Re: Filter NTP traffic by packet size?
Dobbins, Roland writes: Operators are using this size-based filtering to effect without breaking the world. As a reality check, with this filtering in place does ntptrace still work? H
Re: question about AS relationship
On Friday, February 21, 2014 08:57:07 AM Song Li wrote: the AS relationship between AS1 and AS2/3 is peer, and AS1 cannot announce routes from AS3 to provider1 by rule. Or even Peer-AS2's routes to Peer-AS3 (and vice versa), in general best practice filtering rules, unless transit is requested. But if AS1 do it, and the realtionship between AS1 and AS3 is invisible to provider1, how can provider1 detect this route leak without knowing the privacy? Provider-1 wouldn't care whether it's a route leak or not. In Provider-1's mind, Peer-AS3 could (suddenly) be a customer of AS1. And since AS1 is a customer of Provider-1, Provider-1 will be happy to move those packets along as it represents more revenue for Provider-1 (more so if traffic is sold on a 95th percentile or volume utilization basis). It is, really, up to AS3 to detect that AS1 has leaked its routes (or paths, to be precise) to Provider-1, and then pick up the phone and scream at AS1 to get that leak fixed plugged. Of course, all of this is a moot point if Provider-1 is a good provider and makes sure they only accept routes and paths from AS3 that AS3 should be sending to Provider-1 in the first place. But as we know, some providers are a bit (actually, very) lazy here. In other words, could the business relationship between AS1 and AS3 be known to provider1/2? Not really (or not that easily, to be specific). With enough time and access to several looking glasses and public route servers, one could infer (to a certain degree of error) business relationships between peering relationships, i.e., whether they relationships are customer, peer or provider. But in your particular case, unless AS3 has a direct connection toward Provider-1/2 (where a route leak would introduce more problems), Provider-1/2 don't really care about whether this is a leak or not from AS1. But again, this whole discussion is mooted if Provider-1/2 do proper background checks and filtering before they turn- up the service for AS1. Mark. signature.asc Description: This is a digitally signed message part.
Atlanta - Patch Cables
In Atlanta doing an install for a client this weekend and it appears that the fiber/ethernet patch cables won't be delivered in time from supplier. Would anyone know of a good resource for patch cables (both fiber and ethernet) in the metro area? Just wondering if there are any other resources for these? Frys? Offlist please. Thank you! Bobby
Re: question about AS relationship
Thanks. I'm doing some research on route leaks, you are a great help to me. Sky li On Friday, February 21, 2014 08:57:07 AM Song Li wrote: the AS relationship between AS1 and AS2/3 is peer, and AS1 cannot announce routes from AS3 to provider1 by rule. Or even Peer-AS2's routes to Peer-AS3 (and vice versa), in general best practice filtering rules, unless transit is requested. But if AS1 do it, and the realtionship between AS1 and AS3 is invisible to provider1, how can provider1 detect this route leak without knowing the privacy? Provider-1 wouldn't care whether it's a route leak or not. In Provider-1's mind, Peer-AS3 could (suddenly) be a customer of AS1. And since AS1 is a customer of Provider-1, Provider-1 will be happy to move those packets along as it represents more revenue for Provider-1 (more so if traffic is sold on a 95th percentile or volume utilization basis). It is, really, up to AS3 to detect that AS1 has leaked its routes (or paths, to be precise) to Provider-1, and then pick up the phone and scream at AS1 to get that leak fixed plugged. Of course, all of this is a moot point if Provider-1 is a good provider and makes sure they only accept routes and paths from AS3 that AS3 should be sending to Provider-1 in the first place. But as we know, some providers are a bit (actually, very) lazy here. In other words, could the business relationship between AS1 and AS3 be known to provider1/2? Not really (or not that easily, to be specific). With enough time and access to several looking glasses and public route servers, one could infer (to a certain degree of error) business relationships between peering relationships, i.e., whether they relationships are customer, peer or provider. But in your particular case, unless AS3 has a direct connection toward Provider-1/2 (where a route leak would introduce more problems), Provider-1/2 don't really care about whether this is a leak or not from AS1. But again, this whole discussion is mooted if Provider-1/2 do proper background checks and filtering before they turn- up the service for AS1. Mark. -- Song Li Room 4-204, FIT Building, Network Security, Department of Electronic Engineering, Tsinghua University, Beijing 100084, China Tel:( +86) 010-62446440 E-mail: refresh.ls...@gmail.com
Re: comcast business service
Biggest unknown at this point is your upstream SNR. If there is noise ingress somewhere in the plant, then your upstream could be having all kinds of issues. Robert On Fri, 21 Feb 2014 05:23:07 -0500 shawn wilson ag4ve...