Re: Looking for a Tier 1 ISP Mentor for career advice.
On Thu, Dec 01, 2011 at 10:47:22AM -0800, Scott Weeks wrote: In our industry, especially with all the tools we have today, it would seem that telecommuting would be more accepted, but it's not and I don't understand why. People are social primates, alphas like access to nonverbal cues for reading and control of their supposed underlings. Same reasons for concentrations in big cities: interaction density is higher for business dinners while underlings are not too far away. Net ops are more like hunter-gatherers than anything, so there's considerable culture clash.
Re: IP addresses are now assets
valdis.kletni...@vt.edu writes: Would it be correct to summarize the ARIN position as It's murkier than Cerner makes it out to be, and some lawyers are gonna get stinking filthy rich litigating this one? :) In any litigation, Counsel always wins. I often remind myself that there's still time to go to law school. :-) -r
Re: Looking for a Tier 1 ISP Mentor for career advice.
Am 12/1/11 9:35 PM, schrieb David Radcliffe: Since I like to work and code (I spend 10 hours a day on the computer at the office, think about work related stuff in the shower, and often write Perl code at home to deal with various household tasks) I work quite well at home. There are more distractions at the office and my productivity is greater in my home computer room during those times I have to put in some extra for the office. The downside of this is that you are not around in the office in case someone wants to talk to you. I often end up with guys from our operations team or other teams stopping at my desk and ask questions. Or guys who want to have a quick chat about a problem and want to ask for an advice or idea. Or people who want to learn Perl and have a question that you can answer in 30 seconds. Yes, I know, they can call you, or send an Email, but nothing beats the good old Let's go for a coffee, I'd like to ask you a question. cheers, Thorsten
Re: Looking for a Tier 1 ISP Mentor for career advice.
On Fri, Dec 02, 2011 at 12:25:41PM +, Thorsten Dahm wrote: Yes, I know, they can call you, or send an Email, but nothing beats the good old Let's go for a coffee, I'd like to ask you a question. Some people just put up a dedicated netbook with a permanent video/audio link (can be a problem with limited residential upstram) for a poor man's telepresence. What could potentially work even better is to build a virtual office using e.g. OpenQwaq http://code.google.com/p/openqwaq/ (not sure the codes are fully done in the open sourced version yet, but they'll be there in a few months).
RE: Looking for a Tier 1 ISP Mentor for career advice.
-Original Message- From: Thorsten Dahm [mailto:t.d...@resolution.de] Sent: 02 December 2011 12:28 To: nanog@nanog.org Subject: Re: Looking for a Tier 1 ISP Mentor for career advice. Am 12/1/11 9:35 PM, schrieb David Radcliffe: Since I like to work and code (I spend 10 hours a day on the computer at the office, think about work related stuff in the shower, and often write Perl code at home to deal with various household tasks) I work quite well at home. There are more distractions at the office and my productivity is greater in my home computer room during those times I have to put in some extra for the office. The downside of this is that you are not around in the office in case someone wants to talk to you. I often end up with guys from our operations team or other teams stopping at my desk and ask questions. Or guys who want to have a quick chat about a problem and want to ask for an advice or idea. Or people who want to learn Perl and have a question that you can answer in 30 seconds. And it means you do not get 'noticed' as much. I work from home when I have a task to get done that benefits from not having to talk to people. A specific document that needs completing or some more PowerPoint waffle for a pointless meeting with people who won't get it anyway. Other than that, I try to be in the office. -- Leigh __ This email has been scanned by the Symantec Email Security.cloud service. For more information please visit http://www.symanteccloud.com __
Re: IP addresses are now assets
On Dec 2, 2011, at 2:48 AM, valdis.kletni...@vt.edu wrote: Would it be correct to summarize the ARIN position as It's murkier than Cerner makes it out to be, and some lawyers are gonna get stinking filthy rich litigating this one? It's pretty simple: you can write a contract to transfer IP addresses in accordance with policy, and we are now seeing most parties come to us in advance either to prequalify or make the sale conditional on approval. FYI, /John John Curran President and CEO ARIN
Re: IP addresses are now assets
Hi John, I'm sorry to be thick, but can you explain right of visibility to the public portion of registrations a little further?. Under what circumstances might ARIN deny approval? j On Fri, Dec 2, 2011 at 7:42 AM, John Curran jcur...@arin.net wrote: On Dec 2, 2011, at 2:48 AM, valdis.kletni...@vt.edu wrote: Would it be correct to summarize the ARIN position as It's murkier than Cerner makes it out to be, and some lawyers are gonna get stinking filthy rich litigating this one? It's pretty simple: you can write a contract to transfer IP addresses in accordance with policy, and we are now seeing most parties come to us in advance either to prequalify or make the sale conditional on approval. FYI, /John John Curran President and CEO ARIN -- --- Joly MacFie 218 565 9365 Skype:punkcast WWWhatsup NYC - http://wwwhatsup.com http://pinstand.com - http://punkcast.com VP (Admin) - ISOC-NY - http://isoc-ny.org -- -
draft-ietf-idr-as0-00 (bgp update destroying transit on redback routers ?)
Hi, This is true that no-aggregator-id knob zeroes out the AGGREGATOR attribute. The knob, as far as I was able to find out, dates back to gated and there's a reason why it was introduced - it helps to avoid unnecessary updates. Assume that an aggregate route is generated by two (or more) speakers in the network. These two aggregates differ only in AGGREGATOR attribute. One of the aggregates is preferred within the network (due to IGP metric, for instance, or any other reasons) and is announced out. Now if something changes within the network and the other instance of the aggregate becomes preferred, the network has to issue an outward update different from the previous only in AGGREGATOR attribute, which is completely superfluous. If the network employs the no-aggregator-id knob to zero out the AGGREGATOR attribute, both instances of the aggregate route are completely equivalent, and no redundant outward updates have to be send if one instance becomes better than another due to some internal event, which nobody in the Internet cares about. In other words, the no-aggregator-id knob has valid operational reasons to be used. And, IMHO, the draft-ietf-idr-as0-00 should not prohibit AS0 in AGGREGATOR attribute. On 02.12.2011, at 1:56, Jeff Tantsura wrote: Hi, Let me take it over from now on, I'm the IP Routing/MPLS Product Manager at Ericsson responsible for all routing protocols. There's nothing wrong in checking ASN in AGGREGATOR, we don't really want see ASN 0 anywhere, that's how draft-wkumari-idr-as0 (draft-ietf-idr-as0-00) came into the worlds. To my knowledge - the only vendor which allows changing ASN in AGGREGATOR is Juniper, see no-aggregator-id, in the past I've tried to talk to Yakov about it, without any results though. So for those who have it configured - please rethink whether you really need it. As for SEOS - understanding that this badly affects our customers and not having draft-ietf-idr-error-handling fully implemented yet, we will temporarily disable this check in our code. Patch will be made available. Please contact me for any further clarifications. Regards, Jeff P.S. Warren has recently included AGGREGATOR in the draft, please see 2. Behavior This document specifies that a BGP speaker MUST NOT originate or propagate a route with an AS number of zero. If a BGP speaker receives a route which has an AS number of zero in the AS_PATH (or AS4_PATH) attribute, it SHOULD be logged and treated as a WITHDRAW. This same behavior applies to routes containing zero as the Aggregator or AS4 Aggregator.
Re: IP addresses are now assets
On Dec 2, 2011, at 7:57 AM, Joly MacFie wrote: Hi John, I'm sorry to be thick, but can you explain right of visibility to the public portion of registrations a little further?. Under what circumstances might ARIN deny approval? Joly - Requests are processed according the transfer policies https://www.arin.net/policy/nrpm.html#eight. If a request doesn't meet the transfer policy (e.g. the sale is not to an actual entity that has an operational need for address space or it is more space than needed for the next twelve months), then it will be denied. If you think that ARIN should operate under different policies in the management of the IP address space in the region, you can submit a policy proposal to change the policy as desired: https://www.arin.net/participate/how_to_participate.html Thanks! /John John Curran President and CEO ARIN
RE: IP addresses are now assets
-Original Message- From: John Curran [mailto:jcur...@arin.net] Joly - Requests are processed according the transfer policies https://www.arin.net/policy/nrpm.html#eight. If a request doesn't meet the transfer policy (e.g. the sale is not to an actual entity that has an operational need for address space or it is more space than needed for the next twelve months), then it will be denied. Presumably organisations will check this and fake the appropriate paperwork and come up with some plausible excuse for requiring the space within the next 12 months BEFORE they part with their cash. It would be most amusing for somebody to buy space, hand over the money and then have ARIN deny the transfer. So I do wonder, how is this policy is being enforced and will ARIN be investigating this current news item? -- Leigh Porter __ This email has been scanned by the Symantec Email Security.cloud service. For more information please visit http://www.symanteccloud.com __
Re: Looking for a Tier 1 ISP Mentor for career advice.
Am 12/1/11 9:35 PM, schrieb David Radcliffe: Since I like to work and code (I spend 10 hours a day on the computer at the office, think about work related stuff in the shower, and often write Perl code at home to deal with various household tasks) I work quite well at home. There are more distractions at the office and my productivity is greater in my home computer room during those times I have to put in some extra for the office. The downside of this is that you are not around in the office in case someone wants to talk to you. I often end up with guys from our operations team or other teams stopping at my desk and ask questions. Or guys who want to have a quick chat about a problem and want to ask for an advice or idea. Or people who want to learn Perl and have a question that you can answer in 30 seconds. Yes, I know, they can call you, or send an Email, but nothing beats the good old Let's go for a coffee, I'd like to ask you a question. Which really stops being practical once you exceed (approx) one building in size. It was interesting during the early days to note that there were certain people who did a lot of their interaction on IRC, even when in the office, even when sitting a few cubes away from each other sometimes. It definitely enabled telepresence - obviously not as good as being there, but it was funny every now and then when you'd go looking for that person and find out they were out today at a different office, or telecommuting. It seems to me that we've not been as successful as we might at this whole telecommuting thing, because people - especially at small companies - ARE used to being able to grab a coffee, and there's a reluctance to lose that. ... JG -- Joe Greco - sol.net Network Services - Milwaukee, WI - http://www.sol.net We call it the 'one bite at the apple' rule. Give me one chance [and] then I won't contact you again. - Direct Marketing Ass'n position on e-mail spam(CNN) With 24 million small businesses in the US alone, that's way too many apples.
