Re: Publish or (gulp) Perish
I'm leaving off news publications like Light Reading and Network World. Any thoughts? Have NANOG powerpoint presentations made these sorts of journals obsolete? :) My favorite journal is the NANOG slide presentations. They are nice abstracts of someone's work, much better than the traditional journal abstract, and they almost always contain a URL that takes you to the author's website where you can download full papers and see the author's other work. Then it's off to citeseer which has recently moved to http://citeseer.ist.psu.edu/ There I can track down references and work by co-authors. --Michael Dillon
are we streaming email or did we die
Now I am curious -Henry
Re: Publish or (gulp) Perish
On Tue, Mar 23, 2004 at 03:01:56PM -0500, Daniel Golding wrote: [ various journals ] Any thoughts? Have NANOG powerpoint presentations made these sorts of journals obsolete? :) Powerpoints have a hard time matching the depth of a refereed journal submission, because with the powerpoint, soundbites tend to take precedence over content. /vijay
Re: Publish or (gulp) Perish
Any thoughts? Have NANOG powerpoint presentations made these sorts of journals obsolete? :) Powerpoints have a hard time matching the depth of a refereed journal submission, because with the powerpoint, soundbites tend to take precedence over content. Power corrupts; Powerpoint corrupts absolutely. -- vint cerf
RADIUS/AAA packet generator
Hi anyone knows of a free/opensource radius/aaa packet generator? Replies of list would be greatly appreciated. TIA Dean
Problems with .de abuse
over the past couple of days, at least two of our servers have been inundated with rather amateurish attempts to login as various priviledged users. We're talking at least hundreds of attempts, mostly from 62.104.92 and 62.104.82. I whois shows the /16 (which I finally null routed the whole thing) belongs to: role: Network Management address: freenet Cityline GmbH address: Network Managment Center address: Juri Gagarin Ring 88 address: 99084 Erfurt address: Germany phone:+49 361 594 2961 remarks: remarks: * please report spam/abuse mailto:[EMAIL PROTECTED] * remarks: * reports to other addresses will not be processed * remarks: I sent the abuse email 2 days ago and got no response. After 2 more days of this, I finally just tried to call that number, and it's bogus (or at least not working). Does anyone have a clue who this is and/or how to actually get ahold of someone there (preferably one who speaks or reads/writes English)? TIA, James Smallacombe PlantageNet, Inc. CEO and Janitor [EMAIL PROTECTED] http://3.am =
Re: Problems with .de abuse
On Wed, 24 Mar 2004 [EMAIL PROTECTED] wrote: over the past couple of days, at least two of our servers have been inundated with rather amateurish attempts to login as various priviledged users. I would check out the other roles referenced in the AS5430 object and failing that perhaps someone at Telia or Level3 can help. Regards, J. -- Jess Kitchen ^ burstfire.net[works] _25492$ | www.burstfire.net.uk
Re: Publish or (gulp) Perish
On 3/24/04 9:50 AM, vijay gill [EMAIL PROTECTED] wrote: On Tue, Mar 23, 2004 at 03:01:56PM -0500, Daniel Golding wrote: [ various journals ] Any thoughts? Have NANOG powerpoint presentations made these sorts of journals obsolete? :) Powerpoints have a hard time matching the depth of a refereed journal submission, because with the powerpoint, soundbites tend to take precedence over content. /vijay Vijay hit it on the head - have we all been foolish by trying to put our collective expression of service provider best practices and network design into an archive of Powerpoint? To quote the Magic Eight Ball, All indications point to yes -- Daniel Golding Network and Telecommunications Strategies Burton Group
Re: RADIUS/AAA packet generator
There's on that is part of freeradius package. Cheers Paul On Wed, 24 Mar 2004, Dean Bogdanovic wrote: Hi anyone knows of a free/opensource radius/aaa packet generator? Replies of list would be greatly appreciated. TIA Dean Paul Khavkine Network Administrator DISTRIBUTEL Communications. 740 Notre Dame West, Suite 1135 Montreal, Quebec, Canada, H3C 3X6 1-514-877-5505 x 263 http://www.distributel.net
Re: Problems with .de abuse
