Re: bloomberg on supermicro: sky is falling

2018-10-06 Thread Pete Carah
On 10/04/2018 03:13 PM, Scott Weeks wrote: --- eric.kuh...@gmail.com wrote: From: Eric Kuhnke many contractors *do* have sensitive data on their networks with a gateway out to the public Internet. I could definitely imagine that happening. scott

Re: AWS Elastic IP architecture

2015-06-04 Thread Pete Carah
On 06/04/2015 01:16 PM, Christopher Morrow wrote: > On Thu, Jun 4, 2015 at 5:11 AM, Owen DeLong wrote: >> I’d argue that SSH is several thousand, not a few hundred. In any case, I >> suppose you can make the argument that only a few people are trying to >> access their home network resources rem

Re: Comcast Support

2015-01-22 Thread Pete Carah
On 01/22/2015 06:28 PM, Aaron C. de Bruyn wrote: > It's starting to become more typical. > > I finally resolved an issue after two weeks of fighting with them. > A remote office could send traffic out, but couldn't receive traffic. > > . > http://xkcd.com/806/ Cute. > > Maybe Comcast train the

Re: Verizon.net email admin?

2015-01-16 Thread Pete Carah
as made that Verizon was filtering out the 107/8 > network. > > Frank > > -Original Message- > From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Chris Adams > Sent: Friday, January 16, 2015 4:03 PM > To: nanog@nanog.org > Subject: Re: Verizon.net email admin?

Re: Verizon.net email admin?

2015-01-16 Thread Pete Carah
On 01/16/2015 04:00 PM, Chris Adams wrote: > Anybody Verizon.net mail admins around? > > I have a downstream customer on a newly-deployed IP allocation that > can't get to pop.verizon.net (connections just time out). I can't either ping or telnet to that either but can connect with s_client. I'm

Re: v6 cdn problems

2014-11-08 Thread Pete Carah
On 11/08/2014 06:10 PM, Jeroen Massar wrote: > On 2014-11-08 23:55, Pete Carah wrote: > [..] >> Symptom with akamai is that it connects immediately then data transfer >> times out. >> With google, symptom involves both slow connection, and data transfer >> ti

Re: v6 cdn problems

2014-11-08 Thread Pete Carah
On 11/08/2014 06:10 PM, Jeroen Massar wrote: > On 2014-11-08 23:55, Pete Carah wrote: > [..] >> Symptom with akamai is that it connects immediately then data transfer >> times out. >> With google, symptom involves both slow connection, and data transfer >> ti

v6 cdn problems

2014-11-08 Thread Pete Carah
Prefix this - I'm on fios in the Baltimore area, using a HE tunnel terminating in ashburn. (*still* no native v6 on fios :-( Speedtest shows little or no congestion, and didn't change significantly when I reduced mtu by 8. (interestingly, speedtest.net usually reads faster than verizon's internal

Re: NIST NTP Server List

2014-10-30 Thread Pete Carah
On 10/30/2014 06:27 PM, Mark Andrews wrote: > IPv6 is production. Report the problem. > Sorry for reporting it here, but there seems to be more than one problem (the link resulting from clicking on "nist time". I get the nist front page fine on v6, then click on the time link and get a 404 lookin

Re: Major California Faults Ready To Rupture | IFLScience

2014-10-19 Thread Pete Carah
On 10/19/2014 02:45 AM, George Herbert wrote: > Loma Prieta, very little; the UCSC line was a non-redundant T1 from San Jose > BARRNET, and the other leaf nodes off that were down. As I recall the San > Jose / SF to LA links were all golden. > > Phone service to Santa Cruz was down, then spotty,

Re: update

2014-09-29 Thread Pete Carah
On 09/29/2014 01:14 AM, Larry Sheldon wrote: > On 9/29/2014 00:32, Pete Carah wrote: >> For that matter, has the*specification* of tcp/ip been proven to be >> "correct" in any complete way? > > I find that question in this forum really confusing. I was adding it to