Re: bgp update destroying transit on redback routers ?
http://tools.ietf.org/html/draft-wkumari-idr-as0-01 one of the reasons the above was written... That does not include when ASN=0 is used in the aggregator attribute. Could you add that? next rev
Re: IP addresses are now assets
On Fri, Dec 2, 2011 at 03:52, Robert E. Seastrom r...@seastrom.com wrote: In any litigation, Counsel always wins. I often remind myself that there's still time to go to law school. :-) It may be too late. The glory days of getting a JD and then racking in the money are apparently over. I remember reading recently (in the NYTimes?) that newly minted lawyers are having a hard time finding employment, as the customers of the law firms are pushing back on the ever higher fees, and the firms are responding by a combination of outsourcing some research, and using non-lawyers for other work, reducing the demand for (and hiring of) new lawyers. Exceptions noted for the Harvard grads due to the OBN.
Re: IP addresses are now assets
In a message written on Thu, Dec 01, 2011 at 11:04:23PM -0500, Michael R. Wayne wrote: After negotiating with multiple prospective buyers, Cerner Corp. agreed to buy the Internet addresses for $12 each. Other bids were as low as $1.50 each, according to a bankruptcy court filing. Someone should tell Cerner Corp you can still get them for free, and thus they overpaid by oh, $12 an address! -- Leo Bicknell - bickn...@ufp.org - CCIE 3440 PGP keys at http://www.ufp.org/~bicknell/ pgpaqy8ijGz8l.pgp Description: PGP signature
Re: bgp update destroying transit on redback routers ?
On Thu, Dec 01, 2011 at 04:56:43PM -0500, Jeff Tantsura wrote: Hi, Let me take it over from now on, I'm the IP Routing/MPLS Product Manager at Ericsson responsible for all routing protocols. There's nothing wrong in checking ASN in AGGREGATOR, we don't really want see ASN 0 anywhere, that's how draft-wkumari-idr-as0 (draft-ietf-idr-as0-00) came into the worlds. This draft says that If a BGP speaker receives a route which has an AS number of zero in the AS_PATH (or AS4_PATH) attribute, it SHOULD be logged and treated as a WITHDRAW. This same behavior applies to routes containing zero as the Aggregator or AS4 Aggregator. but observed behaviour was more like following: If a BGP speaker receives [bad route] it MUST close session immediately with NOTIFICATION Error Code 'Update Message Error' and subcode 'Error with optional attribute'. -- In theory, there is no difference between theory and practice. But, in practice, there is.
Re: ATT GigE issue on 11/19 in Kansas City
On Thursday, December 01, 2011 02:56:37 AM Holmes,David A wrote: What I have seen lately with telco's building and operating Metro Ethernet Forum (MEF) based Ethernet networks is that relatively inexperienced telco staff are in charge of configuring and operating the networks, where telco operational staff are unaware of layer 2 Ethernet network nuances, nuances that in an Enterprise environment network engineers must know, or else. We use RANCID here, quite heavily, to help guide provisioning engineers so they are better prepared for the future, and actually understand what it is they are configuring. Pre-provisioning training is all good and well, but hands-on experience always has the chance of going the other way. While RANCID is after-the-fact, it's a great tool for refining what the folk on the ground know. It certainly has helped us a great deal, over the years. Mark. signature.asc Description: This is a digitally signed message part.
Re: Recent DNS attacks from China?
On Nov 30, 2011, at 3:12 PM, Drew Weaver wrote: -Original Message- From: rob.vercoute...@kpn.com [mailto:rob.vercoute...@kpn.com] Sent: Wednesday, November 30, 2011 3:05 PM To: matlo...@exempla.org; richard.bar...@gmail.com; andrew.wall...@rocketmail.com Cc: nanog@nanog.org; lel...@taranta.discpro.org Subject: RE: Recent DNS attacks from China? Yes it is, but the problem is that our servers are attacking the so called source address. All the answers are going back to the source. It is huge amplification attacks. (some sort of smurf if you want) The ip addresses are spoofed (We did a capture and saw all different ttl's so coming from behind different hops) And yes we saw the ANY queries for all the domains. I still wonder how it is still possible that ip addresses can be spoofed nowadays We're a smaller shop and started receiving these queries last night, roughly 1000 queries per minute or less. We're seeing that the source (victim) addresses are changing every few minutes, the TTLs vary within a given source address, and while most of the source/victim addresses have been Chinese we are seeing a few which are not, such as 74.125.90.83 (Google). The queries are coming in to ns1.traffiq.com (perhaps ns2 also, I haven't checked) and are for traffiq.com/ANY which unfortunately gives a 492 byte response. = Rob, Transit providers can bill for the denial of service traffic and they claim it's too expensive to run URPF because of the extra lookup. -Drew
Re: IP addresses are now assets
On Fri, Dec 2, 2011 at 8:23 AM, Leigh Porter leigh.por...@ukbroadband.com wrote: -Original Message- From: John Curran [mailto:jcur...@arin.net] Joly - Requests are processed according the transfer policies https://www.arin.net/policy/nrpm.html#eight. If a request doesn't meet the transfer policy (e.g. the sale is not to an actual entity that has an operational need for address space or it is more space than needed for the next twelve months), then it will be denied. Presumably organisations will check this and fake the appropriate paperwork and come up with some plausible excuse for requiring the space within the next 12 months BEFORE they part with their cash. It would be most amusing for somebody to buy space, hand over the money and then have ARIN deny the transfer. So I do wonder, how is this policy is being enforced and will ARIN be investigating this current news item? ARIN, on many occasions, has stated that they have no authority over legacy address space. They made this declaration in the Kamens/sex.com case. I haven't heard that anything has changed since then. Nortel/MSN was the first, big, public transaction. There have been others prior to Nortel. There will be more after Borders. Circuit City: http://www.slideshare.net/Streambank/offering-memo-ip-addresses-92111final Best. -M
Re: Recent DNS attacks from China?
Yup.. they're all ANY requests. The varying TTLs indicates that they're most likely spoofed. We are also now seeing similar traffic from RFC1918 source addresses trying to ingress our network (but being stopped by our border filters). Looks like the kiddies are playing On 2 Dec 2011, at 16:02, Ryan Rawdon wrote: On Nov 30, 2011, at 3:12 PM, Drew Weaver wrote: -Original Message- From: rob.vercoute...@kpn.com [mailto:rob.vercoute...@kpn.com] Sent: Wednesday, November 30, 2011 3:05 PM To: matlo...@exempla.org; richard.bar...@gmail.com; andrew.wall...@rocketmail.com Cc: nanog@nanog.org; lel...@taranta.discpro.org Subject: RE: Recent DNS attacks from China? Yes it is, but the problem is that our servers are attacking the so called source address. All the answers are going back to the source. It is huge amplification attacks. (some sort of smurf if you want) The ip addresses are spoofed (We did a capture and saw all different ttl's so coming from behind different hops) And yes we saw the ANY queries for all the domains. I still wonder how it is still possible that ip addresses can be spoofed nowadays We're a smaller shop and started receiving these queries last night, roughly 1000 queries per minute or less. We're seeing that the source (victim) addresses are changing every few minutes, the TTLs vary within a given source address, and while most of the source/victim addresses have been Chinese we are seeing a few which are not, such as 74.125.90.83 (Google). The queries are coming in to ns1.traffiq.com (perhaps ns2 also, I haven't checked) and are for traffiq.com/ANY which unfortunately gives a 492 byte response. = Rob, Transit providers can bill for the denial of service traffic and they claim it's too expensive to run URPF because of the extra lookup. -Drew
Re: Looking for a Tier 1 ISP Mentor for career advice.
On Friday, December 02, 2011 07:25:41 AM Thorsten Dahm wrote: Am 12/1/11 9:35 PM, schrieb David Radcliffe: Since I like to work and code (I spend 10 hours a day on the computer at the office, think about work related stuff in the shower, and often write Perl code at home to deal with various household tasks) I work quite well at home. There are more distractions at the office and my productivity is greater in my home computer room during those times I have to put in some extra for the office. The downside of this is that you are not around in the office in case someone wants to talk to you. I often end up with guys from our operations team or other teams stopping at my desk and ask questions. Or guys who want to have a quick chat about a problem and want to ask for an advice or idea. Or people who want to learn Perl and have a question that you can answer in 30 seconds. Yes, I know, they can call you, or send an Email, but nothing beats the good old Let's go for a coffee, I'd like to ask you a question. cheers, Thorsten Actually, that is the upside. Everywhere I have worked there are the people who will come to you before they even try to think of an answer. Your work gets interrupted because they did not have to send an email and wanted an excuse to socialize. It's much better to have a record (email) of most conversations especially when there are technical points which may be helpful to refer to in the future. F2F is fine when you are working on pushing your point as it is easier to create presence but 99% of all meetings and impromptu discussions in the office waste more time than provide any real benefit. I know plenty of people (my wife included) who disagree and feel there is great benefit in F2F but I contended they are just more comfortable with the old fashioned way they have always done things. There are people even today who will print and bring me an email to discuss the reported problem rather than forward information electronically. That is just because it is difficult for people to break their comfort molds to see a more productive method. I do not say it is easy. I understand people think the way they do things, the things which make them comfortable, seem best but in this case F2F is not best for everyone. If someone says to me Let's go for a coffee, I'd like to ask you a question what I hear is Gee, you are not busy. Why are you getting a paycheck? Let's go talk shop and other non-work related stuff. I have a legitimate question and I want to socialize. I have a better idea, send email. If the question is too deep we can meet on the phone. I have a TeamSpeak server. Want to get together? Let's grab a beer after work or we can chat on TS while wandering through Left4Dead. F2F is for semi-work related activities. If you need to paint a picture we can bounce a diagram back and forth (please use open standards -- .odg, .dia, etc. -- and not proprietary -- .vsd) or we can draw simple stuff in Coccinella or OpenMeeting (I have servers set up). We can use email. We can use chat (I have Coccinella and a local server for our in-house and use Pidgin for AIM, Yahoo, MSN for my outside contacts). I have Logitech 9000 cameras so if you really, really want to see me I will configure my VoIP (Asterisk server at home) so we can look at each other. The whole I have to be in your space in an office for work to be effective is so nineteenth century. Seriously: You talked to Ted the other day about the NetFlow based bandwidth billing project. What were the details and decisions? Can you remember the important points? No. But the discussion was electronic so I will pass you the email chain/chat log/etc. My dream is roll out of bed, make coffee, walk upstairs into my computer room and begin work. Deal with conversations via email/work the online job queue. Maybe attend a quarterly face-time meeting with the company. Maybe the people are nice. That would be cool. Maybe a monthly meeting at the home office in Atlanta on the 3rd Friday because the company provides tickets to Jazz at the High Museum. I can dream... -- David Radcliffe Network Engineer/Linux Specialist da...@davidradcliffe.org www.davidradcliffe.org Nothing ever gets solved better with panic. If you do not know the answer, it is probably 42.
