Re: UUNET connectivity in Minneapolis, MN
Hi Chris, It seems all 800 numbers I have is busy. I heard that there was fire around home depot in Down Grove area, and it did hit the power grid, so UUNET/MCI POP lost the power. UUNET/MCI tech - Fortunately, our Network management center tech has the number for him - said he is waiting for generator coming in, but NO estimated time for recovery. Hyun Christopher L. Morrow wrote: traceroute or ping or end-node ip on your end... or did you call the customer support crew and ask them? --Chris (formerly [EMAIL PROTECTED]) ### ## UUNET Technologies, Inc. ## ## Some Security Engineering Group ## ## (W)703-886-3823 (C)703-338-7319 ## ### On Wed, 10 Aug 2005, Erik Amundson wrote: Anyone else having issues with UUNET connectivity in MSP? We were seeing slowness, now we see no traffic flow at all...we make it one hop, then nothin'. Erik Amundson A+, N+, CCNA, CCNP IT and Network Manager Open Access Technology Int'l, Inc. mailto:[EMAIL PROTECTED] CONFIDENTIAL INFORMATION: This email and any attachment(s) contain confidential and/or proprietary information of Open Access Technology International, Inc. Do not copy or distribute without the prior written consent of OATI. If you are not a named recipient to the message, please notify the sender immediately and do not retain the message in any form, printed or electronic.
Re: IPv6 Address Planning
On 11-aug-2005, at 2:23, Kevin Loch wrote: And on that vein perhaps it's prudent for people using network prefixes longer than /64 to take care to ensure that the bit positions in the IPv6 address that should correspond to the u and g bits in the modified EUI-64 interface ID (according to RFC 3513) are both set to Is there any known use for those bits? The universal/local bit is copied from the EUI-64/MAC address and flipped, and indicates whether the address is derived from something (supposedly) globally unique or not. Both occur frequently, non- unique stem from manual configuration or RFC 3041 temporary/privacy addresses. The group bit isn't relevant, although you won't see MAC- derived addresses with this bit set, of course. There is no real reason to preserve these bits when the prefix length is 64.
Looking Glass failure in DC
Hi: Atlantech.net reports that their ongoing DC region outage is a Looking Glass issue; and LG has troops on the way. I don't know if it is limited to Atlantech only, or other providers are also afflicted. -- A host is a host from coast to [EMAIL PROTECTED] no one will talk to a host that's close[v].(301) 56-LINUX Unless the host (that isn't close).pob 1433 is busy, hung or dead20915-1433
Re: UUNET connectivity in Minneapolis, MN
On Thu, 11 Aug 2005 [EMAIL PROTECTED] wrote: we had a loss of comercial power(coned) in the downers grove terminal. terminal is up on generator power now. that seems to map to the internal firedrill as well, anyone else hit by this event?
Re: Cisco crapaganda
Get a grip, Michael. Any black hat who reads this list already knows this information (if indeed it exists; acting mysterious isn't gaining you any credibility with the cynical among us, and of course you aren't even providing enough detail for people with clues to discern what the bloody heck you're referring to). All you're doing is withholding data from the non-black-hats. *sigh* I have no special sources of info. One Monday morning I saw the traffic on this list about Lynn's presentation. None of the posted URL's worked. One of them led to a legal document ordering that the slides not be posted. So what did I do? That's right, I turned to Google. I found articles written by people who attended the presentation. One person had posted a zip file with photos of all of Lynn's slides as presented at BlackHat. I even managed to find the PDF file with the edited version of the slides that was the target of the lawyers. But I found more. It seems that a guy using the name FX has been publishing stuff about Cisco heap exploits for years now. I found his slides from a presentation made at BlackHat Las Vegas in 2002. Lots of juicy detail. And I found a long document translated from Chinese about modern information/economic warfare. I really didn't think this stuff was all that hard to find because it took me all of 30 minutes. The big question in my mind is why did Cisco freak out when somebody wanted to present an overview of exploits that have been worked on by hackers for the past 3 years? Especially when Lynn is giving them some valuable free advice, i.e. don't make it easier for hackers to use heap exploits. Thank's to Drew's posting I now know that FX presented again at BHLV a year later pointing out a UDP exploit that can be used to facilitate building the correct heap exploit for a specific IOS release and architecture. It seems to me that Cisco has a fundamental communications problem in regards to security. Their actions against Lynn did not stop people from reading his slides and his slides were not nearly as informative as the older slides from FX. Also, Cisco seems stuck in the traditional vendor-customer communications cycle that causes them to ignore or deprioritize security related communications unless it comes to them through a major customer. In fact, the people who REALLY know this stuff may not work for a major Cisco customer or if they do, they may not have access to the privileged communications channels within their company. --Michael Dillon Give a man a fish and you feed him for a day, teach him how to fish and you feed him for a lifetime.