Re: update

2014-09-28 Thread Pete Carah
On 09/28/2014 04:50 PM, valdis.kletni...@vt.edu wrote: > On Sun, 28 Sep 2014 15:06:18 -0600, "Keith Medcalf" said: > >> >> Sorry to disappoint, but those are not changes that make the system more >> vulnerable. They are externalities that may change the likelihood of >> exploitation of an existing

Re: Verizon Public Policy on Netflix

2014-07-24 Thread Pete Carah
On 07/18/2014 10:43 PM, Ca By wrote: > On Jul 18, 2014 5:55 PM, "Jay Ashworth" wrote: >> - Original Message - >>> From: "Owen DeLong" >>> My cells all operate as a single cohesive system with an actual >>> central control (one brain). >> Nope; not really. Look up autonomic nervious syste

Re: Xirrus Wireless

2012-03-13 Thread Pete Carah
ransceiver design, though, and the Xirrus configuration can't be easy to make work well. Not impossible, but difficult. -- Pete > > -Original Message- > From: Pete Carah [mailto:p...@altadena.net] > Sent: Tuesday, March 13, 2012 4:32 PM > To: nanog@nanog.org > Subje

Re: Xirrus Wireless

2012-03-13 Thread Pete Carah
On 03/13/2012 02:34 PM, Blake Pfankuch wrote: > I know this is a little outside of the traditional NANOG realm but... > > I have a customer looking at a fair number of Xirrus Wireless Arrays for > 802.11a/b/g/n implementations and am looking for some real world insight into > them. On the cover

Re: Questions about anycasting setup

2012-03-09 Thread Pete Carah
On 03/09/2012 01:34 AM, Elmar K. Bins wrote: > Re Bill, > > wo...@pch.net (Bill Woodcock) wrote: > >>> Well, let's say, using Quagga/BIRD might not really be best practice for >>> everybody... (e.g., *we* are using Cisco equipment for this) >> How does your Cisco know whether an adjacent nameserver

Re: Questions about anycasting setup

2012-03-09 Thread Pete Carah
On 03/09/2012 12:11 AM, Elmar K. Bins wrote: > Bill, > > wo...@pch.net (Bill Woodcock) wrote: > >>> 2. We plan to use this anycasting based setup for DNS during initial few >>> months. Assuming low traffic for DNS say ~10Mbps on average (on 100Mbps >>> port) and transit from just single netwo

Re: Increase of DOS attacks using TCP src and/or dst of 0

2012-03-07 Thread Pete Carah
On 03/07/2012 01:29 PM, Christopher Morrow wrote: > On Wed, Mar 7, 2012 at 3:45 PM, Matthew Huff wrote: >> Anyone else see a massive increase of scanning/dos with TCP source and/or >> dst port of 0? We started seeing a massive increase today creating some >> issue with our firewalls. > srs/dst of

Re: Time Warner Cable issues in Ohio ?

2012-02-28 Thread Pete Carah
On Feb 28, 2012, at 15:22, Randy Carpenter wrote: > > We're seeing some strange issues with our fiber connection to TWC in Ohio. > Intermittent packet loss to/from some IPs. > > It gets as specific as from a certain IP outside our network, packets to > a.b.c.10 are fine, but pings to a.b.c.

Re: XBOX 720: possible digital download mass service.

2012-01-28 Thread Pete Carah
On 01/28/2012 12:01 PM, Josh Hoppes wrote: > ... > There is also the system > Blizzard is using for World of Warcraft where the game can stream > content down while playing. Most of these publishers/developers > already have pretty good grasps on what capabilities are at their > disposal thanks to

Re: IPv6 beta support for Android phones

2011-11-04 Thread Pete Carah
On 11/04/2011 06:04 PM, Cameron Byrne wrote: > FYI. > > T-Mobile USA now has opt-in beta support for an Android phone on IPv6, > more info here https://sites.google.com/site/tmoipv6/lg-mytouch Very good. > > As far as i know, this is the first Android phone that support IPv6 on > the GSM/UMTS mobil

Re: Outgoing SMTP Servers

2011-10-27 Thread Pete Carah
On 10/27/2011 05:38 PM, valdis.kletni...@vt.edu wrote: > On Thu, 27 Oct 2011 18:17:22 -, Brian Johnson said: >> So... I'm in complete agreement with your statement, but The Wikipedia reference is not pertinent. > > So I point out the tragedy of the commons, you agree with it, but the Wikipedia

