Re: Wi-Fi Calling in a corporate environment

2024-08-02 Thread Brendan Carlson 
I've had issues with wifi calling on Palo Alto as well as delayed SMS
delivery and receive.

I had to allow port 500 and 4500 out to get this working properly. I am
planning on trying to implement a whitelist using IPs/domains in the future.

--Brendan

On Fri, Aug 2, 2024, 12:26  wrote:

> Thanks all.  Oddly enough, it seems that the entire site’s userbase
> suddenly started working.  From what I understand no action was taken to
> fix anything.  So unless a dynamic PaloAlto update broke it and then
> unbroke it later, I’m not sure what was going on.  I’ll debug a bit to know
> what a working baseline looks like, since I’m not sure.
>
>
>
> Thanks again,
>
>
>
> Chuck
>
>
>
> *From:* Tom Beecher 
> *Sent:* Friday, August 2, 2024 2:03 PM
> *To:* chuckchu...@gmail.com
> *Cc:* nanog@nanog.org
> *Subject:* Re: Wi-Fi Calling in a corporate environment
>
>
>
> My understanding has been that generally, if the cellular network signal
> was above a certain threshold, phones won't even attempt to use wifi
> calling. Some carriers used to let you flip a switch to force the phone to
> prefer wifi over cellular, but some have removed that. ( Verizon for
> example. )
>
>
>
> In my experience some years ago in a similar environment, that
> cellular threshold to switch was set so low that it was useless. I could be
> standing in a spot with barely tickling the bottom bar, and nothing. If I
> flipped to airplane mode, was able to wifi call instantly.
>
>
>
> On Fri, Aug 2, 2024 at 11:11 AM  wrote:
>
> Hey all,
>
>
>
>Question if anyone knows about cell phone wi-fi calling in
> US.  Googling isn’t finding what I’m looking for.  We have a corporate site
> in US where users have BYOD capability, and use their phones with wi-fi
> calling enabled.  Site uses a single NAT address (IPv4) for BYOD access.
> Recently the site reported wi-fi calling had stopped working for all user
> phones, Apple and Android, all about the same time.  The guest network did
> have some bandwidth limitation applied and they had overuse.  That was
> since resolved, we upped the bandwidth.  But the phones all still avoided
> wi-fi calling.  It’s a manufacturing site with known cell signal issues, so
> most users had no signal via carrier.  I did not get a packet capture yet
> to see what could be going on, we’re 99% sure we’re not blocking traffic.
> I’m wondering if the phones have an algorithm to test wi-fi signal, and
> perhaps the carriers will blacklist public IPs with known wi-fi calling
> issues to avoid cases where an emergency call can’t be made because of
> intermittent bad performance?  It seems odd that even when no bandwidth
> issues exist, it’s not attempted.
>
>
>
> Thoughts?
>
>
>
> Thanks,
>
>
>
> Chuck Church
>
>

Re: Lumen Seattle Contact

2023-10-11 Thread Brendan Carlson 
Hey All,

I got an escalation contact. All set here.

Thanks!

On Wed, Oct 11, 2023, 10:54 Brendan Carlson 
wrote:

> Hello All,
>
> I have a client in Seattle, they've been hard down since Sunday due to a
> replaced CL/Lumen switch in the building telephone room. They never got
> hooked up after the switch was replaced.
>
> Can someone please contact me off list about this?
>
> Thanks!
>

Lumen Seattle Contact

2023-10-11 Thread Brendan Carlson 
Hello All,

I have a client in Seattle, they've been hard down since Sunday due to a
replaced CL/Lumen switch in the building telephone room. They never got
hooked up after the switch was replaced.

Can someone please contact me off list about this?

Thanks!

AS11404 issues

2023-02-13 Thread Brendan Carlson 
Hello,

Anyone else experiencing routing issues with Wave (AS11404) business
services?

We've called a few times and the automated phone system keeps hanging up on
us.

If someone from Wave can reach out off list that would be great.

--Brendan

Re: IP reputation lookup (prefix not single IP)

2021-03-25 Thread Brendan Carlson 
I'll second Hetrix tools. We use them, they're great.

On Thu, Mar 25, 2021, 10:13 Alex Wacker  wrote:

> If you are willing to pay, hetrixtools is an option.
>
> On Thu, Mar 25, 2021 at 12:26 PM vom513  wrote:
>
>> Hello all,
>>
>> I’ve seen other folks asking the same/similar question in the past, but I
>> don’t recall seeing more than a few options out there to *try* to suss this
>> out.  Use case is someone I’m working with looking to buy a v4 block from a
>> broker.
>>
>> So far I’ve checked Talos and Sorbs (both allow a prefix lookup).  Most
>> of the other RBL/multi-RBL sites want a single IP (the use case being email
>> of course).  I won’t abuse their service by trying to lookup each single IP
>> in the block...
>>
>> Could anyone share anything/anywhere else I might look to get crumbs of
>> info on a given preifx ?
>>
>> Thanks.
>
>

Re: BGP full feed for testing purposes

2020-08-03 Thread Brendan Carlson 
Set up a Vultr instance and you can get a full feed from them for testing.
I've done this for a route collector and it worked well.

