Weekly Global IPv4 Routing Table Report

This is an automated weekly mailing describing the state of the Global IPv4 Routing Table as seen from APNIC's router in Japan. The posting is sent to APOPS, NANOG, AfNOG, SANOG, PacNOG, SAFNOG UKNOF, TZNOG, MENOG, BJNOG, SDNOG, CMNOG, LACNOG and the RIPE Routing WG. Daily listings are sent to

Re: IRR mirrors de-sync from ARIN or irrd4 bug or ARIN streaming is broken?

>From the CAIDA study on this : "In October 2021, we found matching Route Origin Authorization objects (ROAs) for around 20% of RADB IRR records, and a consistency of 38% and 60% in v4 and v6." Do think much

Compiling RTG on EL9

Hello, I am just curious with the demise of EL7 if anyone else is working on trying to compile RTG for EL9. If you don't know what RTG is it's just an old SNMP poller/graph plotter that some networks have found useful in the past. If you've had any luck getting this recompiled in EL9 please

Re: eero outage

On Wed, Jul 10, 2024 at 06:10:24PM -0700, Warren Kumari wrote: >On Wed, Jul 10, 2024 at 5:56 PM, Niels Bakker <[1]niels=na...@bakker.net> >wrote: > > * [2]war...@kumari.net (Warren Kumari) [Wed 10 Jul 2024, 23:03 CEST]: > >More seriously, erm, you mean Eero like the wireless

[NANOG-announce] Take Advantage of Discounted Pricing for N92! Talk of the Week + N91 Pics Available on Flickr

*Join Us in Toronto for NANOG 92! * *Register Now for our 92nd Community-Wide Meeting in Toronto, 21 - 23 Oct.* Take advantage of early bird discounted pricing. The hotel block is available to registered attendees through 20 August. *REGISTER NOW * *NANOG

Take Advantage of Discounted Pricing for N92! Talk of the Week + N91 Pics Available on Flickr

*Join Us in Toronto for NANOG 92! * *Register Now for our 92nd Community-Wide Meeting in Toronto, 21 - 23 Oct.* Take advantage of early bird discounted pricing. The hotel block is available to registered attendees through 20 August. *REGISTER NOW * *NANOG

Re: Dissecting the FCC’s Proposal to Improve BGP Security

> On Jul 11, 2024, at 11:02, t...@pelican.org wrote: > As a not-security person trying to get to grips with this, am I > mis-understanding the type of attack that this is pushing to mitigate? > My current understanding: > -Bad guys announce space for Facebook / Amazon / banks / whatever > -Some

RE: Dissecting the FCC’s Proposal to Improve BGP Security

On Thursday, 11 July, 2024 07:23, "Hank Nussbacher" said: > [ > https://www.kentik.com/blog/dissecting-the-fccs-proposal-to-improve-bgp-security/ > ]( > https://www.kentik.com/blog/dissecting-the-fccs-proposal-to-improve-bgp-security/ > ) As a not-security person trying to get to grips with

Dissecting the FCC’s Proposal to Improve BGP Security

https://www.kentik.com/blog/dissecting-the-fccs-proposal-to-improve-bgp-security/ -Hank

Re: IRR mirrors de-sync from ARIN or irrd4 bug or ARIN streaming is broken?

On Wed, Jul 10, 2024 at 07:10:48PM -0400, Aliaksei Sheshka wrote: > nothing! I suspect the mirror is out of sync. > > Now NTT mirror: Seems reloading helped: $ date Thu Jul 11 03:50:22 UTC 2024 $ whois -h rr.ntt.net 199.52.73.0/24 route: 199.52.73.0/24 origin: AS132055 descr:

Re: IRR mirrors de-sync from ARIN or irrd4 bug or ARIN streaming is broken?

On Wed, Jul 10, 2024 at 09:37:22PM -0400, Aliaksei Sheshka wrote: > On Wed, Jul 10, 2024 at 9:26 PM Job Snijders via NANOG > wrote: > > > Indeed, it appears both NTT’s and RADB’s mirror instances are > > desynchronized in relationship to ARIN’s IRR. Both NTT and RADB > > should do a database

Re: IRR mirrors de-sync from ARIN or irrd4 bug or ARIN streaming is broken?

