Re: [WISPA] Network/infrastructure design for WISP's

2016-10-21 Thread Shawn C. Peppers
I personally have never understood having everything managed from the edge of the network. To each their own Shawn C. Peppers Video Direct Satellite & Entertainment 866-680-8433 Toll Free 480-287-9960 Fax http://www.video-direct.tv > On Oct 21, 2016, at 10:02 PM, Chris Ruschmann

Re: [WISPA] Anyone ever had your phone number spoofed?

2016-10-21 Thread Fred Goldstein
On 10/21/2016 10:09 PM, Civano Coffee House wrote: signature And this is exactly why they continue to get away with this kind of fraud, the government is selective on who they will let report it. If you’re a person called and try to file a report they throw another obstacle in the way.

Re: [WISPA] Network/infrastructure design for WISP's

2016-10-21 Thread Chris Ruschmann
Correct. Not everyone drinks the procera koolaid however ;) On Oct 21, 2016 4:41 PM, "Josh Reynolds" wrote: > Unless you're not running BMUs :P > > Even if you were, you could run them in pairs. You know, just like a > regular network service. > > On Oct 21, 2016 7:37 PM,

Re: [WISPA] Network/infrastructure design for WISP's

2016-10-21 Thread Fred Goldstein
On 10/21/2016 9:52 PM, Tim Way wrote: 2k12r2 ha DHCP service, Linux clustering or simple dual scopes! That still requires connectivity from the device to the DHCP server. Static management addresses let you associate a piece of hardware, a physical thing, with that 32-bit name and not

Re: [WISPA] Network/infrastructure design for WISP's

2016-10-21 Thread Shawn C. Peppers
Im a fan of pppoe simply because it has zero cons other than qos on the AP. Shawn C. Peppers Video Direct Satellite & Entertainment 866-680-8433 Toll Free 480-287-9960 Fax http://www.video-direct.tv > On Oct 21, 2016, at 9:21 PM, Tim wrote: > > Not a fan of

Re: [WISPA] Network/infrastructure design for WISP's

2016-10-21 Thread Tim
Not a fan of ppoe. Sent from my Verizon Wireless 4G LTE DROID Tim Way wrote: >___ >Wireless mailing list >Wireless@wispa.org >http://lists.wispa.org/mailman/listinfo/wireless ___ Wireless

Re: [WISPA] Anyone ever had your phone number spoofed?

2016-10-21 Thread Civano Coffee House
And this is exactly why they continue to get away with this kind of fraud, the government is selective on who they will let report it. If you’re a person called and try to file a report they throw another obstacle in the way. From: wireless-boun...@wispa.org

Re: [WISPA] Network/infrastructure design for WISP's

2016-10-21 Thread Tim Way
2k12r2 ha DHCP service, Linux clustering or simple dual scopes! On Oct 21, 2016 6:16 PM, "Adair Winter" wrote: > What happens when DHCP quits and you can't manage anything? > Powercode assigns the next available management IP for whatever > tower/range and we

Re: [WISPA] Network/infrastructure design for WISP's

2016-10-21 Thread Adair Winter
Exactly. My statement had less to do with power code and more to do with the fact that we log/document ever cpe in powercode but it's set static On Oct 21, 2016 7:41 PM, "Josh Reynolds" wrote: > Unless you're not running BMUs :P > > Even if you were, you could run them in

Re: [WISPA] Network/infrastructure design for WISP's

2016-10-21 Thread Josh Reynolds
Unless you're not running BMUs :P Even if you were, you could run them in pairs. You know, just like a regular network service. On Oct 21, 2016 7:37 PM, "Chris Ruschmann" wrote: > In the case of Powercode, if the BMU fails, you have more problems than > DHCP ;) > > > >

Re: [WISPA] Network/infrastructure design for WISP's

2016-10-21 Thread Chris Ruschmann
In the case of Powercode, if the BMU fails, you have more problems than DHCP ;) *From:* wireless-boun...@wispa.org [mailto:wireless-boun...@wispa.org] *On Behalf Of *Adair Winter *Sent:* Friday, October 21, 2016 3:16 PM *To:* WISPA General List *Subject:* Re: [WISPA]

Re: [WISPA] Network/infrastructure design for WISP's

2016-10-21 Thread Adair Winter
What happens when DHCP quits and you can't manage anything? Powercode assigns the next available management IP for whatever tower/range and we statically assign to the CPE On Fri, Oct 21, 2016 at 6:13 PM, Ian Fraser wrote: > Not sure how static would be safer than DHCP for

Re: [WISPA] Network/infrastructure design for WISP's

2016-10-21 Thread Ian Fraser
Not sure how static would be safer than DHCP for CPE mgmt? Ian Original message From: Fred Goldstein Date:10-21-2016 6:31 PM (GMT-05:00) To: wireless@wispa.org Cc: Subject: Re: [WISPA] Network/infrastructure design for WISP's On 10/21/2016 5:55 PM,

Re: [WISPA] Network/infrastructure design for WISP's

2016-10-21 Thread Josh Reynolds
You'll find a lot of different answers to this question. My only suggestion is "route all the things". Okay, I lied. Kind of. Second suggestion is since you're talking about what seems to be a new network, you better roll out IPv6 from the get-go. Then get what IPv4 you can and run CGNAT.

