Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: The format of BGP messages with routeviews - SANS Internet Storm Center SANS ISC InfoSec Forums


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
The format of BGP messages with routeviews
This may help...

https://labs.ripe.net/Members/yasuhiro_ohara/bgpdump2

~Traven
Traven37

4 Posts
TYPE: BGP4MP/BGP4MP_MESSAGE AFI_IP
MESSAGE ID:1378027817
BGP PACKET TYPE: ACTIVE (A)
FROM: 202.249.2.86
AS NUMBER:7500
ANNOUNCED: 41.191.103.0/24
ORIGIN: IGP
AS_PATH: 7500 2518 2914 1273 36994 37672 37089
NEXT_HOP: 202.249.2.86

This is crude, but the best I could come up with in the short amount of time. As always, double check, read the RFCs and do some google research.

Good luck.
Traven37

4 Posts
You might find this project of interest on github,
https://github.com/yasuhiro-ohara-ntt/bgpdump2
Anonymous

Sign Up for Free or Log In to start participating in the conversation!