geoip asnum matching
Jeremy C. Reed
jreed at isc.org
Thu Aug 21 17:10:24 UTC 2014
On Thu, 21 Aug 2014, Dietrich Oberhausen wrote:
> I've got an issue with bind 9.10 and GeoIP asnum based matching.
> As far as I can tell I need to match not only the AS number but also
> the org name?
>
> This works:
> match-clients { geoip asnum "AS8767 M-net Telekommunikations GmbH,
> Germany"; };
>
> While these do not:
> match-clients { geoip asnum "AS8767"; };
> match-clients { geoip asnum "8767"; };
> match-clients { geoip asnum 8767; };
>
> This makes working with this feature unnecessarily complicated, especially
> when dealing with non-ASCII characters for example with
> "AS27699 TELEF?NICA BRASIL S.A" or "AS28573 Servi?os de Comunica??o S.A.".
>
> Is there a way to only match the as number without the org name?
>
> I'm using the free geolite maxmind asn database from
> http://dev.maxmind.com/geoip/legacy/geolite/
It is the strings as defined as a single entry in the original database.
I agree that the just matching the first part (up to first space) is
good enough (like "AS8767"). (I looked at the 209K entries in the
database and no AS number was ever reused with a different name as
expected but maybe there could have been a mistake.)
I will forward this on to bind9-bugs so this can be improved. (Also the
documentation didn't have any example about it, but the system tests
did.)
More information about the bind-users
mailing list