Re: BGP attributes through IGP
iBGP over GRE? On Thu, Mar 6, 2014 at 2:58 PM, Bryan Ashley bja8...@gmail.com wrote: so this scenario was a much more scaled down version of the actual topology. Basically I have a gap of routers that I don't manage or have access to in between mine running eBGP. We are collecting some metrics and doing monitoring on the AS-PATH of the routes received, among other attributes, for both ends so losing some of this information is a problem. Again, I know the right answer here is to run iBGP across the IGP and I am fighting that fight but it got me looking for alternative solutions and figured I would see if anyone else ever had to come up with a creative solution before. On Thu, Mar 6, 2014 at 4:09 PM, Saku Ytti s...@ytti.fi wrote: On (2014-03-06 10:37 -0500), Bryan Ashley wrote: My searches have come up a little short however I found a couple references to using automatic-tag and as-path tag to carry this through. I cant seem to find any Junos reference information on this so wanted to reach out to the ether and see if others have faced this situation before or have any other recommendations on solutions. I don't think JunOS supports this. It's bit of hack at any rate. It's not transporting AS_PATH, it's transporting single 16b ASN. It's essentially abusing (some what well-defined and interoperable abuse) 32b tag field for this purpose. Maybe you could try to do some of this manually, set some tags, which trigger 'set then origin x', as-path-expand/prepend might be more challenging. Recommendation for solution might be easier with rationale why you need to transport origin+aspath over IGP. -- ++ytti
Re: What routers do folks use these days?
+1 for Brocade MLXe. Good Price. Good stuff. Good TAC. On Fri, Nov 29, 2013 at 1:19 AM, Fredy Kuenzler kuenz...@init7.net wrote: Am 29.11.2013 06:37, schrieb Jawaid Desktop: We're a service provider, and we have a network full of Cat6509's. We are finding that we are outgrowing them from the standpoint of their ability to handle lots of large routing tables. Obviously their switching capability is still superb but one of them with 20 peers is starting to groan a bit and RAM is going to be an issue soon. What do people use these days? Our backbone needs in the next 2-3 years are going to be sub-100Gbps. Check the Brocade MLXe series. We (Init7 / AS13030) are using them and the previous XMR series for years and are happy with it. CLI is Cisco-look-and-feel, the software tree has a clear structure (unlike Cisco with hundreds of versions) and the TAC is willing to ssh into your gear to assist. -- Fredy Kuenzler Init7 (Switzerland) Ltd. AS13030 St. Georgen-Strasse 70 CH-8400 Winterthur Twitter: @init7 / @kuenzler http://www.init7.net/
Looking for MX clue at cable.comcast.net
When I try to us the automated form to unblock my server's IP I get: *** 67.22.175.244 We have received your request for removal from our inbound blocklist. After investigating the issue, we have found that the IP you provided for removal is currently not on our blocklist. We need the IP address currently blocked to further investigate this issue. The IP address is a number separated by decimals and is located in an error code starting with 550 in the returned email from Comcast. Please verify the IP(s) and resubmit your request to http://postmaster.comcast.net *** and yet I consistently get: Remote host said: 554 Transaction Failed Spam Message not queued. when trying to send any email from the above mentioned IP. Please contact me via efinley at emerytelcom.com (from a non comcast address so I can email you back) or directly @ 435.636.0069 Thanks, Elliot
Re: Looking for MX clue at cable.comcast.net
Correction: It's cable.comcast.com (not .net) and it turns out that that is the domain used by comcast employees not customers. our mail gets delivered to comcast customers just fine, just not to comcast employees. I have to say that the tier 1 person I talked to was fairly clueful regarding possible issues delivering to comcast customers, but she didn't have any knowledge about the employee domain. If postmas...@cable.comcast.com sees this, please give me a call: 435.636.0069. I'd like to get this resolved ASAP. Thanks, Elliot On Fri, Aug 3, 2012 at 2:19 PM, Elliot Finley efinley.li...@gmail.com wrote: When I try to us the automated form to unblock my server's IP I get: *** 67.22.175.244 We have received your request for removal from our inbound blocklist. After investigating the issue, we have found that the IP you provided for removal is currently not on our blocklist. We need the IP address currently blocked to further investigate this issue. The IP address is a number separated by decimals and is located in an error code starting with 550 in the returned email from Comcast. Please verify the IP(s) and resubmit your request to http://postmaster.comcast.net *** and yet I consistently get: Remote host said: 554 Transaction Failed Spam Message not queued. when trying to send any email from the above mentioned IP. Please contact me via efinley at emerytelcom.com (from a non comcast address so I can email you back) or directly @ 435.636.0069 Thanks, Elliot
Re: 10G switchrecommendaton
On Thu, Feb 9, 2012 at 10:31 AM, Leigh Porter leigh.por...@ukbroadband.com wrote: Based on this thread I has Arista in today for a show'n'tell and it is pretty impressive both in terms of features (features that you actually use) and pricing. So a couple of evals on the way... Let us know how the eval goes if you would. Thanks, Elliot
DNS DoS ???
my DNS servers were getting slow so I blocked recursive queries for all but my own network. Then I was getting so many of these: ns2 named[5056]: client 78.159.111.190#25345: query (cache) 'isc.org/ANY/IN' denied that is was still slowing things down. I've since written a script to watch the log and throw these into the box local firewall. If I expire the entries after 24 hours then I accumulate about 10200 unique IPs. If I expire after 48 hours, then it's just over 2 unique IPs. Is anyone else seeing this? Elliot
Business Ethernet Services
Anyone using a CPE that is reliable and costs = $300 ? features needed: SFP for uplink, QnQ, basic layer 2 functionality. If you're using something with the above parameters and you like it, please share. :) Thanks, Elliot
Real World NAT64 deployments
So as not to re-invent the wheel - if you are currently doing NAT64 in production and are willing to share: What software/hardware are you using? Why? TIA Elliot