Re: someone is using my AS number

On Sat, 15 Jun 2019 05:38:23 -0700, Owen DeLong said: > What I heard you say is: “I’m not going to offer a solution to your > problem, > but you shouldn’t use the one you have that currently works because some > things > my friends and I are doing react poorly to it and you may suffer

Bgpmon alternatives?

Any simple and easy bgpmon alternatives you guys could recommend?

RE: Target stores down

According to the news, sales associates can complete transactions using their (very small) handheld units. Frank -Original Message- From: NANOG On Behalf Of Jared Mauch Sent: Saturday, June 15, 2019 4:27 PM To: Andy Ringsmuth Cc: NANOG Subject: Re: Target stores down I know what I

Re: Issue with point to point VPNs behind NAT and asymmetric traffic

On 6/15/19 2:06 PM, William Herrin wrote: This is probably enabled on one or both ends: http://tldp.org/HOWTO/Adv-Routing-HOWTO/lartc.kernel.rpf.html Do some distros enable this now? I thought it was disabled by default. Disable it. Or make sure it's using loose (2) filtering. rp_filter

Re: Target stores down

I know what I was told and what I observed in store. They said network issue but it looked more like application/database issue. When they would Scan an item it would not stay scanned. It would delete itself and provide an error (likely when it was recording the inventory debit) They would

Re: Issue with point to point VPNs behind NAT and asymmetric traffic

On Wed, Jun 12, 2019 at 2:45 PM Anurag Bhatia wrote: > > > I am running two site to site VPNs (wireguard now, OpenVPN earlier) between my home and a remote server over two different WAN links. Both WAN links are just consumer connections - one with public IP and one with CGNATed IP. > The

Target stores down

Curious if anyone knows what happened (or is still happening) with the global outage of POS systems at Target stores. Andy Ringsmuth 5609 Harding Drive Lincoln, NE 68521-5831 (402) 304-0083 a...@andyring.com

Re: Postmaster@

On Fri, Jun 14, 2019 at 6:44 PM Gary E. Miller wrote: > Is it no longer required to monitor the postmaster@ ? > > Did RFC 822 and RFC 5321 get repealed? Or is M$ more special than the > rest of us? Where have you been? The champions of the cause gave up years ago.

Re: Postmaster@

I wonder how much do-not-reply@ and similar is spammed? On June 15, 2019 at 01:47 m...@beckman.org (Mel Beckman) wrote: > Postmaster@ is so widely spammed as to be useless. Standards, and even laws, > can be overcome by reality. Witness the DoNotCall list. > > -mel beckman > > > On

Re: Issue with point to point VPNs behind NAT and asymmetric traffic

Hi I did disable firewall at both ends to test and the result was similar. Please note firewall rules do allow the UDP ports to establish the VPN link and inside the link, there aren't any firewall restrictions. However, as I said I wonder if or if not the CGNAT device of my link 2 will allow

Re: Postmaster@

On Fri, 14 Jun 2019, Gary E. Miller wrote: Is it no longer required to monitor the postmaster@ ? Did RFC 822 and RFC 5321 get repealed? Or is M$ more special than the rest of us? It is monitored just not by humans and you did receive a response that could be useful though you didn't like

Re: someone is using my AS number

On Sat, 15 Jun 2019, Job Snijders wrote: The moment they mangle the AS_PATH on their announcement and insert 2914 in their announcement towards NSP, the following can happen: When ISP A would want to poison the path, ISP A may expect the following paths to be visible from the ATT and NTT

Re: someone is using my AS number

On Sat, Jun 15, 2019 at 4:45 PM Owen DeLong wrote: > > On Jun 15, 2019, at 5:43 AM, Job Snijders wrote: > >> On Sat, Jun 15, 2019 at 2:38 PM Owen DeLong wrote: > > owen> >> What I heard you say is: “I’m not going to offer a solution to your problem, but you shouldn’t use the one you have that

Re: someone is using my AS number

> On Jun 15, 2019, at 6:03 AM, Job Snijders wrote: > > On Sat, Jun 15, 2019 at 05:32:21AM -0700, Owen DeLong wrote: >>> What is the principal harm of doing this? Honest question. I'm not >>> advocating for anything, just curious. >>> >>> Excellent question. >>> >>> 1/ We can’t really