On Wed, Jul 10, 2024 at 9:26 PM Job Snijders via NANOG wrote: > > > Aliaksei, > > Indeed, it appears both NTT’s and RADB’s mirror instances are > desynchronized in relationship to ARIN’s IRR. Both NTT and RADB should do a > database reload to rectify the issue. > > Desynchronisation can happen

Re: IRR mirrors de-sync from ARIN or irrd4 bug or ARIN streaming is broken?

Rubens, ARIN-NONAUTH was deprecated two years ago: https://www.arin.net/vault/announcements/20220404-irr/ Aliaksei, Indeed, it appears both NTT’s and RADB’s mirror instances are desynchronized in relationship to ARIN’s IRR. Both NTT and RADB should do a database reload to rectify the issue.

Re: IRR mirrors de-sync from ARIN or irrd4 bug or ARIN streaming is broken?

If you look at TC, you will see that this object is part of ARIN-NONAUTH: https://bgp.net.br/whois.html?q=199.52.73.0%2F24 route: 199.52.72.0/22 descr: Ernst & Young, Gurgaon Cyberpark, India origin: AS132055 mnt-by: MNT-EYL changed:

Re: eero outage

On Wed, Jul 10, 2024 at 5:56 PM, Niels Bakker wrote: > * war...@kumari.net (Warren Kumari) [Wed 10 Jul 2024, 23:03 CEST]: > > More seriously, erm, you mean Eero like the wireless devices? Aren't they > supposed to be mesh wifi thingies, and so traffic is local? Like, if eero. > com / an eero

IRR mirrors de-sync from ARIN or irrd4 bug or ARIN streaming is broken?

Hi folks! I noticed something unusual today, and perhaps some of you know the answer. Consider ARIN rr: $ whois -h rr.arin.net 199.52.73.0/24 route: 199.52.73.0/24 origin: AS132055 descr: EY India admin-c:IAM12-ARIN tech-c: DNSAD85-ARIN tech-c:

Re: eero outage

One post says it was working an hour ago. https://www.reddit.com/r/amazoneero/comments/1e07nlj/eero_up_down/ On Wed, Jul 10, 2024 at 5:56 PM Niels Bakker wrote: > * war...@kumari.net (Warren Kumari) [Wed 10 Jul 2024, 23:03 CEST]: > >More seriously, erm, you mean Eero like the wireless devices?

Re: eero outage

* war...@kumari.net (Warren Kumari) [Wed 10 Jul 2024, 23:03 CEST]: More seriously, erm, you mean Eero like the wireless devices? Aren't they supposed to be mesh wifi thingies, and so traffic is local? Like, if eero.com / an eero service goes down, well, … ¯\_(ツ)_/¯? From what I can tell from

Re: eero outage

On Wed, Jul 10, 2024 at 3:06 PM, Jared Mauch wrote: > Does anyone know about the big eero outage going on? > If only there was some sort of outages list, where big outages would be discussed…[0] More seriously, erm, you mean Eero like the wireless devices? Aren't they supposed to be mesh wifi

eero outage

Does anyone know about the big eero outage going on? - jared -- Jared Mauch | pgp key available via finger from ja...@puck.nether.net clue++; | http://puck.nether.net/~jared/ My statements are only mine.

[NANOG-announce] Fwd: Call for Presentations for NANOG 92 in Toronto, Canada

Subject: Call for Presentations for NANOG 92 in Toronto, Canada NANOG Community, The NANOG Program Committee (PC) would like to remind you that we are accepting proposals for in-person or live remote presentations at all sessions of NANOG 92, taking place in Toronto, ON, Canada on October 21-23,

Fwd: Call for Presentations for NANOG 92 in Toronto, Canada

Subject: Call for Presentations for NANOG 92 in Toronto, Canada NANOG Community, The NANOG Program Committee (PC) would like to remind you that we are accepting proposals for in-person or live remote presentations at all sessions of NANOG 92, taking place in Toronto, ON, Canada on October 21-23,

