. The closest thing to this I've seen is
ETINC's BWMGR, but that's a closed-source solution and is still somewhat
expensive.
-Andrew White
On Tue, 25 Nov 2003, William Caban wrote:
>
> A resume of some of the answers I have received:
>
> What's missing from (a
months back - I don't recall any mention of it
then)
--
Andrew, Supernews
http://www.supernews.com
ed from *.gtld-servers.net.
they probably got them before the switch, they'll time out soon
enough, and then they'll restart from the "wrong" servers.
--
|-< "CODE WARRIOR" >-|
[EMAIL PROTECTED] * "ah! i see you have the internet
[EMAIL PROTECTED] (Andrew Brown)that goes *ping*!"
[EMAIL PROTECTED] * "information is power -- share the wealth."
Anyone have any suggestions on graphing peering on a cisco router? I'm
using mrtg and i did mac address accounting but the numbers are off.
Thank i appreciate it in advance.
Andrew
no i mean graph bgp sessions...
it's a single interface, and i want to graph every bgp session so i
can see how much traffic i'm doing between each peer.
On Wed, 19 Jan 2005 22:25:37 + (GMT), Stephen J. Wilcox
<[EMAIL PROTECTED]> wrote:
> On Wed, 19 Jan 2005, an
much traffic i'm doing between each peer.
> >
> >
> >On Wed, 19 Jan 2005 22:25:37 + (GMT), Stephen J. Wilcox
> ><[EMAIL PROTECTED]> wrote:
> > > On Wed, 19 Jan 2005, andrew matthews wrote:
> > >
> > > > Anyone have any suggestion
>>>>> "Paul" == Paul Vixie <[EMAIL PROTECTED]> writes:
Paul> well, in sbc-dsl-land, port 25 and port 587 are blocked, but
Paul> port 26 gets through.
I have a port-587 relay on my network which is used by some
sbc-dsl-land users... they don't appear
Could this be relate to the fact that Microsoft nixed the Passport service
back in January?
http://www.theregister.co.uk/2004/12/30/ms_ends_pass/
Andrew
:)
On 3/21/05 10:10 PM, "william(at)elan.net" <[EMAIL PROTECTED]> wrote:
>
>
> I'm trying to investigate
. That also
requires money. Is that what people want? I don't think so, but I could be
wrong.
Andrew
(also a member of the ARIN Advisory Council)
---Original Message---
> From: "Edward Lewis" <[EMAIL PROTECTED]>
> Subject: Re: ARIN, was Re: 72/8 friendly reminder
> Sent: 24 Mar 2005 12:20:08
>
> At 17:01 + 3/24/05, Andrew Dul wrote:
>
> >I agree, I'd certainly like to see more p
nks to seven organizations on the last slide and the
> graphs show recent data
> http://www.iijlab.net/~kjc/papers/srccs-rbb-traffic-2up.pdf
The paper itself is also available at that site, at
http://www.iijlab.net/~kjc/papers/ivs-rbb-traffic.pdf
Andrew Odlyzko
anguage to deal with the issue we
currently see with 1918 queries.
http://www.ietf.org/internet-drafts/draft-ietf-ipv6-unique-local-addr-09.txt
Andrew
b.it in Italy, and the Direcway satellite system in the US are
the most obvious examples that I know of. I'm sure there are more.
--
Andrew, Supernews
http://www.supernews.com
of
high speed links is to get low transaction latency (as in "I want that Web
page on my screen NOW," or "I want that song for transfer to my portable
device NOW"), so utilizations are low.
Andrew Odlyzko
I have found that "acceptable speeds" for residential users will vary widely
from one area of the country to another. To a large degree it is a perception
issue rather than an empirical one (ie www.cnn.com loads "too slowly"). The
best metric for the happiness of a DSL customer base seems to
Traceroute is not an effective measurement of performance. Due to the way
routing devices process the packets it receives, it is possible for the latency
that appears in a traceroute is far higher than the latency of traffic
traversing that device.
