Cisco IT class on groupon!?
http://www.groupon.com/deals/g1mm-it-university-online-san-jose-ca $99 for a Complete Cisco Network Training Bundle ($3,295 Value) The Complete Cisco Network Training Bundle includes five training courses designed to provide the skills needed for the CCNA and CCNP suite of certifications. Each bundle includes instructor-led training, hands-on exercises, multimedia presentations, and exam simulators.
Re: Whats so difficult about ISSU
http://www.juniper.net/techpubs/en_US/junos/topics/concept/issu-oveview.html The Juniper ISSU guide. You need two things: 1. Separation of the control plane and forwarding plane 2. 2 routing engines in the same chassis -- the non active RE upgrades first, then when its up and running the active one goes into upgrade mode and control fails over to the secondary RE which is running the upgraded version of the software. I assume it works on any vendor that has 2 REs in the same chassis and the fwd and control planes are separated, and there is a redundancy protocol running between the two REs(like Graceful Switchover on Juniper gear). On 11/09/2012 01:42 AM, Kenneth McRae wrote: Juniper also offers it on the EX virtual switching platform. Works if you have the correct version of JunOS. On Thu, Nov 8, 2012 at 3:38 PM, Zaid Ali z...@zaidali.com wrote: Cisco Nexus platform does it pretty well so they have achieved it. Zaid On Nov 8, 2012, at 3:22 PM, Kasper Adel wrote: Hello, We've been hearing about ISSU for so many years and i didnt hear that any vendor was able to achieve it yet. What is the technical reason behind that? If i understand correctly, the way it will be done would be simply to have extra ASICs/HW to be able to build dual circuits accessing the same memory, and gracefully switch from one to another. Is that right? Thanks, Kim
ARIN lead time
Does anyone know the lead time for ARIN to issue OrgID and subsequently an AS?
Re: Whats so difficult about ISSU
I would argue no. The Class 5 softswitches that are around now are off-the-shelf cPCI or ACTA hardware running Linux or some other *nix. The TDM - IP cards are the only sticky point there to be upgraded, but since everything is a mid-plane, you can do rolling N:1 upgrades across the cards with minimal (sub 400msec) impact. There's not a ton special secret sauce there.. To the other point, they probably process way more than 2mbps/s of control traffic during busy hour, especially in geo-redundant configurations as lots of things have to be synchronized. I think you're talking more on the order of 50-120mbps.. Yet all of this works pretty damn well. -- Tim On Mon, Nov 12, 2012 at 12:21 AM, Kasper Adel karim.a...@gmail.com wrote: Hi Frank, Is it because C5 softswitches have expensive hardware, advanced software and dual asics? I would have never imagined that any vendor is capable of upgrading fpd's/ASICs ucode without a hit unless there are multiple chips continuously syncing with each other. Regards, Kim On Monday, November 12, 2012, Frank Bulk wrote: We do it on our Class 5 softswitch ... and it works consistently. There may be a few seconds, once, where a new call can't be made, but most people will re-dial. It just works. It can be done, but the product has to be built with that in mind. Frank -Original Message- From: Kasper Adel [mailto:karim.a...@gmail.com javascript:;] Sent: Thursday, November 08, 2012 5:23 PM To: NANOG list Subject: Whats so difficult about ISSU Hello, We've been hearing about ISSU for so many years and i didnt hear that any vendor was able to achieve it yet. What is the technical reason behind that? If i understand correctly, the way it will be done would be simply to have extra ASICs/HW to be able to build dual circuits accessing the same memory, and gracefully switch from one to another. Is that right? Thanks, Kim
Re: GeoIP information page
Hello Shishio, the nanog.cluepon.net environment was in fact moved. We will check to see if the data is still available and work to link it to the GeoIP presentation on nanog.org/nanog53 All best. Betty Betty Burke NANOG Executive Director 48377 Fremont Boulevard, Suite 117 Fremont, CA 94538 Tel: +1 510 492 4030 On Sat, Nov 10, 2012 at 1:37 AM, Shishio Tsuchiya shtsu...@cisco.comwrote: Hi As NANOG53 presentation described,most of information of GeoIP was written in this page. http://nanog.cluepon.net/index.php/GeoIP http://www.nanog.org/meetings/nanog53/presentations/Wednesday/Barnes.pdf But the service is not currently available. Was it moved to another? or Has someone backup? Regards, -Shishio --
