72/8 friendly reminder

Steven_Bellovin · March 23, 2005, 7:05pm

That's a good idea. Maybe we can take it a step further: let each AS
owner register an IP address with IANA or their RIR, and use this test
box to ping the AS owner. It should be scalable -- there are only
about 20k ASs, as I recall. The real expense, other than the single
box per RIR, is developing the software that lets each AS register an
IP address and an email address to contact if the pings fail.

--Prof. Steven M. Bellovin, http://www.cs.columbia.edu/~smb

Bandy_Rush1 · March 23, 2005, 7:15pm

let each AS owner register an IP address with IANA or their RIR, and use
this test box to ping the AS owner.

i do not understand what you are proposing. ahhh. you mean
  o each asn register a pingable address within its normal space,
    maybe in their irr route object
  o the rirs set up a routing island with only the new prefix in
    it
  o from a box with that new prefix, the rir pings all asn's
    registered pingable addresses from the first step
  o whine about any which are not pingable

interesting modulo issues of reachability at any one time. and
places more of a routing policing burden on the rirs. though some
at least one rir is just dying to become net police, so it might
sell.

randy

Alex_Bligh1 · March 23, 2005, 7:28pm

you don't need any mandatory aspect. Just publish which AS's have addresses
that can be pinged from old netblocks, but not from new ones. No more
"net police"-like than all the other project stuff which monitors
reachability. If people want to filter on odd numbered first octet
of IP address, well, more power to them.

(yes I know it was partly tongue in cheek).

Alex

Petri_Helenius · March 23, 2005, 7:28pm

Randy Bush wrote:

i do not understand what you are proposing. ahhh. you mean
o each asn register a pingable address within its normal space,
maybe in their irr route object
o the rirs set up a routing island with only the new prefix in
it
o from a box with that new prefix, the rir pings all asn's registered pingable addresses from the first step
o whine about any which are not pingable

interesting modulo issues of reachability at any one time. and
places more of a routing policing burden on the rirs. though some
at least one rir is just dying to become net police, so it might sell.

We can set this up and provide the results for public consumption given the IP's and a minimum allocation from each one of the new blocks. (for the neccessary duration, unless permanent allocation for darkspace duty is acceptable)

Pete

Henk_Uijterwaal · March 24, 2005, 8:37am

You mean something like: http://www.ris.ripe.net/debogon/debogon.html?

Addresses are for each /8 that the RIPE NCC gets from IANA, they are
announced from the day we get them from IANA until the time we start
allocating from this /8.

Henk