China hijacking internet traffic

Lots of news hype going on with this…

Sorta interesting however this could have easily been prevented.

Technical details http://bgpmon.net/blog/?p=282

These things happen and its easy to fat finger and make a mistake and the situation is made worse by bad configuration on their upstream providers.

Damn. I haven’t heard anything about this.

Didn’t this happen back in April? Edit: Oh yeah.

I see China now has the “biggest/best” computer in the World. Nice.

Congress has some report coming out today about this or something.

Its really funny how many people talk about this in the media who obviously have 0 understanding of what exactly happened.

Hey we didn’t filter routes coming in over BGP from this peer AS…

I understand why you can’t route filter on huge transit links but they were only sending 50 prefixes which isn’t a lot.

China has been doing this for a while. China is a different breed and they hate on all the large companies (Google, Yahoo, Aol (lol), etc.)

China wants their people to use their own products and companies rather than US/UK companies for services. They attack the above companies ^^^ in hope of bring them down among their company so they can use their own China products. I am pretty sure many companies use honeypots to try and fool China :wink:

I can go on an on about this but it is no use - most of it is due to the ISP’s.

This kind of thing happens all the time someone in India did this when they tried to block youtube.

Wasn’t the redirecting of traffic due to a botched DNS setting or something. IIRC it was blocking youtube for government sites.

Nah in India they tried to reroute youtube IPs for their local network but pushed those changes into BGP and screwed it up for a lot of people

edit my bad it was Pakistan

http://asert.arbornetworks.com/2008/02/internet-routing-insecuritypakistan-nukes-youtube/

China of course denies all allegations - http://www.bloomberg.com/news/2010-11-18/china-telecom-denies-hijack-of-web-traffic-after-u-s-government-report.html?cmpid=yhoo

The thing is this isn’t hard to do and its not discrete

I don’t really think there was an malicious intent

Chinese… traffic… what? http://www.youtube.com/watch_popup?v=QESfEd180rQ
Asians CAN’T drive. lol (But they can buy GM stock)

someone break it down for me in laymans terms wtf happened.

ISPs advertise all the blocks of IPs that they own to other ISPs and it all gets exchanged around the internet so everyone can get to everyone…

China advertised a bunch of IP space that they didn’t own and if other ISPs had the best path back to those IPs via CHina the traffic went that way.

Normally your upstream ISPs have filters and only allow you to advertise out IPs that they verified you own in this case no filter was in place.

If your an ISP and your network is complex a n00b network engineer could accidentally advertise someone elses space.

If you were driving from the US to London (forget about the ocean) on a road, China changed some street signs and caused a bunch of people trying to drive through their country infastructure on the way from point a to point b without them knowing.

Basically traffic went through the Great Firewall of China adopting their policies?

Da VaChina’s got dem 1337 h4x0rs

^^Way batter than LZ explaination. lol

lol