CPE Router question
Does anyone have information regarding what type of low end routers people are using to provide Internet connectivity via DS3 and OC3 interfaces to customers without costing an arm and a leg! Very interested in pricing/vendors. Thanks in advance! Sonya Blake [EMAIL PROTECTED] 678-441-7973
Re: bulk email
At 07:15 AM 4/22/2002, James Cronin wrote: As it's still likely to end up with the most popular domains hotmail.com, yahoo.com, aol.com having several thousand recipients though I'm still interested in whether anyone has more experience of ensuring that mail doesn't get blackholed. At my last job, we successfully flew under the radar by sending individual messages to each recipient. We were sending info to around four hundred thousand registered users of our site and some tens of thousands were at yahoo, hotmail, aol c. Our only problems were on our side ... we ran out of filehandles a couple times. If anyone wants to take a look at the quick and dirty perl script I wrote, you're welcome to it. -- Gabriel M. Schuyler, outlaw And all I ask is a tall ship and a star to steer her by.
Selective DNS replies
This subject has probably been talked to death, so I apologise in advance for bringing it up! Is there any DNS server currently availible that can reply to DNS lookups based on the source IP address? Yes, this would be for directing users to a 'local' server hosting www.example.org (or something similar). Yes, this is not the best way of doing it I know :-) I was wondering if there was something available that DID this yet. Thanks. -- Avleen Vig Work Time: Unix Systems Administrator Play Time: Network Security Officer Smurf Amplifier Finding Executive: http://www.ircnetops.org/smurf
Re: Selective DNS replies
On Wed, Apr 24, 2002 at 08:55:15PM +0100, Avleen Vig wrote: This subject has probably been talked to death, so I apologise in advance for bringing it up! Is there any DNS server currently availible that can reply to DNS lookups based on the source IP address? Yes, this would be for directing users to a 'local' server hosting www.example.org (or something similar). Yes, this is not the best way of doing it I know :-) Something more dynamic than Bind9 views? Adi
Re: Selective DNS replies
On Wed Apr 24, 2002 at 08:55:15PM +0100, Avleen Vig wrote: Is there any DNS server currently availible that can reply to DNS lookups based on the source IP address? Yes, all those global load balancing products. (e.g. Cisco Distributed Director). Alternatively, some people (myself included) have written their own DNS server for use within their organisation which does the same thing. I'm not aware of a freeware solution to this. Yes, this would be for directing users to a 'local' server hosting www.example.org (or something similar). Yes, this is not the best way of doing it I know :-) It's the best way to do global server load balancing, as I see it. Simon -- Simon Lockhart | Tel: +44 (0)1737 839676 Internet Engineering Manager | Fax: +44 (0)1737 839516 BBC Internet Services| Email: [EMAIL PROTECTED] Kingswood Warren,Tadworth,Surrey,UK | URL: http://support.bbc.co.uk/
The Myth of Five 9's Reliability (fwd)
From the Canarie news mailing list. I don't think I've ever experienced five 9's on any telco service, I have always assumed I must be the one customer experiencing down-time, and the aggregate was somehow five 9's. How is network reliability calculated to end up with five 9's? Pete. -- Forwarded message -- Date: Wed, 24 Apr 2002 10:08:18 -0400 (EDT) From: [EMAIL PROTECTED] Subject: [news] The Myth of Five 9's Reliability For more information on this item please visit the CANARIE CA*net 3 Optical Internet program web site at http://www.canet3.net/news/news.html --- [A good article on the truth about five 9's reliability. Some excerpts - BSA] http://www.bcr.com/forum Deep Six Five-Nines? For much of the 20th century, the U.S. enjoyed the best network money could buy; hands-down, it was the most modern, most ubiquitous and most reliable in the world. And one term--five-nines--came to symbolize the network's robustness, its high availability, its virtual indestructibility. When the goal of five-nines was set, the network was planned, designed and operated by a monopoly, which was guaranteed a return on whatever it invested. It was in the monopoly's interest to make the network as platinum-plated as possible. One of the key points is that five-nines has long been somewhat overrated. Five-nines is NOT an inherent capability of circuit-switched, TDM networks. It's a manmade concept, derived from a mathematical equation, which includes some things and leaves out others. It's critical to remember that when you run the performance numbers on ALL the items in a network--those that are included in the five-nines equation and those that aren't--you're probably going to wind up with a number less than 99.999 percent. A well-run network actually delivers something around 99.45 percent. The gap between the rhetoric of five-nines and actual network performance leads to the conclusion that five-nines may not be a realistic or even necessary goal.
