Re: v6 subnet size for DSL leased line customers
Hi Jeroen, On 24/12/2007, at 6:07 PM, Jeroen Massar wrote: Joe Greco wrote: [..] Okay, here, let me make it reaaally simple. Yes, indeed lets make it reaaally simple for you: If your ISP has been delegated a /48 (admittedly unlikely, but possible) for $1,250/year, and they assign you a /56, their cost to provide that space is ~$5. They can have 256 such customers. cut How high are your transitequipment bills again, and how are you exactly charging your customers? ah, not by bandwidth usage, very logical! Not my bandwidth usage? Ha. Ha. Haha. Ha. Fortunately a /32 allocation was free from APNIC with our existing membership tier. Regards, Trent Australia
Re: Returned mail: 17 Delivery failures on Tue, 06 Nov 2007
Yeh I get these as well. Trent On 07/11/2007, at 11:16 PM, Alan Spicer wrote: * Why do we have to continue to receive this delivery failure? It must be going to the whole list. It's not me being rejected so why do I care? This seems to come at least once a day now. This seems to be something new, or something new causing it. Reporting-MTA: dns; mozart.merit.edu Arrival-Date: Tue, 6 Nov 2007 00:00:00 -0500 (EST) Content-Type: text/plain Final-Recipient: RFC822; [EMAIL PROTECTED] Action: failed Status: 5.2.0 Diagnostic-Code: SMTP; 550 5.7.1 message content rejected Last-Attempt-Date: Tue, 6 Nov 2007 23:59:59 -0500 (EST) X-Suppressed-Delivery-Status-Count: 17 --- Alan Spicer Radio Amateur (General): KA4UDX Restricted Radiotelephone: RR00022962 General Mobile Radio Service: WQHB349 ([EMAIL PROTECTED]),([EMAIL PROTECTED]) DBA Alan Spicer Telcom / Alan Spicer Marine Telecom Computer Services, Wired/Wireless Networking, Cell/Sat/Landline Communications, General Consulting... Marine, Business, Small Office and Home Office (SOHO) * http://www.marinetelecom.net/ * * 954-683-3426 Business Mobile * 866-977-5245 Toll Free 800# * 954-977-5245 Office * skype:alanspicertelecom - Original Message - From: Mail Delivery Subsystem [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, November 07, 2007 03:30 Subject: Returned mail: 17 Delivery failures on Tue, 06 Nov 2007 On this date, there were delivery failures where the associated deliver status notification messages were suppressed. --- The following addresses had suppressed delivery status notifications --- [EMAIL PROTECTED] - Transcript of session is unavailable - No information is available on specific messages. No virus found in this incoming message. Checked by AVG Free Edition. Version: 7.5.503 / Virus Database: 269.15.20/1108 - Release Date: 11/3/2007 9:42 PM ATT00082.dat
Re: What's the real issue here?
Hi, On 19/09/2007, at 4:28 PM, NetSecGuy wrote: :~ whois 97.81.31.19 Unknown AS number or IP network. Please upgrade this program. Is this a function of whois hardcoded to no do lookups for this address space? I can't seem to find any info about the range, beyond registered but unallocated. I figured whois would at least return something about it not being allocated. Is this hijacked space? Please note that this error is actually being returned by the 'whois' program because it is out of date and does not know what registrar this IP range was allocated to yet quads:~ lathiat$ whois -h whois.arin.net 97.81.31.19 Charter Communications NETBLK-CHARTER-NET (NET-97-80-0-0-1) 97.80.0.0 - 97.90.255.255 Charter Communications KNG-TN-97-81-24 (NET-97-81-24-0-1) 97.81.24.0 - 97.81.31.255 # ARIN WHOIS database, last updated 2007-09-18 19:10 # Enter ? for additional hints on searching ARIN's WHOIS database. quads:~ lathiat$ Regards, Trent
Re: broken DNS proxying at public wireless hotspots
On Sat, Feb 03, 2007 at 09:22:30PM -0800, Lasher, Donn wrote: If so, how do you configure your client operating system of choice to use the novel, un-proxied ports instead of using port 53? * Set up the profile, to your house/work/etc, of your favorite SSH client to forward port 53 local to port 53 on your remote machine. snip Same type of config works great for HTTP (with squid, and browser proxy settings) etc.. The flaw here is that DNS operates over 53(UDP), last time I checked SSH doesn't do UDP port forwarding? Cheers, Trent
Re: broken DNS proxying at public wireless hotspots
Hi Joe, On Sun, Feb 04, 2007 at 01:30:58AM -0500, Joe Abley wrote: On 4-Feb-2007, at 00:58, Trent Lloyd wrote: The flaw here is that DNS operates over 53(UDP), last time I checked SSH doesn't do UDP port forwarding? In the interests of dispelling a common myth, DNS operates over both 53/udp and 53/tcp. However, given that a substantial portion of most clients' queries will likely use UDP transport, your fundamental point stands. Sorry, yes, you are 100% correct in that, but as you say in practice all client resolver queries are most likely to be over UDP :) Cheers, Trent
Re: broken DNS proxying at public wireless hotspots
One thing I have noticed to be unfortunately more common that I would like is routers that misunderstand IPv6 requests and return an A record of 0.0.0.1 So if you are using (for the most part) anything other than windows, or Windows Vista, this may be related to what you are seeing. Cheers, Trent On Sat, Feb 03, 2007 at 11:38:26AM +0530, Suresh Ramasubramanian wrote: Right now, I'm on a swisscom eurospot wifi connection at Paris airport, and this - yet again - has a DNS proxy setup so that the first few queries for a host will return some nonsense value like 1.2.3.4, or will return the records for com instead. Some 4 or 5 minutes later, the dns server might actually return the right dns record. ;; -HEADER- opcode: QUERY, status: NOERROR, id: 25634 ;; flags: qr ra; QUERY: 1, ANSWER: 0, AUTHORITY: 13, ADDITIONAL: 11 ;; QUESTION SECTION: ;www.kcircle.com. IN A ;; AUTHORITY SECTION: com.172573 IN NS j.gtld-servers.net. com.172573 IN NS k.gtld-servers.net. [etc] ;; Query time: 1032 msec ;; SERVER: 192.168.48.1#53(192.168.48.1) ;; WHEN: Sat Feb 3 11:33:07 2007 ;; MSG SIZE rcvd: 433 They're not the first provider I've seen doing this, and the obvious workarounds (setting another NS in resolv.conf, or running a local dns caching resolver) dont work either as all dns traffic is proxied. Sure I could route dns queries out through a ssh tunnel but the latency makes this kind of thing unusable at times. I'm then reduced to hardwiring some critical work server IPs into /etc/hosts What do nanogers usually do when caught in a situation like this? thanks srs -- Suresh Ramasubramanian ([EMAIL PROTECTED])
