Ignorance is what you have to fight against though. I know folks who have bad BGP setups and it works for them. When their bad configuration becomes my issue and either loses me revenue or causes my support costs to go it becomes a priority. For example, I can’t get to my cloud hosted accounting, but more importantly a couple of clients who need to pay can’t either. If you are participating in BGP you should either have someone to call or you should know it yourself. If your own house is a mess thats fine, but if your misconfigure car gets on the road and crashes into a telephone pole it’s not just your problem. Therein lies the issue. BGP is a very fragile ecosystem when it comes down to it. So is DNS. The problem is these are like water and oxygen to the Internet. They must exist.
If anyone out there has a BGP setup they have questions about i would gladly do a 15 minute session with them for free and tell them whats being done right and what’s being done wrong. Justin Wilson j...@mtin.net --- http://www.mtin.net Owner/CEO xISP Solutions- Consulting – Data Centers - Bandwidth http://www.midwest-ix.com COO/Chairman Internet Exchange - Peering - Distributed Fabric > On Oct 21, 2016, at 12:26 PM, Sean Heskett <af...@zirkel.us> wrote: > > I think instead of naming and shaming you'd get more traction if you informed > and taught them how to prevent and stop this traffic. > > Many WISPs don't have the technical know how (or time) to even realize it's > happening. They are just trying to get customers connected. > > I know my network isn't perfect and I'd gladly submit a list of subnets I > control to a group that would be willing to tell me what's wrong and how I > can fix it so I'm not part of the problem. > > 2 cents > > -Sean > > On Friday, October 21, 2016, Mike Hammett <af...@ics-il.net > <mailto:af...@ics-il.net>> wrote: > There's another large DDoS going on now. Go to this page to see if you can be > used for UDP amplification (or other spoofing) attacks: > > https://www.caida.org/projects/spoofer/ > <https://www.caida.org/projects/spoofer/> > > Go to these pages for more longer term bad behavior monitoring: > > https://www.shadowserver.org/wiki/ <https://www.shadowserver.org/wiki/> > https://radar.qrator.net/ <https://radar.qrator.net/> > > > Maybe we need to start a database of ASNs WISPs are using and start naming > and shaming them when they have bad actors on their network. This is serious, > people. Take it seriously. > > > > ----- > Mike Hammett > Intelligent Computing Solutions <http://www.ics-il.com/> > <https://www.facebook.com/ICSIL> > <https://plus.google.com/+IntelligentComputingSolutionsDeKalb> > <https://www.linkedin.com/company/intelligent-computing-solutions> > <https://twitter.com/ICSIL> > Midwest Internet Exchange <http://www.midwest-ix.com/> > <https://www.facebook.com/mdwestix> > <https://www.linkedin.com/company/midwest-internet-exchange> > <https://twitter.com/mdwestix> > The Brothers WISP <http://www.thebrotherswisp.com/> > <https://www.facebook.com/thebrotherswisp> > > > <https://www.youtube.com/channel/UCXSdfxQv7SpoRQYNyLwntZg> >
