc01#sh ip bg 64.34.183.88/32
> Load for five secs: 10%/1%; one minute: 6%; five minutes: 8%
> Time source is NTP, 15:28:19.427 UTC Wed Apr 1 2009
> BGP routing table entry for 64.34.183.88/32, version 115507113
> Paths: (1 available, best #1, table default)
> Multipath: eBGP iBGP
> Advertised to update-groups:
> 3
> 65334
> 10.255.255.255 (metric 100) from 154.54.4.59 (154.54.4.59)
> Origin IGP, localpref 150, valid, internal, best
> Community: 174:12321
> Originator: 66.28.1.253, Cluster list: 154.54.4.59
>
I note the lack of the no-export well-known community in the community
list. :(
Just making an observation. On my network, I not only tag with our
"don't leak this ever" community but with no-export, just in case.
John
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
Comment: Using GnuPG with PCLinuxOS - http://enigmail.mozdev.org
iD8DBQFJ09rD+16lRpJszIgRAgDXAJ4oXLKsXNgcVWYQ6Rej7DpUelrPUACeIXCY
0IuzvZNHFX8e5r0Nk2h3eTM=
=97rT
-----END PGP SIGNATURE-----
More information about the nsp-security
mailing list