On 11/1/2011 7:05 PM, Stefan Fouant wrote:
> Is there anything perhaps protecting or intercepting the data on its way to
> the server, perhaps an Arbor device of some type of load balancer?
>
> This type of behavior is quite common when protecting web assets to eliminate
> zombies and such, but i
Google for "team cymru secure bgp template" for a good starting point.
-Original message-
From: Edward avanti
To: "nanog@nanog.org"
Sent: Wed, Nov 2, 2011 01:01:37 GMT+00:00
Subject: BGP conf
Halo,
First, I accept this might not really right list for request, have use nsp
cisco list bu
Halo,
I am not, I wish all transit by Verizon, but if traffic come in from IX, it
only fair I send trafic to them if they in that IX, they be closest path
anyway.
On Wed, Nov 2, 2011 at 11:11 AM, Mark Gauvin wrote:
> Why would you want to advertise full verizon routes out to the ix? You
> shoud
On Tue, Nov 1, 2011 at 9:01 PM, Edward avanti wrote:
> many example seem
> insecure no prefix list so on.
...
> I am not ignorant with cisco 7201, but am total newby to BGP.
Your concern about a lack of any prefix-lists in the documentation /
examples you have read is justified. If you are conne
Why would you want to advertise full verizon routes out to the ix? You
shoud only be advertising your own network via ix
Sent from my iPhone
On 2011-11-01, at 7:59 PM, "Edward avanti"
wrote:
> Halo,
> First, I accept this might not really right list for request, have
> use nsp
> cisco lis
Halo,
First, I accept this might not really right list for request, have use nsp
cisco list but only first post to was succeed, sent several other for past
4 day and none appear (verified by list archive) so please excuse request.
I am in need of a cisco config for BGP setup, we have a require to
Same from LACNIC. This would have justify a /44 or separate /48s for
each site.
/as
On 31 Oct 2011, at 12:45, Justin M. Streiner wrote:
> On Mon, 31 Oct 2011, Owen DeLong wrote:
>
>> Ideally, you should put a /48 at each location.
>
> Speaking from my experience with getting v6 spac
On Tue, Nov 1, 2011 at 1:22 PM, Kevin Loch wrote:
> Christopher Pilkington wrote:
> We have always accommodated temporary ACL's for active DDOS attacks. I
> think that is fairly standard across the ISP/hosting industry.
And it's reasonable to accomodate the customer that asks, and
reasonable for
Is there anything perhaps protecting or intercepting the data on its way to the
server, perhaps an Arbor device of some type of load balancer?
This type of behavior is quite common when protecting web assets to eliminate
zombies and such, but its usually something you would see back to the clien
On 11/1/2011 1:22 PM, Kevin Loch wrote:
Christopher Pilkington wrote:
Is it common in the industry for a colocation provider, when requested
to put an egress ACL facing us such as:
deny udp any a.b.c.d/24 eq 80
…to refuse and tell us we must subscribe to their managed DDOS product?
We have
The point to make here is:
- if an ISP takes the path of blocking tcp/25, then they MUST
communicate this appropiately to customers and other users
- they also MUST provide alternatives: SMTP over SSL should be allowed
(tcp/465), authenticated relay, but *something*.
IMO blocking 25/tcp is a side
This might be off-topic, my apologies if so.
I seeing requests against a server with initial GET requests in the form:
GET /[a-zA-Z]{5}/pagename.html
pagename.html being optional. The 5 character string seems to be
random. This GET always results in a 404, as our servers don't have
these pa
Mexico-based networks get their IP blocks (v4 and v6) from NIC Mexico
(http://www.nic.mx). NIC Mexico and NIC Brasil are the two NIRs within
LACNIC's service area.
regards
Carlos
On Fri, Oct 28, 2011 at 1:24 AM, Ryan Finnesey wrote:
> If I want to get a block of IP's issued for a network withi
My take on the issue is that your providers are wise in not wanting to
accept prefixes longer than /48s.
