Theodore Baschak

Routing Guru. IPv6 Advocate. Operator of Hextet Systems (AS395089).

IXP Peering Lan Hijacks

Tue, 29 Mar 2016 13:36:44 -0500 » Networking, ISP, BGP, Security, Troubleshooting, Network Operator Group, System Administration » Estimated read time: 1 min

Earlier this month the local Internet Exchange I’m involved with received some reports of spam coming from the MBIX Peering LAN IP space.

Normally an Internet Exchange’s Peering LAN IP space is not announced to the world via BGP. Only participants who have a next-hop in that particular network need to know about its existence.

Upon investigation it turns out that someone spun up this IP space via BGP somewhere and blasted out a bunch of spam from an IP that had “unassigned” reverse DNS.

AS-Paths Observed:

  • 9002 44050 131788
  • 1299 44050 131788