On Thursday, 11 July, 2024 07:23, "Hank Nussbacher" said:
> [
> https://www.kentik.com/blog/dissecting-the-fccs-proposal-to-improve-bgp-security/
> ](
> https://www.kentik.com/blog/dissecting-the-fccs-proposal-to-improve-bgp-security/
> )
As a not-security person trying to get to grips with this
On Friday, 13 October, 2023 16:04, "Laura Smith via NANOG"
said:
> RIPE could do the same. And some might argue that it is easier for RIPE
> because
> all we are asking is for a valid abuse contact, so its not like Nominet who
> have
> to verify e.g. registrant company ID numbers.
They do.
On Monday, 2 October, 2023 09:39, "William Herrin" said:
> That depends. When the FIB gets too big, routers don't immediately
> die. Instead, their performance degrades. Just like what happens with
> oversubscription elsewhere in the system.
>
> With a TCAM-based router, the least specific route
On Wednesday, 23 August, 2023 16:33, "Mark Tinka" said:
[faceplate oversubscription]
> On the new ACX line, yes.
Not Trio, and different PLM :)
> We don't mess around with any other MX products, so not sure (although
> we are still yet to deploy the MPC10E's and the MX304).
MX304 (well, stric
On Saturday, 10 December, 2022 06:47, "Saku Ytti" said:
> What you can do, day1
>
> a) copy configs as-is, as templates
> b) only edit the template
> c) push templates to network
That's a take on it I really hadn't considered. I'm very aware that moving
from a decade or two of legacy manual c
On Friday, 9 December, 2022 16:04, "Saku Ytti" said:
> If you remove the need for deltas the whole problem becomes extremely
> trivial. Fill in all the templates with data, push it.
Or at least, you've moved the problem from "generate config" to "have complete
and correct data". Which statemen
> The MX204 is pure shocker! Unless the MX304 will come with a
> license-based approach to run at MX204 pricing, that is Juniper shooting
> themselves in the foot.
Unless I'm missing a trick, the MX304 doesn't have an answer to installing
DWDM, bidi, or other fancy optics in the SPF+ ports on the
On Sunday, 29 May, 2022 06:04, "Owen DeLong via NANOG" said:
> I use google auth for several forced 2FA sites and a few sites where what I am
> protecting is worth the hassle. One difficulty that quickly emerges is
> managing
> and finding the correct Totp in the long unsorted list.
In case it'
On Friday, 27 May, 2022 00:58, "Jeff Shultz" said:
> I think we have a winner here - we don't necessarily need 1G down, but we
> do need to get the upload speeds up to symmetrical 50/50, 100/100 etc...
> there are enough people putting in HD security cameras and the like that
> upstream speeds ar
On Friday, 22 October, 2021 16:45, "Bryan Fields" said:
> Until IPv6 becomes provides a way to make money for the ISP, I don't see it
> being offered outside of the datacenter.
I don't think it'll ever make money, but I think it will reduce costs. CGNAT
boxes cost money, operating them costs m
On Friday, 22 October, 2021 06:39, "Owen DeLong via NANOG"
said:
> \032 is not a space.
>
> Decimal 32 (0x20, \040) is a space.
> \032 is a Ctrl-Z (26 decimal, 0x1a)
So, someone trying to "undo" in a GUI editor, or a failed attempt to exit 'vi'?
Cheers,
Tim.
On Monday, 23 August, 2021 10:19, "Karl Auer" said:
> You could block inappropriate inbound requests, but not knowing what is
> on the web servers makes that an infinite set of possibilities. So you
> would really have to permit only appropriate inbound requests. On
> anything but a trivial serve
On Friday, 20 August, 2021 21:48, "Valdis Klētnieks"
said:
>> 2. How-to monitor whether some outside websites are just shells, with
>> contents actually being hosted by our servers without me knowing about it?