@gmail.com wrote: Works: Downstream Channel Downstream Frequency52500 Hz56100 Hz56700 Hz57300 Hz57900 Hz Lock StatusLockedLockedLockedLockedLocked Modulation256 QAM256 QAM256 QAM256 QAM256 QAM Symbol Rate5.360537 Msym/sec5.360537 Msym/sec5.360537 Msym/sec5.360537 Msym/sec5.360537 Msym/sec Downstream Power 2.2 dBmV 3.8 dBmV 3.0 dBmV 2.9 dBmV 2.9 dBmV SNR41.2 dBmV40.8 dBmV40.5 dBmV40.9 dBmV41.0 dBmV Upstream Channel Upstream Frequency3600 Hz2940 Hz2280 Hz0 Hz Lock StatusLockedLockedLockedNot Locked ModulationATDMAATDMAATDMAUnknown Symbol Rate5120 sym/sec5120 sym/sec5120 sym/sec0 sym/sec Upstream Power46.2 dBmV46.2 dBmV46.2 dBmV0 dBmV --- 8.8.8.8 ping statistics --- 10 packets transmitted, 10 received, 0% packet loss, time 9013ms rtt min/avg/max/mdev = 23.066/27.049/35.627/4.825 ms Not working: Downstream Channel Downstream Frequency52500 Hz56100 Hz56700 Hz57300 Hz57900 Hz Lock StatusLockedLockedLockedLockedLocked Modulation256 QAM256 QAM256 QAM256 QAM256 QAM Symbol Rate5.360537 Msym/sec5.360537 Msym/sec5.360537 Msym/sec5.360537 Msym/sec5.360537 Msym/sec Downstream Power 2.2 dBmV 3.8 dBmV 2.9 dBmV 2.8 dBmV 2.9 dBmV SNR41.4 dBmV40.8 dBmV40.4 dBmV41.0 dBmV41.3 dBmV Upstream Channel Upstream Frequency3600 Hz2940 Hz2280 Hz0 Hz Lock StatusLockedLockedLockedNot Locked ModulationATDMAATDMAATDMAUnknown Symbol Rate5120 sym/sec5120 sym/sec5120 sym/sec0 sym/sec Upstream Power46.5 dBmV46.5 dBmV46.5 dBmV0 dBmV --- 8.8.8.8 ping statistics --- 233 packets transmitted, 232 received, 0% packet loss, time 232884ms rtt min/avg/max/mdev = 23.431/1918.702/8758.161/2017.033 ms, pipe 9 I'm not seeing any big difference in SNR (and only slight differences in upstream power) and everything else seems to be the same. Though, since db is logarithmic, .3 might be enough to matter? On Thu, Feb 20, 2014 at 4:14 PM, Dan Shoop sh...@iwiring.net wrote: On Feb 20, 2014, at 4:08 AM, shawn wilson ag4ve...@gmail.com wrote: A while ago I got Comcast's business service. Semi-idle connections are get dropped (I haven't really diagnosed this - I just no that it isn't the client or server but some network in between). However the second and most obvious issue is that intermittently, the service will grind to a halt: --- 8.8.8.8 ping statistics --- 37 packets transmitted, 34 received, 8% packet loss, time 36263ms rtt min/avg/max/mdev = 398.821/5989.160/14407.055/3808.068 ms, pipe 15 After a modem reboot, it goes normal: --- 8.8.8.8 ping statistics --- 4 packets transmitted, 4 received, 0% packet loss, time 3003ms rtt min/avg/max/mdev = 23.181/23.920/24.298/0.474 ms This seems to happen about once or twice a day. I can't attribute it to any type of traffic or number of connections. All of the rest of the network equipment is the same and the behavior persists when a computer is plugged directly into the modem. I called Comcast and they said they didn't see anything even when I was experiencing ridiculous ping times. I tend to think it's an issue with the 'modem' but I'm not sure what the issue might be or how to reproduce it when asked to if I tell them to look at it. I’ve seen this happen before with various cable ISPs. I’d concur with the poster suggesting intermittent noise on the cable segment as a likely culprit. Also if you have a cable modem that binds multiple channels for higher bandwidth this can also be problematic, especially with the noise. Signals will look good to the NOC but it’s not the signal “level that’s the issue it’s the signal to noise level. Noise has to be measured locally and techs don’t always check SNL. Also check to see if the packets aren’t actually being dropped but just taking longer than ping is looking for. Also check for out of sequence packets returned. These can indicate flapping of a bonded circuit or the bonded circuit experiencing noise. Try seeing if you disconnect everything and get a straight run to the demarc, with a know and tested out good cable, if the problem doesn’t ever occur. This could indicate noise on the cable in your premise. But I’ve experienced this same problem with noise coming through the demarc. I’ve also seen levels too hot beyond the demarc causing similar problems too. HTH. -d - Dan Shoop sh...@iwiring.net 1-646-402-5293 (GoogleVoice)
out of band management gear
Hi folks, I wonder if anyone has good experiences to share with out-of-band hardware? I'm looking for a good OOB hardware vendor. I need to manage my routers/switches/firewalls in a datacenter located overseas, and I'm looking to setup a good serial console server via an OOB link. I've been looking at Lantronix, OpenGear, Raritan...but they all seem to have the same basic features. I'm having trouble really differentiating them. I'm interested in analog modem, cellular options for my OOB link. Or even a secondary internet circuit either wired or wifi if the DC has that option available. Any good suggestions or experiences with a current OOB solution out there? What are you doing for your OOB management? thanks,Hank
Networking folk in the San Diego area...
NANOGers - Just a reminder that there is a ARIN+NANOG on the Road session taking place in San Diego next week; the day long program has NANOG and ARIN speakers and is free but advance registration is recommended. If you know anyone who might benefit from attending such an event, please bring it to their attention! For more information, see Betty's announcement here: http://mailman.nanog.org/pipermail/nanog-announce/2014-February/000215.html Thanks! /John John Curran President and CEO ARIN
Re: level3_bx4-montrealak.net consistently dropping 50% of the packets
On 02/20/2014 10:08 AM, Nick Cameo wrote: Hello Everyone, According to mtr command we are consistently seeing level3_bx4-montrealak.net dropping 30-50% of packets. Our ISP is Bell Canada. Any ideas on how to get this resolved are greatly appreciated. HOST: victoriaLoss% Snt Last Avg Best Wrst StDev 1.|-- 192.168.2.10.0%100.5 0.8 0.4 1.6 0.5 2.|-- lns2-montrealak_lo0_LNS.n 0.0%106.7 7.6 6.7 8.8 0.7 3.|-- agg1-montrealak_GE0-2-2_1 0.0%106.4 6.3 5.4 7.6 0.6 4.|-- bx4-montrealak_so-0-0-0.n 0.0%106.0 5.8 4.9 7.0 0.7 5.|-- level3_bx4-montrealak.net 50.0%106.5 6.7 5.7 7.9 0.8 6.|-- ae-11-11.car1.Montreal2.L 0.0%10 92.2 91.7 91.0 92.8 0.7 7.|-- ae-5-5.ebr2.NewYork1.Leve 0.0%10 90.9 92.0 90.9 92.7 0.6 Kind Regards, Nick. I you do not see as high or higher packet loss reported at the hops after, all you are seeing is control plane filtering / rate limiting on that router. -- -James
Re: level3_bx4-montrealak.net consistently dropping 50% of the packets
Thank you all for clarifying. Really appreciate it.