Blast-RADIUS attack

Hi Nanog Today we announced a vulnerability in the RADIUS protocol, based on its outdated use of the MD5 hash function. We wanted to share it with this list because we suspect many NANOG folks could be operating RADIUS in their networks (to control admin access to routers and switches and other

Re: Akamai connectivity issue across several states

Hello, just saw this - I'll ping you off-list. On Mon, Jul 08, 2024 at 04:07:09PM +, Schylar Utley wrote: >We are seeing significant connectivity issues across several states to >what appears to be only Akamai served websites. > > > >Most of all the traceroutes to

Spoofer Report for NANOG for Jun 2024

In response to feedback from operational security communities, CAIDA's source address validation measurement project (https://spoofer.caida.org) is automatically generating monthly reports of ASes originating prefixes in BGP for systems from which we received packets with a spoofed source address.

Akamai connectivity issue across several states

We are seeing significant connectivity issues across several states to what appears to be only Akamai served websites. Most of all the traceroutes to impacted sites, when they are impacted, go through Dallas Equinix. For instance, we are not seeing responses from Akamai network when packets

Re: Netrality NOC contact?

Thank you to everyone who responded off-list. Finally got things sorted out. Nothing like losing a line-card on a holiday weekend ...  On 7/6/24 16:36, Bryan Holloway wrote: Trying to get a hold of a meat-popsicle in Netrality's NOC. Their web-site only lists an e-mail address and no

Re: Out-of-Bailiwick DNS?

On 2024-07-06 14:57, Crist Clark wrote: If you’re LG, you own the software, you do cert pinning. Also, realize many (most? almost all?) are going to outsource the management of their vanity TLD to one of the existing companies in that market. Think of a brand that sells, I don’t know, shoes.

Re: Out-of-Bailiwick DNS? (Was: HE.net problem)

On 7/5/24 3:53 AM, Jeroen Massar via NANOG wrote: And... we all still have ICANN as an ultimate power, and the TLD itself, next to the above registrar. If you recall the facebook outage from last year, one of the interesting things from it was they are their own registrar for their domains.

Re: HE.net problem

On Thu 04 Jul 2024 18:16:28 GMT, Randy Bush wrote: > hak whacked me to add > http://dns.measurement-factory.com/tools/nagios-plugins/check_zone_rrsig_expiration.html > to my nagios deployment. > > anyone have some known sick in various ways dns zones against which to > test? Those domains are

Re: Out-of-Bailiwick DNS? (Was: HE.net problem)

FWIW I think TLDs should cost much more, like millions, other than where they provide legitimate internationalization or specific community service functions (TBD.) 1. They're just polluting the name space, many seem frivolous like .RODEO or .FISHING (yeah those are real.) 2. Vanity corporate

Re: Out-of-Bailiwick DNS?

On 7/6/24 8:06 PM, Robert McKay via NANOG wrote: On 2024-07-06 21:11, John Von Essen wrote: Ok…. now a rabbit hole. I looked at some vanity TLDs, and it appears the ALOT of big companies have their names as TLDs, but almost none of them are using it for anything. Why is that? Is it just a

Re: Out-of-Bailiwick DNS?

On 07/07/2024, 01:06:59, "Robert McKay via NANOG" wrote: People aren't used to URLs not ending in .com or possibly their local ccTLD. Anything else looks suspicious or isn't even recognised as a URL and less people will visit it. True but when you are multinational you probably have a

Re: Out-of-Bailiwick DNS? (Was: HE.net problem)

> If I have an LG TV and it wants to update to .LG and LG is > DNSSEC signing the whole chain, that sure seems more likely to be legit > than .lg.tv or some such. .lg and .he were mentioned as possible brand TLDs, but those are not allowed, because they are reserved for possible ccTLDs. gTLDs are

Re: Out-of-Bailiwick DNS?