- Original Message - From: Erik Haagsman [EMAIL PROTECTED] To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Wednesday, March 24, 2004 10:55 AM Subject: Re: Problems with .de abuse I sent the abuse email 2 days ago and got no response. After 2 more days of this, I finally just tried to call that number, and it's bogus (or at least not working). Does anyone have a clue who this is and/or how to actually get ahold of someone there (preferably one who speaks or reads/writes English)? Try and reach them at [EMAIL PROTECTED] or try and contact their admin Jens Rosenboom at [EMAIL PROTECTED] I know it's not the regular channel, but and we peer with them at DE-CIX and had similar problems a while back with IP's from their range scanning and trying out SNMP communities on our boxes. They responded on an e-mail sent to their peering address and we haven't had any further scans since, although your complaint seems to disrepute them further. slightly OT, but it is a sad day when operators stop being responsible neighbours and start responding to abuse reports only when their {willy,peering} is on the line. paul
Re: Publish or (gulp) Perish
On Tue, Mar 23, 2004 at 03:01:56PM -0500, Daniel Golding wrote: Slightly off-topic... Most technical fields have standard journals that they use to publish interesting findings and new ways of doing things. Everything from Nature to the JAMA. Here's the question for the group: Do these sorts of publications exist in the networking/carrier/internetworking space, and if not, should they? Some possible examples (if anyone reads them): SIGCOMM (http://www.acm.org/sigcomm/), BCR (http://www.bcr.com/bcrmag/), Cisco's IPJ (http://www.cisco.com/warp/public/759/). USENIX's ;login (http://www.usenix.org/publications/login/) is another good example. I'm leaving off news publications like Light Reading and Network World. Any thoughts? Have NANOG powerpoint presentations made these sorts of journals obsolete? :) I certainly hope not. Powerpoint has its place, but it's not really a format for the distribution of research information. The information density just isn't there. That, and without the audio of the presentation to go along with the slides, most of the actual content is lost. I believe that NANOG should have an actual journal of some kind, likely with issues on a thrice-yearly basis. I'd wager that most NANOG presentations have a paper's worth of information backing them. Writing out the information in publication form not only makes it a useful reference for later perusal, but gives something you can point to as part of a concrete body of work that you've created, the benefits of which I leave as an exercise for the reader. Matthew -- Matthew F. Ringel Sr. Network Engineer Tufts University
Re: Publish or (gulp) Perish
I believe that NANOG should have an actual journal of some kind, likely with issues on a thrice-yearly basis. I'd wager that most NANOG presentations have a paper's worth of information backing them. researchers publish in real journals with academic peer review, and would get no brownie points for publishing in a nanog journal. vendors' presentations have megatons of paper to back them, all nice and glossy. deciding how much information they contain is left as an exercise for the student. operators rarely have the time, resources, or inclination to produce good papers. if one believes the above, this leaves a nanog journal as a vendor press, of which, imiho, there already is sufficient in the world. randy
Re: Publish or (gulp) Perish
vijay gill [EMAIL PROTECTED] writes: Powerpoints have a hard time matching the depth of a refereed journal submission, because with the powerpoint, soundbites tend to take precedence over content. Attention to sidebar on page 192 of the Columbia Accident Investigation Board report entitled Engineering by Viewgraphs: http://www.nasa.gov/columbia/caib/PDFS/VOL1/PART02.PDF ---Rob
Open Source Asset Management Solutions
Nanog, I need anopen source asset management system to track serial, location, hardware type etc. Something with a mysql backside would most likely be the best choice.Can you hit me up off list if you have any recommendations? Thanks! /micah
Re: Problems with .de abuse
On Wed, 2004-03-24 at 16:57, Paul G wrote: slightly OT, but it is a sad day when operators stop being responsible neighbours and start responding to abuse reports only when their {willy,peering} is on the line. It is...and persistently trying a host of SNMP communitie strings on a neighbour's router interfaces doesn't make it any better :-) -- Erik Haagsman Network Architect We Dare BV tel: +31(0)10-7507008 fax: +31(0)10-7507005 http://www.we-dare.nl
Re: Publish or (gulp) Perish