Re: out of band management gear
We have both lantronix and opengear hardware and use the og brand almost exclusively now. Good price, extremely reliable. We have about 200 of them. On Feb 21, 2014 9:41 AM, Hank Disuko gourmetci...@hotmail.com wrote: Hi folks, I wonder if anyone has good experiences to share with out-of-band hardware? I'm looking for a good OOB hardware vendor. I need to manage my routers/switches/firewalls in a datacenter located overseas, and I'm looking to setup a good serial console server via an OOB link. I've been looking at Lantronix, OpenGear, Raritan...but they all seem to have the same basic features. I'm having trouble really differentiating them. I'm interested in analog modem, cellular options for my OOB link. Or even a secondary internet circuit either wired or wifi if the DC has that option available. Any good suggestions or experiences with a current OOB solution out there? What are you doing for your OOB management? thanks,Hank
Re: comcast business service
On Fri, Feb 21, 2014 at 5:23 AM, shawn wilson ag4ve...@gmail.com wrote: I'm not seeing any big difference in SNR (and only slight differences in upstream power) and everything else seems to be the same. Though, since db is logarithmic, .3 might be enough to matter? Do you also receive an _analog_ television signal from Comcast? How's the picture? Any ghosting, blurring or white noise? Any difference between working times and non-working times for your Internet service? Any difference if you connect directly to their entry cable without allowing it to touch the cable in your facility? Regards, Bill Herrin -- William D. Herrin her...@dirtside.com b...@herrin.us 3005 Crane Dr. .. Web: http://bill.herrin.us/ Falls Church, VA 22042-3004
Re: out of band management gear
Using open gear exclusively now...no real issues with it. Sent from my iPad On Feb 21, 2014, at 6:39 AM, Hank Disuko gourmetci...@hotmail.com wrote: Hi folks, I wonder if anyone has good experiences to share with out-of-band hardware? I'm looking for a good OOB hardware vendor. I need to manage my routers/switches/firewalls in a datacenter located overseas, and I'm looking to setup a good serial console server via an OOB link. I've been looking at Lantronix, OpenGear, Raritan...but they all seem to have the same basic features. I'm having trouble really differentiating them. I'm interested in analog modem, cellular options for my OOB link. Or even a secondary internet circuit either wired or wifi if the DC has that option available. Any good suggestions or experiences with a current OOB solution out there? What are you doing for your OOB management? thanks,Hank
Re: out of band management gear
Same here, dozens of opengear devices deployed, about half with cellular, only issue we ever had 1 DOA (not totally dead, but behaving really badly) unit and they sent an overnight replacement since we were on the road visiting a remote site. On Fri, Feb 21, 2014 at 10:25 AM, Kenneth McRae kenneth.mc...@me.comwrote: Using open gear exclusively now...no real issues with it. Sent from my iPad On Feb 21, 2014, at 6:39 AM, Hank Disuko gourmetci...@hotmail.com wrote: Hi folks, I wonder if anyone has good experiences to share with out-of-band hardware? I'm looking for a good OOB hardware vendor. I need to manage my routers/switches/firewalls in a datacenter located overseas, and I'm looking to setup a good serial console server via an OOB link. I've been looking at Lantronix, OpenGear, Raritan...but they all seem to have the same basic features. I'm having trouble really differentiating them. I'm interested in analog modem, cellular options for my OOB link. Or even a secondary internet circuit either wired or wifi if the DC has that option available. Any good suggestions or experiences with a current OOB solution out there? What are you doing for your OOB management? thanks,Hank
Re: VMware Training
On 02/19/2014 01:14 PM, Phil Gardner wrote: Not sure if this list is the best place, but it is probably the only list that I'm on that won't give me a bunch of grief about the chosen technology. I looked at VMware's site, and there are a ton of options. I'm wondering if anyone has some basic suggestions or experiences. I'm a Linux admin by trade (RH based), with ok networking ability. I'm sufficiently versed in deploying scripted ESXi (including 5.x) installations for a specific environment, including vswitches/SAN config (but only with NFS datastores backed by a NetApp, unfortunately, no blockbased stores). I'd like to get experience deploying VCenter clusters, down to DRS/HA config, other block based storage, and anything else a large environment needs. Thoughts or experiences? Thanks for the responses everyone. I will be petitioning my manager for the vShpere: Install, Configure, Manage v5.5 course. My homelab currently consists of a custom dual opteron box with lots of disk, an HP P2000, and a massive CoRAID array. Looks like I'll have to scrounge up a couple other hosts for ESXi since my custom system is running CentOS, and ESXi under KVM still looks like a no-go. -- _ Phil Gardner PGP Key ID 0xFECC890C OTR Fingerprint 6707E9B8 BD6062D3 5010FE8B 36D614E3 D2F80538
Re: VMware Training
On Fri, Feb 21, 2014 at 7:37 PM, Phil Gardner phil.gardne...@gmail.comwrote: On 02/19/2014 01:14 PM, Phil Gardner wrote: Not sure if this list is the best place, but it is probably the only list that I'm on that won't give me a bunch of grief about the chosen technology. I looked at VMware's site, and there are a ton of options. I'm wondering if anyone has some basic suggestions or experiences. I'm a Linux admin by trade (RH based), with ok networking ability. I'm sufficiently versed in deploying scripted ESXi (including 5.x) installations for a specific environment, including vswitches/SAN config (but only with NFS datastores backed by a NetApp, unfortunately, no blockbased stores). I'd like to get experience deploying VCenter clusters, down to DRS/HA config, other block based storage, and anything else a large environment needs. Thoughts or experiences? Thanks for the responses everyone. I will be petitioning my manager for the vShpere: Install, Configure, Manage v5.5 course. As a note to this, if you get it approved, make sure that the trainer has (a lot of) real life experience implementing vSphere. It makes a big difference when you run into trouble with the labs or when you have questions that are related to best practices. Eugeniu
Weekly Routing Table Report
This is an automated weekly mailing describing the state of the Internet Routing Table as seen from APNIC's router in Japan. The posting is sent to APOPS, NANOG, AfNOG, AusNOG, SANOG, PacNOG, LacNOG, TRNOG, CaribNOG and the RIPE Routing Working Group. Daily listings are sent to bgp-st...@lists.apnic.net For historical data, please see http://thyme.rand.apnic.net. If you have any comments please contact Philip Smith pfsi...@gmail.com. Routing Table Report 04:00 +10GMT Sat 22 Feb, 2014 Report Website: http://thyme.rand.apnic.net Detailed Analysis: http://thyme.rand.apnic.net/current/ Analysis Summary BGP routing table entries examined: 483198 Prefixes after maximum aggregation: 191729 Deaggregation factor: 2.52 Unique aggregates announced to Internet: 239336 Total ASes present in the Internet Routing Table: 46226 Prefixes per ASN: 10.45 Origin-only ASes present in the Internet Routing Table: 35611 Origin ASes announcing only one prefix: 16405 Transit ASes present in the Internet Routing Table:6049 Transit-only ASes present in the Internet Routing Table:173 Average AS path length visible in the Internet Routing Table: 4.6 Max AS path length visible: 53 Max AS path prepend of ASN ( 50404) 51 Prefixes from unregistered ASNs in the Routing Table: 1881 Unregistered ASNs in the Routing Table: 488 Number of 32-bit ASNs allocated by the RIRs: 5975 Number of 32-bit ASNs visible in the Routing Table:4566 Prefixes from 32-bit ASNs in the Routing Table: 14720 Number of bogon 32-bit ASNs visible in the Routing Table: 4 Special use prefixes present in the Routing Table:0 Prefixes being announced from unallocated address space:435 Number of addresses announced to Internet: 2657187844 Equivalent to 158 /8s, 97 /16s and 120 /24s Percentage of available address space announced: 71.8 Percentage of allocated address space announced: 71.8 Percentage of available address space allocated: 100.0 Percentage of address space in use by end-sites: 95.8 Total number of prefixes smaller than registry allocations: 168859 APNIC Region Analysis Summary - Prefixes being announced by APNIC Region ASes: 114566 Total APNIC prefixes after maximum aggregation: 34472 APNIC Deaggregation factor:3.32 Prefixes being announced from the APNIC address blocks: 117125 Unique aggregates announced from the APNIC address blocks:49266 APNIC Region origin ASes present in the Internet Routing Table:4889 APNIC Prefixes per ASN: 23.96 APNIC Region origin ASes announcing only one prefix: 1225 APNIC Region transit ASes present in the Internet Routing Table:849 Average APNIC Region AS path length visible:4.6 Max APNIC Region AS path length visible: 37 Number of APNIC region 32-bit ASNs visible in the Routing Table:843 Number of APNIC addresses announced to Internet: 731163776 Equivalent to 43 /8s, 148 /16s and 172 /24s Percentage of available APNIC address space announced: 85.5 APNIC AS Blocks4608-4864, 7467-7722, 9216-10239, 17408-18431 (pre-ERX allocations) 23552-24575, 37888-38911, 45056-46079, 55296-56319, 58368-59391, 63488-63999, 131072-133631 APNIC Address Blocks 1/8, 14/8, 27/8, 36/8, 39/8, 42/8, 43/8, 49/8, 58/8, 59/8, 60/8, 61/8, 101/8, 103/8, 106/8, 110/8, 111/8, 112/8, 113/8, 114/8, 115/8, 116/8, 117/8, 118/8, 119/8, 120/8, 121/8, 122/8, 123/8, 124/8, 125/8, 126/8, 133/8, 150/8, 153/8, 163/8, 171/8, 175/8, 180/8, 182/8, 183/8, 202/8, 203/8, 210/8, 211/8, 218/8, 219/8, 220/8, 221/8, 222/8, 223/8, ARIN Region Analysis Summary Prefixes being announced by ARIN Region ASes:165378 Total ARIN prefixes after maximum aggregation:82750 ARIN Deaggregation factor: 2.00 Prefixes being announced from the ARIN address blocks: 166722 Unique aggregates announced from the ARIN address blocks: 77354 ARIN Region origin ASes present in the Internet Routing Table:16154 ARIN
