Re: Article: DoD, DoJ press FCC for industry-wide BGP security standard

Way overdue! In the last 4 weeks, I've had at least 20 diff conversations with FSI Network operators re: BGP hijacking, how to detect and in the future, mitigate with higher levels of success. Come on BGP RPKI/ROA adaption. I found the easiest way is via ISP pressure to implement dropping invalid r

Re: OOB management options @ 60 Hudson & 1 Summer

Give the Verizon Machine to Machine plan a try before you give up on the cellular. --Pete From: NANOG on behalf of Saku Ytti Sent: Friday, April 16, 2021 12:33 AM To: Matthew Crocker Cc: NANOG Subject: Re: OOB management options @ 60 Hudson & 1 Summer On F

Re: (Slightly OT?) K8S Platform As A Service Recommendations

You could look at the combo of Tinkerbell and CAPI (ClusterAPI). Happy to chat more off list. -matt On Wed, Apr 7, 2021, 10:42 AM Charles N Wyble wrote: > Hello all, > > > I know this is primarily a networking list, but I know lots of server > admins hang out here. > > Does anyone have a recomm

AWS using 169.254.0.0/30 for ptp VPNs.

Hello all, Looking for any fresh experience with this: https://docs.aws.amazon.com/vpn/latest/s2svpn/VPNTunnels.html Any problems experienced with using that reserved space as a non-local destination? Seems like it might not be wise WRT RFC3927.Apparently space from RFC1918 is not an option

DDoS Attacks targeting VPN/IPSEC endpoints

Any one else seeing this? Hearing some isolated events across different industry segments. If you are, can you provide any TTPs?

Re: Disney+ Geolocation issues

We're seeing the same thing. Actually we saw it during pre-signup. Reached out to Disney+ weeks ago as well, with no response. Now it's launched, our support lines are flooded with people unable to give Disney all their moneys.We finally got through to Disney+ support after 2.5hrs on hold to

RE: rr.level3.net on autopilot?

Shoot an email to ipad...@centurylink.com and we'll give you a hand. If you are an active customer with valid circuit ID getting help from the NOC on this should be a solution they know how to provide, if you have reached the correct center. Folks that are not or have left behind old entries nee

Re: Centurylink Looking Glass fail

+1, or reactivate the Level(3) AS 3356 LG. --pete From: NANOG on behalf of Ca By Sent: Sunday, August 18, 2019 4:49 PM To: North American Network Operators' Group Subject: Centurylink Looking Glass fail Paging someone at Centurylink to fix your looking glass.

RE: AS3549 NOC contacts? Another BGP hijack

Our info is up to date on the whois with ARIN where the issuance is from https://whois.arin.net/rest/asn/AS3549/pft?s=3549 Preferred is ipad...@centurylink.com From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Mike Bolitho Sent: Friday, July 19, 2019 4:33

Re: Flexible OTN / fractional 100GbE

https://www.ekinops.com/products/flexrate-modules/aggregation-and-encryption-modules/pm-100g-agg --Pete PM 100G-AGG | Ekinops www.ekinops.com 100G aggregation module The EKINOPS PM 100G-AGG is a mu

RE: Issue with Geolocation in Virginia US

This sometimes helps https://support.google.com/websearch/contact/ip you should probably also seek out getting geo updated on at least 3 different ones you have 3 different results. 129.46.232.65 ip2location Raleigh NC neustarbutler TN maxmind Bridgewater NJ From: NANOG [mailto

Re: FYI - Major upgrade this weekend to www.arin.net and ARIN Online

Link fails - ARTICLE NOT FOUN --Pete From: NANOG on behalf of John Curran Sent: Wednesday, February 27, 2019 10:56:27 AM To: nanog list Subject: FYI - Major upgrade this weekend to www.arin.net and ARIN Online NANOGers - This weekend there will be a major up

RE: Youtube Outage

Well at least the BGP looks good this time and it's not being sent to Pakistan. -Original Message- From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Kenneth McRae via NANOG Sent: Tuesday, October 16, 2018 8:40 PM To: NANOG Subject: Youtube Outage Is this widespread? This communic

