Re: Selective DNS replies
[EMAIL PROTECTED] ("Eric A. Hall") writes: > Clayton Fiske wrote: > > > [bind question] > > [bind answer] this is nanog, you probably want bind-users[-request]@isc.org.
RE: UUNET instability?
According to Worldcom's spokesperson, a train derailment near Toledo Ohio cut two cables at 8am EDT. http://www.idg.net/ic_852639_1773_1-3921.html Matrix.NET measurements indicate significant network problems began around 10am EDT with a larger blip around noon EDT. http://average.miq.net/ According to Reuters, MSNBC web site was offline for two hours Thursday morning. http://story.news.yahoo.com/news?tmpl=story&u=/nm/20020425/wr_nm/tech_msnbc_outage_dc_1
Odd UUNET BGP announcements for interior netblocks
We periodically see UUNET suddenly leak large numbers of what I can only assume are interior routes, to quite a few peers, and then rapidly withdraw them: +-+--+---+--++ | time| type | prefix| mask | aspath | +-+--+---+--++ | 2002-04-24 03:20:50 | A| 208.254.255.0 | 24 | 1 701 | | 2002-04-24 03:22:14 | A| 208.254.255.0 | 24 | 1 701 | | 2002-04-24 03:22:36 | W| 208.254.255.0 | 24 | NULL | +-+--+---+--++ ... now you see it, now you don't. A check with routeviews shows that we're not the only one seeing such things. For instance, from AT&T's perspective: +-++--+---+--+--+ | time| src_as | type | prefix| mask | aspath | +-++--+---+--+--+ | 2002-04-24 03:20:39 | 7018 | A| 208.254.255.0 | 24 | 7018 701 | | 2002-04-24 03:21:06 | 7018 | A| 208.254.255.0 | 24 | 7018 701 | | 2002-04-24 03:22:05 | 7018 | A| 208.254.255.0 | 24 | 7018 701 | | 2002-04-24 03:22:35 | 7018 | W| 208.254.255.0 | 24 | NULL | +-++--+---+--+--+ These seem to happen about once a month or so, typically at odd hours. Is this a goof up, or some strange leakage during filter reconfiguration? Anyone from UUNET care to clue me in? Thanks, -Dave -- work: [EMAIL PROTECTED] me: [EMAIL PROTECTED] MIT Laboratory for Computer Science http://www.angio.net/
RE: CIA Warns of Chinese Plans for Cyber-Attacks on U.S.
Has anyone noticed how the stories about insiders trading and selling airline and insurance company stocks short just before 9.11 disappeared real quick. Someone had plenty notice it seems. >If true, these are not script kiddie type threats. I hate to say it, but 911 >is an example that the unthinkable isn't. I'm waiting for the first worm that erases kernal32.dll and krnl32.exe and installs some other operating system...with my luck, it'll be cobol or fortran. heh..
RE: CIA Warns of Chinese Plans for Cyber-Attacks on U.S.
You know, "we" all my be the first to see and understand that such a attack is in progress...attacks against critical targets can come from anywhere with distributed computing. Even IF we detected it happening, the question is, who would you tell, and more importantly, "do you trust YOUR government" with that information? With whats gone on to neutralize the Constitution since 9.11, its hard to say just who IS the enemy. I know the whole process of turning the US into a police-state is un-nerving to say the least. But I digress That whole article thats in the LA times is a rehash of the article that was on C4I.org back when the US spy plane was held in China. Interesting to see some reporter dug it up and made it frontpage again. Why? At 18:25 4/25/02 -0700, you wrote: >How many PC's and components are 'Made in China'? > >In the dark ages, I worked for Williams Electronics. We made Arcade Games >*blush*. Once we found our custom chip was reverse engineered in Taiwan, and >they were shipping knockoffs six weeks after we started shipping the real >product. > >If true, these are not script kiddie type threats. I hate to say it, but 911 >is an example that the unthinkable isn't. > >Bruce Williams >"A healthy paranoia is the beginning of sound operations policy" > > -Original Message- > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > > blitz > > Sent: Thursday, April 25, 2002 3:33 PM > > To: [EMAIL PROTECTED] > > Subject: RE: CIA Warns of Chinese Plans for Cyber-Attacks on U.S. > > > > > > > > I put nothing past them, of course theyre not alone, as we > > all must assume > > by now. > > Theyve threatened to nuke LA if we interfere with their plans to take > > Tiawan by force, and smile and say, kill 300 million of us, > > do us a favor. > > Kinda hard to deal with an enemy like that. > > > > At 18:01 4/25/02 -0400, you wrote: > > > > > > >Is it really hard to believe that the Chinese government > > would actively fund > > >cyberterrorism? > > > > > >Deepak Jain > > >AiNET > > > >
Re: CIA Warns of Chinese Plans for Cyber-Attacks on U.S.
On Thu, 25 Apr 2002 17:54:44 EDT, Steve Goldstein <[EMAIL PROTECTED]> said: > Gosh, oh golly-gee, do you really think that they would do something > like that (planting a story)? Well, officially, we've decided that we don't do disinformation: http://www.fas.org/sgp/news/2002/02/dod022602.html Of course, the tinfoil helmet brigade, and most even-more-reasonable people, would note that "we're closing down our Office of Disinformation" would be the last we'd hear of it.. On Thu, 25 Apr 2002 18:40:24 EDT, Deepak Jain <[EMAIL PROTECTED]> said: > The threat to LA is the best available because I don't think they have a > missle delivery vehicle capable of reaching any East Coast cities. It's called a "barge". http://www.fas.org/nuke/hew/Usa/Tests/Castle.html See the Castle Romeo test, and many of the following ones. We now return to Junipers running Outlook and other semi-operational material.
RE: CIA Warns of Chinese Plans for Cyber-Attacks on U.S.
How many PC's and components are 'Made in China'? In the dark ages, I worked for Williams Electronics. We made Arcade Games *blush*. Once we found our custom chip was reverse engineered in Taiwan, and they were shipping knockoffs six weeks after we started shipping the real product. If true, these are not script kiddie type threats. I hate to say it, but 911 is an example that the unthinkable isn't. Bruce Williams "A healthy paranoia is the beginning of sound operations policy" > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > blitz > Sent: Thursday, April 25, 2002 3:33 PM > To: [EMAIL PROTECTED] > Subject: RE: CIA Warns of Chinese Plans for Cyber-Attacks on U.S. > > > > I put nothing past them, of course theyre not alone, as we > all must assume > by now. > Theyve threatened to nuke LA if we interfere with their plans to take > Tiawan by force, and smile and say, kill 300 million of us, > do us a favor. > Kinda hard to deal with an enemy like that. > > At 18:01 4/25/02 -0400, you wrote: > > > >Is it really hard to believe that the Chinese government > would actively fund > >cyberterrorism? > > > >Deepak Jain > >AiNET > >
RE: UUNET instability?
A few weeks ago while cleaning out old computer "stuff" in my basement noc, I found my BOfH that I had printed on a 15" chain printer (with alternating green and white bars!) back in the early 90s some time. > On Thu, 25 Apr 2002, Kelly J. Cooper wrote: >> Or you can buy the books: >> >> http://www.plan9.org > > Yeah I have the first BOfH. That's my #1 choice > for bathroom reading, I highly recommend it! > > I guess it might be cooler to have it on dotmatrix > printer paper, but the book format is compact and > nice. > > -dre
RE: UUNET instability?
On Thu, 25 Apr 2002, Kelly J. Cooper wrote: > Or you can buy the books: > > http://www.plan9.org Yeah I have the first BOfH. That's my #1 choice for bathroom reading, I highly recommend it! I guess it might be cooler to have it on dotmatrix printer paper, but the book format is compact and nice. -dre
Re: UUNET instability?
On Apr 25, 5:34pm, blitz wrote: > Subject: Re: UUNET instability? * *At 16:59 4/25/02 -0400, you wrote: * *>On Fri, 26 Apr 2002, Lionel wrote: *> *> > >> *> > >>"A butterfly in outter mongolia flapped its wings" will probably be cited *> > >>before long... *> > > *> > >telnet bofh.engr.wisc.edu 666 * *The Archive of BOFH is here: * *http://bofh.ntk.net/Bastard.html Or you can buy the books: http://www.plan9.org Kelly J. (not affiliated, just a fan) -- Kelly J. Cooper- Security Engineer, CISSP GENUITY- Main # - 800-632-7638 3 Van de Graaff Drive - Fax - 781-262-2744 Burlington, MA 01803 - http://www.genuity.net
RE: CIA Warns of Chinese Plans for Cyber-Attacks on U.S.
