[AusNOG] [nznog] Interesting - How a Router's Missed Range Check Nearly Crashed the Internet

Trent Lloyd lathiat at bur.st
Mon Feb 23 09:48:39 EST 2009


The low down;

http://www.renesys.com/blog/2009/02/the-flap-heard-around-the-worl.shtml
http://www.renesys.com/blog/2009/02/longer-is-not-better.shtml

This is my favorite line;

Thus for this event to have occurred at all, besides the bugs in the  
router software of two vendors, only a few percent of the ASes on the  
Internet could have possibly initiated the meltdown, but only if they  
had a careless operator and an obscure Latvian router with outdated  
software. How likely was that?

Regards,
Trent

On 23/02/2009, at 2:19 AM, Jonny Martin wrote:

> On Feb 23, 2009, at 1:00 AM, Skeeve Stevens wrote:
>> The flaw lay dormant until one of vendor A's systems was deployed in
>> an autonomous system whose ASN, modulo 256, was greater than 250. At
>> that point, the Internet was one typo away from disaster.
> ...
>> Is this just the 4byte ASN thing from months ago or something new?
>
> This was more a UI feature on the Mikrotiks where AS path prepending
> was an integer field representing the number of prepends of it's own
> ASN - rather than the more common approach of providing an actual AS-
> path to prepend.
>
> Cheers,
> Jonny.
>
> _______________________________________________
> AusNOG mailing list
> AusNOG at lists.ausnog.net
> http://lists.ausnog.net/mailman/listinfo/ausnog
>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ausnog.net/pipermail/ausnog/attachments/20090223/17840b6d/attachment.html>


More information about the AusNOG mailing list