Re: GeoIP information page
Betty Thanks. I believe this information is really useful for trouble shooting of GeoIP. It is great job. I would like to copy to our local wiki for redundancy , and I will try to add Japan local GeoIP provider information to the wiki for Japan internet users and ISP. Regards, -Shishio (2012/11/13 1:44), Betty Burke be...@nanog.org wrote: Hello Shishio, the nanog.cluepon.net http://nanog.cluepon.net environment was in fact moved. We will check to see if the data is still available and work to link it to the GeoIP presentation on nanog.org/nanog53 http://nanog.org/nanog53 All best. Betty Betty Burke NANOG Executive Director 48377 Fremont Boulevard, Suite 117 Fremont, CA 94538 Tel: +1 510 492 4030 On Sat, Nov 10, 2012 at 1:37 AM, Shishio Tsuchiya shtsu...@cisco.com mailto:shtsu...@cisco.com wrote: Hi As NANOG53 presentation described,most of information of GeoIP was written in this page. http://nanog.cluepon.net/index.php/GeoIP http://www.nanog.org/meetings/nanog53/presentations/Wednesday/Barnes.pdf But the service is not currently available. Was it moved to another? or Has someone backup? Regards, -Shishio --
NASA DTN Protocol: Interplanetary Internet, How It Works, What LEGOS Have to To With It
http://anewdomain.net/2012/11/10/nasa-dtn-protocol-bp-protocol-vint-cerf-interplanetary-internet-how-it-works-what-legos-have-to-to-with-it/# NASA DTN Protocol: Interplanetary Internet, How It Works, What LEGOS Have to To With It Author: Gina Smith NASA is calling it the interplanetary Internet, and announcements have been hitting in recent weeks regarding the sending of the first emails, voicemails and, of late, news of an experiment that involved remote controlling of a LEGO space robot with it. But what’s truly cool is the technology enabling it — it’s a protocol called Delay-Tolerant Networking, better known as DTN. At its heart is Vint Cerf’s Bundle Protocol (BP), a version of the IP protocol he helped develop to pioneer the Internet decades ago. In testing for several years, DTN got a major boost recently, says Badri Younes, a NASA administrator in Washington. Astronaut Sunita Williams — she commanded the International Space Station’s current Expedition 33 mission — used NASA’s experimental Disruption Tolerant Networking (DTN) protocol to drive a small LEGO robot at the European Space Operations Center in Germany late last month. That was big news for the DTN and BP protocols, developed jointly by Internet pioneer +Vint Cerf and NASA’s Jet Propulsion Laboratory. In a nutshell — we’ll get down and dirty with the tech lower in the piece — DTN allows a standard method of communication over long distances and through time delays, agency officials said. Its centering tech is similar to the IP protocol (that is the TCP/IP protocol) that is the building block of the Internet we use on Earth. That’s called the Bundle Protocol (BP). The big difference between BP and IP is that, while IP assumes a more or less smooth pathway for packets going from start to end point, BP allows for disconnections, glitches and other problems you see commonly in deep space, Younes said. Basically, a BP network — the one that will the Interplanetary Internet possible — moves data packets in bursts from node to node, so that it can check when the next node is available or up. “The demonstration (of the DTN controlled robot) showed the feasibility of using a new communications infrastructure to send commands to a surface robot from an orbiting spacecraft and receive images and data back from the robot,” Younes said. “The experimental DTN we’ve tested from the space station may one day be used by humans on a spacecraft in orbit around Mars to operate robots on the surface, or from Earth using orbiting satellites as relay stations,” Younes added. Credit: European Space Agency The first thing to understand is that the DTN testbed with BP driving it is in active testing now, NASA says. Its first successful test was in 2008, when NASA announced that early DTN software for the first time enabled the transmission of more than a dozen of space images to and from a NASA science