Re: IPv6 prefixes longer then /64: are they possible in DOCSIS networks?
On Thursday, December 01, 2011 08:19:51 AM Ray Soucy wrote: There is a lot of talk about buggy systems that are unable to handle prefixes longer than 64; but I've yet to encounter one. I imagine if I did it would be treated as a bug and fixed. So to the question of supporting different prefix lengths: Yes. You should support any valid IPv6 prefix length; it takes a few extra lines of code in the beginning; but will save you a lot of re-coding in the end. Exactly. /126's for point-to-points, and /112's for router LAN's here, 6 years and counting. Mark. signature.asc Description: This is a digitally signed message part.
Re: Recent DNS attacks from China?
Other than being non-compliant, is an ANY query used by any major software? Could someone rate limit ANY responses to mitigate this particular issue? On Fri, Dec 2, 2011 at 8:17 AM, Leland Vandervort lel...@taranta.discpro.org wrote: Yup.. they're all ANY requests. The varying TTLs indicates that they're most likely spoofed. We are also now seeing similar traffic from RFC1918 source addresses trying to ingress our network (but being stopped by our border filters). Looks like the kiddies are playing On 2 Dec 2011, at 16:02, Ryan Rawdon wrote: On Nov 30, 2011, at 3:12 PM, Drew Weaver wrote: -Original Message- From: rob.vercoute...@kpn.com [mailto:rob.vercoute...@kpn.com] Sent: Wednesday, November 30, 2011 3:05 PM To: matlo...@exempla.org; richard.bar...@gmail.com; andrew.wall...@rocketmail.com Cc: nanog@nanog.org; lel...@taranta.discpro.org Subject: RE: Recent DNS attacks from China? Yes it is, but the problem is that our servers are attacking the so called source address. All the answers are going back to the source. It is huge amplification attacks. (some sort of smurf if you want) The ip addresses are spoofed (We did a capture and saw all different ttl's so coming from behind different hops) And yes we saw the ANY queries for all the domains. I still wonder how it is still possible that ip addresses can be spoofed nowadays We're a smaller shop and started receiving these queries last night, roughly 1000 queries per minute or less. We're seeing that the source (victim) addresses are changing every few minutes, the TTLs vary within a given source address, and while most of the source/victim addresses have been Chinese we are seeing a few which are not, such as 74.125.90.83 (Google). The queries are coming in to ns1.traffiq.com (perhaps ns2 also, I haven't checked) and are for traffiq.com/ANY which unfortunately gives a 492 byte response. = Rob, Transit providers can bill for the denial of service traffic and they claim it's too expensive to run URPF because of the extra lookup. -Drew
Re: IP addresses are now assets
On Dec 2, 2011, at 8:23 AM, Leigh Porter wrote: So I do wonder, how is this policy is being enforced and will ARIN be investigating this current news item? Leigh - No investigation is needed, as I already noted the parties have sought out ARIN in advance. Note that original sales solicitation states: Sale may be subject to compliance with certain requirements of the American Registry of Internet Numbers (ARIN) and the court materials to date reflect this. FYI, /John John Curran President and CEO ARIN
Re: Recent DNS attacks from China?
Once upon a time, Joel Maslak jmas...@antelope.net said: Other than being non-compliant, is an ANY query used by any major software? Could someone rate limit ANY responses to mitigate this particular issue? I believe qmail still uses ANY lookups. -- Chris Adams cmad...@hiwaay.net Systems and Network Administrator - HiWAAY Internet Services I don't speak for anybody but myself - that's enough trouble.
Re: Looking for a Tier 1 ISP Mentor for career advice.
In a message written on Fri, Dec 02, 2011 at 12:25:41PM +, Thorsten Dahm wrote: The downside of this is that you are not around in the office in case someone wants to talk to you. I often end up with guys from our operations team or other teams stopping at my desk and ask questions. Or guys who want to have a quick chat about a problem and want to ask for an advice or idea. Or people who want to learn Perl and have a question that you can answer in 30 seconds. I've both delt with remote employees and been a telecommuter. After those experiences, and reading a few books I've decided the hardest thing about having successful telecommuters is dealing with the folks in the office. Telecommuters quickly turn to technology, they want to video-chat with collegues. Are eager to pick up the phone and talk. They reach out (generally). It's the folks in the office that are reluctant. They don't see the point of figuring out how the video chat software works, of setting their status to indicate what they are doing, and so on. The water cooler conversations can be moved to Skype, FaceTime, Google Hangouts, or any number of other solutions, but it requires everyone to be in that mindset. If you have telecommuters _everyone_ in the office should be forced to work from home at least 2 weeks a year, including the manager. It's only from that experience you learn to deal with your telecommuting co-workers in a way that raises everyone's productivity. Once over that hump there are huge rewards to having telecommuters. You can pay lower salaries as people can live in cheaper locations. People in multiple timezones provide better natural coverage. People are much more willing to do off hour work when they can roll out of bed at 5AM and be working at 5:05 in their PJ's, rather than getting up at 4 and getting dressed to drive in and do the work. -- Leo Bicknell - bickn...@ufp.org - CCIE 3440 PGP keys at http://www.ufp.org/~bicknell/ pgpsMznpOpGxk.pgp Description: PGP signature
RE: Recent DNS attacks from China?
Since it is spoofed traffic we block the source, so not participating in flooding the real ip address. The real issue is verify unicast reverse path not being implemented. So that the ip addresses cannot be spoofed! (unless we are dealing with some major unknown vurlnerabilities in our infrastructure) After a few days we will unblock again. Regards, Rob Vercouteren
Re: Looking for a Tier 1 ISP Mentor for career advice.
Am 12/2/11 1:16 PM, schrieb Joe Greco: Thorsten Dahm: The downside of this is that you are not around in the office in case someone wants to talk to you. I often end up with guys from our operations team or other teams stopping at my desk and ask questions. Or guys who want to have a quick chat about a problem and want to ask for an advice or idea. Or people who want to learn Perl and have a question that you can answer in 30 seconds. Which really stops being practical once you exceed (approx) one building in size. I think it often depends on how you define practical. Normally, you sit with your own team, that means it is a practical solution for the network engineers, but perhaps not for the server admins and the network engineers anymore, since the server admins may sit in a different building, different city, different continent, cheers, Thorsten
Re: IP addresses are now assets
On Dec 1, 2011, at 23:04, Michael R. Wayne wa...@staff.msen.com wrote: After negotiating with multiple prospective buyers, Cerner Corp. agreed to buy the Internet addresses for $12 each. Other bids were as low as $1.50 each, according to a bankruptcy court filing. Clearly the addresses with the last octet of 00 and ff should be discounted, since no one wants to be zero, and ff just seems to get everyone's attention. -cjp
Re: IP addresses are now assets
I have acres on the moon that are up for sale. On Fri, Dec 2, 2011 at 11:18 AM, Christopher J. Pilkington c...@0x1.net wrote: On Dec 1, 2011, at 23:04, Michael R. Wayne wa...@staff.msen.com wrote: After negotiating with multiple prospective buyers, Cerner Corp. agreed to buy the Internet addresses for $12 each. Other bids were as low as $1.50 each, according to a bankruptcy court filing. Clearly the addresses with the last octet of 00 and ff should be discounted, since no one wants to be zero, and ff just seems to get everyone's attention. -cjp
Re: IP addresses are now assets
On Dec 2, 2011, at 10:16 AM, Martin Hannigan wrote: ARIN, on many occasions, has stated that they have no authority over legacy address space. They made this declaration in the Kamens/sex.com case. I haven't heard that anything has changed since then. Martin - ARIN will maintain the registry in accordance with community policy for all addresses and that includes legacy address space. Thanks, /John John Curran President and CEO ARIN
Weekly Routing Table Report
This is an automated weekly mailing describing the state of the Internet Routing Table as seen from APNIC's router in Japan. The posting is sent to APOPS, NANOG, AfNOG, AusNOG, SANOG, PacNOG, LacNOG, CaribNOG and the RIPE Routing Working Group. Daily listings are sent to bgp-st...@lists.apnic.net For historical data, please see http://thyme.rand.apnic.net. If you have any comments please contact Philip Smith pfsi...