> We're off-topic, but I'd say that cyberterrorismis far less expensive to > create than invasion or nuclear weapons. > > Deepak Jain > AiNET (At the risk of sounding corny) A communications disruption could mean only one thing: invasion. - James
RE: CIA Warns of Chinese Plans for Cyber-Attacks on U.S.
On Thu, 25 Apr 2002, Deepak Jain wrote: > Is it really hard to believe that the Chinese government would actively fund > cyberterrorism? > > Deepak Jain > AiNET No harder than it is to believe that the US Govt would actively fund [cyber]terrorism... -- Yours, J.A. Terranson [EMAIL PROTECTED] If Governments really want us to behave like civilized human beings, they should give serious consideration towards setting a better example: Ruling by force, rather than consensus; the unrestrained application of unjust laws (which the victim-populations were never allowed input on in the first place); the State policy of justice only for the rich and elected; the intentional abuse and occassionally destruction of entire populations merely to distract an already apathetic and numb electorate... This type of demogoguery must surely wipe out the fascist United States as surely as it wiped out the fascist Union of Soviet Socialist Republics. The views expressed here are mine, and NOT those of my employers, associates, or others. Besides, if it *were* the opinion of all of those people, I doubt there would be a problem to bitch about in the first place...
RE: CIA Warns of Chinese Plans for Cyber-Attacks on U.S.
> Rounding up 1 significant figure would reduce their combat effectiveness > measurably. > > The threat to LA is the best available because I don't think they have a > missle delivery vehicle capable of reaching any East Coast cities. The Chinese had the shenzhou 2 capsule in orbit for 7 months in 2001... more recently shenzhou 3 went up with and safely returned nine eggs after 108 orbits... http://news.bbc.co.uk/hi/english/sci/tech/newsid_1948000/1948317.stm One would suspect that that they're far more interested in launching 12-14 ton commercial payloads with the long-march 2ea, then they are in blowing up the US. > We're off-topic, but I'd say that cyberterrorismis far less expensive to > create than invasion or nuclear weapons. > > Deepak Jain > AiNET > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > blitz > Sent: Thursday, April 25, 2002 6:33 PM > To: [EMAIL PROTECTED] > Subject: RE: CIA Warns of Chinese Plans for Cyber-Attacks on U.S. > > > > I put nothing past them, of course theyre not alone, as we all must assume > by now. > Theyve threatened to nuke LA if we interfere with their plans to take > Tiawan by force, and smile and say, kill 300 million of us, do us a favor. > Kinda hard to deal with an enemy like that. > > At 18:01 4/25/02 -0400, you wrote: > > > >Is it really hard to believe that the Chinese government would actively > fund > >cyberterrorism? > > > >Deepak Jain > >AiNET > > > -- -- Joel Jaeggli Academic User Services [EMAIL PROTECTED] --PGP Key Fingerprint: 1DE9 8FCA 51FB 4195 B42A 9C32 A30D 121E -- In Dr. Johnson's famous dictionary patriotism is defined as the last resort of the scoundrel. With all due respect to an enlightened but inferior lexicographer I beg to submit that it is the first. -- Ambrose Bierce, "The Devil's Dictionary"
Re: IS-IS information
On Thu, Apr 25, 2002 at 06:33:25PM -0400, Randy Bush wrote something like this: > > the gossip i am getting is that today is a particularly appropriate > day to be reading the cisco is-is book > > randy no default-information originate klez.virus should remedy the situation. -Mark -- Today I will create a crisis situation so I can feel really alive.
RE: CIA Warns of Chinese Plans for Cyber-Attacks on U.S.
Rounding up 1 significant figure would reduce their combat effectiveness measurably. The threat to LA is the best available because I don't think they have a missle delivery vehicle capable of reaching any East Coast cities. We're off-topic, but I'd say that cyberterrorismis far less expensive to create than invasion or nuclear weapons. Deepak Jain AiNET -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of blitz Sent: Thursday, April 25, 2002 6:33 PM To: [EMAIL PROTECTED] Subject: RE: CIA Warns of Chinese Plans for Cyber-Attacks on U.S. I put nothing past them, of course theyre not alone, as we all must assume by now. Theyve threatened to nuke LA if we interfere with their plans to take Tiawan by force, and smile and say, kill 300 million of us, do us a favor. Kinda hard to deal with an enemy like that. At 18:01 4/25/02 -0400, you wrote: >Is it really hard to believe that the Chinese government would actively fund >cyberterrorism? > >Deepak Jain >AiNET
RE: CIA Warns of Chinese Plans for Cyber-Attacks on U.S.
--- On Thu, Apr 25, 2002 at 06:01:50PM -0400, [EMAIL PROTECTED] said: > > > Is it really hard to believe that the Chinese government would actively fund > cyberterrorism? The ratio of useful traffic to spam/attacks from APNIC space is already so low as to be nearly non-existent. A little active help from a governmental body couldn't make it much worse than it already is. --- Also a good point. :) I think the media makes a big deal about gov't sponsored cybermischief because I think the implication is that they'd do it better than a few kiddies. While a gov't sponsored group may use information illegally gotten better, I have never seen evidence that they are more effective or more sinister in their successes. YMMV, Deepak Jain AiNET
RE: IS-IS information
> aside from the cisco is-is book... the gossip i am getting is that today is a particularly appropriate day to be reading the cisco is-is book randy
RE: CIA Warns of Chinese Plans for Cyber-Attacks on U.S.
I put nothing past them, of course theyre not alone, as we all must assume by now. Theyve threatened to nuke LA if we interfere with their plans to take Tiawan by force, and smile and say, kill 300 million of us, do us a favor. Kinda hard to deal with an enemy like that. At 18:01 4/25/02 -0400, you wrote: >Is it really hard to believe that the Chinese government would actively fund >cyberterrorism? > >Deepak Jain >AiNET
RE: IS-IS information
aside from the cisco is-is book... Routing TCP/IP Volume I by Jeff Doyle ISBN: 1578700418 or Juniper Networks Routers: The Complete Reference by Matt Kolon (Editor), Jeff Doyle (Editor) ISBN: 0072194812 other, more general references: Interconnections: Bridges, Routers, Switches, and Internetworking Protocols by Radia Perlman ISBN: 0201634481 Network Architecture and Development Series: Designing Routing and Switching Architectures by Howard C. Berkowitz ISBN: 1578700604 -andy Greg Pendergrass wrote on 25 April 2002 at 22:00: > > What is a good reference for IS-IS and Integrated IS-IS? I'm > looking for an > overview of how the protocol works as well as specific vendors' > implementations. Any suggestions? > > Greg >
Re: CIA Warns of Chinese Plans for Cyber-Attacks on U.S.
On Thu, Apr 25, 2002 at 06:01:50PM -0400, [EMAIL PROTECTED] said: > > > Is it really hard to believe that the Chinese government would actively fund > cyberterrorism? The ratio of useful traffic to spam/attacks from APNIC space is already so low as to be nearly non-existent. A little active help from a governmental body couldn't make it much worse than it already is. -- Scott Francis darkuncle@ [home:] d a r k u n c l e . n e t Systems/Network Manager sfrancis@ [work:] t o n o s . c o m GPG public key 0xCB33CCA7 illum oportet crescere me autem minui msg01188/pgp0.pgp Description: PGP signature
Re: CIA Warns of Chinese Plans for Cyber-Attacks on U.S.
Once upon a time, Deepak Jain <[EMAIL PROTECTED]> said: > Is it really hard to believe that the Chinese government would actively fund > cyberterrorism? Why not? Our government does, although they don't call it that: they call it Microsoft. :-) -- Chris Adams <[EMAIL PROTECTED]> Systems and Network Administrator - HiWAAY Internet Services I don't speak for anybody but myself - that's enough trouble.
RE: CIA Warns of Chinese Plans for Cyber-Attacks on U.S.
Is it really hard to believe that the Chinese government would actively fund cyberterrorism? Deepak Jain AiNET -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Steve Goldstein Sent: Thursday, April 25, 2002 5:55 PM To: Rowland, Alan D Cc: [EMAIL PROTECTED] Subject: RE: CIA Warns of Chinese Plans for Cyber-Attacks on U.S. Gosh, oh golly-gee, do you really think that they would do something like that (planting a story)? ;-) --Steve At 7:16 AM -0700 4/25/02, Rowland, Alan D wrote: > >Someone in the CIA is looking for funding... > >Just my 2¢. > >-Al --
RE: CIA Warns of Chinese Plans for Cyber-Attacks on U.S.