Re: @Home's 119 domain names up for sale
I remember @home.com as being one of the defunct domains for which we always had outbound e-mail queued. But exactly how is this bill related to the domain name sale other than the fact that your press release snippet contains the text string [EMAIL PROTECTED] Your post doesn't make that clear. Our government spends money on myriad of initiatives. Conservatives like to decry government spending as a total waste of resources. Keep in mind that every dollar spent by the government goes back into the economy, whether it be money to the oil industry (ala the new Energy Bill, money to Halliburton for Iraq operations), or low-income housing. The point is that the money goes back to citizens in the form of jobs, subsidized purchases (which help business sell items and services and create more jobs), or in the form of tax breaks to extremely wealthy individuals. Contrary to the rhetoric, the money doesn't vanish down a sinkhole. matthew black california state university, long beach Note: The opinions stated herein represent only myself and other like-minded individuals and may not represent my employer. On Wed, 10 Aug 2005 12:09:59 -0500 Frank Coluccio [EMAIL PROTECTED] wrote: re: @Home's 119 domain names up for sale Interesting that you'd bring this up. The federal pork trasfer of $1 Billion that was announced on Sunday to bridge the digital divide references an [EMAIL PROTECTED] program as a part of its underpinning. From: http://press.arrivenet.com/pol/article.php/679032.html ---snip: LISC/NEF and One Economy Launch $1 Billion Initiative to Bridgethe Digital Divide; Sen. Hillary Clinton Helps Unveil Initiative Sunday, August 07, 2005 Contact: Leslie Kerns of Solomon McCown Co., 617-933-5013 or [EMAIL PROTECTED] or Susan Sheehan of Vogel Communications, 503-449-1666 or [EMAIL PROTECTED] NEW YORK, Aug. 7 /U.S. Newswire/ -- Efforts to close the technological gap between America's haves and have-nots will get a boost this week. Local Initiatives Support Corp. (LISC) and its subsidiary the National Equity Fund (NEF) are partnering with One Economy to launch [EMAIL PROTECTED], a $1 billion initiative that will build more than 15,000 affordable homes with high-speed digital Internet connectivity and provide low-income families personal access to computers and technology services. The initiative expects to connect nearly 100,000 people to the vast advantage of the Internet. ---end snip It makes for some interesting reading for those of you tracking where your tax dollars are going. I'd be interested in reading some comments on this initiative, either on the board or by email. [EMAIL PROTECTED] = On Wed Aug 10 16:44 , Fergie (Paul Ferguson) sent: I know this is horribly off-topic, but seeing a reference to @Home kind made me a little nostalgic. :-) [snip] Apparently former high-speed Internet provider [EMAIL PROTECTED] once felt likewise. But At Home Liquidating Trust, successor to the once high-flying Internet darling [EMAIL PROTECTED], said Wednesday it is selling the former broadband company's 119 domain names. [snip] http://news.com.com/ExciteHomes+119+domain+names+up+for+sale/2100-1030_3-5826807.html
Re: UUNET connectivity in Minneapolis, MN
Date: Thu, 11 Aug 2005 16:06:05 + (GMT) From: Christopher L. Morrow [EMAIL PROTECTED] Subject: Re: UUNET connectivity in Minneapolis, MN On Thu, 11 Aug 2005 [EMAIL PROTECTED] wrote: we had a loss of comercial power(coned) in the downers grove terminal. terminal is up on generator power now. that seems to map to the internal firedrill as well, anyone else hit by this event? Electric utility had a sub-station burn up. resulting in a medium-sized geographic area without power -- something like 17,000 residences according to news reports (no numbers on 'commercial' custeomrs provided). ATT has a facility in the affected area, and were also without utility power. Rumor mill says that Sprint had a (moderately small) number of T-3 circuits affected, as well.
