AS7843 at NANOG78
Hi, Would an operator from AS7843 at NANOG78 reach out to me off-list? Thanks, Aaron
Re: 100g PCS Errors
we have been making 100G packet capture systems for 5 years now ( fmad.io ). In the early days vendor qualified transceivers really do make a difference, its 25Gbps signaling per differential pair which is anything but easy. Back then (4-5Y ago) the cheap QSFP28 vendors had some really marginal parts... we had to tune the fpga alot to get the QSFP28s to to work correctly, and even then some just wouldnt work at all / have alot of errors. If your using latests Finisar or Avago level transceivers should be fine, currently (last 12 months) the cheap transceivers dont need any tuning too. Guess depends if your using old HW / old transceivers or new HW with new transceivers. Aaron On Wed, 19 Aug 2020 at 23:21, Tom Beecher wrote: > It's not normal, no. > > On Wed, Aug 19, 2020 at 10:02 AM Nicholas Warren < > nwar...@barryelectric.com> wrote: > >> We've got a 100g qsfp in an mx204 that has 1207 bit errors and 29666 >> errored blocks after 24 hours of just being linked up... >> I would assume this is not normal behavior, but I haven't used 100g >> before. Do others see high error rates on their 100g optics? >> >
Re: Service Provider NetFlow Collectors
Throwing my hat in the ring also (vendor from fmadio) https://github.com/fmadio/pcap2json Not exactly a newflow collector, its pcap -> flowgen -> elk on a single box, working very well so far, still work in progress. Problem with logstash is its too slow for high flow rates. So we did everything inside the flow generator for direct ELK bulk uploads removing logstash completely. Cheers Aaron On Mon, 31 Dec 2018 at 18:40, Michel 'ic' Luczak wrote: > Don’t underestimate good old ELK > https://www.elastic.co/guide/en/logstash/current/netflow-module.html > + https://github.com/robcowart/elastiflow > > BR, ic > > On 31 Dec 2018, at 04:29, Erik Sundberg wrote: > > Hi Nanog…. > > We are looking at replacing our Netflow collector. I am wonder what other > service providers are using to collect netflow data off their Core and Edge > Routers. Pros/Cons… What to watch out for any info would help. > > We are mainly looking to analyze the netflow data. Bonus if it does ddos > detection and mitigation. > > We are looking at > ManageEngine Netflow Analyzer > PRTG > Plixer – Scrutinizer > PeakFlow > Kentik > Solarwinds NTA > > > Thanks in advance… > > Erik > > > -- > > CONFIDENTIALITY NOTICE: This e-mail transmission, and any documents, files > or previous e-mail messages attached to it may contain confidential > information that is legally privileged. If you are not the intended > recipient, or a person responsible for delivering it to the intended > recipient, you are hereby notified that any disclosure, copying, > distribution or use of any of the information contained in or attached to > this transmission is STRICTLY PROHIBITED. If you have received this > transmission in error please notify the sender immediately by replying to > this e-mail. You must destroy the original transmission and its attachments > without reading or saving in any manner. Thank you. > > >
Re: Last Mile Design
We run direct fiber connections to each house and business and terminate them on the same switches. Our switches are housed in small "huts" that are dispersed throughout the city and each handle a specific area then the huts are all connected in a ring. It really comes down to what your geography looks like. Aaron On 2/7/2019 5:46 PM, David Ratkay wrote: I am not sure if this is a easy question to answer. But I am wondering what ISP's do for their residential and business customers for designing POP's that they usually access to get theur traffic into a given ISP and beyond. Is it usually a L1/L2 connection from the CE to the last mile POP? Or L2 even within the last mile POP. Do you just have POP's delegated to residential users and a separate POP for business users. Or is it done on a geographical basis. So for this region of City-A we manage both residential and business customers at this same POP. -- ==== Aaron Wendel Chief Technical Officer Wholesale Internet, Inc. (AS 32097) (816)550-9030 http://www.wholesaleinternet.com
Re: Last Mile Design
I've always felt PON is a tool for people who don't know how to design a proper network. Aaron On 2/8/2019 1:38 PM, Miles Fidelman wrote: Good for you. None of this PON splitter nonsense. Miles Fidelman On 2/8/19 2:17 PM, Aaron wrote: We run direct fiber connections to each house and business and terminate them on the same switches. Our switches are housed in small "huts" that are dispersed throughout the city and each handle a specific area then the huts are all connected in a ring. It really comes down to what your geography looks like. Aaron On 2/7/2019 5:46 PM, David Ratkay wrote: I am not sure if this is a easy question to answer. But I am wondering what ISP's do for their residential and business customers for designing POP's that they usually access to get theur traffic into a given ISP and beyond. Is it usually a L1/L2 connection from the CE to the last mile POP? Or L2 even within the last mile POP. Do you just have POP's delegated to residential users and a separate POP for business users. Or is it done on a geographical basis. So for this region of City-A we manage both residential and business customers at this same POP. -- ==== Aaron Wendel Chief Technical Officer Wholesale Internet, Inc. (AS 32097) (816)550-9030 http://www.wholesaleinternet.com
Re: Last Mile Design
My statement was meant to be tongue in cheek. We deliver 1G to the home free of charge and make our money on the 10,40 and 100G connections. We haven't been able to deliver those capacities over PON so we've never really taken it seriously. As with everything else, you're use case and economics may vary. Aaron On 2/8/2019 2:31 PM, Tony Wicks wrote: It also significantly reduces the requirement to distribute active equipment into the field while massively reducing the feeder fibre requirement. Point to point has its place to be sure, but mass market FTTH is not viable without PON's economics. On 02/08/2019 12:48 PM, Aaron wrote: I've always felt PON is a tool for people who don't know how to design a proper network. Why is that? I always thought PON was a technology that reduced the number of active ports, thus altering the port cost per subscriber significantly by not actually needing dedicated ports. -- ==== Aaron Wendel Chief Technical Officer Wholesale Internet, Inc. (AS 32097) (816)550-9030 http://www.wholesaleinternet.com
Re: Mx204 alternative
I would recommend the SLX9640. 12x 100G and 24x 1G/10G ports. 4 million routes in hardware without compression. We've gotten 5.7M in there with compression. Price point is super good. Push them and they will get very aggressive on price. VERY aggressive. Aaron On 8/7/2019 10:33 PM, Brandon Martin wrote: On 8/7/19 11:02 PM, Mehmet Akcin wrote: I am looking for some suggestions on alternatives to mx204. Any recommendations on something more affordable which can handle full routing tables from two providers? Prefer Juniper but happy to look alternatives. Min 6-8 10G ports are required 1G support required Extreme (ex Brocade) SLX9540 will do full tables from a couple providers in a local edge scenario with their "OptiScale" FIB optimization/route caching, but the whole FIB won't fit in hardware. Bandwidth is very generous (up to 48x10G + 6x100G), and prices are reasonable. You wouldn't need any of the stupid port licenses, just the advanced feature license, so it should be about 25-40% more than an MX204 based on public pricing I've seen. That would get you 24x10G + 24x1G (the rest of the hardware is all there just locked out). The SLX9650 will supposedly (if marketing and my SEs are to believed) do 4M IPv4 in hardware FIB, less if you want IPv6, too but still full tables of both with ample room for L2 MACs, next-hops, and MPLS. Bandwidth is, well, "Extreme" at I think 24x25G + 12x100G (25G breakout capable, all 25G also capable of 1G/10G). Pricing is supposedly "about double" a 9540. Be advised that the control plane SOFTWARE is NOT as mature as JunOS. It's being built up rapidly, but there's still a lot of stuff missing. I have not, so far, run into any of the weird glitches that I've seen on older Foundry/Brocade products, though, so that's good. There's also no oddball restrictions about port provisioning like the MX204 has. Control plane HARDWARE is well more than capable with something like 16GB (or maybe 32?) of RAM and a Xeon CPU. There's actually a fully supported option for a guest VM for local analytics, SDN, etc. in remote scenarios. If you just want to push packets, they're nice boxes. If you want "high touch" service provider features, I think you may find them lacking. They're worth looking at, though, if only because of the price/performance ratio. Arista has some similar boxes with similar caveats in terms of infantile software. MX204 is a very nice pizza box router for service providers. I'm not aware of anything quite like it in terms of having a mature control plane. I like the JunOS config language better than Cisco-style that most other folks use. -- Aaron Wendel Chief Technical Officer Wholesale Internet, Inc. (AS 32097) (816)550-9030 http://www.wholesaleinternet.com
Re: Mx204 alternative
On 8/9/2019 4:19 PM, Brandon Martin wrote: On 8/9/19 1:23 PM, Aaron wrote: We've gotten 5.7M in there with compression. Out of curiosity, what are you doing that has 5.7M routes in a single routing area? That's a lot of edge routes, tons of VRFs, or something. They were generated just for testing. Push them and they will get very aggressive on price. VERY aggressive. Yes, yes they will. I've seen some distributor pricing and, while not officially under NDA, I will not mention it directly. Suffice to say you should demand at least 40-50% off list from your vendor to start with. I don't believe I'm under NDA either but all I'll say is that if you push, 40-50% isn't even close to what they'll do.
Re: lots of traffic starting at 3 a.m. central time
Fortnite update? On 10/15/2019 10:54 AM, Luke Guillory wrote: That’s what I’m seeing as well, went from 2.2G around 2:50AM CST to a peak of 16G. https://i.imgur.com/en89kyO.png Luke Guillory Vice President – Technology and Innovation <http://www.rtconline.com> Tel:985.536.1212 Fax:985.536.0300 Email: lguill...@reservetele.com Web:www.rtconline.com Reserve Telecommunications 100 RTC Dr Reserve, LA 70084 *Disclaimer:* The information transmitted, including attachments, is intended only for the person(s) or entity to which it is addressed and may contain confidential and/or privileged material which should not disseminate, distribute or be copied. Please notify Luke Guilloryimmediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. Luke Guillorytherefore does not accept liability for any errors or omissions in the contents of this message, which arise as a result of e-mail transmission. *From:*NANOG [mailto:nanog-boun...@nanog.org] *On Behalf Of *Phil Lavin *Sent:* Tuesday, October 15, 2019 10:48 AM *To:* Aaron Gould; Nanog@nanog.org *Subject:* RE: lots of traffic starting at 3 a.m. central time > Anyone else see lots of traffic coming down starting at 3 a.m. central time ? all of my internet connections showed strangely larger load for a few early morning hours. Someone, on another list, mentioned a 70% increase in traffic to Akamai which seems to correlate with a new Fortnite release -- ==== Aaron Wendel Chief Technical Officer Wholesale Internet, Inc. (AS 32097) (816)550-9030 http://www.wholesaleinternet.com
Re: 10G-capable customer router recommendations?
Not a lot of 10G capable CPEs out there. For our 10G residential customers we install Brocade ICXs. Aaron On 4/15/2016 3:18 PM, David Sotnick wrote: Hello masters of the Internet, I was recently asked to set up networking at a VIP's home where he has Comcast "Gigabit Pro" service, which is delivered on a 10G-SR MM port on a Comcast-supplied Juniper ACX-2100 router. Which customer router would you suggest for such a setup? It needs to do IPv4 NAT, DHCP, IPv4+IPv6 routing and have a decent L4 firewall (that also supports IPv6). The customer pays for "2Gb" service (Comcast caps this at 2G+10% = 2.2Gbps) and would like to get what he pays for (*cough*) by having the ability to stream two 1Gbps streams (or at least achieve > 1.0Gbps). I'm tempted to get another ACX-2100 and do a 4x1Gb LACP port-channel to the customer switch, or replace the AV-integrator-installed Cisco SG300-52P (Cisco switch with e.g. an EX-3300 with 10Gb uplinks). Thanks in advance for your suggestions. -Dave -- ==== Aaron Wendel Chief Technical Officer Wholesale Internet, Inc. (AS 32097) (816)550-9030 http://www.wholesaleinternet.com
Re: Zayo zColo Xcon Pricing
There are a couple reasons. You order service from me. It costs me $X to build out that service. I balance that against the value of your contract. If you cancel early then my numbers may not work or I may lose money on the deal, or if I had to borrow money to do your build, then my bank is going to be angry when the value I told them I was getting for the build doesn't come through. Smaller providers may end up factoring your contract. If that contract doesn't pay what they said it would they're liable for the balance of the factoring deal. On 3/7/2018 10:55 AM, Mel Beckman wrote: NRC? Do you mean ETC (early termination charge)? This is a sore point with me in all telco contracts. They want a one- or two-year term, or even three, and in exchange give you a discount on the installation and a tiny MRC reduction. But if you cancel early, they demand full payment for all the remaining months! I realize that the contract is written this way, but why? It doesn’t seem fair at all, and as a service provider myself, I know this is actually a huge unearned windfall for the provider. To make things worse, many providers subtly plant an “auto-renew” clause in their contracts. You miss canceling but the end of the contract date, and BOOM, you’re on the hook for another two years! I’ve been burned by this more than once. -mel On Mar 7, 2018, at 8:41 AM, Romeo Czumbil wrote: Wait till you ask for a disconnect. Then you get hit again for a hefty NRC -Original Message- From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of James Laszko Sent: Wednesday, March 7, 2018 10:11 AM To: nanog Subject: Zayo zColo Xcon Pricing One of our colo’s in San Diego was purchased by Zayo recently and I requested a new copper Ethernet xcon to be placed. After a few days I received a quote from my new rep quoting a MRC 3x what I’m currently paying for existing xcon’s as well as a hefty NRC as well. Anyone have any experience with this kind of thing? Anyone care to share what an average copper xcon, single floor, meet-me-room to cage, Ethernet from carrier circuit costs? (This xcon is approx 30 feet..) Thanks! James Sent from my iPad -- ==== Aaron Wendel Chief Technical Officer Wholesale Internet, Inc. (AS 32097) (816)550-9030 http://www.wholesaleinternet.com
Re: Brocade SLX Internet Edge
It won't hold a full table. 256,000 IPv4 and 64,000 IPv6 routes. On 10/31/2018 3:01 PM, Kevin Burke wrote: Does anyone have any success with the Brocade SLX 9540 or similar? Its going to be taking full BGP tables from two Tier1's and some peering. The specs and sales rep says its fine, but the price makes me think its too good to be true. We are trying to shepherd an old Cat 6509 out of our core. Kevin Burke 802-540-0979 Burlington Telecom - City of Burlington 200 Church St, Burlington, VT 05401 -- ==== Aaron Wendel Chief Technical Officer Wholesale Internet, Inc. (AS 32097) (816)550-9030 http://www.wholesaleinternet.com
Re: How to choose a transit provider?