Re: Selective DNS replies
On 2002-04-24-15:55:15, Avleen Vig [EMAIL PROTECTED] wrote: Is there any DNS server currently availible that can reply to DNS lookups based on the source IP address? tinydns can; the obvious challenge is devising a useful set of mapping metrics. -a
Re: The Myth of Five 9's Reliability (fwd)
How to calculate uptime and get 5 9s -do not include any outage less than 20 minutes. -only include down lines that are actually reported by customers. -when possible fix the line and report 'no trouble found'. -remember that your company is penalized by the FCC for bad ratings, so don't report any problems that you do not have to. On Wed, 24 Apr 2002, Pete Kruckenberg wrote: From the Canarie news mailing list. I don't think I've ever experienced five 9's on any telco service, I have always assumed I must be the one customer experiencing down-time, and the aggregate was somehow five 9's. How is network reliability calculated to end up with five 9's? Pete. -- Forwarded message -- Date: Wed, 24 Apr 2002 10:08:18 -0400 (EDT) From: [EMAIL PROTECTED] Subject: [news] The Myth of Five 9's Reliability For more information on this item please visit the CANARIE CA*net 3 Optical Internet program web site at http://www.canet3.net/news/news.html --- [A good article on the truth about five 9's reliability. Some excerpts - BSA] http://www.bcr.com/forum Deep Six Five-Nines? For much of the 20th century, the U.S. enjoyed the best network money could buy; hands-down, it was the most modern, most ubiquitous and most reliable in the world. And one term--five-nines--came to symbolize the network's robustness, its high availability, its virtual indestructibility. When the goal of five-nines was set, the network was planned, designed and operated by a monopoly, which was guaranteed a return on whatever it invested. It was in the monopoly's interest to make the network as platinum-plated as possible. One of the key points is that five-nines has long been somewhat overrated. Five-nines is NOT an inherent capability of circuit-switched, TDM networks. It's a manmade concept, derived from a mathematical equation, which includes some things and leaves out others. It's critical to remember that when you run the performance numbers on ALL the items in a network--those that are included in the five-nines equation and those that aren't--you're probably going to wind up with a number less than 99.999 percent. A well-run network actually delivers something around 99.45 percent. The gap between the rhetoric of five-nines and actual network performance leads to the conclusion that five-nines may not be a realistic or even necessary goal. Art Houle e-mail: [EMAIL PROTECTED] Academic Computing Network ServicesVoice: 850-644-2591 Florida State University FAX: 850-644-8722
Re: The Myth of Five 9's Reliability (fwd)
On Wed, 24 Apr 2002, Art Houle wrote: How to calculate uptime and get 5 9s -do not include any outage less than 20 minutes. -only include down lines that are actually reported by customers. -when possible fix the line and report 'no trouble found'. -remember that your company is penalized by the FCC for bad ratings, so don't report any problems that you do not have to. -always close out tickets 60 seconds before they are scheduled to be escalated, even if the problem is still open. -Dan -- [-] Omae no subete no kichi wa ore no mono da. [-]
Re: The Myth of Five 9's Reliability (fwd)
Art Houle wrote: How to calculate uptime and get 5 9s -do not include any outage less than 20 minutes. -only include down lines that are actually reported by customers. -when possible fix the line and report 'no trouble found'. -remember that your company is penalized by the FCC for bad ratings, so don't report any problems that you do not have to. You forgot my favorite : Every trouble report from a customer must include at least 2 hours on hold before a ticket is opened. Regards Marshall Eubanks On Wed, 24 Apr 2002, Pete Kruckenberg wrote: From the Canarie news mailing list. I don't think I've ever experienced five 9's on any telco service, I