RE: UUNET connectivity in Minneapolis, MN
info from the local news stations http://www.nbc5.com/news/4836579/detail.html?z=dpdpswid=2265994dppid=65192 http://www.chicagotribune.com/news/local/chi-050811outage,0,6108555.story?co ll=chi-news-hed -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Robert Bonomi Sent: Thursday, August 11, 2005 11:17 AM To: nanog@merit.edu Subject: Re: UUNET connectivity in Minneapolis, MN Date: Thu, 11 Aug 2005 16:06:05 + (GMT) From: Christopher L. Morrow [EMAIL PROTECTED] Subject: Re: UUNET connectivity in Minneapolis, MN On Thu, 11 Aug 2005 [EMAIL PROTECTED] wrote: we had a loss of comercial power(coned) in the downers grove terminal. terminal is up on generator power now. that seems to map to the internal firedrill as well, anyone else hit by this event? Electric utility had a sub-station burn up. resulting in a medium-sized geographic area without power -- something like 17,000 residences according to news reports (no numbers on 'commercial' custeomrs provided). ATT has a facility in the affected area, and were also without utility power. Rumor mill says that Sprint had a (moderately small) number of T-3 circuits affected, as well.
Way OT: RE: @Home's 119 domain names up for sale
Holy communist manifesto batman! Let's let the government fix everything. Hold on, hasn't that been tried already? Oh yeah the USSR. That was a blazing success. Conservatives generally aren't against the government helping in areas NO ONE ELSE CAN. It is obvious to everyone involved that the government largely screws up these sorts of initiatives and most of the money ends up wasted anyways. It's these pork projects that kill us. - Brian J. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Matthew Black Sent: Thursday, August 11, 2005 11:15 AM To: nanog@merit.edu Subject: Re: @Home's 119 domain names up for sale I remember @home.com as being one of the defunct domains for which we always had outbound e-mail queued. But exactly how is this bill related to the domain name sale other than the fact that your press release snippet contains the text string [EMAIL PROTECTED] Your post doesn't make that clear. Our government spends money on myriad of initiatives. Conservatives like to decry government spending as a total waste of resources. Keep in mind that every dollar spent by the government goes back into the economy, whether it be money to the oil industry (ala the new Energy Bill, money to Halliburton for Iraq operations), or low-income housing. The point is that the money goes back to citizens in the form of jobs, subsidized purchases (which help business sell items and services and create more jobs), or in the form of tax breaks to extremely wealthy individuals. Contrary to the rhetoric, the money doesn't vanish down a sinkhole. matthew black california state university, long beach Note: The opinions stated herein represent only myself and other like-minded individuals and may not represent my employer. On Wed, 10 Aug 2005 12:09:59 -0500 Frank Coluccio [EMAIL PROTECTED] wrote: re: @Home's 119 domain names up for sale Interesting that you'd bring this up. The federal pork trasfer of $1 Billion that was announced on Sunday to bridge the digital divide references an [EMAIL PROTECTED] program as a part of its underpinning. From: http://press.arrivenet.com/pol/article.php/679032.html ---snip: LISC/NEF and One Economy Launch $1 Billion Initiative to Bridgethe Digital Divide; Sen. Hillary Clinton Helps Unveil Initiative Sunday, August 07, 2005 Contact: Leslie Kerns of Solomon McCown Co., 617-933-5013 or [EMAIL PROTECTED] or Susan Sheehan of Vogel Communications, 503-449-1666 or [EMAIL PROTECTED] NEW YORK, Aug. 7 /U.S. Newswire/ -- Efforts to close the technological gap between America's haves and have-nots will get a boost this week. Local Initiatives Support Corp. (LISC) and its subsidiary the National Equity Fund (NEF) are partnering with One Economy to launch [EMAIL PROTECTED], a $1 billion initiative that will build more than 15,000 affordable homes with high-speed digital Internet connectivity and provide low-income families personal access to computers and technology services. The initiative expects to connect nearly 100,000 people to the vast advantage of the Internet. ---end snip It makes for some interesting reading for those of you tracking where your tax dollars are going. I'd be interested in reading some comments on this initiative, either on the board or by email. [EMAIL PROTECTED] = On Wed Aug 10 16:44 , Fergie (Paul Ferguson) sent: I know this is horribly off-topic, but seeing a reference to @Home kind made me a little nostalgic. :-) [snip] Apparently former high-speed Internet provider [EMAIL PROTECTED] once felt likewise. But At Home Liquidating Trust, successor to the once high-flying Internet darling [EMAIL PROTECTED], said Wednesday it is selling the former broadband company's 119 domain names. [snip] http://news.com.com/ExciteHomes+119+domain+names+up+for+sale/2100-1030_3-582 6807.html
