On Tue, Jul 21, 2015 at 4:57 PM, Graham Johnston
wrote:
> Does anybody have a working projection, or crystal ball, that can provide a
> recommendation on FIB size requirements for the next 24 months? Are we
> expecting the IPv4 table to continue to grow at somewhere around 50k routes a
> year?
On 7/21/2015 4:05 PM, Ricky Beam wrote:
On Tue, 21 Jul 2015 08:13:48 -0400, Curtis Maurand
wrote:
At least in Maine where I am, TWC does allow you to bring your own
modem as long as it's DOCSIS 3 compliant and there's lots of those
from motorola, netgear and others. You're not stuck with th
Does anybody have a working projection, or crystal ball, that can provide a
recommendation on FIB size requirements for the next 24 months? Are we
expecting the IPv4 table to continue to grow at somewhere around 50k routes a
year? I came up with this from eyeballing the graph at
http://www.cid
On Tue, 21 Jul 2015 08:13:48 -0400, Curtis Maurand
wrote:
At least in Maine where I am, TWC does allow you to bring your own modem
as long as it's DOCSIS 3 compliant and there's lots of those from
motorola, netgear and others. You're not stuck with the Ubee.
You are ignoring the "BUSINESS
On 7/21/2015 8:43 AM, Jared Mauch wrote:
On Tue, Jul 21, 2015 at 08:09:56AM -0400, Curtis Maurand wrote:
DNS is still largely UDP.
Water is also still wet :) - but you may not be doing 10% of your
links as UDP/53.
DNS can also use TCP as well, including sending more than one
Furst rule of dealing with $CABLECO — If you don’t like the answer you get on
this phone call, redial. The next person will probably give you a different
answer. Certainly you can almost always get the answer you are looking for
(even if it’s wrong) within 5 calls if you are that patient.
Owen
Hello!
There are few vendors which could offer 100GE capture solutions which
could be used with FastNetMon. I could share vendor names off list if
you are interested in it.
Now we do only packet counting and compare it with fixed thresholds.
But we are working on deep packet inspection of attacks
Pavel, what kind of resources does the analysis of a 100G circuit require?
Or is it just counting packets?
On Tue, Jul 21, 2015 at 8:11 AM, Pavel Odintsov
wrote:
> You could do SQC with FastNetMon. We have per subnet / per host and
> per protocol counters. We are working on multi 100GE mode very
Yeah, it hurts to see advanced analytics being used to sort the kitten
videos you're most likely to watch, but somehow they make money off of it.
On the other hand, their datacenter and new switching technologies are
really interesting, so that's an opposite example where their corporate
investment
On Tue, Jul 21, 2015 at 08:07:34AM -0500, Rafael Possamai wrote:
> Has anyone tried to implement real-time SQC in their network? You can
> calculate summary statistics and use math to determine if traffic is
> "normal" or if there's a chance it's garbage. You won't be able to notice
> one-off attac
"Facebook uses similar technology to figure out what kind of useless news to
display on your feed."
In this case, it'll be of no use whatsoever. ;-)
-
Mike Hammett
Intelligent Computing Solutions
http://www.ics-il.com
- Original Message -
From: "Rafael Possamai"
To: "Jar
You could do SQC with FastNetMon. We have per subnet / per host and
per protocol counters. We are working on multi 100GE mode very well :)
On Tue, Jul 21, 2015 at 4:07 PM, Rafael Possamai wrote:
> Has anyone tried to implement real-time SQC in their network? You can
> calculate summary statistics
Has anyone tried to implement real-time SQC in their network? You can
calculate summary statistics and use math to determine if traffic is
"normal" or if there's a chance it's garbage. You won't be able to notice
one-off attacks, but anything that repeats enough times should pop up.
Facebook uses s
On Tue, Jul 21, 2015 at 08:09:56AM -0400, Curtis Maurand wrote:
>
> DNS is still largely UDP.
Water is also still wet :) - but you may not be doing 10% of your
links as UDP/53.
DNS can also use TCP as well, including sending more than one
query in a pipelined fashion.
Th
Call it China hacking us and you'll get more attention, right or wrong.
-
Mike Hammett
Intelligent Computing Solutions
http://www.ics-il.com
- Original Message -
From: "Christopher Morrow"
To: "Colin Johnston"
Cc: ""
Sent: Monday, July 20, 2015 4:44:47 PM
Subject: Re:
Probably not that big of a deal.
-
Mike Hammett
Intelligent Computing Solutions
http://www.ics-il.com
- Original Message -
From: "Valdis Kletnieks"
To: "Colin Johnston"
Cc: nanog@nanog.org
Sent: Monday, July 20, 2015 3:20:01 PM
Subject: Re: 20-30Gbps UDP 1720 traffic ap
On 7/20/2015 5:59 PM, Ricky Beam wrote:
On Sat, 18 Jul 2015 06:45:43 -0400, Seth Mos wrote:
For now, all the customers with the Ubee in bridge mode are SOL. It's
not clear what the reason is, but Ubee in bridge mode with IPv6 is
listed on the road map. If that's intentional policy or that th
DNS is still largely UDP.
--Curtis
On 7/20/2015 5:40 PM, Ca By wrote:
Folks, it may be time to take the next step and admit that UDP is too
broken to support
https://tools.ietf.org/html/draft-byrne-opsec-udp-advisory-00
Your comments have been requested
On Mon, Jul 20, 2015 at 8:57 AM, D
That may be true of metro areas, but in rural USA there's plenty of TDM
to go around. Telco's are still delivering broadband on ADSL and phone
on TDM. Worse those trunked circuits are TDM over HDSL. In many rural
areas, there's not even ADSL or cable and that's within 40 miles of a
small city
Hello, folks!
Could anybody tun my toolkit https://github.com/FastVPSEestiOu/fastnetmon with
collect_attack_pcap_dumps = on option agains this attack type?
With pcap dump we could do detailed analyze and share all details with
Community.
On Tue, Jul 21, 2015 at 2:16 PM, Jared Mauch wrote:
>
>
I'm reminded of the "the russians are hacking our water system"
stories from a few years back, when it turned out the water system
adminstrator was on vacation in russia.
often traffic comes from unexpected locations. perhaps you
should fail-closed with good business practices to
In article , Brett
Watson writes
This goes back a number of years. There was a product that literally
was a cardboard box that contained everything one needed to get started
on the Internet. Just add a modem and a computer, and you were on your
way. No fuss, no "learning curve”.
MCI (way ba
22 matches
Mail list logo