On 2024-07-06 21:11, John Von Essen wrote: Ok…. now a rabbit hole. I looked at some vanity TLDs, and it appears the ALOT of big companies have their names as TLDs, but almost none of them are using it for anything. Why is that? Is it just a copyright play to protect the name from some else

Re: Out-of-Bailiwick DNS? (Was: HE.net problem)

According to Bill Woodcock : >-=-=-=-=-=- > > > >> On Jul 6, 2024, at 22:41, Paul Ebersman wrote: >> I've been surprised that none of the folks that got TLDs seem to be >> leveraging the technical/security brand protection like they could. > >A few are. A very few. SNCF. A few banks. I can't

Re: Out-of-Bailiwick DNS? (Was: HE.net problem)

It appears that Bill Woodcock said: >-=-=-=-=-=- > >> On Jul 6, 2024, at 22:11, John Von Essen wrote: >> I saw something online that said $250,000 but that didn’t make sense if its >> all paperwork. > >Heh. I see you are unfamiliar with ICANN. They’ve said that same paperwork >is likely to

Re: Out-of-Bailiwick DNS? (Was: HE.net problem)

If you’re LG, you own the software, you do cert pinning. Also, realize many (most? almost all?) are going to outsource the management of their vanity TLD to one of the existing companies in that market. Think of a brand that sells, I don’t know, shoes. Running a TLD is not part of their core

Re: Out-of-Bailiwick DNS? (Was: HE.net problem)

> On Jul 6, 2024, at 22:41, Paul Ebersman wrote: > I've been surprised that none of the folks that got TLDs seem to be > leveraging the technical/security brand protection like they could. A few are. A very few. SNCF. A few banks. > If I have an LG TV and it wants to update to .LG and LG

Re: Out-of-Bailiwick DNS? (Was: HE.net problem)

essen> I saw something online that said $250,000 but that didn't make essen> sense if its all paperwork. woody> Heh. I see you are unfamiliar with ICANN. They've said that woody> same paperwork is likely to cost $375k in ICANN staff time for woody> the next round. Because, you know, inflation

Re: Out-of-Bailiwick DNS? (Was: HE.net problem)

> On Jul 6, 2024, at 22:11, John Von Essen wrote: > I saw something online that said $250,000 but that didn’t make sense if its > all paperwork. Heh. I see you are unfamiliar with ICANN. They’ve said that same paperwork is likely to cost $375k in ICANN staff time for the next round.

Re: Out-of-Bailiwick DNS? (Was: HE.net problem)

I've found this conversation hugely of interest… The below isn't really a question, more of a high level clarification/further thinking. First, what actually happened and the impact (correct me if any of this is wrong): A stupid phishing complaint to NetSol by a 3rd party got he.net put into

Re: getting the memo, Out-of-Bailiwick DNS? (Was: HE.net problem)

See how little it has been necessary for me to pay attention to them since my net handle was assigned back in the early 90s or maybe late 80s? ;-) Cheers, -- jra3 On July 6, 2024 11:11:50 AM EDT, John Levine wrote: >According to Jay R. Ashworth : >>data I heard that that *was* a registry-side

Re: getting the memo, Out-of-Bailiwick DNS? (Was: HE.net problem)

According to Jay R. Ashworth : >data I heard that that *was* a registry-side hold (and hence it didn't matter >that it was NetSol). Or perhaps that NetSol was still the registry for .net -- >that's out of date now, isn't it? Uh, yeah, Verisign spun off the NetSol registrar over 20 years ago in

Netrality NOC contact?

Trying to get a hold of a meat-popsicle in Netrality's NOC. Their web-site only lists an e-mail address and no phone number. E-mails have gone unanswered for what I would consider an emergency ... unusual for a datacenter. If anyone from there is lurking, or if someone can point me to a

Re: Out-of-Bailiwick DNS? (Was: HE.net problem)

- Original Message - > From: "Robert L Mathews" > > However, if "example.com" uses "ns1.he.net" and "ns2.he.net" as its > nameservers, > having the second of those instead be "ns2.he.org" will keep "www.example.com" > reachable if he.net is placed on clientHold. > > That was presumably

Re: TLD jingle mail, Out-of-Bailiwick DNS? (Was: HE.net problem)

On Fri, Jul 5, 2024 at 6:25 PM John Levine wrote: > > Also, getting your own TLD doesn't necessarily make your risks less, it just > makes them different. You now have a direct relationship with the registry > back end provider that you have to not screw up, and due to ICANN's rules, > there is