Re: Way OT: RE: @Home's 119 domain names up for sale
On 08/11/05, Brian Johnson [EMAIL PROTECTED] wrote: Conservatives generally aren't against the government helping in areas NO ONE ELSE CAN. It is obvious to everyone involved that the government largely screws up these sorts of initiatives and most of the money ends up wasted anyways. It's these pork projects that kill us. The Internet started out as a pork project. I'm just sayin'. -- J.D. Falk a decade of cybernothing.org [EMAIL PROTECTED] registered 24 June 1995
RE: Way OT: RE: @Home's 119 domain names up for sale
Don't get me wrong. They aren't all bombs. ;-) - Brian J. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of J.D. Falk Sent: Thursday, August 11, 2005 12:04 PM To: nanog@merit.edu Subject: Re: Way OT: RE: @Home's 119 domain names up for sale On 08/11/05, Brian Johnson [EMAIL PROTECTED] wrote: Conservatives generally aren't against the government helping in areas NO ONE ELSE CAN. It is obvious to everyone involved that the government largely screws up these sorts of initiatives and most of the money ends up wasted anyways. It's these pork projects that kill us. The Internet started out as a pork project. I'm just sayin'. -- J.D. Falk a decade of cybernothing.org [EMAIL PROTECTED] registered 24 June 1995
RE: Cisco crapaganda
[ SNIP ] But I found more. It seems that a guy using the name FX has been publishing stuff about Cisco heap exploits for years now. I found his slides from a presentation made at BlackHat Las Vegas in 2002. Lots of juicy detail. And I found a long document translated from Chinese about modern information/economic warfare. If people want to be up to date, imagine the unimaginable. -M
Re: Way OT: RE: @Home's 119 domain names up for sale
The Internet started out as a pork project. I'm just sayin'. I think it was more a research project... which, maybe, is just pork by another name... Eric :)
Re: UUNET connectivity in Minneapolis, MN
we had a loss of comercial power(coned) in the downers grove terminal. terminal is up on generator power now. that seems to map to the internal firedrill as well, anyone else hit by this event? Electric utility had a sub-station burn up. resulting in a medium-sized geographic area without power -- something like 17,000 residences according to news reports (no numbers on 'commercial' custeomrs provided). ATT has a facility in the affected area, and were also without utility power. Rumor mill says that Sprint had a (moderately small) number of T-3 circuits affected, as well. ATT must adhere to some diffrent engineering standards; as well devices we monitor there were all fine no blips... but all of the MCI customers we have in IL, MI, WI, MN all had issues... Power went out at 4:30 ish and ckts all dumped about 8:30 pm... Then bounced until 6:30 AM this morning. Not sure I understand how on earth something like this happens... power is not that confusing to make sure it does not stop working. JD
Re: Way OT: RE: @Home's 119 domain names up for sale
On Thu, 11 Aug 2005 11:57:25 -0500 Brian Johnson [EMAIL PROTECTED] wrote: Holy communist manifesto batman! Let's let the government fix everything. Hold on, hasn't that been tried already? Oh yeah the USSR. That was a blazing success. Conservatives generally aren't against the government helping in areas NO ONE ELSE CAN. It is obvious to everyone involved that the government largely screws up these sorts of initiatives and most of the money ends up wasted anyways. It's these pork projects that kill us. - Brian J. Wasted? Please elaborate. It's not like the money vanishes. The money goes somewhere, usually to pay non-government salaries. Corporate Amerika is wasteful too: WorldCom, Global Crossing, Enron, and Halliburton. These are companies that hurt the lives of millions of Americans, including 40,000,000 citizens of California who pay double the national average for electricity because Enron gamed the system. We pay 15 cents per kilowatt! That wasn't completely the government's fault. matthew black california state university, long beach Note: Options expressed are mine and do not necessarily represent my employer.