I've never signed an NDA to receive a quote. Some of my contracts have NDAs in them after the fact but I've never been asked to sign one before I received pricing from a transit provider. Aaron On 12/14/2018 11:12 AM, Brian Kantor wrote: On Fri, Dec 14, 2018 at 04:07:08PM +, David Guo via NANOG wrote: First of all, sign NDA if possible, then ask the following questions: Why in heaven's name would you *want* to sign an NDA? Aren't you better off without one? - Brian -- ==== Aaron Wendel Chief Technical Officer Wholesale Internet, Inc. (AS 32097) (816)550-9030 http://www.wholesaleinternet.com
Re: Non-profit IX vs. neutral for-profit IX
Probably price. Also perception of value. If you're a for profit enterprise then they're paying for interconnection plus your bump. If you're non-profit the perception is that there is a larger value because there's no bump. Whether that's true or not, who knows but that's the perception I've heard. On 12/20/2018 1:31 PM, Mike Hammett wrote: What are your thoughts on why a network would join a non-profit IX, but not a neutral, for-profit IX? Let's assume that traffic levels are similar. - Mike Hammett Intelligent Computing Solutions <http://www.ics-il.com/> <https://www.facebook.com/ICSIL><https://plus.google.com/+IntelligentComputingSolutionsDeKalb><https://www.linkedin.com/company/intelligent-computing-solutions><https://twitter.com/ICSIL> Midwest Internet Exchange <http://www.midwest-ix.com/> <https://www.facebook.com/mdwestix><https://www.linkedin.com/company/midwest-internet-exchange><https://twitter.com/mdwestix> The Brothers WISP <http://www.thebrotherswisp.com/> <https://www.facebook.com/thebrotherswisp><https://www.youtube.com/channel/UCXSdfxQv7SpoRQYNyLwntZg> -- Aaron Wendel Chief Technical Officer Wholesale Internet, Inc. (AS 32097) (816)550-9030 http://www.wholesaleinternet.com
Re: Muni Fiber and Politics
So let me throw out a purely hypothetical scenario to the collective: What do you think the consequences to a municipality would be if they laid fiber to every house in the city and gave away internet access for free? Not the WiFi builds we have today but FTTH at gigabit speeds for free? Do you think the LECs would come unglued? Aaron On 7/21/2014 8:33 PM, Miles Fidelman wrote: I've seen various communities attempt to hand out free wifi - usually in limited areas, but in some cases community-wide (Brookline, MA comes to mind). The limited ones (e.g., in tourist hotspots) have been city funded, or donated. The community-wide ones, that I've seen, have been public-private partnerships - the City provides space on light poles and such - the private firm provides limited access, in hopes of selling expanded service. I haven't seen it work successfully - 4G cell service beats the heck out of WiFi as a metropolitan area service. When it comes to municipal fiber and triple-play projects, I've generally seen them capitalized with revenue bonds -- hence, a need for revenue to pay of the financing. Lower cost than commercial services because municipal bonds are low-interest, long-term, and they operate on a cost-recovery basis. Miles Fidelman Aaron wrote: Do you have an example of a municipality that gives free internet access to it's residents? On 7/21/2014 2:26 PM, Matthew Kaufman wrote: I think the difference is when the municipality starts throwing in free or highly subsidized layer 3 connectivity "free with every layer 1 connection" Matthew Kaufman (Sent from my iPhone) On Jul 21, 2014, at 12:08 PM, Blake Dunlap wrote: My power is pretty much always on, my water is pretty much always on and safe, my sewer system works, etc etc... Why is layer 1 internet magically different from every other utility? -Blake On Mon, Jul 21, 2014 at 1:38 PM, William Herrin wrote: On Mon, Jul 21, 2014 at 10:20 AM, Jay Ashworth wrote: Over the last decade, 19 states have made it illegal for municipalities to own fiber networks Hi Jay, Everything government does, it does badly. Without exception. There are many things government does better than any private organization is likely to sustain, but even those things it does slowly and at an exorbitant price. Muni fiber is a competition killer. You can't beat city hall; once built it's not practical to compete, even with better service, so residents are stuck with only the overpriced (either directly or via taxes), usually underpowered and always one-size-fits-all network access which results. As an ISP I watched something similar happen in Altoona PA a decade and a half ago. It was a travesty. The only exception I see to this would be if localities were constrained to providing point to point and point to multipoint communications infrastructure within the locality on a reasonable and non-discriminatory basis. The competition that would foster on the services side might outweigh the damage on the infrastructure side. Like public roads facilitate efficient transportation and freight despite the cost and potholes, though that's an imperfect simile. Regards, Bill Herrin -- William Herrin her...@dirtside.com b...@herrin.us Owner, Dirtside Systems . Web: <http://www.dirtside.com/> Can I solve your unusual networking challenges? -- ==== Aaron Wendel Chief Technical Officer Wholesale Internet, Inc. (AS 32097) (816)550-9030 http://www.wholesaleinternet.com
Re: Recommended L2 switches for a new IXP
We used to use Brocade FastIrons until we needed more 10G port density. We moved to Brocade SX's. Originally, when it was 2 or 3 peers, we used an old Netgear switch. :) Aaron On 1/12/2015 7:07 AM, Mike Hammett wrote: I look forward to this thread. I think one important thing is who is your addressable market size? I'm working with a startup IXP and there's only 20 carriers in the building. A chassis based switch would be silly as there would never be that many people present. 2x 1U switches would be more than plenty in their environment. - Mike Hammett Intelligent Computing Solutions http://www.ics-il.com - Original Message - From: "Manuel Marín" To: nanog@nanog.org Sent: Monday, January 12, 2015 12:35:15 AM Subject: Recommended L2 switches for a new IXP Dear Nanog community We are trying to build a new IXP in some US Metro areas where we have multiple POPs and I was wondering what do you recommend for L2 switches. I know that some IXPs use Nexus, Brocade, Force10 but I don't personally have experience with these switches. It would be great if you can share your experience and recommendations. There are so many options that I don't know if it makes sense to start with a modular switch (usually expensive because the backplane, dual dc, dual CPU, etc) or start with a 1RU high density switch that support new protocols like Trill and that supposedly allow you to create Ethernet Fabric/Clusters. The requirements are simple, 1G/10G ports for exchange participants, 40G/100G for uplinks between switches and flow support for statistics and traffic analysis. Thank you and have a great day. Regards -- ==== Aaron Wendel Chief Technical Officer Wholesale Internet, Inc. (AS 32097) (816)550-9030 http://www.wholesaleinternet.com
Re: EVERYTHING about Booters (and CloudFlare)
If you believe someone is doing something illegal than you should report it to law enforcement. Their job is to investigate and bring charges if they feel they are warranted. You do not have to be from the USA to report a crime in the USA. Here is a list with contact info for the FBI's field offices: https://www.fbi.gov/contact-us/field-offices FBI Headquarters: https://www.fbi.gov/contact-us/fbi-headquarters List of overseas offices for those of you not in the US that want to talk to someone local: https://www.fbi.gov/contact-us/legal-attache-offices Most network operators are not law enforcement or lawyers. Aaron On 7/28/2016 8:45 AM, Naslund, Steve wrote: A DDoS attack is illegal. In the United States it is considered as theft of service. The legal construct used is that the DDoS attack is a theft of CPU cycles, compute resources, and power by other than the rightful owner for its intended purposes. Steven Naslund Chicago IL -Original Message- From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of valdis.kletni...@vt.edu Sent: Thursday, July 28, 2016 4:30 AM To: Miles Fidelman Cc: nanog@nanog.org Subject: Re: EVERYTHING about Booters (and CloudFlare) On Wed, 27 Jul 2016 22:55:54 -0400, Miles Fidelman said: On 7/27/16 10:48 PM, Randy Bush wrote: They just lost all respect from here. Would someone from USA please report these guys to the feds? What they are doing is outright criminal. hyperbole. it is not criminal. you just don't happen to like it. Actually, as someone pointed out, it might well be conspiracy - which is criminal. In general, the conspiracy isn't criminal if the conspired act isn't criminal. If you're trying to make a criminal conspiracy out of non-criminal acts, your best bet is probably finding a new way to abuse the RICO statutes. -- ==== Aaron Wendel Chief Technical Officer Wholesale Internet, Inc. (AS 32097) (816)550-9030 http://www.wholesaleinternet.com
Re: Safe IPv4 Was: Re: premiumcolo.net IP address rental
The emails I've seen are looking to rent FROM us, not TO us. I've received an email to every one of our ARIN POCs so I assumed they were scraping whois data and marked it all as spam. Aaron On 1/9/2017 12:40 PM, Martin Hannigan wrote: On Mon, Jan 9, 2017 at 11:20 AM, Matt Freitag wrote: Joel, I can't speak to "premiumcolo.net" Neither can I, but that may not mean much. Perhaps someone else can validate that they're reputable and can execute a transaction end to end? If you need IPv4 addresses for your network: 1. Make sure you have an IPV6 allocation from your favorite RIR and are using it 2. Apply for and receive a last /22 from RIPE. EVERYONE can do this. 3. Contact a reputable broker. The ones I have experience with (Alphabetical): A. Peter Thimmesch at Addrex http://www.addrex.net B. Amy Cooper at Hilco Streambank http://www.ipv4auctions.com/ C. Mike Burns at http://www.IPTrading.com ARIN also publishes a list (which is not a requirement to be able to transact or support transfers): https://www.arin.net/resources/transfer_listing/facilitator_list.html Network operators have many choices for answering their IP numbering needs these days. Including IPv6. Sorry to be a broken record on this topic, but it seems to come up a lot. And if you search the archives I'll suspect you'll find something similar to this a few time now. An educated network operator is the best kind. That's why we are here. YMMV and Best, -M< -- ==== Aaron Wendel Chief Technical Officer Wholesale Internet, Inc. (AS 32097) (816)550-9030 http://www.wholesaleinternet.com
google ipv6 routes via cogent
Hi, I'm new to the nanog list, hope this isn't out of scope for what is usually discussed here. Cogent is telling me that I can't route through cogent to get to google ipv6 routes (particularly the well known dns addresses 2001:4860:4860::88xx) because google decided not to advertise those route to one of their mutual peers. Anyone know anything about this ? .and why it happened and when it will be resolved ? -Aaron
Re: charging for config changess
From experience, I can imagine that Arelion has a very small subset of customers that are blowing up their tech support for changes like these constantly. I'm sure it's a punitive measure to deter these guys. Aaron On 30.06.2024 20:33, Tim Burke wrote: First I've heard of a provider doing it... and we do business with 3356, the one carrier I'd expect to do something like this :-) Might just be me, but I rarely have to have config changes done on circuits after provisioning, short of enabling dual stack bgp on a circuit that didn't have it previously, or if a provider did something silly with your config after provisioning/acceptance like send you a default route all of a sudden. Despite that, I know there are lots of people that can't decide on how they want to do things, or refuse to use and/or don't understand things like IRR. I don't do anything with 1299 (yet), but I could potentially see this as a "PITA surcharge" to discourage people from being unable to make their minds up... surely they would waive it for clueful customers who are making a reasonable quantity of changes. On Jun 30, 2024, at 4:17 PM, Randy Bush wrote: has charging for config changes a la https://www.arelion.com/customer-excellence/customer-support/online-technical-change-pricing [1] become common while i was not looking? admittedly, i have not looked for a long time. randy Links: -- [1] https://www.arelion.com/customer-excellence/customer-support/online-technical-change-pricing
Re: Personal Colo 2024
Lots of people offer 1U colo. We don't but lots of people do. Aaron On 06.08.2024 00:02, Tim Utschig wrote: Are there any providers of 1U personal colos these days? VMs are neat, but they lack the power to experiment with without paying an arm and a leg. I was lucky enough to have my 1U hosted by Dave Rand back in the day. Thanks.
Re: [Off-Topic] Ubersmith
It depends on the size you plan on growing to. The software is good but their pricing doesn't scale well. We've been using it since 04 but are migrating away from it at this point. Aaron On 1/9/2014 7:15 PM, Mark Keymer wrote: Hi James, Looking at the online billing / payment aspect, Along with some of its other feature. IP tracking Service tracking. Billing for cloudstack and integration with it along with Xenserver. The integrated ticketing system looks Cool too. Overall looking for a tool to manged customers and for customers to manage there servers / infrastructure along with billing of servers. Probably more as well but those are some highlights. Sincerely, Mark Keymer CFO/COO Vivio Technologies On 1/9/2014 1:04 PM, James Marcus wrote: I used it, when I was hosting with Voxel and I thought it was pretty cool. I think Ubersmith was developed at Voxel and then spun off, is that correct? What do you want to do with it? James On Jan 9, 2014, at 3:26 PM, Jay Ashworth wrote: - Original Message - From: "Mark Keymer" I know this is a bit off topic. And I am completely open to someone giving me a link to a list that might be better to talk about Ubersmith. However I also know that Many of you might have some feedback about Ubersmith as well. ;) I know that E-Solutions, at 400 N Tampa, was running Uber before they got bought out by Knology (now WOW); I don't know if they still are. They were pretty happy with it, I gather, though like everything it has some pinch points. Cheers, -- jra -- Jay R. Ashworth Baylink j...@baylink.com Designer The Things I Think RFC 2100 Ashworth & Associates http://baylink.pitas.com 2000 Land Rover DII St Petersburg FL USA #natog +1 727 647 1274
Re: [Off-Topic] Ubersmith
We rolled our own. A friend is migrating to WHMCS from Ubersmith. Aaron On 1/9/2014 7:24 PM, matt kelly wrote: Aaron, Would you mind sharing what you are migrating to? Matt On Jan 9, 2014 8:23 PM, "Aaron" <mailto:aa...@wholesaleinternet.net>> wrote: It depends on the size you plan on growing to. The software is good but their pricing doesn't scale well. We've been using it since 04 but are migrating away from it at this point. Aaron On 1/9/2014 7:15 PM, Mark Keymer wrote: Hi James, Looking at the online billing / payment aspect, Along with some of its other feature. IP tracking Service tracking. Billing for cloudstack and integration with it along with Xenserver. The integrated ticketing system looks Cool too. Overall looking for a tool to manged customers and for customers to manage there servers / infrastructure along with billing of servers. Probably more as well but those are some highlights. Sincerely, Mark Keymer CFO/COO Vivio Technologies On 1/9/2014 1:04 PM, James Marcus wrote: I used it, when I was hosting with Voxel and I thought it was pretty cool. I think Ubersmith was developed at Voxel and then spun off, is that correct? What do you want to do with it? James On Jan 9, 2014, at 3:26 PM, Jay Ashworth mailto:j...@baylink.com>> wrote: - Original Message - From: "Mark Keymer" mailto:m...@viviotech.net>> I know this is a bit off topic. And I am completely open to someone giving me a link to a list that might be better to talk about Ubersmith. However I also know that Many of you might have some feedback about Ubersmith as well. ;) I know that E-Solutions, at 400 N Tampa, was running Uber before they got bought out by Knology (now WOW); I don't know if they still are. They were pretty happy with it, I gather, though like everything it has some pinch points. Cheers, -- jra -- Jay R. Ashworth Baylink j...@baylink.com <mailto:j...@baylink.com> Designer The Things I Think RFC 2100 Ashworth & Associates http://baylink.pitas.com 2000 Land Rover DII St Petersburg FL USA #natog +1 727 647 1274
Re: Cogent <-> Verizon peering congestion
I've seen some Cogent-Sprint congestion today also. About 10% PL at the link. On 2/4/2014 6:29 PM, Edward Roels wrote: I also see major congestion from Cogent to VZ. Amongst other major networks. http://i.imgur.com/1z2ZGOr.png On Tue, Feb 4, 2014 at 6:44 PM, Robert Glover wrote: Hello, For the last several months, we have been tracking a congestion issue between Cogent <-> Verizon Host Loss% Snt Last Avg Best Wrst StDev 1. router.garlic.com 0.0%290.3 6.1 0.2 160.6 29.7 2. vl203.mag03.sfo01.atlas.cogentco.com 0.0%292.2 8.1 2.1 161.1 29.5 3. te0-0-0-14.ccr22.sfo01.atlas.cogentco.com 0.0%292.9 2.7 2.4 3.6 0.2 4. be2165.ccr22.sjc01.atlas.cogentco.com 0.0%294.1 4.0 3.7 4.8 0.2 5. be2047.ccr21.sjc03.atlas.cogentco.com 0.0%294.5 4.7 4.3 5.5 0.3 6. verizon.sjc03.atlas.cogentco.com 22.2%28 169.3 171.5 168.1 193.5 6.9 7. so-1-0-0-0.SJC01-CORE-RTR2.verizon-gni.net 37.0%28 205.8 180.6 171.6 271.6 24.8 8. A12-0-135.SNFCCA-DSL-01.verizon-gni.net 33.3%28 172.3 177.5 171.7 250.8 18.3 9. pool-71-116-122-235.snfcca.btas.verizon.net 25.0%28 197.9 197.6 195.5 199.2 0.8 We have smokeping's from our side showing 30%+ packet loss from us (AS4307) to Verizon. All I have gotten from Cogent is a canned response: --- The latency and/or packet loss that you are experiencing to this destination is due to occasional high traffic with Verizon. We have repeatedly requested augments to these congestion points and hope Verizon will comply soon. While this has been escalated internally to the CEO level, we encourage you to also contact Verizon customer support with your concerns and complaints. Their delay is a major impediment to internet traffic overall and contrary to net neutrality requirements. Our peering engineers will continue to address this on a daily basis until resolved. --- It seems to have gotten a lot worse in recent days, to the point where we have customers who are trying to access us from Verizon's network (i.e. they have Verizon DSL, or via Verizon 3G/4GLTE) complaining they are having a very hard to checking their email, etc. Has anyone else been experiencing these issues? Or does anyone have more information that what Cogent provided me in their canned statement? -Bobby
Re: L6-20P -> L6-30R
To end the debate, my staff master electrician says just replace the breaker. You can leave the outlet if you want or replace it too. Doesn't matter. The 30A circuit should be 10 gauge which is fine for 20amp. And to Jay: Network cables most certainly do carry power. On 3/19/2014 12:18 PM, Jay Ashworth wrote: Network cables don't carry power.