Re: NANOG Digest, Vol 43, Issue 53

2011-08-20 Thread Pete Carah
On 08/20/2011 02:07 PM, Matt Addison wrote: > On Aug 20, 2011, at 3:09, Pete Carah wrote: > > Note that he wanted to use fiber for lightning protection; the metal > strip rather negates that... > > > Only if you plug the metal strip into your equipment. We usually don&#x

Re: NANOG Digest, Vol 43, Issue 53

2011-08-20 Thread Pete Carah
On 08/19/2011 11:14 PM, Frank Bulk wrote: > You can order custom-made patch cables that are outdoor rated from any > decent company that sells fiber patch cables for a living. If you want it > to be locatable, make sure it includes some kind of metal strip. Note that he wanted to use fiber for lig

Re: assume v6 available, average cost to implement

2011-08-03 Thread Pete Carah
On 08/03/2011 11:14 AM, brun...@nic-naa.net wrote: > Folks, > > In the never ending game of policy whack-a-mole, we are offered the claim that > that the cost to a small to medium business to make its operational purpose > v6 address enabled is in the mid-five figures. > > For those of you who do s

Re: Comcast Bussiness Class and GRE Tunnels

2011-07-26 Thread Pete Carah
On 07/26/2011 11:45 AM, Jon Bane wrote: > On Tue, Jul 26, 2011 at 11:38 AM, PC wrote: > > ... > Was working on the same reply as Paul. You assign your static to your > Mircotik box and check the box in the WebGUI (default is http://10.1.10.1) > to "Disable Firewall for True Static IP Subnet Only"

Re: Looking for tw telecom folk to resolve IPv6 access to their site

2011-07-02 Thread Pete Carah
On 07/02/2011 01:17 PM, Romain Boissat wrote: > Hi all > > On Sat, Jul 2, 2011 at 7:12 PM, Pete Carah wrote: >> The linux version of firefox eventually (about 5 mins) displayed the >> page; (linux again) chrome did so right away. Wish both had a geek tool >> to

Re: Looking for tw telecom folk to resolve IPv6 access to their site

2011-07-02 Thread Pete Carah
On 07/02/2011 09:49 AM, Leigh Porter wrote: > Missed something. Anyhow it is down for me too; v4 works and v6 doesn't using telnet to check. The linux version of firefox eventually (about 5 mins) displayed the page; (linux again) chrome did so right away. Wish both had a geek tool to show the ac

Re: Wacky Weekend: NERC to relax power grid frequency strictures [OT]

2011-06-26 Thread Pete Carah
On 06/26/2011 05:55 PM, Jussi Peltola wrote: > On Sun, Jun 26, 2011 at 11:36:24PM +0200, Ingo Flaschberger wrote: >> but transforming is not easy. >> ac/ac transformers are easy tu build and very immune against lightning >> strikes - inverter systems are not. > Switching DC is also problematic si

Re: Wacky Weekend: NERC to relax power grid frequency strictures

2011-06-26 Thread Pete Carah
On 06/26/2011 05:43 PM, Ingo Flaschberger wrote: >> 2) Allowing transformer fields to collapse. Even in phase, without a >> delayed transition ATS you can end up with a partially collapsed >> transformer field with a new field being created at non-ground state. >> This can cause a transient back wa

Re: Wacky Weekend: NERC to relax power grid frequency strictures

2011-06-25 Thread Pete Carah
On 06/25/2011 03:52 PM, Jason Roysdon wrote: > On 06/25/2011 08:06 AM, William Herrin wrote: >> On Sat, Jun 25, 2011 at 10:49 AM, Jay Ashworth wrote: >>> Perhaps I read the piece incorrectly, but it certainly sounded to *me* like >>> the part that was hard was not hitting 60.00, but *staying in sy

Re: IPv6 words

2011-06-23 Thread Pete Carah
On 06/23/2011 06:16 PM, Paul Graydon wrote: > On 06/23/2011 12:10 PM, Jeroen van Aart wrote: >> I am sure it has come up a number of times, but with IPv6 you can >> make up fancy addresses that are (almost) complete words or phrases. >> Making it almost as easy to remember as the resolved name. >>

Re: IPv6 day fun is beginning!

