• Home

  • Documents

  • BLACKHOLE BGP Community for Blackholing T. King, C. Dietzel, J. Snijders, G. Doering, G. Hankins
8
BLACKHOLE BGP Community for Blackholing T. King, C. Dietzel, J. Snijders, G. Doering, G. Hankins

BLACKHOLE BGP Community for Blackholing T. King, C. Dietzel, J. Snijders, G. Doering, G. Hankins

Tags:

Embed Size (px)

Citation preview

Page 1: BLACKHOLE BGP Community for Blackholing T. King, C. Dietzel, J. Snijders, G. Doering, G. Hankins

BLACKHOLE BGP Communityfor Blackholing

T. King, C. Dietzel, J. Snijders,G. Doering, G. Hankins

Page 2: BLACKHOLE BGP Community for Blackholing T. King, C. Dietzel, J. Snijders, G. Doering, G. Hankins

Motivation: The Problem: Massive DDoS

Network B

#2

Network A

Page 3: BLACKHOLE BGP Community for Blackholing T. King, C. Dietzel, J. Snijders, G. Doering, G. Hankins

Motivation: A Solution: Blackholing

Network B

#3

Network A

BGP:More Specific Blackhole Announcement

Page 4: BLACKHOLE BGP Community for Blackholing T. King, C. Dietzel, J. Snijders, G. Doering, G. Hankins

Motivation: Different Triggers for Blackholing

• Different triggers for Blackholing at IXPs (selection):

• Different triggers for Blackholing at ISPs (selection):

• Proposal: One commonly agreed way to trigger Blackholing at IXPs and ISPs -> Internet Draft

#4

Blackhole IP Address: FRA: 80.81.193.66, NY: 206.130.10.66 Blackhole Community: 65499:999Blackhole Community: 0:666Fenix: RTBHBlackhole Community: 29535:666

• DE-CIX Apollon• Netix• MSK-IX.ru• NIX.CZ• TPIX.pl

Policy control at route servers

• Init7:• Team Cymru:• Hurrican Electric:• NTT:

Blackhole Community: 65000:666Blackhole Community: 64496: 666Blackhole Community: 6939:666Blackhole Community: 2914:666

Page 5: BLACKHOLE BGP Community for Blackholing T. King, C. Dietzel, J. Snijders, G. Doering, G. Hankins

Evolution

2014:• Euro-IX tech mailing list: Commonly agreed Blackhole

community• 25th Euro-IX Forum: Presentation and panel about Blackholing• Work on an “Internet Draft” started

2015:• Discussion on the GROW mailing list and during the IETF 93• Requests from Euro-IX and GROW:

– Also cover ISPs– Be more specific about “Operations Recommendations”

#5

Page 6: BLACKHOLE BGP Community for Blackholing T. King, C. Dietzel, J. Snijders, G. Doering, G. Hankins

Current Status

GROW WG:• Requests from IETF 93 / Euro-IX:

1. Also cover ISPs and not only IXPs: Job Snijders (NTT) committed himself to contribute which he perfectly did

2. Add more “Operations Recommendations”:• Local scope: NO_ADVERTISE / NO_EXPORT• Accepting blackholed IP prefix: Length of prefixes, more specific• IXPs: Peering at route servers: Policy control, next-hop IP address

• Version 01 of the “Internet Draft” released (above requests applied)

• No unresolved comments/requests I am aware of• Working group adaption? Done.

#6

Page 7: BLACKHOLE BGP Community for Blackholing T. King, C. Dietzel, J. Snijders, G. Doering, G. Hankins

Next Steps

• We need more feedback -> Release new versions: Repeat

• Last Call is planned before IETF 94

#7

Page 8: BLACKHOLE BGP Community for Blackholing T. King, C. Dietzel, J. Snijders, G. Doering, G. Hankins

Feedback / Comments / Questions

Please provide feedback:https://tools.ietf.org/html/draft-ymbk-grow-blackholing-01

#8


Dietzel Newspaper 07

Dietzel Newspaper 07

Documents
Dns Blackholing

Dns Blackholing

Technology
106_42_06 - DIETZEL - doze si cutii de distributie (1)

106_42_06 - DIETZEL - doze si cutii de distributie (1)