Gosh, oh golly-gee, do you really think that they would do something like that (planting a story)? ;-) --Steve At 7:16 AM -0700 4/25/02, Rowland, Alan D wrote: > >Someone in the CIA is looking for funding... > >Just my 2¢. > >-Al --
Re: UUNET instability?
At 16:59 4/25/02 -0400, you wrote: >On Fri, 26 Apr 2002, Lionel wrote: > > > >> > > >>"A butterfly in outter mongolia flapped its wings" will probably be cited > > >>before long... > > > > > >telnet bofh.engr.wisc.edu 666 The Archive of BOFH is here: http://bofh.ntk.net/Bastard.html
Re: IS-IS information
btw the permissions were wrong. they are fixed now, enjoy. -Mark -- War is peace. Freedom is slavery. Ketchup is a vegetable.
Re: IS-IS information
On Thu, Apr 25, 2002 at 05:00:05PM -0400, Greg Pendergrass wrote something like this: > implementations. Any suggestions? > > Greg > Greg, Here's one document I received from Cisco. It was useful to me. http://gomez.charter.com/~mark/ISISintro.pdf -Mark -- Read this tagline, or we shoot this dog.
RE: IS-IS information
Cisco very recently published "IS-IS Network Design Solutions", ISBN 1-57870-220-8. I don't know of any other good references. It's obviously Cisco-centric but does try to cover questions like "why do I want IS-IS instead of [mumble] as my IGP". > -Original Message- > From: Greg Pendergrass [mailto:[EMAIL PROTECTED]] > Sent: Thursday, April 25, 2002 4:00 PM > To: 'Nanog@Merit. Edu' > Subject: IS-IS information > > > What is a good reference for IS-IS and Integrated IS-IS? I'm looking for > an > overview of how the protocol works as well as specific vendors' > implementations. Any suggestions? > > Greg
Re: IS-IS information
Cisco's online documentation, though obviously tailored to their product line, provides a great overview of most 'common' routing scenarios, protocols and configurations. [EMAIL PROTECTED] wrote: > What is a good reference for IS-IS and Integrated IS-IS? I'm looking for an > overview of how the protocol works as well as specific vendors' > implementations. Any suggestions? > > Greg > >
IS-IS information
What is a good reference for IS-IS and Integrated IS-IS? I'm looking for an overview of how the protocol works as well as specific vendors' implementations. Any suggestions? Greg
Re: UUNET instability?
On Fri, 26 Apr 2002, Lionel wrote: > >> > >>"A butterfly in outter mongolia flapped its wings" will probably be cited > >>before long... > > > >telnet bofh.engr.wisc.edu 666 > > Folks, please don't try to connect to that service. > Posting it here seems to have Slashdotted it. I'll see if I can put up a mirror. -- Steve Sobol, CTO (Server Guru, Network Janitor and Head Geek) JustThe.net LLC, Mentor On The Lake, OH 888.480.4NET http://JustThe.net "The Indians are unfolding into the 2002 season like a lethal lawn chair." (_News-Herald_ Indians Columnist Jim Ingraham, April 11, 2002)
RE: The Myth of Five 9's Reliability (fwd)
Doh. This should have read "Your service" not "Your server". -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Deepak Jain Sent: Thursday, April 25, 2002 4:26 PM To: Mathew Lodge; Art Houle; Pete Kruckenberg Cc: [EMAIL PROTECTED] Subject: RE: The Myth of Five 9's Reliability (fwd) [stuff missing] When applied randomly to the Internet, I suppose that means if you can dial into a RAS and establish a PPP/IPCP session, but the RAS' connection to the Internet is down, then the service is up :-) [stuff missing] I seem to remember a large internet provider's service contract reading something to the effect of. "Your server is considered down if customer router cannot pass packets [or ping] with service provider's immediate upstream router." This is a functional description of the above for dedicated lines, as customer aggregation routers never talked to the internet, so if there was a problem at a transit router you weren't getting anywhere. A modern contract I saw recently defined "up" for colocation purposes as "the customer's assigned gigabit port is available." Though available was not a defined term, one could not easily apply that to a ports' willingness to pass packets. One could say a congested port was not available though, I guess. Deepak Jain AiNET
RE: The Myth of Five 9's Reliability (fwd)
[stuff missing] When applied randomly to the Internet, I suppose that means if you can dial into a RAS and establish a PPP/IPCP session, but the RAS' connection to the Internet is down, then the service is up :-) [stuff missing] I seem to remember a large internet provider's service contract reading something to the effect of. "Your server is considered down if customer router cannot pass packets [or ping] with service provider's immediate upstream router." This is a functional description of the above for dedicated lines as customer aggregation routers never talked to the internet, so if there was a problem at a transit router you weren't getting anywhere. A modern contract I saw recently defined "up" for colocation purposes as "the customer's assigned gigabit port is available." Though available was not a defined term, one could not easily apply that to a ports' willingness to pass packets. One could say a congested port was not available though I guess. Deepak Jain AiNET
Re: UUNET instability?
On Fri, 26 Apr 2002, Lionel wrote: > >telnet bofh.engr.wisc.edu 666 > > Folks, please don't try to connect to that service. > Posting it here seems to have Slashdotted it. Works fine here Are you sure you haven't got uunet between you and it? ;-) - Forrest W. Christian ([EMAIL PROTECTED]) AC7DE -- The Innovation Machine Ltd. P.O. Box 5749 http://www.imach.com/Helena, MT 59604 Home of PacketFlux Technogies and BackupDNS.com (406)-442-6648 -- Protect your personal freedoms - visit http://www.lp.org/
Re: UUNET instability?
On Thu, 25 Apr 2002 16:04:42 -0400, Richard A Steenbergen <[EMAIL PROTECTED]> wrote: >On Fri, Apr 26, 2002 at 05:48:11AM +1000, Lionel wrote: >> >> Folks, please don't try to connect to that service. >> Posting it here seems to have Slashdotted it. > >Generally something doesn't get "Slashdotted" unless it is fully of poorly >written dynamic code which should never have been put in production in the >first place, such as PHP doing 20 mysql queries per page view or something >else equally stupid and linux kiddie. > >A BOFH quote generator, on the other hand, is very very simple. It boggles >the mind to imagine a server so weak or code so bad that it couldn't >handle a couple hundred connections from NANOG readers. If that is the >case, I would strongly suggest you reevaluate the language or method in >which it was written. I beg your pardon? Where did you get the idea that I wrote or hosted it? I was assuming it'd been Slashdotted because it was working fine before I posted the link, then stopped working shortly afterwards. It's also entirely possible the somebody at the site got annoyed at all the requests & put a DENY ALL on it. -- W . | ,. w , "Some people are alive only because \|/ \|/ it is illegal to kill them."Perna condita delenda est ---^^---
Re: UUNET instability?
This seems like a great time to ask a question.. Got multihoming to multiple providers? Bri On Thu, 25 Apr 2002, Chris Pace wrote: > > Is there a way to notify UUNET of the problem ? > (I know they are problably aware, but it would make me feel better) > Since I am not a UUNET customer they will not even speak to me. My Customers > are screaming at me and I have to open trouble tickets with at least 5 > providers. > I have to explain to my customers what is going on and I am powerless. > > - Original Message - > From: "Pena, Antonio" <[EMAIL PROTECTED]> > To: "'Streiner, Justin'" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> > Sent: Thursday, April 25, 2002 12:10 PM > Subject: RE: UUNET instability? > > > > > > Yes, we are peering with UUNet in too many cities a cross USA and all the > > Network is a messed up, also I found some BGP session cleared by UUNet > > peering routers. > > > > Antonio J. Pena > > > > -Original Message- > > From: Streiner, Justin [mailto:[EMAIL PROTECTED]] > > Sent: Thursday, April 25, 2002 8:01 AM > > To: [EMAIL PROTECTED] > > Subject: UUNET instability? > > > > > > > > Anyone else seeing routing instability through UUNET or have any more > > details? I saw a significant drop in my inbound and outbound traffic to > > them around 10:00AM EDT. UUNET has a prompt on their phone menus about > > network instability, but didn't elaborate. Their NOC doesn't have any > > more details as of yet that they're passing along. > > > > jms >
Re: UUNET instability?
