Morning all, I noticed my internet this morning (about 2:20 am central) dipped out and was "out" for about five minutes - not the traditional out mind you (e.g.; hardware failure, dsl link issue, fiber cut, etc). However, it would appear it was caused by a possible route hijack - which isn't the first time that this has happened in the past couple of years.
223.151.250.213 popped up right after the Gardner KS router, and before the CenturyLink router up in Kansas City, MO.
Anyone else experiencing this issue? Slapped in a mtr below along with the IP whois for inquiring minds. Note that everything after hop 3 was non-responsive and was all terminating at the 223 IP octet. While this issue was ongoing, the cell tower to my south utilizes CenturyLink for its backhaul, and it was down as well as per my cell phone via Sprint and TMobile's networks, along with a Sprint LTE 'puck' - nothing could be resolved, nothing was being routed at all. Just nothingness.
My traceroute [vUNKNOWN]fw.home.lan (76.7.12.155) 2019-11-05T02:28:02-0600Keys: Help Display mode Restart statistics Order of fields quit Packets Pings Host Loss% Snt Last Avg Best Wrst StDev 1. ks-76-7-12-129.sta.embarqhsd.net 0.0% 415 86.0 81.1 15.1 572.4 131.6 2. ks-76-7-223-22.sta.embarqhsd.net 0.0% 415 89.2 81.5 15.3 573.3 132.4 3. 223.151.250.213 0.0% 415 91.0 88.1 15.2 676.3 134.4 208.110.241.153 4. 208.110.241.149 3.4% 415 141.9 119.9 16.7 601.7 134.0 bb-dnvtc056-jx4-02-ae2.core.centurytel.net 5. bb-mrghmoqa-jx9-01-xe-1-1-0.core.centurytel.net 88.4% 415 167.6 88.5 21.4 209.9 65.7 6. bb-mrghmoqa-jx9-02-ae0.core.centurytel.net 8.7% 415 106.6 106.3 21.1 603.9 134.9 dvr3-brdr-01.inet.qwest.net 7. bb-chcgilwu-jx9-02-ae8-0.core.centurylink.net 78.0% 415 94.9 104.9 28.1 526.7 117.5 lag-12.ear3.Denver1.Level3.net 8. ae-0-11.bar1.SaltLakeCity1.Level3.net 15.2% 415 121.5 116.3 38.9 616.0 139.9 9. cer-brdr-02.inet.qwest.net 3.1% 415 109.7 117.4 33.7 617.7 136.5 4.35.175.16610. 4.68.74.145 11.1% 415 112.5 117.0 33.9 615.5 139.1 one.one.one.one11. ae-1-3525.ear5.Chicago2.Level3.net 14.0% 415 115.0 118.3 34.9 616.9 141.5 one.one.one.one12. ACE-WORLD-W.edge3.Chicago2.Level3.net 3.9% 415 118.1 122.7 34.8 616.5 137.3 one.one.one.one13. one.one.one.one 3.1% 415 109.2 119.1 34.3 614.0 135.8Don't mind the high latency - have a game being downloaded, 25 Mbps just isn't enough! ;-)
And the whois for the IP that was added in.
bash% Information related to '223.144.0.0 - 223.159.255.255' % Abuse contact for '223.144.0.0 - 223.159.255.255' is 'anti-spam@ns.chinanet.cn.net' inetnum: 223.144.0.0 - 223.159.255.255netname: CHINANET-HNdescr: CHINANET HUNAN PROVINCE NETWORKdescr: China Telecomdescr: No.31,jingrong streetdescr: Beijing 100032country: CNstatus: ALLOCATED PORTABLEadmin-c: CH93-APtech-c: CH636-APremarks: service providerremarks: --------------------------------------------------------remarks: To report network abuse, please contact mnt-irtremarks: For troubleshooting, please contact tech-c and admin-cremarks: Report invalid contact via www.apnic.net/invalidcontactremarks: --------------------------------------------------------mnt-by: APNIC-HMmnt-lower: MAINT-CHINANET-HNlast-modified: 2016-05-04T00:25:29Zsource: APNICmnt-irt: IRT-CHINANET-CN irt: IRT-CHINANET-CNaddress: No.31 ,jingrong street,beijingaddress: 100032e-mail: anti-spam@ns.chinanet.cn.netabuse-mailbox: anti-spam@ns.chinanet.cn.netadmin-c: CH93-APtech-c: CH93-APauth: # Filteredmnt-by: MAINT-CHINANETlast-modified: 2010-11-15T00:31:55Zsource: APNIC role: CHINANET HUNANaddress: No.1 TuanJie road,ChangSha,Hunan 410005country: CNphone: +86 731 4792092fax-no: +86 731 4792007e-mail: abuse.szx@2118.com.cnremarks: send spam reports to abuse.szx@2118.com.cnremarks: and abuse reports to abuse.szx@2118.com.cnremarks: Please include detailed information andremarks: times in UTCadmin-c: CH632-APtech-c: CS499-APnic-hdl: CH636-APmnt-by: MAINT-CHINANET-HNlast-modified: 2014-02-12T08:30:53Zsource: APNIC person: Chinanet Hostmasternic-hdl: CH93-APe-mail: anti-spam@ns.chinanet.cn.netaddress: No.31 ,jingrong street,beijingaddress: 100032phone: +86-10-58501724fax-no: +86-10-58501724country: CNmnt-by: MAINT-CHINANETlast-modified: 2014-02-27T03:37:38Zsource: APNIC
↧