2011-06-07 Thread Pete Carah
> On 8 jun 2011, at 2:02, Pete Carah wrote: > >> www.facebook.com (but not facebook.com) just turned on here too (after >> google). another hex-speak spelling... > I'm using my iPhone as the IPv6-only canary. www.facebook.com now seems to > work, but it redirects to

Re: IPv6 day fun is beginning!

2011-06-07 Thread Pete Carah
On 06/07/2011 07:56 PM, Pete Carah wrote: > On 06/07/2011 07:22 PM, john.herb...@usc-bt.com wrote: >> No issues connecting to FB for me on IPv6 (both to www.v6.facebook.com and >> to the returned by www.facebook.com now). >> >> Interesting (perhaps) side note -

Re: IPv6 day fun is beginning!

2011-06-07 Thread Pete Carah
On 06/07/2011 07:22 PM, john.herb...@usc-bt.com wrote: > No issues connecting to FB for me on IPv6 (both to www.v6.facebook.com and to > the returned by www.facebook.com now). > > Interesting (perhaps) side note - www.facebook.com has a , but > "facebook.com" does not. > > Google / Youtu

Re: Resilient streaming protocols

2011-05-29 Thread Pete Carah
On 05/28/2011 06:29 PM, Tim Jackson wrote: > You mean like ProMPEG? Or Flute (open-source, streaming protocol only without library management, the last I saw; also had some of what I'd consider bugs, like it wouldn't recover from the receiver starting in the middle of a carousel send. It has been

Re: New tsunami advisory warning - Japan

2011-03-28 Thread Pete Carah
On 03/28/2011 01:22 PM, Gavin Pearce wrote: >> JCG ship in the the open ocean. > Impressive video. The wave height and speed would suggest shallower > waters, and that likely the ship was close to land mass when the video > was filmed rather than open ocean (in the sense of being far out to > sea).

Re: Internet Edge Router replacement - IPv6 route tablesizeconsiderations

2011-03-11 Thread Pete Carah
On 03/11/2011 04:05 PM, Joe Maimon wrote: > > > Leo Bicknell wrote: > >> Three people have now mailed me privately saying that DAD does not >> provide a way to select a second address if your first choice is not >> in use. > > So fix that as well while we are at it, how bout it? Its code, not stone

Re: anyone running GPS clocks in Southeastern Georgia?

2011-01-21 Thread Pete Carah
On 01/21/2011 04:29 PM, Lamar Owen wrote: > On Friday, January 21, 2011 04:23:52 pm Michael Holstein wrote: >> Aren't CDMA BTS clocked off GPS? > Yep; and many of the aftermarket GPS receivers commonly used for the > disciplined clock for NTP originally came from that service (Agilent/HP Z3801 >

Re: Some truth about Comcast - WikiLeaks style

2010-12-21 Thread Pete Carah
On 12/20/2010 06:36 PM, Owen DeLong wrote: > > I'm happy for you. The AT&T cable plant in my neighborhood is unable to > sustain any better than 1.5mbps/384k on ADSL. And mine (older Baltimore-area, ex-bell atlantic, now verizon) won't sustain 384x384 at 15k ft, it works with about 10% packet loss

Re: Pointer for documentation on actually delivering IPv6

2010-12-09 Thread Pete Carah
On 12/10/2010 12:52 AM, Wil Schultz wrote: > On Dec 9, 2010, at 9:39 PM, George Bonser wrote: > >> Speaking of IPV6 security, is there any movement towards any open >>> source IPV6 firewall solutions for the consumer / small business? Almost all the info I've managed to find to

Re: Cage nuts/rack hw near SAVVIS DC3 (Sterling VA)

2010-12-01 Thread Pete Carah
On 12/01/2010 12:47 PM, Jameel Akari wrote: > >> Or, you could do what our co-loc does, have a large coffee can with >> screws, nuts, etc and a few shared screwdrivers in another. On your >> way in, grab the nuts/screws and a screwdriver, on your way out put >> unused and extras back in the can. >