Hi, #Powerpoint has its place, but it's not really a #format for the distribution of research information. The information #density just isn't there. That, and without the audio of the #presentation to go along with the slides, most of the actual content #is lost. That doesn't *have* to be the case. You *can* create presentations that are designed to be stand alone documents with persistent content value. Unfortunately, doing so generally requires creation of a quite detailed talk, which can be time consuming for the presenter (it is just like preparing a formal academic lesson plan or lecture), and which somewhat destroys the illusion of spontaneity that the best of non-technical speakers will strive to convey. Two examples of detailed powerpoint talks designed to have stand-alone usability are talks I've done for NLANR/Internet2 Joint Techs on open proxies (http://darkwing.uoregon.edu/~joe/jt-proxies/open-proxy-joint-techs.ppt or pdf) and jumbo frames (http://darkwing.uoregon.edu/~joe/jumbos/jumbo-frames.ppt or pdf). I believe it is worth doing this simply because you know that with limited travel budgets and parallel session tracks, your in-person audience will often be just a fraction of the total number of folks who might be trying to follow along online, or who might subsequently look at presentation materials via the web. Detailed presentation materials are also a tremendous help if you have audience members whose native language isn't english. Similarly, I'm a big believer in *printed* copies of presentations, either as collated proceedings or as individual papers, if only so you can easily mark up the parts you may want to investigate further, or to serve as a reminder when you eventually go to clean off your desk. Just my two cents... Regards, Joe St Sauver ([EMAIL PROTECTED]) University of Oregon Computing Center
Re: Problems with .de abuse
On Mar 24, 2004, at 12:18 PM, Christopher L. Morrow wrote: On Wed, 24 Mar 2004 [EMAIL PROTECTED] wrote: On Wed, 24 Mar 2004 17:58:27 +0100, Erik Haagsman said: It is...and persistently trying a host of SNMP communitie strings on a neighbour's router interfaces doesn't make it any better :-) Trying once is one thing. Being persistent about it when it didn't work the first time deserves a smack with a clue-by-four. ;) sometimes this is OVW going on a discovery rampage, quite a few folks forget to set the scope before telling it to discover :( Seems that most OV installations would have on SNMP string. Alternatively, if you logs all these strings, look up the source IP, you now have a really good view into the routers for that AS. :) -- TTFN, patrick
Re: Problems with .de abuse
On Wed, 24 Mar 2004 17:18:11 GMT, Christopher L. Morrow said: sometimes this is OVW going on a discovery rampage, quite a few folks forget to set the scope before telling it to discover :( I did mention the clue-by-four, right? :) pgp0.pgp Description: PGP signature
Knowledge tracking tools
What do people use for knowledgebases? I'm looking for a better (preferably open source) way to track change plans, event resolutions, etc. e.g. an easy way to dig up what the changes that occured on a system were for, who did them, etc. Obviously rancid et al shows us what changed when, but not the change plan that was responsbile or what problem it solved. Possibly adopting a new ticketing system as part of this, so if people have built such system on top of RT, etc, that would be good to know. Thanks
Re: Open Source Asset Management Solutions
Check out the following: http://www.atrustrivalie.org/irm/demo/irm/ hope that is along the lines of what you are looking for. -Chris On Wed, 24 Mar 2004, Micah McNelly wrote: Nanog, I need an open source asset management system to track serial, location, hardware type etc. Something with a mysql backside would most likely be the best choice. Can you hit me up off list if you have any recommendations? Thanks! /micah
Re: Knowledge tracking tools
On Wed, Mar 24, 2004 at 10:06:19AM -0800, Steve Francis wrote: e.g. an easy way to dig up what the changes that occured on a system were for, who did them, etc. Obviously rancid et al shows us what changed when, but not the change plan that was responsbile or what problem it solved. An internal Wiki with a page dedicated to each machine or machine-class. There's good integration between TWiki and Bugzilla, but we have the classic dichotomy of ticket systems vs bug-trackers: Bugzilla is better for software, RT is better for hardware and networks. Wikis greatly increase the retention and availability of knowledge: they are easy to use, so people *do* use them; they are easy to search, so people do that, too. -dsr-
Broadwing opinions
Anyone care to share opinions on broadwing as an upstream? Responsiveness/cluefulness of noc and how well they manage their infrastructure (in terms of good change management, etc.) would be good to know. Thanks
Re: Knowledge tracking tools
