NANOGers -
ARIN has opened a consultation on removing support for FTP as an access method
(in preference to HTTP/HTTPS) for our data archive –
please see the attached consultation and provide feedback to the arin-consult
mailing list if you have strong opinions on such a change.
Thanks!
/John
NANOGers -
As announced in the recently closed consultation, ARIN Online will support
automatic route object creation upon ROA generation starting on 4 November 2024
- more details available in the attached announcement.
FYI,
/John
John Curran
President and CEO
American Registry for Internet
olved, but make sure to become an ARIN general member and
designate a voting contact before 9 September 2024 if you wish to participate
in this year’s ARIN elections. Additional details are available in the links
below.
Thanks!
/John
John Curran
President and CEO
American Registry for Intern
John,
Please reach out to me off list so we can take care of this issue.
Thanks
John S.
ARIN CXO
Sent from my iPhone
> On Aug 15, 2024, at 3:22 PM, John Palmer wrote:
>
> That's not what they tell me every time I try to apply - they ask for all
> sorts of "just
That's not what they tell me every time I try to apply - they ask for all sorts
of "justification" and network usage maps, etc.
I have tried 3 times and just get the run-around.
-Original Message-
From: William Herrin
Sent: Thursday, August 15, 2024 15:31
To: John Pa
What happened? ARIN insists on you signing away your rights to your PI legacy
IPV4 space in order to get any allocation of IPV6 space.
PI holders should get an automatic assignment of IPV6 space if they request it.
People don’t like being extorted. Maybe if they stopped profiteering, peo
ke.
But no need, I did that a few hours ago and it's fixed.
I expect it wasn't exactly a false positive, someone with an odd sense
of humor probably put your address as a hashbuster in a spam run or
something like that, but I pointed to RFC 9324 as an example of why
it would be a good idea n
!
/John
John Curran
President and CEO
American Registry for Internet Numbers
Begin forwarded message:
From: ARIN
Subject: [arin-announce] Changes Coming to Cryptographic Features Across ARIN
Services
Date: August 1, 2024 at 2:37:57 PM AST
To: "arin-annou...@arin.net"
As of 3 February
to be functional
upon first glance:
* http://pgp.circl.lu/
* https://pgp.surfnet.nl/,
* https://keys.openpgp.org/
* https://keyserver.pgp.com/.
Also see:
https://www.first.org/pgp/An_Introduction_to_PGP-GnuPG_v1.0.pdf
John
Hello NANOG,
Please see the announcement below reference ARIN’s Fellowship Program.
Thanks,
John S.
From: ARIN-announce on behalf of ARIN
Sent: Thursday, June 27, 2024 10:43 AM
To: arin-annou...@arin.net
Subject: [arin-announce] Apply Today for the ARIN 54
Have you tried the rtg2 fork on github? https://github.com/synergycp/RTG2
Its still pretty old, like 2009, but there was an update made just 2 years ago
with MariaDB support. I stopped using rtg/rtg2 around 2015, but I was always a
huge fan of it.
-John
> On Jul 12, 2024, at 6:19 PM, N
Particularly if they don’t allow downgrade attacks to CA certs.
>
>I think there are a few more brands looking to make this move to higher
>security in the new ngTLD round. At least everybody’s a lot
>more educated this time around.
I dunno, if they were better educated they'
It appears that Bill Woodcock said:
>-=-=-=-=-=-
>
>> On Jul 6, 2024, at 22:11, John Von Essen wrote:
>> I saw something online that said $250,000 but that didn’t make sense if its
>> all paperwork.
>
>Heh. I see you are unfamiliar with ICANN. They’ve said that
TLD and actually use it for yourself (and maybe
others)? I saw something online that said $250,000 but that didn’t make sense
if its all paperwork. Again, this assumes you already have infra to use.
-John
> On Jul 5, 2024, at 5:18 AM, Bill Woodcock wrote:
>
>
>
>> On Jul 5, 2024,
According to Jay R. Ashworth :
>data I heard that that *was* a registry-side hold (and hence it didn't matter
>that it was NetSol). Or perhaps that NetSol was still the registry for .net --
>that's out of date now, isn't it?