On Fri, Apr 26, 2002 at 05:48:11AM +1000, Lionel wrote: > > Folks, please don't try to connect to that service. > Posting it here seems to have Slashdotted it. Generally something doesn't get "Slashdotted" unless it is fully of poorly written dynamic code which should never have been put in production in the first place, such as PHP doing 20 mysql queries per page view or something else equally stupid and linux kiddie. A BOFH quote generator, on the other hand, is very very simple. It boggles the mind to imagine a server so weak or code so bad that it couldn't handle a couple hundred connections from NANOG readers. If that is the case, I would strongly suggest you reevaluate the language or method in which it was written. -- Richard A Steenbergen <[EMAIL PROTECTED]> http://www.e-gerbil.net/ras PGP Key ID: 0x138EA177 (67 29 D7 BC E8 18 3E DA B2 46 B3 D8 14 36 FE B6)
Re: UUNET instability?
On Fri, 26 Apr 2002 05:10:28 +1000, Lionel <[EMAIL PROTECTED]> wrote: > >On Thu, 25 Apr 2002 14:02:19 -0500 (CDT), "Robert A. Hayden" ><[EMAIL PROTECTED]> wrote: > >>Sometimes it feels like the support departments just scan cnn.com to find >>a catastrophe to blame an outtage on. >> >>"A butterfly in outter mongolia flapped its wings" will probably be cited >>before long... > >telnet bofh.engr.wisc.edu 666 Folks, please don't try to connect to that service. Posting it here seems to have Slashdotted it. -- W . | ,. w , "Some people are alive only because \|/ \|/ it is illegal to kill them."Perna condita delenda est ---^^---
Re: UUNET instability?
At 03:14 PM 4/25/2002 -0400, [EMAIL PROTECTED] wrote: >On Thu, 25 Apr 2002 12:03:52 PDT, Gregory Hicks <[EMAIL PROTECTED]> said: > > > > >On Thu, 25 Apr 2002, Daniel Kelley wrote: > > > > > UUNET support says that the outage relates to a train derailment > in the > > > > > northeast that occured this morning. master ticket no. 562655. > > > > Thought this happened YESTERDAY - 4/24 ... Another one? > >No, the train derailment was yesterday. It's just they've got the route >flap damping constant set in units of days, so it's only now propogating. ;) LOL! The client in question with the C&W span didn't go down until 11:30 CDT. However, their circuit is tied to the C&W master ticket that defines the outage as a train derailment. Maybe we've just hit WorldCom's maintenance window (don't spaz, I'm just kidding).
Re: Selective DNS replies
Clayton Fiske wrote: > If you're referring to clients overlapping, such as: > > 192.168.0.0/16 sees internal for domain1, external for domain2 > 10.0.0.0/8 sees external for domain1, external for domain2 > 172.16.0.0/12 sees external for domain1, internal for domain2 > > Then I think you'll have to define a view for each combination, and > include whichever zonefiles are appropriate for that view. I use a 'match-clients any' statement in the last view. Everything falls into there after the other views are matched. EG: view "public" { match-clients { any; }; zone... }; Internal and external have their own views of sensitive zones, but they share the root cache and other public zones. -- Eric A. Hallhttp://www.ehsco.com/ Internet Core Protocols http://www.oreilly.com/catalog/coreprot/
Re: UUNET instability?
On Thu, 25 Apr 2002, Sean Donelan wrote: > That's unusual. A train derailment usually effects more than one > provider, and normally does not cause network-wide BGP resets. I'd heard something about IS-IS instability, and it doesn't surprise me. On big networks, IGP stability is super-important, be it IS-IS, EIGRP, or OSPF. jms
Re: UUNET instability?
On Thu, 25 Apr 2002 12:03:52 PDT, Gregory Hicks <[EMAIL PROTECTED]> said: > > >On Thu, 25 Apr 2002, Daniel Kelley wrote: > > > > UUNET support says that the outage relates to a train derailment in the > > > > northeast that occured this morning. master ticket no. 562655. > > Thought this happened YESTERDAY - 4/24 ... Another one? No, the train derailment was yesterday. It's just they've got the route flap damping constant set in units of days, so it's only now propogating. ;) msg01160/pgp0.pgp Description: PGP signature
Re: UUNET instability?
On Thu, 25 Apr 2002 14:02:19 -0500 (CDT), "Robert A. Hayden" <[EMAIL PROTECTED]> wrote: >Sometimes it feels like the support departments just scan cnn.com to find >a catastrophe to blame an outtage on. > >"A butterfly in outter mongolia flapped its wings" will probably be cited >before long... telnet bofh.engr.wisc.edu 666 HTH, etc. -- W . | ,. w , "Some people are alive only because \|/ \|/ it is illegal to kill them."Perna condita delenda est ---^^---
Re: UUNET instability?
> Date: Thu, 25 Apr 2002 14:00:44 -0500 > From: J Bacher <[EMAIL PROTECTED]> > > At 02:51 PM 4/25/2002 -0400, Sean Donelan wrote: > > >That's unusual. A train derailment usually effects more than one > >provider, and normally does not cause network-wide BGP resets. > > Some C&W transport was lost as well. They also have a master ticket open. > > >On Thu, 25 Apr 2002, Daniel Kelley wrote: > > > UUNET support says that the outage relates to a train derailment in the > > > northeast that occured this morning. master ticket no. 562655. Thought this happened YESTERDAY - 4/24 ... Another one? > > > > > > dan > > > > > > > Anyone else seeing routing instability through UUNET or have any more > > > > details? I saw a significant drop in my inbound and outbound traffic to > > > > them around 10:00AM EDT. UUNET has a prompt on their phone menus about > > > > network instability, but didn't elaborate. Their NOC doesn't have any > > > > more details as of yet that they're passing along. --- Gregory Hicks| Principal Systems Engineer Cadence Design Systems | Direct: 408.576.3609 555 River Oaks Pkwy M/S 6B1 San Jose, CA 95134 "The trouble with doing anything right the first time is that nobody appreciates how difficult it was." When a team of dedicated individuals makes a commitment to act as one... the sky's the limit. "There is no limit to what a man can do or how far he can go if he doesn't mind who gets the credit." - Robert Woodruff
Re: UUNET instability?
Sometimes it feels like the support departments just scan cnn.com to find a catastrophe to blame an outtage on. "A butterfly in outter mongolia flapped its wings" will probably be cited before long... On Thu, 25 Apr 2002, Sean Donelan wrote: > > > That's unusual. A train derailment usually effects more than one > provider, and normally does not cause network-wide BGP resets. > > > On Thu, 25 Apr 2002, Daniel Kelley wrote: > > UUNET support says that the outage relates to a train derailment in the > > northeast that occured this morning. master ticket no. 562655. > > > > dan > > > > > Anyone else seeing routing instability through UUNET or have any more > > > details? I saw a significant drop in my inbound and outbound traffic to > > > them around 10:00AM EDT. UUNET has a prompt on their phone menus about > > > network instability, but didn't elaborate. Their NOC doesn't have any > > > more details as of yet that they're passing along. > > > > > > jms > > > > > > > > > > > > >
Re: UUNET instability?
At 02:51 PM 4/25/2002 -0400, Sean Donelan wrote: >That's unusual. A train derailment usually effects more than one >provider, and normally does not cause network-wide BGP resets. Some C&W transport was lost as well. They also have a master ticket open. >On Thu, 25 Apr 2002, Daniel Kelley wrote: > > UUNET support says that the outage relates to a train derailment in the > > northeast that occured this morning. master ticket no. 562655. > > > > dan > > > > > Anyone else seeing routing instability through UUNET or have any more > > > details? I saw a significant drop in my inbound and outbound traffic to > > > them around 10:00AM EDT. UUNET has a prompt on their phone menus about > > > network instability, but didn't elaborate. Their NOC doesn't have any > > > more details as of yet that they're passing along. > > > > > > jms > > > > > > > > > >
Re: UUNET instability?
That's unusual. A train derailment usually effects more than one provider, and normally does not cause network-wide BGP resets. On Thu, 25 Apr 2002, Daniel Kelley wrote: > UUNET support says that the outage relates to a train derailment in the > northeast that occured this morning. master ticket no. 562655. > > dan > > > Anyone else seeing routing instability through UUNET or have any more > > details? I saw a significant drop in my inbound and outbound traffic to > > them around 10:00AM EDT. UUNET has a prompt on their phone menus about > > network instability, but didn't elaborate. Their NOC doesn't have any > > more details as of yet that they're passing along. > > > > jms > > > > > >
[no subject]
I heard that UU.net is rolling Outlook at the core ... -chris On Thu, 25 Apr 2002, Jeff Harper wrote: > > Anyone think this is related the Klez virus? > > Jeff > > > -Original Message- > > From: Steve Smith [mailto:[EMAIL PROTECTED]] > > Sent: Thursday, April 25, 2002 10:58 AM > > To: Streiner, Justin; [EMAIL PROTECTED] > > Subject: RE: UUNET instability? > > > > > > > > Here is Memphis we are seeing the same thing. Twice this > > morning we have dropped and our BGP is freaking out. > > > > -Original Message- > > From: Streiner, Justin [mailto:[EMAIL PROTECTED]] > > Sent: Thursday, April 25, 2002 10:01 AM > > To: [EMAIL PROTECTED] > > Subject: UUNET instability? > > > > > > > > Anyone else seeing routing instability through UUNET or have > > any more details? I saw a significant drop in my inbound and > > outbound traffic to them around 10:00AM EDT. UUNET has a > > prompt on their phone menus about network instability, but > > didn't elaborate. Their NOC doesn't have any more details as > > of yet that they're passing along. > > > > jms > > >
Re: UUNET instability?
