Hi, We are thinking about filtering on Upstream/Peers based on smallest LIR allocations, like some ISP are already doing (SWITCH, Verio for example) This would reduce our Internet-table to 71602 !!! You can find the filter at the end of the mail, kindly formatted/provided by SWITCH (Thank you Simon) What is the general feeling about a kind of 'common' politic for Swiss ISPs ? Who would be interested as well ? We would let the filters open for CH-peerings, in order for our common multihomed customers using our PA assignments to have redundancy of course.
I am currently asking our customers (and sub-customers) to respect this (as far as possible...) Currently in AS-SWCMGLOBAL we have 55 prefixes transgressing this policy, but it should be easily reduced to a minimal set of 'exceptions'; it is hard to incitate our peers to do it, and not doing it ourselves... Feedback is welcome !! Have a nice evening, Andr� !!! Prefix list "martians" !!! Match prefixes that people should *not* announce to us. !!! To be used in a "deny" stance of an ingress route-map !!! !!! Date Created: 21-Nov-2001 !!! RCS $Header: /common/cisco/tftp/pfl/RCS/pf-martians,v 1.5 2002/01/07 14:06:38 leinen Exp $ !!! no ip prefix-list martians !! Special-use address blocks - http://www.isi.edu/~bmanning/dsua.html ip prefix-list martians permit 0.0.0.0/8 ip prefix-list martians permit 10.0.0.0/8 le 32 ip prefix-list martians permit 127.0.0.0/8 ip prefix-list martians permit 169.254.0.0/16 le 32 ip prefix-list martians permit 172.16.0.0/12 le 32 ip prefix-list martians permit 192.0.2.0/24 le 32 ip prefix-list martians permit 192.168.0.0/16 le 32 !! RIPE - http://www.ripe.net/ripe/docs/smallest-alloc-sizes.html ip prefix-list martians deny 62.0.0.0/8 ge 9 le 19 ip prefix-list martians deny 80.0.0.0/7 ge 9 le 20 ip prefix-list martians deny 193.0.0.0/8 ge 9 le 24 ip prefix-list martians deny 194.0.0.0/8 ge 9 le 24 ip prefix-list martians deny 195.0.0.0/8 ge 9 le 20 ip prefix-list martians deny 212.0.0.0/7 ge 9 le 19 ip prefix-list martians deny 217.0.0.0/8 ge 9 le 20 !! APNIC - http://www.apnic.net/db/min-alloc.html ip prefix-list martians deny 61.0.0.0/8 ge 9 le 20 ip prefix-list martians deny 202.0.0.0/7 le 24 ip prefix-list martians deny 210.0.0.0/8 ge 9 le 20 ip prefix-list martians deny 211.0.0.0/8 ge 9 le 20 ip prefix-list martians deny 218.0.0.0/7 ge 9 le 20 ip prefix-list martians deny 220.0.0.0/8 ge 9 le 20 !! ARIN - http://www.arin.net/regserv/IPStats.html#cidr ip prefix-list martians deny 24.0.0.0/8 le 20 ip prefix-list martians deny 63.0.0.0/8 ge 9 le 19 ip prefix-list martians deny 64.0.0.0/6 ge 9 le 20 ip prefix-list martians deny 68.0.0.0/8 ge 9 le 20 ip prefix-list martians deny 196.0.0.0/8 ge 9 le 24 ip prefix-list martians deny 198.0.0.0/7 ge 9 le 24 ip prefix-list martians deny 200.0.0.0/8 ge 9 le 24 ip prefix-list martians deny 204.0.0.0/6 ge 9 le 24 ip prefix-list martians deny 208.0.0.0/7 ge 9 le 20 ip prefix-list martians deny 216.0.0.0/8 ge 9 le 20 ! "Swamp" ip prefix-list martians deny 192.0.0.0/8 ge 10 le 24 ! Fall-through for undocumented ranges of historical Class A/B/C space ip prefix-list martians deny 0.0.0.0/1 ge 8 le 19 ip prefix-list martians deny 128.0.0.0/2 ge 8 le 19 ip prefix-list martians deny 192.0.0.0/3 ge 10 le 19 ip prefix-list martians permit 0.0.0.0/0 le 32 end --------------------- Andr� Chapuis IP+ Engineering Swisscom Ltd Genfergasse 14 3050 Bern +41 31 893 89 61 [EMAIL PROTECTED] CCIE #6023 --------------------- ---------------------------------------------- [EMAIL PROTECTED] Maillist-Archive: http://www.mail-archive.com/swinog%40swinog.ch/
