Re: Verizon Wireless LTE/4G and SIP Header Manipulation

2015-09-22 Thread Jared Mauch
> On Sep 22, 2015, at 4:24 PM, Christopher Morrow > wrote: > > On Tue, Sep 22, 2015 at 4:16 PM, Mark Stevens wrote: >> The TAG unique identifier is being changed and this only happens through VZ >> LTE networks, not wired networks or even other cellular data networks >> (Sprint, ATT, T-Mobile)

Re: Verizon Wireless LTE/4G and SIP Header Manipulation

2015-09-22 Thread Christopher Morrow
On Tue, Sep 22, 2015 at 4:16 PM, Mark Stevens wrote: > The TAG unique identifier is being changed and this only happens through VZ > LTE networks, not wired networks or even other cellular data networks > (Sprint, ATT, T-Mobile) > Their phones are IPV6 so the packets are getting converted to IPV4

Re: Verizon Wireless LTE/4G and SIP Header Manipulation

2015-09-22 Thread Mark Stevens
The TAG unique identifier is being changed and this only happens through VZ LTE networks, not wired networks or even other cellular data networks (Sprint, ATT, T-Mobile) Their phones are IPV6 so the packets are getting converted to IPV4 so it is either happening there or there is a global ALG in

Re: Verizon Wireless LTE/4G and SIP Header Manipulation

2015-09-22 Thread William McCall
I've seen this behavior before (a few years back). Moved off of VzW for this reason (i'm lazy to implement workarounds). IIRC when i investigated, the ALG was trying to not do something nefarious but just poorly implemented. On Tue, Sep 22, 2015 at 12:51 PM, Christopher Morrow < morrowc.li...@gma

Re: Verizon Wireless LTE/4G and SIP Header Manipulation

2015-09-22 Thread Christopher Morrow
On Tue, Sep 22, 2015 at 12:22 PM, Christopher Morrow wrote: > On Tue, Sep 22, 2015 at 12:03 PM, Mark Stevens wrote: >> Hi All, >> >> Has anyone seen that something (most likely an alg) on Verizon's LTE/4G >> network is rewriting SIP headers,in particular From Tag identifiers? We >> cannot make a

Re: Verizon Wireless LTE/4G and SIP Header Manipulation

2015-09-22 Thread Dovid Bender
We have this every now and then. Mainly with traffic from the middle east. Switching the port to something other than 5060 seems to help most of the time. Every so often we need to go the vpn route. I know that yealink, snim and possibly polycom have vpn clients built into them. --Original M

RE: Verizon Wireless LTE/4G and SIP Header Manipulation

2015-09-22 Thread Naslund, Steve
Send all of your signaling over TLS and they won't be able to see or modify it. Steven Naslund Chicago IL -Original Message- From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Mark Stevens Sent: Tuesday, September 22, 2015 11:03 AM To: nanog@nanog.org Subject: Verizon Wireless LTE/

Re: Verizon Wireless LTE/4G and SIP Header Manipulation

2015-09-22 Thread Mark Stevens
TLS would be perfect but it is not viable at this point. I guess with Verizon being what they are, it is time to start working on a SIP over TLS implementation. On 9/22/2015 12:24 PM, joel jaeggli wrote: On 9/22/15 9:03 AM, Mark Stevens wrote: Hi All, Has anyone seen that something (most li

Re: Verizon Wireless LTE/4G and SIP Header Manipulation

2015-09-22 Thread joel jaeggli
On 9/22/15 9:03 AM, Mark Stevens wrote: > Hi All, > > Has anyone seen that something (most likely an alg) on Verizon's LTE/4G > network is rewriting SIP headers,in particular From Tag identifiers? We > cannot make a SIP call from our cellphones (using cellular data) beyond > 30 seconds because the

Re: Verizon Wireless LTE/4G and SIP Header Manipulation

2015-09-22 Thread Christopher Morrow
On Tue, Sep 22, 2015 at 12:03 PM, Mark Stevens wrote: > Hi All, > > Has anyone seen that something (most likely an alg) on Verizon's LTE/4G > network is rewriting SIP headers,in particular From Tag identifiers? We > cannot make a SIP call from our cellphones (using cellular data) beyond 30 > secon

Verizon Wireless LTE/4G and SIP Header Manipulation

2015-09-22 Thread Mark Stevens
Hi All, Has anyone seen that something (most likely an alg) on Verizon's LTE/4G network is rewriting SIP headers,in particular From Tag identifiers? We cannot make a SIP call from our cellphones (using cellular data) beyond 30 seconds because the TAGs are rewritten and the destination Asterisk

Re: cisco.com unavailable

2015-09-22 Thread Bob Clabaugh
I've been using it from Oregon, USA all morning without problems. On 9/21/2015 11:51 AM, Murat Kaipov wrote: Hi folks! Is cisco.com unavailable or it is affected just for Rostelecom?

Re: DDoS auto-mitigation best practices (for eyeball networks)

2015-09-22 Thread Chase Christian
Most video games utilize peer-to-peer traffic (which is why many require port forwarding/UPnP), so the attacker has the IP addresses of all of their peers in their firewall logs. There are even 'gaming routers' that specialize in gaming this peer-to-peer system for competitive advantages, such as s

Re: high latency on West Coast?

2015-09-22 Thread Tom Canabarro
Does anyone have an official explanation or report for this issue? We found that latency between US-WEST-2 and US-WEST-1 jumped from 20ms to over 200ms during a ~48 hour period, roughly between midnight Sept. 18th UTC to 1am Sept. 20th UTC. AWS confirmed they were working on an issue with an exter