David Ulevitch wrote:
snip
What else are operators doing to get the pages out when things go wonky?
Get a pager! :) SMS is just not as reliable.
David
Randy
if we got rid of or incapacitated the massive botnets that would be a
trickle, manageable, and hardly be worth fussing about, particularly
on an operational list.
this presumes non-inventive spammers, which i fear is not the case. but
it sure would be a good place to start :)
randy
to to actual paid
work, volume goes down. as pfs mentioned this eve, some time in the
last months, the shortage of E and S was so severe that someone posted
an is the list working test message.
randy
joined acm ('67), i could keep up with a significant
portion of the literature. now i maybe see a single digit percentage.
the field has broadened. the ops and other applied areas have similarly
broadened and specialized. we are victims of our own success.
randy
mean, abuse + security teams could care less about MPLS and peering,
but there is a lot they're discussing (walled gardens, botnet
mitigation etc) that does get discussed in far better detail at nanog.
Or at FIRST.
yes.
randy
delivered.
thanks!
randy
Rich Kulawiec wrote:
On Thu, Apr 10, 2008 at 06:32:53PM +0900, Randy Bush wrote:
for a measurement experiment, i would like O(100k) *headers* from spam
from europe and a similar sample from the states.
Request for clarification: do you mean spam originating at IP addresses
believed
volunteer source, though the
proof will be known when we have the data. and we're in asia and have
data from here. so it's europe i need.
randy
adding bias?
reasonable question. i suspect you pull out the 0.5% of the inbound you
actually wanted and consider the bias small. as the dnsbls alone block
way over 90% of the inbound here, i would not classify that as small.
randy
Hey nanog committee, there's an idea. How about an operator's wiki?
http://nanog.cluepon.net/
centralization is not a core feature of the internet :)
randy
as a friend who reads this list but clearly wants to remain anonymous
pointed out
http://www.freebsd.org/doc/en_US.ISO8859-1/books/faq/funnies.html#CHANGING-LIGHTBULBS
randy
Donald Stahl wrote:
NANOG is not a general purpose router help mailing list. Issues
discussed here are supposed to be relevant to the North American ISP
community.
excuse? configuring routers is not operational in north america? have
you gone completely layer 2 over there?
randy
application via email to [EMAIL PROTECTED].
Please be sure to include an abstract, and even possibly some slides,
from the presentation you would give at the meetings.
Thank you.
randy, for the Fellowship Section Committee
candidates
useful for big (broadband) provider where edge is consumer
randy
I believe whoever shows off a functional NAT-PT device at the next NANOG
might get some praise. I heard it was a bit of a disaster.
by the time the show got to apnic/apricot the week after nanog, we had
the cisco implementation of nat-pt and totd working and it worked well.
randy
?
i suspect that all the nat-pt implementations are old and not well
maintained. this needs to be fixed.
randy
for infrastructure. i get a bit of a giggle out of it now. but
boy was i shocked when i first did a traceroute from some public network
in bologna years back.
randy
to care
how their mtv is delivered.
and the chicks ain't free.
randy
majority.
randy
, and then the
freebsd as guest. if the winxp gets sick, i can suspend the freebsd,
reboot the xp, and resume the suspended freebsd. so the bsd has a much
longer uptime than the host winxp opsys. how's that for a sick twist?
randy
Isn't it the case in the real world that the Internet isn't TCP ECN
compatible?
actually, no. ecn compat is increasing, happy to say.
please be
normalized to /24 or /32 equivalents, i.e. the amount of address space?
thank you!
randy
they are allowed to order service for fear they might electrocute themselves
or the water company fearing customers may drown?
-- Arnd
Randy
seeing regarding this subject have
pros and cons, but some even solve both problems: both accidental and
intentional leaks.
I am not against training personnel, but your solution doesn't resolve
either of the above for the most part.