Uh, yeah, Verisign spun off the NetSol registrar over 20 years ago in la
thmetic, the
current round has been an utter failure for everyone other than ICANN
and the people who sucked money out of the process (which includes me,
but not so much I particularly want to do it again.)
R's,
John
* - I have argued with CSC about updates to the IANA domains and found
it is
x27;s worth it. (Not that Netsol is
particularly cheap.)
R's,
John
I think we found the issue. Looks like a pmtu issue with our upstream
provider and their connection to the microsoft fabric. Working with them
now.
Thank you everyone for helping. Some reached me off list to help.
John
On Fri, Jun 28, 2024 at 10:31 PM Lincoln Dale wrote:
> Presuma
Azure Looking glass that I can use to originate pings and
traceroutes? My googlefu is weak and I haven't found it yet.
With that information, I think I can help my upstream provider know where
the problem lies.
John Acock
AS395437
person lurking around that can contact me off list?
John Alcock
Network Engineer - Highland Telephone
AS395437
review the requirements at the link below.
Thanks!
/John
John Curran
President and CEO
American Registry for Internet Numbers
Begin forwarded message:
From: ARIN
Subject: [arin-announce] Call for Nominations Extended for ARIN Board of
Trustees
Date: June 24, 2024 at 5:15:12 PM AST
To: "arin-
will be provided when registration opens.
If you have questions or concerns you can contact the Programme
Committee:
https://www.dns-oarc.net/oarc/programme
via submissi...@dns-oarc.net
John Todd, for the DNS-OARC Programme Committee
For OARC 43 we are open to patronage and donations to fund t
Could be related or coincidence, but at the same time as this HE issue, we've
been seeing inbound connectivity issues to Azure US Central. Azure’s ASN does
have a peer to HE….
-John
> On Jun 14, 2024, at 7:23 AM, Michael Brown via NANOG wrote:
>
> On 2024-06-14 06:32,
It appears that Robert Jacobs said:
>-=-=-=-=-=-
>
>If you do a bit more digging the ISP is not Lumen ... It is a well known ISP
It's Windstream.
and I recall reading about this
>outage when it happened. I don’t know if indeed this was a botched attempt to
>gather a bot network or like
>some
od reasons cannot be a PO Box.
You should move to New York. My NY license has always had my PO Box
and no other address. I do have a street address, and the PO does
deliver there, but it's not on my license.
--
Regards,
John Levine, jo...@taugh.com, Primary Perpetrator of "The Internet for Dummies",
Please consider the environment before reading this e-mail. https://jl.ly
We're using Zammad
John Stitt
Senior Network Engineer
From: NANOG on behalf of
Pascal Masha
Sent: Monday, May 27, 2024 12:28 PM
To: nanog
Subject: Free(opensource) Ticketing solutions
Hello,
Which free and good ticketing systems do you folks(for
oot zone, e.g., delete Iran or Russia or point
their name servers at something else.
https://community.icann.org/pages/viewpage.action?pageId=120820189
R's,
John
Maintainer (hence the name).
Good point.
In any event, I think we agree that none of IANA, ICANN, and/or Verisign
has the authority to remove one of the root operators, no matter how much
someone might dislike their peering policies.
R's,
John
PS: Perhaps the GWG will eventually come up with
ot
server operators say no, and the root server operators carefully avoid
putting ICANN in a position where they might have to do that.
I'm not guessing here, I go to ICANN meetings and talk to these people.
R's,
John
rvers
and never has been.
We can all have our own opinions about the various operators.
R's,
John
>
>For those who haven't been around long enough, this isn't Cogent's
>first depeering argument. Nor their sec
surprised nobody noticed for close to 10 days. I was away
from work and upon coming back I saw the little discussion there was ,
in my Spam folder.
On Thursday, 16/05/2024 at 18:56 John R. Levine wrote:
On Thu, 16 May 2024, William Herrin wrote:
The message content (including the message h
#x27;s why you see PROBABLE SPAM rather than
just not getting the call.