Re: New Zealand Spy Agency To Vet Network Builds, Provider Staff
I live in the USA and have not been forced to register with the government as a network operator or have them vet my staff. On 5/13/2014 11:34 AM, Patrick W. Gilmore wrote: Don't get me wrong, I'm not a fan of this. But at least they did it in the open, unlike the NSA (where you live). -- ==== Aaron Wendel Chief Technical Officer Wholesale Internet, Inc. (AS 32097) (816)550-9030 http://www.wholesaleinternet.com
Re: Muni Fiber and Politics
Do you have an example of a municipality that gives free internet access to it's residents? On 7/21/2014 2:26 PM, Matthew Kaufman wrote: I think the difference is when the municipality starts throwing in free or highly subsidized layer 3 connectivity "free with every layer 1 connection" Matthew Kaufman (Sent from my iPhone) On Jul 21, 2014, at 12:08 PM, Blake Dunlap wrote: My power is pretty much always on, my water is pretty much always on and safe, my sewer system works, etc etc... Why is layer 1 internet magically different from every other utility? -Blake On Mon, Jul 21, 2014 at 1:38 PM, William Herrin wrote: On Mon, Jul 21, 2014 at 10:20 AM, Jay Ashworth wrote: Over the last decade, 19 states have made it illegal for municipalities to own fiber networks Hi Jay, Everything government does, it does badly. Without exception. There are many things government does better than any private organization is likely to sustain, but even those things it does slowly and at an exorbitant price. Muni fiber is a competition killer. You can't beat city hall; once built it's not practical to compete, even with better service, so residents are stuck with only the overpriced (either directly or via taxes), usually underpowered and always one-size-fits-all network access which results. As an ISP I watched something similar happen in Altoona PA a decade and a half ago. It was a travesty. The only exception I see to this would be if localities were constrained to providing point to point and point to multipoint communications infrastructure within the locality on a reasonable and non-discriminatory basis. The competition that would foster on the services side might outweigh the damage on the infrastructure side. Like public roads facilitate efficient transportation and freight despite the cost and potholes, though that's an imperfect simile. Regards, Bill Herrin -- William Herrin her...@dirtside.com b...@herrin.us Owner, Dirtside Systems . Web: <http://www.dirtside.com/> Can I solve your unusual networking challenges? -- ==== Aaron Wendel Chief Technical Officer Wholesale Internet, Inc. (AS 32097) (816)550-9030 http://www.wholesaleinternet.com
Re: Muni Fiber and Politics
Thank you. Search gives me examples of small to medium municipal wireless deployments but what I'm particularly interested in is an example(s) of a municipal fiber build that was used to deliver free internet access to said municipality's residents. The post I originally responded to would lead me to believe that such an entity exists and if so, information on it would be super timely to a project I'm working on. Aaron On 7/21/2014 3:47 PM, Ryan Wilkins wrote: On Jul 21, 2014, at 4:26 PM, Aaron wrote: Do you have an example of a municipality that gives free internet access to it's residents? Cleveland, OH Ward 13. http://oldbrooklynconnected.com Nearly every street in the ward has multiple wireless access points serving Internet access to the residents at 2.4 GHz. 5 GHz is used for backhaul. Ubiquity networks wireless gear is used with a smattering of Mikrotik routers throughout. It’s not terribly reliable but then maybe that’s on purpose to discourage lawsuits. If there is a problem with the system on a Friday at 5:30 PM, it’ll be down until the following Tuesday. The bandwidth also isn’t anything to write home about, but for free (meaning I don’t directly send these folks a check every month) it’s not too bad. I can get 6 Mbps down and 2-4 Mbps up, sometimes more up and down but that’s fairly rare.. I’ve used it for Netflix and it worked reasonably well. HD content would stream but often would jump back to SD. Rarely would it stop entirely. I ended up having to setup an account with Time Warner for their Internet service because I work from home and the wireless interruptions were enough that it was causing problems. AT&T also serves the area but only with 1.5 Mbps DSL. No other wired carriers serve the area aside from dialup. Ryan Wilkins -- ==== Aaron Wendel Chief Technical Officer Wholesale Internet, Inc. (AS 32097) (816)550-9030 http://www.wholesaleinternet.com
Re: Network Naming Conventions
STD's --Original Message-- From: Tim Sanderson To: NANOG list Subject: RE: Network Naming Conventions Sent: Mar 13, 2010 12:12 PM ...Types of coffee and donuts Tim -Original Message- From: James Bensley [mailto:jwbens...@gmail.com] Sent: Saturday, March 13, 2010 12:27 PM To: NANOG list Subject: Re: Network Naming Conventions On 13 March 2010 16:06, James Jones wrote: > On my last network I named all the routers after simpsons characters. We use ancient Greek gods. -- Regards, James ;) Sent from my Verizon Wireless BlackBerry
Re: Surcharge for providing Internet routes?
Never heard of it. We don't do it. --Original Message-- From: ML To: nanog@nanog.org Subject: Surcharge for providing Internet routes? Sent: May 1, 2010 3:43 PM Has anyone here heard of or do they themselves charge extra for providing a complete internet table to customers? Waive the surcharge for sufficiently large commits? Sent from my Verizon Wireless BlackBerry
Re: Nortel, in bankruptcy, sells IPv4 address block for $7.5 million
On Thu, 24 Mar 2011 11:10:14 -0400, Larry Blunk wrote: On 03/24/2011 10:06 AM, Joe Provo wrote: On Thu, Mar 24, 2011 at 01:27:29PM +, Tony Finch wrote: Jay Nakamura wrote: 666,624 is kind of odd number, isn't it? That comes out to a /13,/15,/19,/21 and a /22. > From the court documents I gather that it is a collection of miscellaneous blocks that Nortel acquired over the years, presumable via corporate M&A. However there isn't (as far as I can see) a list of the actual blocks. See docket 5143 at http://chapter11.epiqsystems.com/NNI/docket/Default.aspx Exhibit B expressly indicates they were listed but filed under seal; interesting to request that. Previous documents indicate they used a third party to shop things around, who got a $200k retainer and is getting paid 5% of the sale. Docket #4435, Exhibit B has more information on the IP address broker, Addrex, Inc., of Reston, Va. Here's the president and related companies -- http://www.linkedin.com/pub/charles-m-lee/22/414/a94 http://www.denuo.com http://www.addrex.net http://www.depository.net I actually dug back through the thread to find this e-mail. I particularly find the last link of interest. Aaron
Re: Experience on Wanguard for 'anti' DDOS solutions
We tested it a while back and found that it was fine for single source attacks but fell over with multiple sources. Has that changed? On 8/11/2015 9:42 AM, Nick Rose wrote: We have processed just under a million anomalies with this software, we use the Chelsio cards for filtering. We had some troubles with packet loss on the filter side until we started using those which were a new feature in the latest release. If you have any questions I would be happy to answer them. Regards, Nick Rose | CTO Enzu Inc nick.r...@enzu.com www.enzu.com <http://www.enzu.com/> On 8/11/15, 2:14 AM, "NANOG on behalf of marcel.durega...@yahoo.fr" wrote: anybody from this impressive list ?: https://www.andrisoft.com/company/customers -- Marcel On 11.08.2015 03:28, Paul Ferguson wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On 8/10/2015 6:07 PM, valdis.kletni...@vt.edu wrote: On Tue, 11 Aug 2015 09:36:07 +1000, Nick Pratley said: Once setup correctly. very good product - it's been running for 8 months now and hasn't had any issues. It's been very reliable. I'll bite - (roughly) how many times has it triggered and mitigated an actual DDoS during those 8 months? We probably draw different conclusions from "8 months and 1 DDoS" reliable and "8 months of 5-a-week" reliable... I think that would definitely depend on how the network is base-lined. That is sometimes more of an art than a science. :-) - - ferg - -- Paul Ferguson PGP Public Key ID: 0x54DC85B2 Key fingerprint: 19EC 2945 FEE8 D6C8 58A1 CE53 2896 AC75 54DC 85B2 -BEGIN PGP SIGNATURE- Version: GnuPG v2 iF4EAREIAAYFAlXJT7EACgkQKJasdVTchbJXoQD+Mhyy7gwtMkp+mdaEUiqvwlWe 70mSH8n5ALmcp+qOqMoBAKo60u/ryb9IdvsclzPpoAvq+r9CtZgh+t/9YpkUIgnP =d7d1 -END PGP SIGNATURE- -- ==== Aaron Wendel Chief Technical Officer Wholesale Internet, Inc. (AS 32097) (816)550-9030 http://www.wholesaleinternet.com
Re: PCH.net questions and thoughts - Re: Prefix hijacking by AS20115
We have a big, red rotary phone that sits in our NOC that we have attached to a VoIP box just to use for that. :) On 9/29/2015 10:05 AM, Bob Evans wrote: Nice of you to check Jim. This brings up the old idea - A long time ago I had an INOC phone by PCH.NET - It never rang, as we filter our outbound with detail everywhere we announce. ISPs need to provide us their address list. And the few times I needed to use it , no one ever answered. ( It was a decade ago before NANOG membership.) So after a while I too ignored it. Maybe this was an idea ahead of it's time ? From this painful mishap, it could have been a great solution for NOC Engineers to help each. I find peeringdb often outdated as companies change around and sluggish return call if at all. Most are like a sales line number post. I see now a long list of registered networks in the PCH directory. Are networks actually paying attention and using it. Is it time to take another look ? At midnight in your organization could you get a NOC person with " proper BGP skills and access " to answer and care about a bad announcement ? https://inoc-dba-web.pch.net/inoc-dba/console.cgi?op=show_pubdir&list=org Link above shows lots more networks listed on the INOC-DBA Public Directory: Organizations But have you used it? Did it work for you when you needed it ? Any further comments are appreciated. This seems like a very good proper civil approach - maybe this or something like it ARIN might help promote and endorse as a benefit to the community ? Be nice if with the cash they did something simple like this and got all of us to use it? Special line forwarding ? A Emergency Only NOC App for our phones for just this kind of situation - one that registers a specific ASN and pin code we set on the registration page ? Thank You Bob Evans CTO On 9/28/15, 10:24 PM, "NANOG on behalf of Seth Mattinen" wrote: On 9/28/15 20:19, Martin Hannigan wrote: Is this related to 104.73.161.0/24? That's ours. :-) We'll take a look and get back to you. Thanks for caring! Yep, that's one of the affected prefixes. ~Seth Hi Seth, which market was this occurring? Was this already removed? I'm not seeing it this morning. I would like to figure out what went wrong here. We shouldn't be nailing up any static configuration to have caused a situation like this. -- ==== Aaron Wendel Chief Technical Officer Wholesale Internet, Inc. (AS 32097) (816)550-9030 http://www.wholesaleinternet.com
Re: 10GE router resource
On Tue, Mar 25, 2008 at 6:15 PM, Patrick Clochesy <[EMAIL PROTECTED]> wrote: > Very interesting study I had not seen, and a bummer. That really puts a > cramp in my advocation of our CARP+pf load balancers/firewalls/gateways. > Than again, what's a PIX box capable of? I'd rather tweak a whitebox than pay through the nose for a PIX. > I also had to switch to OpenBSD as there was a fatal crash with the bridge > device in FreeBSD when used with my paticular OpenVPN/CARP/pf combination. > > AFAIK pf/forwarding only takes place on one core and wouldn't take advantage > of the other 3 cores, correct? Correct. There has been some great speed and efficiency improvements in pf and other networking parts of OpenBSD; though from anecdotal evidence, 10GbE is not ready for 'primetime' (for certain definitions of 'primetime'). actually I'll just skip making an ass out of myself and hope henning@ chimes in, since I believe he reads NANOG as well. aaron.glenn
Re: [NANOG] Alcatel
On Wed, May 14, 2008 at 11:11 AM, Nicolas Antoniello <[EMAIL PROTECTED]> wrote: > Ok, I agree with you, may be I didn't explain myself clear: I meant "neutral" > in the sense > of relation with each other (i.e. Not being hostile). hopefully we're all big boys and girls and can identify a strong opinion when we see one. are we supposed to be afraid of speaking our mind because it might hurt a vendors feelings? I mean, I could take offense to the fact you mentioned you're not from the US -- implying that all US citizens are generally hostile in their opinions; but I don't. Tim's simply giving his opinion as the OP requested -- in a much more mature manner than a few other posts on this list in the past... ___ NANOG mailing list NANOG@nanog.org http://mailman.nanog.org/mailman/listinfo/nanog
RE: Repeated Blacklisting / IP reputation
The mailing sent daily contains both. -Original Message- From: Justin Shore [mailto:jus...@justinshore.com] Sent: Tuesday, September 15, 2009 11:18 AM To: Martin Hannigan Cc: NANOG list Subject: Re: Repeated Blacklisting / IP reputation Martin Hannigan wrote: > > Well, I haven't even had coffee yet and... > > Get the removals: > > curl -ls > http://lists.arin.net/pipermail/arin-issued/2009-September/000270.html | > grep Remove | grep -v "" > > Get the additions: > > mahannig$ curl -ls > http://lists.arin.net/pipermail/arin-issued/2009-September/000270.html | > grep Add | grep -v "" That appears to be it. I've also been told that there is a RSS feed of the same thing. My understanding is that a posting is made to the mailing list or RSS feed when a new subnet is assigned. I'd like to see them do something with the assignment is first returned to ARIN, not months later when the assignment is ready to be handed out again. I think the extra time would help those people that download copies of the DNSBL zone files and manually import them once a week or less often. Lots of place still use the zone files. Personally I prefer to do so too, rather than tie my mail system reliability on an outside source that may or may not tell me when they have problems that affect my service. GoDaddy and their hosted mail service would be a great example since they can't be bothered to update their DNSBL zone files. Their mail admins are using a copy of SORBS that is 3 years old. 3 damn years old. How do I know this? 3 years ago a mistake in a Squid configuration turned one of my services into an open proxy for about a week. Even today mail from that server to a domain with mail hosted at GoDaddy results in a bounce citing the ancient SORBS listing as the reason. Thanks for the pointer. Looks like they've already thought of what I suggested and implemented a solution. I still voice for announcing returned assignment instead of announcing when an old assignment gets reassigned. Thanks Justin