Re: someone is using my AS number

> On Jun 15, 2019, at 5:43 AM, Job Snijders wrote: > > On Sat, Jun 15, 2019 at 2:38 PM Owen DeLong wrote: >> Job, >> >> Permit me to apply some reflective listening to your statement: >> >> What I heard you say is: “I’m not going to offer a solution to your problem, >> but you shouldn’t

Re: someone is using my AS number

On Sat, Jun 15, 2019 at 09:31:03AM -0400, Jon Lewis wrote: > On Sat, 15 Jun 2019, Job Snijders wrote: > > There is no signal from the remote ASN (the one that receive the > > route announcement) to the Originator ASN about the remote ASN's > > loop detection policies. Therefor, since you can't

Re: someone is using my AS number

> On Jun 14, 2019, at 4:22 AM, Jared Mauch wrote: > > > >> On Jun 14, 2019, at 4:02 AM, Filip Hruska wrote: >> >> HE doesn't provide any community based TE and I would say they're a pretty >> major network. > > With all respect to my friends at HE, this is a major gap for a network in

Re: someone is using my AS number

On Sat, 15 Jun 2019, Job Snijders wrote: There is no signal from the remote ASN (the one that receive the route announcement) to the Originator ASN about the remote ASN's loop detection policies. Therefor, since you can't know what the remote side will do ahead of time. The only recourse left

Re: someone is using my AS number

On Sat, 15 Jun 2019, Filip Hruska wrote: In other words, if I have an upstream that uses 6939 for transit, I'm free to permanently prepend 6939 to stop propagation to that network? Isn't using a community that says "do not export to 6939" a better and much cleaner solution? Sure,

Re: someone is using my AS number

On Sat, Jun 15, 2019 at 05:32:21AM -0700, Owen DeLong wrote: > > What is the principal harm of doing this? Honest question. I'm not > > advocating for anything, just curious. > > > > Excellent question. > > > > 1/ We can’t really expect on the loop detection to work that way at > > the “jacked”

Re: someone is using my AS number

On 15 June 2019 2:32:21 pm GMT+02:00, Owen DeLong wrote: > > >> On Jun 13, 2019, at 7:06 AM, Job Snijders wrote: >> >> Hi Joe, >> >> On Thu, Jun 13, 2019 at 9:59 Joe Abley > wrote: >> Hey Joe, >> >> On 12 Jun 2019, at 12:37, Joe Provo

Re: someone is using my AS number

On Sat, Jun 15, 2019 at 2:38 PM Owen DeLong wrote: > Job, > > Permit me to apply some reflective listening to your statement: > > What I heard you say is: “I’m not going to offer a solution to your problem, > but you shouldn’t use the one you have that currently works because some > things my

Re: someone is using my AS number

> On Jun 13, 2019, at 8:24 AM, Job Snijders wrote: > > On Thu, Jun 13, 2019 at 11:18 Warren Kumari > wrote: > On Thu, Jun 13, 2019 at 9:59 AM Joe Abley > wrote: > > > > Hey Joe, > > > > On 12 Jun 2019, at 12:37, Joe Provo >

Re: someone is using my AS number

> On Jun 13, 2019, at 7:06 AM, Job Snijders wrote: > > Hi Joe, > > On Thu, Jun 13, 2019 at 9:59 Joe Abley > wrote: > Hey Joe, > > On 12 Jun 2019, at 12:37, Joe Provo > wrote: > > > On Wed, Jun 12, 2019 at 04:10:00PM +, David

Re: SSL VPN

The former. Mark. On 13/Jun/19 20:25, Jasper Backer wrote: > > Just wondering, is the client export actually tied to the logged in > user, or can every user download all other VPN profiles (which > hopefully are of little use as credentials are likely unknown)? It > used to be that way, would be

Re: Postmaster@

* m...@beckman.org (Mel Beckman) [Sat 15 Jun 2019, 03:49 CEST]: Postmaster@ is so widely spammed as to be useless. Not my experience at all (*knocks wood*). RIPE database contacts, on the other hand... -- Niels.

Re: Postmaster@

Gary E. Miller wrote: > Is it no longer required to monitor the postmaster@ ? > > Did RFC 822 and RFC 5321 get repealed? Or is M$ more special than the > rest of us? Not just M$ but Cloudflare too: https://www.cloudflare.com/abuse Worse is that you might need to complete a CAPTCHA just to