>
> Again - what actual problem are you trying to solve here? If you're being
> use
On Wednesday, 18 August, 2021 14:21, "Tom Beecher" said:
> We created 5 or 6 different buckets of limit values (for v4 and v6 of
> course.) Depending on what you have published in PeeringDB (or told us
> directly what to expect), you're placed in a bucket that gives you a decent
> amount of headr
On Monday, 19 July, 2021 14:04, "Stephen Satchell" said:
> The allocation of IPv6 space with prefixes shorter than /64 is indeed a
> consideration for bigger administrative domains like country
> governments, but on the other end, SOHO customers would be happy with
> /96, /104 or even /112 alloca
On Friday, 21 May, 2021 16:13, "nanoguser100 via NANOG" said:
> Correct me if I'm wrong here but I *could* take full table + AS on B
> meaning
> the traffic will prefer 'B' due it it having a more specific route since I'm
> only
> taking default from A (despite local pref). That will corre
On Thursday, 18 February, 2021 22:37, "Warren Kumari" said:
> 4: Not too long after I started doing networking (and for the same small
> ISP in Yonkers), I'm flying off to install a new customer. I (of course)
> think that I'm hot stuff because I'm going to do the install, configure the
> router,
On Thursday, 18 February, 2021 16:23, "Seth Mattinen" said:
> I had a customer that tried to stack their servers - no rails except the
> bottom most one - using 2x4's between each server. Up until then I
> hadn't imagined anyone would want to fill their cabinet with wood, so I
> made a rule to ba
DO NOT EDIT BELOW THIS LINE
Assigned to: BuyGoods Support
On Saturday, 17 October, 2020
00:41, "Tony Wicks" said:
> Well, there is always the MX104 (if you want redundancy) or MX80 if you
> dont. That will give you 80gig wire speed j
On Saturday, 17 October, 2020 00:41, "Tony Wicks" said:
> Well, there is always the MX104 (if you want redundancy) or MX80 if you
> don’t. That will give you 80gig wire speed just don’t load it up with
> more than one full table.
Bear in mind that the MX80 is now in the EoL process, you have <4
On Thursday, 8 October, 2020 10:37, "Forrest Christian (List Account)"
said:
> I've done a bit of googling and am either finding stuff that is largely
> Cisco-specific or which is generic - all of which I'm rather familiar with
> based on my past history. Is there anything I should worry about
> For me, MACSec is kind of like SyncE... great on paper and in the sales
> pitch, but anyone that truly wants to use those features is probably
> going to be architecting, deploying and managing them themselves, and
> not paying a 3rd party network operator for the priviledge.
I've got MACSec dep
On Friday, 14 February, 2020 09:17, "Valdis Klētnieks"
said:
> After all - it's not like *they* are going to feel the pain of a single 106G
> upload,
> it's somebody else who feels the pain of 5 million downloads of a 106G image
> refresh.
>
> Economists call this sort of thing an "externality"
On Monday, 10 February, 2020 11:50, "Jean | ddostest.me via NANOG"
said:
> I really thought that more Cisco devices were deployed among NANOG.
>
> I guess that these devices are not used anymore or maybe that I
> understood wrong the severity of this CVE.
The phones / cameras side of it seems
On Tuesday, 28 January, 2020 16:53, "Paul Ebersman"
said:
> SLIP and PPP were quite... robust. Some UCB folks managed to get SLIP
> over tin can and string. Two acoustic coupler 150b modems, 2 8oz V8 cans
> and waxed cotton thread.
https://www.revk.uk/2017/12/its-official-adsl-works-over-wet-st
On Thursday, 2 January, 2020 21:34, "Sabri Berisha"
said:
> - On Jan 2, 2020, at 1:24 PM, John Levine jo...@iecc.com wrote:
>
>> PS: You also wouldn't believe how cheap the power is. California's
>> prices are high compared to most of the US, but it's still only about
>> €0.15 per KWh.
>
On Thursday, 21 November, 2019 12:00, "Rob Seastrom" said:
>> On Nov 21, 2019, at 05:33, "t...@pelican.org" wrote:
>>
>> Or am I woefully naive, and it's actually trivial for a non-US resident to
>> come
>> up with a US credit card and bi
On Wednesday, 20 November, 2019 21:25, "William Herrin" said:
> This is why you don't go after Hulu. You go after the content owners who
> conspired to compel Hulu to limit distribution in a way that tortiously
> interferes with your contract with your eyeball customers.
Am I the only one who's
On Wednesday, 16 October, 2019 19:42, "Jeff Shultz"
said:
> Just like any broadband deployed by a Telco gets called "DSL" these
> days - even if it's 1G fiber. And even by those in the industry who
> should know better.
We have the opposite problem in the UK - the VDSL (FTTC) roll-out was brand
On Friday, 4 October, 2019 05:55, "Doug Barton" said:
> ... unless you're large enough to have your own address space. And even
> if you do need to change providers, once you have your addressing plan
> in place all you have to change is the prefix.
And if this is hard, we should be beating up h
On Monday, 2 September, 2019 15:03, "Valdis Klētnieks"
said:
> Hardened? Is this just "will survive in a not-well-cooled telco closet"
> hardening,
> or something more unusual?