have always assumed I must be the one customer experiencing down-time, and the aggregate was somehow five 9's. How is network reliability calculated to end up with five 9's? Pete. -- Forwarded message -- Date: Wed, 24 Apr 2002 10:08:18 -0400 (EDT) From: [EMAIL PROTECTED] Subject: [news] The Myth of Five 9's Reliability For more information on this item please visit the CANARIE CA*net 3 Optical Internet program web site at http://www.canet3.net/news/news.html --- [A good article on the truth about five 9's reliability. Some excerpts - BSA] http://www.bcr.com/forum Deep Six Five-Nines? For much of the 20th century, the U.S. enjoyed the best network money could buy; hands-down, it was the most modern, most ubiquitous and most reliable in the world. And one term--five-nines--came to symbolize the network's robustness, its high availability, its virtual indestructibility. When the goal of five-nines was set, the network was planned, designed and operated by a monopoly, which was guaranteed a return on whatever it invested. It was in the monopoly's interest to make the network as platinum-plated as possible. One of the key points is that five-nines has long been somewhat overrated. Five-nines is NOT an inherent capability of circuit-switched, TDM networks. It's a manmade concept, derived from a mathematical equation, which includes some things and leaves out others. It's critical to remember that when you run the performance numbers on ALL the items in a network--those that are included in the five-nines equation and those that aren't--you're probably going to wind up with a number less than 99.999 percent. A well-run network actually delivers something around 99.45 percent. The gap between the rhetoric of five-nines and actual network performance leads to the conclusion that five-nines may not be a realistic or even necessary goal. Art Houle e-mail: [EMAIL PROTECTED] Academic Computing Network Services Voice: 850-644-2591 Florida State University FAX: 850-644-8722 -- Regards Marshall Eubanks This e-mail may contain confidential and proprietary information of Multicast Technologies, Inc, subject to Non-Disclosure Agreements T.M. Eubanks Multicast Technologies, Inc 10301 Democracy Lane, Suite 410 Fairfax, Virginia 22030 Phone : 703-293-9624 Fax : 703-293-9609 e-mail : [EMAIL PROTECTED] http://www.multicasttech.com Test your network for multicast : http://www.multicasttech.com/mt/ Status of Multicast on the Web : http://www.multicasttech.com/status/index.html
Re: The Myth of Five 9's Reliability (fwd)
On Wed, 24 Apr 2002, Art Houle wrote: Date: Wed, 24 Apr 2002 16:51:53 -0400 (EDT) From: Art Houle [EMAIL PROTECTED] To: Pete Kruckenberg [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: Re: The Myth of Five 9's Reliability (fwd) How to calculate uptime and get 5 9s -do not include any outage less than 20 minutes. -only include down lines that are actually reported by customers. -when possible fix the line and report 'no trouble found'. -remember that your company is penalized by the FCC for bad ratings, so don't report any problems that you do not have to. - Every ticket goes to Open-Fixed before hanging up... -- Yours, J.A. Terranson [EMAIL PROTECTED] If Governments really want us to behave like civilized human beings, they should give serious consideration towards setting a better example: Ruling by force, rather than consensus; the unrestrained application of unjust laws (which the victim-populations were never allowed input on in the first place); the State policy of justice only for the rich and elected; the intentional abuse and occassionally destruction of entire populations merely to distract an already apathetic and numb electorate... This type of demogoguery must surely wipe out the fascist United States as surely as it wiped out the fascist Union of Soviet Socialist Republics. The views expressed here are mine, and NOT those of my employers, associates, or others. Besides, if it *were* the opinion of all of those people, I doubt there would be a problem to bitch about in the first place...