RE: Way OT: RE: @Home's 119 domain names up for sale
OK. Wasted was a poor choice of words, but even if the money does get back to the people in some way, it is not doing so in a way that really accomplishes something. Private companies do not invest in something that will not have a return that benefits them. Political spending sometimes will have no return other than political capital. It's like buying candy. You can buya a ton of it, and either eat it or give it away, but in the end it will be gone and very little will be accomplished other than the kids who now love you for doing it. So wasted was a bad term to use. How about used with little return if any. - Brian J. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Matthew Black Sent: Thursday, August 11, 2005 1:20 PM To: nanog@merit.edu Subject: Re: Way OT: RE: @Home's 119 domain names up for sale On Thu, 11 Aug 2005 11:57:25 -0500 Brian Johnson [EMAIL PROTECTED] wrote: Holy communist manifesto batman! Let's let the government fix everything. Hold on, hasn't that been tried already? Oh yeah the USSR. That was a blazing success. Conservatives generally aren't against the government helping in areas NO ONE ELSE CAN. It is obvious to everyone involved that the government largely screws up these sorts of initiatives and most of the money ends up wasted anyways. It's these pork projects that kill us. - Brian J. Wasted? Please elaborate. It's not like the money vanishes. The money goes somewhere, usually to pay non-government salaries. Corporate Amerika is wasteful too: WorldCom, Global Crossing, Enron, and Halliburton. These are companies that hurt the lives of millions of Americans, including 40,000,000 citizens of California who pay double the national average for electricity because Enron gamed the system. We pay 15 cents per kilowatt! That wasn't completely the government's fault. matthew black california state university, long beach Note: Options expressed are mine and do not necessarily represent my employer.
Re: Real-time WHOIS for .COM
Joe Abley wrote: On 10 Aug 2005, at 06:36, Florian Weimer wrote: Is there some kind of real-time WHOIS for .COM (and friends) which allows you to determine at least the corresponding registrar? whois.crsnic.net? the issue is that VGRS does not even allow a registrar to find out this information real-time. Other registries publish this information in the whois and also make it available to registrars through EPP real-time. RRP and the VeriSign EPP implementation DO NOT allow a registrar to inspect other registrars object (though other registres do) don't expect the powers that be to assist anyone in security issues. the average length of a phishing e-mail spam last some 45 minues, com,net whois is updated ever 24 hours. -rick
Re: Real-time WHOIS for .COM
* Rick Wesson: the issue is that VGRS does not even allow a registrar to find out this information real-time. Other registries publish this information in the whois and also make it available to registrars through EPP real-time. It seems that one of the largest Verisign competitors plans to hide the registrar information completely and permanently. (They operate according the thick registry model, if I got the terminology right, so this is quite possible.) If you don't like this move, speak up. Unfortunately, only those who know which ccTLD I'm talking about have a vote. 8-( the average length of a phishing e-mail spam last some 45 minues, ITYM median. Average is definitely higher.