-- Arnd
Randy
be THAT BIG of a deal for small networks, if say a
larger or a Tier-1 provider practiced this (AFAIK, the only somewhat large
network to do this is, believe it or not, PCCW), your customer would
experience a major outage.
There must be a better way. :)
Pekka Savola
Regards,
Randy
to their customer is. I
find this policy flat out flawed.
Randy
get the idea. What makes Google, YouTube, Yahoo, MS, etc more important?
More importantly, why is PCCW not prefix filtering their downstreams?
Certainly AS17557 cannot be trusted without a filter.
Randy
-Original Message-
From: Simon Lockhart [mailto:[EMAIL PROTECTED]
Sent: Sunday
a /16 or shorter or something.
thanks.
randy
is there a ride share wiki or whatever? wiki.cluepon.net seems not to
even have a nanog page this time. like how are we gonna log which
remaining vietnamese restaurant is good?
i'm getting in to sfo from tokyo about noon, by the time i get luggage,
and do not like car rentals.
randy
Adrian Chadd wrote:
http://nanog.cluepon.net/ - start a page?
done. also offered to get a second bed if anyone needs room
thanks for the posting, john. many of us who knew jeanette appreciate it.
randy
Analyzing the Internet Collapse
analysing press sensationalist hyperbole
http://www.technologyreview.com/Infotech/20152/?nlid=854
not bad. but no new insight and facts differ from other reports
(marsailles).
randy
it above flight
paths.
randy
hh no!
info on where to send, e.g. brother george's current address etc, please?
randy
Weight is a bigger issue than most people realize.
perhaps folk would benefit from [re]reading Neal Stephenson's wonderful
classic bit of gonzo journalism in Wired,
http://www.wired.com/wired/archive/4.12/ffglass.html.
randy
they fade. but i
just can't archive everything. and there are copyright issues anyway.
randy
.
Actually, last year, Scotland Yard claimed Al Qaeda planned on blowing up
one of the Telehouse facilities in the UK:
http://www.technologyreview.com/blog/garfinkel/17561/
Randy
and forget
about the problems of adding glue records to .net/.com?
because the are O(10^4) zones on it. next bright idea?
randy
Network Solutions appears to have some level of support for RRs
because I am aware of domain names registered through them that have
RRs.
it is pushing glue to the parent zone, com et alia, that is the
problem.
randy
o the registrar has to push it to the netsol registry
o many registrars do not support, e.g. opensrs. so hundreds of
end-user registrars can not do glue.
ugly ugly ugly. tucows, wake up and smell the coffee!
randy
? this is going to be a
serious impediment.
randy
And what if NetSol is your registrar that needs to add the glue!?
it hurts when i hit my head with a hammer
then stop hitting your head with a hammer
time to collect a list of registrars who do this well and easily.
randy
and pricing in australia had nothing to do with a monopilist telco with
a rapacious plan highly well articulated and sold to the govt by an
arch-capitalist with a silver tongue?
randy
right off
the bat.
randy
Geoff Huston wrote:
Randy Bush wrote:
and pricing in australia had nothing to do with a monopilist telco
with a rapacious plan highly well articulated and sold to the govt by
an arch-capitalist with a silver tongue?
I don't know about that. However, I do know that relatively small
that.
randy
The .com/.net registry has supported RRs for over five years
(since May, 2002). The issue you may be encountering is that not
every .com/.net registrar supports them.
way cool.
do you happen to know if opensrs registrars have a path to do so?
randy
everyone in the world has to approve this (it affects 20 zones). but
we'll see.
randy
registry, but it seems like good
information to share here if you find a definitive answer.
i will. i am trying to document ops processes for v6 in my feeble way,
doing it in a blog-like fashion. e.g. for the sage of doing it at one
small set of servers see http://rip.psg.com/~randy/ipv6
for those of us who are trying to provide dual stack services, how the
heck do we get v6 glue added to the gtlds? specifically, i want to add
v6 glue for psg.com and rip.psg.com in the com zone.
similarly for the root, as rip.psg.com serves some tlds.