spacecraft located about 20 million miles (32M KM) from Earth. In a statement then, NASA’s Jet Propulsion Laboratory and Google’s +Vint Cerf said it kicked off the Interplanetary Internet. But what is DTN? “The experimental DTN we’ve tested from the space station may one day be used by humans on a spacecraft in orbit around Mars to operate robots on the surface, or from Earth using orbiting satellites as relay stations,” Younes added. Source: NASA In a nutshell, says NASA, “The Disruption Tolerant Networking (DTN) program establishes a long-term, readily accessible communications test-bed onboard the International Space Station (ISS). Two Commercial Generic Bioprocessing Apparatus (CGBA), CGBA-5 and CGBA-4, will serve as communications test computers that transmit messages between ISS and ground Mission Control Centers. All data will be monitored and controlled at the BioServe remote Payload Operations Control Center (POCC) located on the Engineering Center premises at the University of Colorado – Boulder,” reps said today. According to NASA’s Delay-Tolerant Networking Research Group (DTNRG), ”the DTN protocol is under active development.” An experiment using DTN to control the LEGO robot is in the news today, but NASA says there are real world, military and consumer applications that affect Internet users worldwide. “In addition to network security, research goals for the DTN activity will focus on testing and evolving important network services including naming and addressing, time synchronization, routing, network management and class of service,” NASA reps add, saying that “the DTN experiments on the International Space Station (ISS) consist of software which is to be placed on both Commercial Generic Bioprocessing Apparatus (CGBA), CGBA-4 and CGBA-5, and then tested from a ground operations center. What’s going on? Researchers explain “the DTN activity will focus on testing and evolving important network services including naming and addressing, time synchronization, routing, network management and class of service. The DTN experiments on
Re: ARIN lead time
On Sat, Nov 10, 2012 at 07:54:15PM +, Warren Bailey wrote: Does anyone know the lead time for ARIN to issue OrgID and subsequently an AS? Generally a day or so after getting them the proper information.
RE: Whats so difficult about ISSU
Compared to our CMTS, our class 5 softswitch cost us less money. Yet our CMTS vendor stopped talking about hitless software upgrades 2 years ago because the upgrade path (from, to, and which software releases you can use) is so limited it's hardly practical. Frank From: Kasper Adel [mailto:karim.a...@gmail.com] Sent: Monday, November 12, 2012 12:22 AM To: Frank Bulk Cc: NANOG list Subject: Re: Whats so difficult about ISSU Hi Frank, Is it because C5 softswitches have expensive hardware, advanced software and dual asics? I would have never imagined that any vendor is capable of upgrading fpd's/ASICs ucode without a hit unless there are multiple chips continuously syncing with each other. Regards, Kim On Monday, November 12, 2012, Frank Bulk wrote: We do it on our Class 5 softswitch ... and it works consistently. There may be a few seconds, once, where a new call can't be made, but most people will re-dial. It just works. It can be done, but the product has to be built with that in mind. Frank -Original Message- From: Kasper Adel [mailto:karim.a...@gmail.com javascript:; ] Sent: Thursday, November 08, 2012 5:23 PM To: NANOG list Subject: Whats so difficult about ISSU Hello, We've been hearing about ISSU for so many years and i didnt hear that any vendor was able to achieve it yet. What is the technical reason behind that? If i understand correctly, the way it will be done would be simply to have extra ASICs/HW to be able to build dual circuits accessing the same memory, and gracefully switch from one to another. Is that right? Thanks, Kim
RE: Whats so difficult about ISSU
