[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

dealing with bogon spam ?

Subject: dealing with bogon spam ?
From: justin at justinshore.com (Justin Shore)
Date: Wed, 28 Oct 2009 13:46:39 -0500
In-reply-to: <[email protected]>
References: <[email protected]> <[email protected]>

Michiel Klaver wrote:
> I would suggest to report that netblock to SpamHaus to have it included 
> at their DROP list, and also use that DROP list as extra filter in 
> addition to your bogon filter setup at your border routers.
> 
> The SpamHaus DROP (Don't Route Or Peer) list was specially designed for 
> this kind of abuse of stolen 'hijacked' netblocks and netblocks 
> controlled entirely by professional spammers.

As a brief off-shoot of the original topic, has anyone scripted the use 
of Spamhaus's DROP list in a RTBH, ACLs, null-routes, etc?  I'm not 
asking if people think it's safe; that's up to the network wanting to 
deploy it.  I'm wondering if anyone has any scripts for pulling down the 
DROP list, parsing it into whatever you need (static routes on a RTBH 
trigger router or ACLs on a border router and then deployed the config 
change(s).  I don't want to reinvent the wheel is someone else has 
already done this.

Thanks
   Justin

Follow-Ups:
- dealing with bogon spam ?
  - From: jason at i6ix.com (Jason Bertoch)
- dealing with bogon spam ?
  - From: michiel at klaver.it (Michiel Klaver)

References:
- dealing with bogon spam ?
  - From: leslie at craigslist.org (Leslie)
- dealing with bogon spam ?
  - From: michiel at klaver.it (Michiel Klaver)

Prev by Date: Redundant Data Center Architectures
Next by Date: Strip AS in BGP peer
Previous by thread: dealing with bogon spam ?
Next by thread: dealing with bogon spam ?
Index(es):
- Date
- Thread