I don't see specs yet, but I would expect it's the former, similar to the MX104
against the rest of the MX range
On Tuesday, 18 December, 2018 22:43, "Brandon Martin"
said:
> This is a favorite interview type question of mine, but I won't
> disqualify a candidate if they can't come up with the reason. It's more
> of a probe for historical domain knowledge (one of many I'll slip in).
It's an interestin
On Thursday, 22 November, 2018 05:30, "William Herrin" said:
> Good question! It matters because a little over two decades ago we had
> some angst as equipment configured to emit a TTL of 32 stopped being
> able to reach everybody. Today we have a lot of equipment configured
> to emit a TTL of
On Tuesday, 20 June, 2017 14:41, "Mike Hammett" said:
> I'm still not sure people understand the situation. There's an attendee list,
> but
> that list doesn't have e-mail addresses. It didn't come from the mailing
> list. The
> person looked up who went to the conference and then found their e
On Tuesday, 20 June, 2017 14:26, "Rod Beck"
said:
> And how do you tell if an address was scraped or not? There are databases and
> zillions of other ways of gaining addresses.
>
>
> I doubt you can distinguish the source with any real reliability.
Depending on whether you're registered with
Hi Brian,
On Tuesday, 6 June, 2017 21:48, "Brian Knight" said:
> Because we had different sources of truth which were written in-house, we
> wound up
> rolling our own template engine in Python. It took about 3 weeks to write the
> engine and adapt existing templates. Given a circuit ID, it ge
On Friday, 17 February, 2017 08:29, "Florian Weimer" said:
> Of course they do, see the arrest of Augusto Pinochet.
Universal Jurisdiction is supposed to cover the likes of war crimes, torture,
extrajudicial executions and genocide, that are generally agreed to be crimes
against humanity as a
On Friday, 2 December, 2016 05:55, "Mark Tinka" said:
> Redback used to be popular - I believe they got picked up by Ericsson.
I'd steer clear at a small scale like 20k subscribers. In my experience,
Ericsson as an organisation just aren't set up to deal with a company that want
to buy a coup
On Thursday, 27 October, 2016 00:40, "Ronald F. Guilmette"
said:
> Point: I have a DSL line which is limited to 6Mbps down and 756Kbps up.
> My guess is that if any typical/average user is seen to be using more
> than, say, 1/10 of that amount of "up" bandwidth in any one given 10
> minute time
On Friday, 10 June, 2016 05:48, "Mark Foster" said:
> Router-jockeys and purists often cite this. I've done it myself.
> But there are a lot more moving parts in most service providers than
> simply the ones and zeros.
> Bandwidth Accounting, Billing, Provisioning systems in particular - and
>
On Friday, 15 April, 2016 15:51, "John R. Levine" said:
> The US and most of the rest of North America have a fixed length
> numbering plan designed in the 1940s by the Bell System. They offered
> it to the CCITT which for political and technical reasons decided to
> do something else. (So when
On Thursday, 14 April, 2016 16:32, "Leo Bicknell" said:
> So maybe 10% of all cell phones are primarly used in the "wrong" area?
Out of curiosity, does anyone have a good pointer to the history of how / why
US mobile ended up in the same numbering plan as fixed-line?
Over here in the UK we had
On Tuesday, 12 April, 2016 14:04, "Colton Conor" said:
> Do the Juniper EX switches support MPLS? I know they have models with
> multiple 10G ports on them. There is also the QFX series.
The EXes can also run in a "fabric extender" mode to the MX (and others?).
Depending on geographical footpr
On Monday, 18 January, 2016 19:02, "Colton Conor" said:
> What options are out there for re-programmable SFP and SFP+ transceivers?
> So far I have found both
> https://www.flexoptix.net/en/flexbox-v3-transceiver-programmer.html and
> http://solid-optics.com/tools/multi-fiber-tool/so-multi-fiber-
On Friday, 20 November, 2015 14:05, "Jared Mauch" said:
> Did someone say NAT?
>
> https://www.youtube.com/watch?v=v26BAlfWBm8
Now *that's* how to make my Friday afternoon! You, sir, win the Internet for
today.
Regards,
Tim.
On Wednesday, 7 October, 2015 12:54, "Owen DeLong" said:
> There are some important differences for ICMP (don’t break PMTU-D or ND),
> but otherwise, really not much difference between your IPv4 security policy
> and
> your IPv6 security policy.
The IPv4 world would have been nicer without quit
46 matches
Mail list logo
