From what I understand, the ISP does not accept any prefix from WIX that is larger than a /24. Given our traffic is being sent directly to their WIX router (layer-2 headers confirm this), I believe their ingress filtering is dropping
From what I can tell, there are 30 prefixes advertised on WIX that are >/24, and
I've run up against a frustrating problem and some advice would be appreciated. We have a /29 via AT&T here in Wellington. We advertise this /29 to the WIX route servers. Via WIX, we receive a prefix from a national ISP[1]. Any attempts to send traffic to this ISP fall silently into the bit-bucket. this traffic since the return-path doesn't match. If I filter the ISP's prefix, the transit is handled by AT&T and everything works just fine. Effectively, the only way I can talk to them is to go "the long way". Now, I have no major problem with any AS saying "our policy states we only accept prefixes smaller than /24". What frustrates me is that the ISP is seemingly saying : ISP> Hello Wellington! If you have any packets for this prefix, send them to me! US > Excellent! Here, have some traffic for one of your hosts. ISP> What? Who are you? I think I'll drop this. [ ... ] ISP> Send me your traffic Wellington! these amount to ~672 hosts. If I'm correct (and I'll admit I'm making an educated guess here), then all of those hosts are unable to talk to this ISP. So, my options are: 1. Stop playing with pissant /29's on WIX. 2. Get the ISP to change their ways. 3. Filter the ISP's prefixes that I receive from WIX. I think the most likely option is #3. However how am I to know what other networks do the same thing? Shall I troll every single WIX network to check I can talk to them, then build a filter-list based on that? Ugly. Sam. ----- [1] Since I have disagreed with the ISP in question, and they haven't been forthcoming in getting it resolved, I've elected not to name them. - To unsubscribe from nznog, send email to majordomo(a)list.waikato.ac.nz where the body of your message reads: unsubscribe nznog