Re: The Myth of Five 9's Reliability (fwd)
This is the sort of thing that can be discussed forever, but here's an anecdote anyway: At my previous employer, we hired a lot of people who had spent their entire careers either running or developing equipment for TDM voice networks. Their view of five nines for voice was that the network was up if the voice signaling infrastructure worked as designed -- not that you could actually get calls through the network. So, for example, if your long distance call could not be completed because bearer trunks were down, there wasn't enough capacity etc. etc. then the voice network was still up for five 9s calculation purposes even though you couldn't use it for its intended purpose. How many times have you received the All circuits are busy message? Some would say that was the voice network failing to function -- the Bell-shaped heads said it was working as designed. They were clear that what mattered was the signaling integrity of the network, not the application of voice connectivity itself. So, if you can get dial tone but not place a call, that's five 9s reliability at work. When applied randomly to the Internet, I suppose that means if you can dial into a RAS and establish a PPP/IPCP session, but the RAS' connection to the Internet is down, then the service is up :-) Cheers, Mathew At 04:51 PM 4/24/2002 -0400, Art Houle wrote: How to calculate uptime and get 5 9s -do not include any outage less than 20 minutes. -only include down lines that are actually reported by customers. -when possible fix the line and report 'no trouble found'. -remember that your company is penalized by the FCC for bad ratings, so don't report any problems that you do not have to. On Wed, 24 Apr 2002, Pete Kruckenberg wrote: From the Canarie news mailing list. I don't think I've ever experienced five 9's on any telco service, I have always assumed I must be the one customer experiencing down-time, and the aggregate was somehow five 9's. How is network reliability calculated to end up with five 9's? Pete. -- Forwarded message -- Date: Wed, 24 Apr 2002 10:08:18 -0400 (EDT) From: [EMAIL PROTECTED] Subject: [news] The Myth of Five 9's Reliability For more information on this item please visit the CANARIE CA*net 3 Optical Internet program web site at http://www.canet3.net/news/news.html --- [A good article on the truth about five 9's reliability. Some excerpts - BSA] http://www.bcr.com/forum Deep Six Five-Nines? For much of the 20th century, the U.S. enjoyed the best network money could buy; hands-down, it was the most modern, most ubiquitous and most reliable in the world. And one term--five-nines--came to symbolize the network's robustness, its high availability, its virtual indestructibility. When the goal of five-nines was set, the network was planned, designed and operated by a monopoly, which was guaranteed a return on whatever it invested. It was in the monopoly's interest to make the network as platinum-plated as possible. One of the key points is that five-nines has long been somewhat overrated. Five-nines is NOT an inherent capability of circuit-switched, TDM networks. It's a manmade concept, derived from a mathematical equation, which includes some things and leaves out others. It's critical to remember that when you run the performance numbers on ALL the items in a network--those that are included in the five-nines equation and those that aren't--you're probably going to wind up with a number less than 99.999 percent. A well-run network actually delivers something around 99.45 percent. The gap between the rhetoric of five-nines and actual network performance leads to the conclusion that five-nines may not be a realistic or even necessary goal. Art Houle e-mail: [EMAIL PROTECTED] Academic Computing Network Services Voice: 850-644-2591 Florida State University FAX: 850-644-8722 | Mathew Lodge | [EMAIL PROTECTED] | | Director, Product Management | Ph: +1 408 789 4068 | | CPLANE, Inc. | http://www.cplane.com |
Re: What extent do ISPs care about diff types of Traffic Engineering?
On Wednesday, April 24, 2002, at 03:47 , Shivkuma wrote: Inter-domain: - Hot potato/cold potato routing - Inbound load balancing (between peering links) - Inbound load balancing (between transit links or a mix of peering/transit) - Outbound load balancing (between peering links) - Outbound load balancing (between transit links or a mix of peering/transit) - Dont care about TE Are there other important categories of TE missed above? What about outbound path (exit) selection based on performance criteria like latency, loss, jitter or route stability? Joe
Re: Selective DNS replies