R's,
John
eturn-path header.
But that wasn't the problem here, the SPF record was just gone. Oops.
I see that the SPF record is back and seems have the correct addresses so
we can now return to our previously scheduled flamage.
Regards,
John Levine, jo...@taugh.com, Primary Perpetrator of "T
do not get along with mailing lists, but SPF is OK, at
least as OK as SPF ever is.
tl;dr nanog needs to put back its SPF record. It'll make some systems
such as Gmail considerably more likely to accept the mail.
R's,
John
local or global context."
I can't remember hearing anyone complaining about bogon-related
reachability problems with the aggregate IANA prefixes generally. Is
there a strong case to make that ops should not bogon filter any
addresses in these prefixes? At least with IPv4? What about for IPv6?
John
NANOGers -
If you are still emailing SWIP requests to ARIN for reporting reallocations and
reassignments, please contact the ARIN Helpdesk ASAP to move a more
appropriate/secure technology.
Thanks,
/John
John Curran
President and CEO
American Registry for Internet Numbers
Begin forwarded
UTC day.”
(Low but distinct possibility of effects to radio and transmission systems)
FYI,
/John
John Curran
President and CEO
American Registry for Internet Numbers
Hi NANOG’ers,
ARIN has announced the opening of applying for an ARIN grant. See below
announcement.
Do you have a project that needs funding, is noncommercial in nature, and
benefits the Internet community within the ARIN service region? Apply now for a
2024 ARIN Community Grant.
The ARIN Co
related to it either.
We’re in southwest Kentucky, for what that’s worth.
John Stitt
HES Energynet
From: NANOG On Behalf Of
Corey Smith via NANOG
Sent: Tuesday, May 7, 2024 6:31 PM
To: nanog@nanog.org
Subject: Roku Streaming Issues
Is anyone else seeing issues with Streaming services on Roku
n registration opens.
If you have questions or concerns you can contact the Programme Committee:
https://www.dns-oarc.net/oarc/programme
via submissi...@dns-oarc.net
John Todd, for the DNS-OARC Programme Committee
For OARC 43 we are open to patronage and donations to fund the Workshop and
asso
eone somewhere who is competent because their network mostly works, but
damned if I know how to find them.
https://www.theverge.com/2022/7/29/23282522/charter-spectrum-customer-murder-forged-terms-of-service
R's,
John
in, there is no case law to support it.
R's,
John
en different?
No, it's terrible, and Spectrum is particularly bad. I am now in month
three of trying to get them to route a /24 to my host that belongs to one
of my users, and their responses can be summarized as very complex
exegeses of "duh?"
But bogus lawyer letters will just ma
pect the least bad alternative if you can't
find an out of band contact is to get some of the Spectrum customers
who can't reach you to complain. They're customers, you aren't.
R's,
John
pages
all look nearly the same, and they're all on the same IP address with
the same wildcard SSL certificate.
Amazon's spider got stuck there a month or two ago but fortunately I was
able to find someone to pass the word and it stopped. Got any contacts
at OpenAI?
R's,
John
PS: If
upstreams with each ASN, and are on Ohio IX with
AS53471, but not really any peers anywhere. Looks like Cogent and Zayo for
upstreams and only peer I see is AS1239 (Sprint Wireline (Cogent))
John Stitt
From: NANOG On Behalf Of
Aaron Gould
Sent: Thursday, April 4, 2024 4:36 PM
To: Eric Dugas
Cc
DO THAT.
If a DKIM signature isn't valid, you ignore it. If you do anything else,
as you have just discovered, you will be sorry.
R's,
John
who knew him. I’m thankful for all he did for computing and
the Internet.
John Stitt
Sent from my pocket CRAY-1
On Mar 31, 2024, at 2:20 PM, Jay R. Ashworth wrote:
[You don't often get email from j...@baylink.com. Learn why this is important
at https://aka.ms/LearnAboutSenderIdentific
/akvorado>
github.com<https://github.com/akvorado/akvorado>
John Stitt
Sent from my pocket CRAY-1
On Mar 26, 2024, at 7:05 PM, Brian Knight via NANOG wrote:
What's presently the most commonly used open source toolset for monitoring
AS-to-AS traffic?