West Coast U.S. interesting outage 21 Sept. ~1105h UTC
All, This morning around 0405h PDT there were several odd network outages around LA where packets simply stopped forwarding in several networks. I saw no circuit drops, however, several massive traffic drops. Thus far I have heard (unconfirmed) Telia had some kind of capacity drop / equipment failure and it has been fixed. Does anyone have any details on this and/or can confirm/deny this was a Telia outage? Cheers, Aaron -- Aaron Hughes aar...@bind.com +1-831-824-4161 Key fingerprint = AD 67 37 60 7D 73 C5 B7 33 18 3F 36 C3 1C C6 B8 http://www.bind.com/
RE: American Fiber Systems
I have experiences with AFS going back 5 years. None of them good. Where would you like me to start? Aaron -Original Message- From: Marian Stasney [mailto:mar...@stasney.org] Sent: Wednesday, September 23, 2009 4:40 PM To: nanog@nanog.org Subject: American Fiber Systems If any HTTP or last mile providers have worked with this provider, please contact me off-list at the addresses below. Your quick response is greatly appreciated. mks Marian Stasney Desk: 512-853-9598 Cell: 512-845-1546 mar...@stasney.org
AT&T Admin
Ok, guess we'll see if this really works or not. Would an AT&T mail admin contact me offlist? I have an issue I need to start moving up the chain since I'm getting nowhere fast with normal channels. Thanks, Aaron
Re: BGP Traffic Engineering question
On Tue, 10 Nov 2009, Drew Weaver wrote: If you have several transit providers connected to your network and much of your traffic is generally directed by the "BGP tiebreaker" (i.e. lowest IP address) is there a way, without specifying on a per-prefix basis to prefer the "tie breaker winner" slightly less often? Assuming Cisco, set "bgp always-compare-med", "bgp deterministic-med", and in your route-map in, "set origin igp" and "set metric X". You can then vary X as you see fit as an alternate tie-breaker. As long as you never set the metric the same on two different paths for the same prefix, it'll never fall back to router-id. Depending on the transit provider, you can often match bgp communities to determine which are customer routes or the region where the announcement was heard, which you can then use as a tie-breaker when setting the metric. Barring that, as-path access-lists matching specific path fragments can do the same thing, but seems to take more work to maintain as relationships change over time. -- Aaron
Re: SBC/AT&T Contact
I can confirm serious problems reaching at&t DSL customers. The majority seem to be in the Pacbell regions. Cheers, Aaron On Tue, Nov 17, 2009 at 10:28:17PM -0600, Frank Bulk wrote: > Not personally, but it's being documented here: > http://www.internetpulse.net/ > > Frank > > -Original Message- > From: Stuart Kirk [mailto:sk...@godaddy.com] > Sent: Tuesday, November 17, 2009 10:25 PM > To: nanog@nanog.org > Subject: SBC/AT&T Contact > > Is anybody experiencing any issues with customer traffic originating > from either of these carriers? If anybody from SBC or AT&T can contact > me off-list I would appreciate it. Thank you. > > --Stuart > > > > -- Aaron Hughes aar...@bind.com +1-831-824-4161 Key fingerprint = AD 67 37 60 7D 73 C5 B7 33 18 3F 36 C3 1C C6 B8 http://www.bind.com/
Re: fight club :) richard bennett vs various nanogers, on paid peering
Would you care to elaborate on how the investigation of someones funding sources is operationally relevant to the rest of the list? Aaron Cossey aaron.cos...@gmail.com On Wed, Nov 25, 2009 at 1:25 PM, Paul Wall wrote: > RB- > > Where can we find data on your group's funding sources? > > If we're to continue this discussion, we need to establish bias and > motive, which you've not covered on your own accord. > > Drive Slow, > Paul Wall > > On 11/25/09, Richard Bennett wrote: >> Now you've descended from Steenbergen's hair-splitting between "on-net >> routes" (the mechanism) vs. "on-net access" (the actual product) into >> Simpson's straight-up lying. ITIF is not opposed to network neutrality >> in principle, having released a paper on "A Third Way on Network >> Neutrality", http://www.itif.org/index.php?id=63. There is not a single >> ultra-conservative on the ITIF board, they're all either moderate >> Democrats or moderate Republicans. >> >> I'm letting most of this childish venting slide, but I will point out >> the bald-faced lies. >> >> RB >> >> William Allen Simpson wrote: >>> They're opposed to net neutrality, and (based on his comments and several >>> of the papers) still think the Internet is some kind of bastard child >>> that >>> needs adult supervision in the middle -- by which they mean themselves >>> /in loco parentis/. >>> >>> Looking at the board, it's populated by ultra-conservative wing-nut >>> Republicans, and some Conservadems (as we call them in political circles, >>> they call themselves "centrists") from the "New Democrat Caucus" for >>> "bi-partisan" cover. And lots of lobbyists -- Federal lobbyists -- who >>> seem to list their educational clients on their bio, but not whether >>> they are also employed by a firm that represents other clients >> >> -- >> Richard Bennett >> Research Fellow >> Information Technology and Innovation Foundation >> Washington, DC >> >> >> > > -- > Sent from my mobile device > >
Re: DNS query analyzer
On Tue, Dec 1, 2009 at 3:58 PM, Tony Finch wrote: > On Mon, 30 Nov 2009, Joseph Jackson wrote: >> >> Anyone know of a tool that can take a pcap file from wireshark that was >> used to collect dns queries and then spit out statistics about the >> queries such as RTT and timeouts? > > I don't know if it'll do exactly what you want, but have a look at > https://www.dns-oarc.net/tools/dnscap dnscap paired with dpkt can quickly and elegantly accomplish what you desire; if you know python (:
RE: New SPAM DOS
Yep. I've been receiving them from several of my domains for a couple weeks. I've been sending the normal complaints to the provider of the IP space in the header but other than that I have no good ideas about combating it. Aaron -Original Message- From: Owen DeLong [mailto:o...@delong.com] Sent: Friday, January 08, 2010 1:22 PM To: Nanog list Subject: New SPAM DOS At least this is new for me... I host scvrs.org on one of my servers, and, it does not have any outlook or owa services. For some reason, someone decided to try and send this message out to various internet recipients: > Dear user of the scvrs.org mailing service! > > We are informing you that because of the security upgrade of the mailing > service your mailbox (x) settings were changed. In order to > apply the new set of settings click on the following link: > > http://scvrs.org/owa/service_directory/settings.php?email=x&from= > scvrs.org&fromname=wa2ibm > > Best regards, scvrs.org Technical Support. An now I'm having to clean up various blacklistings thinking that my server is a spamvertised web site. Anyone seen this before? Any good techniques for combatting it? Owen No virus found in this incoming message. Checked by AVG - www.avg.com Version: 9.0.725 / Virus Database: 270.14.123/2592 - Release Date: 01/08/10 01:35:00
RE: Cogent Outage?
Sitting on hold with them now. We lost them completely in Kansas City for about 5 minutes. We're back but connectivity through them is spotty. Can't even resolve google.com. Same with other DCs in the area. -Original Message- From: Joe Johnson [mailto:j...@riversidecg.com] Sent: Thursday, January 14, 2010 11:31 AM To: nanog@nanog.org Subject: Cogent Outage? We just lost Cogent across the country, along with several sister companies. Can't get through to a support person. Any idea what's going on? Joe Johnson Chief Information Officer Riverside Consulting Group, Ltd. Phone: 708.442.6033 x3456 Fax: 708.442.9722 j...@riversidecg.com www.riversidecg.com No virus found in this incoming message. Checked by AVG - www.avg.com Version: 9.0.725 / Virus Database: 270.14.140/2621 - Release Date: 01/14/10 06:39:00
Re: CNN LIVE stream?
not care? if you honestly think you'd garner knowledge you didn't already have from a CNN special...well, I don't know what to say. On Sat, Feb 20, 2010 at 4:50 PM, andrew.wallace wrote: > I am from the UK and don't know how to watch CNN Cyber Shockwave via an > internet live stream. > > The programme starts 8PM ET, 1AM UK. > > What do I do? > > Andrew > > > > > > >
RE: Alaska IXP?
We have very similar issues in Kansas City. A couple years ago we set up a local exchange point but it's had issues gaining traction due to a lack of understanding more than anything else. In these smaller markets people have a hard time understanding how connecting to a competitor benefits them. The key is to get a few solid players on board and cross your fingers that others will follow. Aaron -Original Message- From: Jay Hanke [mailto:jha...@myclearwave.net] Sent: Thursday, March 04, 2010 10:33 AM To: 'Andrew Hoyos'; 'Jared Mauch'; 'Sean Donelan' Cc: nanog@nanog.org Subject: RE: Alaska IXP? On 3/4/10 8:57 AM, "Jay Hanke" wrote: >> >> We've seen the same issues in Minnesota. Locally referred to as the "Chicago >>. Problem". Adding on to point 3, there is also a lack of neutral facilities >> with a sufficient amount of traffic to justify the next carrier connecting. >> In rural areas many times the two ISPs that provide services are enemies at >> the business level. A couple of us have started to talk about starting an >> exchange point. With transit being so cheap it is sometimes difficult to >> justify paying for the x-connects for a small piece of the routing table. >> >> Have you considered starting your own exchange point with some of the local >> players? Just having the connectivity in place may help with DR situations >> in addition to all of the benefits of an exchange point. > >Any interest by other anchor tenants in the area, such as the higher >education facilities? In Madison, we have MadIX[1], an exchange point hosted >by the University of Wisconsin-Madison, with a presence in one of the >neutral carrier hotels in Madison. > >That eliminates the carrier to carrier issues you run into in the smaller >cities, also helps with the "Chicago Problem" which we are very familiar >with here as well. > >[1] http://kb.wisc.edu/ns/page.php?id=6636 > >Andrew >From the looks of the link it looks like there is a bit of traction at the MadIX. One of the other interested carriers has talked to the University of MN and they showed some interest in participating. The trick is getting the first couple of participants to get to critical mass. Is the MadIX using a route server or is it strictly layer2? Thanks, Jay No virus found in this incoming message. Checked by AVG - www.avg.com Version: 9.0.733 / Virus Database: 271.1.1/2720 - Release Date: 03/03/10 13:34:00
Re: [NANOG] IOS rootkits
On Sun, May 25, 2008 at 4:26 PM, Christian <[EMAIL PROTECTED]> wrote: > any news of the presentation surfacing anywhere? interested to details of > what was discussed yeah. where's the beef?* *not that I don't think said beef exists.
Re: NYC - 60 Hudson Problems?
Is anyone aware if these L3 issues are affecting Burlington, Vermont again? Regards, Aaron - Original Message - From: Robert Blayzor <[EMAIL PROTECTED]> To: [EMAIL PROTECTED] <[EMAIL PROTECTED]> Sent: Mon Jun 09 08:35:16 2008 Subject: NYC - 60 Hudson Problems? On this cheerful Monday morning around 3:40 EDT I'm seeing a few different service outages from Albany into NYC to 60 Hudson. Our Level3 internet connection has gone down (again) and still down as of this time, and also noticing some dark fiber facilities we have going into 60 Husdon also have LoS. Anyone know whats up? We have tickets in with Level3 another the other dark fiber provider, but it's been pretty quiet.. -- Robert Blayzor, BOFH INOC, LLC [EMAIL PROTECTED] http://www.inoc.net/~rblayzor/
Re: Ubiquity<->Mzima routing loop
On Fri, Jul 18, 2008 at 12:27 PM, William Pitcock <[EMAIL PROTECTED]> wrote: > Hi, > > Can someone at Ubiquity or Mzima fix this routing loop: > How long ago did you contact Ubiquity or Mzima?
Re: Ubiquity<->Mzima routing loop
On Fri, Jul 18, 2008 at 1:02 PM, William Pitcock <[EMAIL PROTECTED]> wrote: > Hi, > > Sadly, I don't have any contact with either one, but I do need to be > able to access that server, and it's responsible admin is no where to be > found. common sense and courtesy says you should contact ubiquity, then mzima before even thinking of hitting up nanog@ and, wild guess, it looks like it's probably on the ubiquity side of things.
Re: SBCglobal routing loop.
On Fri, Jul 18, 2008 at 3:56 PM, Paul Wall <[EMAIL PROTECTED]> wrote: > I think that's precisely the problem, that the issue could not have > been handled "though other methods". I think it should be clear to those posting here as a last ditch effort that they should certainly outline the steps they've already taken -- basically justifying their post to NANOG: "I tried X, waited Y, got Z, and now I'm here" > I agree NANOG is not a replacement for NOCs, but what about when the > NOCs are utterly useless and the issue is global in scope? that's definitely one of the reasons *I* think this mailing lists exists. infact I bet if I wasn't lazy I could find something to that effect in the charter or nanog.org site. > Given the parties involved, I'd like to think that Logan tried to go > through standard channels prior to posting. Please realize this is no > slight against nLayer, but rather, "the new AT&T" and their concept of > customer service. SBC/ATT/whatever peering ops was always my absolute favorite to work with back when I actually worked in a NOC. hopefully that hasn't changed much in the past year. > Paul
Re: Software router state of the art
On 7/28/08, Seth Mattinen <[EMAIL PROTECTED]> wrote: > > Junpier's J-series is a BSD based platform as far as I understand it. > ImageStream is *much* more affordable for me, but is Linux-based, and I fear ...snip... AFAIK, none of Juniper's Juniper kit rocks BSD outside of the management interfaces and control plane (not even sure about the latter, tbh). someone feel free to correct me...
nanog@nanog.org
I've been seeing the same thing on T-Mobil tonight. Aaron -Original Message- From: Robert E. Seastrom [mailto:[EMAIL PROTECTED] Sent: Wednesday, August 13, 2008 9:17 PM To: nanog@nanog.org Cc: [EMAIL PROTECTED] Subject: SMS hinkiness on AT&T? Is anyone else seeing issues with multiple copies and delayed originals for SMSes on the AT&T network? I've been seeing this behavior for about the past 24-36 hours. This is phone-to-phone, not email-gateway stuff. Includes both new iPhones and people on T-Mobile as well as $random_att_handset. Given that our (royal we here) network monitoring is gatewayed directly via a phone... this is of some annoyance, to get interface transition and other alarms hours after the fact. I'm an old AT&T Blue customer if that makes a difference. Anyone? Bueller? -r
Re: interger to I P address
Ruby's IPAddr class is quite handy for IPv4 and IPv6 integer
representation conversions.