@gmail.com. Routing Table Report 04:00 +10GMT Sat 03 Dec, 2011 Report Website: http://thyme.rand.apnic.net Detailed Analysis: http://thyme.rand.apnic.net/current/ Analysis Summary BGP routing table entries examined: 383257 Prefixes after maximum aggregation: 167342 Deaggregation factor: 2.29 Unique aggregates announced to Internet: 188231 Total ASes present in the Internet Routing Table: 39463 Prefixes per ASN: 9.71 Origin-only ASes present in the Internet Routing Table: 32445 Origin ASes announcing only one prefix: 15489 Transit ASes present in the Internet Routing Table:5326 Transit-only ASes present in the Internet Routing Table:142 Average AS path length visible in the Internet Routing Table: 4.3 Max AS path length visible: 33 Max AS path prepend of ASN (48687) 24 Prefixes from unregistered ASNs in the Routing Table: 1825 Unregistered ASNs in the Routing Table: 938 Number of 32-bit ASNs allocated by the RIRs: 2031 Number of 32-bit ASNs visible in the Routing Table:1692 Prefixes from 32-bit ASNs in the Routing Table:4000 Special use prefixes present in the Routing Table:2 Prefixes being announced from unallocated address space: 86 Number of addresses announced to Internet: 2497290368 Equivalent to 148 /8s, 217 /16s and 160 /24s Percentage of available address space announced: 67.4 Percentage of allocated address space announced: 67.4 Percentage of available address space allocated: 100.0 Percentage of address space in use by end-sites: 91.7 Total number of prefixes smaller than registry allocations: 161883 APNIC Region Analysis Summary - Prefixes being announced by APNIC Region ASes:95145 Total APNIC prefixes after maximum aggregation: 31175 APNIC Deaggregation factor:3.05 Prefixes being announced from the APNIC address blocks: 91627 Unique aggregates announced from the APNIC address blocks:38267 APNIC Region origin ASes present in the Internet Routing Table:4600 APNIC Prefixes per ASN: 19.92 APNIC Region origin ASes announcing only one prefix: 1249 APNIC Region transit ASes present in the Internet Routing Table:727 Average APNIC Region AS path length visible:4.4 Max APNIC Region AS path length visible: 18 Number of APNIC region 32-bit ASNs visible in the Routing Table:116 Number of APNIC addresses announced to Internet: 631205216 Equivalent to 37 /8s, 159 /16s and 109 /24s Percentage of available APNIC address space announced: 80.0 APNIC AS Blocks4608-4864, 7467-7722, 9216-10239, 17408-18431 (pre-ERX allocations) 23552-24575, 37888-38911, 45056-46079, 55296-56319, 58368-59391, 131072-132095, 132096-133119 APNIC Address Blocks 1/8, 14/8, 27/8, 36/8, 39/8, 42/8, 43/8, 49/8, 58/8, 59/8, 60/8, 61/8, 101/8, 103/8, 106/8, 110/8, 111/8, 112/8, 113/8, 114/8, 115/8, 116/8, 117/8, 118/8, 119/8, 120/8, 121/8, 122/8, 123/8, 124/8, 125/8, 126/8, 133/8, 175/8, 180/8, 182/8, 183/8, 202/8, 203/8, 210/8, 211/8, 218/8, 219/8, 220/8, 221/8, 222/8, 223/8, ARIN Region Analysis Summary Prefixes being announced by ARIN Region ASes:146116 Total ARIN prefixes after maximum aggregation:74691 ARIN Deaggregation factor: 1.96 Prefixes being announced from the ARIN address blocks: 118285 Unique aggregates announced from the ARIN address blocks: 48671 ARIN Region origin ASes present in the Internet Routing Table:14775 ARIN Prefixes per ASN: 8.01 ARIN Region origin ASes announcing only one prefix:
Re: IP addresses are now assets
On Fri, 2 Dec 2011, Leo Bicknell wrote: In a message written on Thu, Dec 01, 2011 at 11:04:23PM -0500, Michael R. Wayne wrote: After negotiating with multiple prospective buyers, Cerner Corp. agreed to buy the Internet addresses for $12 each. Other bids were as low as $1.50 each, according to a bankruptcy court filing. Someone should tell Cerner Corp you can still get them for free, and thus they overpaid by oh, $12 an address! I'm waiting for someone to come back and balk at $12/address, and try to reduce the number of addresses they buy, forgetting that pesky powers-of-two business: In the interest of containing the cost of the deal, XYZ Corp has agreed to buy 27,000 addresses instead of the original 65,536. That will be a definite facepalm moment. jms
RE: IP addresses are now assets
-Original Message- From: Justin M. Streiner [mailto:strei...@cluebyfour.org] Sent: 02 December 2011 19:26 To: Leo Bicknell Cc: NANOG Subject: Re: IP addresses are now assets On Fri, 2 Dec 2011, Leo Bicknell wrote: In a message written on Thu, Dec 01, 2011 at 11:04:23PM -0500, Michael R. Wayne wrote: After negotiating with multiple prospective buyers, Cerner Corp. agreed to buy the Internet addresses for $12 each. Other bids were as low as $1.50 each, according to a bankruptcy court filing. Someone should tell Cerner Corp you can still get them for free, and thus they overpaid by oh, $12 an address! I'm waiting for someone to come back and balk at $12/address, and try to reduce the number of addresses they buy, forgetting that pesky powers- of-two business: In the interest of containing the cost of the deal, XYZ Corp has agreed to buy 27,000 addresses instead of the original 65,536. That will be a definite facepalm moment. jms So about a /18 a /19 a /21 and a /23 then ;-) -- Leigh __ This email has been scanned by the Symantec Email Security.cloud service. For more information please visit http://www.symanteccloud.com __
Re: IP addresses are now assets
On Thu, Dec 1, 2011 at 10:20 PM, John Curran jcur...@arin.net wrote:[cut] Your subject line (IP addresses are now assets) could mislead folks, [cut] ianal, but the treatment of ip addresses by the bankruptcy court would tend to agree with the definition of an asset from webster's new world law dictionary (http://law.yourdictionary.com/asset): Any property or right that is owned by a person or entity and has monetary value. See also liability. All of the property of a person or entity or its total value; entries on a balance sheet listing such property. intangible asset An asset that is not a physical thing and only evidenced by a written document. the addresses are being exchanged for money, in order to pay a debt...how is this not a sale of an asset? ARIN holds that IP address space is not property but is managed as a public resource. imho, if it were truly a 'public resource' and managed as such, it would be returned to the appropriate rir for reassignment, rather than being auctioned off to the highest bidder by a (commodities) broker...administrative and processing fees are one thing, but this is pure commoditisation of a so-called 'public resource' by speculators. i am, unfortunately, in the minority on this topic On Fri, Dec 2, 2011 at 8:33 AM, John Curran jcur...@arin.net wrote: [cut] Sale may be subject to compliance with certain requirements of the American Registry of Internet Numbers (ARIN) and the court materials to date reflect this. MAY versus WILL -- rfc2119 contains a pretty clear definition of each, which i am pretty sure echoes legal precedent..but again, ianal, so, ymmv, etc, etc the speculative market exists and is growing, why do certain factions of the community keep trying to pretend that it doesn't? /joshua
Re: IP addresses are now assets
--- jsah...@gmail.com wrote: the speculative market exists and is growing, why do certain factions of the community keep trying to pretend that it doesn't? --- Because they're busy getting ipv6 up and that will make these things less important? ;-) scott
Re: IP addresses are now assets
On Fri, 02 Dec 2011 14:37:29 -0500, joshua sahala jsah...@gmail.com wrote: Any property or right that is owned by a person or entity and has monetary value. See also liability. If it was a RIR assignment, it's not owned. It's more akin to a lease. That said, there are documented rules/proceedures for transfering assignments. I'm not entirely sure they apply here. Legacy assignments are, obviously, a very different story. --Ricky
RE: IP addresses are now assets
I have a boatload of IPv6 addresses I'm willing to sell at the low, low price of $.01 each. -Original Message- From: Christopher J. Pilkington [mailto:c...@0x1.net] Sent: Friday, December 02, 2011 12:18 PM To: Michael R. Wayne Cc: NANOG Subject: Re: IP addresses are now assets On Dec 1, 2011, at 23:04, Michael R. Wayne wa...@staff.msen.com wrote: After negotiating with multiple prospective buyers, Cerner Corp. agreed to buy the Internet addresses for $12 each. Other bids were as low as $1.50 each, according to a bankruptcy court filing. Clearly the addresses with the last octet of 00 and ff should be discounted, since no one wants to be zero, and ff just seems to get everyone's attention. -cjp
RE: IP addresses are now assets
From nanog-bounces+bonomi=mail.r-bonomi@nanog.org Fri Dec 2 13:29:31 2011 From: Leigh Porter leigh.por...@ukbroadband.com To: Justin M. Streiner strei...@cluebyfour.org, Leo Bicknell bickn...@ufp.org Subject: RE: IP addresses are now assets Date: Fri, 2 Dec 2011 19:29:43 + Cc: NANOG nanog@nanog.org -Original Message- From: Justin M. Streiner [mailto:strei...@cluebyfour.org] Sent: 02 December 2011 19:26 To: Leo Bicknell Cc: NANOG Subject: Re: IP addresses are now assets On Fri, 2 Dec 2011, Leo Bicknell wrote: In a message written on Thu, Dec 01, 2011 at 11:04:23PM -0500, Michael R. Wayne wrote: After negotiating with multiple prospective buyers, Cerner Corp. agreed to buy the Internet addresses for $12 each. Other bids were as low as $1.50 each, according to a bankruptcy court filing. Someone should tell Cerner Corp you can still get them for free, and thus they overpaid by oh, $12 an address! I'm waiting for someone to come back and balk at $12/address, and try to reduce the number of addresses they buy, forgetting that pesky powers- of-two business: In the interest of containing the cost of the deal, XYZ Corp has agreed to buy 27,000 addresses instead of the original 65,536. That will be a definite facepalm moment. jms So about a /18 a /19 a /21 and a /23 then ;-) Methinks it ought to be restricted to some combination of a /17, a /19, a /23, a /29, and a /31. It's all 'prime' number-space, after all. groan.
Re: IP addresses are now assets
On Fri, Dec 02, 2011 at 12:37:29PM -0700, joshua sahala wrote: On Thu, Dec 1, 2011 at 10:20 PM, John Curran jcur...@arin.net wrote:[cut] Your subject line (IP addresses are now assets) could mislead folks, [cut] ianal, but the treatment of ip addresses by the bankruptcy court would tend to agree with the definition of an asset from webster's new world law dictionary (http://law.yourdictionary.com/asset): Any property or right that is owned by a person or entity and has monetary value. See also liability. All of the property of a person or entity or its total value; entries on a balance sheet listing such property. intangible asset An asset that is not a physical thing and only evidenced by a written document. the addresses are being exchanged for money, in order to pay a debt...how is this not a sale of an asset? I guess I'm in the same minority in that I agree with you. Note that Asset !== Property. The IP addresses in question are unquestionably Assets (albeit Restricted assets or hard-to-value assets), but not so evidently Property. So, the original subject line IP addresses are now assets seems accurate; it does not say IP addresses are now property. Conflation of the two terms is in the mind of the reader, and perhaps that's what John Curran was seeking to clarify. -- Henry Yen Aegis Information Systems, Inc. Senior Systems Programmer Hicksville, New York
RE: IP addresses are now assets
John Lightfoot jlightf...@gmail.com wrote; I have a boatload of IPv6 addresses I'm willing to sell at the low, low price of $.01 each. Good for you. _I_ have somewhat over 17.8 million IPv4 addresses, in 3 large blocks, for which I will sell my 'right to use', at half your offering price.