I want to see with which ASes I
Hi John,
If you CC: hostmas...@arin.net<mailto:hostmas...@arin.net> on the email to
ipadmin-b...@att.com<mailto:ipadmin-b...@att.com>, ARIN will reach out to them
and if the entries are not removed in 7 days ARIN will remove them for you.
Thanks,
John S.
ARIN CCO
From: NANOG
ore.
does anyone have some contact info at ATT/Bell for getting these records
corrected?
John Conley - Covenant - Network Engineer - 423.463.3342
__
This communication and the information transmitted is intended solely for the
scan everyone to make the Internet better, just filter us, but if you insist,
you can
send objections to n...@m-d.net.
Any idea who they are? I expect it's more likely that they're self-important
than
evil. but still, sigh.
R's,
John
x27;s mail away since they send far
more mail that recipients want to throw away than either of their large
competitors. I've set up special filters that send everything from MS to
the spam trap if it's not on a static whitelist.
Regards,
John Levine, jo...@taugh.com, Primary Perpetra
to use Gmail instead.
On Tue, 12 Mar 2024, John Levine wrote:
It appears that Sean Donelan said:
Microsoft's corporate email systems appear to silently drop email from
small domains (like mine).
It can't be that simple -- I have some tiny domains and correspond with
Microsoft empl
pp.linktechs.net/dnssec/ ?
I agree there are better places to ask, but here's a quick
diagnosis: your nameserver is returning the wrong answer.
What kind of server is it? Any modern nameserver should automatically
return the correct DNSSEC stuff for wildcard responses.
R's,
John
It appears that Sean Donelan said:
>
>Microsoft's corporate email systems appear to silently drop email from
>small domains (like mine).
It can't be that simple -- I have some tiny domains and correspond with
Microsoft employees all the time.
R's,
John
d. When you troubleshoot, you log in as CiscoTAC.
The CiscoTAC tacacs profile description in Clearpass makes it clear why it's
there. I left the curse words out.
-J
John C. Lyden
Associate Director, Network Operations
Division of Information Resources & Technology
Rowan University
That honestly is what my experience used to be but this has not been my
observation recently, even when we as a large NSP provide all detail and
literally ask about possible bugs.
From: NANOG On Behalf Of Joel Esler
Sent: Thursday, March 7, 2024 11:46 AM
To: Pascal Masha
Cc: nanog
Subject: Re
alking about old companies, I have a situation
> right now where a VPS provider I'm using will no longer use IRR and
> only accepts new paper LOAs. In the year 2024. I don't understand how
> anyone can go backwards like that.
Did you ask them why or can you name the provider?
John
>From what I've read, they lost their database of SIM cards. I could be
wrong of course.
On Thu, Feb 22, 2024 at 2:02 PM Dorn Hetzel wrote:
> As widespread as it seemed to be, it feels like it would be quite a trick
> if it were a single piece of hardware. Firmware load that ended badly, I
> w
reach out and make a request and see what
they tell you directly. I got a response pretty quickly and they were nice
about it.
John Stitt
-Original Message-
From: NANOG On Behalf Of Tom
Samplonius
Sent: Thursday, February 22, 2024 12:29 PM
To: NANOG
Subject: Akamai AANP minimum traffi
It appears that Nick Hilliard said:
>full control of all modems and they're all relatively recent, properly
>supported units, fully managed by the cable operator. If you start
>adding poor quality cheap units into the mix, it can cause service problems.
The cablecos I've dealt with have a list
ine what is actually happening in live deployments.
Unfortunately, spammers can read just as well as we can so it's not
going to happen.
R's,
John
onfigure a NAT. Once you start making exceptions, it depends on the
nature of the exceptions, the way you tell the router about them (CLI, web
crudware, whatever) and doubtless other stuff too.
Regards,
John Levine, jo...@taugh.com, Primary Perpetrator of "The Internet for Dummies",
It appears that William Herrin said:
>Now suppose I have a firewall at 199.33.225.1 with an internal network
>of 192.168.55.0/24. Inside the network on 192.168.55.4 I have a switch
>that accepts telnet connections with a user/password of admin/admin.