Re: out of band management gear
Lantronix is pretty solid if it doesn't have issues with your hardware. I have a bunch of older Dell boxes where turning on virtual media makes them stall indefinitely on the boot prompt. Though, for serial only stuff -- it should be pretty good. On 2/22/2014 午前 12:39, Bryan Socha wrote: We have both lantronix and opengear hardware and use the og brand almost exclusively now. Good price, extremely reliable. We have about 200 of them. On Feb 21, 2014 9:41 AM, Hank Disuko gourmetci...@hotmail.com wrote: Hi folks, I wonder if anyone has good experiences to share with out-of-band hardware? I'm looking for a good OOB hardware vendor. I need to manage my routers/switches/firewalls in a datacenter located overseas, and I'm looking to setup a good serial console server via an OOB link. I've been looking at Lantronix, OpenGear, Raritan...but they all seem to have the same basic features. I'm having trouble really differentiating them. I'm interested in analog modem, cellular options for my OOB link. Or even a secondary internet circuit either wired or wifi if the DC has that option available. Any good suggestions or experiences with a current OOB solution out there? What are you doing for your OOB management? thanks,Hank
Akamai
I just want to publicly say hats off to Akamai today. We have seen spikes on our Akamai server before, but nothing like it has been in the last few days with the Canadian hockey live streaming. IOS7 release from Apple spiked it, but today, almost 800 megs of traffic coming off our server currently with the mens US/Canada match up. Tip of the hat to you folks.
Re: Akamai
I would have figured an IX like that would have something there? Even BCNet has some akamai stuff within their network. We are pretty small in the scheme of things and have had Akamai for quite a few years, but this is the biggest event we have ever seen on our server. On 2/21/2014 10:47 AM, Clayton Zekelman wrote: Hats off? They're not even sending the streams through TORIX which seems like a big day FAIL to me. Sent from my iPhone On 2014-02-21, at 1:39 PM, Keith kwo...@citywest.ca wrote: I just want to publicly say hats off to Akamai today. We have seen spikes on our Akamai server before, but nothing like it has been in the last few days with the Canadian hockey live streaming. IOS7 release from Apple spiked it, but today, almost 800 megs of traffic coming off our server currently with the mens US/Canada match up. Tip of the hat to you folks.
Re: Akamai
They have TORIX connections, but they didn't seem to send the stream traffic through them. Sent from my iPhone On 2014-02-21, at 1:56 PM, Keith kwo...@citywest.ca wrote: I would have figured an IX like that would have something there? Even BCNet has some akamai stuff within their network. We are pretty small in the scheme of things and have had Akamai for quite a few years, but this is the biggest event we have ever seen on our server. On 2/21/2014 10:47 AM, Clayton Zekelman wrote: Hats off? They're not even sending the streams through TORIX which seems like a big day FAIL to me. Sent from my iPhone On 2014-02-21, at 1:39 PM, Keith kwo...@citywest.ca wrote: I just want to publicly say hats off to Akamai today. We have seen spikes on our Akamai server before, but nothing like it has been in the last few days with the Canadian hockey live streaming. IOS7 release from Apple spiked it, but today, almost 800 megs of traffic coming off our server currently with the mens US/Canada match up. Tip of the hat to you folks.
Re: out of band management gear
We're really pleased with the Perle IOLAN line. They even have a gigabit port without a $10k price tag. Amazing! It really dumbfounds me why so many vendors are still putting 10/100 Ethernet ports on their OOB management (looking at you OpenGear). Especially a PITA today since many switchports today don't support links speeds less than a gigabit. -richard On Fri, Feb 21, 2014 at 2:39 PM, Hank Disuko gourmetci...@hotmail.comwrote: Hi folks, I wonder if anyone has good experiences to share with out-of-band hardware? I'm looking for a good OOB hardware vendor. I need to manage my routers/switches/firewalls in a datacenter located overseas, and I'm looking to setup a good serial console server via an OOB link. I've been looking at Lantronix, OpenGear, Raritan...but they all seem to have the same basic features. I'm having trouble really differentiating them. I'm interested in analog modem, cellular options for my OOB link. Or even a secondary internet circuit either wired or wifi if the DC has that option available. Any good suggestions or experiences with a current OOB solution out there? What are you doing for your OOB management? thanks,Hank
Re: out of band management gear
OpenGear's newer stuff is Gigabit (SFP even). I've not seen any real switch made in the last decade that has a problem with 100Mb/s connections. Ancient cisco, maybe had issues. thanks, -Randy -- Randy Carpenter Vice President - IT Services First Network Group, Inc. (800)578-6381, Opt. 1 http://www.network1.net http://www.facebook.com/FirstNetworkGroup - Original Message - We're really pleased with the Perle IOLAN line. They even have a gigabit port without a $10k price tag. Amazing! It really dumbfounds me why so many vendors are still putting 10/100 Ethernet ports on their OOB management (looking at you OpenGear). Especially a PITA today since many switchports today don't support links speeds less than a gigabit. -richard On Fri, Feb 21, 2014 at 2:39 PM, Hank Disuko gourmetci...@hotmail.comwrote: Hi folks, I wonder if anyone has good experiences to share with out-of-band hardware? I'm looking for a good OOB hardware vendor. I need to manage my routers/switches/firewalls in a datacenter located overseas, and I'm looking to setup a good serial console server via an OOB link. I've been looking at Lantronix, OpenGear, Raritan...but they all seem to have the same basic features. I'm having trouble really differentiating them. I'm interested in analog modem, cellular options for my OOB link. Or even a secondary internet circuit either wired or wifi if the DC has that option available. Any good suggestions or experiences with a current OOB solution out there? What are you doing for your OOB management? thanks,Hank
Re: Akamai
Everyone, We do have an issue at the TorIX. We have isolated it to a hardware bug impacting our networking and we're working to get it fixed ASAP. It's not likely to be entirely fixed prior to the end of the Winter Olympics. We have a workaround that should allow us to serve more traffic locally again. Apologies. Best, -M (20940) On Fri, Feb 21, 2014 at 2:12 PM, Clayton Zekelman clay...@mnsi.net wrote: They have TORIX connections, but they didn't seem to send the stream traffic through them. Sent from my iPhone On 2014-02-21, at 1:56 PM, Keith kwo...@citywest.ca wrote: I would have figured an IX like that would have something there? Even BCNet has some akamai stuff within their network. We are pretty small in the scheme of things and have had Akamai for quite a few years, but this is the biggest event we have ever seen on our server. On 2/21/2014 10:47 AM, Clayton Zekelman wrote: Hats off? They're not even sending the streams through TORIX which seems like a big day FAIL to me. Sent from my iPhone On 2014-02-21, at 1:39 PM, Keith kwo...@citywest.ca wrote: I just want to publicly say hats off to Akamai today. We have seen spikes on our Akamai server before, but nothing like it has been in the last few days with the Canadian hockey live streaming. IOS7 release from Apple spiked it, but today, almost 800 megs of traffic coming off our server currently with the mens US/Canada match up. Tip of the hat to you folks.