Re: TLD jingle mail, Out-of-Bailiwick DNS? (Was: HE.net problem)

It appears that Bill Woodcock said: >ICANN’s going to open another round of TLD applications, and I expect a lot of >companies to go into that with their eyes more >open than last time, knowing why they’re doing it. It’s not about brand >protection, it’s about disintermediating the root >of

Weekly Global IPv4 Routing Table Report

This is an automated weekly mailing describing the state of the Global IPv4 Routing Table as seen from APNIC's router in Japan. The posting is sent to APOPS, NANOG, AfNOG, SANOG, PacNOG, SAFNOG UKNOF, TZNOG, MENOG, BJNOG, SDNOG, CMNOG, LACNOG and the RIPE Routing WG. Daily listings are sent to

Re: Out-of-Bailiwick DNS? (Was: HE.net problem)

On Jul 5, 2024, at 12:53 AM, Jeroen Massar via NANOG wrote: > Thus one only increases the risk by having multiple TLDs. That's not the case if you provide DNS servers for others, though. It is true that if he.net has nameservers of "ns1.he.net" and "ns2.he.net", making the second of those be

Re: Out-of-Bailiwick DNS? (Was: HE.net problem)

ebersman> - don't have all your business critical domains under the same ebersman> registrar (unless it's of the CSC/markmonitor class) jeroen> There is always going to be single point of failures in a jeroen> hierarchical tree like that. Everything in internet/infrastructure is risk tradeoffs

[Event] Our Networks: Does not (cloud) compute, July 27, Vancouver, BC

Hello all, sharing an event coming up at the end of the month in Vancouver, BC just after the IETF120 meeting-- It's a mix of community networks, local-first software, solar servers, right to repair, and more! --- *Our Networks 2024: Does not (cloud) compute* July 27, 2024 312 Main,

Re: Out-of-Bailiwick DNS? (Was: HE.net problem)

> On Jul 5, 2024, at 09:53, Jeroen Massar via NANOG wrote: > Please note that: > - Markmonitor is owned by Newfold Digital / Endurance International [1] > - Network Solutions is owned by Web.com [2] > - Web.com is... owned by Newfold Digital [3] > > And...

Out-of-Bailiwick DNS? (Was: HE.net problem)

> On 4 Jul 2024, at 23:22, Paul Ebersman wrote: > > cjc> On the other side of this, we all may be learning the value of not > cjc> having all of you NS records in a single zone with a domain under a > cjc> single registrar. > > From some trainings I did on how to be sure your DNS was robust:

Re: HE.net problem

>> what foss dns monitoring tools do folk use to alert of >> - iminent delegation expiry >> - inconsistent service (lame, soa mismatches, ...) >> - dnssec signing and timer issues >> - etc. > https://github.com/berthubert/simplomon thanks. may play hak whacked me to add

Re: HE.net problem

On Fri, 5 Jul 2024 at 06:59, Randy Bush wrote: > not to distract from everyone diagnosing someone else's problem, but ... > > what foss dns monitoring tools do folk use to alert of > - iminent delegation expiry > - inconsistent service (lame, soa mismatches, ...) > - dnssec signing and

Re: HE.net problem

http://www.rfc-editor.org/rfc/rfc2182.txtIs what you should use as guidance Sent via RFC1925 compliant deviceOn Jul 4, 2024, at 4:55 PM, Crist Clark wrote:On the other side of this, we all may be learning the value of not having all of you NS records in a single zone with a domain under a single

Re: HE.net problem

Or, the value of not using a free DNS service with (likely) no SLA for seemingly “critical” services. Good DNS services are relatively cheap in the grand scheme of things. On Jul 4, 2024, at 3:52 PM, Crist Clark wrote: On the other side of this, we all may be learning the value of not having

Re: HE.net problem

> On 4 Jul 2024, at 21:53, Crist Clark wrote: > >  > On the other side of this, we all may be learning the value of not having all > of you NS records in a single zone with a domain under a single registrar. The majority of real large DNS hosting providers have their authoritative under

