Question. Cisco PIX/ASA

2009-04-29 Thread Jo¢ 
Greetings all


I have a customer running with a Cisco 5500 series firewall. What were
seeing (as a problem) is that there is a bit being flipped by the firewall
in the packet header. The bit in question is the Congession Window Reduced
or CWR bit. Under heavy load the target server is getting this bit as high
and since (I am guessing) its that way dropping the session yet its not near
capacity. It’s a Microsoft server as well. Not that I am knocking that but.
Under the same situation a Linux/Apache server doesn't seem to care, and
goes about its business. Anyone heard of this? I did searches regarding this
but found (as per usual) tons of usless info.  I'm not sure why the packets
are being changed by the ASA. I know there not hitting the firewall this way
(Packet capture) but they are getting changed. Config mishap? Is the ASA
throttling down stuff, and if so why not at the requesting party? 

Dunno. Completely baffled. Thanks In Advance!

-Joe

Minnesota to block online gambling sites?

2009-04-29 Thread Ken Gilmour 
Hi there,

I am just wondering if anyone knows any more about the attempt by
Minnesota to block online gambling companies other than what's
publicly available (e.g.
http://www.gambling911.com/gambling-news/minnesota-regulators-try-block-access-gambing-sites-042909.html)?
Such as a list or the letter to the providers?

Thank you!

Ken

Re: one shot remote root for linux?

2009-04-29 Thread Nathan Ward 


On 29/04/2009, at 3:25 PM, Nathan Ward wrote:


On 29/04/2009, at 3:10 PM, Crooks, Sam wrote:

Cisco ASA's appear to be linux under the hood based on watching  
versions

of ASA804-3/12/19/23/31 boot on the console



They are Linux, and run two copies of IOS simultaneously in a VM each.



Erk, sorry, I brain farted and was thinking of the ASR. I'm really not  
sure about the ASA product line.


--
Nathan Ward

Re: one shot remote root for linux?

2009-04-29 Thread Lamar Owen 
On Tuesday 28 April 2009 09:33:06 pm Christopher Morrow wrote:
> That said there are a few 'network devices' which are linux based (not
> just Vyatta! :) )
>
> o Cisco Guards
> o Arbor Peakflow (at least the X version)
> o some-route-optmization systems
> o dns/mail/ntp/blah widgets

Add: Cisco Content Engines and anything else that runs ACNS.

[NANOG-announce] NANOG 46 agenda announced; reduced rate registration expiring soon

2009-04-29 Thread Todd Underwood 
Howdy,

An updated agenda for NANOG46 has been posted at:

http://nanog.org/meetings/nanog46/agenda.php

you might notice that this NANOG features:

   * Keynote by Paul Vixie on "Internet Superbugs and the Art of War"
   * A ton of useful tutorials including Dani Roisman's popular "BGP
Load Balancing",
 and new tutorials from Richard Steenbergen, "Production v6
Network in 30 minutes
 or less" and Martin Hannigan "Network Capacity RFP"
   * The popular Peering and Security tracks
   * New v6 operational content and experience
   * Lots of other great, operational presentations

So I would humbly suggest that you (collectively) register for NANOG46

( https://nanog.merit.edu/registration/ )

as quickly as possible.  Discounted registration ends in less than two
weeks (on May 10) so save yourself $75 and get registered.  You know
you're going to go, so just go already.

If you require an invitation or travel letter for visa purposes, please
send mail to nanog-supp...@nanog.org.

I would *strongly* suggest you reserve a hotel room if you have not
already.  The last several NANOGs all available discounted rooms in
the room block have gone very quickly.

( http://nanog.org/meetings/nanog46/hotel.php )

Note that the program is now almost completely full (there are 2-3 slots
left that are saved for conditionally accepted talks that are already
in progress or any presentations dealing with late-breaking events,
but the event would have to be exceptionally significant and
interesting).  If you didn't submit for this NANOG conference, please
consider submitting a presentation for NANOG47. (http://pc.nanog.org)

Lightning talk submission will open on May 14.  Lightning talks are short
(10 minute maximum) presentations submitted immediately prior to
or during the conference.  Lightning talks are particularly appropriate
for material that is too short to fill a normal Plenary presentation slot
or too timely to have been submitted with sufficient anticipation.  Lightning
talks are also an opportunity for presenters to get early feedback on a
new or still-gestating idea.

The first round of Lightning talks will be selected on June 9 and will
be announced immediately prior to the start of the  conference.
Additional lightning talks will be selected during the conference.

Looking forward to seeing all of you in Philadelphia,


Todd Underwood, Chair
NANOG Program Commitee

___
NANOG-announce mailing list
nanog-annou...@nanog.org
http://mailman.nanog.org/mailman/listinfo/nanog-announce