On Thu, Apr 25, 2002 at 01:15:03PM -0500, Jeff Harper wrote: > > Anyone think this is related the Klez virus? Was UU running Outlook on their core routers? With Juniper I suppose it's possible... :) -- Richard A Steenbergen <[EMAIL PROTECTED]> http://www.e-gerbil.net/ras PGP Key ID: 0x138EA177 (67 29 D7 BC E8 18 3E DA B2 46 B3 D8 14 36 FE B6)
Re: Selective DNS replies
On Thu, 25 Apr 2002, Clayton Fiske wrote: > Wouldn't you automatically have to have multiple zonefiles per domain > in order to have multiple views? With bind9, my setup is: Not really, because you define the views inside the zonefiles, instead of defining the sonefiles inside the view. Each zone has full control over what is a zone for it and what isn't. Bind's currnet datapath looks like this: Incoming query -> Check src address -> Enter view -> perform query What I think it SHOULD be like is: Incoming query -> Check domain being queried -> Enter zone file -> Perform query -> If 'view' is defined against the RR, check src address and reply appropriately. Better?
RE: UUNET instability?
Anyone think this is related the Klez virus? Jeff > -Original Message- > From: Steve Smith [mailto:[EMAIL PROTECTED]] > Sent: Thursday, April 25, 2002 10:58 AM > To: Streiner, Justin; [EMAIL PROTECTED] > Subject: RE: UUNET instability? > > > > Here is Memphis we are seeing the same thing. Twice this > morning we have dropped and our BGP is freaking out. > > -Original Message- > From: Streiner, Justin [mailto:[EMAIL PROTECTED]] > Sent: Thursday, April 25, 2002 10:01 AM > To: [EMAIL PROTECTED] > Subject: UUNET instability? > > > > Anyone else seeing routing instability through UUNET or have > any more details? I saw a significant drop in my inbound and > outbound traffic to them around 10:00AM EDT. UUNET has a > prompt on their phone menus about network instability, but > didn't elaborate. Their NOC doesn't have any more details as > of yet that they're passing along. > > jms >
RE: UUNET instability?
I live in that area, and its far enough from 111 8th to not cause any serious problems, and there's no other telco or network facilities around there, AFAIK. Most of the fiber, etc, is run along 16th street or up/down 9th ave. Thanks, Matt -- Matthew J. Zito Systems Engineer Register.com, Inc., 11th Floor, 575 8th Avenue, New York, NY 10018 Ph: 212-798-9205 PGP Key Fingerprint: 4E AC E1 0B BE DD 7D BC D2 06 B2 B0 BF 55 68 99 > -Original Message- > From: Jacob M Wilkens [mailto:[EMAIL PROTECTED]] > Sent: Thursday, April 25, 2002 12:30 PM > To: [EMAIL PROTECTED] > Subject: RE: UUNET instability? > > > > Boiler explosion at 635 Avenue of the Americas: > http://www.msnbc.com/news/743536.asp?0cm=c20 > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > mike harrison > Sent: Thursday, April 25, 2002 12:16 PM > To: German Martinez > Cc: Streiner, Justin; [EMAIL PROTECTED] > Subject: Re: UUNET instability? > > > > > And us as well.. it's coming back up quickly.. > and I am seeing routes restored. I hate it when > this happens right after everyone walks out the > door for lunch. Can't we schedule our unscheduled > outages better? > > Hopefully this is not related to the small explosion that > just occured in NYC. It may be an industrial accident, > it was at a tech school (auto/etc..) or it may not be. > > > > On Thu, 25 Apr 2002, German Martinez wrote: > > Justin, > > We saw a big traffic drop from them exactly at the same > time that you saw. > > We are contacting them to get more details. In fact, our > BGP session with > > them reseted. > > > > German > > > > On Thu, 25 Apr 2002, Streiner, Justin wrote: > > > > > > > > Anyone else seeing routing instability through UUNET or > have any more > > > details? I saw a significant drop in my inbound and > outbound traffic to > > > them around 10:00AM EDT. UUNET has a prompt on their > phone menus about > > > network instability, but didn't elaborate. Their NOC > doesn't have any > > > more details as of yet that they're passing along. > > > > > > jms > > > > > > > >
Re: Selective DNS replies
On Thu, Apr 25, 2002 at 12:44:59PM +0100, Avleen Vig wrote: > Your conf file shows that it is set up as: > Define a view > Now allocate zonefiles to it > > What if you host multiple domains, and the view you want to give them > overlap? Is it not possible to do: > Make a zone file > Put views in it just for that zone > Make another zone file for a different domain > Put view in it that overlap the first zoenfiles, but won't conflict > because they are in a different zone. > > By overlap I mean something like this: > Zone1: 'internal' = 10.0.1.0/24 + 'external' = 192.168.1.0/24 > Zone2: 'internal' = 10.0.0.0/16 + 'external' = 192.168.0.0/16 > Zone3: 'internal' = 127.0.0.0/8 + 'external' = 10.0.0.0/16 > > Make sense? Wouldn't you automatically have to have multiple zonefiles per domain in order to have multiple views? With bind9, my setup is: view "internal" match-clients { }; zone "domain1.com" { file "domain1-internal.hosts"; }; zone "domain2.com" { file "domain2-internal.hosts"; }; }; view "external" match-clients { }; zone "domain1.com" { file "domain1-external.hosts"; }; zone "domain2.com" { file "domain2-external.hosts"; }; }; If you're referring to clients overlapping, such as: 192.168.0.0/16 sees internal for domain1, external for domain2 10.0.0.0/8 sees external for domain1, external for domain2 172.16.0.0/12 sees external for domain1, internal for domain2 Then I think you'll have to define a view for each combination, and include whichever zonefiles are appropriate for that view. -c
RE: UUNET instability?
Boiler explosion at 635 Avenue of the Americas: http://www.msnbc.com/news/743536.asp?0cm=c20 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of mike harrison Sent: Thursday, April 25, 2002 12:16 PM To: German Martinez Cc: Streiner, Justin; [EMAIL PROTECTED] Subject: Re: UUNET instability? And us as well.. it's coming back up quickly.. and I am seeing routes restored. I hate it when this happens right after everyone walks out the door for lunch. Can't we schedule our unscheduled outages better? Hopefully this is not related to the small explosion that just occured in NYC. It may be an industrial accident, it was at a tech school (auto/etc..) or it may not be. On Thu, 25 Apr 2002, German Martinez wrote: > Justin, > We saw a big traffic drop from them exactly at the same time that you saw. > We are contacting them to get more details. In fact, our BGP session with > them reseted. > > German > > On Thu, 25 Apr 2002, Streiner, Justin wrote: > > > > > Anyone else seeing routing instability through UUNET or have any more > > details? I saw a significant drop in my inbound and outbound traffic to > > them around 10:00AM EDT. UUNET has a prompt on their phone menus about > > network instability, but didn't elaborate. Their NOC doesn't have any > > more details as of yet that they're passing along. > > > > jms > > > >
UUNet instability
Just announced on their site: http://www1.worldcom.com/us/tools/noc/status.xml -- Jason Beltrame INetU, Inc.(tm)- http://www.INetU.net Electronic commerce - Web development - Web hosting [EMAIL PROTECTED] - Phone: (610) 266-7441
Re: UUNET instability?