Re: Real-time WHOIS for .COM
On Thu, 11 Aug 2005, Florian Weimer wrote: It seems that one of the largest Verisign competitors plans to hide the registrar information completely and permanently. (They operate according the thick registry model, if I got the terminology right, so this is quite possible.) If you don't like this move, speak up. I don't like this... Unfortunately, only those who know which ccTLD I'm talking about have a vote. 8-( but ccTLD operate under different rules then gTLDs and I'm not sure that my not liking this can cause any changes. ccTLD operator is pretty much free to do as they like (as long as government agency for that country does not get angtry at them). the average length of a phishing e-mail spam last some 45 minues, ITYM median. Average is definitely highier. Closer to 8 hours I think, but I dont have enough data to be certain. -- William Leibzon Elan Networks [EMAIL PROTECTED]
Re: Way OT: RE: @Home's 119 domain names up for sale
[I know, I know, don't feed the trolls. But some are just too cute not to. Just this once.] Matthew Black wrote: It's kind of funny that people keep making these general claims as though the money is wasted or goes to some unproductive purpose. Personally, I don't consider subsidized housing for the lower-class to be wasteful or a misuse of money. I wonder how many people who decry wasteful government spending would consider road and highway construction a waste of money. If traffic moves to slow to work for your pleasure, get a job closer to home or vice versa. After all, this is the land of opportunity and nobody FORCED you to buy a home far from work. Highway spending is all government financed, but few complain about that as a waste. Funny you should say that with the pork laden highway bill that just went through Congress. There were 6371 individual special (i.e. pork) projects in the huge bill. I'd say spending $223 million to build one of the largest bridges in the country to an island Alaska with 50 residents is a severe misallocation of limited resources. That kind of spending IS a waste. Discussion of government spending often spins into a discussion of simplifying the tax code or attempts to make it fairer. Keep in mind that almost all of the tax code consists of rules lobbied by and for corporate Amerika. Very little of the income tax code applies to individuals. As to the fairness question, most of the lower and middle class class are in a higher marginal tax bracket than the well-to-do. The latter get a 7.6% marginal tax break (no FICA or Medicare). So the middle class pay 32.6%; the wealthy pay 20% or less. Talk about disincentives! It matters how you look at income taxes (figures never lie, but liars figure). The top 3% of earners pay about 40% of all income taxes. The top 1/12% pay about 10% of the taxes. Why do the super rich guys want a flat tax? And the other obvious problem, you pay a lot of taxes, probably more than you realize, besides income tax. A nice reference from the definitive source: http://www.straightdope.com/classics/a5_139.html -- Crist J. Clark [EMAIL PROTECTED] Globalstar Communications(408) 933-4387
Fwd: Re: Dst. ports 33438, 33437 (64.95.255.255) [data393]
The following is some dialogue that I posted to the DShield.org list last night, trying to figure out why I was seeing these odd traceroute probes in my firewall logs at home. I post it here for two reasons: [1] Does anyone have any experience with InterNAP's FCP-500 product? I was looking for some additional technical info beyond what is on their web site. Contact me off-list, of course. And, [2] Just thought some of you might be interested. :-) - ferg -- Forwarded Message -- Just as an FYI follow-up to last night's e-mails from me to on the list [subject line above], I received this from InterNAP this morning. Though I'd share... - feeg -- Forwarded Message -- We have received the following notice regarding trace route traffic originating from our network, so I thought I would give respond to give you a bit of piece of mind. The packets you are seeing are actually a very GOOD thing. Our datacenter employs a technology which tunes BGP routing tables for outbound traffic to provide the highest performing route path. On average, this shaves 35-40ms off the round-trip time for network performance. The device which performs these operations is called an Internap FCP-500. You can view more information at http://www.internap.com/products/route-optimization.htm Chances are, your public IP address was part of communication