Re: Clearwire/Clear for branch office connectivity?
Is anyone using Clearwire/Clear's wireless broadband offering for stationary branch offices/remote equipment monitoring? Looking for results/experiences off-list. Curious as to reliability, link performance, and support quality. Me too! I'd love to hear from anyone that's used it extensively. Thanks! Brandon -- Brandon Galbraith US Voice: 630.492.0464
Re: Problems at HE.net?
I have equipment in Fremont-2 that seems to be unaffected. I'm also currently in town (upgrade time) and can kick machines or provide temporary hosting at my cab if need be... Unfortunately, I don't currently have any more info to add. :( -Tico I was trying to use http://bgp.he.net a few minutes ago. No dice. Jeff On Sun, Nov 21, 2010 at 2:19 AM, p8x l...@p8x.net wrote: On 21/11/2010 3:15 PM, Ulf Zimmermann wrote: Friend lost machines, one came up, other machines on same power did not. Phone goes immediatly to voice mail. Anyone know what is going on? I believe there is currently a power outage in some parts of Fremont, that could be the cause (Linode is currently experiencing difficulties due to power in their Fremont DC, http://status.linode.com/2010/11/possible-power-outage-in-fremont.html). -- Jeffrey Lyon, Leadership Team jeffrey.l...@blacklotus.net | http://www.blacklotus.net Black Lotus Communications - AS32421 First and Leading in DDoS Protection Solutions
Re: How polluted is 1/8?
On 2/4/10 2:14 PM, Christopher Morrow wrote: I know someone who'd happily sink both the /24's in question.. if apnic's interested. Ditto. On Thu, Feb 4, 2010 at 2:30 PM, Jared Mauchja...@puck.nether.net wrote: On Feb 4, 2010, at 1:27 PM, Kevin Loch wrote: Mirjam Kuehne wrote: Hello, After 1/8 was allocated to APNIC last week, the RIPE NCC did some measurements to find out how polluted this block really is. See some surprising results on RIPE Labs: http://labs.ripe.net/content/pollution-18 Please also note the call for feedback at the bottom of the article. The most surprising thing in that report was that someone has an AMS-IX port at just 10 megs. It would be nice to see an actual measurement of the traffic and daily/weekly changes. A breakdown of the flow data by source ASN and source prefix (for the top 50-100 sources) would also be interesting. There was a call on the apnic list for someone to sink some of the traffic. I'd like to see someone capture the data and post pcaps/netflow analysis, and possibly just run a http server on that /24 so people can test if their network is broken. I've taken a peek at the traffic, and I don't think it's 100's of megs, but without a global view who knows. - Jared
HE.net, Fremont-2 outage?
Hey guys, I can't get through to Hurricane Electric, and they seem to be having an outage at their Fremont-2 facility again (as of 17:30 UTC or thereabouts) -- ticket system is unanswered, phones go to voicemail, all equipment is unreachable. Does anyone here have a presence at 48233 Warm Springs Blvd, that can provide any information about this? I got hit by the ATS failure last month, so I guess it's possible that that equipment may have flaked again. -t
Re: Hurricane Electric
Paul Stewart wrote: Hi folks... Looking for some feedback on using Hurricane Electric as an upstream? I'll second what others have already said. I've interacted with them a decent bit, and have always gotten prompt, knowledgeable, and helpful support and service when I've called/emailed. They've got simple, consistent, and reliable service, though they don't deviate much from what they've standardized on which is most likely the main reason they can offer the pricing that they do. So far, they hold the rare title of being the *only* transit provider that I've used that has never pissed me off. Plus they're IPv6 native across the board, if you care about that sort of thing. Cheers, Tico Thanks, Paul The information transmitted is intended only for the person or entity to which it is addressed and contains confidential and/or privileged material. If you received this in error, please contact the sender immediately and then destroy this transmission, including all attachments, without copying, distributing or disclosing same. Thank you.
Re: Global Blackhole Service
Jens, I would be interested in participating with a destination blackhole service, so long as peers were authenticated and only authorized to advertise /32s out of space that they are assigned -- hopefully the same OrgID is used for the ASN as the IP allocations. However, a blackhole service based on sources would be out of the question altogether in my book, unless paired with a number of third parties that could vet the badness of those source IPs, as is done with spam zombies. Even then I'd be very nervous about it from a causes more [potential] problems than it fixes standpoint, no matter how cool it would be to defang a DDoS. As for the memory requirements / oh no! too many routes! issue, that would be a non-issue for me. Feel free to contact me off-list if you're serious about starting this project. I think that it would be worth it to talk to the Team Cymru guys to see if they'd be interested in this. -Tico Jens Ott - PlusServer AG wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi, in the last 24 hours we received two denial of service attacks with something like 6-8GBit volume. It did not harm us too much, but e.g. one of our upstreams got his Amsix-Port exploded. With our upstreams we have remote-blackhole sessions running where we announce /32 prefixes to blackhole at their edge, but this does not work with our peers. Also our Decix-Port received something like 2Gbit extra-traffic during this DoS. I can imagine, that for some peers, especially for the once having only a thin fiber (e.g. 1GBit) to Decix, it's not to funny having it flooded with a DoS and that they might be interested in dropping such traffic at their edge. Well I could discuss with my peers (at least the once who might get in trouble with such issue) to do some individual config for some blackhole-announcement, but most probably I'm not the only one receiving DoS and who would be interested in such setup. Therefore I had the following idea: Why not taking one of my old routers and set it up as blackhole-service. Then everyone who is interested could set up a session to there and 1.) announce /32 (/128) routes out of his prefixes to blackhole them 2.) receive all the /32 (/128) announcements from the other peers with the IPs they want to have blackholed and rollout the blackhole to their network. My questions to all of you: - - What do you think about such service? - - Would you/your ASN participate in such a service? - - Do you see some kind of usefull feature in such a service? - - Do you have any comments? Thank you for telling me your opinions and best regards - -- === Jens Ott Leiter Network Management Tel: +49 22 33 - 612 - 3501 Fax: +49 22 33 - 612 - 53501 E-Mail: j@plusserver.de GPG-Fingerprint: 808A EADF C476 FABE 2366 8402 31FD 328C C2CA 7D7A PlusServer AG Daimlerstraße 9-11 50354 Hürth Germany HRB 58428 / Amtsgericht Köln, USt-ID DE216 740 823 Vorstand: Jochen Berger, Frank Gross, Jan Osthues, Thomas Strohe Aufsichtsratsvorsitz: Claudius Schmalschläger === -BEGIN PGP SIGNATURE- Version: GnuPG v2.0.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkmVilwACgkQMf0yjMLKfXpNuQCeKcicthIadISe7I+Xs5ZNHS+1 0qUAnRDkOY9/6kokq3Hf68BRQFfkP3xy =jKUA -END PGP SIGNATURE-