You should get multiple prefixes, from the same or different RIRs. If
there are policies in place which do not allow you to do so, I think
it's a good time to discuss them.
regards
Carlos
On
Christopher Pilkington wrote:
Is it common in the industry for a colocation provider, when requested to put
an egress ACL facing us such as:
deny udp any a.b.c.d/24 eq 80
…to refuse and tell us we must subscribe to their managed DDOS product?
We have always accommodated temporary ACL's for
Hey All,
I am looking for verizon ATM/DSL wholesale DSL ports for NY/NJ latas,
and I found some verizon-isp mailing lists, but nothing seems current.
Off-list replies are welcome.
Thanks,
Joe
Hi all,
Sorry for the offtopic post. I have a need to talk to a real person at
Hotmail regarding a user account. The normal channels aren't getting me what
I need.
Thanks,
Justin
On Nov 1, 2011, at 4:10 AM, Justin M. Streiner wrote:
> On Tue, 1 Nov 2011, Dmitry Cherkasov wrote:
>
>> case 2: extranet like multiple POPs interconnected with VPNs
>> - get greater then /48 block (like /44) so each POP gets its /48 part
>> - each POP announces its corresponding /48 prefix to t
>
> As for /48 IPv6 blocks being like /24 for IPv4.
> It really seems that /48 may be the most popular PI block and this may
> lead to overcrowding of DFZ. Probably, this is logical consequence of
> getting bigger address space. We needed more IP addresses and we get
> them. Anyway getting greater
For tracking gear, space, racks, power, assets, etc... Might want to
take a look at NetZoomDC by Altima Technologies. They're doing some
neat stuff. For the recurring fees and such, not quite sure it will
meet your needs but there are customizable categories, elements, and
what not you can apply
On Nov 1, 2011, at 5:29 PM, Phil Regnauld wrote:
> Payam Poursaied (me) writes:
>> Hi all
>>
>> I'm looking for a system to keep track of network assets and also periodic
>> services in each pop site. Currently we have
>> about 500 pop-sites. In each site we have DSLAMs, Linecards and also some
On 11/01/2011 05:03 AM, Mike Reed wrote:
Is there a common policy on rendering vendor-supplied CPEs unusable?
Yes if they are old.
As a network operator to residential users, would you notify any
potentially affected users before making such a change?
Any responsible provider would make sure t
On Tue, 1 Nov 2011, Dmitry Cherkasov wrote:
case 2: extranet like multiple POPs interconnected with VPNs
- get greater then /48 block (like /44) so each POP gets its /48 part
- each POP announces its corresponding /48 prefix to their local ISPs
- decide if you wish that traffic from Internet to
Thanks to everybody who responded.
To summarize it all, these are the guides for non-ISP company to use
PI IPv6 addresses:
case 1: single POP, no plans to have more
- get single /48 from your RIR, announce it to one or multiple ISPs
that POP is connected to
case 1a: multiple separate POPs (no VP
Payam Poursaied (me) writes:
> Hi all
>
> I'm looking for a system to keep track of network assets and also periodic
> services in each pop site. Currently we have
> about 500 pop-sites. In each site we have DSLAMs, Linecards and also some
> passive equipments including terminals, racks
> and ..
On 11/01/2011 02:38 AM, Babak Farrokhi wrote:
> Hi,
>
> I would suggest you use the element management software provided by your
> vendor. But you may want to take a look at www.ziptie.org for an alternative.
Also nocproject.org
Hi folks,
It would seem that my home broadband provider (Orange, formerly known
as Wanadoo/Freeserve) have made some networking changes at the
weekend. The first I knew of it was when my DSL router refused to
connect. It's a vendor-supplied Siemens Gigaset SE572. While it's
probably not the best r
Hi,
I would suggest you use the element management software provided by your
vendor. But you may want to take a look at www.ziptie.org for an alternative.
Regards,
On Nov 1, 2011, at 10:29 AM, Payam Poursaied wrote:
> Hi all
>
> I'm looking for a system to keep track of network assets and als
Hi all
I'm looking for a system to keep track of network assets and also periodic
services in each pop site. Currently we have
about 500 pop-sites. In each site we have DSLAMs, Linecards and also some
passive equipments including terminals, racks
and ..
Also each site may have some recurring fe
29 matches
Mail list logo