Luke Parrish wrote:
My email was confusing s
s on. There is just too much risk
for not preventing hijacking of address space. We as operators can decide
to secure the network or after some 'incident' occurs a government will
mandate something that may not be fully baked and could be a lot more work.
Andrew
I have been running in circles with the sales folk. Would an engineer or
technical sales person from New World Networks / ARCOS-1 please contact me
off-list to discuss transit between Honduras and USA via the ARCOS-1
sub-Caribbean fiber ring please?
-Andrew
--
Ing. Andrew White, CTO
the PFC
to export v5 as well, and get everything in the same format.
--
Andrew, Supernews
http://www.supernews.com
ers...we need a solution in my lifetime.
Has anyone got any other ideas on how to skin this cat with a technological
solution not mentioned?
Thanks,
Andrew
. The replies have confirmed my thoughts, but I wanted to probe the
brighter-minds-than-mine that exist on this list. The women in my life
expect me to read their minds...with the RFC's I'm based on, it should be
easy for DNS to read mine.
Andrew (morphs nicely into Anscrewed)
The guys over at http://www.directnic.com/ are looking for contacts to find out what it will take to get a few oc3's back up.
http://www.livejournal.com/users/interdictor/
If anyone who works for or has
connections with Bell South or Telcove is reading this, tell us what
it's going to take to
l3.net 4321
Trying 209.244.1.179...
telnet: connect to address 209.244.1.179: Operation timed out
Doesn't seem to have made much difference yet...
--
Andrew, Supernews
http://www.supernews.com
---Original Message---
> From: Andrew - Supernews <[EMAIL PROTECTED]>
> Subject: Re: SWIP and Rwhois in the Real World
> Sent: 06 Sep '05 15:55
>
>
> >>>>> "william" == william(at)elan net <[EMAIL PROTECTED]> writes:
>
e a "mail this article to someone" feature that
forges the sender address with no attempt to verify that the person
making the request has the right to use that address?
--
Andrew, Supernews
http://www.supernews.com
On Sep 8, 2005, at 6:05 AM, [EMAIL PROTECTED] wrote:
CRISP is merely smoke and mirrors at present.
Here's a repost of a message I sent recently to the ARIN ppml on this
subject:
==
Here's an update of what is going on in this space.
From the standardizatio
lf. He uses the usenetabuse.com domain for handling abuse reports
regarding his service, but of course this does not excuse him from the
normal responsibility to handle emailed abuse reports.
--
Andrew, Supernews
http://www.supernews.com
On 10/5/05, James Spenceley <[EMAIL PROTECTED]> wrote:
> Then start your search for a replacement provider. If every Cogent> and Level3 customer did this today, this problem would be solved by> the end of the week, guaranteed.I tend to think this is oversimplification.
The big picture risk, cogent
ericas can also
> provide some information.
[...]
Two data points:
We have connections from Honduras to NAP of the Americas; one via MAYA-1
and one via ARCOS-1. The MAYA-1 link is down hard, and the ARCOS service
has been degraded at times (high packet loss / ping times) but has been
working for the most part.
-Andrew
trust the RADB data to be either correct or
complete.
There is currently no fully reliable way for a third party to answer
the question "should AS N be announcing prefix X". The history of
netblock thefts shows that even network providers have a hard time
answering the question "should my customer C be announcing prefix X".
--
Andrew, Supernews
http://www.supernews.com
d by proper
feedback to the SMTP server (e.g. accounts which go over quota and
_stay_ that way should be set to reject traffic at SMTP time, so that
they don't become continuous sources of backscatter).
--
Andrew, Supernews
http://www.supernews.com
h help.
I don't see why I should have to engineer my mail server to handle
5,000 times its expected workload just to accomodate all the bozos who
accept-and-bounce, uncontrolled backscatter, "sender verification",
C/R, and all the other cost-shifting methods out there.
--
Andrew, Supernews
http://www.supernews.com
d with kiddies that
simply don't matter to network infrastructure.
Also could we please quickly kill this thread as it's utterly unimportant.
