Re: scaling linux-based router hardware recommendations

2015-01-28 Thread Robert Bays
I was trying not to pitch my company on list, but the performance numbers I quoted are on the Vyatta/Brocade vRouter which is commercially available. Other vendors also also have publicly available performance numbers that are interesting. On Jan 28, 2015, at 5:02 AM, Paul S.

Re: look for BGP routes containing local AS#

2015-01-28 Thread Chuck Anderson
It used to be the case that looped routes didn't even show up as hidden routes, because Junos discarded them even from Adj-RIB-In, although this may have changed at some Junos version. Also, Junos won't even advertise such looped routes to a neighbor with the same AS by default, so in many cases

Re: Cisco IOS stable/production safe versions?

2015-01-28 Thread Daniel Corbe
Nick Ellermann nellerm...@broadaspect.com writes: I have a Cisco IOS specific question for the group and also specifically related to the 6500 platform. We have always been very conservative with our IOS version that we run in production, we are still running a pretty old safe harbor build

Re: look for BGP routes containing local AS#

2015-01-28 Thread Pedro Cavaca
If your ISP utilizes Juniper platforms, you might have to ask them to allow the advertisement of these routes, see http://www.firstdigest.com/2012/09/cisco-vs-juniper-different-ebgp-behavior/ On 28 January 2015 at 09:32, Song Li refresh.ls...@gmail.com wrote: Hi Joel, It is right that the BGP

Re: look for BGP routes containing local AS#

2015-01-28 Thread Song Li
Thanks! It seems hard to see such routes on the edge router. Nonetheless, we do believe there must exist such routes in the wild. We still hope to find some real cases of them. If anybody see them in your routers, please let us know. Regards! Song 在 2015/1/28 21:27, Chuck Anderson 写道: It

Re: scaling linux-based router hardware recommendations

2015-01-28 Thread Charles N Wyble
There is no free lunch. If you want tools that end users can just use then buy Cisco. Otherwise you need to roll up your sleeves and take the pieces and put them together. Or hire people like me to do it for you. It isn't overly complicated in my opinion. Also you'll find plenty of

Re: look for BGP routes containing local AS#

2015-01-28 Thread Song Li
Hi Joel, It is right that the BGP route containing the local ASN will be droped. However, such routes can still be displayed on router. For example, you can run show route hidden terse aspath-regex .*local ASN.* on Juniper to check them. We are looking for those routes. If you can run the

Re: look for BGP routes containing local AS#

2015-01-28 Thread joel jaeggli
On 1/27/15 5:45 AM, Song Li wrote: Hi everyone, Recently I studied the BGP AS path looping problem, and found that in most cases, the received BGP routes containing local AS# are suspicious. However, we checked our BGP routing table (AS23910,CERNET2) on juniper router(show route hidden

Re: scaling linux-based router hardware recommendations

2015-01-28 Thread Robert Bays
On Jan 27, 2015, at 8:31 AM, Jim Shankland na...@shankland.org wrote: My expertise, such as it ever was, is a bit stale at this point, and my figures might be a little off. But I think the general principle applies: think about the minimum number of x86 instructions, and the minimum

Re: scaling linux-based router hardware recommendations

2015-01-28 Thread Paul S.
That's the problem though. Everyone has presentations for the most part, very few actual tools that end users can just use exist. On 1/28/2015 午後 08:02, Robert Bays wrote: On Jan 27, 2015, at 8:31 AM, Jim Shankland na...@shankland.org wrote: My expertise, such as it ever was, is a bit stale

Re: Network ops lists.

2015-01-28 Thread Alex Brooks
On Wed, Jan 28, 2015 at 2:27 AM, Seiichi Kawamura kawamu...@mesh.ad.jp wrote: Not my list, but here's one. http://www.bugest.net/nogs.html I'm sure there's more though. BDNOG, BTNOG, HKNOG ... As has been mentioned, there are also a few special purpose non-geographic lists around. Voiceops

Re: scaling linux-based router hardware recommendations

2015-01-28 Thread Mark Tinka
On 28/1/15 16:45, Colin Johnston wrote: qnx os based router works well with powerpc, could be pushed far higher load than intel based chips The problem being that QNX is a 32-bit kernel. Mark.