Re: 3rd party QSFP-100G-LR4-S for Cisco

FS.COM --Pete From: NANOG on behalf of Ryugo Kikuchi Sent: Tuesday, May 29, 2018 7:48:16 AM To: nanog@nanog.org Subject: 3rd party QSFP-100G-LR4-S for Cisco Hey all, Does anyone have a recommended model of 3rd party's "QSFP-100G-LR4-S" for Cisco ASR and Nexu

RE: ALTDB - Getting records removed

Ditto also interested have dozens of old entries from previous delegations would like to see cleaned up but my google-foo tells me it's been a nonresponsive black hole several years now that probably should just go away if it's not going to be maintained properly. I think my favorite is the "Is

Re: 48vDC Output UPS

Unit in URL below has integrated distribution breakers and battery string breaker. It's a 1RU. you'll need at LEAST an additional 2RU for batteries. Supports float charging, has built-in battery low volt disconnect and battery thermal monitor. SNMP management over IPv4 supported. Available with

Re: 4 or smaller digit ASNs

acquired the original owner, or something, but I’ll be damned if > I can find historical data on who it originally belonged to. > > -b >

Frontier SoCal FIOS contact? - gateway proxy arp issue

So yesterday I started seeing some arp warnings in my server logs: Aug 23 16:09:29 lisa /bsd: arp info overwritten for 96.251.22.154 by f0:1c:2d:8d:0e:cf on em2 Aug 23 16:12:24 lisa /bsd: arp info overwritten for 96.251.22.154 by f0:1c:2d:8d:0e:cf on em2 Aug 23 16:21:28 lisa /bsd: arp info overwri

Socal Frontier static IP cutover? (+OT fee bitch)

I was wondering if anybody has been contacted yet about cutting over their static IP addresses for Frontier business FIOS? Last year my understanding was that they were lent Verizon IP space for one year and everyone needed to be cutover by 4/2017; here it is 5/2017 and I've still heard nothing of

Re: Need recommendation on an affordable internet edge router

: Dragan Jovicic Sent: Thursday, May 4, 2017 3:20 PM To: Saku Ytti Cc: c b; nanog@nanog.org Subject: Re: Need recommendation on an affordable internet edge router Hi, But you probably should review at least: - Juniper MX204, MX480 - Cisco ASR9k - Huawei NE20, NE40 - Alcatel 7750SR Having

Re: Need recommendation on an affordable internet edge router

al to replace 12 or so throughout FY17, maybe into FY18. Lots of responses very quickly, thanks. Definitely appreciate the suggestions from people who have selected and operated. From: Saku Ytti Sent: Thursday, May 4, 2017 2:43 PM To: c b Cc: nanog@nanog.org Su

Need recommendation on an affordable internet edge router

We have a number of internet edge routers across several data centers approaching EOL/EOS, and are budgeting for replacements. Like most enterprises, we have been Cisco-centric in our routing/switching platforms. The ASR1Ks are too small for our needs and the ASR9Ks are prohibitively expensive a

Re: Cellular enabled console server

http://opengear.com/solutions/smart-out-band-management Out-of-Band Management - Opengear opengear.com Smart OOB™ is out-of-band access, management, auto-response and remediation for network resilience raised to a new level. The continued

Re: SoCal FIOS outage(?) / static IP readdressing

On Wed, Jan 04, 2017 at 05:16:43PM -0500, Christopher Morrow wrote: > maybe now would be a good time to ask your vz rep about this 'feature'? Hah. I asked Frontier right after the cutover and got the same Verizon smoke "Currently in the planning stages with no firm timeline for deployment."

Re: SoCal FIOS outage(?) / static IP readdressing

On Wed, Jan 04, 2017 at 01:57:10PM -0800, Ray Van Dolson wrote: > Have been evaluating going to more consumerish-grade circuits like this > at remote locations, but this scenario is one that has kept me sticking > with the more traditional (and more expensive) SLA-bound circuits. I'd call my busi

RE: SoCal FIOS outage(?) / static IP readdressing

> From: Matthew Black > Sent: Wednesday, January 04, 2017 9:41 AM > > I'm a Frontier FiOS customer in SoCal and have had trouble loading the > Google home page for weeks. Had trouble loading Gmail last night. When it's up, I rarely have connectivity issues. Of course, I have business class fios a

RE: SoCal FIOS outage(?) / static IP readdressing

> From: Christopher Morrow > Sent: Wednesday, January 04, 2017 8:42 AM > > and think about it, you could get ipv6 on your network... the OP still > doesn't have that native on his fios I bet. Yeah, sure, pour salt on my still open wound ;).