/troll
randy
from rudely scheduling right over afnog
(which announced a good while before) next june, causing a mess for a
number of us.
but it's what we've got.
randy
after my hosts is my contribution to reducing the
attacks on more vulnerable hosts.
randy
Fallback to A should be removed sure sounds like a plan.
great idea. it will only break mail to 42% of the internet.
http://en.wikipedia.org/wiki/Principle_of_least_astonishment
randy
insisted on consistent announcements at all peerings unless
negotiated otherwise.
randy
to a new customer, leaving them a
smaller cushion than the first user of that /56 received?
no easy answers. but yes, giving them a /56 off the bat feels a bit
reminiscent of giving them a /24 in ipv4.
randy
Ever calculated how many Ethernet nodes you can attach to a single LAN
with 2^46 unicast addresses?
you mean operationally successfully, or just for marketing glossies?
randy
the boundry
between their network and the operators.
yup
randy
---
[0] - http://www.merit.edu/mail.archives/nanog/msg04887.html
Joel Jaeggli wrote:
equipment makers (as much as randy hates them)
excuse?!?!? that is unjustified and uncalled for.
vendors, like everyone else, will do what is in their best interests.
as i am an operator, not a vendor, that is often not what is in my best
interest, marketing literature
Tony Li wrote:
Randy's attitude that vendor's are all unequivocally evil
please read what i said, and not what joel, very incorrectly, said what
i said. then apologize.
randy
well intentioned troll
so, what problems are there with dhcpv6 that differ from those we have
experienced with dchpv4? what would be good to know before trying to
deploy it?
do organizations you know prefer autoconf or dhcpv6? and why?
randy
There's a tendency to move away from (simulated) shared media networks.
One host per subnet might become the norm.
and, with multiple addresses per interface, the home user surely _might_
need a /32.
sigh
might does not make right
randy
Joel Jaeggli wrote:
Randy Bush wrote:
the but what if they want the toaster on a separate subnet from the
blender gives a new depth to 'reaching.' the one case i can think of
for firewalling/routing within the home is to keep the bathroom scale
from locking the fridge.
If ipv6 subnetting
There is a huge detent at /48
other than the perennial operational pontification from on high by the
gods of the ietf (brought to us by the folk who brought us the wonderful
TLA, NLA, etc. classfulness++), could you elucidate?
randy
and politics ruled over prudent engineering. classic tvtf.
randy
, then yagni. leave
boiling the ocean to the experts at the tvtf.
randy
logic chains which begin with
Now I think there is a chance that
may not be the best way to do engineering. there is a 'chance that'
just about anything.
randy
simon, there are a million chances. and we are notoriously bad at
predicting any of them more than a year or so out.
randy
by default for both, and give them an opportunity to
justify more?
a /64 is a bit old-think unless you are having cost issues getting your
space from above.
randy
the hype.
randy
with different ASes in a same IXP.
what if the two providers to which i want to connect are not at the same
ix but i can get a cheap L2 transport to the second ix?
randy
personal opinion
the position that politics, culture, and society have no place in
internet operations is beyond even an ostrich. they bloody *drive* the
car. while we're at it, why not eliminate finances too? sheesh!
randy
at hosts, e.g.
# grep lsr /etc/ipfw.rules
add deny log all from any to any ipoptions ssrr,lsrr,rr
i am not aware of a similar common use case for ssr.
randy
Frank Bulk wrote:
I would have disagree with your point on centralized AP controllers
you can do so when you have deployed successfully in meeting rooms of
2000 people. joel has.
randy
it seems to be broken in a number of ways. i reported a few hours ago.
randy
solution, that we implement and deploy rfc 4808. it will
solve 95% of our problem for the next five years while more
sophisticated scheme(s) can be developed.
i again plead for folk to look at rfc 4808 and consider whacking
our vendors to implement.