Re: DDOS, IDS, RTBH, and Rate limiting

2015-01-28 Thread Pavel Odintsov
Hello, folks! NetFlow v5 and v9 support have just added to FastNetMon: https://github.com/FastVPSEestiOu/fastnetmon Now you can catch DDoS attacks and collect data from sFLOW v5, NetFlow v5/v9 and even from mirror port with PF_RING in one tool simultaneously! Will be very glad for feedback and

Re: scaling linux-based router hardware recommendations

2015-01-28 Thread Adrian Chadd
[snip] To inject science into the discussion: http://bsdrp.net/documentation/examples/forwarding_performance_lab_of_an_ibm_system_x3550_m3_with_10-gigabit_intel_x540-at2 And he maintains a test setup to check for performance regressions:

Re: scaling linux-based router hardware recommendations

2015-01-28 Thread Eduardo Meyer
- 1x ServerU Netmap L800 box in Bridge Mode for Core Firewall protection - 2x ServerU Netmap L800 boxes as BGP router (redundant) - Several Netmap L800, L100 and iXSystems servers (iXS for everything else since ServerU are only networking-centric, not high storage high processing Xeon

Re: scaling linux-based router hardware recommendations

2015-01-28 Thread Colin Johnston
qnx os based router works well with powerpc, could be pushed far higher load than intel based chips Colin That's the problem though. Everyone has presentations for the most part, very few actual tools that end users can just use exist. On 1/28/2015 午後 08:02, Robert Bays wrote: On

Re: scaling linux-based router hardware recommendations

2015-01-28 Thread Baldur Norddahl
10g transceivers are not overly expensive if you buy compatible modules. SFP+ Direct attach cable is $16. SFP+ multimode module is $18. SFP+ singlemode LR module is $48. That is nothing compared to what vendors are asking for a real router. I believe there are many startups that are going for

Re: scaling linux-based router hardware recommendations

2015-01-28 Thread Nick Hilliard
On 28/01/2015 14:45, Colin Johnston wrote: qnx os based router works well with powerpc, could be pushed far higher load than intel based chips that may be so, but how many people out there know how to push qnx that hard compared freebsd/linux on amd64 compatible hardware, and how many people

RE: Alerting systems, Logicmonitor and/or alternatives

2015-01-28 Thread Raymond Burkholder
What's the collective opinion here? Is anyone using them or a similar service? Are there non-cloud-based alternatives that are relatively easy to set up and manage? We've explored Zabbix, Nagios, MRTG and its various wrappers, and Intermapper. Anything else new on the horizon that has a GUI

Re: scaling linux-based router hardware recommendations

2015-01-28 Thread Philip
I recently built a pair of Linux based routers to handle full BGP tables from 3 upstream providers (10gig links) I had penguincomputing.com build me two reasonably powerful (dual xeon hex core processor) servers with SolarFlare http://solarflare.com/1040GbE-Flareon-Server-IO-Adapters NICs. (I

Re: Alerting systems, Logicmonitor and/or alternatives

2015-01-28 Thread Dorance Martinez Cortes
Hi Jay, I have experience with nagios and cacti, now I'm experimenting with logic monitor and observium. The observium is a great tool to discover your network devices but don't have great graphics and don't have any alarm system, but you can get a lot of information about your network devices,

Re: look for BGP routes containing local AS#

2015-01-28 Thread Song Li
Hi Patrick, We want to know what's the reason for the received routes containing local ASN. Hence we need real cases of those routes in the Internet. And any routes like that are welcome, whether they are on Juniper router or other BGP software. Thank you! Regards! Song 在 2015/1/29 1:50,

cable modem firmware upgrade

2015-01-28 Thread A MEKKAOUI
Hi, Anyone knows how to upgrade Motorola SB6120 cable modem firmware other than going through the internet provider? Your help will be appreciated. Thank you A MEKKAOUI MEKTEL INC www.mektel.ca

RE: cable modem firmware upgrade

2015-01-28 Thread Nathan Anderson
On Wednesday, January 28, 2015 8:11 PM, A MEKKAOUI wrote: Anyone knows how to upgrade Motorola SB6120 cable modem firmware other than going through the internet provider? Your help will be appreciated. My employer managed a handful of small DOCSIS networks for a while where 99% of the modems

Re: PDU for high amp 48Vdc

2015-01-28 Thread Bill Woodcock
The rotary actuators are an off-the-shelf item for transfer switches. No problem to get them paired with high-amperage switches. But a contactor, which is a solenoid-driven switch, is also an off-the-shelf item. The ones I use in EV applications are rated for 1000A, and cost about $300. You