Re: out of band management gear
On 2/21/2014 2:27 PM, Randy Carpenter wrote: OpenGear's newer stuff is Gigabit (SFP even). I've not seen any real switch made in the last decade that has a problem with 100Mb/s connections. Ancient cisco, maybe had issues. There's several devices that are 1/10Gb and do NOT support 10/100Mb. Cisco Nexus 5000/5500s, Brocade VDX series stuff, etc. In our new data center, the only 10/100 ports are a couple blades in our Nexus 7018s put there just to provide these lower-speed connections to devices that needed them. Expensive options in a fully loaded chassis just for a couple lower-end devices that could easily justify a couple dollars more to get a Gig PHY instead of the older 100Mb PHY chip. Jeremy TheBrez Bresley
Re: Filter NTP traffic by packet size?
On Thu, Feb 20, 2014 at 2:12 PM, Damian Menscher dam...@google.com wrote: On Thu, Feb 20, 2014 at 1:03 PM, Jared Mauch ja...@puck.nether.net wrote: On Feb 20, 2014, at 3:51 PM, John Weekes j...@nuclearfallout.net wrote: On 2/20/2014 12:41 PM, Edward Roels wrote: Curious if anyone else thinks filtering out NTP packets above a certain packet size is a good or terrible idea. From my brief testing it seems 90 bytes for IPv4 and 110 bytes for IPv6 are typical for a client to successfully synchronize to an NTP server. If I query a server for it's list of peers (ntpq -np ip) I've seen packets as large as 522 bytes in a single packet in response to a 54 byte query. I'll admit I'm not 100% clear of the what is happening protocol-wise when I perform this query. I see there are multiple packets back forth between me and the server depending on the number of peers it has? If your equipment supports this, and you're seeing reflected NTP attacks, then it is an effective stopgap to block nearly all of the inbound attack traffic to affected hosts. Some still comes through from NTP servers running on nonstandard ports, but not much. Also, don't forget to ask those sending the attack traffic to trace where the spoofed packets ingressed their networks. Standard IPv4 NTP response packets are 76 bytes (plus any link-level headers), based on my testing. I have been internally filtering packets of other sizes against attack targets for some time now with no ill-effect. You can filter packets that are 440 bytes in size and it will do a lot to help the problem, but make sure you conjoin these with protocol udp and port=123 rules to avoid collateral damage. Preferably just source-port 123. You may also want to look at filtering UDP/80 outright as well, as that is commonly used as an I'm going to attack port 80 by attackers that don't quite understand the difference between UDP and TCP. Please don't filter UDP/80. It's used by QUIC ( http://en.wikipedia.org/wiki/QUIC). Damian The folks at QUIC have been advised to not use UDP for a new protocol, and they would be very well advised to not use UDP:80 since that is a well known target port used in the DDoS reflection attacks. As Jared noted, UDP:80 is a cesspool today. Attempting to use it for legit traffic is not smart. CB
The Cidr Report
This report has been generated at Fri Feb 21 21:13:38 2014 AEST. The report analyses the BGP Routing Table of AS2.0 router and generates a report on aggregation potential within the table. Check http://www.cidr-report.org/2.0 for a current version of this report. Recent Table History Date PrefixesCIDR Agg 14-02-14493241 277561 15-02-14494081 277380 16-02-14493711 277185 17-02-14493631 277754 18-02-14494239 277842 19-02-14494217 276504 20-02-14490331 276730 21-02-14490117 276773 AS Summary 46383 Number of ASes in routing system 19017 Number of ASes announcing only one prefix 3478 Largest number of prefixes announced by an AS AS28573: NET Serviços de Comunicação S.A. 119624960 Largest address span announced by an AS (/32s) AS4134 : CHINANET-BACKBONE No.31,Jin-rong Street Aggregation Summary The algorithm used in this report proposes aggregation only when there is a precise match using the AS path, so as to preserve traffic transit policies. Aggregation is also proposed across non-advertised address space ('holes'). --- 21Feb14 --- ASnumNetsNow NetsAggr NetGain % Gain Description Table 490110 276528 21358243.6% All ASes AS28573 3478 105 337397.0% NET Serviços de Comunicação S.A. AS6389 3023 56 296798.1% BELLSOUTH-NET-BLK - BellSouth.net Inc. AS17974 2751 185 256693.3% TELKOMNET-AS2-AP PT Telekomunikasi Indonesia AS4766 2983 900 208369.8% KIXS-AS-KR Korea Telecom AS22773 2326 260 206688.8% ASN-CXA-ALL-CCI-22773-RDC - Cox Communications Inc. AS18881 1901 25 187698.7% Global Village Telecom AS1785 2164 411 175381.0% AS-PAETEC-NET - PaeTec Communications, Inc. AS10620 2749 1189 156056.7% Telmex Colombia S.A. AS36998 1630 97 153394.0% SDN-MOBITEL AS18566 2047 565 148272.4% MEGAPATH5-US - MegaPath Corporation AS4323 2929 1515 141448.3% TWTC - tw telecom holdings, inc. AS7303 1748 449 129974.3% Telecom Argentina S.A. AS4755 1837 622 121566.1% TATACOMM-AS TATA Communications formerly VSNL is Leading ISP AS7552 1256 158 109887.4% VIETEL-AS-AP Viettel Corporation AS7545 2190 1123 106748.7% TPG-INTERNET-AP TPG Telecom Limited AS22561 1276 227 104982.2% AS22561 - CenturyTel Internet Holdings, Inc. AS9829 1505 656 84956.4% BSNL-NIB National Internet Backbone AS18101 993 187 80681.2% RELIANCE-COMMUNICATIONS-IN Reliance Communications Ltd.DAKC MUMBAI AS4808 1169 393 77666.4% CHINA169-BJ CNCGROUP IP network China169 Beijing Province Network AS35908 870 105 76587.9% VPLSNET - Krypt Technologies AS24560 1106 373 73366.3% AIRTELBROADBAND-AS-AP Bharti Airtel Ltd., Telemedia Services AS701 1496 767 72948.7% UUNET - MCI Communications Services, Inc. d/b/a Verizon Business AS8151 1388 660 72852.4% Uninet S.A. de C.V. AS6983 1300 581 71955.3% ITCDELTA - ITC^Deltacom AS4788 974 259 71573.4% TMNET-AS-AP TM Net, Internet Service Provider AS7738 845 147 69882.6% Telemar Norte Leste S.A. AS855751 57 69492.4% CANET-ASN-4 - Bell Aliant Regional Communications, Inc. AS4780 1029 374 65563.7% SEEDNET Digital United Inc. AS6147 766 113 65385.2% Telefonica del Peru S.A.A. AS9808 939 303 63667.7% CMNET-GD Guangdong Mobile