On Wed, 24 Mar 2004, Steve Francis wrote: I'm looking for a better (preferably open source) way to track change plans, event resolutions, etc. e.g. an easy way to dig up what the changes that occured on a system were for, who did them, etc. Obviously rancid et al shows us what changed when, but not the change plan that was responsbile or what problem it solved. I like RCS better than RANCID for config change tracking, although an ideal system would probably involve both. RANCID is great for alerting you to changes people forgot to report, or to unauthorized network changes, since it goes and diffs the configs whether a change has happened or not. Tracking config changes in RCS the way I've done it and seen it done elsewhere involves manually checking the config out before making changes, and manually copying the config to the TFTP server and checking it back in whenever a change has been made. It's a bit more work, but it prompts the user for an explanation of the changes whenever a config is checked back in. This isn't a good defense against somebody who doesn't want their config changes to be known about, but if people are serious about using it you get a this person did this because of this as reported in this ticket number notation to go along with every configuration change. -Steve
Re: Knowledge tracking tools
Date: Wed, 24 Mar 2004 10:52:15 -0800 (PST) From: Steve Gibbard [EMAIL PROTECTED] Sender: [EMAIL PROTECTED] On Wed, 24 Mar 2004, Steve Francis wrote: I'm looking for a better (preferably open source) way to track change plans, event resolutions, etc. e.g. an easy way to dig up what the changes that occured on a system were for, who did them, etc. Obviously rancid et al shows us what changed when, but not the change plan that was responsbile or what problem it solved. I like RCS better than RANCID for config change tracking, although an ideal system would probably involve both. RANCID is great for alerting you to changes people forgot to report, or to unauthorized network changes, since it goes and diffs the configs whether a change has happened or not. Tracking config changes in RCS the way I've done it and seen it done elsewhere involves manually checking the config out before making changes, and manually copying the config to the TFTP server and checking it back in whenever a change has been made. It's a bit more work, but it prompts the user for an explanation of the changes whenever a config is checked back in. This isn't a good defense against somebody who doesn't want their config changes to be known about, but if people are serious about using it you get a this person did this because of this as reported in this ticket number notation to go along with every configuration change. You can use RANCID by manually calling control_rancid to update a single router in the archive and I have written some trivial mods to save a log message of why the change took place and who made it. CVS is a big win over RCS IMHO and the expect scripts in RANCID ame life much easier. -- R. Kevin Oberman, Network Engineer Energy Sciences Network (ESnet) Ernest O. Lawrence Berkeley National Laboratory (Berkeley Lab) E-mail: [EMAIL PROTECTED] Phone: +1 510 486-8634
Informational Notice: AS3561 domain change
As part of SAVVIS Communications continued integration of the assets of Cable Wireless USA, Inc., Cable Wireless Internet Services, Inc., and certain other U.S.-based affiliates, we will be re-branding the AS3561 network elements on 1 April 2004. The re-branding will be a DNS change from cw.net to savvis.net only. All hostnames will stay the same with the exception of the domain portion. This re-branding will only affect AS3561 network devices at this time. AS3561 will remain intact and continue to be operated as it is today. Future changes that may affect customer services and/or devices will be communicated in a different notification. We do not expect any impact to the network, as this is merely a name change. Any applications utilizing name-based resolution will need to be updated accordingly. Please contact [EMAIL PROTECTED] with any additional questions. Thanks, Savvis Network Operations
Re: Knowledge tracking tools
Indeed, an ideal management framework would include: 0. a system to generate all pieces of network configuration from high-level descriptions and enterprise data such as dns, ip addr assignments, ... at least those parts of configuration which are not created dynamically by self-configuring components. 1. A tool in which to record the desired (past, current, future) state of network devices. Bonus points for having a difference engine capable of providing the difference between revisions in the form of config statements. 2. A tool in which to record the actual state of network devices (rancid falls into this category). 3. A tool to reconcile 1 and 2. Bonus points for an ability to differentiate planned-but-yet-to-be-applied changes (i.e. the current revision in tool 2's repository matches a les-than-current revision in tool 1's repository) from unauthorized changes detected by tool 2 but not documented in tool 1. More bonus points for applying the difference engine described in tool 1 to propose the configuration statements necessary to undo unauthorized changes. randy