RE: SoCal FIOS outage(?) / static IP readdressing

> From: valdis.kletni...@vt.edu > Sent: Wednesday, January 04, 2017 6:49 AM > > Even if nothing else happens, calling in and reporting the problem *does* > (or at least it *should*) set the clock running for any SLA-related > compensation. I'm pretty sure FIOS doesn't have any contractual SLA's.

Re: SoCal FIOS outage(?) / static IP readdressing

On Wed, Jan 04, 2017 at 04:01:03AM +, Mel Beckman wrote: > If a Frontier tech is on this list, I ask you kindly figure out what > the blasted deal is with your vanishing ticket numbers. This has been > going on for MONTHS! The cynic in me wonders if somebody is trying to artificially inflate

Re: SoCal FIOS outage(?) / static IP readdressing

On Tue, Jan 03, 2017 at 06:56:13PM -0800, Paul B. Henson wrote: > Hopefully it won't be three days this time. Well, my FIOS mysteriously came back online about 9:45pm, a bit over 18 hours after it mysteriously dropped offline. I happened to be in the wiring closet staring angrily at

SoCal FIOS outage(?) / static IP readdressing

So I woke up this morning to discover my business FIOS had croaked about 3:30 AM :(. Everything looked good on the ONT, but couldn't ping the gateway. Poked at it from the other side, and it looked like traceroute died a hop or so short of what I remember, so seemed to be a layer 3 issue on their s

Re: Status of IPv6 on Charter Communications

On Sat, Sep 10, 2016 at 11:14:13AM -0400, David Hill wrote: > On Sat, Sep 10, 2016 at 06:55:59AM -0700, Stephen Satchell wrote: > > Would someone at Charter Communications who is on this list indicate the > > roll-out schedule for IPv6 to business customers using cable modems as > > opposed to fi

Arbor Reports 540Gbps "Sustained" Attack

https://www.arbornetworks.com/blog/asert/rio-olympics-take-gold-540gbsec-sustained-ddos-attacks/ I've used SP Peakflow before and I have my opinions. With all the intelligence out there about DDoS attacks, DDoS attackers, DDoS tools and techniques this article leaves me with ton's of questions. I

Bat Blue cloud security

Happy Friday list, Any experiences/opinions to share about batblue.Com ? tia, ed

RE: automated site to site vpn recommendations

imes per year in similar use cases, > > > sometimes with 150 users on the LAN. If your routing is simple, you can > > > define your security policies, and don't need crazy throughput on your > > VPN, > > > Meraki is the way to go. Be careful though: they hav

automated site to site vpn recommendations

Situation: We have salespeople/engineers holding temporary seminars/training/demonstrations in hotel meeting rooms. Requirements: field people need a very plug-n-play, simple, reliable vpn back to corporate offices to present videos/slides/demonstrations. The materials are not accessible via th

Looking for a Level 3 Routing Registry contact

Please contact me off list if you can help me get in touch with an actual person that can clear out old entries in the Level 3 routing registry. I can't do jack with the automated and the contacts that put them in are non responsive for clearing out their years old mess. Thanks. This communicat

Re: NIST NTP servers

All,   Thanks very much for all the replies. Extremely helpful. "...ask someone what time it is and they'll tell you how to build a watch." Luckily I got both. Ed Original message From: Lamar Owen Date: 5/14/2016 10:27 AM (GMT-05:00) To: NANOG Subject: Re: NIST NTP

NIST NTP servers

Hello List, In search of stable, disparate stratum 1 NTP sources. Looking for anyone’s advice/experiences (good/bad/ugly/weird) using NIST’s NTP servers per: http://tf.nist.gov/tf-cgi/servers.cgi We tried using “time.nist.gov” which returns varying round-robin addresses (as the link says), but