with our datacenter. Since over 10,000 web sites are hosted in our center, it is a very likely case that you accessed a web site, which then triggered the performance platform to probe round-trip times via traditional trace route and ping protocols. Once you communicate with the datacenter for the first time, the device will continue to probe the pathway for performance data periodically, and adjust routes accordingly. The end result is, a better performing experience since the packets take the best performing pathway through the Internet from the datacenter to the end user. Regards, Susan Cook Susan Cook | AUP Enforcement [contact info elided] -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Posted At: Wednesday, August 10, 2005 9:46 PM Posted To: Data393 Abuse Conversation: [ABUSE] Re: [Dshield] Dst. ports 33438, 33437 (64.95.255.255) [data393] Subject: [ABUSE] Re: [Dshield] Dst. ports 33438, 33437 (64.95.255.255) [data393] Internap has received an abuse complaint related to the possible distribution of unsolicited e-mail (spam) or a possible security violation from you or one of your customers. We are forwarding the complaint to you so that you may take appropriate measures to address the issue. The purpose of this message is to inform you of a complaint we have received as if you had received the complaint directly. We have not verified the accuracy of the complaint nor is this an accusation that the said incident has occurred. Internap will not embark upon any punitive action regarding spam or security complaints without explicitly and formally contacting you regarding a clear, verified complaint, or a pattern of abuse. Please refer to http://www.internap.com/about/policies.html for general questions regarding Internap's stance on spam or abuse. Please direct any questions regarding this specific issue to [EMAIL PROTECTED] -- Forwarded message -- From: Fergie (Paul Ferguson) removed@netzero.net Date: Thu, 11 Aug 2005 03:39:43 GMT To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: Re: [Dshield] Dst. ports 33438, 33437 ...and, now I see an adjacent port as well: 2005-08-10 21:21:48 -05:00 877446811 64.94.45.10 14484 67.64.90.x 33436 udp 64.94.45.10 -- fcp-2.chg.pnap.net Hmmm. OrgName: Internap Network Services OrgID: PNAP Address: 250 Williams Street Address: Suite E100 City: Atlanta StateProv: GA PostalCode: 30303 Country: US NetRange: 64.94.0.0 - 64.95.255.255 CIDR: 64.94.0.0/15 NetName: PNAP-05-2000 NetHandle: NET-64-94-0-0-1 Parent: NET-64-0-0-0-0 NetType: Direct Allocation NameServer: NS1.PNAP.NET NameServer: NS2.PNAP.NET Comment: ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE RegDate: 2000-06-05 Updated: 2002-06-17 TechHandle: INO3-ARIN TechName: InterNap Network Operations Center TechPhone: +1-877-843-4662 TechEmail: [EMAIL PROTECTED] OrgAbuseHandle: IAC3-ARIN OrgAbuseName: Internap Abuse Contact OrgAbusePhone: +1-206-256-9500 OrgAbuseEmail: [EMAIL PROTECTED] OrgTechHandle: INO3-ARIN OrgTechName: InterNap Network Operations Center OrgTechPhone: +1-877-843-4662 OrgTechEmail: [EMAIL PROTECTED] # ARIN WHOIS database, last updated 2005-08-10 19:10 # Enter ? for additional hints on searching ARIN's WHOIS database. Tracing to: 64.94.45.10 1 legacy26-0.default.csail.mit.edu (18.26.0.1) [AS3] 0 ms 0 ms 0 ms 2 kalgan.trantor.csail.mit.edu (128.30.0.245) [AS40] 0 ms 0 ms 0 ms 3 B24-RTR-2-CSAIL.MIT.EDU (18.4.7.1) [AS3] 90 ms 96 ms 2 ms 4
Re: Fwd: Re: Dst. ports 33438, 33437 (64.95.255.255) [data393]
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Fergie (Paul Ferguson) wrote: The following is some dialogue that I posted to the DShield.org list last night, trying to figure out why I was seeing these odd traceroute probes in my firewall logs at home. I post it here for two reasons: [1] Does anyone have any experience with InterNAP's FCP-500 product? I was looking for some additional technical info beyond what is on their web site. Contact me off-list, of course. And, [2] Just thought some of you might be interested. :-) That is the product/technology they got from their acquisition of netVmg, one of the companies in the so-called route optimization space (see also Routescience, Proficient Networks, Sockeye Networks). Cisco also has a similar feature/functionality called Optimized Exit Routing (OER). - -- = bep -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.0 (MingW32) iD8DBQFC++VvE1XcgMgrtyYRAlUfAJ9e7p0JUMEhrrMUCBFiLTiiXXvWfACfVHZq 1deKfWLhTxBRET8efNXhlx8= =0qfZ -END PGP SIGNATURE-
Providers that support prepending to specific remote AS's?