Re: Broadwing opinions
On Wed, 24 Mar 2004, Steve Francis wrote: Anyone care to share opinions on broadwing as an upstream? Responsiveness/cluefulness of noc and how well they manage their infrastructure (in terms of good change management, etc.) would be good to know. With or without your own PI (or some other provider's PA) IPs? It's getting to the point where it's not possible to use any large provider's PA space and not be affected by one of several DNSBLs that use collateral damage as a motivator for change...not that it seems to work terribly well against the largest providers. http://www.spamhaus.org/SBL/listings.lasso?isp=broadwing.com The system this message is being sent from uses broadwing.com as one of 4 transit providers and has recently run into issues sending email to sites using either spews or fiveten as each of the (different providers) PA IP blocks in use are listed in one or both of these DNSBLs as well as additional less known DNSBLs. -- Jon Lewis [EMAIL PROTECTED]| I route Senior Network Engineer | therefore you are Atlantic Net| _ http://www.lewis.org/~jlewis/pgp for PGP public key_
Re: Publish or (gulp) Perish
I'm leaving off news publications like Light Reading and Network World. Any thoughts? Have NANOG powerpoint presentations made these sorts of journals obsolete? :) Don't forget SysAdmin, altho it's waning as its page size has continuously decreased. http://www.samag.com/ Rob Nelson [EMAIL PROTECTED]
Re: Publish or (gulp) Perish
In message [EMAIL PROTECTED], Daniel Golding writes: Slightly off-topic... Most technical fields have standard journals that they use to publish interesting findings and new ways of doing things. Everything from Nature to the JAMA. Here's the question for the group: Do these sorts of publications exist in the networking/carrier/internetworking space, and if not, should they? I think a refereed forum -- more likely a conference with proceedings, at least at first, than a journal -- is an excellent idea. But don't underestimate the amount of work it would take, on an ongoing basis. It also takes a long time to establish enough credibility that academics would publish in it. A better path might be to carve out a niche in an existing conference or journal. --Steve Bellovin, http://www.research.att.com/~smb
Re: Publish or (gulp) Perish
I'm leaving off news publications like Light Reading and Network World. Any thoughts? Have NANOG powerpoint presentations made these sorts of journals obsolete? :) My favorite journal is the NANOG slide presentations. They are nice abstracts of someone's work, much better than the traditional journal abstract, and they almost always contain a URL that takes you to the author's website where you can download full papers and see the author's other work. Then it's off to citeseer which has recently moved to http://citeseer.ist.psu.edu/ There I can track down references and work by co-authors. --Michael Dillon I'd recommend the IEEE Communication Society's monthly magazine, there are also several IEEE datacom focused journals available at: http://www.comsoc.org/pubs/journals.html (great bedtime reading, and a miraculous cure for insomnia) irwin
Re: Publish or (gulp) Perish
[ mark had posting problems and asked me to post for him ] To: Randy Bush [EMAIL PROTECTED] From: Mark Allman [EMAIL PROTECTED] Reply-To: [EMAIL PROTECTED] cc: Matthew F. Ringel [EMAIL PROTECTED], [EMAIL PROTECTED] Subject: Re: Publish or (gulp) Perish We are soliciting papers for an upcoming workshop on network troubleshooting (to be co-located with ACM SIGCOMM this year). We'd **love** to create a bit of synergy between the operator and research communities. The PC has some nanog folk. I hope everyone will consider writing a short paper or proposing a poster to be presented. The deadline for registering papers is 4/8 (basically providing the names of the authors and a very short abstract). The submission deadline for papers is 4/15. The call for papers is at: http://www.icir.org/mallman/NetTs/ The submission site is not quite ready, but will be linked from the above when it is (next week sometime). If you have questions, please direct them to [EMAIL PROTECTED] (which hits myself and Jon Bennett). Thanks! allman -- Mark Allman -- ICIR -- http://www.icir.org/mallman/