Re: HE.net problem

not to distract from everyone diagnosing someone else's problem, but ... what foss dns monitoring tools do folk use to alert of - iminent delegation expiry - inconsistent service (lame, soa mismatches, ...) - dnssec signing and timer issues - etc. randy

Re: HE.net problem

After a metric ton of screaming, we did get the issue solved. Thanks everyone, and we WILL be following up with the powers that be. Reid On Thu, Jul 4, 2024, 3:31 PM Reid Fishler wrote: > Network Solutions has decided to put our domain name on Client Hold due to > a single phishing complaint

Re: HE.net problem

cjc> On the other side of this, we all may be learning the value of not cjc> having all of you NS records in a single zone with a domain under a cjc> single registrar. >From some trainings I did on how to be sure your DNS was robust: - don't have all your business critical domains under the

Re: HE.net problem

It appears that Reid Fishler via NANOG said: >-=-=-=-=-=- > >Network Solutions has decided to put our domain name on Client Hold due to >a single phishing complaint about a web page, which happens to just be a >page of information about another domain from bgp.he.net. Network Solutions >has been

Re: HE.net problem

Yup; I blew that one too. I've been told it was cleared around 2020Z, and whois reflects that, though my dig +trace doesn't seem to be behaving as expected. Cheers, -- jra - Original Message - > From: "Crist Clark" > To: "Mel Beckman" > Cc: nanog@nanog.org > Sent: Thursday, July 4,

Re: HE.net problem

On the other side of this, we all may be learning the value of not having all of you NS records in a single zone with a domain under a single registrar. (From someone who has personal domains hosted on HE DNS.) On Thu, Jul 4, 2024 at 1:01 PM Mel Beckman wrote: > Aha. Just as I suspected,

Re: HE.net problem

jra> We have a report on outages that he.net has been placed in ICANN jra> client hold, and people's DNS service is falling over on this jra> Independence day. Seems to have had hold removed 20:20 zulu, according to whois. Domain back in .net and working again.

Re: HE.net problem

Aha. Just as I suspected, bureaucrats at Network Solutions are to blame. I have had many run-ins with NS and their inscrutable policies and odd viewpoints. I was once suspended for running a web cache that NS incorrectly claimed was stealing domain content. No engineer on the NS side seemed to

Re: HE.net problem

Network Solutions has decided to put our domain name on Client Hold due to a single phishing complaint about a web page, which happens to just be a page of information about another domain from bgp.he.net. Network Solutions has been contacted, and refuses to handle this issue in ANY expedited

Re: HE.net problem

Ryan, Right you are. The dig still fails. hopefully the ICANN issue gets fixed, and a pox on any bureaucrat who arranged for this to happen over a holiday weekend! -mel On Jul 4, 2024, at 12:33 PM, Ryan Hamel wrote:  Mel, Your local caching resolver knows the IPs for ns[1-5].he.net,

Re: HE.net problem

Mel, Your local caching resolver knows the IPs for ns[1-5].he.net, which skips over the need for querying the root DNS resolvers, and gtld-servers (glue records). If the TTL (2 days) expires on your resolver before HE fixes their issue, you will not be able to resolve anything for that domain.

Re: HE.net problem

I've been informed that the CEO of HE is on this as of 1512EDT. I approve of the scale of this response. :-) Cheers, -- jra On July 4, 2024 2:55:34 PM EDT, Jay Ashworth wrote: >We have a report on outages that he.net has been placed in ICANN client hold, >and people's DNS service is falling

Re: HE.net problem

Our he.net dns appears to be fine at this time: $ nslookup server ns1.he.net Default server: ns1.he.net Address: 2001:470:100::2#53 Default server: ns1.he.net Address: 216.218.130.2#53 > set type=A > jet.net. Server: ns1.he.net Address:216.218.130.2#53 Name: jet.net Address:

Re: HE.net problem

Cool, thanks. We had a couple of other reports of people making support calls and being asked to reboot their modems, so I wanted to make sure tier 3 had gotten it. And I figured tier 3 would be here. :-) Cheers, -- jra On July 4, 2024 3:00:12 PM EDT, Ryan Hamel wrote: >I called their

