[nsp-sec] 94.125.216.0/21 - ASN 47868 SUPRO-AS

Mohamed, Liban [NTK] Liban.Mohamed at sprint.com
Mon Feb 16 13:16:55 EST 2009 

Mike,

If you running Cisco gear, you might be hitting DDTS CSCdr54230, you might want to configure bgp maxas-limit NN


Thanks,

Liban Mohamed
NTAC-IP
Sprint/Nextel
www.sprint.net
liban.mohamed at sprint.com
(W) 678-291-3438
(PCS) 404-441-9701



-----Original Message-----
From: nsp-security-bounces at puck.nether.net [mailto:nsp-security-bounces at puck.nether.net] On Behalf Of Mike Lewinski
Sent: Monday, February 16, 2009 11:55 AM
To: nsp-security at puck.nether.net
Subject: Re: [nsp-sec] 94.125.216.0/21 - ASN 47868 SUPRO-AS

----------- nsp-security Confidential --------

White, Gerard wrote:

> Someone needs to pull the plug on this ASN:

And fast. Whatever they are doing is now globally resetting our BGP
session every time the route is received. Dropping the route does not
fix this either :(

09:54:01 dnvr-gw-2 sent to neighbor 66.17.140.5 3/11 (invalid or corrupt
AS path) 516 bytes 50020200 02FF1975 0D1C71B9 BAFCBAFC BA

09:54:12 lsvl-gw-1 Long AS path 209 3356 29113 47868 47868 47868 47868
47868 47868 47868 47868 47868 47868 47868 47868 47868 47868 47868 47868
47868 47868 47868 47868 47868 47868 47868 47868 47868 47868 47868 47868
47868 47868 47868 47868 47868 47868 47868 47868 47868 47868 47868 47868
47868 47868 47868 47868 47868 47868 47868 47868 47868 47868 47868 47868
47868 47868 47868 47868 47868 47868 47868 47868 47868 47868 47868 47868
47868 47868 47868 47868 47868 47868 47868 478

09:54:12 lsvl-gw-1 neighbor 63.224.65.109 Down BGP Notification sent

09:54:12 lsvl-gw-1 sent to neighbor 63.224.65.109 3/11 (invalid or
corrupt AS path) 516 bytes 50020200 02FF00D1 0D1C71B9 BAFCBAFC BA

09:54:41 dnvr-gw-2 neighbor 66.17.140.5 Up


_______________________________________________
nsp-security mailing list
nsp-security at puck.nether.net
https://puck.nether.net/mailman/listinfo/nsp-security

Please do not Forward, CC, or BCC this E-mail outside of the nsp-security
community. Confidentiality is essential for effective Internet security counter-measures.
_______________________________________________


This e-mail may contain Sprint Nextel Company proprietary information intended for the sole use of the recipient(s). Any use by others is prohibited. If you are not the intended recipient, please contact the sender and delete all copies of the message.

More information about the nsp-security mailing list