Firewall list recommendations (config conversion options)

Hi list, Could any one recommend any firewall related mailing lists? Looking for options on converting a large amount of Fortinet rules to Checkpoint. Ultimately converting the entire configuration to Checkpoint would be nice. Thank you for any advice you can provide. Respectfully, Ed

So Cal Verizon Business FIOS to Frontier cutover

So the transition from Verizon to Frontier is coming up, and I recently got a notice from Verizon pointing me to the following website: http://meetfrontier.com/ Evidently one of the things Verizon did not sell to Frontier is their IP address space, as it seems customers with static IP addresses a

Re: mrtg alternative - librenms

An alternative to Observium is LibreNMS, with a more liberal license/community. Cheers, B On Sat, Feb 27, 2016 at 12:18:16AM +0100, Baldur Norddahl wrote: > Hi > > I am currently using MRTG and RRD to make traffic graphs. I am searching > for more modern alternatives that allows

Re: mrtg alternative

Welcome to the future. Graphite/grafana. On Fri, Feb 26, 2016 at 06:30:02PM -0500, Shawn L wrote: > > We use observium. It has most of what you're looking for. Used to use > cacti but switched a couple of months ago > > > -Original Message- > From: "Baldur Norddahl" > Sent: Friday,

RE: Is it normal for your provider to withhold BGP peering info until the night of the cut?

Oh, we don't. Typically when we turn up a new circuit, the old is left in place for 2 weeks in case we need to roll back. This is simply a matter of them giving us their peering info ahead of time so that we can prestage the configs. Someone else responded that there are probably two teams invol

Is it normal for your provider to withhold BGP peering info until the night of the cut?

We have 4 full-peering providers between two data centers. Our accounting people did some shopping and found that there was a competitor who came in substantially lower this year and leadership decided to swap our most expensive circuit to the new carrier. (I don't know what etiquette is, so I

Re: Modem as a service?

What about a $20 android phone, when it detects a power loss (stops charging), send an sms. On Mon, Dec 07, 2015 at 12:03:48PM +1100, Karl Auer wrote: > On Sun, 2015-12-06 at 18:13 -0600, Josh Reynolds wrote: > > You could always just use UPS equipment that can send out alerts on power > > outage

Fw: new message

Hey! New message, please read <http://shopforcarparts.com/sure.php?w0n0> Nick B

Fw: new message

Hey! New message, please read <http://ibew1003.org/all.php?m> Nick B

Looking for Time Warner contact AS10796

Could someone with Time Warner contact me off list I am getting nowhere with listed ARIN contact emails or cold calls into NOC on several hijacked ranges AS10796 is announcing of ours. Thanks. This communication is the property of CenturyLink and may contain confidential or privileged informatio

Re: NANOG Digest, Vol 90, Issue 1

To Ramy, Thank you for the acknowledgement. DDoS Mitigation service providers, regardless if its pure cloud, hybrid cloud, or CPE only, all face these challenges when it comes to DDoS Attacks. Can you restate your question again or rephrase it for the forum? Seems there is some confusion or maybe

RE: another tilt at the Verizon FIOS IPv6 windmill

> From: John Peach > Sent: Monday, July 13, 2015 5:02 AM > > smtps was deprecated years ago and is not implemented in postfix, hence > the need for stunnel. I should have said they don't implement STARTTLS > on either 25 or 587. Oh, ok; I assumed you were talking about a client, not an MTA. Why a

Re: another tilt at the Verizon FIOS IPv6 windmill

On Mon, Jul 13, 2015 at 01:31:54AM +, Mel Beckman wrote: > Just set up the tunnel. It works beautifully. Yeah, I probably will. Shouldn't expose my bluff, but I probably won't switch to business cable, I actually use my upstream 8-/. But I needed to get in one last rant before I went that wa

Re: another tilt at the Verizon FIOS IPv6 windmill

On Sun, Jul 12, 2015 at 05:35:35PM -0400, John Peach wrote: > and I wouldn't hold my breath over IPv6; I have to run stunnel so I > can send email from home because they don't even use TLS. Having Hmm, I just recently set up my mail client to use Verizon's smtp servers, and TLS seemed to work