Re: HE.net problem

I called their support when that outage thread came in, they're already aware and taking a look now. Ryan Hamel From: NANOG on behalf of Jay Ashworth Sent: Thursday, July 4, 2024 11:55 AM To: nanog@nanog.org Subject: HE.net problem Caution: This is an

HE.net problem

We have a report on outages that he.net has been placed in ICANN client hold, and people's DNS service is falling over on this Independence day. If you work in DNS for HE, you might want to look into this. I have double checked the report, and I am seeing the status as well. Hurricane serves

LACNOG 2024 – Call for Presentations (Last 2 weeks)

Hi NANOG, A friedly reminder of the CFP for LACNOG 2024. Thanks. Regards. LACNOG 2024 – Call for Presentations LACNOG, the Latin American and Caribbean Network Operators Group, will hold its LACNOG 2024 conference from 7 to 11 October 2024 together with the LACNIC 42 event. The event is

Re: charging for config changess

Cologix is $450/mo even if your contract and the Cologix legal department says it's a different amount. $250 one time disconnect is cheap. On Tue, Jul 2, 2024 at 4:40 PM Justin Krejci wrote: > Reminds me of some colo providers that charge you to cancel a service. > Want to disconnect a cross

Re: charging for config changess

Reminds me of some colo providers that charge you to cancel a service. Want to disconnect a cross connect? *bam* $250, or some such obscene amount. -Original Message- From: Aaron C. de Bruyn via NANOG mailto:%22aaron%20c.%20de%20bruyn%20via%20nanog%22%20%3cna...@nanog.org%3e>> Reply-To:

Re: Any representitives from ip2location lurking

FWIW I've communicated with them via supp...@ip2location.com On Tue, Jul 2, 2024 at 12:33 PM Jim Bonnet via NANOG wrote: > Hello folks, > > Are there any folks from ip2location lurking on the list? Could you ping > me directly. We have a geofeed issue I'd like to ask about. > > Thank you. > Jim

Any representitives from ip2location lurking

Hello folks, Are there any folks from ip2location lurking on the list? Could you ping me directly. We have a geofeed issue I'd like to ask about. Thank you. Jim Bonnet Broadcom CloudOPS -- This electronic communication and the information and any files transmitted with it, or attached to it,

Re: charging for config changess

On Mon, Jul 1, 2024 at 11:01 AM heasley wrote: > Sun, Jun 30, 2024 at 02:17:12PM -0700, Randy Bush: > Many of those things could be automated via a customer portal. > Oh totally. Want to update your reverse DNS record? Just put in a credit card number and *bam* $250 charge to your card. ;)

Re: charging for config changess

On Sun, Jun 30, 2024 at 02:17:12PM -0700, Randy Bush wrote: > has charging for config changes a la > https://www.arelion.com/customer-excellence/customer-support/online-technical-change-pricing > become common while i was not looking? admittedly, i have not looked > for a long time.

Re: charging for config changess

From experience, I can imagine that Arelion has a very small subset of customers that are blowing up their tech support for changes like these constantly. I'm sure it's a punitive measure to deter these guys. Aaron On 30.06.2024 20:33, Tim Burke wrote: First I've heard of a provider doing

Re: charging for config changess

Sun, Jun 30, 2024 at 02:17:12PM -0700, Randy Bush: > has charging for config changes a la > https://www.arelion.com/customer-excellence/customer-support/online-technical-change-pricing > become common while i was not looking? admittedly, i have not looked > for a long time. Many of those things

Re: Geolocation IP - www.firstinterstatebank.com

> https://datatracker.ietf.org/doc/html/rfc8805 https://datatracker.ietf.org/doc/html/rfc9092 will show you how to use 8805 randy

Re: Geolocation IP - www.firstinterstatebank.com

Yes, all ranges have geofeed. Regards, -- Jarek Kasjaniuk pon., 1 lip 2024 o 15:14 Christopher Hawker napisał(a): > > As trivial as this sounds, do you have a geofeed for your ranges set-up? > > https://datatracker.ietf.org/doc/html/rfc8805 > > Regards, > Christopher Hawker > > Get Outlook for