Documents
Dietzel Doze

Dietzel Doze

Documents
CONFERENCE: BlackHole: Robust Community Detection Inspired ...dm.kaist.ac.kr/jaegil/papers/icde16_blackhole.pdf · BlackHole. The source code is available at . com/jaegil/BlackHole

CONFERENCE: BlackHole: Robust Community Detection Inspired ...dm.kaist.ac.kr/jaegil/papers/icde16_blackhole.pdf · BlackHole. The source code is available at . com/jaegil/BlackHole

Documents
mathrick and blackhole mathematics

mathrick and blackhole mathematics

Technology
37 47 BlackHole

37 47 BlackHole

Documents
Supernova and blackhole

Supernova and blackhole

Science
Apakah Blackhole Itu

Apakah Blackhole Itu

Documents
Dietzel HFT general presentation

Dietzel HFT general presentation

Documents
06 nation branding by jorg dietzel

06 nation branding by jorg dietzel

Documents
The blackhole origins

The blackhole origins

Science
Internet Pirates: blackholing, hijacking and other dirty tricks

Internet Pirates: blackholing, hijacking and other dirty tricks

Technology
BLACKHOLE INTERNATIONAL CIRCUIT 2021

BLACKHOLE INTERNATIONAL CIRCUIT 2021

Documents
Blackhole Attack

Blackhole Attack

Documents
Cyber-Security - Everyone's Responsibilityprobuswesternottawa.ca/pdf-files/cyber_security.pdfExploit Kits 5 Blackhole, Metasploit, … Java flaws already included in Blackhole exploit

Cyber-Security - Everyone's Responsibilityprobuswesternottawa.ca/pdf-files/cyber_security.pdfExploit Kits 5 Blackhole, Metasploit, … Java flaws already included in Blackhole exploit

Documents
Stars & blackhole

Stars & blackhole

Documents
Exploring the Blackhole Exploit Kit -

Exploring the Blackhole Exploit Kit -

Documents
Kabelkanäle - Dietzel

Kabelkanäle - Dietzel

Documents
Half Century of BlackHole Theory: From Physicists

Half Century of BlackHole Theory: From Physicists

Documents
Blackhole Notes

Blackhole Notes

Documents
Coalition's $10b blackhole

Coalition's $10b blackhole

Documents
Blackholing from a_providers_perspektive_theo_voss

Blackholing from a_providers_perspektive_theo_voss

Internet
Blackhole Energy

Blackhole Energy

Documents
Bedienungsanleitung Blackhole LONELY · Blackhole Amplification Matthias Günthart CH-5000 Aarau // info@blackholeamp.ch Sicherheitshinweise - Röhrenverstärker erzeugen viel Wärme

Bedienungsanleitung Blackhole LONELY · Blackhole Amplification Matthias Günthart CH-5000 Aarau // [email protected] Sicherheitshinweise - Röhrenverstärker erzeugen viel Wärme

Documents
E4G Mobile Blackhole

E4G Mobile Blackhole

Documents
Analysis of Effects of BGP Blackhole Routing

Analysis of Effects of BGP Blackhole Routing

Documents
04 asian brands rising by jorg dietzel

04 asian brands rising by jorg dietzel

Documents
Security gets Personal - SS · Image:NASA . Blackhole v2 . Blackhole deliveries August – September 2012 . ... IDC BYOD Survey Australia 2012 . Reality . unaware that smartphones

Security gets Personal - SS · Image:NASA . Blackhole v2 . Blackhole deliveries August – September 2012 . ... IDC BYOD Survey Australia 2012 . Reality . unaware that smartphones

Documents
TO GET SCHWARZSCHILD BLACKHOLE SOLUTION USING MATHEMATICApeople.du.ac.in/~pmehta/FinalSem/Deobratfinaltalk.pdf · TO GET SCHWARZSCHILD BLACKHOLE SOLUTION USING MATHEMATICA FOR COMPULSORY

TO GET SCHWARZSCHILD BLACKHOLE SOLUTION USING MATHEMATICApeople.du.ac.in/~pmehta/FinalSem/Deobratfinaltalk.pdf · TO GET SCHWARZSCHILD BLACKHOLE SOLUTION USING MATHEMATICA FOR COMPULSORY

Documents