Re: Software Defined Networking

[Tyler Mills]

Would be hard to prove that you implicitly agreed to the constraints
mentioned within the email by just merely receiving it and reading it.
Even EULA's require you to check a box or click "I Accept."

On Fri, Sep 4, 2015, 2:30 PM Larry Sheldon  wrote:

> On 9/4/2015 12:57, Aaron C. de Bruyn wrote:
> > I think it's time to change my SMTP greeting to:
> >
> > 220-By submitting e-mail to this server, you agree all legal
> > disclaimers are null and void.
> > 220 You also agree that I am awesome.
>
> I like that.  Unfortunately, I no longer operate a mail host.
>
> I have been trying to figure out how to mechanically route messages
> containing them to the spam sump.
>
> IANAL, but I thing an interesting case would be trying to enforce that
> crap in a situation involving unsolicited email (as in this case).
>
> --
> sed quis custodiet ipsos custodes? (Juvenal)
>

Re: Whats' a good product for a high-density Wireless network setup?

[Tyler Mills]

With that many users I cannot recommend Ubiquiti, Ruckus would be the way
to go.

On Fri, Jun 19, 2015 at 1:58 AM Sina Owolabi notify.s...@gmail.com wrote:

 Hi

 We are profiling equipment and design for an expected high user density
 network of multiple, close nit, residential/hostel units. Its going to be
 8-10 buildings with possibly a over 1000 users at any given time.
 We are looking at Ruckus and Ubiquiti as options to get over the high
 number of devices we are definitely going to encounter.

 How did you do it, and what would you advise for product and layout?

 Thanks in advance!

-- 
Tyler W. Mills
Infrastructure and Network Engineer
Atlanta,  GA.

Re: OPM Data Breach - Whitehouse Petition - Help Wanted

[Tyler Mills]

This is the government... you have to put on your bizarro-economics and
bizarro-ethics glasses for the State to make sense.

It does not operate like a market.  Failure results in people being
shuffled around, and larger budgets. Failure justifies more control and
power.  People get taken down for political reasons, not based on a lack of
ability or lack of virtue.

I would hope this measure succeeds and to see something meaningful come out
of it, I just don't see it happening.



On Wed, Jun 17, 2015 at 8:56 PM Ronald F. Guilmette r...@tristatelogic.com
wrote:


 My apologies in advance to any here who might feel that this is off
 topic... I don't personally believe that it is.  Frankly, I don't
 know of that many mailing lists where the subscribers are likely to
 care as much about network security (and/or the lack thereof) as the
 membership of this list does.

 By now, most of you will have read about the massive federal data breach
 at the U.S. Government's Office of Personnel Management (OPM), and also
 the fact that (by OPM's own preliminary estimates) this massive data breach
 affects at least four million federal government employees... but perhaps
 as many as 14 million current and former employees.  However as this
 story is still evolving, even as we speak, you may perhaps not be familiar
 with the following additional important facts that have just come out:

 *)  In addition to ordinary government personel records, including
 the usual kinds of frequently-hacked personal information (e.g.
 social security numbers), an as-yet undetermined number of highly
 detailed 127-page government security clearance forms (SF86)
 containing vast and intimate details of virtually every aspect
 of the lives of essentially EVERYONE who has applied for or been
 granted a government security clearance at any time within THE
 PAST 30 YEARS have also been hacked/leaked.

 (Experts seem to agree that this security clearance data
 constitutes
 and absolute gold mine and treasure trove of information for
 foreign
 intelligence services, opening up vast possibilities for phishing,
 blackmail, and on and on.)

 *)  The Director of the Office of Personnel Management, Ms. Katherine
 Archueta was warned, repeatedly, and over several years, by her
 own department's Inspector General (IG) that many of OPM's systems
 were insecure and should be taken out of service.  Nontheless, as
 reveled during congressional testimony yesterday, she overruled
 and ignored this advice and kept the systems online.