Re: Looking for a Tier 1 ISP Mentor for career advice.
--- da...@davidradcliffe.org wrote: From: David Radcliffe da...@davidradcliffe.org Actually, the best reason I have for working from home is I work much better when naked and they have asked me to stop showing up that way at the office. Woah, woah, woah! The absolute pain of that image is breaking my mind apart! ;-) scott
Re: IP addresses are now assets
On 2 December 2011 20:01, Henry Yen he...@aegisinfosys.com wrote: On Fri, Dec 02, 2011 at 12:37:29PM -0700, joshua sahala wrote: On Thu, Dec 1, 2011 at 10:20 PM, John Curran jcur...@arin.net wrote:[cut] Your subject line (IP addresses are now assets) could mislead folks, [cut] ianal, but the treatment of ip addresses by the bankruptcy court would tend to agree with the definition of an asset from webster's new world law dictionary (http://law.yourdictionary.com/asset): Any property or right that is owned by a person or entity and has monetary value. See also liability. All of the property of a person or entity or its total value; entries on a balance sheet listing such property. intangible asset An asset that is not a physical thing and only evidenced by a written document. the addresses are being exchanged for money, in order to pay a debt...how is this not a sale of an asset? I guess I'm in the same minority in that I agree with you. Note that Asset !== Property. The IP addresses in question are unquestionably Assets (albeit Restricted assets or hard-to-value assets), but not so evidently Property. So, the original subject line IP addresses are now assets seems accurate; it does not say IP addresses are now property. Conflation of the two terms is in the mind of the reader, and perhaps that's what John Curran was seeking to clarify. What about land? it's a public resource that you've paid money to someone in exchange for transferring their rights over that public resource to you. That said, I think in the case of land shortages there is an argument that land no longer being used by someone should be freed up for use by new people. Although i'm not entirely sure how to justify a instead of selling it you have to return it so it can be allocated to whoever has a need for it policy without also justifying the same for my house, which has spare rooms that I don't need. - Mike
Re: IP addresses are now assets
Mike Jones m...@mikejones.in wrote on 12/02/2011 03:14:58 PM: What about land? it's a public resource that you've paid money to someone in exchange for transferring their rights over that public resource to you. Land is private property. Joe
Re: Looking for a Tier 1 ISP Mentor for career advice.
--- bickn...@ufp.org wrote: From: Leo Bicknell bickn...@ufp.org If you have telecommuters _everyone_ in the office should be forced to work from home at least 2 weeks a year, including the manager. It's only from that experience you learn to deal with your telecommuting co-workers in a way that raises everyone's productivity. - I have been bemoaning the lack of telecommuting positions available since I last did that permanently from 1998-2002. I could never figure out how to get the managers since then to understand how to manage remote workers effectively, as that's what I think the problem is. The manager's ability to value an employee in this century's methodology, rather than the old way: wow, he was in the office 10 hours today. He must've gotten a lot of work done. When, actually, the person played around for 6 of those hours while looking busy. Having the manager work from home, even temporarily, would solve this. Now if I can just get them to actually do that... :-) --- Once over that hump there are huge rewards to having telecommuters. You can pay lower salaries as people can live in cheaper locations. --- The company gets to pay for less space, too. Have a hot cube where everyone uses it for the day(s) they need to work in the office. I really hope manager-types are listening. You limit yourselves to those available in your immediate area and the skills they have. Opening yourselves to telecommuting allows you to hire folks with skills that may match your needs more effectively. Personally, I am working at smaller networks than I would like to, but I get to live on Kauai and surf places like this every day: www.imagemania.net/data/media/22/Polihale%20Beach,%20Kauai,%20Hawaii.jpg when I'd rather get back into BGP and operating large networks because I enjoy it. However, I will not give up life's fun things just to do that for a living. I know I'm not the only one out there who thinks this way. scott --- bickn...@ufp.org wrote: From: Leo Bicknell bickn...@ufp.org To: nanog@nanog.org Subject: Re: Looking for a Tier 1 ISP Mentor for career advice. Date: Fri, 2 Dec 2011 07:37:08 -0800 In a message written on Fri, Dec 02, 2011 at 12:25:41PM +, Thorsten Dahm wrote: The downside of this is that you are not around in the office in case someone wants to talk to you. I often end up with guys from our operations team or other teams stopping at my desk and ask questions. Or guys who want to have a quick chat about a problem and want to ask for an advice or idea. Or people who want to learn Perl and have a question that you can answer in 30 seconds. I've both delt with remote employees and been a telecommuter. After those experiences, and reading a few books I've decided the hardest thing about having successful telecommuters is dealing with the folks in the office. Telecommuters quickly turn to technology, they want to video-chat with collegues. Are eager to pick up the phone and talk. They reach out (generally). It's the folks in the office that are reluctant. They don't see the point of figuring out how the video chat software works, of setting their status to indicate what they are doing, and so on. The water cooler conversations can be moved to Skype, FaceTime, Google Hangouts, or any number of other solutions, but it requires everyone to be in that mindset. If you have telecommuters _everyone_ in the office should be forced to work from home at least 2 weeks a year, including the manager. It's only from that experience you learn to deal with your telecommuting co-workers in a way that raises everyone's productivity. Once over that hump there are huge rewards to having telecommuters. You can pay lower salaries as people can live in cheaper locations. People in multiple timezones provide better natural coverage. People are much more willing to do off hour work when they can roll out of bed at 5AM and be working at 5:05 in their PJ's, rather than getting up at 4 and getting dressed to drive in and do the work. -- Leo Bicknell - bickn...@ufp.org - CCIE 3440 PGP keys at http://www.ufp.org/~bicknell/
Re: Looking for a Tier 1 ISP Mentor for career advice.
Apologies for the rapid-shot email. It's Friday... :-) --- bmann...@vacation.karoshi.com wrote: From: bmann...@vacation.karoshi.com On Thu, Dec 01, 2011 at 04:35:27PM -0500, David Radcliffe wrote: The reason it is not more accepted is too many people still think If I cannot see you you must not be working. actually, i've heard the real reason is corporate liability ... that said, there is an advantage for team f2f mtgs on a periodic basis. -- I don't follow. Could you elaborate? What is the liability? scott
Re: Looking for a Tier 1 ISP Mentor for career advice.
Am 12/2/11 1:16 PM, schrieb Joe Greco: Thorsten Dahm: The downside of this is that you are not around in the office in case someone wants to talk to you. I often end up with guys from our operations team or other teams stopping at my desk and ask questions. Or guys who want to have a quick chat about a problem and want to ask for an advice or idea. Or people who want to learn Perl and have a question that you can answer in 30 seconds. Which really stops being practical once you exceed (approx) one building in size. I think it often depends on how you define practical. Normally, you sit with your own team, that means it is a practical solution for the network engineers, but perhaps not for the server admins and the network engineers anymore, since the server admins may sit in a different building, different city, different continent, While any absolute rule would be silly, of course, I would have thought my point was sufficiently clear. There comes a point at which all the people you may want to talk to are no longer sitting in the same building. That doesn't mean all buildings will successfully allow F2F meetings (Pentagon) or that having groups within the same building will encourage F2F meetings. It's a simple fact that once you *must* deal with someone in another building, the amount of time and effort involved gets much higher and more inconvenient. If you manage to find a way to keep your group small and all in the same building, then what I said doesn't apply, but that can itself become impractical as a company grows. ... JG -- Joe Greco - sol.net Network Services - Milwaukee, WI - http://www.sol.net We call it the 'one bite at the apple' rule. Give me one chance [and] then I won't contact you again. - Direct Marketing Ass'n position on e-mail spam(CNN) With 24 million small businesses in the US alone, that's way too many apples.
Re: IP addresses are now assets
In a message written on Fri, Dec 02, 2011 at 03:28:22PM -0500, Joe Loiacono wrote: Mike Jones m...@mikejones.in wrote on 12/02/2011 03:14:58 PM: What about land? it's a public resource that you've paid money to someone in exchange for transferring their rights over that public resource to you. Land is private property. Some land in some countries is private property. -- Leo Bicknell - bickn...@ufp.org - CCIE 3440 PGP keys at http://www.ufp.org/~bicknell/ pgpxkFNXnHzF7.pgp Description: PGP signature
Re: bgp update destroying transit on redback routers ?