randy
Mail seems to be one of those topics which is of interest to many nanog
subscribers, but simultaneously annoying to many (presumably different)
nanog subscribers.
what large subject does not fall in this category? this is just life
when you have a large community.
randy
if the humans were removed from the
equation. such funny monkeys we.
randy
actually, it would be really helpful to the masses uf us who are being
liberal with our delete keys if someone would summarize the two threads,
comcast p2p management and 204/4.
randy
presume my ciscos will
soon be able to handle 240/4 at no additional hardware cost. :)
randy
Randy pointed out rightly, this is not only your network that needs
upgrading, this is all the networks who communicate with you that needs
upgrading.
So, classifying 240/4 as public use is unrealistic now and will remain
unrealistic in the near future.
agree
Classifying it as private
, which should
be far simpler than the other hacks they seem to be adding, and that
those of us who care enough to use data integrity assurance on our bgp
peerings deploy it.
kierkegaard
nietzsche
you are a stoopid schmuck
kant
:)
randy
indeed
and abha is saturday
randy
http://www.networkworld.com/community/node/20390?netht=101107dailynews2nladname=101107dailynews
Credit where credit is due:
http://www.xkcd.com/195/
i guess you did not read the article, eh?
randy
.
I'm sure this will ruffle the feathers of a bunch of people and
I expect to be beaten back into silence, but at least I have
expressed my opinion... :-)
Best Regards,
--
Randy Whitney
Verizon Business
[EMAIL PROTECTED]
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL
dunce cap on
irrelevant to the mlc action, but ...
as someone just pointed out to me, i was confusing two ex-ceos of qwest,
joe nacchio, who is a convicted felon, with sol trujillo, who is not,
but is currently the ceo of telstra.
apologies.
randy
http://rip.psg.com/~randy/mlc-complaint.mbox
ribs and fibs on enterprise class
routers.
randy
AU's infrastructure has a long been a quagmire of political fumbling and
organised chaos.
hey, i thought it was great of you folk to take joe nacio, convicted
felon, off our hands.
randy
Craigslist is that way.
_
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Dorn
Hetzel
Sent: Saturday, October 06, 2007 4:49 PM
To: nanog list
Subject: router install in Troy, Michigan
apologies if this is non-operational content.
I have a customer
proportion of the population.
north america is a ridiculous back-water with insanely high prices for
negligible bandwidth. in hawai`i i pay $70/mo for just layer two of
768k. tokyo is significantly less money for usable 100m/100m.
randy
forever. it's not a choice i like, but it's life. get over it.
randy
with the mostly hackable problems of nat-pt rather than the much
more serious problems living with ipv4 only and a jillion nats for ever
and ever.
some of the older of us may be more used to such lesser of two evil
compromises. heck, i voted for hubert the whore.
randy
happened last time, so why should it happen this time?
randy
will not be able to reach us. and we'll
tell our mommy and all our friends that you're mean and nasty.
randy
did not say at that time, but think would be quite useful, is
that it would be nice to have a standardized api for new algs.
randy
would be the last network to be the one pulling jack moves.
what we see in others is oft a reflection of our own thoughts
randy
an excellent howto from clara.net recently presented at uknof 8 in london
http://www.uknof.org.uk/uknof8/Freedman-IPv6.pdf
randy
Maybe they depeered themselves. They seem to be on a roll!
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of
Mike Lyon
Sent: Friday, September 28, 2007 2:39 PM
To: NANOG
Subject: Cogent issues in SF area?
Anyone else seeing it?
. Richard has made comments of a de-peering
notice received by nLayer, not an actual de-peering occurrence.
AFAIK, the only two networks in recent weeks that have been de-peered are WV
Fiber and LimeLight. WV was de-peered a couple on September 17th and
LimeLight was de-peered yesterday.
Randy
to focus on getting them to do so.
pretending everything is just lovely a la jordi sure has not done it.
randy
1 - 100 of 1050 matches
Mail list logo