 Given the above facts, I've just started a new Whitehouse Petition, asking
 that the director of OPM, Ms. Archueta, be fired for gross incompetence.
 I _do_ understand that the likelihood of anyone ever getting fired for
 incompetence anywhere within the Washington D.C. Beltway is very much of
 a long shot, based on history, but I nontheless feel that as a U.S.
 citizen and taxpayer, I at least want to make my opinion of this matter
 known to The Powers That Be.

 I *really* would like some help from members of this list on this endeavor.
 In particular, if you agree, I'd appreciate it if you would sign my
 petition,
 and, whether you agree or not, I sure would appreciate it if you would all
 share the following URL widely:


 https://petitions.whitehouse.gov//petition/immediately-fire-office-personnel-managements-director-katherine-archueta-gross-incompetence

 Note that Whitehouse petitions do not even get properly or completely
 published on the Whitehouse web site until such time as they receive at
 least 150 signatures.  I am hoping that members of this (NANOG) mailing
 list will help me to get past that threshold.

 Thanks for your attention.


 Regards,
 rfg

-- 
Tyler W. Mills
Infrastructure and Network Engineer
Atlanta,  GA.

Re: Lists of VPN exit addresses?

[Tyler Mills]

I'd imagine it is quite easy for a lot of these providers to have a
pre-configured virtual machine template or cd image that they can deploy
across the board amongst a plethora of different VPS solutions as well.
Being able to bring up exit points on the fly would be very helpful in
bypassing censorship.

On Wed, Jun 10, 2015 at 12:39 PM Bacon Zombie baconzom...@gmail.com wrote:

 Well if they are using Hola then EVERY person with it installed is an
 exit-node.

 http://adios-hola.org


 https://m.reddit.com/r/netsec/comments/37rit3/adios_hola_why_you_should_immediately_uninstall/
 On 10 Jun 2015 14:28, Jared Mauch ja...@puck.nether.net wrote:

 
   On Jun 10, 2015, at 8:08 AM, Roland Dobbins rdobb...@arbor.net
 wrote:
  
  
   On 10 Jun 2015, at 18:56, John Levine wrote:
  
   I presume there is no need to explain why this would be of interest.
  
   To keep consumers who've legitimately purchased/rented/subscribed to
  content from accessing same when they travel internationally?
  
   Because as a regular international traveler, that's what springs to
 mind
  when I see requests like this.
  
   Another thought is governmentally-driven censorship, something else I
  encounter a lot in my travels.
 
  I’ll just simplify this and say that the Tor Project publishes a list of
  its exit nodes so you can block these if your abuse/fraud requirements
  necessitate this.
 
  https://check.torproject.org/cgi-bin/TorBulkExitList.py
 
  If it’s for geolocation blocking, I’m in favor of these political
  limitations to go away.  It doesn’t take a genius to bypass these if
 that’s
  your intent.
 
  - Jared

Re: Recommended wireless AP for 400 users office

[Tyler Mills]

Most of the issues are related to firmware.  Most of my UBNT experience was
with the UAP-Pro and the UAP-AC, and it wasn't a good experience.
Production firmwares seem to be of beta quality.

For features, they can't compete with Ruckus.  One thing I can think of off
the top of my head is support for tagging management on its own VLAN and
tagging wired traffic onto another.  If you were to implement this on the
UBNT products you would have to SSH into every single one and implement the
features as you would on a linux box, and it might work.  Ruckus, you
configure the VLAN's how you would want through the Zonedirector or the
AP's GUI and it will just work.

They cost more, but you get what you pay for.

On Thu Jan 29 2015 at 10:54:44 AM Mike Hammett na...@ics-il.net wrote:

 Did you figure out why it was dropping out? All of it dropping out? Just
 some APs dropping? Just some users dropping?