On Fri, Dec 2, 2011 at 9:35 AM, Alexandre Snarskii s...@snar.spb.ru wrote: This draft says that ...note it's a DRAFT, not a STANDARD... If a BGP speaker receives a route which has an AS number of zero in the AS_PATH (or AS4_PATH) attribute, it SHOULD be logged and treated as a WITHDRAW. This same behavior applies to routes containing zero as the Aggregator or AS4 Aggregator. but observed behaviour was more like following: If a BGP speaker receives [bad route] it MUST close session immediately with NOTIFICATION Error Code 'Update Message Error' and subcode 'Error with optional attribute'. hence this old behavor
Re: IP addresses are now assets
On Fri, Dec 02, 2011 at 12:37:29PM -0700, joshua sahala wrote: Any property or right that is owned by a person or entity and has monetary value. See also liability. All of the property of a person or entity or its total value; entries on a balance sheet listing such property. intangible asset An asset that is not a physical thing and only evidenced by a written document. On 2 December 2011 20:01, Henry Yen he...@aegisinfosys.com wrote: Note that Asset !== Property. reread the definition: an asset is property. an intangible asset is merely one type of asset. On Fri, Dec 2, 2011 at 1:14 PM, Mike Jones m...@mikejones.in wrote: What about land? it's a public resource that you've paid money to someone in exchange for transferring their rights over that public resource to you. land is a tangible asset, and has largely been privatised when it comes to ownership. you can lease public lands, but when your lease ends, it is returned to the owner (the government), and any improvements (if allowed at all) are torn down or given over. sometimes you can sublet your lease, but this doesn't make it a new contract or change the original terms. That said, I think in the case of land shortages there is an argument that land no longer being used by someone should be freed up for use by new people. this starts drifting into a philosophical debate on privatisation and the use, control, and management of 'the commons' (land, water, air, etc.) and something which is largely (further) offtopic for this list. but, i digress...and the various dead horses here have all been beaten beyond recognition /joshua -- A common mistake that people make when trying to design something completely foolproof is to underestimate the ingenuity of complete fools. - Douglas Adams -
MPLS based routing
hello guys, if i want to label my routes in a cisco router i did run through ldp configuration step now i see that labels are distributed, but if i traceroute it from another router i didn't see the icmp arg for the mpls label did i miss anything? atached my configuration :) Meftah Tayeb IT Consulting http://www.tmvoip.com/ phone: +21321656139 Mobile: +213660347746 __ Information from ESET NOD32 Antivirus, version of virus signature database 6678 (20111202) __ The message was checked by ESET NOD32 Antivirus. http://www.eset.com c2800 Description: Binary data
Re: IP addresses are now assets
On Dec 2, 2011, at 2:37 PM, joshua sahala wrote: intangible asset An asset that is not a physical thing and only evidenced by a written document. the addresses are being exchanged for money, in order to pay a debt...how is this not a sale of an asset? Joshua - Rights to addresses (in the registration database) are being transferred for money. Those rights may indeed be assets (although that's likely a question better suited for lawyers) Perhaps Rights to IP addresses can be sold! would be a better title, but it's not exactly newsworthy since we've all known that for some time: http://www.circleid.com/posts/psst_interested_in_some_lightly_used_ip_addresses/ ARIN holds that IP address space is not property but is managed as a public resource. imho, if it were truly a 'public resource' and managed as such, it would be returned to the appropriate rir for reassignment, rather than being auctioned off to the highest bidder by a (commodities) broker... Agreed. However, attempting fairly to administrate a resource as it becomes increasingly scarce is quite problematic, and yet there is a real need emerging among network operators for IPv4 space as the regional free pool diminishes. The limited market mechanism provides a motivation for getting these resources back into use, while still taking the communities need for accurate record keeping and avoidance of deaggregation into consideration. administrative and processing fees are one thing, but this is pure commoditisation of a so-called 'public resource' by speculators. i am, unfortunately, in the minority on this topic It shouldn't be speculators, unless they're particularly skilled at faking the operational need for the space they're obtaining and willing to risk losing the entire investment if detected. On Fri, Dec 2, 2011 at 8:33 AM, John Curran jcur...@arin.net wrote: [cut] Sale may be subject to compliance with certain requirements of the American Registry of Internet Numbers (ARIN) and the court materials to date reflect this. MAY versus WILL -- rfc2119 contains a pretty clear definition of each, which i am pretty sure echoes legal precedent..but again, ianal, so, ymmv, etc, etc I referenced that language because it is in the public solicitation. Actual legal documents on transfers to date have been quite explicit on this point. the speculative market exists and is growing, why do certain factions of the community keep trying to pretend that it doesn't? Again, there is a limited market emerging in IPv4 address space, one in which the transfer recipient must demonstrate an operational need. Attempting to use the transfer policy to speculate would be rather adventurous (since one must agree contractually to compliance with the registry policies and to the veracity of the information on the transfer request...) That doesn't mean it won't happen, only that we hope that it will not get materially in the way of service providers who do need additional address space. FYI, /John John Curran President and CEO ARIN
BGP Update Report
BGP Update Report Interval: 24-Nov-11 -to- 01-Dec-11 (7 days) Observation Point: BGP Peering with AS131072 TOP 20 Unstable Origin AS Rank ASNUpds % Upds/PfxAS-Name 1 - AS42116 155829 8.6%2554.6 -- ERTH-NCHLN-AS CJSC ER-Telecom Holding 2 - AS17974 56880 3.1% 29.3 -- TELKOMNET-AS2-AP PT Telekomunikasi Indonesia 3 - AS982951998 2.9% 76.9 -- BSNL-NIB National Internet Backbone 4 - AS755235758 2.0% 25.7 -- VIETEL-AS-AP Vietel Corporation 5 - AS840234317 1.9% 23.4 -- CORBINA-AS OJSC Vimpelcom 6 - AS19743 31349 1.7%5224.8 -- 7 - AS32528 23173 1.3%5793.2 -- ABBOTT Abbot Labs 8 - AS580023021 1.3% 93.2 -- DNIC-ASBLK-05800-06055 - DoD Network Information Center 9 - AS20632 19705 1.1%2463.1 -- PETERSTAR-AS PeterStar 10 - AS27738 17426 1.0% 51.3 -- Ecuadortelecom S.A. 11 - AS24560 15430 0.8% 19.3 -- AIRTELBROADBAND-AS-AP Bharti Airtel Ltd., Telemedia Services 12 - AS31148 14932 0.8% 36.2 -- FREENET-AS FreeNet ISP 13 - AS19223 12750 0.7% 12750.0 -- NTEGRATED-SOLUTIONS - Ntegrated Solutions 14 - AS631611179 0.6%2235.8 -- AS-PAETEC-NET - PaeTec Communications, Inc. 15 - AS45595 10053 0.6% 60.9 -- PKTELECOM-AS-PK Pakistan Telecom Company Limited 16 - AS163228751 0.5% 71.1 -- PARSONLINE PARSONLINE Autonomous System 17 - AS3255 8074 0.5% 49.8 -- UARNET-AS Ukrainian Academic and Research Network 18 - AS48066 0.5% 6.0 -- Maria Irma Salazar 19 - AS9583 7792 0.4% 9.5 -- SIFY-AS-IN Sify Limited 20 - AS145227656 0.4% 37.3 -- Satnet TOP 20 Unstable Origin AS (Updates per announced prefix) Rank ASNUpds % Upds/PfxAS-Name 1 - AS19223 12750 0.7% 12750.0 -- NTEGRATED-SOLUTIONS - Ntegrated Solutions 2 - AS32528 23173 1.3%5793.2 -- ABBOTT Abbot Labs 3 - AS19743 31349 1.7%5224.8 -- 4 - AS42116 155829 8.6%2554.6 -- ERTH-NCHLN-AS CJSC ER-Telecom Holding 5 - AS20632 19705 1.1%2463.1 -- PETERSTAR-AS PeterStar 6 - AS631611179 0.6%2235.8 -- AS-PAETEC-NET - PaeTec Communications, Inc. 7 - AS48066 0.5% 6.0 -- Maria Irma Salazar 8 - AS393533701 0.2%1233.7 -- PRINCAST-AS Gobierno del Principado de Asturias 9 - AS403291142 0.1%1142.0 -- REH-PROPERTY - REH Property 10 - AS38528 977 0.1% 977.0 -- LANIC-AS-AP Lao National Internet Committee 11 - AS53362 961 0.1% 961.0 -- MIXIT-AS - Mixit, Inc. 12 - AS8163 848 0.1% 848.0 -- METROTEL REDES S.A. 13 - AS10099 732 0.0% 732.0 -- HKUNICOM1-AP China Unicom (Hong Kong) Operations Limited 14 - AS57282 612 0.0% 612.0 -- SOPREX-AS SOPREX D.o.o. 15 - AS55696 596 0.0% 596.0 -- SCOM-AS-ID Starcom Solusindo PT. 16 - AS48068 566 0.0% 566.0 -- VISONIC Visonic Ltd 17 - AS11943 533 0.0% 533.0 -- GLOBE - Globe Wireless 18 - AS33076 505 0.0% 505.0 -- ISC-TGD1 Internet Systems Consortium, Inc. 19 - AS24562 493 0.0% 493.0 -- UNESCAP-AS-AP The United Nations Economic and Social Commission for Asia and the Pacific (ESCAP) 20 - AS104451878 0.1% 469.5 -- HTG - Huntleigh Telcom TOP 20 Unstable Prefixes Rank Prefix Upds % Origin AS -- AS Name 1 - 84.204.132.0/24 19656 1.0% AS20632 -- PETERSTAR-AS PeterStar 2 - 67.97.156.0/2412750 0.7% AS19223 -- NTEGRATED-SOLUTIONS - Ntegrated Solutions 3 - 130.36.34.0/2411582 0.6% AS32528 -- ABBOTT Abbot Labs 4 - 130.36.35.0/2411582 0.6% AS32528 -- ABBOTT Abbot Labs 5 - 176.213.100.0/22 7269 0.4% AS42116 -- ERTH-NCHLN-AS CJSC ER-Telecom Holding 6 - 65.122.196.0/247193 0.4% AS19743 -- 7 - 190.96.120.0/216725 0.3% AS4 -- Maria Irma Salazar 8 - 66.248.104.0/216487 0.3% AS6316 -- AS-PAETEC-NET - PaeTec Communications, Inc. 9 - 95.78.100.0/22 6364 0.3% AS42116 -- ERTH-NCHLN-AS CJSC ER-Telecom Holding 10 - 95.78.104.0/22 6364 0.3% AS42116 -- ERTH-NCHLN-AS CJSC ER-Telecom Holding 11 - 95.78.108.0/22 6357 0.3% AS42116 -- ERTH-NCHLN-AS CJSC ER-Telecom Holding 12 - 95.78.88.0/22 6357 0.3% AS42116 -- ERTH-NCHLN-AS CJSC ER-Telecom Holding 13 - 95.78.84.0/22 6351 0.3% AS42116 -- ERTH-NCHLN-AS CJSC ER-Telecom Holding 14 - 46.147.92.0/22 6328 0.3% AS42116 -- ERTH-NCHLN-AS CJSC ER-Telecom Holding 15 - 46.147.120.0/226320 0.3% AS42116 -- ERTH-NCHLN-AS CJSC ER-Telecom Holding 16 - 95.78.0.0/22 6303 0.3% AS42116 -- ERTH-NCHLN-AS CJSC ER-Telecom Holding 17 - 95.78.20.0/22 6294 0.3% AS42116 -- ERTH-NCHLN-AS
The Cidr Report
This report has been generated at Fri Dec 2 21:12:17 2011 AEST.
