Re: [swinog] SafeHost AS21217 accused to leak routes for two hours to China Telecom AS4134 - anyone from SafeHost to comment?

Hi Fredy and list, Interesting one, I'm not aware that SafeHost's noc is around on the list. Also, from what I see Safehost doesn't peer anywhere, so that looks more like route manipulaiton , like someone injecting a route that looks that it's from AS21217 . Or worse, overly fat fingers or

Re: [swinog] SafeHost AS21217 accused to leak routes for two hours to China Telecom AS4134 - anyone from SafeHost to comment?

> > Coincidence? > > https://www.safehost.com/en/news/335-safe-host-china-telecom-announce-strategic-partnership > 23.02.2017 till now? :) greetings -steven ___ swinog mailing list swinog@lists.swinog.ch

Re: [swinog] SafeHost AS21217 accused to leak routes for two hours to China Telecom AS4134 - anyone from SafeHost to comment?

Hi, On Sun, Jun 09, 2019 at 11:47:19AM +, robert.guentensper...@swisscom.com wrote: > Nobody of us made ever a typo... This is why peers and upstreams have security mechanisms in place... like max-pfx on peers, and strict prefix filters on downstreams. We all have that, of course... have

Re: [swinog] SafeHost AS21217 accused to leak routes for two hours to China Telecom AS4134 - anyone from SafeHost to comment?

> Am 09.06.2019 um 13:32 schrieb Andreas Fink : > > Interesting thas this happens at times where a certain bloody event in china > has its 30th birthday. > Could well be a coincident to see how the world deals with it or an attempt > to censor it outside of china. > ... > or it might just be

Re: [swinog] SafeHost AS21217 accused to leak routes for two hours to China Telecom AS4134 - anyone from SafeHost to comment?

Yes, we all make errors. However, a number of the leaked routes don’t exist in the DFZ, so they were either generated or picked up some place special. I’d like to learn from this incident to see if we can protect ourselves better. If this was a typo, I’d like them to confirm. If it was a software

Re: [swinog] SafeHost AS21217 accused to leak routes for two hours to China Telecom AS4134 - anyone from SafeHost to comment?

Hi, Nobody of us made ever a typo... Here is a good article: https://blogs.oracle.com/internetintelligence/large-european-routing-leak-sends-traffic-through-china-telecom Cheers, Günti Am 09.06.2019 um 13:43 schrieb Job Snijders mailto:j...@ntt.net>>: And they have yet to explain how this

Re: [swinog] SafeHost AS21217 accused to leak routes for two hours to China Telecom AS4134 - anyone from SafeHost to comment?

And they have yet to explain how this could happen. I tried calling their NOC but they didn’t pick up the phone :-( https://twitter.com/swisscolo/status/1136980918227341312?s=21 Kind regards, Job On Sun, Jun 9, 2019 at 7:25 Fredy Kuenzler wrote: > >

Re: [swinog] SafeHost AS21217 accused to leak routes for two hours to China Telecom AS4134 - anyone from SafeHost to comment?

Interesting thas this happens at times where a certain bloody event in china has its 30th birthday. Could well be a coincident to see how the world deals with it or an attempt to censor it outside of china. ... or it might just be a stupid engineer's mistake... > On 9 Jun 2019, at 13:22,

[swinog] SafeHost AS21217 accused to leak routes for two hours to China Telecom AS4134 - anyone from SafeHost to comment?

https://blog.apnic.net/2019/06/07/large-european-routing-leak-sends-traffic-through-china-telecom/ -- Fredy Kuenzler Init7 (Switzerland) Ltd. Technoparkstrasse 5 CH-8406 Winterthur Switzerland http://www.init7.net/ ___ swinog mailing list