Thanks Sean. Sorry for the general fishing and vagueness of my post.
Finally I have gotten some answers from my upstreams so I have a better
idea of which gateways to prefer my traffic in & out.
James Edwards
Routing and Security
[EMAIL PROTECTED]
At the Santa Fe Office: Internet at Cyber Mesa
Are others seeing latency and slow or stalled web pages today ? I opened a ticket with
my provider,
who indicates they are seeing problems with many of their peers. I am seeing very
increased RTT to all the points
I usually trace to. The latency does start past my provider, after they hand off
> I'm not trying to start a flame war here, just pointing out
> that a variety of feeds meet many more requirements, and that there
> are several types of data feeds available now. This includes the
> recently added pure text bogon files, suitable for easy parsing.
>
> http://www.cymru.com/Bogon
alert udp $EXTERNAL_NET any -> $HOME_NET 1434 (msg:"HELL-SQL Worm
Scan";content:"|684765745466b96c6c|";classtype:attempted-admin;)
alert udp $HOME_NET any -> $EXTERNAL_NET 1434 (msg: "SQLSLAMMER";
content:"dllhel32hkernQhounthickChGetTf"; classtype:bad-unknown;)
alert udp $EXTERNAL_NET any -> $HOM
I am not getting through to speed.planet.nl in English, can anyone give
me
a decent translation of in Dutch (The Netherlands):
"Here are our logs, indicating your host is attempting to access
formmail on our web servers. We have been seeing at least 1,000 attempts
a day
for weeks from this host.
- Original Message -
From: "FX" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>
Sent: Thursday, December 19, 2002 10:06 AM
Subject: Cisco IOS EIGRP Network DoS
Hi there,
please find attached an advisory about an issue with the Cisco IOS
Enhanced
IGRP implementa
> I'm sure you can look in the archives of this list for
messages from me
> about this very thing... :) In short: "Every ISP should
have 24/7 security
> support for customers under attack." That support should
include, acls,
> null routes, tracking the attack to the ingress. Rarely do
rate-limits
I am wondering how much help backbone providers give in
identifying sources of a DoS and deciding what ACL's or
rate-limits need to be placed to bring a DoS under control,
for their downstream clients. (Assuming it is their
downstream clients that are being DoS'ed).
I realize this will vary from p
Dear Nanog list members,
We are considering buying transit from McLeod and I would
like to get any input, opinions,
or experience list members might have about this provider.
We are a state wide ISP, seeking
to add another DS 3 to our present multi-homed network.
Please reply off list and thanks