- --
Andrew D Kirch | Abusive Hosts Blocking List | www.ahbl.org
Security Admin | Summit Open Source Development Group | www.sos
ress space should be
allocated. Maybe in this new world of ICANN, the RIRs could create a global
policy, through the NRO, that ICANN would ratify to instruct the IANA to make
the address space available. In any case, this is not an activity that only
will require the work of the RIRs.
Andrew
ion appreciated.
Andrew
atively limited capacity for forwarding traffic in
software. This normally isn't a problem, but it means you have to
be careful not to do things (like trying to log traffic in ACLs)
that result in your main traffic flows being punted to the MSFC.
There are lots of other advantages besides the ones you mentioned,
though.
--
Andrew, Supernews
http://www.supernews.com
owning any incompetence.
If anyone has enlightening experiences of ptp vs. mpls, I'd appreciate
hearing about them.
Thanks,
Andrew
ons are broken? How many people
would care, even if they knew, about the fact that they are generating
unnecessary queries to other people's DNS servers?
--
Andrew, Supernews
http://www.supernews.com
> ---Original Message---
> From: Christopher L. Morrow <[EMAIL PROTECTED]>
> Subject: Re: IRS goes IPv6!
> Sent: 14 Feb '06 08:31
>
> On Tue, 14 Feb 2006, Jeroen Massar wrote:
>
> > I Ar Es,
> >
> > At least they have received the 2610:30::/32 allocation from ARIN.
> > Lets
what you need.
Also, I think these folks at CCMI have already done this work, both in tabular and
graphical format:
http://www.ccmi.com/mapsdirectories.html
Regards,
Andrew Bender
taqua.com
Verio has a very nice tool for this.
Thanks for your assistance!
-andrew
I had a network outage this morning brought about by a BGP route explosion at around
6:30 EST(-4) this morning. Anyone else notice it, and who the culprit whats? I got
the exact same hit from both my providers, AT&T Can, and Telus.
Thanks
Andrew
We saw at least an extra 10k prefixes, the router is/was configured to stop at 120k
prefixes, little did I know that it would shutdown the BGP session at that point.
Thanks for the info.
Andrew
On Wed, May 01, 2002 at 08:50:55AM -0400, Toan Do wrote:
> How many extra prefixes did u see?
We have an available cabinet, with private 100mb FDDI connection, available
for rent/sale at 55 Market Street, 11th floor.
Please contact me off-list if interested.
Andrew Staples
"As the evening sky faded from a salmon color to a sort of flint gray, I
thought
back to the salmon I caught
lege curriculums and then
maybe I would enjoy my college experience..
*stepping down*
BTW I'm looking for a summer job, it seems nobody wants networking
internsI've had 10 full-time offers but nothing for summer onlyAnd
yes companies are hiring left and right for IT people and the i
at all to
networking, and never even mentions the idea of security. So why not
create a focused area for this?
- Andrew
---
<[EMAIL PROTECTED]>
http://www.andrewsworld.net/
ICQ: 2895251
Cisco Certified Network Associate
"Learn from the mistakes of others. You won't live long enough to make all of them
yourself."
university and develop
this so I can transfer into a program I enjoy
- Andrew
---
<[EMAIL PROTECTED]>
http://www.andrewsworld.net/
ICQ: 2895251
Cisco Certified Network Associate
"Learn from the mistakes of others. You won't live long enough to make all of them
yourself."
. That's not the same thing. It's
the engineering method of making a round peg fit in a triangular hole.
Andrew
---
<[EMAIL PROTECTED]>
http://www.andrewsworld.net/
ICQ: 2895251
Cisco Certified Network Associate
"Learn from the mistakes of others. You won't live long enough to make all of them
yourself."
t or cleared by root.
--
|-< "CODE WARRIOR" >-|
[EMAIL PROTECTED] * "ah! i see you have the internet
[EMAIL PROTECTED] (Andrew Brown)that goes *ping*!"
[EMAIL PROTECTED] * "information is power -- share the wealth."
es) per
month of US backbone traffic, which works out to 180 and 300 Gb/s average traffic.
Andrew Odlyzko
(*) See my papers at <http://www.dtc.umn.edu/~odlyzko/doc/networks.html>, or a recent
(and about to be updated) report from RHK.