On Wed, Apr 24, 2002 at 09:00:49PM +0100, Simon Lockhart wrote: Yes, this would be for directing users to a 'local' server hosting www.example.org (or something similar). Yes, this is not the best way of doing it I know :-) It's the best way to do global server load balancing, as I see it. If you have a network, you can just use the same IP for your dns servers in multiple locations, and let your IGP route it to the closest one. -- Richard A Steenbergen [EMAIL PROTECTED] http://www.e-gerbil.net/ras PGP Key ID: 0x138EA177 (67 29 D7 BC E8 18 3E DA B2 46 B3 D8 14 36 FE B6)
Re: The Pointlessness of Five 9's Reliability
Even disregarding the issue of whether 99.999% network reliability is possible, people have made it abundantly clear that they don't want it. In this case I define to want as to be willing to pay even a little bit extra for. This is even the case in POTS telephony. I know lots of people who are happy to use 2 cpm long distance from Priceline et al, even though half the time the call doesn't go through. -- John R. Levine, IECC, POB 727, Trumansburg NY 14886 +1 607 387 6869 [EMAIL PROTECTED], Village Trustee and Sewer Commissioner, http://iecc.com/johnl, Member, Provisional board, Coalition Against Unsolicited Commercial E-mail
incorrect NXDOMAIN response from DNS server
the issue was originally raised on [EMAIL PROTECTED] there are name server implementations (probably load balancing product) that responds with NXDOMAIN, when it should respond with NOERROR with empty reply. one example is news.bbc.co.uk. this symptom not only confuse IPv6-ready client resolvers, but also has bad effect against negative caching and email delivery (if MX is responded with NODOMAIN). do you know: - name of particular implementation which have/had this bug? - other examples of nameservers that behave like this? (windowsupdate.microsoft.com behaved like this in Feb 2002, but they are already fixed) - how can we get people to fix it? (client side workaround should not be populated, just to be sure) itojun % dig news.bbc.co.uk. ; DiG 9.1.2 news.bbc.co.uk. ;; global options: printcmd ;; Got answer: ;; -HEADER- opcode: QUERY, status: NXDOMAIN, id: 60945 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;news.bbc.co.uk.IN ;; ANSWER SECTION: news.bbc.co.uk. 1770IN CNAME newswww.bbc.net.uk. ;; Query time: 2362 msec ;; SERVER: 127.0.0.1#53(0.0.0.0) ;; WHEN: Thu Apr 25 11:25:45 2002 ;; MSG SIZE rcvd: 62 % dig news.bbc.co.uk. a ; DiG 9.1.2 news.bbc.co.uk. a ;; global options: printcmd ;; Got answer: ;; -HEADER- opcode: QUERY, status: NOERROR, id: 11225 ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 2, ADDITIONAL: 2 ;; QUESTION SECTION: ;news.bbc.co.uk.IN A ;; ANSWER SECTION: news.bbc.co.uk. 1761IN CNAME newswww.bbc.net.uk. newswww.bbc.net.uk. 300 IN A 212.58.240.33 ;; AUTHORITY SECTION: bbc.net.uk. 14360 IN NS ns0.thny.bbc.co.uk. bbc.net.uk. 14360 IN NS ns0.thdo.bbc.co.uk. ;; ADDITIONAL SECTION: ns0.thdo.bbc.co.uk. 6362IN A 212.58.224.20 ns0.thny.bbc.co.uk. 6362IN A 38.160.150.20 ;; Query time: 2341 msec ;; SERVER: 127.0.0.1#53(0.0.0.0) ;; WHEN: Thu Apr 25 11:25:53 2002 ;; MSG SIZE rcvd: 156 ---BeginMessage--- Hi all, We've noticed that some sites like news.bbc.co.uk are running broken DNS servers that return NXDOMAIN for queries rather than NOERROR with zero answers. The NXDOMAIN reply indicates that there are no records of any type for the requested name, which is clearly not true since A records exist and are returned with an A query. Unfortunately, this means that applications that attempt queries are unable to resolve addresses that reside within these broken servers. And that includes WinXP with the IPv6 stack enabled. We would like to deploy IPv6 on Windows XP machines here, but our users complain loudly when they are not able to access BBC. Has anybody found a workaround for this problem? Judging by newsgroup messages, BBC has known about this problem for months and has neglected to fix it. At the very least, does anybody have an idea of how widespread is this problem? -Nathan -- +---+-++ | Nathan Lutchansky | [EMAIL PROTECTED] | Lithium Technologies | +--+ | I dread success. To have succeeded is to have finished one's | | business on earth... I like a state of continual becoming, | | with a goal in front and not behind. - George Bernard Shaw | +--+ msg01112/pgp0.pgp Description: PGP signature ---End Message---
Re: Selective DNS replies
On Wed, 24 Apr 2002, Avleen Vig wrote: Is there any DNS server currently availible that can reply to DNS lookups based on the source IP address? Yes. djbdns has done this for quite a while. Note I am not necessarily recommending the use of djbdns, I am just saying it will do this. I also know that bind9 has added functionality similar to what you are looking for. I'm a bind fan myself. - Forrest W. Christian ([EMAIL PROTECTED]) AC7DE -- The Innovation Machine Ltd. P.O. Box 5749 http://www.imach.com/Helena, MT 59604 Home of PacketFlux Technogies and BackupDNS.com (406)-442-6648 -- Protect your personal freedoms - visit http://www.lp.org/