Gratuitous syn/ack

2010-11-11 Thread Pete Carah
I'm seeing a significant number (about 1/minute 24 hr/day) of syn/ack packets coming from port 80 of random addresses to random ports on my nameserver and a few other systems. This isn't enough traffic to be really annoying, but is curious. I wonder if the simple explanation (backscatter from syn

Re: Off-Topic: use laptop only as USB power supply

2010-05-21 Thread Pete Carah
On 05/21/2010 12:51 AM, Roy wrote: > Why carry a laptop? Here are some examples > > http://www.walmart.com/ip/Belkin-Mini-Notebook-Surge-Portector-with-Built-In-USB-Charger/10248165?sourceid=1503142050&ci_src=14110944&ci_sku=10248165 > > > http://www.cyberguys.com/product-details/?prod

Re: POE switches and lightning

2010-05-13 Thread Pete Carah
On 05/13/2010 02:52 PM, Steven Bellovin wrote: > On May 13, 2010, at 2:24 04PM, Daniel Senie wrote: > > >> While the equipment may well be affected by an EM pulse, if the gear returns >> to normal after a power cycle, then the equipment vendor didn't do their job >> fully developing the produc

Re: POE switches and lightning

2010-05-13 Thread Pete Carah
On 05/13/2010 12:19 PM, Larry Sheldon wrote: > On 5/13/2010 10:36, Caleb Tennis wrote: > >> We had a lightning strike nearby yesterday that looks to have come inside >> our facility via a feeder circuit that goes outdoors underground to our >> facility's gate. >> >> What's interesting is tha

Re: Rugged wireless bridge

2010-05-12 Thread Pete Carah
On 05/12/2010 08:30 PM, Pete Carah wrote: > On 05/12/2010 07:23 PM, Andrey Khomyakov wrote: > >> I found this sucker so far, I guess it has to be waterproof rather than just >> rugged. >> >> http://www.korenixsecurity.com/products/weatherproof-

Re: Rugged wireless bridge

2010-05-12 Thread Pete Carah
On 05/12/2010 07:23 PM, Andrey Khomyakov wrote: > I found this sucker so far, I guess it has to be waterproof rather than just > rugged. > > http://www.korenixsecurity.com/products/weatherproof-ethernet-switch/jetnet-3706-rj > > > And, http://www.sixnet.com/product/8-port-ip67-ethernet-managed-

Re: Rugged wireless bridge

2010-05-12 Thread Pete Carah
On 05/12/2010 06:53 PM, Andrey Khomyakov wrote: > Hi all again > > Thanks for all the links. Lots of wifi solutions. The main problem I'm facing > is the fact that I need more than one copper ethernet connection at those > outdoor locations. Meaning that I'll have at least two or three IP cameras

Re: Connectivity to an IPv6-only site

2010-04-23 Thread Pete Carah
... > Has nothing to do about being stupid... let's rephrase your statement > and put a positive spin on it as such: > > "I've heard about IPv6, but don't know very much about it. I think that > I should know more, but am a bit confused as to where to begin. What do > I do first?". > > Then I'd sa

Re: Solar Flux

2010-04-11 Thread Pete Carah
On 04/11/2010 06:02 PM, Paul Vixie wrote: > Warren Bailey writes: > > >> Are we thinking its going to get worse?? >> > i am. looking at some local passive dns data (generated from ISC SIE), > we find the following single bit errors by anchoring some searches at > the known names and addre

Re: cross connect reliability

2009-09-17 Thread Pete Carah
On 09/17/2009 06:37 PM, Deepak Jain wrote: > > [lots of stuff deleted]. > A famous one that can happen with some techs is that they make jumpers from solid wire with generic rj45 plugs (yes, I've seen this recently from several folks who should know better). These will last somewhere around a

Re: Exploit for DNS Cache Poisoning - RELEASED

2008-07-25 Thread Pete Carah
Paul Vixie wrote: in we see this text: The DNS attacks are starting!!! Below is a snippet of a logwatch from last night. Be sure all DNS servers are updated if at all possible. The spooks are out in