On Sat, Jul 13, 2002 at 04:00:42PM -0700, Stephen Stuart wrote:
> Please also respond if you weren't aware that you have to explicitly
> implement the policy of honoring no-export - while the community vaue
> is "well-known," the policy is not built-in.
If you do not wipe out the communities tha
dations on a vendor?
Thanks,
Andrew
--
<[EMAIL PROTECTED]>
> Andrew Dorsett <[EMAIL PROTECTED]> said:
> Hey everyone, I know this is slightly off topic but I'm hoping that someone
> from Verisign or the like will respond. I am looking for a VERY secure
> computer cabinet to replace an open rack I have now. I'm looking
er embedded systems, they are a good fit for those without patience for more
science projects in the PoP. It seems that the iR 8000 is one of the few (only?)
reasonably priced TS systems that have NEBS Level 3 cert... for those that require
ILEC colo, or have special durability concerns.
Regards,
Andrew Bender
taqua.com
Let's not forget about the use of VRF's. BGP is not used exclusively for
sending public routes in our network. Just a thought.
--
Andrew McConnell
Network Implementation Engineer
SunGard Network Technologies
401 North Broad St
Philadelphia
noted in the original message had
already been made (they show 2002110500 whereas the change was
supposed to be in 2002110501).
(b) l was a little out of date, and b was as well earlier that day (it
wasn't serving the new address).
for that matter, l is *still* out of date. ;-)
--
|-
terribly regular pronouncement of a real security problem.
what it comes down to is that the word "tomorrow" is highly
inaccurate. specific dates and/or times are better, perhaps even with
reference to a specific time zone, if you wish to be that particular.
--
|-< "CO
On Sat, Nov 16, 2002 at 08:38:39AM -0600, Feger, James wrote:
> Does anyone have the URL documenting the ASN VoIP phone project that was
> talked about in Eugene?
http://www.pch.net/inoc-dba/
--asp
ely updating the
registration info at the RIR, and/or forging letters of authority
purporting to allow them to announce the block, and work from there.
--
Andrew, Supernews
http://www.supernews.com
Sean> How is the spam problem on USENET these days?
It's not nearly as bad as it was at its peak, but it's still very much
present.
--
Andrew, Supernews
http://www.supernews.com
of the two types of services are sufficiently different that trying to
treat them as the same, even though they happen to be using the same
underlying protocol, is just going to cause pain.
--
Andrew, Supernews
http://www.supernews.com
the ones who probe my smtpk (which always
Paul> accepts all mail you send it) later try to spam my main mail
Paul> server (which is in a different netblock).
Oh. _Very_ interesting.
--
Andrew, Supernews
ere
radical changes to external routing were being made, to avoid
unexpectedly overloading particular links.
--
Andrew, Supernews
http://www.supernews.com
n received here over the
past year has had 100% valid and accurate source IP addresses.
--
Andrew, Supernews
http://www.supernews.com
you know... i think yahoo will run into problems, they are going to do
a lot of spending to provide good speed. Now it's just becoming who
has the biggest. :)
On Tue, 15 Jun 2004 10:27:29 -0700 (PDT), Henry Linneweh
<[EMAIL PROTECTED]> wrote:
>
>
> This is what I was talking about...
>
> h
i thought there was nanog @efnet with a lot of these people on it...
i'm sure there are plenty of chat networks out tehre without having to
start a new one.
On Sun, 20 Jun 2004 22:47:52 -0500, Bubba Parker
<[EMAIL PROTECTED]> wrote:
>
> My IRC server is at irc.citynetwireless.net. It runs dancer
u use and what type of
capture/processor layout did you have?
Thanks in advanced
Andrew
thing wrong with our mail headers. Wondering if this is a bug on AOL's s
ide or if anyone else has encountered/fixed this issue to stop the bouncing
mail?
-Andrew
This message was sent to me offline after my post to the list. This apparen
tly solved our problems. Just sending back to the list so anyone else searc
hing for this issue can find an answer. Thanks NANOG!