The report analyses the BGP Routing Table of AS2.0 router
and generates a report on aggregation potential within the table.
Check http://www.cidr-report.org for a current version of this report.
Recent Table History
Date PrefixesCIDR Agg
25-11-11385336 226339
26-11-11385360 226218
27-11-11385375 226061
28-11-11385468 226133
29-11-11385372 226417
30-11-11385256 226157
01-12-11385044 226357
02-12-11385297 226059
AS Summary
39564 Number of ASes in routing system
16668 Number of ASes announcing only one prefix
3484 Largest number of prefixes announced by an AS
AS6389 : BELLSOUTH-NET-BLK - BellSouth.net Inc.
108964864 Largest address span announced by an AS (/32s)
AS4134 : CHINANET-BACKBONE No.31,Jin-rong Street
Aggregation Summary
The algorithm used in this report proposes aggregation only
when there is a precise match using the AS path, so as
to preserve traffic transit policies. Aggregation is also
proposed across non-advertised address space ('holes').
--- 02Dec11 ---
ASnumNetsNow NetsAggr NetGain % Gain Description
Table 385422 226094 15932841.3% All ASes
AS6389 3484 221 326393.7% BELLSOUTH-NET-BLK -
BellSouth.net Inc.
AS18566 2094 406 168880.6% COVAD - Covad Communications
Co.
AS4766 2514 996 151860.4% KIXS-AS-KR Korea Telecom
AS7029 2953 1527 142648.3% WINDSTREAM - Windstream
Communications Inc
AS22773 1507 113 139492.5% ASN-CXA-ALL-CCI-22773-RDC -
Cox Communications Inc.
AS4755 1508 212 129685.9% TATACOMM-AS TATA
Communications formerly VSNL
is Leading ISP
AS4323 1617 388 122976.0% TWTC - tw telecom holdings,
inc.
AS28573 1538 391 114774.6% NET Servicos de Comunicao S.A.
AS1785 1856 783 107357.8% AS-PAETEC-NET - PaeTec
Communications, Inc.
AS19262 1388 402 98671.0% VZGNI-TRANSIT - Verizon Online
LLC
AS10620 1703 726 97757.4% Telmex Colombia S.A.
AS7552 1386 415 97170.1% VIETEL-AS-AP Vietel
Corporation
AS7303 1239 359 88071.0% Telecom Argentina S.A.
AS18101 959 156 80383.7% RELIANCE-COMMUNICATIONS-IN
Reliance Communications
Ltd.DAKC MUMBAI
AS8151 1338 546 79259.2% Uninet S.A. de C.V.
AS8402 1492 709 78352.5% CORBINA-AS OJSC Vimpelcom
AS30036 1435 681 75452.5% MEDIACOM-ENTERPRISE-BUSINESS -
Mediacom Communications Corp
AS4808 1079 336 74368.9% CHINA169-BJ CNCGROUP IP
network China169 Beijing
Province Network
AS7545 1626 947 67941.8% TPG-INTERNET-AP TPG Internet
Pty Ltd
AS17974 1653 974 67941.1% TELKOMNET-AS2-AP PT
Telekomunikasi Indonesia
AS3356 1102 455 64758.7% LEVEL3 Level 3 Communications
AS17676 673 72 60189.3% GIGAINFRA Softbank BB Corp.
AS24560 985 392 59360.2% AIRTELBROADBAND-AS-AP Bharti
Airtel Ltd., Telemedia
Services
AS20115 1603 1029 57435.8% CHARTER-NET-HKY-NC - Charter
Communications
AS4804 664 95 56985.7% MPX-AS Microplex PTY LTD
AS22561 931 376 55559.6% DIGITAL-TELEPORT - Digital
Teleport Inc.
AS22047 582 33 54994.3% VTR BANDA ANCHA S.A.
AS17488 945 413 53256.3% HATHWAY-NET-AP Hathway IP Over
Cable Internet
AS3549 951 422 52955.6% GBLX Global Crossing Ltd.
AS7011 1169 647 52244.7% FRONTIER-AND-CITIZENS -
RE: bgp update destroying transit on redback routers ?
Hi Alexandre, You are right, the behavior is exactly as per RFC4271 section 6: When any of the conditions described here are detected, a NOTIFICATION message, with the indicated Error Code, Error Subcode, and Data fields, is sent, and the BGP connection is closed. So because ASN 0 in AGGREGATOR is seen as a malformed UPDATE we send 3/9 and close the connection. Ideally it should be treated as treat-as-withdraw as per draft-chen-ebgp-error-handling, however please note - this is still a draft, not a normative document and with all my support it takes time to implement. Once again, we understand the implications for our customers and hence going to disable ASN 0 check. P.S. We have strong evidence that the update in question was caused by a bug on a freshly updated router (I'm not going to disclose the vendor) Regards, Jeff -Original Message- From: Alexandre Snarskii [mailto:s...@snar.spb.ru] Sent: Friday, December 02, 2011 6:36 AM To: Jeff Tantsura Cc: nanog@nanog.org Subject: Re: bgp update destroying transit on redback routers ? On Thu, Dec 01, 2011 at 04:56:43PM -0500, Jeff Tantsura wrote: Hi, Let me take it over from now on, I'm the IP Routing/MPLS Product Manager at Ericsson responsible for all routing protocols. There's nothing wrong in checking ASN in AGGREGATOR, we don't really want see ASN 0 anywhere, that's how draft-wkumari-idr-as0 (draft-ietf-idr-as0-00) came into the worlds. This draft says that If a BGP speaker receives a route which has an AS number of zero in the AS_PATH (or AS4_PATH) attribute, it SHOULD be logged and treated as a WITHDRAW. This same behavior applies to routes containing zero as the Aggregator or AS4 Aggregator. but observed behaviour was more like following: If a BGP speaker receives [bad route] it MUST close session immediately with NOTIFICATION Error Code 'Update Message Error' and subcode 'Error with optional attribute'. -- In theory, there is no difference between theory and practice. But, in practice, there is.
Re: IP addresses are now assets
On Fri, 02 Dec 2011 12:37:29 MST, joshua sahala said: the speculative market exists and is growing, why do certain factions of the community keep trying to pretend that it doesn't? I'm sure at least some of those factions pretend it doesn't because admitting it does would be a game changer. I'm sure that *somebody* has a business model that assumes the non-existence of the speculatie market. And everybody knows that you never admit the business model is crap until *after* the IPO. ;) pgpYP1PfPBalF.pgp Description: PGP signature
Re: IP addresses are now assets
On Dec 2, 2011, at 2:56 PM, valdis.kletni...@vt.edu wrote: On Fri, 02 Dec 2011 12:37:29 MST, joshua sahala said: the speculative market exists and is growing, why do certain factions of the community keep trying to pretend that it doesn't? I'm sure at least some of those factions pretend it doesn't because admitting it does would be a game changer. I'm sure that *somebody* has a business model that assumes the non-existence of the speculatie market. And everybody knows that you never admit the business model is crap until *after* the IPO. ;) I admit it exists, but, I think it is currently relatively small and would hate to provide it any additional incentives to grow. I think it has the potential to be very harmful to the IPv4 internet in general. As long as it is relatively small, it's like a mosquito. Turning it into a B-17 would be bad. Just my $0.02. Owen
Re: Looking for a Tier 1 ISP Mentor for career advice.
Scott Weeks sur...@mauigateway.com wrote: Apologies for the rapid-shot email. It's Friday... :-) bmann...@vacation.karoshi.com wrote: On Thu, Dec 01, 2011 at 04:35:27PM -0500, David Radcliffe wrote: The reason it is not more accepted is too many people still think If I cannot see you you must not be working. actually, i've heard the real reason is corporate liability ... that said, there is an advantage for team f2f mtgs on a periodic basis. I don't follow. Could you elaborate? What is the liability? I don't know for certain, but I expect work at home' employeees fall under the scope of the employers Workmans Compenstation liability covrerage, with regard to injuries sustained on the job. Now, consider what happens if the employee sustains an 'on the job' injury, due to something in the 'workplace' (done by the homeowner on his own time) that is _NOT_ OHSA-compliant. At that point, as it is sometimes put in U.S. Dept. of Ag. bureaucratese: 'A large quantity of organic waste/byproducts forcefully impacted the high-speed rotary impeller.
ISP access in Ogden, UT
looking for 100 mbps access to a new office in Ogden, UT but don't know who the decent players are who already have fiber locally so we can avoid huge build out costs. Suggestions off list would be appreciated! - Eric :)
Re: ISP access in Ogden, UT
Xmission if they service there. Sent from my iPhone On Dec 2, 2011, at 5:10 PM, Eric Gauthier e...@roxanne.org wrote: looking for 100 mbps access to a new office in Ogden, UT but don't know who the decent players are who already have fiber locally so we can avoid huge build out costs. Suggestions off list would be appreciated! - Eric :)
Re: IP addresses are now assets
On Thu, Dec 1, 2011 at 10:04 PM, Michael R. Wayne wa...@staff.msen.com wrote: From http://www.detnews.com/article/20111201/BIZ/112010483/1361/Borders-selling-Internet-addresses-for-$786-000 Borders selling Internet addresses for $786,000 Your IP address is an asset like the office you rent to setup a business in. Happening to be the occupant gives you certain rights, but it doesn't automatically make the space some property that the occupant automatically gains ownership of. If your lease permits it, you can probably re-sell your right to occupy the space, so long as the lease says you can do that, and you follow all the terms and requirements agreed upon. So there's no issue with Borders selling addresses, so long as the proper policies are being followed for transfer of addresses. What underlies all the occupants of IP address space, are agreements with IP address registries, and the community, to provide unique usage of IP addresses. The existence of unique IP addresses exist only because of the community and the address registries' efforts; the community owns the uniqueness of IP addresses, which is a kind of intangible property, because they built this, and you own what you build. That is... uniqueness of IP address entries in an address registry you operate doesn't happen by accident. -- -JH
Re: IP addresses are now assets
- Original Message - From: John Curran jcur...@arin.net On Dec 2, 2011, at 2:48 AM, valdis.kletni...@vt.edu wrote: Would it be correct to summarize the ARIN position as It's murkier than Cerner makes it out to be, and some lawyers are gonna get stinking filthy rich litigating this one? It's pretty simple: you can write a contract to transfer IP addresses in accordance with policy, and we are now seeing most parties come to us in advance either to prequalify or make the sale conditional on approval. No, Valdis, the ARIN position is if we wanted Curran to have a sense of humor, we'd have issued him one. :-) Cheers, -- jra -- Jay R. Ashworth Baylink j...@baylink.com Designer The Things I Think RFC 2100 Ashworth Associates http://baylink.pitas.com 2000 Land Rover DII St Petersburg FL USA http://photo.imageinc.us +1 727 647 1274
Overall Netflix bandwidth usage numbers on a network?
