Dear, Could you help me with an information? Is there a way to generate an announce modifying the AS Path field using BIRD? For example, i´d like to announce a prefix with a false AS Path field where i could change it, inserting or removing an AS.
Dear Marcio, What is your use case for extensive manipulation of the AS_PATH? Kind regards, Job On Fri, 14 Sep 2018 at 16:02, Marcio <marciovinicius.santos@uniriotec.br> wrote:
Dear,
Could you help me with an information? Is there a way to generate an announce modifying the AS Path field using BIRD? For example, i´d like to announce a prefix with a false AS Path field where i could change it, inserting or removing an AS.
I'd like to perform a Hijacking but changing a soecific position of AS Path. Is it poasible to perform it with BIRD? If not, is there another way to do this? Em sex, 14 de set de 2018 12:37, Job Snijders <job@instituut.net> escreveu:
Dear Marcio,
What is your use case for extensive manipulation of the AS_PATH?
Kind regards,
Job
On Fri, 14 Sep 2018 at 16:02, Marcio <marciovinicius.santos@uniriotec.br> wrote:
Dear,
Could you help me with an information? Is there a way to generate an announce modifying the AS Path field using BIRD? For example, i´d like to announce a prefix with a false AS Path field where i could change it, inserting or removing an AS.
Now why would you want to do this exactly? On Fri, 14 Sep 2018 at 23:37, Marcio <marciovinicius.santos@uniriotec.br> wrote:
I'd like to perform a Hijacking but changing a soecific position of AS Path. Is it poasible to perform it with BIRD? If not, is there another way to do this?
Em sex, 14 de set de 2018 12:37, Job Snijders <job@instituut.net> escreveu:
Dear Marcio,
What is your use case for extensive manipulation of the AS_PATH?
Kind regards,
Job
On Fri, 14 Sep 2018 at 16:02, Marcio <marciovinicius.santos@uniriotec.br> wrote:
Dear,
Could you help me with an information? Is there a way to generate an announce modifying the AS Path field using BIRD? For example, i´d like to announce a prefix with a false AS Path field where i could change it, inserting or removing an AS.
I'd like to perform Hijacking attack in a topology emulated, for my Master Project. But i need to have the possibility of manipulate AS Path field of BGP Updates. Em sáb, 15 de set de 2018 06:13, Darren O'Connor <mellow.drifter@gmail.com> escreveu:
Now why would you want to do this exactly?
On Fri, 14 Sep 2018 at 23:37, Marcio <marciovinicius.santos@uniriotec.br> wrote:
I'd like to perform a Hijacking but changing a soecific position of AS Path. Is it poasible to perform it with BIRD? If not, is there another way to do this?
Em sex, 14 de set de 2018 12:37, Job Snijders <job@instituut.net> escreveu:
Dear Marcio,
What is your use case for extensive manipulation of the AS_PATH?
Kind regards,
Job
On Fri, 14 Sep 2018 at 16:02, Marcio <marciovinicius.santos@uniriotec.br> wrote:
Dear,
Could you help me with an information? Is there a way to generate an announce modifying the AS Path field using BIRD? For example, i´d like to announce a prefix with a false AS Path field where i could change it, inserting or removing an AS.
You could recreate the route via static route and depend on existing one. In static route you can attach AS-PATH in any way you want. route 2.20.144.0/22 unreachable { bgp_local_pref = 0; bgp_path.prepend(20940); bgp_path.prepend(20940); bgp_path.prepend(10429); bgp_path.prepend(12956); }; For other interested parties, there are many use cases for AS_PATH manipulatoin a) injecting realistic RIB to DUT b) network-based firewall running eBGP (ASnet => ASfw => ASnet => ASfw => ASnet to firewall traffic between two VRFs) c) security research, hijack detection testing d) many things I likely don't know about, but are reasonable Lot of commercial BGP solutions support AS_PATH manipulation. On Sat, 15 Sep 2018 at 07:01, Marcio <marciovinicius.santos@uniriotec.br> wrote:
I'd like to perform a Hijacking but changing a soecific position of AS Path. Is it poasible to perform it with BIRD? If not, is there another way to do this?
Em sex, 14 de set de 2018 12:37, Job Snijders <job@instituut.net> escreveu:
Dear Marcio,
What is your use case for extensive manipulation of the AS_PATH?
Kind regards,
Job
On Fri, 14 Sep 2018 at 16:02, Marcio <marciovinicius.santos@uniriotec.br> wrote:
Dear,
Could you help me with an information? Is there a way to generate an announce modifying the AS Path field using BIRD? For example, i´d like to announce a prefix with a false AS Path field where i could change it, inserting or removing an AS.