-Andrew
> - Begin Forwarded Message -
>
> To: [EMAIL PROTECTED
today.
A dedicated OC3 wouldn't really be enough any more, for the full feed
(150+ megabits at peak times, average maybe 130 megabits over a day -
i.e. 1300 - 1350 GB/day on a heavy day).
Cut out the multipart binaries upstream and you only need about a
megabit.
--
Andrew, Supernews
http://www.supernews.com
ents for RWhois servers). That policy
expressly states that reassignment info must be available to the
public and not just to ARIN staff. There is nothing given in the
rationale for 2004-6 to explain why 2003-5 should be summarily
overruled in this way.
--
Andrew, Supernews
http://www.supernews.com
lling US Transpacific Cable Landings (July 2002)
http://cryptome.org/cablew-eyeball.htm
Eyeballing US Transatlantic Cable Landings (7th July 2002)
Full list of Eyeballing projects
http://cryptome.org/eyeball.htm
Andrew
ything) to make the
poller populate nmsName properly.
Concord's support tells me we need to purchase an additional level of
support to fix this, but I imagine other people have found the same issue.
Please respond off-list as I realize this is not exactly on topic.
Thanks.
--
Andre
does anyone know of a place where a non-cisco customer could pick up a
few rack mount kits for small cisco routers (eg, 25xx or 26xx series)?
--
|-< "CODE WARRIOR" >-|
[EMAIL PROTECTED] * "ah! i see you have the internet
[EMAIL PROTECTED] (Andrew Brown
I was poking around to see what was happening with Cogent and AOL
and ran into some interesting info.
The test that Cogent failed was a 2:1 ratio; Cogent was at 3:1 and
AOL insisted they be at no more than 2:1 for free peering.
AOL wants Cogent to pay for peering - the pricing I've heard is
$50-
thread for the attack and one thread to monitor
the DNS entry.
Andrew
---
<[EMAIL PROTECTED]>
http://www.andrewsworld.net/
ICQ: 2895251
Cisco Certified Network Associate
"Learn from the mistakes of others. You won't live long enough to make all of them
yourself."
I have an available cabinet at 55 Market Street 11th floor co-locate. If
anyone is interested in space there, please let me know. It currently has a
private 100mb fddi to the switch.
Andrew Staples
www.nwnetcom.com
I am not a vegetarian because I love animals; I am a vegetarian because I
hate
Don't think you can find products *without* NEBS/DC for products of this type, but
have a look at:
http://www.oasystel.com/
Regards,
Andrew
taqua.com
> -Original Message-
> From: Mathew Lodge [mailto:[EMAIL PROTECTED]]
> Sent: Monday, January 20, 2003 7:17 PM
> To:
Not just L3Genuity is getting whacked. ELI is getting whacked.
Somebody needs to be gelded.
Andrew
Can you confirm / forward a trace of what is affecting a supposedly patched & rebooted
machine?
Thanks,
Andrew
taqua.com
> -Original Message-
> From: Drew Weaver [mailto:[EMAIL PROTECTED]]
> Sent: Saturday, January 25, 2003 1:21 PM
> To: '[EMAIL PROTECTED]'
make a quantum difference, especially since (again, based on previous
experiences) it will take a while for VOIP to spread widely.
Andrew Odlyzko
enged by this; particuarly with those boxes that still have the 4500-class
processor in them.
Regards,
Andrew
taqua.com
> -Original Message-
> From: Mathew Lodge [mailto:[EMAIL PROTECTED]]
> Sent: Wednesday, February 12, 2003 6:46 PM
> To: Charles Youse; Bill Woodcock
>
ntly.
IPSec may be less painful within a single domain, but in other cases, I'd think that
these facilities (or their derivatives) are the only practical option for 'real'
security. Granted it is all pretty worthless if you dont enable/use any of it... Am I
missing something?
Regards,
Andrew Bender
taqua.com
After running into each other in airports and congregating in hotels
and conference centers across this planet, some of us in the
mid-Atlantic area of the US have decided that it is not only
possible but likely even useful to meet locally from time to time.