For IP to integer, whether IPv4 or IPv6, ruby code:
require 'ipaddr'
print "#{IPAddr.new('10.0.0.55').to_i}\n"
print "#{IPAddr.new('2001:0db8:85a3:08d3:1319:8a2e:0370:7334').to_i}\n"
Results in:
167772215
42540766452641195744311209248773141300
And for integer to IPv4, ruby code:
require "ipaddr"
print "#{IPAddr.new(167772215,Socket::AF_INET)}\n"
Results in:
10.0.0.55
And for integer to IPv6, ruby code:
require 'ipaddr'
print "#{IPAddr.new(42540766452641195744311209248773141300,
Socket::AF_INET6)}\n"
Results in:
2001:0db8:85a3:08d3:1319:8a2e:0370:7334
Aaron out.
Re: 198.32.64.12 -- Harmless mis-route or potential exploit?
On Tue, Sep 2, 2008 at 3:28 PM, Gadi Evron <[EMAIL PROTECTED]> wrote: > My profile and resume: http://www.linkedin.com/in/gadievron are you for real?
Re: Is the export policy selective under valley-free?
On Tue, Sep 2, 2008 at 4:45 PM, Kai Chen <[EMAIL PROTECTED]> wrote: > Just want to ask a direct question. Will an AS export all it gets from > its customers and itself to its providers? Or even under valley-free, > the BGP export policy is also selective? > that's the idea. but your use of valley-free in this context confuses me. care to clarify?
Re: Force10 Gear - Opinions
On Wed, Sep 3, 2008 at 5:38 PM, jim deleskie <[EMAIL PROTECTED]> wrote: > This is an awesome thread... in the 18mts I tested F10 vs Juniper vs > Cisco I need see my Cisco sales rep push this hard :) it's easy to push this hard when you have empirical evidence on your side but seriously, this is definitely a f10-nsp list thread and that place could use some love
Re: a vernier of civilization...
On Wed, Sep 24, 2008 at 10:48 PM, Jo Rhett <[EMAIL PROTECTED]> wrote: > On Sep 24, 2008, at 7:24 PM, Randy Bush wrote: >> >> this way lies lynch mobs >> shall we at least apply a vernier of civilization? > > > Randy, I would agree if anything less had ever been effective. > > If you have a better idea, please explain to the rest of us. "we are a nation of laws, not men"
RE: high latency ds3 issue on unloaded line
Have you taken some traffic captures to see what kind of traffic's coming through? Could be an infected machine sending lots of small packets from lots of spoofed addresses. I've seen that kind of thing cause issues with older routers before. -Original Message- From: mike [mailto:[EMAIL PROTECTED] Sent: Friday, September 26, 2008 11:04 AM To: nanog@nanog.org Subject: high latency ds3 issue on unloaded line Hello, I have a ds3 from qwest which has daily issues with insane point-to-point latencies sometimes exceeding 1000ms for hours on end, and which suddenly disappear, and does not appear to correspond with actual measured link utilization (less than 20mbps most days). To make a long investigation short, the problem comes on during the day and then lets up late in the evening. I have tested and examined everything at the ip layer and no it's not high utilization, an ACL, router cpu or bad hardware, no line errors or other issues visible from interface or controller stats. yes I have flushed all hardware, and I have a 7204vxr/npe-400 with this single ds3. The only clue seems to be millions of 'output drops' from qwest's side. And at night I can hit popular ftp mirrors from a directly attached server and observe my interface reporting about %100 utilization combined with my users and customers, so yeah it really is a full line rate ds3. And historically Mrtg always shows around 20mbps or less utilization and it's only smokeping that goes off, usually in the afternoon when the point to point latencies between my router and qwest start heading north, and consistently at that. I also have another in house tool that takes 30 second snapshots of my ds3 interface in order to catch short bursts that would be smoothed out with mrtg's 5 minute average, but during these high latency times there aren't any spikes noted. And for added confusion (or fun!), the latency can start at any utilization level - I've observed it while we were pulling just 12mbps, and I have not had it while we were doing 34mbps, only the time of day seems to be the common factor. Qwest has not been able to identify the issue, only note that - yeah, this really is happening when there is otherwise no real load on the line - and I am certain we have done everything to rule out the ip layer. They have put in a 'request' to move me to another router, but I am not hopeful of a resolution that way as the router we're currently on doesn't appear otherwise to have the problem with any other subscriber. What I want to know, is it possible that the underlaying atm/sonet that carries my ds3 from my facility is somehow oversubscribed or misconfigured? We have an OC12 fiber entrance and this is the only circuit provisioned on it, and in our small tiny town the only other user on the ring with us is comcast (according to the att network engineer who installed this). I don't know enough about atm/sonet to imagine conditions that would cause the issues I am seeing here , but every ip layer tool I have only ever tells me there isn't an ip issue here. I can issue ping from my router directly to the attached qwest router and get > 1000ms and then other times (out of the problem window), I am getting 4ms. If anyone has laughs or beers to offer me, send 'em on cuz I could use both right about now Mike-
Live.com admin
If there is an admin/postmaster for live.com on this list could you please contact me off-list? Thank you, Aaron - Aaron Childs Assistant Director, Networking Westfield State College http://www.wsc.ma.edu/it/ "I would rather write 10,000 notes than one letter of the alphabet." -- Beethoven
Re: Used (SONET) equipment sources/lists?
On Thu, Oct 2, 2008 at 9:25 PM, Forrest W. Christian <[EMAIL PROTECTED]> wrote: > I'm hoping someone can point me towards a reseller which specializes in this > type of stuff, or another source I've overlooked. I'm going to (slightly) hijack this by saying: if anyone knows of a reseller that specializes in used/aftermarket DWDM gear, I'd love to know.
Re: hosted PBX/VOIP thru VPN?
On Tue, Nov 11, 2008 at 9:17 PM, Lorell Hathcock <[EMAIL PROTECTED]> wrote: > All: > > > > My customer wants to try to improve performance to his ATAs by creating a > VPN from his network to the VOIP provider's network through the internet. > > > > I have to admit, the idea caught me flat footed. At the outset, it seems > like we would want to do it just to improve security for end users. However, > my customer wants it because he thinks it will improve performance (i.e. > voice quality). We are suffering from poor VOIP quality due to the Sprint / > Cogent depeering and subsequent squirming by our vendors. > > > > The only reason I can think that VOIP thru a VPN would help is that > *perhaps* routers in the middle on ASNs I have no control over *may* > prioritize VPN traffic higher than regular traffic. They opposite could > also be true. > > > > Specifically the ASNs in the middle are Level 3, Sprint and Time Warner. > > > > Thoughts? Should I try to dissuade him from this if performance is his main > motivator? > Your customer may have seen this article (or a similar one): http://www.oreillynet.com/etel/blog/2006/03/strangely_ssl_vpns_can_help_vo.html After reading it a year ago, I've found their discoveries to hold true on my own (small) projects with voip. In a nutshell: "In every case, adding an SSL VPN to a VoIP call over a good broadband network improved call quality. So in effect, wrapping a VoIP call in SSL gives it more structure, kind of like the rind of good Brie. What we had not counted on was the huge difference between what VoIP requires (64Kbps) and a typical broadband connection of 500Kbps or more. Because the broadband connection was so fast, TCP was able to repair the impairments without reducing voice quality. " May or may not apply to your situation, but if bandwidth isn't scarce then I wouldn't be surprised if your customer is correct, at very least they are not crazy :) Good luck -Aaron > > > Thanks! > > > > Sincerely, > > > > Lorell Hathcock > > > > OfficeConnect.net | 832-665-3400 (o) | 713-992-2343 (f) | > [EMAIL PROTECTED] > > > > ocbannerjoomla > > > > > >
Peering Personals BoF NANOG45, Attention Peering Coordinators
Attention Peering Coordinators, NANOG45 is approaching quickly and it's time to get our Peering Personals participants lined up for the Peering BoF. Peering Personals is part of the Peering BoF (Birds Of a Feather) session and provides a forum for Peering Coordinators to meet each other with the goal of establishing peering relationships. Participating Peering Coordinators will complete and email the form below to the Peering BOF moderator in advance of the BOF. Peering Coordinators will have ~two minutes at the BOF to introduce themselves, their networks, where they currently peer and where they intend to be peering in the next several months, a little bit about what they require of potential peers and what they are looking for in a peering candidate. Peering Coordinators who would like to participate in Peering Introductions should e-mail the following information to [EMAIL PROTECTED] with the subject of "NANOG 45 Peering BOF" no later than Dec 31, 2008.: Name: _ Company:__ AS#: _ Email Address: Peering Locations Today: __ Peering Locations in the next 3-6 months: Is your network more Content-Heavy or Access-Heavy ? Do you source/sink more than 5Gbps of traffic? Do you require Contracts for Peering? Do you have an "Open Peering Policy (meaning you will peer with anyone in any single location), "Selective Peering Policy (meaning you will peer but have some prerequisites that must be met first)?, or "Restrictive Peering Policy (meaning you generally will not peer with anybody else)?" If you have any questions, don't hesitate to send me an e-mail. Cheers, Aaron -- Aaron Hughes [EMAIL PROTECTED] (703) 244-0427 Key fingerprint = AD 67 37 60 7D 73 C5 B7 33 18 3F 36 C3 1C C6 B8 http://www.bind.com/
RE: Telecom Collapse?
Hmm... Florida and the entire Gulf Coast and probably Eastern US... Hurricanes, and the West Coast, Earthquakes... and the northern US, severe winter storms. Where does that leave? Utah? Everyone move to Utah! Aaron -Original Message- From: Jack Bates [mailto:[EMAIL PROTECTED] Sent: Friday, December 05, 2008 9:34 AM To: David Cantrell Cc: nanog@nanog.org Subject: Re: Telecom Collapse? David Cantrell wrote: > A "natural disaster prone location" would, by a normal person, be > taken to be one where there is a high probability of being visited by > nature's Fuckup Fairies. Such as flood plains (eg much of the Thames > estuary) and the sides of active volcanoes (Naples). Most places have > a very *low* probability of being visited by the fuckup fairy. Yeah, I've been telling them for years that everyone should just vacate Oklahoma, and Kansas. Between tornados and severe storms, these states should be off limits. Of course, we all know people on the west coast are nuts. Must be the earthquakes shaking their brains around. Jack
Peering Personals BoF NANOG45, Attention Peering Coordinators
Peering Coordinators,
Reminder:
The deadline is approaching quickly and thus far, I have 4 companies that would
like to introduce themselves. Please be sure to send me your info if you are
interested in introducing yourself or your network to the greater peering
community.
For those of you who may be thinking . o O ("I've got until the end of the
month"), please keep in mind that for many of you, today is that day with
vacation time / the holidays. So please spend 30 seconds sending the form to
me today. :)
Thank you fellow peers!
Cheers,
Aaron
> Attention Peering Coordinators,
>
> NANOG45 is approaching quickly and it's time to get our Peering Personals
> participants lined up for the Peering BoF.
>
> Peering Personals is part of the Peering BoF (Birds Of a Feather) session and
> provides a forum for Peering Coordinators to meet each other with the goal of
> establishing peering relationships.
>
> Participating Peering Coordinators will complete and email the form below to
> the Peering BOF moderator in advance of the BOF.
>
> Peering Coordinators will have ~two minutes at the BOF to introduce
> themselves, their networks, where they currently peer and where they intend
> to be peering in the next several months, a little bit about what they
> require of potential peers and what they are looking for in a peering
> candidate. Peering Coordinators who would like to participate in Peering
> Introductions should e-mail the following information to aar...@bind.com with
> the subject of "NANOG 45 Peering BOF" no later than Dec 31, 2008.:
>
> Name: _
> Company:__
> AS#: _
> Email Address:
> Peering Locations Today: __
> Peering Locations in the next 3-6 months:
> Is your network more Content-Heavy or Access-Heavy ?
> Do you source/sink more than 5Gbps of traffic?
> Do you require Contracts for Peering?
> Do you have an "Open Peering Policy (meaning you will peer with anyone in any
> single location), "Selective Peering Policy (meaning you will peer but have
> some prerequisites that must be met first)?, or "Restrictive Peering Policy
> (meaning you generally will not peer with anybody else)?"
>
> If you have any questions, don't hesitate to send me an e-mail.
>
> Cheers,
>
> Aaron
>
> --
>
> Aaron Hughes
> aar...@bind.com
> (703) 244-0427
> Key fingerprint = AD 67 37 60 7D 73 C5 B7 33 18 3F 36 C3 1C C6 B8
> http://www.bind.com/
--
Aaron Hughes
aar...@bind.com
(703) 244-0427
Key fingerprint = AD 67 37 60 7D 73 C5 B7 33 18 3F 36 C3 1C C6 B8
http://www.bind.com/
Single carrier multi-circuit asynchronous routing issue
I am curious to know if anyone has else has hit a problem like the one I am running into right now. I have two DS3 DIA's in my router, terminating on two separate routers at Sprint. We peer with BGP and I am prepending certain of my prefixes to balance the traffic load. src __dst 1.1.1.0 ||- ds3 #1 -| sprint 1 |--( ) 2.2.2.0 --- |me |( internet ) --- ||( ) || __ ( ) ||- ds3 #2 -| sprint 2 |--( ) If I were to prepend the network 1.1.1.0 to come in on 'sprint 1', but have a route to 2.2.2.0 via 'sprint 2' so that traffic comes in on one circuit but returns on the other, routing is broken. If I change my route so that packets directed to 2.2.2.0 return on the same circuit that the traffic is received on, everything works fine. Has anyone else run into an issue like this before? -- am
[no subject]
Stop
RE: Cogent Haiku v2.0
NANOG has admins They waste a lot of time now Maybe paid to much -Original Message- From: Murphy, Jay, DOH [mailto:jay.mur...@state.nm.us] Sent: Monday, January 12, 2009 11:57 AM To: Mike Bartz; neal rauhauser Cc: nanog@nanog.org Subject: RE: Cogent Haiku v2.0 Level 3 has gear. Bleeding edge technology. Get huge pipes right now. Jay Murphy IP Network Specialist NM Department of Health ITSD - IP Network Operations Santa Fe, New Mexico 87502 Bus. Ph.: 505.827.2851 "We move the information that moves your world." -Original Message- From: Mike Bartz [mailto:m...@bartzfamily.net] Sent: Monday, January 12, 2009 10:54 AM To: neal rauhauser Cc: nanog@nanog.org Subject: Re: Cogent Haiku v2.0 I like the haiku! On a serious note, we are considering getting a connection from Cogent. We currently have connections to at&t, Level 3 and TW Telecom. The low cost and high number of peer AS number's seems appealing to us. Every carrier has its issues, so I don't know what to make of the apparent negativity that I am seeing in these haiku threads. I am looking for some first hand experiences to help me make this decision. Thanks for any assistance! Mike On Sun, Jan 11, 2009 at 9:59 PM, neal rauhauser wrote: > Cogent makes a mess > My phone rings and rings > Unfornicate this! > -- Mike Bartz m...@bartzfamily.net __ This inbound email has been scanned by the MessageLabs Email Security System. __ Confidentiality Notice: This e-mail, including all attachments is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure or distribution is prohibited unless specifically provided under the New Mexico Inspection of Public Records Act. If you are not the intended recipient, please contact the sender and destroy all copies of this message. -- This email has been scanned by the Sybari - Antigen Email System.