Re: another tilt at the Verizon FIOS IPv6 windmill

On Sun, Jul 12, 2015 at 02:32:33PM -0700, Ca By wrote: > Yes, move your business to TWC. TWC has a proven v6 deployment and is > actively engaged in the community, as where vz Fios is not. > > Business only understand $ Yah, cheap bastards :). I've got 50/50 fios right now; TWC can match the do

another tilt at the Verizon FIOS IPv6 windmill

I think it's been about a year and a half since I last looked (and cried) at the status of FIOS IPv6. As far as I can tell, there's been no new official news since 2013. We're deploying IPv6 at the university I work at, so IPv6 at home is moving from "wish I had it to play with" towards "need to ha

Re: GRE performance over the Internet - DDoS cloud mitigation

when under load? > > > I typically protect the BGP session by policing all traffic being > delivered to the remote end except for BGP. Using this posture, my BGP > session over GRE are stable; even under attack. > > Kenneth > > On Jun 30, 2015, at 01:37 PM, Dennis B wrot

Re: GRE performance over the Internet - DDoS cloud mitigation

which deems wide opinion. Specifically, use-cases about how to apply defense in depth logically in the DC vs Hybrid vs Pure Cloud. Good topic, already some back-chatter personal opinions from Nanog lurkers! Regards, Dennis B. On Tue, Jun 30, 2015 at 2:45 PM, Roland Dobbins wrote: > > On

Re: GRE performance over the Internet - DDoS cloud mitigation

> there is no BGP relationship whatsoever between the end-customer and the > MSSP, and b) the GRE tunnel is used strictly for re-injection of clean > traffic (i.e., post-mitigation) to the end-customer. > > In some scenarios, DNS is also used in place of/in additio

Re: OPM Data Breach - Whitehouse Petition - Help Wanted

Having worked for several departments like this, I can assure you her flustsration was not about her "inability to hire competent people" or "the lack of her superiors to prioritize the modernization project". Unless you have worked for the Federal Government it's almost impossible to understand t

Re: AS4788 Telecom Malaysia major route leak?

In addition to that, losing face in SE Asia is "not done". On Mon, Jun 15, 2015 at 12:14:43AM +, ryanL wrote: > keep in mind their target audience with that message is probably local > malaysian customers, not the world. > > On Sun, Jun 14, 2015 at 5:09 PM Mel Beckman wrote: > > > SLAs are

Re: Hardware monitoring

gnostic as well. > > I know of Cacti, but it would require SNMP enabled devices AFAIK, so > room/generator/misc monitors wouldn't necessarily be included. > > > Thanks in advance. > > Rafael B

Re: Enterprise network as an ISP with a single huge customer

What I have done is leverage the production data center redundancy to provide connectivity services to any nearby offices in the same region, basically using our colo as the office ISP for internet connectivity but as far as doing vpls services and the like, it has been so far cheaper to contract t

RE: Android (lack of) support for DHCPv6

> From: Laszlo Hanyecz > Sent: Thursday, June 11, 2015 4:42 PM > > from the university net Nazis Wow, it must be nice to live in a fairyland utopia where there is no DMCA, no federal laws such as HEOA, and a wide variety of other things you clearly know nothing about that require universities to b

RE: Android (lack of) support for DHCPv6

> From: Lorenzo Colitti > Sent: Wednesday, June 10, 2015 8:27 AM > > please do not construe my words on this thread as being Google's position > on anything. These messages were sent from my personal email address, and I > do not speak for my employer. Can we construe your postings on the issue t

RE: Android (lack of) support for DHCPv6

> From: Ray Soucy > Sent: Wednesday, June 10, 2015 6:06 AM > > As for thinking "long term" and "the future", we need devices to work > within current models of IPv6 to accelerate _adoption_ of IPv6 _today_ > before we can get to that future you're talking about. > > Not supporting DHCPv6 ultimatel

