Spamhaus recently announced BGP as a service. Can you explain what the difference is between BGP and using the Pihole's Adlist(s)? For what I understand, BGP contains feeds, or communities, that list malicious IP addresses of which connections to are also blocked.
BGP is used by organisations, ISPs, service providers. It manages the routing of traffic between their allocated IP ranges and to and from the wider Internet.
Spamhaus's service is aimed at the above users and is intended to help them manage various threats by maintaining feeds of malicious routes and destinations, and sinkholing traffic so it doesn't engage with these threats.
As a single user, you would be the consumer of the services from the above organisations or service providers (eg using one of their apps), ISPs (eg with a single IP address and a home router), etc and you wouldn't need to worry about it because they are managing those risks for themselves and on behalf of their customers, using a similar existing services and now perhaps the Spamhaus service too, if the cost works out good for them.
As a single user, your risk management is around your own systems and network. Things like anti-virus, blockers in web browsers, and especially a tool like Pi-hole helps a lot.
As a hypothetical worked example, you could imagine WhatsApp might use the service (no idea if they would, just a scenario). As a service provider they would assess the service and see if it offers any value and cost benefit. They may determine that it will help manage a threat from specific botnets that has been troubling them and causing problems for users, and that the cost is worth it. They would purchase the service from Spamhaus and configure their BGP routers to hook into the service. The service would be kept updated by Spamhaus and sinkhole routes to the botnet and other malicious destinations.
This lets WhatsApp keep users safe. Meanwhile you, as the user of WhatsApp, might decide you don't want to report usage statistics to WhatsApp, so you would be using Pi-hole on your home network to manage that.
Thanks for this. For the moment I'll stick to Pi-hole.
This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.