Re: Long BGP AS paths

2017-10-01 Thread Mark Price 
Hi Bill,

Could you list which prefix(es) you saw were being announced with these
long AS paths?


Mark



On Sat, Sep 30, 2017 at 6:29 PM, William Herrin  wrote:

> To the chucklehead who started announcing a 2200+ byte AS path yesterday
> around 18:27 EDT, I beg of you: STOP. You've triggered a bug in Quagga
> that's present in all versions released in the last decade. Your
> announcement causes routers based on Quagga to send a malformed update to
> their neighbors, collapsing the entire BGP session. Every 30 seconds or so.
>
> For everyone else: please consider filtering BGP announcements with
> stupidly long AS paths. There's no need nor excuse for them to be present
> in the DFZ and you could have saved me a painful Saturday.
>
> Cisco:
>
> router bgp XXX
>  bgp maxas-limit 50
>
>
> Juniper:
> https://kb.juniper.net/InfoCenter/index?page=content&id=KB29321
>
>
> Quagga:
>
> ip as-path access-list maxas-limit50 deny ^([{},0-9]+ ){50}
> ip as-path access-list maxas-limit50 permit .*
>
>
> Regards,
> Bill Herrin
>
>
> --
> William Herrin  her...@dirtside.com  b...@herrin.us
> Dirtside Systems . Web: 
>

Comcast throttling?

2014-10-31 Thread Mark Price 
Similar to another thread on the list today, I'm troubleshooting a problem
for a customer on Comcast business fiber.

Downloading a file from one of our web servers is very slow (~15KByte/sec).
 mtr looks clean in both directions.  I added an IP address on the same
server from a different class C on our network, and downloads form this new
IP are fast (2MByte/sec).

Tracerouting from server to client is the same using both source IPs.  But,
one IP consistently has the very slow speeds that the other does not.
Changing our outbound path between different upstreams does not make a
difference.

It certainly feels like Comcast is throttling one of our IP ranges.  Could
someone at Comcast please contact me off-list for details?


Thanks,

Mark

Re: IPv6 Default Allocation - What size allocation are you giving out

2014-10-08 Thread Mark Price 
There seem to be lots of various opinions still on this subject.

What type of customer are you dealing with, what service are they receiving?

We are allocating a /64 per customer (VPS / dedicated server / small co-lo)
but doing them on /56 boundaries so that we can easily expand their
allocation if needed, as well as back-fill more /64 allocations in that
address space.


Mark



On Wed, Oct 8, 2014 at 9:18 PM, Erik Sundberg 
wrote:

> I am planning out our IPv6 deployment right now and I am trying to figure
> out our default allocation for customer LAN blocks. So what is everyone
> giving for a default LAN allocation for IPv6 Customers.  I guess the idea
> of handing a customer /56 (256 /64s) or  a /48 (65,536 /64s) just makes me
> cringe at the waste. Especially when you know 90% of customers will never
> have more than 2 or 3 subnets. As I see it the customer can always ask for
> more IPv6 Space.
>
> /64
> /60
> /56
> /48
>
> Small Customer?
> Medium Customer?
> Large Customer?
>
> Thanks
>
> Erik
>
> 
>
> CONFIDENTIALITY NOTICE: This e-mail transmission, and any documents, files
> or previous e-mail messages attached to it may contain confidential
> information that is legally privileged. If you are not the intended
> recipient, or a person responsible for delivering it to the intended
> recipient, you are hereby notified that any disclosure, copying,
> distribution or use of any of the information contained in or attached to
> this transmission is STRICTLY PROHIBITED. If you have received this
> transmission in error please notify the sender immediately by replying to
> this e-mail. You must destroy the original transmission and its attachments
> without reading or saving in any manner. Thank you.
>

Re: Linux Router distro's with dual stack capability

2010-02-10 Thread Mark Price 
On Wed, Feb 10, 2010 at 7:12 PM, Blake Pfankuch  wrote:
> Anyone have some insight on a good dual stack Linux (or BSD) router distro?

Mikrotik RouterOS.  It is based on Linux and a bit more feature-rich
than some of the linux router distros I've tried such as IPCop.
Licenses costs a few bucks but its worth it IMHO.