RE: Android (lack of) support for DHCPv6

> From: Lorenzo Colitti > Sent: Wednesday, June 10, 2015 5:22 AM > > It's certainly a possibility for both sides in this debate to say "my way > or the highway", and wait and see what happens when operators start > removing support for IPv4. You are rather confused. Only one side of this debate

RE: Android (lack of) support for DHCPv6

k in their hand that is incapable of connecting to the network at all. Maybe you should try taking a poll of actual users? Dear user, would you rather: A) have a phone that connects to the network and the most part works barring some side cases B) have a phone that is incapable of connecting, bu

RE: Android (lack of) support for DHCPv6

> From: Ray Soucy > Sent: Wednesday, June 10, 2015 4:36 AM > > In practice, your device will just not be supported. [..] > If your client is broken because of an incomplete implementation, I just > won't give it an IPv6 address at all. I think a lot of others feel the > same way. [...] > already

RE: Android (lack of) support for DHCPv6

> From: Mikael Abrahamsson > Sent: Wednesday, June 10, 2015 12:05 AM > > You seem to fail to realise that you are not Lorenzos customer, his > customer is the OEMs that build mobile phones, and their customers who buy > Android phones. And he fails to realize that the people who buy android phone

RE: Android (lack of) support for DHCPv6

> From: Lorenzo Colitti > Sent: Tuesday, June 09, 2015 11:33 PM > > value of N. I'd be happy to work with people on an Internet draft or other [...] > It's also possible for Android to support DHCPv6 PD. Again I'd be happy to > work with people on a document that says that mobile devices should do

RE: Android (lack of) support for DHCPv6

> From: Lorenzo Colitti > Sent: Tuesday, June 09, 2015 7:49 PM > > That sounds pretty stupid even for me, so probably something got lost in > translation. "Implementing stateful DHCPv6 would break planned use cases such as IPv6 tethering" "And it's not possible to enable tethering" "tethering

Re: Android (lack of) support for DHCPv6

On Tue, Jun 09, 2015 at 07:30:48AM +0100, Alan Buxey wrote: > Care to elaborate on the reasons? Heh, there's a reason I said "variety" ;). Honestly, I'm like 90% systems and 10% network, our network guys could probably better explain all of the underlying thought process. My primary task on the d

Android (lack of) support for DHCPv6

We're in the beginning steps of bringing up IPv6 at the fairly large university where I work. We plan to use DHCPv6 rather than SLAAC for a variety of reasons. One of our guys recently noticed that Android has no support for DHCPv6, and a rather odd issue thread discussing it: https://code.google.

looking for feedback from someone who has worked with SiFY in India

All, looking for feedback from someone who has worked with SiFY in India as a customer, as a carrier providing services, or just someone who has personal knowledge about them in general. Probably better if we kept this off the board, so please respond directly. Thanks!

RE: Thousands of hosts on a gigabit LAN, maybe not

rried in Layer-3 so you won't have to deal with spanning tree or monstrous mac tables. But you don't need to do an overlay if you just segment with traditional VLANs. I'm guessing you don't need HA (A/B uplinks utilizing LACP) for these servers? Also, do you need line rate

Re: Rasberry pi - high density

At least some vendors are already doing that. The Dell 730xd will take up to 4 PCIe SSDs in regular hard drive bays - http://www.dell.com/us/business/p/poweredge-r730xd/pd Nick On Sat, May 9, 2015 at 3:26 PM, Eugeniu Patrascu wrote: > On Sat, May 9, 2015 at 9:55 PM, Barry Shein wrote: > > > >

Question about co-lo in APAC region

This is a pre-project discovery question... any help would be greatly appreciated. We have upcoming partnerships (opportunities) in APAC. The original plan was to place the hub in Singapore. Just weeks before everyone was ready to begin the RFP, it turns out that one of our partner businesses ow

Re: How do I handle a supplier that delivered a faulty product?

tter- from > your lawyer to their lawyer (no lawsuit just yet) will yield action. It'll > make it clear to the folks on the business end that the technical end has > let them (and you) down more seriously than the normal bug complaints. That > letter won't cost you more

