Re: Heads-Up: GoDaddy Broke the Interwebs...
we do not know what happened. we have an apology, not an explanation or reasonable post mortem. all else is conjecturbation. Agreed. And as Chris and Kyle pointed out, there is no indication that the problems were present in the BGP DFT, and the issues could've occured over iBGP. I completely concur with this, and do not preclude it as an explanation. But I would just like to put this out there. In the past, GoDaddy has clashed with the Internet due to their initial stance on SOPA, which resulted in a noticeable loss of customers and generated a significant amount of bad press. Now, there's a lot of conjecture as to what caused their outage. But the most harm to GoDaddy would be reporting that they had a security breach or DoS/DDoS attack which would instill fear in their customer base. The major media outlets had already picked this up and started to report foul play by Anonymous, denial of service attacks, or whatever. To save face, it would make the most sense not to mention that a security breach or DoS/DDoS attack occured. Indicating a security breach would be immediate concern for any customer. If it was a DoS/DDoS attack, they're basically admitting that they don't have an infrastructure capable of withstanding or mitigating such attacks (which competitors such as Cloudfare do claim). So the best option would be to spread disinformation if either occured, and offer /generous/ service credit to earn back customer goodwill and confidence. This is simply why I remain skeptical. And as I said earlier, it would be nice to receive more information of what actually happened, if GoDaddy, or anyone in the know with GoDaddy, would oblige. - Naveen
[no subject]
Delete me
AW:
You can delete your subscription yourself Near the end: To unsubscribe from NANOG, get a password reminder, or change your subscription options enter your subscription email address: http://mailman.nanog.org/mailman/listinfo/nanog -Ursprüngliche Nachricht- Von: flower tailor [mailto:samba...@hotmail.com] Gesendet: Mittwoch, 12. September 2012 09:15 An: nanog@nanog.org Betreff: Delete me smime.p7s Description: S/MIME cryptographic signature
Re:
Isn't that by Engelbert Humperdinck? On Wed, Sep 12, 2012 at 3:14 AM, flower tailor samba...@hotmail.com wrote: Delete me -- --- Joly MacFie 218 565 9365 Skype:punkcast WWWhatsup NYC - http://wwwhatsup.com http://pinstand.com - http://punkcast.com VP (Admin) - ISOC-NY - http://isoc-ny.org -- -
Google / Gmail SSL write errors
Hi All, Are any of you (that use Exim as their MTA) having SSL write errors in your exim logs when delivering e-mail to Gmail or Google addresses? it seems limited to Exim as we've got a lot of other MTAs that have no issues. it also appears to be specific to emails with attachments... Anyone aware of changes G have made regarding TLS delivery? Ta, Paul Paul Kelly Technical Director Microsoft Certified Partner Blacknight Internet Solutions ltd Cloud Hosting, Colocation, Dedicated servers IP Transit Services Tel: +353(0)599183072 Lo-call: 1850 929 929 DDI: +353 (0) 59 9183091 e-mail: p...@blacknight.com web: http://www.blacknight.com Blacknight Internet Solutions Ltd, Unit 12A,Barrowside Business Park, Sleaty Road, Graiguecullen, Carlow, Ireland Company No.: 370845
RE: Google / Gmail SSL write errors
Re: Google / Gmail SSL write errors
Paul Kelly :: Blacknight p...@blacknight.com wrote: Are any of you (that use Exim as their MTA) having SSL write errors in your exim logs when delivering e-mail to Gmail or Google addresses? I suggest asking this question on the exim-users mailing list. Phil Pennock has done a fair amount of work on TLS recently. Tony. -- f.anthony.n.finch d...@dotat.at http://dotat.at/ Forties, Cromarty: East, veering southeast, 4 or 5, occasionally 6 at first. Rough, becoming slight or moderate. Showers, rain at first. Moderate or good, occasionally poor at first.