Our softswitch vendor talks about control plane bandwidths for geo-redundant configurations on the low end of your numbers. I'd have to drag out the slide deck to see exactly what they recommended. My point is that carrier-class products have demonstrated it's possible. Frank From: Tim Jackson [mailto:jackson@gmail.com] Sent: Monday, November 12, 2012 9:36 AM To: Kasper Adel Cc: Frank Bulk; NANOG list Subject: Re: Whats so difficult about ISSU I would argue no. The Class 5 softswitches that are around now are off-the-shelf cPCI or ACTA hardware running Linux or some other *nix. The TDM - IP cards are the only sticky point there to be upgraded, but since everything is a mid-plane, you can do rolling N:1 upgrades across the cards with minimal (sub 400msec) impact. There's not a ton special secret sauce there.. To the other point, they probably process way more than 2mbps/s of control traffic during busy hour, especially in geo-redundant configurations as lots of things have to be synchronized. I think you're talking more on the order of 50-120mbps.. Yet all of this works pretty damn well. -- Tim On Mon, Nov 12, 2012 at 12:21 AM, Kasper Adel karim.a...@gmail.com wrote: Hi Frank, Is it because C5 softswitches have expensive hardware, advanced software and dual asics? I would have never imagined that any vendor is capable of upgrading fpd's/ASICs ucode without a hit unless there are multiple chips continuously syncing with each other. Regards, Kim On Monday, November 12, 2012, Frank Bulk wrote: We do it on our Class 5 softswitch ... and it works consistently. There may be a few seconds, once, where a new call can't be made, but most people will re-dial. It just works. It can be done, but the product has to be built with that in mind. Frank -Original Message- From: Kasper Adel [mailto:karim.a...@gmail.com javascript:;] Sent: Thursday, November 08, 2012 5:23 PM To: NANOG list Subject: Whats so difficult about ISSU Hello, We've been hearing about ISSU for so many years and i didnt hear that any vendor was able to achieve it yet. What is the technical reason behind that? If i understand correctly, the way it will be done would be simply to have extra ASICs/HW to be able to build dual circuits accessing the same memory, and gracefully switch from one to another. Is that right? Thanks, Kim
RE: Verizon wireless (cdma/LTE) compatible ethernet connectable OOB access device.
We have one site using this type of OpeGear setup, but we use an LTE MiFi with wireless to the OpenGear's WAN, but also use a USB port on the open gear to keep the MiFi powered. -Original Message- From: Asaf Rapoport [mailto:arapop...@telepacific.com] Sent: Wednesday, November 07, 2012 6:10 PM To: David Hubbard; nanog@nanog.org Subject: Re: Verizon wireless (cdma/LTE) compatible ethernet connectable OOB access device. OpenGear does make good, low footprint, low power consumption console servers. I think they have an IPSec stack too. Note: They make another type with just a modem (I don't know why they don't make one with both 3G and dialup?), in case the cell coverage is so spotty that you won't get what you really need. Just my 2 cents. On 11/7/12 3:02 PM, David Hubbard dhubb...@dino.hostasaurus.com wrote: OpenGear's stuff is awesome. http://opengear.com/product-acm5000-g.html We have the 5004G on Verizon, it has four serial ports, ethernet and USB running linux. We have a 5 gig plan from Verizon and static IP for $50/month minus our corporate discount. Since it's put on a 'machine' plan with them, you can get plans all the way down to I think $5/month with a few megabytes of included data; they treat it the same way you'd treat a cell backup for an alarm and similar devices. You can have the OpenGear unit keep the data portion of the cellular side always live, or for added security and lower risk of data consumption by drive by scans, you can have it turn the data off and on by sending it text messages to the associated phone number. You can ssh directly to serial ports by using different port numbers than standard, ssh in and then utilize the ports, there's a web-based serial interface too so they're really great for routers. On the ethernet/web side you can do things like vpn gateway, proxying, port mapping, etc like you'd find in a typical consumer type soho router, or you can lock it all down for whatever you don't need. My only complaint is no LTE version last I checked, which is fine for serial ports but an LTE would make it a lot nicer since then you could do more interactive things like remote desktop, heavy web traffic and other things that you might also want in a bind. David -Original Message- From: Eric J Esslinger [mailto:eesslin...