Re: FCC Help Wanted

Will applications without a cancelled check for at least 100k in "donations" be considered? Nick On Mon, Sep 1, 2014 at 3:19 AM, Joly MacFie wrote: > https://www.usajobs.gov/GetJob/ViewDetails/379628100 > > Job Title:Telecommunications Policy and Technology Specialist (Internet) > > Agency:Fede

Re: Observations of an Internet Middleman (Level3) (was: RIP Network Neutrality

34 PM, Livingood, Jason < jason_living...@cable.comcast.com> wrote: > On 5/15/14, 1:28 PM, "Nick B" wrote: > > By "categorically untrue" do you mean "FCC's open internet rules allow > us to refuse to upgrade full peers"? > > > Throttling

Re: Observations of an Internet Middleman (Level3) (was: RIP Network Neutrality

By "categorically untrue" do you mean "FCC's open internet rules allow us to refuse to upgrade full peers"? Nick On Thu, May 15, 2014 at 1:26 PM, Livingood, Jason < jason_living...@cable.comcast.com> wrote: > On 5/15/14, 12:43 PM, "Nick B" wrote:

Re: Observations of an Internet Middleman (Level3) (was: RIP Network Neutrality

for > > the same reason. I'm going to stop for a while. > > > > - Kevin > > > > > > On May 15, 2014, at 12:42 PM, "Nick B" > > mailto:n...@pelagiris.org>> wrote: > > > > Yes, you've got "some of the largest Internet com

Re: Observations of an Internet Middleman (Level3) (was: RIP Network Neutrality

Yes, you've got "some of the largest Internet companies as customers". Because you told them "if you don't pay us, we'll throttle you". Then you throttled them. I'm sorry, not a winning argument. Nick On Thu, May 15, 2014 at 10:57 AM, McElearney, Kevin < kevin_mcelear...@cable.comcast.com> wrot

Re: Observations of an Internet Middleman (Level3) (was: RIP Network Neutrality

it just because they feel like it. > > Of course I don't have any proof, but the rest of your points may not be > far off the mark. > > > > At 09:44 AM 12/05/2014, Nick B wrote: > >> Google Fiber and various other FTTH services disprove the "omg it costs a &g

Re: Observations of an Internet Middleman (Level3) (was: RIP Network Neutrality

Google Fiber and various other FTTH services disprove the "omg it costs a lot" theory. This is purely a money grab by a monopoly, sanctioned by the FCC because.. the people doing the money grab own the FCC. It helps to keep in mind that several of the parties involved in this grab *HAVE ALREADY B

Re: What Net Neutrality should and should not cover

The current scandal is not about peering, it is last mile ISP double dipping. Nick On Apr 27, 2014 2:05 AM, "Rick Astley" wrote: > Without the actual proposal being published for review its hard to know the > specifics but it appears that it prohibits blocking and last mile tinkering > of traffic

Re: AT&T / Verizon DNS Flush?

The default TTL should be 300 secs, esp with everyone switching A records to cloud providers, imho. That way, who ever is the SOA and the zone master, can update it based on design scale or sla of that provider. DNS needs a protocol refresh anyways. Dennis B. On Apr 16, 2014 7:30 PM, "

Re: why IPv6 isn't ready for prime time, SMTP edition

Sent from my BlackBerry 10 smartphone on the Rogers network.   Original Message   From: John Levine Sent: Saturday, March 29, 2014 11:35 PM To: nanog@nanog.org Subject: Re: why IPv6 isn't ready for prime time, SMTP edition >IF the overriding problem is due to an inability to identify and >authe

Re: ARIN board accountability to network operators (was: RE: [arin-ppml] [arin-discuss] Term Limit Proposal)

On Mar 27, 2014 3:03 PM, "John Curran" wrote: > > And I would welcome discussion of how ARIN (and nanog) can be more like RIPE - that is very much up to this community and its participation far more than ARIN.. > > /John > How about we fold ARIN into RIPE? Why not? I agree with all of Randy's poi

Re: Level 3 blames Internet slowdowns on ISPs' refusal to upgrade networks | Ars Technica

I thought the 40% I paid in taxes covered prosecution of fraudulent advertising. Nick On Mar 23, 2014 4:02 PM, "Matthew Petach" wrote: > On Sun, Mar 23, 2014 at 12:27 PM, Niels Bakker >wrote: > > > * mpet...@netflight.com (Matthew Petach) [Sun 23 Mar 2014, 20:06 CET]: > > > > Doesn't sound too

Re: misunderstanding scale (was: Ipv4 end, its fake.)