BGP Update Report
BGP Update Report Interval: 13-Feb-14 -to- 20-Feb-14 (7 days) Observation Point: BGP Peering with AS131072 TOP 20 Unstable Origin AS Rank ASNUpds % Upds/PfxAS-Name 1 - AS731569280 3.1% 989.7 -- COLOMBIA TELECOMUNICACIONES S.A. ESP 2 - AS60349 59921 2.7% 921.9 -- PBL-KIEV-AS Partners. Business Law Ltd. 3 - AS34875 58129 2.6% 457.7 -- YANFES OJSC Rostelecom 4 - AS982944275 2.0% 53.9 -- BSNL-NIB National Internet Backbone 5 - AS28573 32480 1.5% 9.0 -- NET Serviços de Comunicação S.A. 6 - AS10620 29235 1.3% 11.1 -- Telmex Colombia S.A. 7 - AS840228625 1.3% 35.3 -- CORBINA-AS OJSC Vimpelcom 8 - AS41691 21301 1.0%1183.4 -- SUMTEL-AS-RIPE Summa Telecom LLC 9 - AS13118 20725 0.9% 592.1 -- ASN-YARTELECOM OJSC Rostelecom 10 - AS477518183 0.8%1136.4 -- GLOBE-TELECOM-AS Globe Telecoms 11 - AS35181 17214 0.8%1434.5 -- PWC Autonomous System Number for Public WareHouse Company 12 - AS50710 15128 0.7% 67.2 -- EARTHLINK-AS EarthLink Ltd. CommunicationsInternet Services 13 - AS755214792 0.7% 12.3 -- VIETEL-AS-AP Viettel Corporation 14 - AS815114149 0.6% 15.2 -- Uninet S.A. de C.V. 15 - AS702912215 0.6% 2.7 -- WINDSTREAM - Windstream Communications Inc 16 - AS912911871 0.5% 232.8 -- KE-NET2000 17 - AS45899 11853 0.5% 34.6 -- VNPT-AS-VN VNPT Corp 18 - AS36948 11742 0.5%5871.0 -- KENIC 19 - AS27738 11645 0.5% 20.2 -- Ecuadortelecom S.A. 20 - AS11976 11552 0.5% 550.1 -- FIDN - Fidelity Communication International Inc. TOP 20 Unstable Origin AS (Updates per announced prefix) Rank ASNUpds % Upds/PfxAS-Name 1 - AS6459 7616 0.3%7616.0 -- TRANSBEAM - I-2000, Inc. 2 - AS544657038 0.3%7038.0 -- QPM-AS-1 - QuickPlay Media Inc. 3 - AS36948 11742 0.5%5871.0 -- KENIC 4 - AS165613335 0.1%3335.0 -- ARIBANETWORK Ariba Inc. Autonomous System 5 - AS364013236 0.1%3236.0 -- SHM-5224 - Information Management 6 - AS384913828 0.2%1914.0 -- BSP-AS-AP Bangko Sentral ng Pilipinas, Manila, Philippines 7 - AS14287 10491 0.5%1748.5 -- TRIAD-TELECOM - Triad Telecom, Inc. 8 - AS35181 17214 0.8%1434.5 -- PWC Autonomous System Number for Public WareHouse Company 9 - AS176588029 0.4%1338.2 -- PRIMANET-AS PrimaNet - PT. Khasanah Timur Indonesia 10 - AS433521220 0.1%1220.0 -- TELETEK-CLOUD Teletek Bulut Bilisim ve Iletisim Hizmetleri A.S. 11 - AS41691 21301 1.0%1183.4 -- SUMTEL-AS-RIPE Summa Telecom LLC 12 - AS477518183 0.8%1136.4 -- GLOBE-TELECOM-AS Globe Telecoms 13 - AS510751005 0.1%1005.0 -- WOLFF-PL WYDAWNICTWO MULTIMEDIALNE KOWALEWSKI I WOLFF SPOLKA CYWILNA PIOTR GLADKI KRZYSZTOF KOWALEWSKI MACIEJ MANSKI 14 - AS731569280 3.1% 989.7 -- COLOMBIA TELECOMUNICACIONES S.A. ESP 15 - AS60349 59921 2.7% 921.9 -- PBL-KIEV-AS Partners. Business Law Ltd. 16 - AS39575 888 0.0% 888.0 -- SIBINTEK-SAMARA-AS Siberian Internet Company 17 - AS57201 847 0.0% 847.0 -- EDF-AS Estonian Defence Forces 18 - AS44153 790 0.0% 790.0 -- SHTE Shirak Technologies LLC 19 - AS3144 2352 0.1% 784.0 -- PINNACLE - Pinnacle On-Line 20 - AS62431 746 0.0% 746.0 -- NCSC-IE-AS National Cyber Security Centre TOP 20 Unstable Prefixes Rank Prefix Upds % Origin AS -- AS Name 1 - 89.221.206.0/24 21116 0.9% AS41691 -- SUMTEL-AS-RIPE Summa Telecom LLC 2 - 109.161.64.0/20 20649 0.9% AS13118 -- ASN-YARTELECOM OJSC Rostelecom 5 - 195.202.74.0/248788 0.4% AS9129 -- KE-NET2000 6 - 85.239.28.0/24 8702 0.4% AS35181 -- PWC Autonomous System Number for Public WareHouse Company 7 - 85.239.24.0/24 8379 0.3% AS35181 -- PWC Autonomous System Number for Public WareHouse Company 8 - 192.58.232.0/248161 0.3% AS6629 -- NOAA-AS - NOAA 9 - 113.11.132.0/248001 0.3% AS17658 -- PRIMANET-AS PrimaNet - PT. Khasanah Timur Indonesia 10 - 103.11.61.0/24 7791 0.3% AS9387 -- AUGERE-PK AUGERE-Pakistan 11 - 205.247.12.0/247616 0.3% AS6459 -- TRANSBEAM - I-2000, Inc. 12 - 206.152.15.0/247038 0.3% AS54465 -- QPM-AS-1 - QuickPlay Media Inc. 13 - 67.210.190.0/236841 0.3% AS11976 -- FIDN - Fidelity Communication International Inc. 14 - 200.23.126.0/246680 0.3% AS8151 -- Uninet S.A. de C.V. 15 - 216.109.107.0/24 6671 0.3% AS11486 -- COLO-PREM-VZB - Verizon Online LLC AS16561 -- ARIBANETWORK Ariba Inc. Autonomous System 16 - 198.32.67.0/24 6309
The somewhat illegal fix for NTP attacks
Hi The following would probably be illegal so do not actually do this. But what if... there are just 4 billion IPv4 addresses. Scanning that address-space for open NTP is trivially done in a few hours. Abusing these servers for reflection attack is as trivial, hence the problem. How can we get the responsible parties to fix their NTP servers? Answer: DDoS them. With their own service. Or it could be a DDoS defense. As a victim of an ongoing NTP reflection attack, you know exactly the IP-addresses of the vulnerable NTP servers used to attack you. Make them stop by sending back forged NTP packets, so they use up their available bandwidth to DDoS each other instead of you. This could even be automated. If you let them attack their next-hop as discovered by traceroute, it might not even be illegal or harmful. They will only bring down their own link, do no more harm to the internet at large and they can fix it by stopping the NTP service. If they are part of an ongoing DDoS attack it is just self defence to shut them down in the least harmful way possible. Regards, Baldur
Re: The somewhat illegal fix for NTP attacks
On 21 February 2014 14:08, Baldur Norddahl baldur.nordd...@gmail.comwrote: Hi The following would probably be illegal so do not actually do this. But what if... there are just 4 billion IPv4 addresses. Scanning that address-space for open NTP is trivially done in a few hours. Abusing these servers for reflection attack is as trivial, hence the problem. How can we get the responsible parties to fix their NTP servers? Answer: DDoS them. With their own service. /me gets some popcorn and waits for the show. -- Landon Stewart landonstew...@gmail.com
Re: Filter NTP traffic by packet size?