Re: Single carrier multi-circuit asynchronous routing issue
Thank you both. Strict mode uRPF was indeed the problem. Took awhile for them to fix it for me, but at least it's fixed. -- am Anders Lindbäck wrote: On 7 jan 2009, at 21.05, Niels Bakker wrote: * aaron.milli...@bright.net (Aaron Millisor) [Wed 07 Jan 2009, 20:53 CET]: [..] If I were to prepend the network 1.1.1.0 to come in on 'sprint 1', but have a route to 2.2.2.0 via 'sprint 2' so that traffic comes in on one circuit but returns on the other, routing is broken. If I change my route so that packets directed to 2.2.2.0 return on the same circuit that the traffic is received on, everything works fine. You might be running into uRPF (unicast reverse path forward verification). -- Niels. Strict-mode uRPF will couse this, I am sure sprint support can help you with it.. -- Anders Lindbäck anders.lindb...@dnz.se
Re: isprime DOS in progress
On Wed, 21 Jan 2009, Phil Rosenthal wrote:
This attack has been ongoing on 66.230.128.15/66.230.160.1 for about 24 hours
now, and we are receiving roughly 5Gbit of attack packets from roughly
750,000 hosts.
I'm only receiving NS queries for "." from spoofed 66.230.128.15 and
66.230.160.1 via above.net (of my three transit providers) and none from
peering. This usually indicates a single source, such as one rooted machine
on non-BCP38 net spewing most of a gigabit.
Given the attack is still in progress, I can't really say much more publicly,
but suffice to say, we're working on the situation.
Have you had any luck tracking back the source of the spoofed packets?If
me talking to above.net sounds useful, let me know.
-- Aaron
Re: 97.128.0.0/9 allocation to verizon wireless
On Sat, Feb 7, 2009 at 8:06 PM, Jeffrey Lyon wrote: > Whatever happened to NAT? > > Jeff NAT? why isn't Verizon 'It's the Network' Wireless using IPv6? there should be a FOIA-like method to see large allocation justifications
Re: 97.128.0.0/9 allocation to verizon wireless
On Sun, Feb 8, 2009 at 4:07 PM, Mark Andrews wrote:
>
>I don't see any reason to complain based on those numbers.
>It's just a extremely high growth period due to technology
>change over bring in new functionality.
so if they don't deploy IPv6 then ('extremely high growth period'),
when will they? I don't presume to speak for everyone who immediately
felt that tinge of surprise at reading of a /9 being allocated, but
the blame is being laid on vzw not doing something other than 'can we
have a /9 please?' --not ARIN and/or it's policies (another mailing
list, duly noted)
Re: Fiber cut in SF area
200 Paul Ave is seeing several carriers down. I am also in Santa Cruz and cannot make or receive long distance calls on my land lines. Unconfirmed reports of Caltrain cut. Cheers, Aaron On Thu, Apr 09, 2009 at 03:37:14PM +, Stefan Molnar wrote: > > VZ in the South Bay (San Jose) is out. As per news reports I watched at 6am > PDT. > > > --Original Message-- > From: Craig Holland > To: NANOG > Subject: Fiber cut in SF area > Sent: Apr 9, 2009 8:14 AM > > Just dropping a note that there is a fiber cut in the SF area (I have a > metro line down). AboveNet is reporting issues and I've heard unconfirmed > reports that ATT and VZW are affected as well. > > Rgs, > craig > > > > > > -- Aaron Hughes aar...@bind.com (703) 244-0427 Key fingerprint = AD 67 37 60 7D 73 C5 B7 33 18 3F 36 C3 1C C6 B8 http://www.bind.com/
Re: Outside plant protection, fiber cuts, interwebz down oh noes!
On Thu, Apr 9, 2009 at 4:55 PM, Rod Beck wrote: > Hold on. Who says this sabotage? the hacksaw that was taken to two manholes within two hours of each other? I'd love to see the RFO explaining an accident like that.
RE: Important New Requirement for IPv4 Requests
I think this needlessly involves people who probably don't have a clue in an area we may not really want them involved in. I can hear the conversation now: Officer: "Why do I have to sign this thing?" Tech: "Well your graciousness. We are coming to the end of the available address space and the gods at ARIN want to make you aware of that so you might approve that request I made for new equipment to deploy IPv6 with." Officer: "Huh? Do we need it?" Tech: "Yes, we need the address space." Officer: "And they're running out?" Tech: "Well out of the v4 space which is what we use now but we can move to v6 space and..." Officer: "Hell, request 10x as much space! I'll sign anything as long as we don't run out and have to spend money!" For me, I request all the allocations and I'm also an officer of the company so I'll just attest to my own stuff but I can see this would be a nightmare in a larger company. There was also an e-mail about outreach to the CEOs of all the companies with resources. At my company the CEO will hand it to me without even opening it. I assume that in many larger companies it "might" get glanced at by the CEO or CEOs secretary before it gets shredded. While I completely understand the reasons behind both initiatives I don't think they'll have the desired effect. Aaron -Original Message- From: Matthew Moyle-Croft [mailto:m...@internode.com.au] Sent: Monday, April 20, 2009 9:56 PM To: Joe Greco Cc: nanog@nanog.org Subject: Re: Important New Requirement for IPv4 Requests ARIN should ask companies to demonstrate: - demonstration of routing of an IPv6 range/using IPv6 address space - demonstration of services being offered over IPv6 - a plan to migrate customers to IPv6 - automatic allocation of IPv6 range instead of IPv4 for those who can't do so. ie. No more IPv4 for you until you've shown IPv6 clue. Then people can't just get away with driving into the brick wall of IPv4-allocation fail. (Not sure if I'm serious about this suggestion, but it's there now). MMC On 21/04/2009, at 9:09 AM, Joe Greco wrote: > > Let me see if I can understand this. > > We're running out of IPv4 space. > > Knowing that blatant lying about IP space justifications has been an > ongoing game in the community, ARIN has decided to "do something" > about > it. > > So now they're going to require an attestation. Which means that they > are going to require an "officer" to "attest" to the validity of the > information. > > So the "officer," most likely not being a technical person, is going > to > contact ... probably the same people who made the request, ask them > if > they need the space. Right? > > And why would the answer be any different, now? > > ... JG > -- > Joe Greco - sol.net Network Services - Milwaukee, WI - http://www.sol.net > "We call it the 'one bite at the apple' rule. Give me one chance > [and] then I > won't contact you again." - Direct Marketing Ass'n position on e- > mail spam(CNN) > With 24 million small businesses in the US alone, that's way too > many apples. > -- Matthew Moyle-Croft Networks, Internode/Agile Level 5, 162 Grenfell Street, Adelaide, SA 5000 Australia Email: m...@internode.com.auWeb: http://www.on.net Direct: +61-8-8228-2909 Mobile: +61-419-900-366 Reception: +61-8-8228-2999Fax: +61-8-8235-6909
Re: 大和一家[00267] ニコ動の私の動画が消される…!
Yahoo!グループからの重要なお知らせがメール下部にございます。ご確認ください。 --- Bad day? Steven Walker wrote: > STOP SENDING ME BULLSHIT > >> To: tamanoyam...@yahoogroups.jp >> From: alamiki1...@yahoo.co.jp >> Date: Tue, 28 Apr 2009 15:12:53 +0900 >> Subject: 大和一家[00240] ニコ動の私の動画が消される…! >> >> 日付 : 2009年02月03日 (火) >> 件名 : ニコ動の私の動画が消される…! >> 続けて書いちゃいますが。ずっと書きたかったこと。 >> >> >> ニコニコ動画、みんな知ってますよね。著作者でJASRAC会員の私が推奨しちゃいけないけど、おもしろいから見てますよー。夫に無理矢理見せられてるのもあるけど。テレビ神奈川のアニメ『天体戦士サンレッド』。これおもしろいw >> テレビ神奈川は自ら放送済みのものをニコ動で流しているので何の問題もないです。テレビ神奈川偉い! >> >> ヴァンプさん最高です!!(人が良くて天然でお料理好きで世話好きなところが、どうしても友達のゲイの子とキャラがかぶるんですが…)ピーちゃんも好き。リーサル・ウェポンだけど一度発動すると充電に8時間かかるとことか(笑) ヘルプページ: http://help.yahoo.co.jp/help/jp/groups/ グループページ: http://groups.yahoo.co.jp/group/TamanoYamato/ グループ管理者: mailto:tamanoyamato-ow...@yahoogroups.jp ・モバイル: http://rd.yahoo.co.jp/egroups/050616info/1.html ・移行手続: http://rd.yahoo.co.jp/egroups/050616info/2.html ・利用規約: http://rd.yahoo.co.jp/egroups/050616info/3.html --- 【Yahoo!グループからのお知らせ】Yahoo!グループは7月7日にリニューアルします。 詳しくは「お知らせ」をご覧下さい。 http://groups.yahoo.co.jp/local/notice/sw.html
RE: UCEProtect Level 3
Yes. Is that a problem? -Original Message- From: Raleigh Apple [mailto:rap...@rapidlink.com] Sent: Thursday, May 07, 2009 1:34 PM To: nanog@nanog.org Subject: UCEProtect Level 3 Is anyone else out there aware that the UCEProtect Level 3 email blacklist blocks entire AS? r
Re: NPE-G2 vs. Sup720-3BXL
We ran into a similar quandary and have about the same amount of traffic as your network. When purchasing gear a year ago we decided against 7200's with an NPE-G2 as insufficient for the load. Have you looked at the 7304? The Cisco 7304 with an NSE-150 processing engine on it offloads a lot of the packet processing to dedicated hardware, and doesn't have TCAM limitations for routes. You can hold several full feeds and do the amount of traffic you're talking about without breaking a sweat. http://www.cisco.com/en/US/prod/collateral/routers/ps352/prod_bulletin0900aecd8060aac5.html It is capable of supporting both legacy port adapters (from your Flexwan or 7200 routers) and SPA cards with the right add-in modules, which IIRC is only a few hundred dollars. I'd be glad to answer any questions you have about our implementation. --am David Storandt wrote: We're stuck in an engineering pickle, so some experience from this crew would be useful in tie-breaking... We operate a business-grade FTTx ISP with ~75 customers and 800Mbps of Internet traffic, currently using 6509/Sup2s for core routing and port aggregation. The MSFC2s are under stress from 3x full route feeds, pared down to 85% to fit the TCAM tables. One system has a FlexWAN with an OC3 card and it's crushing the CPU on the MSFC2. System tuning (stable IOS and esp. disabling SPD) helped a lot but still doesn't have the power to pull through. Hardware upgrades are needed... We need true full routes and more CPU horsepower for crunching BGP (+12 smaller peers + ISIS). OC3 interfaces are going to be mandatory, one each at two locations. Oh yeah, we're still a larger startup without endless pockets. Power, rack space, and SmartNet are not concerns at any location (on-site cold spares). We may need an upstream OC12 in the future but that's a ways out and not a concern here. Our engineering team has settled on three $20k/node options: - Sup720-3BXLs with PS and fan upgrades - Sup2s as switches + ISIS + statics and no BGP, push BGP edge routing off to NPE-G2s across a 2-3Gbps port-channel - Sup2s as switches + ISIS + statics and no BGP, push BGP edge routing off to a 12008 with E3 engines across a 2-3Gbps port-channel. Ideas and constructive opinions welcome, especially software and stability-related. Many thanks, -Dave
Re: NPE-G2 vs. Sup720-3BXL
Yeah, as long as you're using the NSE-150 and are using features supported by the PXF such that it's not punting to the RP, the performance is really good. --am Brian Feeny wrote: I have used the 7304 in the past and was happy with it. In fact I still have a 6-port DS3 module for a 7304 which I need to find a home for if anyone has the need. The 7304 originally had its own specific modules that went into it. But they also sell carrier card for it so you can use standard PA's, as well as the SPA's which is nice. Overall footprint is rather nice, and I use to use those 6-port DS3 cards which allowed for hefty DS3 termination. Brian On May 15, 2009, at 12:44 PM, Aaron Millisor wrote: We ran into a similar quandary and have about the same amount of traffic as your network. When purchasing gear a year ago we decided against 7200's with an NPE-G2 as insufficient for the load. Have you looked at the 7304? The Cisco 7304 with an NSE-150 processing engine on it offloads a lot of the packet processing to dedicated hardware, and doesn't have TCAM limitations for routes. You can hold several full feeds and do the amount of traffic you're talking about without breaking a sweat. http://www.cisco.com/en/US/prod/collateral/routers/ps352/prod_bulletin0900aecd8060aac5.html It is capable of supporting both legacy port adapters (from your Flexwan or 7200 routers) and SPA cards with the right add-in modules, which IIRC is only a few hundred dollars. I'd be glad to answer any questions you have about our implementation. --am David Storandt wrote: We're stuck in an engineering pickle, so some experience from this crew would be useful in tie-breaking... We operate a business-grade FTTx ISP with ~75 customers and 800Mbps of Internet traffic, currently using 6509/Sup2s for core routing and port aggregation. The MSFC2s are under stress from 3x full route feeds, pared down to 85% to fit the TCAM tables. One system has a FlexWAN with an OC3 card and it's crushing the CPU on the MSFC2. System tuning (stable IOS and esp. disabling SPD) helped a lot but still doesn't have the power to pull through. Hardware upgrades are needed... We need true full routes and more CPU horsepower for crunching BGP (+12 smaller peers + ISIS). OC3 interfaces are going to be mandatory, one each at two locations. Oh yeah, we're still a larger startup without endless pockets. Power, rack space, and SmartNet are not concerns at any location (on-site cold spares). We may need an upstream OC12 in the future but that's a ways out and not a concern here. Our engineering team has settled on three $20k/node options: - Sup720-3BXLs with PS and fan upgrades - Sup2s as switches + ISIS + statics and no BGP, push BGP edge routing off to NPE-G2s across a 2-3Gbps port-channel - Sup2s as switches + ISIS + statics and no BGP, push BGP edge routing off to a 12008 with E3 engines across a 2-3Gbps port-channel. Ideas and constructive opinions welcome, especially software and stability-related. Many thanks, -Dave
RE: Why choose 120 volts?