On Thu, 25 Apr 2002, mike harrison wrote: > > > And us as well.. it's coming back up quickly.. > and I am seeing routes restored. I hate it when > this happens right after everyone walks out the > door for lunch. Can't we schedule our unscheduled > outages better? > > Hopefully this is not related to the small explosion that > just occured in NYC. It may be an industrial accident, > it was at a tech school (auto/etc..) or it may not be. 19th st and 6th avenue, they teach welding among other things so They're likely to have lots of bottled volatile gases around. > > > On Thu, 25 Apr 2002, German Martinez wrote: > > Justin, > > We saw a big traffic drop from them exactly at the same time that you saw. > > We are contacting them to get more details. In fact, our BGP session with > > them reseted. > > > > German > > > > On Thu, 25 Apr 2002, Streiner, Justin wrote: > > > > > > > > Anyone else seeing routing instability through UUNET or have any more > > > details? I saw a significant drop in my inbound and outbound traffic to > > > them around 10:00AM EDT. UUNET has a prompt on their phone menus about > > > network instability, but didn't elaborate. Their NOC doesn't have any > > > more details as of yet that they're passing along. > > > > > > jms > > > > > > > > -- -- Joel Jaeggli Academic User Services [EMAIL PROTECTED] --PGP Key Fingerprint: 1DE9 8FCA 51FB 4195 B42A 9C32 A30D 121E -- In Dr. Johnson's famous dictionary patriotism is defined as the last resort of the scoundrel. With all due respect to an enlightened but inferior lexicographer I beg to submit that it is the first. -- Ambrose Bierce, "The Devil's Dictionary"
Re: UUNET instability?
Is there a way to notify UUNET of the problem ? (I know they are problably aware, but it would make me feel better) Since I am not a UUNET customer they will not even speak to me. My Customers are screaming at me and I have to open trouble tickets with at least 5 providers. I have to explain to my customers what is going on and I am powerless. - Original Message - From: "Pena, Antonio" <[EMAIL PROTECTED]> To: "'Streiner, Justin'" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> Sent: Thursday, April 25, 2002 12:10 PM Subject: RE: UUNET instability? > > Yes, we are peering with UUNet in too many cities a cross USA and all the > Network is a messed up, also I found some BGP session cleared by UUNet > peering routers. > > Antonio J. Pena > > -Original Message- > From: Streiner, Justin [mailto:[EMAIL PROTECTED]] > Sent: Thursday, April 25, 2002 8:01 AM > To: [EMAIL PROTECTED] > Subject: UUNET instability? > > > > Anyone else seeing routing instability through UUNET or have any more > details? I saw a significant drop in my inbound and outbound traffic to > them around 10:00AM EDT. UUNET has a prompt on their phone menus about > network instability, but didn't elaborate. Their NOC doesn't have any > more details as of yet that they're passing along. > > jms
Re: UUNET instability?
And us as well.. it's coming back up quickly.. and I am seeing routes restored. I hate it when this happens right after everyone walks out the door for lunch. Can't we schedule our unscheduled outages better? Hopefully this is not related to the small explosion that just occured in NYC. It may be an industrial accident, it was at a tech school (auto/etc..) or it may not be. On Thu, 25 Apr 2002, German Martinez wrote: > Justin, > We saw a big traffic drop from them exactly at the same time that you saw. > We are contacting them to get more details. In fact, our BGP session with > them reseted. > > German > > On Thu, 25 Apr 2002, Streiner, Justin wrote: > > > > > Anyone else seeing routing instability through UUNET or have any more > > details? I saw a significant drop in my inbound and outbound traffic to > > them around 10:00AM EDT. UUNET has a prompt on their phone menus about > > network instability, but didn't elaborate. Their NOC doesn't have any > > more details as of yet that they're passing along. > > > > jms > > > >
RE: UUNET instability?
Here is Memphis we are seeing the same thing. Twice this morning we have dropped and our BGP is freaking out. -Original Message- From: Streiner, Justin [mailto:[EMAIL PROTECTED]] Sent: Thursday, April 25, 2002 10:01 AM To: [EMAIL PROTECTED] Subject: UUNET instability? Anyone else seeing routing instability through UUNET or have any more details? I saw a significant drop in my inbound and outbound traffic to them around 10:00AM EDT. UUNET has a prompt on their phone menus about network instability, but didn't elaborate. Their NOC doesn't have any more details as of yet that they're passing along. jms
RE: UUNET instability?
Yes, we are peering with UUNet in too many cities a cross USA and all the Network is a messed up, also I found some BGP session cleared by UUNet peering routers. Antonio J. Pena -Original Message- From: Streiner, Justin [mailto:[EMAIL PROTECTED]] Sent: Thursday, April 25, 2002 8:01 AM To: [EMAIL PROTECTED] Subject: UUNET instability? Anyone else seeing routing instability through UUNET or have any more details? I saw a significant drop in my inbound and outbound traffic to them around 10:00AM EDT. UUNET has a prompt on their phone menus about network instability, but didn't elaborate. Their NOC doesn't have any more details as of yet that they're passing along. jms
Re: UUNET instability? (fwd)
We have seen the same thing at 10:10am Eastern time and now at 11:45am. In fact, it's ongoing but we've not received any official explanation. And as always, www.noc.uu.net reports 'all is well'. Kevin >> Anyone else seeing routing instability through UUNET or have any more >> details? I saw a significant drop in my inbound and outbound traffic to >> them around 10:00AM EDT. UUNET has a prompt on their phone menus about >> network instability, but didn't elaborate. Their NOC doesn't have any >> more details as of yet that they're passing along. > >I got similiar when I called in. I also saw my circuit to them drop at >7:07:42 PDT and a series of up/downs until 7:13 PDT (along with a few BGP >resets). NOC claims that that's due to backbone routing issues, which I had >a hard time believing (at least the up/downs). I escalated it and got a >more knowledgable NOCite who re-iterated the instability issues and said >he'd get back to me with more info.
Re: UUNET instability?
UUNET support says that the outage relates to a train derailment in the northeast that occured this morning. master ticket no. 562655. dan > Anyone else seeing routing instability through UUNET or have any more > details? I saw a significant drop in my inbound and outbound traffic to > them around 10:00AM EDT. UUNET has a prompt on their phone menus about > network instability, but didn't elaborate. Their NOC doesn't have any > more details as of yet that they're passing along. > > jms > >
RE: UUNET instability?
UUNET confirmed that they had a network-wide outage (ISIS related) around that time which caused some bgp sessions to reset. The issue seems to be resolved at this time. They are still isolating the problem. Hazim > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > Streiner, Justin > Sent: Thursday, April 25, 2002 11:01 AM > To: [EMAIL PROTECTED] > Subject: UUNET instability? > > > > Anyone else seeing routing instability through UUNET or have any more > details? I saw a significant drop in my inbound and outbound traffic to > them around 10:00AM EDT. UUNET has a prompt on their phone menus about > network instability, but didn't elaborate. Their NOC doesn't have any > more details as of yet that they're passing along. > > jms >
Announcement: IRRToolSet version 4.7.2 released.
[ Apologies for duplicate mails ] Dear collegues, We are pleased to announce the release of Version 4.7.2 of the IRRToolSet, formerly known as RAToolSet. Changes: - aoe is back and working, RPSL compliant - several bugfixes in roe/RtConfig/prpath have been made You can download this release by anonymous FTP from the following URL: ftp://ftp.ripe.net/tools/IRRToolSet/IRRToolSet-4.7.2.tar.gz You may also want to check IRRToolSet page: http://www.ripe.net/ripencc/pub-services/db/irrtoolset/index.html The mailing list archive is available here: http://www.ripe.net/ripencc/mail-archives/irrtoolset/index.html We want to thank everyone participated in testing and sending us suggestions and bug reports. We appreciate your help and feedback. If you have any questions, please don't hesitate to contact [EMAIL PROTECTED] -- Kind regards, Katie Petrusha RIPE NCC
Re: incorrect NXDOMAIN response from DNS server
On Thu, 25 Apr 2002 11:30:27 +0900, Jun-ichiro itojun Hagino <[EMAIL PROTECTED]> said: > there are name server implementations (probably load balancing product) > that responds with NXDOMAIN, when it should respond with NOERROR with > empty reply. one example is news.bbc.co.uk. this symptom not only > confuse IPv6-ready client resolvers, but also has bad effect against > negative caching and email delivery (if MX is responded with NODOMAIN). > > do you know: > - name of particular implementation which have/had this bug? > - other examples of nameservers that behave like this? > (windowsupdate.microsoft.com behaved like this in Feb 2002, but > they are already fixed) > - how can we get people to fix it? (client side workaround should > not be populated, just to be sure) There are apparently several products that have this problem, some of which are sufficiently widely enough deployed that since Sendmail 8.11.3 or so, there has been a configure option 'WorkAroundBroken' (available as a FFR in 8.11.3, and in the base code as of 8.12.0. I am told by people who have tripped over this problem more often than I have that *early* releases of djbdns did this - but that it is fixed in anything resembling a current release so the "right" fix is getting the offender to upgrade his software (which is often futile...) -- Valdis Kletnieks Computer Systems Senior Engineer Virginia Tech msg01147/pgp0.pgp Description: PGP signature
Re: UUNET instability?
