Re: AWS S3 DNS load balancer

[Dan Halperin via NANOG]

Hi Deepak.

Amazon documents the IPs for their public and private cloud services:
https://docs.aws.amazon.com/general/latest/gr/aws-ip-ranges.html

(I know this because Batfish uses these in its reachability analysis, for
example, "Make sure all outgoing flows to S3 are permitted by the
firewall".)

Thanks,
Dan

On Tue, Jun 15, 2021 at 5:07 AM Karl Auer  wrote:

> On Tue, 2021-06-15 at 11:37 +, Deepak Jain wrote:
> > (I’m talking specifically about S3 not Route5x or whatever the DNS
> > product is).
>
> Route53.
>
> Not sure what you mean by "S3 DNS". I wasn't aware S3 had any DNS
> functionality at all... on the other hand, there is much indeed that I
> do not know.
>
> Regards, K.
>
> --
> ~~~
> Karl Auer (ka...@biplane.com.au)
> http://www.biplane.com.au/kauer
>
>
>
>
>

Re: Apple Catalina Appears to Introduce Massive Jitter - SOLVED! - Update!

[Dan Halperin via NANOG]

FWIW, in this really interesting read

about
the latest vulnerability released by Project Zero, they talk about AWDL and
how if this is in use (AirDrop enabled?) then you're going to get tons of
jitter/packet loss.

In this way [TDM hopping between Wi-Fi Access Point and AWDL Mesh] the
> device can appear to be connected to the access point whilst also
> participating in the AWDL mesh at the same time. Of course, frames might be
> missed from both the AP and the AWDL mesh but the protocols are treating
> radio as an unreliable transport anyway so this only really has an impact
> on throughput. A large part of the AWDL protocol involves trying to
> synchronize the channel switching between peers to improve throughput.


Dan

On Sun, Nov 22, 2020 at 2:30 PM d...@darwincosta.com 
wrote:

>
>
> On 22 Nov 2020, at 20:43, J. Hellenthal  wrote:
>
> You can supposedly still use 4.5 4.6 on Big Sur if you do the following
> but I have not tested it on Little Snotch, works fine for personal software
> and others ...
>
> codesign -dvvv littlesnitch.package name
> Save the team identifier
> Boot into recovery mode
> Open terminal and type the following...
> spctl kext-consent add 
> Reboot into normal user mode and install version 4
>
> Thanks for the hint. Will have a look into it.
>
>
>
>
> --
>  J. Hellenthal
>
> The fact that there's a highway to Hell but only a stairway to Heaven says
> a lot about anticipated traffic volume.
>
> On Nov 22, 2020, at 11:55, d...@darwincosta.com wrote:
>
> 
>
> On 22 Nov 2020, at 10:17, Mark Tinka  wrote:
>
>  So after installing Little Snitch and basically denying "trustd" any
> kind of Internet access, I have been seeing reasonably normal jitter with
> Bluetooth enabled.
>
> I actually “saw the same” on Catalina while using little snitch.
>
> “Saw the same” after installing yesterday Big Sur and suddenly received a
> notification “this version of little snitch is no longer supported by
> macOS. It’s looks like I have to pay 25€ for a new compatible version.
>
>
> It's not that Bluetooth stops scanning, but it's not scanning as
> aggressively. So after a few minutes, there will be very high jitter when
> Bluetooth scans the environment, but it would affect only a single packet.
> It's easily reduced its chattiness by 99%.
>
> I don't have any empirical data to support the claim that Little Snitch
> has anything to do with it (and I am too lazy to dig further into it), but
> the reduction in jitter is massively noticeable since Little Snitch. Which
> means I can now run Catalina with Bluetooth enabled and not have any wi-fi
> problems.
>
> Just FYI, for the archives :-).
>
> Mark.
>
> Cheers,
> Darwin-.
>
>

Re: do we not get agenda of nanog meeting in advance ?

[Dan Halperin via NANOG]

On Mon, Jan 21, 2019 at 11:49 AM Mankamana Mishra (mankamis) via NANOG <
nanog@nanog.org> wrote:

> Hi,
>
> I was trying to figure out what is the agenda / presentation in Nanog 75 ?
> does it not get published in advance ?
>
>
Per the CFP (
http://www.cvent.com/events/nanog-75/custom-22-948222eca5834bc2b7a679399063e724.aspx
under Key Dates), the agenda will be published tomorrow.

Dan