Our power is handed to us at 480v. We then deliver it to the customer at whatever they need. The nice thing about 120v is that everything uses it. No odd cords (as mentioned before) or expensive PDUs. I've had a lot of people suggest that running our servers at 240v would save us money because we'd use less amps. Last time I looked at my bill I was being billed by the kWh, not amp and 240v at half the amps is still the same wattage. I've been told this so many times though that I'm starting to doubt myself. If anyone can present a reason for me to switch to 240v I'd like to hear it. Aaron -Original Message- From: Seth Mattinen [mailto:se...@rollernet.us] Sent: Tuesday, May 26, 2009 2:39 PM To: nanog@nanog.org Subject: Why choose 120 volts? I have a pure curiosity question for the NANOG crowd here. If you run your facility/datacenter/cage/rack on 120 volts, why? I've been running my facility at 208 for years because I can get away with lower amperage circuits. I'm curious about the reasons for using high-amp 120 volt circuits to drive racks of equipment instead of low-amp 208 or 240 volt circuits. ~Seth
AOL Postmaster
Is anyone from AOL lurking on the list that could contact me of-list? I'm having some issues with mail being rejected because AOL believes our IPs are dynamic. Aaron
RE: AOL Postmaster
Yes. For the last 2 months I've been getting the nice auto reply/ticket number but no other contact. Aaron -Original Message- From: Mike Walter [mailto:mwal...@3z.net] Sent: Monday, June 01, 2009 12:23 PM To: nanog@nanog.org Subject: RE: AOL Postmaster Have you been through http://postmaster.aol.com/? Mike -Original Message- From: Aaron Wendel [mailto:aa...@wholesaleinternet.com] Sent: Monday, June 01, 2009 12:48 PM To: nanog@nanog.org Subject: AOL Postmaster Is anyone from AOL lurking on the list that could contact me of-list? I'm having some issues with mail being rejected because AOL believes our IPs are dynamic. Aaron
Re: Cogent input - no peering with Global Crossing in Europe [Re: NANOG Digest, Vol 17, Issue 46]
On Wed, Jun 17, 2009 at 4:32 PM, Charles Wyble wrote: > Ouch... latency must be awful. > > I suppose this is based on Cogents reputation but who knows. The whole > peering aspect of the networking business is often a mystery. I dont think it is any mystery Cogent doesn't have many friends in the European IP market...
Re: tor
On Wed, Jun 24, 2009 at 8:50 PM, Suresh Ramasubramanian wrote: > Running what's effectively an anonymous open proxy is not a bright > idea, even if there's security bundled on.. > > John Gilmore found that out after Verio disconnected his perpetual > open relay for example .. and TOR is just as nutty a concept. > > Nothing less that I'd expect from the EFF, frankly speaking - but > clued people (and you are clued, for sure) shouldnt be running it. Would you feel better if instead of "Tor" it was called "Crowds" and instead of those rapscallions at the EFF it was a nice respectable AT&T Research project from Avi Ruben? I bet I still have my "Anonymity Loves Company" shirt somewhere... Anonymous speech is a vital concept if you expect Free speech. http://avirubin.com/crowds.pdf
Re: cisco.com
Not sure the ETA but the network that the address for cisco.com resolves to (198.133.219.0/24) is no longer in BGP. -- - Aaron Millisor R. Benjamin Kessler wrote: Hey Gang - I'm unable to get to cisco.com from multiple places on the 'net (including downforeveryoneorjustme.com); any ideas on the cause and ETR? Thanks, Ben
Hurricane Electric AS6939
Do y’all like HE for Internet uplink? I’m thinking about using them for 100gig in Texas. It would be for my eyeballs ISP. We currently have Spectrum, Telia and Cogent. -Aaron
Re: 10g residential CPE
We run MikroTik RB4011s for residential speeds between 1G and 10G or just supply a media converter. For residential 40G and 100G we just drop in Arista or Extreme switches. SMBs are normally just a media converter or direct fiber handoff. https://mikrotik.com/product/rb4011igs_5hacq2hnd_in There are not a lot of options for good, off the shelf 10G CPE equipment. The handful of 10G residential customers we have seem to be happy with the tik. The couple that don’t use it have rolled their own solution. Like anything, I’m sure once the major home broadband providers start to catch up with us smaller guys the vendors will catch up as well. https://www.kcfiber.com/residential Aaron > On Dec 26, 2020, at 11:53 AM, Mel Beckman wrote: > > >> >> i really don't get what the problem is. it's like they're being deliberately >> obtuse. > > Michael, > > If vendors saw a 10GbE CPE market, they would serve it. Obviously they don’t > see a market. Why don’t people insisting vendors build their hobby horse see > that? It’s like they’re being deliberately obtuse :) > > -mel via cell > >> On Dec 26, 2020, at 9:16 AM, Michael Thomas wrote: >> >> >>>> On 12/26/20 8:00 AM, Valdis Klētnieks wrote: >>> >>> Anybody got a feel for what percent of the third-party gear currently sold >>> to >>> consumers has sane bufferbloat support in 2020, when we've *known* that >>> de-bufferbloated gear is a viable differentiatior if marketed right >>> (consider the >>> percent of families that have at least one gamer who cares)? >>> >> I don't know percentages, but just trying to find cpe that support it in >> their specs is depressingly small. considering that they're all using linux >> and queuing discipline software is ages old, i really don't get what the >> problem is. it's like they're being deliberately obtuse. given all of the >> zoom'ing happening now you think that somebody would hit them with the >> clue-bat that this is a marketing opportunity. >> >> Mike >>
Re: 10g residential CPE
Darin, We charge a $300 one time install charge to cover our costs on the 1G service (which can be paid out at $25/mo if you can't afford $300 all at once). The area we serve is mainly lower and lower-middle-class income with an 80% transient population. Seven years ago, when "digital divide" and "digital literacy" were the buzz words, we instituted our "free" 1G service in an effort to level the playing field for the population who, otherwise, can't afford internet at all, let alone at that speed. Until recently we didn't charge for residential service at any tier. Rather than putting in "income tiers", making people fill out applications for assistance, etc. we just made it free for everyone. We also provide free 100G service to the local school district as well as free service to local government, police, fire stations (Firemen (and women) had to pay for their own internet to use while they were on duty before us), library, churches and other non-profits. That's the why. The how is that we control a LOT of fiber in the metro area that is in use by a lot of very large providers that everyone's heard of. We make enough money doing that so we don't feel the need to charge the residences for a basic level of service. Aaron On 12/26/2020 12:48 PM, Darin Steffl wrote: Aaron, One simple question. Why on earth would you offer free internet service? How and why? Your site show 1 Gig symmetrical for free when you should be a minimum of $65 per month to be competitive. On Sat, Dec 26, 2020, 12:31 PM Aaron Wendel mailto:aa...@wholesaleinternet.net>> wrote: We run MikroTik RB4011s for residential speeds between 1G and 10G or just supply a media converter. For residential 40G and 100G we just drop in Arista or Extreme switches. SMBs are normally just a media converter or direct fiber handoff. https://mikrotik.com/product/rb4011igs_5hacq2hnd_in <https://mikrotik.com/product/rb4011igs_5hacq2hnd_in> There are not a lot of options for good, off the shelf 10G CPE equipment. The handful of 10G residential customers we have seem to be happy with the tik. The couple that don’t use it have rolled their own solution. Like anything, I’m sure once the major home broadband providers start to catch up with us smaller guys the vendors will catch up as well. https://www.kcfiber.com/residential <https://www.kcfiber.com/residential> Aaron On Dec 26, 2020, at 11:53 AM, Mel Beckman mailto:m...@beckman.org>> wrote: i really don't get what the problem is. it's like they're being deliberately obtuse. Michael, If vendors saw a 10GbE CPE market, they would serve it. Obviously they don’t see a market. Why don’t people insisting vendors build their hobby horse see that? It’s like they’re being deliberately obtuse :) -mel via cell On Dec 26, 2020, at 9:16 AM, Michael Thomas mailto:m...@mtcc.com>> wrote: On 12/26/20 8:00 AM, Valdis Klētnieks wrote: Anybody got a feel for what percent of the third-party gear currently sold to consumers has sane bufferbloat support in 2020, when we've *known* that de-bufferbloated gear is a viable differentiatior if marketed right (consider the percent of families that have at least one gamer who cares)? I don't know percentages, but just trying to find cpe that support it in their specs is depressingly small. considering that they're all using linux and queuing discipline software is ages old, i really don't get what the problem is. it's like they're being deliberately obtuse. given all of the zoom'ing happening now you think that somebody would hit them with the clue-bat that this is a marketing opportunity. Mike -- Aaron Wendel Chief Technical Officer Wholesale Internet, Inc. (AS 32097) (816)550-9030 http://www.wholesaleinternet.com
Re: 10g residential CPE
One. For an employee. Primarily just to say we had done it. :) Aaron On 12/26/2020 4:15 PM, Lady Benjamin PD Cannon wrote: Have you done any 100g Residential connections? —L.B. Lady Benjamin PD Cannon, ASCE 6x7 Networks & 6x7 Telecom, LLC CEO b...@6by7.net <mailto:b...@6by7.net> "The only fully end-to-end encrypted global telecommunications company in the world.” FCC License KJ6FJJ On Dec 26, 2020, at 10:30 AM, Aaron Wendel mailto:aa...@wholesaleinternet.net>> wrote: We run MikroTik RB4011s for residential speeds between 1G and 10G or just supply a media converter. For residential 40G and 100G we just drop in Arista or Extreme switches. SMBs are normally just a media converter or direct fiber handoff. https://mikrotik.com/product/rb4011igs_5hacq2hnd_in <https://mikrotik.com/product/rb4011igs_5hacq2hnd_in> There are not a lot of options for good, off the shelf 10G CPE equipment. The handful of 10G residential customers we have seem to be happy with the tik. The couple that don’t use it have rolled their own solution. Like anything, I’m sure once the major home broadband providers start to catch up with us smaller guys the vendors will catch up as well. https://www.kcfiber.com/residential <https://www.kcfiber.com/residential> Aaron On Dec 26, 2020, at 11:53 AM, Mel Beckman <mailto:m...@beckman.org>> wrote: i really don't get what the problem is. it's like they're being deliberately obtuse. Michael, If vendors saw a 10GbE CPE market, they would serve it. Obviously they don’t see a market. Why don’t people insisting vendors build their hobby horse see that? It’s like they’re being deliberately obtuse :) -mel via cell On Dec 26, 2020, at 9:16 AM, Michael Thomas <mailto:m...@mtcc.com>> wrote: On 12/26/20 8:00 AM, Valdis Klētnieks wrote: Anybody got a feel for what percent of the third-party gear currently sold to consumers has sane bufferbloat support in 2020, when we've *known* that de-bufferbloated gear is a viable differentiatior if marketed right (consider the percent of families that have at least one gamer who cares)? I don't know percentages, but just trying to find cpe that support it in their specs is depressingly small. considering that they're all using linux and queuing discipline software is ages old, i really don't get what the problem is. it's like they're being deliberately obtuse. given all of the zoom'ing happening now you think that somebody would hit them with the clue-bat that this is a marketing opportunity. Mike -- Aaron Wendel Chief Technical Officer Wholesale Internet, Inc. (AS 32097) (816)550-9030 http://www.wholesaleinternet.com
Re: 10g residential CPE
No. Google still operates their plant in the KC area. Aaron On 12/27/2020 4:06 AM, Mark Tinka wrote: On 12/26/20 20:30, Aaron Wendel wrote: https://www.kcfiber.com/residential <https://www.kcfiber.com/residential> Curious, any chance you took over Google's fibre project :-)? Mark. -- ==== Aaron Wendel Chief Technical Officer Wholesale Internet, Inc. (AS 32097) (816)550-9030 http://www.wholesaleinternet.com
Re: 10g residential CPE
Actually our free service doesn't have limitations, has an SLA, no time/term restrictions, a CPE, support, etc. I explained the "why" in a different post so I won't go over it again. 98% of our residential customers are on the free plan. Aaron On 12/27/2020 4:38 AM, Mark Tinka wrote: On 12/26/20 20:48, Darin Steffl wrote: Aaron, One simple question. Why on earth would you offer free internet service? How and why? Your site show 1 Gig symmetrical for free when you should be a minimum of $65 per month to be competitive. For me, looks like a loss-leader to reel customers in, perhaps with some limitations, no guarantees, time/term restrictions, no CPE, no support, e.t.c., that make a "smooth" upgrade to 2Gbps or 3Gbps more sensible. My theory would be that getting customers on to the platform is the hardest step. Once they're on, pivoting them isn't difficult, particularly if you nabbed them from a competitor that was charging them some $$ for 10Mbps. Think about it, they don't offer a "Multi-Gigabit Wireless Router" with the 1Gbps service. Chances are the customers who choose this package either have a crappy device, or will likely buy a crappy device on their own. They'd never trouble the 1Gbps product, probably call KC Fiber for to complain about not getting 1Gbps, upon which KC Fiber recommend their own CPE, a more guaranteed package, e.t.c., and in comes the 2Gbps or higher, revenue-generating service. One the network side, it's just the same port, different (cheap) optic. A cheap port in use for free is better than an unused port, if the switch and fibre are already installed, and at less than 60% take-up. It's creative, I like it! Mark. -- Aaron Wendel Chief Technical Officer Wholesale Internet, Inc. (AS 32097) (816)550-9030 http://www.wholesaleinternet.com
Re: 10g residential CPE
The $300 covers the equipment and the time to send someone out to a house to install it. If $300 is too much you can pay in 12 installments of $25. The TIK alone costs us about $250. Aaron On 12/27/2020 5:04 AM, Mark Tinka wrote: On 12/26/20 20:48, Darin Steffl wrote: Aaron, One simple question. Why on earth would you offer free internet service? How and why? Your site show 1 Gig symmetrical for free when you should be a minimum of $65 per month to be competitive. They also ask for no monthly fee after a single payment of US$300. Considering the 2Gbps package costs US$49.95, you'd guess they'd value the 1Gbps service at, say US$27/month, give or take. So that US$300 provides a bit of coverage, perhaps 1 year, in which time they'd have likely upgraded the customer. Mark. -- ==== Aaron Wendel Chief Technical Officer Wholesale Internet, Inc. (AS 32097) (816)550-9030 http://www.wholesaleinternet.com
Re: 10g residential CPE
Darin,
Our business support and residential support is the same department. I
have to pay those people to be in the office either way so it doesn't
cost me any "more" to provide support for the residences. Yes, walking
Grandma through getting her email can sometimes be a chore but that
person is on the payroll whether he/she is helping Grandma or sitting
there chatting with his/her co-worker. If we dumped all the residential
customers we would still have the same cost structure we do now.
Again, it's been free for the last 7 years at this point. I've never
been one to really do what I "should" anyway.
Aaron
On 12/28/2020 11:48 AM, Darin Steffl wrote:
Aaron,
The "Free" service doesn't cover your cost of support which is much
higher for residential than any business customer. Our residential
customers call at least 15x more often compared to business customers
compared on a 1:1 ratio.
I honestly can't fathom providing free residential service because we
make enough money on the business side of things. You should be
charging something, at least $20-30 per month.