-- ++ytti
Using this method. Could i create the AS Path with any AS that i want? Could i create any AS chain? Em sáb, 15 de set de 2018 06:46, Saku Ytti <saku@ytti.fi> escreveu:
You could recreate the route via static route and depend on existing one. In static route you can attach AS-PATH in any way you want.
route 2.20.144.0/22 unreachable { bgp_local_pref = 0; bgp_path.prepend(20940); bgp_path.prepend(20940); bgp_path.prepend(10429); bgp_path.prepend(12956); };
For other interested parties, there are many use cases for AS_PATH manipulatoin
a) injecting realistic RIB to DUT b) network-based firewall running eBGP (ASnet => ASfw => ASnet => ASfw => ASnet to firewall traffic between two VRFs) c) security research, hijack detection testing d) many things I likely don't know about, but are reasonable
Lot of commercial BGP solutions support AS_PATH manipulation. On Sat, 15 Sep 2018 at 07:01, Marcio <marciovinicius.santos@uniriotec.br> wrote:
I'd like to perform a Hijacking but changing a soecific position of AS
Path. Is it poasible to perform it with BIRD? If not, is there another way to do this?
Em sex, 14 de set de 2018 12:37, Job Snijders <job@instituut.net>
escreveu:
Dear Marcio,
What is your use case for extensive manipulation of the AS_PATH?
Kind regards,
Job
On Fri, 14 Sep 2018 at 16:02, Marcio <
marciovinicius.santos@uniriotec.br> wrote:
Dear,
Could you help me with an information? Is there a way to generate an
announce modifying the AS Path field using BIRD? For example, i´d like to announce a prefix with a false AS Path field where i could change it, inserting or removing an AS.
-- ++ytti
On 15.09.2018 11:46, Saku Ytti wrote:
You could recreate the route via static route and depend on existing one. In static route you can attach AS-PATH in any way you want.
route 2.20.144.0/22 unreachable { bgp_local_pref = 0; bgp_path.prepend(20940); bgp_path.prepend(20940); bgp_path.prepend(10429); bgp_path.prepend(12956); };
You can also do it in a filter for paths received, e.g., via bgp. Bird allows you to clear as path, prepend it, and delete specific asns from the path. And just FYI, Saku's code snippet will create as path like this: 12956 10429 20940 20940. Piotr -- Piotr 'GhosT' Wydrych ...... Senior II Lead Sw. Eng., SDN ....... Akamai ........................................................................ A: Because it messes up the order in which people normally read text. .. Q: Why is top-posting such a bad thing? ................................
Dear, I understood. I'try to perform this. Em ter, 18 de set de 2018 07:08, Piotr Wydrych <pwydrych@akamai.com> escreveu:
On 15.09.2018 11:46, Saku Ytti wrote:
You could recreate the route via static route and depend on existing one. In static route you can attach AS-PATH in any way you want.
route 2.20.144.0/22 unreachable { bgp_local_pref = 0; bgp_path.prepend(20940); bgp_path.prepend(20940); bgp_path.prepend(10429); bgp_path.prepend(12956); };
You can also do it in a filter for paths received, e.g., via bgp. Bird allows you to clear as path, prepend it, and delete specific asns from the path.
And just FYI, Saku's code snippet will create as path like this: 12956 10429 20940 20940.
Piotr -- Piotr 'GhosT' Wydrych ...... Senior II Lead Sw. Eng., SDN ....... Akamai ........................................................................ A: Because it messes up the order in which people normally read text. .. Q: Why is top-posting such a bad thing? ................................
Thanks for the answer. I'll try it. Em sáb, 15 de set de 2018 06:46, Saku Ytti <saku@ytti.fi> escreveu:
You could recreate the route via static route and depend on existing one. In static route you can attach AS-PATH in any way you want.
route 2.20.144.0/22 unreachable { bgp_local_pref = 0; bgp_path.prepend(20940); bgp_path.prepend(20940); bgp_path.prepend(10429); bgp_path.prepend(12956); };
For other interested parties, there are many use cases for AS_PATH manipulatoin
a) injecting realistic RIB to DUT b) network-based firewall running eBGP (ASnet => ASfw => ASnet => ASfw => ASnet to firewall traffic between two VRFs) c) security research, hijack detection testing d) many things I likely don't know about, but are reasonable
Lot of commercial BGP solutions support AS_PATH manipulation. On Sat, 15 Sep 2018 at 07:01, Marcio <marciovinicius.santos@uniriotec.br> wrote:
I'd like to perform a Hijacking but changing a soecific position of AS
Path. Is it poasible to perform it with BIRD? If not, is there another way to do this?
Em sex, 14 de set de 2018 12:37, Job Snijders <job@instituut.net>
escreveu:
Dear Marcio,
What is your use case for extensive manipulation of the AS_PATH?
Kind regards,
Job
On Fri, 14 Sep 2018 at 16:02, Marcio <
marciovinicius.santos@uniriotec.br> wrote:
Dear,
Could you help me with an information? Is there a way to generate an
announce modifying the AS Path field using BIRD? For example, i´d like to announce a prefix with a false AS Path field where i could change it, inserting or removing an AS.
-- ++ytti
participants (5)
-
Darren O'Connor -
Job Snijders -
Marcio -
Piotr Wydrych -
Saku Ytti