On Feb 22, 2014 5:30 AM, Damian Menscher dam...@google.com wrote: On Fri, Feb 21, 2014 at 1:22 PM, Cb B cb.li...@gmail.com wrote: On Thu, Feb 20, 2014 at 2:12 PM, Damian Menscher dam...@google.com wrote: On Thu, Feb 20, 2014 at 1:03 PM, Jared Mauch ja...@puck.nether.net wrote: You may also want to look at filtering UDP/80 outright as well, as that is commonly used as an I'm going to attack port 80 by attackers that don't quite understand the difference between UDP and TCP. Please don't filter UDP/80. It's used by QUIC ( http://en.wikipedia.org/wiki/QUIC). The folks at QUIC have been advised to not use UDP for a new protocol, and they would be very well advised to not use UDP:80 since that is a well known target port used in the DDoS reflection attacks. Please suggest which protocol has less blocking on the internet today (keeping in mind the full end-to-end stack of CPE, various ISPs, country-level proxies, backbone providers, etc). Damian Tcp. But the actual answer is , if you want a new transport protocol, create a new transport protocol with a new protocol number. Overloading the clearly polluted UDP pool will have problems. Happy eyeballs negotiation may be required for L4. QUIC can do what it wants. Like anyone else, they pay their money and take their chances. But, the data point that UDP is polluted is clearly documented with several folks on this list suggesting tactical fixes that involve limiting UDP, especially udp:80
Re: out of band management gear
On (2014-02-21 15:17 -0600), Jeremy Bresley wrote: connections to devices that needed them. Expensive options in a fully loaded chassis just for a couple lower-end devices that could easily justify a couple dollars more to get a Gig PHY instead of the older 100Mb PHY chip. There is no technical reason why subrateSFP and subrateSFP+ couldn't exist, which is 1GE or 10GE towards host and offers 10/100/1000 towards client. Obviously the optic would be significantly more expensive than normal optic, as it needs to do lot more, including buffering. But if 1GE optic costs 10EUR, this subrate optic could easily cost 100EUR. Just needs some optic vendor to figure out if there is sufficient market for it. Randy suggested it is untypical these days to find kit which does not understand multirate, my experience is the opposite, it's getting rarer to find multirate support. Even in cases when they do it, it's often supposedly mode in SGMII where it can be instructed to send same bit 10 times, allowing cheap 1/10th rate. -- ++ytti
Re: out of band management gear
Thinklogical Sentinel is great. CLI access via ssh, web access, modem for dial in and two ethernet ports for redundant network access, supports up to 32 devices and is dc/ac http://www.thinklogical.com/sentinel
LAX china unicom submarine cable cut?
Well, ain't that great day to finish the week. Some one today me a submarine cable is cut. Most of the networks in LAX that has peering with CU looks congested to hell now. Anyone else here seeing the same thing?
Re: LAX china unicom submarine cable cut?
What do you see? Packet loss? Latency? Mehmet On Feb 22, 2014, at 4:14, Yucong Sun sunyuc...@gmail.com wrote: Well, ain't that great day to finish the week. Some one today me a submarine cable is cut. Most of the networks in LAX that has peering with CU looks congested to hell now. Anyone else here seeing the same thing?
Re: Filter NTP traffic by packet size?
Isn't UDP 80 still technically registered to HTTP? ~Seth
Gmail throttling?
Hi, some of our users have forwarded the email to Gmail and Gmail now are complaining that this is bulk mail and delaying it. We have SPF, DKIM, DMARC, even SRS to try these things do not happen :( Anyone know if there is any new policy in Gmail about that? Above all, the message refers to a non-existent URI! RSET 250 2.1.5 Flushed v69si8136768yhd.33 - gsmtp x...@gmail.com... Using cached ESMTP connection to gmail-smtp-in.l.google.com. via esmtp... MAIL From:x...@example.com SIZE=150374 BODY=8BITMIME 250 2.1.0 OK v69si8136768yhd.33 - gsmtp RCPT To:x...@gmail.com DATA 250 2.1.5 OK v69si8136768yhd.33 - gsmtp 354 Go ahead v69si8136768yhd.33 - gsmtp . 421-4.7.0 [163.10.4.2 15] Our system has detected an unusual rate of 421-4.7.0 unsolicited mail originating from your IP address. To protect our 421-4.7.0 users from spam, mail sent from your IP address has been temporarily 421-4.7.0 rate limited. Please visit http://www.google.com/mail/help/bulk_mail. 421 4.7.0 html to review our Bulk Email Senders Guidelines. v69si8136768yhd.33 - gsmtp QUIT Eduardo.- -- Eduardo A. Suarez Facultad de Ciencias Astronómicas y Geofísicas - UNLP FCAG: (0221)-4236593 int. 172/Cel: (0221)-15-4557542/Casa: (0221)-4526589 This message was sent using IMP, the Internet Messaging Program.