On Mon, Dec 28, 2020 at 11:15 AM Aaron Wendel
mailto:aa...@wholesaleinternet.net>> wrote:
The $300 covers the equipment and the time to send someone out to a
house to install it. If $300 is too much you can pay in 12
installments
of $25.
The TIK alone costs us about $250.
Aaron
On 12/27/2020 5:04 AM, Mark Tinka wrote:
>
>
> On 12/26/20 20:48, Darin Steffl wrote:
>
>> Aaron,
>>
>> One simple question. Why on earth would you offer free internet
>> service? How and why? Your site show 1 Gig symmetrical for free
when
>> you should be a minimum of $65 per month to be competitive.
>
> They also ask for no monthly fee after a single payment of US$300.
>
> Considering the 2Gbps package costs US$49.95, you'd guess they'd
value
> the 1Gbps service at, say US$27/month, give or take.
>
> So that US$300 provides a bit of coverage, perhaps 1 year, in which
> time they'd have likely upgraded the customer.
>
> Mark.
--
Aaron Wendel
Chief Technical Officer
Wholesale Internet, Inc. (AS 32097)
(816)550-9030
http://www.wholesaleinternet.com <http://www.wholesaleinternet.com>
--
Darin Steffl
Minnesota WiFi
www.mnwifi.com <http://www.mnwifi.com/>
507-634-WiFi
Like us on Facebook <http://www.facebook.com/minnesotawifi>
--
Aaron Wendel
Chief Technical Officer
Wholesale Internet, Inc. (AS 32097)
(816)550-9030
http://www.wholesaleinternet.com
Re: 10g residential CPE
We still build when needed. We're in the process of building to 700 new apartments so we can provide them with free service. We're actually pulling 576 strands into the basement of one building to backhaul each apartment to it's own switch port in the new hut we just deployed to service that new development. (we don't use a PON system. Everyone has a dedicated switch port.) Also, keep in mind that this isn't all we do. This is a very small part of a much bigger pie. So I agree with you. If this was it then it would make no sense. When you look at all the pieces together it makes perfect sense. Aaron On 12/28/2020 1:50 PM, Baldur Norddahl wrote: I applaud your commitment to helping your local community. Just want to point out that this is a charity because it does not scale. Nobody could build out a FTTH network and make it free as a business case. But there are plenty of people that made a network for their neighbors and provided that for free. Maybe a person had a commercial fiber to his home and thought he could just as well share it. This might be on a bigger scale but it is the same. Regards, Baldur On Mon, Dec 28, 2020 at 8:27 PM Aaron Wendel mailto:aa...@wholesaleinternet.net>> wrote: Darin, Our business support and residential support is the same department. I have to pay those people to be in the office either way so it doesn't cost me any "more" to provide support for the residences. Yes, walking Grandma through getting her email can sometimes be a chore but that person is on the payroll whether he/she is helping Grandma or sitting there chatting with his/her co-worker. If we dumped all the residential customers we would still have the same cost structure we do now. Again, it's been free for the last 7 years at this point. I've never been one to really do what I "should" anyway. Aaron On 12/28/2020 11:48 AM, Darin Steffl wrote: > Aaron, > > The "Free" service doesn't cover your cost of support which is much > higher for residential than any business customer. Our residential > customers call at least 15x more often compared to business customers > compared on a 1:1 ratio. > > I honestly can't fathom providing free residential service because we > make enough money on the business side of things. You should be > charging something, at least $20-30 per month. > > On Mon, Dec 28, 2020 at 11:15 AM Aaron Wendel > mailto:aa...@wholesaleinternet.net> <mailto:aa...@wholesaleinternet.net <mailto:aa...@wholesaleinternet.net>>> wrote: > > The $300 covers the equipment and the time to send someone out to a > house to install it. If $300 is too much you can pay in 12 > installments > of $25. > > The TIK alone costs us about $250. > > Aaron > > > On 12/27/2020 5:04 AM, Mark Tinka wrote: > > > > > > On 12/26/20 20:48, Darin Steffl wrote: > > > >> Aaron, > >> > >> One simple question. Why on earth would you offer free internet > >> service? How and why? Your site show 1 Gig symmetrical for free > when > >> you should be a minimum of $65 per month to be competitive. > > > > They also ask for no monthly fee after a single payment of US$300. > > > > Considering the 2Gbps package costs US$49.95, you'd guess they'd > value > > the 1Gbps service at, say US$27/month, give or take. > > > > So that US$300 provides a bit of coverage, perhaps 1 year, in which > > time they'd have likely upgraded the customer. > > > > Mark. > > -- > > Aaron Wendel > Chief Technical Officer > Wholesale Internet, Inc. (AS 32097) > (816)550-9030 > http://www.wholesaleinternet.com <http://www.wholesaleinternet.com> <http://www.wholesaleinternet.com <http://www.wholesaleinternet.com>> > > > > > -- > Darin Steffl > Minnesota WiFi > www.mnwifi.com <http://www.mnwifi.com> <http://www.mnwifi.com/ <http://www.mnwifi.com/>> > 507-634-WiFi > Like us on Facebook <http://www.facebook.com/minnesotawifi <http://www.facebook.com/minnesotawifi>> -- ==
Re: 10g residential CPE
We prioritize calls based on severity. If both Google and Grandma call
and say they have a cut then we have people to service both at the same
time. If Google, Century Link, Verizon, AT&T and Grandma all call then
Grandma gets to wait a day. That being the case, it's not dependent on
revenue. Emergency Services (911 and Police radio feeds) gets #1
priority even though they're non-paying.
But yes, in extreme situations the residential customers would be
delayed to service the paying customers. We do have people cross
trained from other parts of our businesses so we can allocate internally
in emergencies. In almost a decade though I can't think of a situation
where someone had to wait for service because we didn't have the
resources to service them.
Aaron
On 12/28/2020 2:02 PM, Mel Beckman wrote:
Darin,
Surely you at least give the paying customers priority over the
non-paying? It’s one thing to say “I have to write paychecks no matter
what”. It’s another to say “I’ll give away my support to free
customers AND degrade support for paying customers as a result.” Your
tech support guy “walking Grandma through getting her email” is
necessarily not accessible for the duration to paying customers.
This means your staffing must be large enough to never have any
queuing, or you’re giving away your paying customers' time to
non-paying customers. Neither approach is scalable in a competitive
business environment, because SOMEBODY is paying for all those
resources, and if it’s your customers, they will buy elsewhere. Your
approach only work until you run out of other people’s money.
-mel
On Dec 28, 2020, at 11:50 AM, Baldur Norddahl
mailto:baldur.nordd...@gmail.com>> wrote:
I applaud your commitment to helping your local community. Just want
to point out that this is a charity because it does not scale. Nobody
could build out a FTTH network and make it free as a business case.
But there are plenty of people that made a network for their
neighbors and provided that for free. Maybe a person had a commercial
fiber to his home and thought he could just as well share it. This
might be on a bigger scale but it is the same.
Regards,
Baldur
On Mon, Dec 28, 2020 at 8:27 PM Aaron Wendel
mailto:aa...@wholesaleinternet.net>> wrote:
Darin,
Our business support and residential support is the same
department. I
have to pay those people to be in the office either way so it
doesn't
cost me any "more" to provide support for the residences. Yes,
walking
Grandma through getting her email can sometimes be a chore but that
person is on the payroll whether he/she is helping Grandma or
sitting
there chatting with his/her co-worker. If we dumped all the
residential
customers we would still have the same cost structure we do now.
Again, it's been free for the last 7 years at this point. I've
never
been one to really do what I "should" anyway.
Aaron
On 12/28/2020 11:48 AM, Darin Steffl wrote:
> Aaron,
>
> The "Free" service doesn't cover your cost of support which is
much
> higher for residential than any business customer. Our residential
> customers call at least 15x more often compared to business
customers
> compared on a 1:1 ratio.
>
> I honestly can't fathom providing free residential service
because we
> make enough money on the business side of things. You should be
> charging something, at least $20-30 per month.
>
> On Mon, Dec 28, 2020 at 11:15 AM Aaron Wendel
> mailto:aa...@wholesaleinternet.net>
<mailto:aa...@wholesaleinternet.net
<mailto:aa...@wholesaleinternet.net>>> wrote:
>
> The $300 covers the equipment and the time to send someone
out to a
> house to install it. If $300 is too much you can pay in 12
> installments
> of $25.
>
> The TIK alone costs us about $250.
>
> Aaron
>
>
> On 12/27/2020 5:04 AM, Mark Tinka wrote:
> >
> >
> > On 12/26/20 20:48, Darin Steffl wrote:
> >
> >> Aaron,
> >>
> >> One simple question. Why on earth would you offer free
internet
> >> service? How and why? Your site show 1 Gig symmetrical
for free
> when
> >> you should be a minimum of $65 per month to be competitive.
> >
> > They also ask for no monthly fee after a single payment
of US$300.
> >
> > Considering the 2Gbps package costs US$49.95, you'd guess
they'd
> value
> > the 1Gbps service at, say US$27/month, give or
Re: 10g residential CPE
Oh, we still get calls about speed issues. It's always wonderful when someone puts their own 10 year old Linksys WRT54G and double NATs behind our CPE then sends in a speed test wondering why they're only getting 10Mbits on their Gbit line. We get those ALL the time. :) On 12/29/2020 1:28 AM, Mark Tinka wrote: On 12/29/20 04:41, Keith Medcalf wrote: Are you sure that is not related to "residential services" being of a generally lower quality than business services? It has been my experience that shoddy service generates higher need for "support" than does "non-shoddy" service. In this regard, the price for "business" services should be less than "residential service" by a couple of orders of magnitude since it costs orders of magnitude more money to "support" shoddy services than non-shoddy services. Considering that Aaron said 98% of their residential customers are on the free plan, and that they use Active-E with every 1Gbps customer getting a proper switch port, I'd hazard the bulk of their support queries to be non-techie customers needing software support (grandma, et al), or fibres being cut. It wouldn't seem like they'd be getting calls about "speed" issues, which are most annoying ones :-). Mark. -- Aaron Wendel Chief Technical Officer Wholesale Internet, Inc. (AS 32097) (816)550-9030 http://www.wholesaleinternet.com
Re: 10g residential CPE
The majority of our customers are still on Brocade MLXs. We're in the process of upgrading all our equipment to Arista switches to accommodate the increased demand for 40G and 100G ports as well as implement 400G ports. Aaron On 12/29/2020 3:33 AM, Jonathon Exley wrote: Hi Aaron, Just out of interest, what switch gear are you using? You must have a pretty good cost per port. Jonathon. On 29/12/2020 9:38 AM, Aaron Wendel wrote: We prioritize calls based on severity. If both Google and Grandma call and say they have a cut then we have people to service both at the same time. If Google, Century Link, Verizon, AT&T and Grandma all call then Grandma gets to wait a day. That being the case, it's not dependent on revenue. Emergency Services (911 and Police radio feeds) gets #1 priority even though they're non-paying. But yes, in extreme situations the residential customers would be delayed to service the paying customers. We do have people cross trained from other parts of our businesses so we can allocate internally in emergencies. In almost a decade though I can't think of a situation where someone had to wait for service because we didn't have the resources to service them. Aaron On 12/28/2020 2:02 PM, Mel Beckman wrote: > Darin, > > Surely you at least give the paying customers priority over the > non-paying? It’s one thing to say “I have to write paychecks no matter > what”. It’s another to say “I’ll give away my support to free > customers AND degrade support for paying customers as a result.” Your > tech support guy “walking Grandma through getting her email” is > necessarily not accessible for the duration to paying customers. > > This means your staffing must be large enough to never have any > queuing, or you’re giving away your paying customers' time to > non-paying customers. Neither approach is scalable in a competitive > business environment, because SOMEBODY is paying for all those > resources, and if it’s your customers, they will buy elsewhere. Your > approach only work until you run out of other people’s money. > > -mel > >> On Dec 28, 2020, at 11:50 AM, Baldur Norddahl >> mailto:baldur.nordd...@gmail.com>> wrote: >> >> I applaud your commitment to helping your local community. Just want >> to point out that this is a charity because it does not scale. Nobody >> could build out a FTTH network and make it free as a business case. >> But there are plenty of people that made a network for their >> neighbors and provided that for free. Maybe a person had a commercial >> fiber to his home and thought he could just as well share it. This >> might be on a bigger scale but it is the same. >> >> Regards, >> >> Baldur >> >> >> On Mon, Dec 28, 2020 at 8:27 PM Aaron Wendel >> mailto:aa...@wholesaleinternet.net>> wrote: >> >> Darin, >> >> Our business support and residential support is the same >> department. I >> have to pay those people to be in the office either way so it >> doesn't >> cost me any "more" to provide support for the residences. Yes, >> walking >> Grandma through getting her email can sometimes be a chore but that >> person is on the payroll whether he/she is helping Grandma or >> sitting >> there chatting with his/her co-worker. If we dumped all the >> residential >> customers we would still have the same cost structure we do now. >> >> Again, it's been free for the last 7 years at this point. I've >> never >> been one to really do what I "should" anyway. >> >> Aaron >> >> >> On 12/28/2020 11:48 AM, Darin Steffl wrote: >> > Aaron, >> > >> > The "Free" service doesn't cover your cost of support which is >> much >> > higher for residential than any business customer. Our residential >> > customers call at least 15x more often compared to business >> customers >> > compared on a 1:1 ratio. >> > >> > I honestly can't fathom providing free residential service >> because we >> > make enough money on the business side of things. You should be >> > charging something, at least $20-30 per month. >> > >> > On Mon, Dec 28, 2020 at 11:15 AM Aaron Wendel >> > > <mailto:aa...@wholesaleinternet.net> >> <mailto:aa...@wholesaleinternet.net >> <mailto:aa...@wholesaleinternet.net>>> wrote: >> > >> > The $300 covers the equipment and the time to send someone >> out to a >> > house to install it. If $300 is too much you can pay in 12 >&
Re: 10g residential CPE
It does have wireless. That doesn't prevent people from trying to use
their old equipment in addition. ("My dad's uncle's cousin's former
roommate works in IT and told me I just needed to plug my old router
into your new router.")
On 12/29/2020 10:53 AM, Michael Thomas wrote:
On 12/29/20 8:42 AM, Aaron Wendel wrote:
Oh, we still get calls about speed issues. It's always wonderful when
someone puts their own 10 year old Linksys WRT54G and double NATs
behind our CPE then sends in a speed test wondering why they're only
getting 10Mbits on their Gbit line. We get those ALL the time. :)
Does your CPE not have wireless? If it's double NAT'ing it's at least
a router. If it doesn't have wireless, wouldn't it be cheaper to add
it so you don't get the support calls?
Mike
--
Aaron Wendel
Chief Technical Officer
Wholesale Internet, Inc. (AS 32097)
(816)550-9030
http://www.wholesaleinternet.com
Re: netflow in the core used for surveillance
You know they do. On 8/25/2021 4:13 PM, Randy Bush wrote: https://www.vice.com/en/article/jg84yy/data-brokers-netflow-data-team-cymru used to get dissidents, activists, and journos killed at&t, comcast, ... zayo, please tell us you do not do this. randy