On Mon, Aug 3, 2020, 13:16 Blažej Krajňák  wrote:

> Hello,
>
> I'm wondering, if there is any public service I can get full BGP feed
> from for testing purposes.
>
> I admin multi-homed AS50242 with two default routes for now (fail-over).
> I'm going to prepare new routing setup with extended validation so reall
> full BGP feed would be usefull. Yes, I can ask my upstream provider for
> it, but I don't want to change settings in production setup.
>
>
> Thanks
>
> Regards,
> Blažej Krajňák
>

Re: CloudFlare Issues?

2020-07-19 Thread Brendan Carlson 
We're peered with them and are having issues resolving some domains via
Cloudflare right now.

On Fri, Jul 17, 2020 at 2:44 PM Aaron C. de Bruyn via NANOG 
wrote:

> More digging shows high latency to CloudFlare DNS servers from Comcast in
> Washington and Oregon as well as a few other providers (Charter,
> ToledoTel), etc...
>
> Sites that do resolve using other DNS servers but are hosted on CloudFlare
> aren't loading.
> Sites that use CloudFlare for their DNS aren't resolving either.
> traceroute to 1.1.1.1 (1.1.1.1), 30 hops max, 60 byte packets
>
>  1  _gateway (192.168.42.254)  0.185 ms  0.109 ms  0.117 ms
>  2  pppoe-gw-208-70-52.toledotel.com (208.70.52.1)  1.896 ms  1.881 ms
>  1.903 ms
>  3  tuk-edge-13.inet.qwest.net (198.233.244.225)  4.158 ms  4.082 ms
>  4.071 ms
>  4  sea-brdr-03.inet.qwest.net (67.14.41.154)  8.976 ms  8.949 ms  8.903
> ms
>  5  * * *
>  6  ae-1-51.ear2.Seattle1.Level3.net (4.69.203.173)  4.494 ms  4.350 ms
>  4.311 ms
>  7  4.53.154.10 (4.53.154.10)  77.622 ms  103.323 ms  103.240 ms
>  8  * * *
>  9  * * *
> 10  * * *
> 11  * * *
> 12  * * *
> 13  one.one.one.one (1.1.1.1)  87.515 ms * *
>
> -A
>
> On Fri, Jul 17, 2020 at 2:18 PM Aaron C. de Bruyn 
> wrote:
>
>> Anyone seeing Cloudflare DNS outages or site issues?
>>
>> Affecting a bunch of sites in Washington and Oregon.
>>
>> -A
>>
>

-- 


http://www.bcarlsonmedia.com
@brendancarlson 
+1 (626) 921-6503

Re: Tell me about AS19111

2020-02-06 Thread Brendan Carlson 
According to ARIN Who-Was they've had this ASN assigned and removed
multiple times.

Created 11-20-2000 19111 NATURES-BOUN AS19111 NATURE-24
Registration Removed 12-12-2006
Created 01-04-2007 19111 NATURES-BOUN AS19111 NATURE-24
Registration Removed 07-14-2009
Created 07-22-2009 19111 NATURES-BOUN AS19111 NATURE-24
Modified 01-09-2012 19111 NATURES-BOUN AS19111 NATURE-24
Registration Removed 04-07-2015
Created 02-01-2016 19111 NBTY19111 AS19111 NATURE-24
Registration Removed 04-11-2017

I'm assuming this is due to non-payment each time.

On Thu, Feb 6, 2020 at 7:22 AM Rich Kulawiec  wrote:

> On Thu, Feb 06, 2020 at 09:08:35AM +0100, Pierfrancesco Caci wrote:
> > You would sound much more credible if you'd step down the high horse and
> > stop insulting the very same people you're supposed to work with.
>
> You're concerned with policing his tone instead of dealing with the
> massive security failure -- on the part of *many* of us -- that this
> represents?
>
> If I have something horrible going on with a service/server/network/etc.
> that I'm responsible for and I don't catch it, then I'm grateful to
> anyone who reports it -- because they've caught my mistake, which is
> helpful to me and to everyone impacted by it.  I'll worry about my
> bruised ego later, it won't be the first time.  Or the last.
>
> ---rsk
>
>

-- 


http://www.bcarlsonmedia.com
@brendancarlson 
+1 (626) 921-6503