Re: PDU for high amp 48Vdc

2015-01-28 Thread Andy Brezinsky
We use ServerTech for -48Vdc switching, http://www.servertech.com/products/-48vdcpowermanagement/ Not quite remote-hands cheap, but worth every penny in a pinch. On 01/28/2015 08:38 PM, Robert Drake wrote: For larger DC devices with ~50amps per side, does anyone have a software accessible

PDU for high amp 48Vdc

2015-01-28 Thread Robert Drake
For larger DC devices with ~50amps per side, does anyone have a software accessible way to turn off power? I've looked into PDU's but the ones I find have a max of 10amps. I've considered building something with solenoids or a rotary actuator that would turn the switches on or off, but that's

Re: Alerting systems, Logicmonitor and/or alternatives

2015-01-28 Thread Rich Kulawiec
On Wed, Jan 28, 2015 at 10:06:26AM -0800, Jay Hennigan wrote: What I don't like is that they only offer it as a cloud-based service. One of the downsides of all such services is that the more successful they are, the bigger a target they are. And they're a tempting target, since successful

RE: cable modem firmware upgrade

2015-01-28 Thread Frank Bulk
And even if you updated it yourself, it's possible that your service provider's config file would automatically downgrade it. Best bet is to ask your internet provider to upgrade your modem. Frank -Original Message- From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Nathan

Recommended wireless AP for 400 users office

2015-01-28 Thread Manuel Marín
Dear nanog community I was wondering if you can recommend or share your experience with APs that you can use in locations that have 300-500 users. I friend recommended me Ruckus Wireless, it would be great if you can share your experience with Ruckus or with a similar vendor. My experience with

Re: Recommended wireless AP for 400 users office

2015-01-28 Thread Mike Lyon
Check out Xirrus On Jan 28, 2015 9:08 PM, Manuel Marín m...@transtelco.net wrote: Dear nanog community I was wondering if you can recommend or share your experience with APs that you can use in locations that have 300-500 users. I friend recommended me Ruckus Wireless, it would be great if

Re: Recommended wireless AP for 400 users office

2015-01-28 Thread Tyler Mills
Have had a lot of experience with Ruckus(and Unifi unfortunately). The Ruckus platform is one of the best. If you will be responsible for supporting the deployment, it will save you a lot of frustration when compared with UBNT. On Thu Jan 29 2015 at 12:18:54 AM Mike Lyon mike.l...@gmail.com

Re: look for BGP routes containing local AS#

2015-01-28 Thread Patrick Tracanelli
On 28/01/2015, at 07:32, Song Li refresh.ls...@gmail.com wrote: Hi Joel, It is right that the BGP route containing the local ASN will be droped. However, such routes can still be displayed on router. For example, you can run show route hidden terse aspath-regex .*local ASN.* on Juniper

Re: Alerting systems, Logicmonitor and/or alternatives

2015-01-28 Thread Mel Beckman
The value proposition of all cloud services is that you get instant technical capability without building your own infrastructure. I see cloud NMS services like LogicMonitor and Spiceworks as a good deal for small organizations without their own IT people. But for all the reasons you give, the

Alerting systems, Logicmonitor and/or alternatives

2015-01-28 Thread Jay Hennigan
I know that this topic has been kicking around for at least a decade, but wanted to get current opinions of other network operators. Most of us have explored Nagios, MRTG, and several front-ends for MRTG. We are looking into a new player in the space called Logicmonitor. They have a very

Re: Alerting systems, Logicmonitor and/or alternatives

2015-01-28 Thread Jeff Cornejo
We have used LogicMonitor for a few years to monitor hundreds of network devices with no reliability issues, at all. The agents have proven to be lightweight and rather unobtrusive. I can’t recall a time where we have ever had to intervene during regular operations or one of their upgrades. We

Re: Alerting systems, Logicmonitor and/or alternatives

2015-01-28 Thread charles
What's the collective opinion here? Is anyone using them or a similar service? Are there non-cloud-based alternatives that are relatively easy to set up and manage? We've explored Zabbix, Nagios, MRTG and its various wrappers, and Intermapper. Anything else new on the horizon that has a GUI

Re: look for BGP routes containing local AS#

2015-01-28 Thread joel jaeggli
On 1/28/15 1:32 AM, Song Li wrote: Hi Joel, It is right that the BGP route containing the local ASN will be droped. However, such routes can still be displayed on router. There is also the non-zero probability that they don't arrive. If this is and edge router if your neighbor is a juniper