>On the firewall, I program it to do NAT transl
are now pretty similar.
They won't accept v6 mail that isn't authenticated with SPF or DKIM
but honestly, if you can't figure out how to publish an SPF record you
shouldn't try to run a mail server.
R's,
John
they will delegate the rDNS
anywhere you want. My local ISP doesn't do IPv6 at all (they're a
rural phone company who of course say you are the only person who's
ever asked) so until they do, HE is a quite adequate option.
R's,
John
nce they don't publish records for their
inbound mail.
R's,
John
zero-sum thinking;
Well, OK, think how many more sites could hav IPv6 if people weren't
wasting time arguing about this nonsense.
R's,
John
On Feb 14, 2024, at 2:09 PM, Randy Bush wrote:
john,
Read the full text of the consultation at:
https://www.arin.net/participate/community/acsp/consultations/2024/2024-1/
please explain the need for bureaucrazy to do what RPKI CAs have been
doing since dirt was invented.
Randy -
I’d tend to
to this
mailing list at https://lists.arin.net/mailman/listinfo/arin-consult. ARIN will
use the feedback provided to determine how we move forward with improvements to
our routing security services.
Thank you in advance for your participation in this community consultation.
Thanks!
/John
John
o late.
Most spiders can take the hint that they're all on the same IP. But not
these two.
R's,
John
>
>On Feb 13, 2024, at 8:35 PM, John Levine wrote:
>>
>> One day I set up the world's lamest content farm. You can see it here:
>>
>> https://w
impact has
almost certainly increased.
Thanks,
/John
John Curran
President and CEO
American Registry for Internet Numbers
> On Feb 14, 2024, at 1:25 AM, Dave Taht wrote:
>
> Excellent summary of the USG position as of 2019. It is, um, nearly 5
> years later, has any of these s
t" on your favourite
search engine.
Regards,
John Levine, jo...@taugh.com, Primary Perpetrator of "The Internet for Dummies",
Please consider the environment before reading this e-mail. https://jl.ly
tanding of the
risks involved.
Thanks!
/John
John Curran
President and CEO
American Registry for Internet Numbers
[1]
https://pc.nanog.org/static/published/meetings/NANOG77/2108/20191028_Elverson_Your_As_Is_v1.pdf
pg 4.
t trapped but fortunately I knew someone at
Microsoft who could pass the word. He reported back that while he
could not go into detail, there was a great deal of animated
conversation at the other end of the hall, and shortly after that it
stopped.
R's,
John
hoping that
>people come around to your position, it's never going to happen.
I think we have once again established that repeating a bad idea over
and over and over does not make it any less bad.
Let's argue about something else, OK?
R's,
John
It appears that Lyndon Nerenberg (VE7TFX/VE6BBM) said:
>And what are they going to do when 240/4 runs out?
That will be a hundred years from now, so who cares?
R's,
John
PS: I know this because it will take 98 years of process before the
RIRs can start allocating it.
Well that data is disappointing.
From: NANOG on behalf of Owen
DeLong via NANOG
Date: Monday, February 12, 2024 at 5:03 PM
To: NANOG list
Subject: IPv6 Test Pages for Fortune 500 and Top 100 web sites are back
Don’t know how much anyone will still care about these pages as there are lots
of o
information on the consultation that was held, the open source template
processor we’ve made available and the REST-based alternative.
Thanks!
/John
John Curran
President and CEO
American Registry for Internet Numbers
Begin forwarded message:
From: ARIN
Subject: [arin-announce] Email Template
nk the rest of us are obliged to arrange our lives around one
mail provider's imperfect heuristics.
If I were you, I would call up Google and demand that they fix this bug.
What do they think you're paying for? Oh, wait ...
R's,
John
It appears that Randy Bush said:
>> Some of us still use pine$B!D(B
>
>i thought most pine users had moved to mutt
Some, but pine (now called alpine) is still actively maintained and
does some things better than mutt, particularly if you want to keep
track of multiple inboxes on different serve
er" tells you.
