I usually do ingress acl on CE facing PE interfaces , that way I can provide
one level of anti spoofing on IPs I control . I've not had the need for an
egress ACL yet but then again I think it depends on network design and habits
from Day 1.
One use case though may be to mitigate DDOS attack
Ospf offered as Pe-ce protocol to L3 mpls vpn customers and Isis as IGP for
MPLS Core.
Sent from my iPhone
On May 12, 2013, at 9:41 AM, Glen Kent glen.k...@gmail.com wrote:
Hi,
I would like to understand the scenarios wherein the service
provider/network admin might run both ISIS and
Hi All
Should major social networking sites like Facebook,Google and Amazon
operate an IP looking glass ?
i think they should , here is a short justification write-up i did ,
using a real life troubleshooting scenario.
Also received same ...
On Wed, Feb 6, 2013 at 10:58 AM, Ray Wong r...@rayw.net wrote:
Does anyone have details on tonight's apparent worldwide emergency
router upgrade? All I managed to get out of the portal was 30 minutes,
Service Affecting (no kidding?) and the NOC line gave me the
I normally use the 3rd one you mentioned but they seem to be down at the
moment.
Rgds Peter,
Sent from my Asus Transformer Pad
On Dec 28, 2012 1:51 AM, Tassos Chatzithomaoglou ach...@forthnetgroup.gr
wrote:
Anyone have any looking glass for Level 3?
The following seem not to be working
I use a mixture of BGP communities and prefix lists and it scales very
well for me .
Rgds Peter,
Sent from my Asus Transformer Pad
On Dec 12, 2012 3:24 AM, Dan Luedtke m...@danrl.de wrote:
Hi NANOGers,
tl;dr What is the best practice for filtering a large number of
prefixes at an internet
Hello ,
For those who provide l2vpn services to customers over MPLS , what
kind of tools do you use for monitoring the circuits and what kind of
values do you proactively monitor
I have tools in place to monitor these circuits but i want to know
based on group members experiences in order to
Hello All ,
Has anyone successfully implemented Net::perl::ssh with mrlg . If yes
please unicast me.
The Perl module works fine but mrlg dosent seem to be able to connect to
the routers using that module .
.
This has been sorted out now.
On Fri, Jun 8, 2012 at 5:59 PM, Nick Hilliard n...@foobar.org wrote:
On 08/06/2012 17:55, Peter Ehiwe wrote:
Authorisation for parent [as-block]
using mnt-lower:
not authenticated by: RIPE-NCC-RPSL-MNT
http://apps.db.ripe.net/whois/lookup
Please can any one familiar with route object creation help with
understanding this error
I am having a weird error with AUT-NUM object , even though i am using the
correct maintainer password i keep getting this error message.
Authorisation for parent [as-block]
using mnt-lower:
Verify what protocol the dell switch uses to tag the traffic(from the
datasheet) , i have seen some switches that wont trunk .1q with cisco
On Tue, Mar 6, 2012 at 5:07 PM, Alan Bryant a...@alanbryant.com wrote:
I hope everyone is having a better workday so far than I am.
I am trying to clean
yep , verify how dell tags the vlans , it may use a proprietory tagging
method for the trunk.
On Tue, Mar 6, 2012 at 5:36 PM, Alan Bryant a...@alanbryant.com wrote:
Thank you for the suggestions, unfortunately none of them are working.
I have tried with the uplink in general trunk mode. I
cool!
On Tue, Mar 6, 2012 at 7:10 PM, Alan Bryant a...@alanbryant.com wrote:
Just wanted to say a quick thank you to everyone who chimed in. Like I
thought, it turned out to be something very simple and routine. I had
not added the vlan to the Cisco switch. I had added it during testing,
but
IOS-XR
On 2/23/12, Randy Bush ra...@psg.com wrote:
and things when further downhill from there, when telstra also did not
filter what they announced to their peers, and the peers went over
prefix limits and dropped bgp.
Oh! so protections worked!
imiho, prefix count is too big a hammer.
Why cant you do the netflow from your end?
On Mon, Feb 13, 2012 at 7:48 AM, ali baba alibaba123...@gmail.com wrote:
Hi Everyone,
Hope someone can help me out.. I have some IP Transit links with one of the
Tier1s and I need to know the sourcedestination of traffic passing
though.. My
Hi ,
What is the best way to mitigate DOS attack against the bgp process of a
router , is LPTS on IOS-XR enough ?
Rgds
Peter
16 matches
Mail list logo