@fpu-tn.com] Sent: Wednesday, November 07, 2012 5:47 PM To: 'nanog@nanog.org' Subject: Verizon wireless (cdma/LTE) compatible ethernet connectable OOB access device. We have Verizon Wireless as our provider of choice for our company, and I've convinced those who are they that I need a completely OOB method for getting back in the NOC, as we don't have a full time NOC staff and internet coverage can be spotty around here in general, as we're a small town. The people who need the OOB management access are getting 4G Myfi devices with static IP addresses. What I need at our NOC is a 3 or 4G (our area only has 3G atm) Verizon compatible device with an wired ethernet link. I'm looking at several but wondered if anyone has any familiarity with such units. I just need a basic wwan-ethernet modem/bridge, I will be handling vpn termination, firewalling, access control, and such with my existing firewall. Off-list is fine. __ Eric Esslinger Information Services Manager - Fayetteville Public Utilities http://www.fpu-tn.com/ (931)433-1522 ext 165 This message may contain confidential and/or proprietary information and is intended for the person/entity to whom it was originally addressed. Any use by others is strictly prohibited.
Re: Verizon wireless (cdma/LTE) compatible ethernet connectable OOB access device.
I've used digi.com before, does the job. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
authority to route?
Hi, Is there a common practice of providers to vet / validate requests to advertise blocks? Who is the authority when it comes to determining if a request for routing is valid? Is it the WHOIS data maintained by the various RIR? It seems I'm playing whack-a-mole to get some routes shut down for some blocks I've taken over admin for. If I email the contacts for the AS in WHOIS, and get no response, or a negative response, should I start going to their peers? Some practical advice would be appreciated. -- Jim Mercer Reptilian Research j...@reptiles.org+1 416 410-5633 He who dies with the most toys is nonetheless dead
Re: authority to route?
On 11/12/12, Jim Mercer j...@reptiles.org wrote: Hi, Is there a common practice of providers to vet / validate requests to advertise blocks? There is a common practice of providers to require an initial Letter of authorization from the org listed in WHOIS when first setting up, and manual request to allow the prefix or entry of the route in an internet routing registry, for end users to originate prefixes. Who is the authority when it comes to determining if a request for routing is valid? Defined by routing policy of the provider considering the request, and their upstreams. Is it the WHOIS data maintained by the various RIR? WHOIS data is often used for that purpose; the basic information about the organization listed as registrant of the block is considered authoritative, in general. It seems I'm playing whack-a-mole to get some routes shut down for some blocks I've taken over admin for. It would probably help to submit to them in writing, that the org responsible for the block never authorized the space to be announced by the provider originating it, inform that their unauthorized announcement is causing network issues and costing money, and request that they suppress it. If that's not the case, e.g. if at any time there was bonafide authorization, then the dispute is something to be discussed with the downstream org. still routing the block. If their peers question them about it, they might have the prior LOA on file to show the peers; it is not as if such things expire, or can necessarily be easily withdrawn, it depends on the agreement that allowed the advertisement to be authorized, in that case. Listing of an e-mail address in WHOIS as an admin contact, does not necessarily imply authority that a provider is entitled to rely upon, to tell a peer to shutdown the network. If I email the contacts for the AS in WHOIS, and get no response, or a negative response, should I start going to their peers? It's an option. Their peers may summarily ignore the request to disrupt the network by shutting down a customer's announcements, though, on the word of an email, if it's not very obvious that they are bad announcements. You may need to email and call, and possibly fax and mail. Some practical advice would be appreciated. -- Jim Mercer Reptilian Research j...@reptiles.org+1 416 410-5633 -- -JH