Absolutely - always a good idea.
Thanks for feedback!
/John
John Curran
President and CEO
American Registry for Internet Numbers
and can be found here –
https://www.arin.net/resources/registry/transfers/facilitators/qualifiedfacilitators/
– any of them should be able to do a credible job in helping you obtain an
IPv4 address block from the marketplace.
Best wishes,
/John
John Curran
President and CEO
American Registry
,
John S.
vers) and say the NS for
contacts.abuse.net is at 127.0.0.1, but as we've seen it's a challenge
keeping track of all the places your queries can come from.
Regards,
John Levine, jo...@taugh.com, Primary Perpetrator of "The Internet for Dummies",
Please consider the environment before reading this e-mail. https://jl.ly
. It’s
not hard.
I could do that but with the other clues I think it's unlikely they're
spoofed and far more likely they're real traffic from clueless users.
Regards,
John Levine, jo...@taugh.com, Primary Perpetrator of "The Internet for Dummies",
Please consid
xt to the results saying
it's not a blacklist, I got a stream of outraged people insisting I was
personally blocking their mail. So I was finally able to get him to take
it out by returning this custom result:
'Blacklisted. To remove send $100 to x...@valli.org'
R's,
Joh
ne is wondering, I have a passive aggressive countermeasure against
some overqueriers that returns ten NS referral names, and then 25 random
IP addresses for each of those names, but I don't do that to Google.
R's,
John
-
They are probably spoofed IPs. So those are the target IP IPs of a DDoS
What king of amplification factor does your DNS server have? I bet with the
changes you’ve made, it’s super high. People are looking for DNS servers like
that.
On the contrary, the reponse packets are tiny.
$ host -t
172.253.255.33
172.253.206.35
172.253.255.34
172.253.206.33
172.253.206.34
172.253.13.194
172.253.13.195
172.71.125.63
172.71.117.60
172.71.133.51
R's,
John
(& Happy Holidays!),
/John
John Curran
President and CEO
American Registry for Internet Numbers
On Nov 22, 2023, at 10:02 PM, Gary Buhrmaster wrote:
On Wed, Nov 22, 2023 at 8:14 PM William Herrin wrote:
It still seems unwise, but not entirely insane.
I would expect that at some point in the fu
et me know and I'll put
you in touch with Carlos and a draft.
John
Hi!
I could not find any recent thread on the list about ddos scrubbing
devices. We are looking into some kind of hybrid service with onprem
hardware and scrubbing centers. At the moment we are evaluating NSFocus and
Riorey, do the list have any experience from them?
Johan
run .US and since
then it's been a lot like generic TLDs, with second level domains
rented for a yearly fee. The old geographic names are still grandfathered
but the registry, now run by Godaddy, isn't delegating any new ones.
R's,
John
activity."
What hope is there when registrars are actively aiding and abeting
criminal enterprises?
Are there any legitimate services running solely on .us domain names?
-Dan
--
**
John McCormac * e-mail: j...@hosterstats.com
MC2
are small.
It might be an idea to contact Domaincrawler(.)com and ask what it is
doing.
Regards...jmcc
--
**
John McCormac * e-mail: j...@hosterstats.com
MC2* web: http://www.hosterstats.com/
22 Viewmount * Domain
hether Charter uses one of these, some other third party,
or their own. We must know someone there who could tell us.
Regards,
John Levine, jo...@taugh.com, Primary Perpetrator of "The Internet for Dummies",
Please consider the environment before reading this e-mail. https://jl.ly
y (we, actually) found five millions domains
used in crime of at least a million were registered only to do crime.
https://interisle.net/CybercrimeSupplyChain2023.html
R's,
John
d everything to their favorite
DoH resolver but they got a great deal of pushback from people who
pointed out that they had policies on their networks and they'd have
to ban Firefox. Firefox responded with a lame hack
where you can tell your cache to respond to some name and if so
Firefox will use your resolver.
R's,
John
1 - 100 of 1036 matches
Mail list logo