Regards,

Mark

Re: Request for contact and procedure information

2009-07-09 Thread Mark Price 
Turn off your DSL modem for awhile, and hope for a new dynamic IP?


Mark



On Thu, Jul 9, 2009 at 5:35 PM, Charles Wyble wrote:
> All,
>
> I'm currently experiencing a DDOS attack on my home DSL connection.
>
> Thousands of requests to port 80.
>
> I'm on an SBC business class account.
>
> I'm guessing that calling the regular customer support won't get me
> anywhere.
>
> Any suggestions?
>
>
>
>

Re: VerizonWireless.com contact

2009-06-03 Thread Mark Price 
Please let me know if you find any clue.  The problem I'm having is we
can connect to their incoming mail server but it just throws a reject
error code with no other info:

# telnet mars.verizonwireless.com 25
Trying 162.115.163.69...
Connected to mars.verizonwireless.com (162.115.163.69).
Escape character is '^]'.
554 venus.verizonwireless.com
Connection closed by foreign host.



On Wed, Jun 3, 2009 at 4:51 PM,   wrote:
> Interesting.  I've been dealing with this exact problem for a couple of weeks 
> now. Several of our DNS servers, but not all,  can not resolve an MX for 
> vtext.com or vtext.biz. Still don't have a resolution and I'm still wading 
> through their support staff trying to find someone with a clue.
>
> -BB Odenthal
> Network Engineer
> Southern California Edison
>
>
> - Original Message -
> From: Mark Price [mpr...@tqhosting.com]
> Sent: 06/03/2009 04:15 PM AST
> To: nanog@nanog.org
> Subject: VerizonWireless.com contact
>
>
>
> Does anyone know how to get in touch with someone at Verizon Wireless
> regarding SMTP?  Part of our network seems to be blocked by their MX
> servers for verizonwireless.com and I can't find any contact info.
>
>
> Thanks,
>
> Mark
>
>
>



-- 
Mark Price
Tranquil Hosting
www.tqhosting.com
office: 919-459-0134

VerizonWireless.com contact

2009-06-03 Thread Mark Price 
Does anyone know how to get in touch with someone at Verizon Wireless
regarding SMTP?  Part of our network seems to be blocked by their MX
servers for verizonwireless.com and I can't find any contact info.


Thanks,

Mark

DNS problems to RoadRunner - tcp vs udp

2008-06-13 Thread Mark Price 
I have seen intermittent problems on some client windows servers
sending to rr.com recently.

For example, the MX hosts for triad.rr.com are:

# dig -t mx triad.rr.com

;; QUESTION SECTION:
;triad.rr.com.  IN  MX

;; ANSWER SECTION:
triad.rr.com.   1609IN  MX  10 hrndva-smtpin01.mail.rr.com.
triad.rr.com.   1609IN  MX  20 hrndva-smtpin02.mail.rr.com.


The authoritative nameservers for mail.rr.com:

# dig -t ns mail.rr.com

;; QUESTION SECTION:
;mail.rr.com.   IN  NS

;; ANSWER SECTION:
mail.rr.com.14204   IN  NS  cdptpa-admin02.mail.rr.com.
mail.rr.com.14204   IN  NS  hrndva-admin01.mail.rr.com.
mail.rr.com.14204   IN  NS  hrndva-admin02.mail.rr.com.
mail.rr.com.14204   IN  NS  cdptpa-admin01.mail.rr.com.


All 4 of those queries will answer a UDP DNS query for host record
hrndva-smtpin01.mail.rr.com.

However, the hrndva-admin01.mail.rr.com and hrndva-admin02.mail.rr.com
servers do not respond to TCP queries at all.  Example:

# dig hrndva-smtpin01.mail.rr.com @hrndva-admin01.mail.rr.com +tcp

; <<>> DiG 9.3.3rc2 <<>> hrndva-smtpin01.mail.rr.com
@hrndva-admin01.mail.rr.com +tcp
; (1 server found)
;; global options:  printcmd
;; connection timed out; no servers could be reached



>From what I have read, public DNS servers should support both UDP and
TCP queries.  TCP queries are often used when a UDP query fails, or if
the answer is over a certain length.


Any clues would be appreciated.



Mark



-- 
Mark Price
Tranquil Hosting
www.tqhosting.com