Re: broken DNS proxying at public wireless hotspots
On Sat, Feb 03, 2007 at 01:00:29AM -0600, Stephen Sprunk wrote: Thus spake Trent Lloyd [EMAIL PROTECTED] One thing I have noticed to be unfortunately more common that I would like is routers that misunderstand IPv6 requests and return an A record of 0.0.0.1 So if you are using (for the most part) anything other than windows, or Windows Vista, this may be related to what you are seeing. The same is true if you've enabled IPv6 on XP. Unfortunately, it's hard to find a hotel network these days that _doesn't_ break when presented with queries. I'm hoping that the flood of support calls from Vista users will pressure them to get their systems fixed, but I'm not holding my breath. They'll probably just make disable IPv6 part of their standard troubleshooting routine, just like telling you to reboot your PC. After all, nobody uses it, right? Unfortunately this is something I'm afraid of, currently there is a long running bug[1] in the Ubuntu bug tracker on why they should disable IPv6 by default, which makes me sad, but I can understand why they would think that because to them it provides no advantage (yet), yet when disabled, it works for them. I have considered if some kind of workaround to the resolver which would ignore returns of 0.0.0.1 (possibly if there are other addresses, or only if is requested, etc) Is anyone aware of other weird things some routers return? Personally I have only seen 0.0.0.1 coming back. Cheers, Trent [1] https://launchpad.net/ubuntu/+source/netcfg/+bug/24828 S Stephen Sprunk God does not play dice. --Albert Einstein CCIE #3723 God is an inveterate gambler, and He throws the K5SSSdice at every possible opportunity. --Stephen Hawking
Re: what the heck do i do now?
snip The only way for it not to arrive at the name server is for something in the way to block it. Perhaps a transparent filter, or perhaps the IP addresses of the name servers are your firewalls, which will block and pass the rest on to the real name servers behind them. The problem here is, most people that have experiences this problem, are significantly overwhelmed with traffic of people so much as trying to do a lookup, even if you firewall it you are still going to get an array of queries. In some cases, also, firewalling these queries makes it worse as servers will query multiple times, where as if you give a response with a large TTL they will go away. But then you have to have enough server power to handle these queries (and outbound bandwidth to match). I don't know how much of an impact there is in this case but I know of other people who've had this exact same problem and the traffic load of the attempted queries was immense. Cheers, Trent
Re: Network end users to pull down 2 gigabytes a day, continuously?
Howdy, On Sat, Jan 06, 2007 at 03:18:03AM -0500, Robert Boyle wrote: At 01:52 AM 1/6/2007, Thomas Leavitt [EMAIL PROTECTED] wrote: If this application takes off, I have to presume that everyone's baseline network usage metrics can be tossed out the window... Interesting. Why does it send so much data? Is it a peer to peer type of system where it redistributes a portion of the stream as you are viewing it to other users? The Venice Project is the new system being developed by Janus Friis and Niklas Zennstr?m, the Scandinavian entrepreneurs behind the revolutionary services Kazaa and Skype. That's probably a safe assumption. :) Cheers, Trent R Tellurian Networks - Global Hosting Solutions Since 1995 http://www.tellurian.com | 888-TELLURIAN | 973-300-9211 Well done is better than well said. - Benjamin Franklin
Re: Stupid Ipv6 question...
Hi Dan, I've got some slides from talks I've done, they cover this sortof stuff. You can see at http://www.sixlabs.org/talks/ Additionally, the size is 2^(128-prefixlen) [more or less] But you don't use all of them, obviously, it'd be fairly difficult, best part about a /64 is EUI-64 works (auto-address allocation based on MAC address) if you advertise it with radvd [or rtadvd if your freebsd, no idea about other oss, radvd seems to work in most places] Cheers, Trent Bur.st On Fri, Nov 19, 2004 at 03:06:43AM -0500, Dan Mahoney, System Admin wrote: In preparation for the upcoming advent of ipv6, I'm playing with a tunnel I've gotten from HE's cool tunnelbroker, and I'm plagued by the question that about an hour of google searching can't answer for me. I'm having trouble wrapping my head around ipv6 style suffixes -- does anyone have a chart handy? How big is a /64, specifically? Most of the tutorials I've found seem to be a bit over-the-top on this. -Dan -- Wrin quick, somebody tell me the moon phase please? Dan_Wood Wrin: Plummeting. -Undernet #reboot, 9/11/01 (day of the WTC bombing) Dan Mahoney Techie, Sysadmin, WebGeek Gushi on efnet/undernet IRC ICQ: 13735144 AIM: LarpGM Site: http://www.gushi.org --- -- Trent Lloyd [EMAIL PROTECTED] Bur.st Networking Inc.