On Thu, 25 Apr 2002 11:07:41 -0400 "Chris Pace" <[EMAIL PROTECTED]> wrote: > > It was really bad this morning. I had problems with > Bellsouth, AT&T and > Qwest's connection to UUNET. > Does anyone know if there is a web site or newsgroup I > can get alerts and > updates about what is going on with UUNET ? > Hello; For some reason they have been deagregating since Wednesday morning - double the number of prefixes in a little less announced address space. Regards Marshall Eubanks > - Original Message - > From: "Streiner, Justin" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Sent: Thursday, April 25, 2002 11:01 AM > Subject: UUNET instability? > > > > > > Anyone else seeing routing instability through UUNET or > have any more > > details? I saw a significant drop in my inbound and > outbound traffic to > > them around 10:00AM EDT. UUNET has a prompt on their > phone menus about > > network instability, but didn't elaborate. Their NOC > doesn't have any > > more details as of yet that they're passing along. > > > > jms > > >
Re: UUNET instability?
Justin, We saw a big traffic drop from them exactly at the same time that you saw. We are contacting them to get more details. In fact, our BGP session with them reseted. German On Thu, 25 Apr 2002, Streiner, Justin wrote: > > Anyone else seeing routing instability through UUNET or have any more > details? I saw a significant drop in my inbound and outbound traffic to > them around 10:00AM EDT. UUNET has a prompt on their phone menus about > network instability, but didn't elaborate. Their NOC doesn't have any > more details as of yet that they're passing along. > > jms >
Re: UUNET instability?
I tried to get a couple of messages to the list earlier, but I guess the problems stop it. -- Forwarded message -- Date: Thu, 25 Apr 2002 10:07:37 -0400 (EDT) From: James S. Smith <[EMAIL PROTECTED]> To: [EMAIL PROTECTED] Subject: Problems with UUNet backbone Maybe this is unrelated, but myself and some other collegues I've contact by phone just in the past few minutes have noticed some connectivity problems with the Worldcom backbone. Particularly, some routers on 152.63.131.0 seem to be down. The result is I can't get to the root name servers. I've tried tracerouting to all 13 root name server and I can only get to 3. The traceroutes all die in the block I mentioned about. Anybody else noticing this? Can anybody responsible for the IP block confirm? On Thu, 25 Apr 2002, Streiner, Justin wrote: > > Anyone else seeing routing instability through UUNET or have any more > details? I saw a significant drop in my inbound and outbound traffic to > them around 10:00AM EDT. UUNET has a prompt on their phone menus about > network instability, but didn't elaborate. Their NOC doesn't have any > more details as of yet that they're passing along. > > jms > --
Re: UUNET instability?
> Does anyone know if there is a web site or newsgroup I can get alerts and > updates about what is going on with UUNET ? http://quotes.nasdaq.com/Quote.dll?mode=stock&symbol=wcom&symbol=&symbol=&symbol=&symbol=&symbol=&symbol=&symbol=&symbol=&symbol=&quick.x=0&quick.y=0
Re: UUNET instability?
On Thu, 25 Apr 2002, Chris Pace wrote: > > It was really bad this morning. I had problems with Bellsouth, AT&T and > Qwest's connection to UUNET. > Does anyone know if there is a web site or newsgroup I can get alerts and > updates about what is going on with UUNET ? There's www.noc.uu.net, but unless the problem is long lasting or severe enough that it can't be swept under the rug, they don't seem to admit to anything on that page. -- -- Jon Lewis *[EMAIL PROTECTED]*| I route System Administrator| therefore you are Atlantic Net| _ http://www.lewis.org/~jlewis/pgp for PGP public key_
Re: UUNET instability?
> Anyone else seeing routing instability through UUNET or have any more > details? I saw a significant drop in my inbound and outbound traffic to > them around 10:00AM EDT. UUNET has a prompt on their phone menus about > network instability, but didn't elaborate. Their NOC doesn't have any > more details as of yet that they're passing along. I got similiar when I called in. I also saw my circuit to them drop at 7:07:42 PDT and a series of up/downs until 7:13 PDT (along with a few BGP resets). NOC claims that that's due to backbone routing issues, which I had a hard time believing (at least the up/downs). I escalated it and got a more knowledgable NOCite who re-iterated the instability issues and said he'd get back to me with more info. - mz
Re: UUNET instability?
On Thu, 25 Apr 2002, Streiner, Justin wrote: > Anyone else seeing routing instability through UUNET or have any more > details? I saw a significant drop in my inbound and outbound traffic to > them around 10:00AM EDT. UUNET has a prompt on their phone menus about I saw the same thing on our UUNET connection. Backbone: Normalhm -- -- Jon Lewis *[EMAIL PROTECTED]*| I route System Administrator| therefore you are Atlantic Net| _ http://www.lewis.org/~jlewis/pgp for PGP public key_
RE: UUNET instability?
Our Manhattan, KS POP had some trouble around 9:00am CST ago but I can't find any evidence. BGP sessions haven't been touched, no downed interfaces, etc... We have one T1 to UUNet at that location. blake > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > Streiner, Justin > Sent: Thursday, April 25, 2002 10:01 AM > To: [EMAIL PROTECTED] > Subject: UUNET instability? > > > > Anyone else seeing routing instability through UUNET or have any more > details? I saw a significant drop in my inbound and outbound > traffic to > them around 10:00AM EDT. UUNET has a prompt on their phone > menus about > network instability, but didn't elaborate. Their NOC doesn't have any > more details as of yet that they're passing along. > > jms > >
Re: UUNET instability?
It was really bad this morning. I had problems with Bellsouth, AT&T and Qwest's connection to UUNET. Does anyone know if there is a web site or newsgroup I can get alerts and updates about what is going on with UUNET ? - Original Message - From: "Streiner, Justin" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Thursday, April 25, 2002 11:01 AM Subject: UUNET instability? > > Anyone else seeing routing instability through UUNET or have any more > details? I saw a significant drop in my inbound and outbound traffic to > them around 10:00AM EDT. UUNET has a prompt on their phone menus about > network instability, but didn't elaborate. Their NOC doesn't have any > more details as of yet that they're passing along. > > jms >
UUNET instability?
Anyone else seeing routing instability through UUNET or have any more details? I saw a significant drop in my inbound and outbound traffic to them around 10:00AM EDT. UUNET has a prompt on their phone menus about network instability, but didn't elaborate. Their NOC doesn't have any more details as of yet that they're passing along. jms
Re: incorrect NXDOMAIN response from DNS server
>> do you know: >> - name of particular implementation which have/had this bug? >"BBC Intelligent Load Balancing DNS Server" i heard that it was based on lbnamed 1.2. i have confirmed that lbnamed 1.2 distribution contains buggy sample config file (perl5/lbnamed.conf{,.example} in the distribution). if any of you are running load balancing nameserver based on lbnamed 1.2, please fix it. thanks! itojun
RE: CIA Warns of Chinese Plans for Cyber-Attacks on U.S.
Someone in the CIA is looking for funding... Just my 2¢. -Al -Original Message- From: Steve Goldstein [mailto:[EMAIL PROTECTED]] Sent: Thursday, April 25, 2002 5:40 AM To: [EMAIL PROTECTED] Subject: CIA Warns of Chinese Plans for Cyber-Attacks on U.S. I have no idea how real the implied threat may be. Just passing this along. --SG -- Defense: Analysts fear government and private efforts to sabotage federal Internet sites. By ERIC LICHTBLAU Times Staff Writer April 25 2002 WASHINGTON -- U.S. intelligence officials believe the Chinese military is working to launch wide-scale cyber-attacks on American and Taiwanese computer networks, including Internet-linked military systems considered vulnerable to sabotage, according to a classified CIA report. The complete article can be viewed at: http://www.latimes.com/la-042502china.story
CIA Warns of Chinese Plans for Cyber-Attacks on U.S.