Been lurking for a while and posed a question to a few folks without much response, figured someone here might've done something like this already. So, before I go about building wheels that already exist: I'm interested in doing a bit of a passive survey of bandwidth usage on my network (smallish isp, a few thousand DSL/FTTx customers) to understand the percentage of average/overall traffic generated by Netflix streaming. What I have available is a few gigabit transport switches providing me with mirror ports, a juniper MX series router running 10.4 code, plenty of BSD machines and libpcap-fu. What I'm looking for is either a timed-average or moments-glance number of the traffic. For instance, on an interface moving 150mbit/sec total, 50mbit/sec of it is attributed to Netflix right now. I'm pretty handy with RRDtool, so that isn't out of the question, either. I've really only spent dinnertime considering this, but have come up with two potential approaches so far, and haven't actively investigated either of them: * firewall terms and counters on the MX router + snmp * writing a quick libpcap application to filter and count in a completely out-of-band way on one of my monitoring hosts Some challenges I can see: * Nailing down the streaming source for Netflix, that is, IP ranges etc. * Making assumptions about CDN source IPs that could be used for something else, and further, should I care? Happy to hear thoughts about this, helpful or not! I know Netflix themselves have probably done plenty of studies like this, but pretty likely not limited to my customer base. Not aiming for anything creepy or crazy, just some vague understanding of what's going on, and the ability to do some trending for future planning. -- Jonathan Towne
Re: Overall Netflix bandwidth usage numbers on a network?
Surely this is what Netflow is for. no need to re-invent the wheel. Andrew On Sat, Dec 3, 2011 at 12:47 AM, Jonathan Towne jto...@slic.com wrote: Been lurking for a while and posed a question to a few folks without much response, figured someone here might've done something like this already. So, before I go about building wheels that already exist: I'm interested in doing a bit of a passive survey of bandwidth usage on my network (smallish isp, a few thousand DSL/FTTx customers) to understand the percentage of average/overall traffic generated by Netflix streaming. What I have available is a few gigabit transport switches providing me with mirror ports, a juniper MX series router running 10.4 code, plenty of BSD machines and libpcap-fu. What I'm looking for is either a timed-average or moments-glance number of the traffic. For instance, on an interface moving 150mbit/sec total, 50mbit/sec of it is attributed to Netflix right now. I'm pretty handy with RRDtool, so that isn't out of the question, either. I've really only spent dinnertime considering this, but have come up with two potential approaches so far, and haven't actively investigated either of them: * firewall terms and counters on the MX router + snmp * writing a quick libpcap application to filter and count in a completely out-of-band way on one of my monitoring hosts Some challenges I can see: * Nailing down the streaming source for Netflix, that is, IP ranges etc. * Making assumptions about CDN source IPs that could be used for something else, and further, should I care? Happy to hear thoughts about this, helpful or not! I know Netflix themselves have probably done plenty of studies like this, but pretty likely not limited to my customer base. Not aiming for anything creepy or crazy, just some vague understanding of what's going on, and the ability to do some trending for future planning. -- Jonathan Towne
Re: Overall Netflix bandwidth usage numbers on a network?
Wow.. not sure how I missed that option. Exactly why I posted before dumping a bunch of time into a bottomless bucket! Thanks.. :) -- Jonathan Towne On Sat, Dec 03, 2011 at 12:56:34AM +, Andrew Mulholland scribbled: # Surely this is what Netflow is for. # # # no need to re-invent the wheel. # # # Andrew # # # On Sat, Dec 3, 2011 at 12:47 AM, Jonathan Towne jto...@slic.com wrote: # # Been lurking for a while and posed a question to a few folks without much # response, figured someone here might've done something like this already. # # So, before I go about building wheels that already exist: # # I'm interested in doing a bit of a passive survey of bandwidth usage on # my network (smallish isp, a few thousand DSL/FTTx customers) to understand # the percentage of average/overall traffic generated by Netflix streaming. # # What I have available is a few gigabit transport switches providing me with # mirror ports, a juniper MX series router running 10.4 code, plenty of BSD # machines and libpcap-fu. # # What I'm looking for is either a timed-average or moments-glance number # of the traffic. For instance, on an interface moving 150mbit/sec total, # 50mbit/sec of it is attributed to Netflix right now. I'm pretty handy with # RRDtool, so that isn't out of the question, either. # # I've really only spent dinnertime considering this, but have come up with # two potential approaches so far, and haven't actively investigated either # of them: # # * firewall terms and counters on the MX router + snmp # * writing a quick libpcap application to filter and count in a completely # out-of-band way on one of my monitoring hosts # # Some challenges I can see: # # * Nailing down the streaming source for Netflix, that is, IP ranges etc. # * Making assumptions about CDN source IPs that could be used for something # else, and further, should I care? # # Happy to hear thoughts about this, helpful or not! I know Netflix # themselves # have probably done plenty of studies like this, but pretty likely not # limited # to my customer base. Not aiming for anything creepy or crazy, just some # vague understanding of what's going on, and the ability to do some trending # for future planning. # # -- Jonathan Towne # #
Re: Looking for a Tier 1 ISP Mentor for career advice.
On Fri, Dec 02, 2011 at 05:55:23PM -0600, Robert Bonomi wrote: Scott Weeks sur...@mauigateway.com wrote: Apologies for the rapid-shot email. It's Friday... :-) bmann...@vacation.karoshi.com wrote: On Thu, Dec 01, 2011 at 04:35:27PM -0500, David Radcliffe wrote: The reason it is not more accepted is too many people still think If I cannot see you you must not be working. actually, i've heard the real reason is corporate liability ... that said, there is an advantage for team f2f mtgs on a periodic basis. I don't follow. Could you elaborate? What is the liability? I don't know for certain, but I expect work at home' employeees fall under the scope of the employers Workmans Compenstation liability covrerage, with regard to injuries sustained on the job. There are those who say this has already happened http://www.news.com.au/business/telstra-forced-to-pay-costs-compensation-after-worker-dale-hargreaves-slips-while-working-at-home/story-e6frfm1i-1226081649913 Now, I'm sure the facts of the matter haven't gotten in the way of the story there, but I'm struggling to come up with a set of circumstances which *don't* involve an application of palm to face. - Matt -- You know you have a distributed system when the crash of a computer you’ve never heard of stops you from getting any work done. -- Leslie Lamport Security Engineering: A Guide to Building Dependable Distributed Systems
Re: IP addresses are now assets
On Dec 2, 2011, at 7:44 PM, Jay Ashworth wrote: No, Valdis, the ARIN position is if we wanted Curran to have a sense of humor, we'd have issued him one. Changes in this area may be proposed via the ARIN Consultation and Suggestion Process - https://www.arin.net/participate/acsp/index.html ;-) /John John Curran President and CEO ARIN
Re: IP addresses are now assets
On Sat, Dec 03, 2011 at 03:33:55AM +, John Curran wrote: On Dec 2, 2011, at 7:44 PM, Jay Ashworth wrote: No, Valdis, the ARIN position is if we wanted Curran to have a sense of humor, we'd have issued him one. Changes in this area may be proposed via the ARIN Consultation and Suggestion Process - https://www.arin.net/participate/acsp/index.html ;-) /John John Curran President and CEO ARIN Mischief Managed. The text of the submitted suggestion is included below. Sincerely, Communications and Member Services American Registry for Internet Numbers (ARIN) Suggestion received and needing confirmation: That ARIN or a party it designates assign one or more sense(s) of humour to the CEO. The ARIN Consultation and Suggestion Process (ACSP) is available at: http://www.arin.net/participate/acsp/index.html /bill
Re: IP addresses are now assets
Ah... *this* is the Whacky Weekend thread. -- Sent from my Android phone with K-9 Mail. Please excuse my brevity. bmann...@vacation.karoshi.com wrote: On Sat, Dec 03, 2011 at 03:33:55AM +, John Curran wrote: On Dec 2, 2011, at 7:44 PM, Jay Ashworth wrote: No, Valdis, the ARIN position is if we wanted Curran to have a sense of humor, we'd have issued him one. Changes in this area may be proposed via the ARIN Consultation and Suggestion Process - https://www.arin.net/participate/acsp/index.html; ;-) /John John Curran President and CEO ARIN Mischief Managed. The text of the submitted suggestion is included below. Sincerely, Communications and Member Services American Registry for Internet Numbers (ARIN) _ Suggestion received and needing confirmation: That ARIN or a party it designates assign one or more sense(s) of humour to the CEO. _ The ARIN Consultation and Suggestion Process (ACSP) is available at: http://www.arin.net/participate/acsp/index.html /bill
Re: RFOs, was:ATT GigE issue...
On 11/30/11 11:35 AM, Mike Jones wrote: On 30 November 2011 17:45, Joe Maimon jmai...@ttec.com wrote: The outage was caused by an engineer turning off the wrong router, it has been turned back on and service restored The outage appears to have been caused by a bug in the routers firmware, we are working with the vendor on a fix There was an outage, now service is back up again When the RFO gets filtered through the marketing department, it gets interesting, and totally useless. This is what we got as an official RFO for an outsourced hosted VoIP service (carrier shall remain nameless) that was for all practical purposes down hard for two DAYS due to a botched planned software upgrade, verbatim and in its entirety: Coincident with this upgrade, we experienced an Operating System-level failure on the underlying application server platform which had the effect of defeating the redundancy paradigm designed into our service architecture. -- Jay Hennigan - CCIE #7880 - Network Engineering - j...@impulse.net Impulse Internet Service - http://www.impulse.net/ Your local telephone and internet company - 805 884-6323 - WB6RDV