Hi all, I'd appreciate any on or offlist emails with the names of larger providers that allow you, through communities, to do prepending of your AS path to selected remote AS's. We use two providers that allow this since we use the feature but am wanting to dump one of our providers who does not. Basically we have a customer within AS X and us and AS X both have transit through AS Y. The link between AS Y and AS X is seriously overloaded so our customer is pretty much dead in the water since AS X is a countrywide monopoly telco for the country in question. We've forced traffic to AS X to take a different route in but since we can't path prepend just to AS X through AS Y, we're stuck with the only solution being disable the link to AS Y or prepend to all of AS Y which we don't want to do. AS Y doesn't feel the need to help since their view is the customer of theirs has chosen to not upgrade the oversubscribed link. Thanks, David
... with a hint of citrus ...
ok... now for the(*) subjective question of the day. (private replies requested) for those ASNs who touch one or more exchange points which are IN THE US, please rank order your five favorite IX's - with a brief one-liner as to why you like the particular IX. I'd like to compare notes :) (*) as if --bill
Re: ... with a hint of citrus ...
On Fri, Aug 12, 2005 at 12:38:52AM +, [EMAIL PROTECTED] wrote: ok... now for the(*) subjective question of the day. (private replies requested) for those ASNs who touch one or more exchange points which are IN THE US, please rank order your five favorite IX's - with a brief one-liner as to why you like the particular IX. I'd like to compare notes :) Do you count a single company operating multiple IX's at one entry or multiples? For example, Equinix, PAIX, etc, are you interested in a specific IX or a specific IX operator? -- Richard A Steenbergen [EMAIL PROTECTED] http://www.e-gerbil.net/ras GPG Key ID: 0xF8B12CBC (7535 7F59 8204 ED1F CC1C 53AF 4C41 5ECA F8B1 2CBC)
Re: ... with a hint of citrus ...
On Thu, Aug 11, 2005 at 09:41:42PM -0400, Richard A Steenbergen wrote: On Fri, Aug 12, 2005 at 12:38:52AM +, [EMAIL PROTECTED] wrote: ok... now for the(*) subjective question of the day. (private replies requested) for those ASNs who touch one or more exchange points which are IN THE US, please rank order your five favorite IX's - with a brief one-liner as to why you like the particular IX. I'd like to compare notes :) Do you count a single company operating multiple IX's at one entry or multiples? For example, Equinix, PAIX, etc, are you interested in a specific IX or a specific IX operator? specific IX --bill
Re: Providers that support prepending to specific remote AS's?
On Thu, Aug 11, 2005 at 08:06:09PM -0400, David Hubbard wrote: Hi all, I'd appreciate any on or offlist emails with the names of larger providers that allow you, through communities, to do prepending of your AS path to selected remote AS's. We use two providers that allow this since we use the feature but am wanting to dump one of our providers who does not. I guess cutting to the chase here would be best. I have been collecting BGP community guides for a number of service providers who publically state their BGP communities and their usage. This would include your desired abilities. You can find the collection at: http://www.onesc.net/communities For a quick shameless plug, if anybody has additional community guide locations, big or small, please let me know offlist. Basically we have a customer within AS X and us and AS X both have transit through AS Y. The link between AS Y and AS X is seriously overloaded so our customer is pretty much dead in the water since AS X is a countrywide monopoly telco for the country in question. We've forced traffic to AS X to take a different route in but since we can't path prepend just to AS X through AS Y, we're stuck with the only solution being disable the link to AS Y or prepend to all of AS Y which we don't want to do. AS Y doesn't feel the need to help since their view is the customer of theirs has chosen to not upgrade the oversubscribed link. Hrm, sounds like you'd really make out from being able to tell your upstream to surpress the announcements out to that network, provided they aren't a customer of the upstream that is ;-) Keep in mind, if they are a customer the communities, in most cases, will not the results you are looking for. charles