NetSol AAAA glue
If anyone with ability to fix this is reading this - contact me offlist and I'll owe you... I'm trying to change an host (name server) address. I've been emailing ipv6...@networksolutions.com back and forth for several days. After fighting through 'authentication' (which btw I *didn't* do several years ago to get the added) they say they have 'completed' it. a.gtld for example still has the old . I've just got a gut feeling that they don't understand what I'm asking. I'm actually getting a bit scared they are going to break my domain. Aside from someone at netsol seeing this - does anyone have any advice other than get off netsol (which I'm considering). Thanks. -- Brandon Applegate - CCIE 10273 PGP Key fingerprint: 830B 4802 1DD4 F4F9 63FE B966 C0A7 189E 9EC0 3A74 SH1-0151. This is the serial number, of our orbital gun.
Re: Gmail throttling?
The correct URL should be https://support.google.com/mail/answer/81126 On Fri, Feb 21, 2014 at 7:58 PM, Eduardo A. Suárez esua...@fcaglp.fcaglp.unlp.edu.ar wrote: Hi, some of our users have forwarded the email to Gmail and Gmail now are complaining that this is bulk mail and delaying it. We have SPF, DKIM, DMARC, even SRS to try these things do not happen :( Anyone know if there is any new policy in Gmail about that? Above all, the message refers to a non-existent URI! RSET 250 2.1.5 Flushed v69si8136768yhd.33 - gsmtp x...@gmail.com... Using cached ESMTP connection to gmail-smtp-in.l.google.com. via esmtp... MAIL From:x...@example.com SIZE=150374 BODY=8BITMIME 250 2.1.0 OK v69si8136768yhd.33 - gsmtp RCPT To:x...@gmail.com DATA 250 2.1.5 OK v69si8136768yhd.33 - gsmtp 354 Go ahead v69si8136768yhd.33 - gsmtp . 421-4.7.0 [163.10.4.2 15] Our system has detected an unusual rate of 421-4.7.0 unsolicited mail originating from your IP address. To protect our 421-4.7.0 users from spam, mail sent from your IP address has been temporarily 421-4.7.0 rate limited. Please visit http://www.google.com/mail/ help/bulk_mail. 421 4.7.0 html to review our Bulk Email Senders Guidelines. v69si8136768yhd.33 - gsmtp QUIT Eduardo.- -- Eduardo A. Suarez Facultad de Ciencias Astronómicas y Geofísicas - UNLP FCAG: (0221)-4236593 int. 172/Cel: (0221)-15-4557542/Casa: (0221)-4526589 This message was sent using IMP, the Internet Messaging Program.
Re: NetSol AAAA glue
It is quicker and easier to transfer your domain to another registrar, even though you will have to call them up and speak to a person to do it. On Fri, Feb 21, 2014 at 08:01:06PM -0500, Brandon Applegate wrote: If anyone with ability to fix this is reading this - contact me offlist and I'll owe you... I'm trying to change an host (name server) address. I've been emailing ipv6...@networksolutions.com back and forth for several days. After fighting through 'authentication' (which btw I *didn't* do several years ago to get the added) they say they have 'completed' it. a.gtld for example still has the old . I've just got a gut feeling that they don't understand what I'm asking. I'm actually getting a bit scared they are going to break my domain. Aside from someone at netsol seeing this - does anyone have any advice other than get off netsol (which I'm considering).
NANOG 61 - Bellevue - Call For Presentations is open!
NANOG Community- I hope everyone enjoyed NANOG 60, NANOG’s largest attended winter meeting. Fresh off a great meeting, and post our NANOG Icelanta Reception, we are ready start the process for NANOG 61 in Bellevue. NANOG 61 will be NANOG’s 20th year serving the network operator community and helping to make the Internet better. If you have a topic you'd like to speak about, the program committee would love to consider it. Please read http://www.nanog.org/meetings/nanog61/callforpresentations for more information. We will continue with the Monday-Wednesday format, with Tracks on Monday and Wednesday afternoons and Tutorials to be scheduled on Tuesday morning. The program will begin on Monday morning at 10:00AM followed by our popular Newcomers Lunch. The exact schedule layout can be found at http://www.nanog.org/meetings/nanog60/preagenda, please take this into account as you plan travel. If you wish to submit a presentation, please keep these important dates in mind: * Presentation Abstracts and Draft Slides Due: April 7, 2014 * Slides Due: May 5, 2014 * Topic List Posted: April 21, 2014 * Agenda Published: May 12, 2014 Please submit your materials to http://pc.nanog.orghttp://pc.nanog.org/. Looking forward to seeing everyone in Bellevue! Thanks, Greg Dendy Chair, NANOG Program Committee
Re: Gmail throttling?
Auto forwarded mail is like that. Any inbound spam your users receive also gets forwarded. So... On 22-Feb-2014 1:00 AM, Eduardo A. Suárez esua...@fcaglp.fcaglp.unlp.edu.ar wrote: Hi, some of our users have forwarded the email to Gmail and Gmail now are complaining that this is bulk mail and delaying it. We have SPF, DKIM, DMARC, even SRS to try these things do not happen :( Anyone know if there is any new policy in Gmail about that? Above all, the message refers to a non-existent URI! RSET 250 2.1.5 Flushed v69si8136768yhd.33 - gsmtp x...@gmail.com... Using cached ESMTP connection to gmail-smtp-in.l.google.com. via esmtp... MAIL From:x...@example.com SIZE=150374 BODY=8BITMIME 250 2.1.0 OK v69si8136768yhd.33 - gsmtp RCPT To:x...@gmail.com DATA 250 2.1.5 OK v69si8136768yhd.33 - gsmtp 354 Go ahead v69si8136768yhd.33 - gsmtp . 421-4.7.0 [163.10.4.2 15] Our system has detected an unusual rate of 421-4.7.0 unsolicited mail originating from your IP address. To protect our 421-4.7.0 users from spam, mail sent from your IP address has been temporarily 421-4.7.0 rate limited. Please visit http://www.google.com/mail/ help/bulk_mail. 421 4.7.0 html to review our Bulk Email Senders Guidelines. v69si8136768yhd.33 - gsmtp QUIT Eduardo.- -- Eduardo A. Suarez Facultad de Ciencias Astronómicas y Geofísicas - UNLP FCAG: (0221)-4236593 int. 172/Cel: (0221)-15-4557542/Casa: (0221)-4526589 This message was sent using IMP, the Internet Messaging Program.
Re: Filter NTP traffic by packet size?
On (2014-02-21 14:37 -0800), Cb B wrote: QUIC can do what it wants. Like anyone else, they pay their money and take their chances. But, the data point that UDP is polluted is clearly documented with several folks on this list suggesting tactical fixes that involve limiting UDP, especially udp:80 Seth has good point, UDP:80 is HTTP. If we want new L4 protocol which works today, we must first ride on top of UDP, since that will work on lot more people day 1, this will avoid chicken-egg problem (kit won't be fixed,as no one uses new L4, no one uses new L4 as lot of kit drops it) I'm surprised MinimaLT and QUIC have have not put transport area people in high gear towards standardization of new PKI based L4 protocol, I think its elegant solution to many practical reoccurring problem, solution which has become practical only rather recently. -- ++ytti