I have no idea how real the implied threat may be. Just passing this along. --SG -- Defense: Analysts fear government and private efforts to sabotage federal Internet sites. By ERIC LICHTBLAU Times Staff Writer April 25 2002 WASHINGTON -- U.S. intelligence officials believe the Chinese military is working to launch wide-scale cyber-attacks on American and Taiwanese computer networks, including Internet-linked military systems considered vulnerable to sabotage, according to a classified CIA report. The complete article can be viewed at: http://www.latimes.com/la-042502china.story
RE: The Significance of Five 9's Reliability (fwd)
If you include leap years in the calculation, ie, 525,960 min/yr then yes, availability of 99.999 comes out to 5 min of downtime. The techniques the telcos follow to achieve 5 9s are amusing but here's a few comments. If I had the level of availability of my home phone on my frame/atm networks, I could probably get my handicap down to around 2 or 3. As it is, I have alot of trouble breaking 80. (golf reference) Another thing, some of the comments in this thread make me understand why the availability of the voice network infrastructure is so much superior to that of the data side of things. For one, alot of network engineers that I know don't know the ins and outs of how to calculate availability. This is troubling since it means that even if they accidently design a highly available network, they are left guessing and not predicting how available it will actually be. Every person who calls himself/herself a network *engineer* should be familiar with calculating 3 sorts of availability: 1) Device availability calculated by combining the availabilities of all the significant components of that device 2) The availability of serial vs parallel systems/designs 3) End to End availability calculated by combining the availabilities of groups of devices which function together to achieve a common purpose Some networks do not merit such analysis but you can bet that the 911 emergency services network does and should have this and much more detailed analysis. Another rant if I may. An engineer who can't calculate availability also can't calculate ROI. The cost of employing a certain network design is largely a factor of how available it's going to be. If you build a $2mil network where hour long outages cost the business $400k, maybe you should have built a $4mil networkespecially if you know that you can count on 20 hours of outages during normal business hours If you've read this far, you may be interested in a book tip on High Availability Networks: Cisco Press: "High Availability Network Fundamentals" by Chris Oggerino. Seems to cover enough detail...to have an impact on awareness... -Original Message- From: blitz [mailto:[EMAIL PROTECTED]] Sent: Wednesday, April 24, 2002 8:59 PM To: [EMAIL PROTECTED] Subject: RE: The Myth of Five 9's Reliability (fwd) But THAT was when phones had cranks on the side. ;) 5 nines is a myth, conjured up by sales cretins to have something to sell...If I remember, 5 nines translates to 6 minutes outage a YEAR..? (Correct me if I'm wrong here) It's a marketing ploy for liar sales people and CEO's, it has absolutely NOTHING to do with real-world conditions. >BTW - One of my best friends growing up ( and we took EE together ) >grandfather was the V.P. in charge of AT&T's LongLines division while a lot >of the "wire was pulled". From what he said of his grandfather's remarks, >they didn't think about five 9's. The question was how much spare/redundant >capacity did you have, both for dependability and to support the countries >growth. Not exactly "this quarter's profit" thinking -sigh-.
Re: Selective DNS replies
On Wed, 24 Apr 2002, Felicia Kaye wrote: > Bind9 does this wonderfully. =) Cool :) > Here's some extracts from my named.conf, as an example. Just remember, if > you have any zones in a view, then you must also add that zone to all the > other views, otherwise you'll end up not serving those zones at all to the > other views. =) [snip] Your conf file shows that it is set up as: Define a view Now allocate zonefiles to it What if you host multiple domains, and the view you want to give them overlap? Is it not possible to do: Make a zone file Put views in it just for that zone Make another zone file for a different domain Put view in it that overlap the first zoenfiles, but won't conflict because they are in a different zone. By overlap I mean something like this: Zone1: 'internal' = 10.0.1.0/24 + 'external' = 192.168.1.0/24 Zone2: 'internal' = 10.0.0.0/16 + 'external' = 192.168.0.0/16 Zone3: 'internal' = 127.0.0.0/8 + 'external' = 10.0.0.0/16 Make sense?
Re: Cisco blunders with insecure web page
Once upon a time, blitz <[EMAIL PROTECTED]> said: > >But applicants registering for the programme online discovered their > >banking and company details were going onto an open web page. When one > >irate silicon.com reader called the Cisco helpdesk, he was informed > >that the company was aware of the problem because several other users > >had complained. > >In a statement, Cisco said it had pulled the registration URL for 48 > >hours to install SSL (secure sockets layer) - a common way of securing > >web pages. SSL does not secure web pages. It secures web _traffic_. If you don't protect a web page by required a password (either via HTTP authentication or a CGI based scheme), SSL won't help protect the data stored on the web server one bit. Okay, SSL _can_ be used to secure web pages with client certs, but that is not as common in the "real world" as different forms of password based authentication. Or is the article an over-simplification of the issue? -- Chris Adams <[EMAIL PROTECTED]> Systems and Network Administrator - HiWAAY Internet Services I don't speak for anybody but myself - that's enough trouble.
Re: Cisco blunders with insecure web page
> >But applicants registering for the programme online discovered their > >banking and company details were going onto an open web page. When one Makes it sound like Cisco were publishing the private details, so they forgot an SSL cert. big deal, its not like snooping unencrypted details on ISP backbones is a reality anyway! > >irate silicon.com reader called the Cisco helpdesk, he was informed > >that the company was aware of the problem because several other users > >had complained. In fact people have much more access to the information when its posted in the mail.. looks like Silicon have an axe to grind Steve > >Helpdesk staff recommended that users enter fake details on the web > >and forward the real information in the post, a course of action our > >reader regarded as an extreme waste of time. > > > >In a statement, Cisco said it had pulled the registration URL for 48 > >hours to install SSL (secure sockets layer) - a common way of securing > >web pages. > > > >A spokesman for the company said: "I can only put it down to an > >unfortunate oversight in corporate procedure¬ a great deal of > >people have been affected but that's no excuse." > > > >The registration site had been running for 10 days before it was taken > >down on Monday. Cisco said just 100 people had registered in that > >time. > >
Cisco blunders with insecure web page
Cute..like they didn't know any better, sheesh! >http://www.silicon.com/public/door?6004REQEVENT=&REQINT1=52897&REQSTR1=silicon.com > >Wednesday 24th April 2002 > >Cisco has been forced to close an online registration form after >neglecting to secure the web page. > >The page was part of a marketing programme which offered Cisco's >second-tier resellers in Europe the chance to increase marketing funds >if they upped sales of certain Cisco products. > >But applicants registering for the programme online discovered their >banking and company details were going onto an open web page. When one >irate silicon.com reader called the Cisco helpdesk, he was informed >that the company was aware of the problem because several other users >had complained. > >Helpdesk staff recommended that users enter fake details on the web >and forward the real information in the post, a course of action our >reader regarded as an extreme waste of time. > >In a statement, Cisco said it had pulled the registration URL for 48 >hours to install SSL (secure sockets layer) - a common way of securing >web pages. > >A spokesman for the company said: "I can only put it down to an >unfortunate oversight in corporate procedure¬ a great deal of >people have been affected but that's no excuse." > >The registration site had been running for 10 days before it was taken >down on Monday. Cisco said just 100 people had registered in that >time.
RE: The Myth of Five 9's Reliability (fwd)
But THAT was when phones had cranks on the side. ;) 5 nines is a myth, conjured up by sales cretins to have something to sell...If I remember, 5 nines translates to 6 minutes outage a YEAR..? (Correct me if I'm wrong here) It's a marketing ploy for liar sales people and CEO's, it has absolutely NOTHING to do with real-world conditions. >BTW - One of my best friends growing up ( and we took EE together ) >grandfather was the V.P. in charge of AT&T's LongLines division while a lot >of the "wire was pulled". From what he said of his grandfather's remarks, >they didn't think about five 9's. The question was how much spare/redundant >capacity did you have, both for dependability and to support the countries >growth. Not exactly "this quarter's profit" thinking -sigh-.
Re: Selective DNS replies
Hey Chris ;) On Thu, 25 Apr 2002, Christopher L. Morrow wrote: > I believe this is in the context of: > 'hax0r _bob (for instance) has a PTR for his ip which says > "I.love.humble.net" when machines a->y query for the PTR, BUT when machine > z queries it returns "www.cert.org"' Hmmm, yes and no :-) > I could be off base here, but I think this is the question Avleen is > asking, eh? I was asking about almost the opposite. Actual scenario is this: Load balancing WWW and IRC servers. I believe this use of load-balanced DNS would be a fairly typical use. I want all users from IP space allocated to ARIN to go to my US web and IRC servers. I want all other users to go to my EU based servers. I want to maintain two primary servers in each continent as hubs across which all traffic flows, and data is sync'd. As someone clearly pointed out to me, people have taken IP space from these regions and ported it to other places in the world. While this may be true, I believe it's use is small enough that I don't have to worry about it too much. On the other hand what you point out would be a very important effect for this. Potentially a good way to obfuscate your hostnames to either a small select group, or to the whole world.