Re: Geolocation IP - www.firstinterstatebank.com

As trivial as this sounds, do you have a geofeed for your ranges set-up? https://datatracker.ietf.org/doc/html/rfc8805 Regards, Christopher Hawker Get Outlook for Android From: NANOG on behalf of Jarek Kasjaniuk Sent: Monday, July 1,

Geolocation IP - www.firstinterstatebank.com

Hello, does anyone have contact to someone from www.firstinterstatebank.com ? Some IP addessess from ASN 31998 can't access their website. We see information like: "we have limited website access for IP addresses outside of the United States and Canada to online banking platforms only." I have

Re: charging for config changess

AS7545 charge fees for changes. Even for trivial things such as updating RDNS records. CH Get Outlook for Android From: NANOG on behalf of Tim Burke Sent: Monday, July 1, 2024 11:33:46 AM To: Randy Bush Cc: NANOG Subject: Re:

Re: charging for config changess

First I’ve heard of a provider doing it… and we do business with 3356, the one carrier I’d expect to do something like this :-) Might just be me, but I rarely have to have config changes done on circuits after provisioning, short of enabling dual stack bgp on a circuit that didn’t have it

Re: Looking for DISA/DOD contact

I guess I could try that. My fear is that it would simply end up being read by the same people you get when you call the DISA helpdesk, and that they would see who it was from, tie it to a closed ticket where they already told me they couldn't help me because I wasn't military or a government

Re: Looking for DISA/DOD contact

Thank you. That is helpful. Mike On Sun, Jun 30, 2024 at 12:31 AM wrote: > The people at DISA you were dealing w/ aren't a Tier I service desk, > they're the service desk that lower service desks open tickets w/. > > Think of DISA as a Tier I ISP and the normal .mil user as a residential >

charging for config changess

has charging for config changes a la https://www.arelion.com/customer-excellence/customer-support/online-technical-change-pricing become common while i was not looking? admittedly, i have not looked for a long time. randy

Re: Looking for DISA/DOD contact

The people at DISA you were dealing w/ aren't a Tier I service desk, they're the service desk that lower service desks open tickets w/. Think of DISA as a Tier I ISP and the normal .mil user as a residential user. See if one of your customers can put you in contact w/ their IT people (Usually a

Re: Looking for DISA/DOD contact

Thanks. That makes a little more sense to me. I know the questions DISA asked me when I called them, and I couldn't imagine just having the MIL-side email correspondent open a ticket directly with DISA. They would likely be more overwhelmed than I was. I'll talk to a couple of my customers

Re: Looking for DISA/DOD contact

One option is you said you have companies that do business with the DOD. Have one of them reach out to a contracting person about opening a ticket. That also allows there to be a claim that unblocking is mission essential vs someone trying to communicate with family. Normally the contracting

Re: Looking for DISA/DOD contact

Thanks again,Scott. I'll be patient! Mike Tindor On Sat, Jun 29, 2024 at 12:18 PM Scott Q. wrote: > All that sounds very familiar, I'm 100% sure it's the same issue. > > As I said, there are DISA folks here, they might reach out and give you > further steps. They did in my case, you just

Re: Looking for DISA/DOD contact

All that sounds very familiar, I'm 100% sure it's the same issue. As I said, there are DISA folks here, they might reach out and give you further steps. They did in my case, you just have to be more patient / on the ball than I was... Good luck! On Saturday, 29/06/2024 at 11:44 Mike Tindor

Re: Looking for DISA/DOD contact

Scott, Thanks for responding. Unfortunately, I think my situation is a little more dire, or at least involved. I probably should have said this before, but I had done TCP 25 outbound testing from our /23 to various .MIL MX's that I know were responding and could not establish a connection /

Re: Looking for DISA/DOD contact

There are DISA folks lurking here. I had a similar issue where our block was labeled as residential by their new firewall, and DISA front-desk isn't yet trained on this mechanism so they can't help. I escalated the issue to a lot of groups but in the end I gave up, too much bureaucracy. The

  1   2   3   4   5   6   7   8   9   10   >