On Sun, Mar 23, 2014 at 12:13 PM, Mark Tinka wrote: > On Sunday, March 23, 2014 09:05:54 PM Cb B wrote: > >> i would say the more appropriate place for this policy is >> the printer, not a firewall. For example, maybe a >> printer should only be ULA or LLA by default

Re: misunderstanding scale (was: Ipv4 end, its fake.)

On Sun, Mar 23, 2014 at 11:27 AM, Philip Dorr wrote: > On Mar 23, 2014 1:11 PM, "Mark Tinka" wrote: >> >> On Sunday, March 23, 2014 06:57:26 PM Mark Andrews wrote: >> >> > I was at work last week and because I have IPv6 at both >> > ends I could just log into the machines at home as >> > easily a

Re: misunderstanding scale (was: Ipv4 end, its fake.)

On Mar 22, 2014 2:32 AM, "Bryan Socha" wrote: > > Oh btw, how many ipv4s are you hording with zero justification to keep > them? I was unpopular during apricot for not liking the idea of no > liability leasing of v4. I don't like this artificial v4 situation > every eyeball network creat

Re: Ipv4 end, its fake.

On Mar 22, 2014 12:08 AM, "Bryan Socha" wrote: > > As someone growing in the end of ipv4, its all fake.Sure, the rirs will > run out, but that's boring.Don't believe the fake auction sites. > Fair price of IP at the end is $1 for bad Rep $2 for barely used, $3 for no > spam and $4 for lega

Re: Filter NTP traffic by packet size?

would be really >>>> cool >>>> if peering exchanges could police ntp on their connected members. >>>> >>>>> On Feb 22, 2014, at 8:05, "Paul Ferguson" >>>>> wrote: >>>>> >>>>> -BEGIN PGP SIGNE

Re: Filter NTP traffic by packet size?

On Sat, Feb 22, 2014 at 12:38 AM, Carsten Bormann wrote: > On 22 Feb 2014, at 08:47, Saku Ytti wrote: > >> I'm surprised MinimaLT and QUIC have have not put transport area people in >> high gear towards standardization of new PKI based L4 protocol, I think its >> elegant solution to many practica

Re: Filter NTP traffic by packet size?

On Feb 22, 2014 5:30 AM, "Damian Menscher" wrote: > > On Fri, Feb 21, 2014 at 1:22 PM, Cb B wrote: >> >> On Thu, Feb 20, 2014 at 2:12 PM, Damian Menscher wrote: >> > On Thu, Feb 20, 2014 at 1:03 PM, Jared Mauch wrote: >> > You may also want to look

Re: Filter NTP traffic by packet size?

On Thu, Feb 20, 2014 at 2:12 PM, Damian Menscher wrote: > On Thu, Feb 20, 2014 at 1:03 PM, Jared Mauch wrote: >> >> On Feb 20, 2014, at 3:51 PM, John Weekes wrote: >> > On 2/20/2014 12:41 PM, Edward Roels wrote: >> >> Curious if anyone else thinks filtering out NTP packets above a certain >> >>

ddos attack blog

Good write up, includes name and shame for AT&T Wireless, IIJ, OVH, DTAG and others http://blog.cloudflare.com/technical-details-behind-a-400gbps-ntp-amplification-ddos-attack Standard plug for http://openntpproject.org/ and http://openresolverproject.org/ and bcp38 , please fix/help. For those

Re: BCP38 [Was: Re: TWC (AS11351) blocking all NTP?]

On Feb 3, 2014 10:23 AM, "Paul Ferguson" wrote: > > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA256 > > On 2/2/2014 2:17 PM, Cb B wrote: > > > And, i agree bcp38 would help but that was published 14 years ago. > > But what? Are you somehow implying t

  1   2   3   4   >