The purpose would be to swap technical o
ake LDAP a tempting
target.
--
Andrew Newton
/lsr.internet2.edu
Andrew
---
<[EMAIL PROTECTED]>
http://www.andrewsworld.net/
ICQ: 2895251
Cisco Certified Network Associate
"Learn from the mistakes of others. You won't live long enough to make all of them
yourself."
ng to operate the cell in?
Just a for instance and to let you know that those systems do exist. For
an iden system, Southern LINC sells this:
http://www.southernlinc.com/largemultiple.asp
Andrew
---
<[EMAIL PROTECTED]>
http://www.andrewsworld.net/
ICQ: 2895251
Cisco Certified Network Associat
Nextel that required Engineering to come to my house
and do some site surveys. Nextel determined that had chosen a poor site
for one of their towers and they decided to put another tower on the
planning board. So sometimes just one person complaining can help.
Andrew
---
<[EMAIL PR
>> Hmmm Must be 4/1 again.
>
>Well, you weren't taking it seriously, I hope. lol
http://lists.FreeBSD.org/pipermail/cvs-all/2003-April/001098.html
--
|-< "CODE WARRIOR" >-|
[EMAIL PROTECTED] * "ah! i see you have the in
.
If anyone from Bell South with clue can contact me off list, this would
be great.
---
(o< Andrew Elliott ph. 989.907.2155
//\ Router/IP Lvl 2 Support pg. 888.221.4152
V_/_ XO Communications [EMAIL PROTEC
I've got one more cabinet to rent at maewest (55 market street) if anyone is
interested, $2k/month.
Andrew
rms) applies to software houses, not open
source projects. Since open source (rarely|never) commits to a
schedule/deadline, GNU projects accomplish what Microsoft et.al. will never
be able to as their products bloat. (for case study consider RH Linux 4.0 in
1996)
IMHO,
Andrew
auses much more political
opposition. Given these constraints, the electric power industry appears
to be doing an excellent job.
Andrew Odlyzko
fouled. For installations large
enough to care about tank pressure, heaters are an option, but then there's the
question of how you power the heater... :)
Regards,
Andrew Bender
taqua.com
-Original Message-
From: Jeffrey Wheat [mailto:[EMAIL PROTECTED]
Sent: Tuesday, August 19, 2003 9:
Randy Neals (ORION) wrote:
Where does one get hold of "The List" to know if your on it.
I've read many of the briefing/press releases put out by the anti-virus
companies but they all seem to be witholding "the list" of master
servers.
Its been posted here, and f-secure has it, but I wrote a qu
Jay Hennigan wrote:
On Fri, 22 Aug 2003, Andrew Kerr wrote:
Its been posted here, and f-secure has it, but I wrote a quick script to
keep an eye on the 20 servers and dump the output to a simple page:
http://207.195.54.37/sobig.html
(Updates about every 5 mins)
You're probing the list o
spond publicly or privately with data about other
networks filtering all icmp traffic, not just malformed icmp? I'd like to
compile a list for troubleshooting, as these decisions are breaking things
for some customers.
Andrew Staples
perl -e
"
ly new to NANOG, but
I'm sure that others beside myself also feel a thank you is appropriate.
Andrew Fried, Senior Special Agent
United States Department of the Treasury
Treasury Inspector General for Tax Administration
Strategic Enforcement Division
5000 Ellin Road, Room C8-100
Lanham, MD
Anyone have any idea why a host from IANA would be scanning DNS
servers?
;; AUTHORITY SECTION:
4.32.198.in-addr.arpa. 10551
IN SOA dot.ip4.int.
hostmaster.ip4.int. 1928630 10800 900 604800 86400
10/03-01:29:45.947001 [**] [1:1616:4]
DNS
named version attempt [**] [Classification: Att
I just received an email proporting to be from Symantec that contained an
anti-virus signature update. The message originated in the
Netherlands. The attachment has been submitted to Symantec and FortiNet
for review, however, I thought the community might want a heads up since I
do not know t
1 - 100 of 203 matches
Mail list logo