 -
 Mike Hammett
 Intelligent Computing Solutions
 http://www.ics-il.com



 - Original Message -

 From: Paul Stewart p...@paulstewart.org
 To: Mike Hammett na...@ics-il.net, nanog@nanog.org
 Sent: Thursday, January 29, 2015 8:34:46 AM
 Subject: RE: Recommended wireless AP for 400 users office

 I had a bad experience with it one time at a tradeshow environment. 6
 access points setup for public wifi. The radio levels were quite good in
 various areas of the tradeshow however traffic would keep dropping out at
 random intervals as soon as about 300 users were online. It wasn't my idea
 to use UBNT but it definitely turned me off of their product after digging
 into their gear...

 Again as someone pointed out, for residential and perhaps SOHO
 applications it can probably work well - and in my opinion it's priced for
 that market.

 Paul


 -Original Message-
 From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Mike Hammett
 Sent: Thursday, January 29, 2015 8:23 AM
 To: nanog@nanog.org
 Subject: Re: Recommended wireless AP for 400 users office

 What problems have you had with UBNT?

 It's zero hand-off doesn't work on unsecured networks, but that's about
 the extent of the issues I've heard of other than stadium density
 environments.




 -
 Mike Hammett
 Intelligent Computing Solutions
 http://www.ics-il.com



 - Original Message -

 From: Manuel Marín m...@transtelco.net
 To: nanog@nanog.org
 Sent: Wednesday, January 28, 2015 11:06:39 PM
 Subject: Recommended wireless AP for 400 users office

 Dear nanog community

 I was wondering if you can recommend or share your experience with APs
 that you can use in locations that have 300-500 users. I friend recommended
 me Ruckus Wireless, it would be great if you can share your experience with
 Ruckus or with a similar vendor. My experience with ubiquity for this type
 of requirement was not that good.

 Thank you and have a great day

Re: Recommended wireless AP for 400 users office

[Tyler Mills]

Have had a lot of experience with Ruckus(and Unifi unfortunately).  The
Ruckus platform is one of the best. If you will be responsible for
supporting the deployment, it will save you a lot of frustration when
compared with UBNT.

On Thu Jan 29 2015 at 12:18:54 AM Mike Lyon mike.l...@gmail.com wrote:

 Check out Xirrus
 On Jan 28, 2015 9:08 PM, Manuel Marín m...@transtelco.net wrote:

  Dear nanog community
 
  I was wondering if you can recommend or share your experience with APs
 that
  you can use in locations that have 300-500 users. I friend recommended me
  Ruckus Wireless, it would be great if you can share your experience with
  Ruckus or with a similar vendor.  My experience with ubiquity for this
 type
  of requirement was not that good.
 
  Thank you and have a great day
 

Re: Here comes iOS 8...

[Tyler Mills]

The download was ~1.1GB, the installer requires almost 5GB free to proceed.

Tyler.

On 9/17/14 9:04 PM, JoeSox wrote:

Grant,
Do you have a reference? Someone just told me it is more around 5GB.

--
Later, Joe

On Wed, Sep 17, 2014 at 10:31 AM, Grant Ridder shortdudey...@gmail.com
wrote:


For those that are curious, it looks like the download is 1.1 gigs.

-Grant

On Wed, Sep 17, 2014 at 10:04 AM, Nick Olsen n...@flhsi.com wrote:


I've been waiting all morning.

  Expedited repair of a primary link to prepare for the traffic. Not that

it

didn't have multiple backups. But one doesn't trifle with IOS8 release
traffic.. If it's anything like IOS7 was..

  Nick Olsen
Network Operations  (855) FLSPEED  x106



  From: Zachary McGibbon zachary.mcgibbon+na...@gmail.com
Sent: Wednesday, September 17, 2014 12:59 PM
To: NANOG nanog@nanog.org
Subject: Here comes iOS 8...
So Apple is about to release iOS 8... Have you done anything special to
your network setup to accommodate the traffic flood ie traffic shaping
rules, cache servers, etc?

I heard that Apple Caching servers won't work with this update, so I'm
guessing it will be pushed through Akamai servers as is usually is.

- Zachary