Inmarsat contact

2014-12-18 Thread Claudio Lapidus 
Hello people,

Does anyone knows someone at Inmarsat? I need to get in contact with a tech
over there.

thanks in advance,
cl.

Re: DPI deployment use case

2011-10-07 Thread Claudio Lapidus 
Hello,

On Thu, Oct 6, 2011 at 8:00 PM, Martin Millnert  wrote:

> I've seen tyrannical governments use Bluecoat's to crack down on their
> own population(*).
> Was this the sort of use-case you were looking for? :)
>
Ummm, not really... :)

Actually, we've been faced with proposals to build services based on traffic
classification, like e.g. "access our own webmail and all social networking
sites, but not skype and video" or the capability to do exact metering based
on net traffic time or volume, as well as being able to redirect the
customer to various captive portals using HTTP redirect directly from the
DPI box, and such.

What I'm interested to know, is if someone has actually had some success
with service offerings like these, or if it can be used to implement some
other kind of value-added service in the network access provider field.

I am fully aware of the net-neutrality implications this might have, but
anyway, putting that aside for a moment, I would like to explore the
possibilities that this technology brings in.

thanks again,
cl.

DPI deployment use case

2011-10-05 Thread Claudio Lapidus 
Hello all,

We have had a number of DPI boxes (SCE8080) sitting in the access network
for a while now, so far they served mainly for congestion management and
such, and are wondering if there are some real use case in the fine-grained
service control land (as the vendors keep whispering in out ears...) Anyway,
we are reviewing a couple of service manager solutions, but I would like to
hear from you operators, what actual use cases have you seen in the field
(if any) for DPI'ing user sessions, considering we are mostly a DSL shop.

thanks in advance,
cl.

Re: 23,000 IP addresses

2011-05-10 Thread Claudio Lapidus 
Hello,

On Tue, May 10, 2011 at 4:02 PM, Owen DeLong  wrote:

>  In the US, I believe that CALEA requires you to have those records for 7
> years.
>
FWIW, in Argentina there is a requirement to hold all records for a full ten
years. A sweet bite for the storage folks here...

regards,
cl.

Re: network name 101100010100110.net

2010-10-18 Thread Claudio Lapidus 
Day,

> does anyone see any issues with this?

Please, I strongly urge you to consider the ergonomics in question.
That name is REALLY hard to read, spell, pronounce, type, recognize,
etc.

Agreed that there are no technical roadblocks, but again, please use
common sense and choose something that doesn't make everybody's life
more complicated. A domain name is something that sticks for many
years and is of daily use in many many areas, and even more when it is
for designating a transit ISP.

my 2 cents,
cl.

Re: ISP port blocking practice

2010-09-05 Thread Claudio Lapidus 
Hello all,

On Fri, Sep 3, 2010 at 11:30 PM, Ricky Beam  wrote:
>
> If I block port 25 on my network, no spam will originate from it.
> (probablly) The spammers will move on to a network that doesn't block their
> crap.  As long as there are such open networks, spam will be rampant.  If,
> overnight, every network filtered port 25, spam would all but disappear.
>  But spam would not completely disappear -- it would just be coming from
> known mailservers :-)  thus enters outbound scanning and the frustrated user
> complaints from poorly tuned systems...
>

That won't be probably the case. Here recently we conducted a rather
comprehensive analysis on dns activity from subscribers, and we've
found that in IP ranges that already have outgoing 25 blocked we were
still getting complaints about originating spam. It turned out that
the bots also know how to send through webmail, so port 25 blocking
renders ineffective there.

--cl.

Mail Submission Protocol

2010-04-21 Thread Claudio Lapidus 
Hello all,

At our ISP operation, we are seeing increasing levels of traffic in our
outgoing MTA's, presumably due to spammers abusing some of our subscribers'
accounts. In fact, we are seeing connections from IPs outside of our network
as many as ten times of that from inside IPs. Probably all of our customers
are travelling abroad and sending back a lot of postcards, but just in
case... ;-)

So we are considering ways to further filter this traffic. We are evaluating
implementation of MSA through port 587. However, we never did this and would
like to know of others more knowledgeable of their experiences. The question
is what best practices and stories do you guys have to share in this regard.
Also please let me know if you need additional detail.

thanks in advance,
cl.

Re: PL/SQL & CIDR?

2010-03-12 Thread Claudio Lapidus 
Not in Oracle, but PostgreSQL has a very robust implementation for CIDR,
including not only datatypes but also a host of operators to deal with them.
Being opensource, it always seemed plausible to me to port the functionality
into Oracle, learning from their implementation. Never got to actual
development, though.

hth,
cl.


On Fri, Mar 12, 2010 at 2:13 PM, J.D. Falk wrote:

> Does anyone know of a library, sample code, etc. to help Oracle PL/SQL do
> CIDR math?
>
> --
> J.D. Falk 
> Return Path Inc
>
>
>
>
>
>

DNS server software

2010-02-22 Thread Claudio Lapidus 
Hello all,

We are a mid-sized carrier (1.2M broadband subscribers) and we are looking
for an upgrade in our public DNS resolver infrastructure, so we are
interested in getting to know what are you guys using in your networks.
Mainly what kind/brand of software and which architecture did you use to
deploy it, and how did you do the sizing, all of it would be most helpful
information.

Many thanks in advance for your advice!
cl.