Re:
I have days like that too! On Wed, Sep 12, 2012 at 4:15 AM, Joly MacFie j...@punkcast.com wrote: Isn't that by Engelbert Humperdinck? On Wed, Sep 12, 2012 at 3:14 AM, flower tailor samba...@hotmail.com wrote: Delete me -- --- Joly MacFie 218 565 9365 Skype:punkcast WWWhatsup NYC - http://wwwhatsup.com http://pinstand.com - http://punkcast.com VP (Admin) - ISOC-NY - http://isoc-ny.org -- -
Re: Google / Gmail SSL write errors
Paul Kelly :: Blacknight p...@blacknight.com writes: Are any of you (that use Exim as their MTA) having SSL write errors in your exim logs when delivering e-mail to Gmail or Google addresses? Don't see anything from here. More details when you post to exim-users couldn't hurt. root@valhalla [8] # grep 1TBmIa-0004lH-UH mainlog 2012-09-12 08:44:08 1TBmIa-0004lH-UH = r...@seastrom.com U=rs P=local S=549 id=86vcfjl8br@seastrom.com 2012-09-12 08:44:10 1TBmIa-0004lH-UH = ...@gmail.com R=dnslookup T=remote_smtp H=gmail-smtp-in.l.google.com [2607:f8b0:400d:c01::1a] X=TLSv1:RC4-SHA:128 2012-09-12 08:44:10 1TBmIa-0004lH-UH Completed root@valhalla [9] # -r
Re: above.net issues
I've been seeing it all day from inside AS19108...in direct connection to a (huge frustration and) disruption of service from my end to AWS/EC2. On Tue, Sep 11, 2012 at 1:20 PM, Joe Williams williams@gmail.com wrote: Oops, this was intended for the outages list but I suppose this list works too. -- Name: Joseph A. Williams Email: williams@gmail.com On Tuesday, September 11, 2012 at 11:18 AM, Joe Williams wrote: Anyone experiencing packet loss on abovenet (to/from Ashburn)? We first got a round of packet loss around 8:45 PDT and then again just a few minutes ago. Thanks. -Joe -- Name: Joseph A. Williams Email: williams@gmail.com (mailto:williams@gmail.com)
[NANOG-announce] REMINDER: Upcoming NANOG mail list maintenance notification - 13-Sept-2012
Reminder of the upcoming Mail List service scheduled for Thursday, September 13, 2012 beginning at 6 am Eastern, expected to last no more than 30 minutes. Regards, Randy Epstein NANOG CC Chair On behalf of the NANOG Communications Committee ___ NANOG-announce mailing list nanog-annou...@nanog.org https://mailman.nanog.org/mailman/listinfo/nanog-announce
RE: Heads-Up: GoDaddy Broke the Interwebs...
I just wanted to make one quick point. Cloudflare is not a competitor of GoDaddy in any sense except that they are involved in DNS and they both have a web site. CloudFlare has also been known to give up and dump small to medium sized PPS attacks onto the end target without notification and there doesn't seem to be any threshold or policy in place for when they do that. Thanks, -Drew -Original Message- From: Naveen Nathan [mailto:nav...@lastninja.net] Sent: Wednesday, September 12, 2012 2:44 AM To: nanog@nanog.org Subject: Re: Heads-Up: GoDaddy Broke the Interwebs... we do not know what happened. we have an apology, not an explanation or reasonable post mortem. all else is conjecturbation. Agreed. And as Chris and Kyle pointed out, there is no indication that the problems were present in the BGP DFT, and the issues could've occured over iBGP. I completely concur with this, and do not preclude it as an explanation. But I would just like to put this out there. In the past, GoDaddy has clashed with the Internet due to their initial stance on SOPA, which resulted in a noticeable loss of customers and generated a significant amount of bad press. Now, there's a lot of conjecture as to what caused their outage. But the most harm to GoDaddy would be reporting that they had a security breach or DoS/DDoS attack which would instill fear in their customer base. The major media outlets had already picked this up and started to report foul play by Anonymous, denial of service attacks, or whatever. To save face, it would make the most sense not to mention that a security breach or DoS/DDoS attack occured. Indicating a security breach would be immediate concern for any customer. If it was a DoS/DDoS attack, they're basically admitting that they don't have an infrastructure capable of withstanding or mitigating such attacks (which competitors such as Cloudfare do claim). So the best option would be to spread disinformation if either occured, and offer /generous/ service credit to earn back customer goodwill and confidence. This is simply why I remain skeptical. And as I said earlier, it would be nice to receive more information of what actually happened, if GoDaddy, or anyone in the know with GoDaddy, would oblige. - Naveen
Layer2 over Layer3
To all, I am trying to extend a layer2 connection over Layer 3 so I can have redundant Layer connectivity between my HQ and colo site. The reason I need this is so I can give the appeareance that there is one gateway and that both data centers can share the same Layer3 subnet (which I am announcing via BGP to 2 different vendors). I have 2 ASR's. Will EoMPLS work or is there another option? Philip
Re: Layer2 over Layer3
l2tpv3 Regards, Jeff On Sep 12, 2012, at 19:23, Philip Lavine source_ro...@yahoo.com wrote: To all, I am trying to extend a layer2 connection over Layer 3 so I can have redundant Layer connectivity between my HQ and colo site. The reason I need this is so I can give the appeareance that there is one gateway and that both data centers can share the same Layer3 subnet (which I am announcing via BGP to 2 different vendors). I have 2 ASR's. Will EoMPLS work or is there another option? Philip
Re: Layer2 over Layer3
hello philip, for ethernet over mpls you can use gre tunnel and run mpls over that tunnel or you can go directly for l2tpv3 which give you the ability to run l2vpn over l3 ip routing with no need for mpls. BR, Mohamed Abosree On 9/13/12, Philip Lavine source_ro...@yahoo.com wrote: To all, I am trying to extend a layer2 connection over Layer 3 so I can have redundant Layer connectivity between my HQ and colo site. The reason I need this is so I can give the appeareance that there is one gateway and that both data centers can share the same Layer3 subnet (which I am announcing via BGP to 2 different vendors). I have 2 ASR's. Will EoMPLS work or is there another option? Philip -- Live As If You Were To Die Tomorrow. Learn As If You Were To Live Forever.
RE: Layer2 over Layer3
ASR supports OTV if you can do multicast over L3. Although, you may not need L2 extensions in the end. -Original Message- From: Philip Lavine [mailto:source_ro...@yahoo.com] Sent: Wednesday, September 12, 2012 6:23 PM To: NANOG list Subject: Layer2 over Layer3 To all, I am trying to extend a layer2 connection over Layer 3 so I can have redundant Layer connectivity between my HQ and colo site. The reason I need this is so I can give the appeareance that there is one gateway and that both data centers can share the same Layer3 subnet (which I am announcing via BGP to 2 different vendors). I have 2 ASR's. Will EoMPLS work or is there another option? Philip
APIs for domain registration and management
Hi Folks, I expect folks on NANOG would know: Are there any domain registrars who provide APIs for managing domains and/or DNS records? It's kind of a pain managing large numbers of domains via klunky web interfaces. It sure would be nice to tie registry accounts into equipment inventory management systems. Thanks, Miles Fidelman -- In theory, there is no difference between theory and practice. In practice, there is. Yogi Berra
Re: APIs for domain registration and management
On 2012-09-13 02:18 , Miles Fidelman wrote: Hi Folks, I expect folks on NANOG would know: Are there any domain registrars who provide APIs for managing domains and/or DNS records? It's kind of a pain managing large numbers of domains via klunky web interfaces. It sure would be nice to tie registry accounts into equipment inventory management systems. Check for a google(DNS EPP) for a lot of info on a standardized protocols, though typically a registrar will provide a custom interface. Many of the more established providers do this and it is more or less a requirement for DNSSEC to work. google(DNSSEC glue) and you get a list of providers who do DNSSEC and who likely also have an automated interface for this. As a note GPG + Joker seem to be the popular ones for this. Greets, Jeroen
Re: APIs for domain registration and management
On Wed, Sep 12, 2012 at 8:18 PM, Miles Fidelman mfidel...@meetinghouse.net wrote: Hi Folks, I expect folks on NANOG would know: Are there any domain registrars who provide APIs for managing domains and/or DNS records? It's kind of a pain managing large numbers of domains via klunky web interfaces. It sure would be nice to tie registry accounts into equipment inventory management systems. Thanks, Miles Fidelman -- In theory, there is no difference between theory and practice. In practice, there is. Yogi Berra Hexonet (http://hexonet.net) has quite an extensive API as far as I can tell from their API manuals page available via the control panel. I have personally not used it but have great praises about it from other people. -- Sadiq S O ascii ribbon campaign - stop html mail - www.asciiribbon.org
Re: APIs for domain registration and management
On 9/12/2012 5:18 PM, Miles Fidelman wrote: Hi Folks, I expect folks on NANOG would know: Are there any domain registrars who provide APIs for managing domains and/or DNS records? It's kind of a pain managing large numbers of domains via klunky web interfaces. It sure would be nice to tie registry accounts into equipment inventory management systems. Thanks, Miles Fidelman OpenSRS and Enom both have APIs. --John
Re: APIs for domain registration and management - followup
John T. Yocum wrote: I expect folks on NANOG would know: Are there any domain registrars who provide APIs for managing domains and/or DNS records? It's kind of a pain managing large numbers of domains via klunky web interfaces. It sure would be nice to tie registry accounts into equipment inventory management systems. OpenSRS and Enom both have APIs. It looks like NetSol does as well, but can't seem to find anything for GoDaddy (a shame, we have a lot of domains with them). Anybody know of a CMDB that integrates with OpenSRS or equivalent? Thanks again, Miles -- In theory, there is no difference between theory and practice. In practice, there is. Yogi Berra