Re: [WISPA] Network/infrastructure design for WISP's

2016-10-21 Thread Fred Goldstein
On 10/21/2016 5:55 PM, Ian Fraser wrote: PPPOE for Res traffic. VLAN's for Biz. Public IP's are statically assigned. DHCP for CPE's MgMt IP assignment. PPPOE session and CPE's connection to the AP authenticated by Radius. Radius Accounting is used for traffic billing and session info.

Re: [WISPA] Network/infrastructure design for WISP's

2016-10-21 Thread Ian Fraser
PPPOE for Res traffic. VLAN's for Biz. Public IP's are statically assigned. DHCP for CPE's MgMt IP assignment. PPPOE session and CPE's connection to the AP authenticated by Radius. Radius Accounting is used for traffic billing and session info. Per site: 2 VLANs for MgMt (1 for

Re: [WISPA] Another Large DDoS, Stop Being a Dick

2016-10-21 Thread Mike Hammett
If you have a default route anywhere, that won't work. If you have more than one upstream with differing routes, that may not work. Once Mikrotik adds the ability to set it per interface, that'll help. - Mike Hammett Intelligent Computing Solutions Midwest Internet Exchange

Re: [WISPA] Another Large DDoS, Stop Being a Dick

2016-10-21 Thread Philip Dorr
Wouldn't setting RP filter to strict fix the spoofing issue? If not, why not? /ip settings set rp-filter=strict On Fri, Oct 21, 2016 at 12:22 PM, Mike Hammett wrote: > Sorry, src-address-list, not dst-address-list. > > > > - > Mike Hammett > > Intelligent

Re: [WISPA] Network/infrastructure design for WISP's

2016-10-21 Thread Gino Villarini
Most Access Points have a feature that blocks cpe to cpe traffic at layer 2 From: > on behalf of "Ethan E. Dee" > Gino Villarini President Metro Office Park #18 Suite 304

Re: [WISPA] Network/infrastructure design for WISP's

2016-10-21 Thread Ethan E. Dee
Typically, we use two vlans per Access point (tower/building/physical location). We use a private vlan (10.x.x.x/24) for private/management/voip traffic. And a public vlan for the client traffic. The untagged traffic goes on the management vlan. The web traffic is tagged back to the switch. We

[WISPA] Network/infrastructure design for WISP's

2016-10-21 Thread Jordan de Geus
Hey guys, I'm very new to the WISP industry and I've been curious to know how people are designing their WISP networks. Are you creating VLAN's for each connection point? So your backhauls are all in one VLAN, while all AP to client connections are in another VLAN? I had been thinking about how

Re: [WISPA] routing issues

2016-10-21 Thread Seth Mattinen
On 10/21/16 09:55, Marco Coelho wrote: > > Going through cogent, in the last two weeks I've had networks drop at > cogent including paypal today. I've heard the DDOS noise, but have > never seen paypal taken down. Any input? > PayPal (paypal.com) isn't down but Dyn's DNS is. eBay (ebay.com)

Re: [WISPA] routing issues

2016-10-21 Thread Andrew Smith
Paypal uses Dyn (which is under attack today) for DNS, so that would explain failures to resolve www.paypal.com, but shouldn't affect a traceroute which should go to Akamai CDN nodes. On Fri, Oct 21, 2016 at 11:55 AM, Marco Coelho wrote: > > Going through cogent, in the last

Re: [WISPA] Anyone ever had your phone number spoofed?

2016-10-21 Thread Grand Avenue Broadband
Spoofing a phone number is as easy as spoofing an email sender address. (See spoofcard.com) A malicious caller who wants to hide his phone number is often not that particular about who his phone number he pretends to be instead. You just got unlucky. Don't expect to get help from the FCC. The

Re: [WISPA] Another Large DDoS, Stop Being a Dick

2016-10-21 Thread Mike Hammett
/ip firewall address-list add list="Public-IPs" address=x.x.x.x/yy disabled=no comment="My IPs" add list="Public-IPs" address=x.x.x.x/yy disabled=no comment="Downstream customer X IPs" /ip firewall filter add action=drop chain=forward comment="Drop spoofed traffic" disabled=no

Re: [WISPA] Anyone ever had your phone number spoofed?

2016-10-21 Thread Mike Hammett
I don't know of it being spoofed, but spoofing phone numbers is even easier than spoofing IP addresses. ;-) - Mike Hammett Intelligent Computing Solutions Midwest Internet Exchange The Brothers WISP - Original Message - From: "Martha Huizenga"

Re: [WISPA] Another Large DDoS, Stop Being a Dick

2016-10-21 Thread Mike Hammett
Sorry, src-address-list, not dst-address-list. - Mike Hammett Intelligent Computing Solutions Midwest Internet Exchange The Brothers WISP - Original Message - From: "Mike Hammett" To: "WISPA General List" Sent: Friday,

[WISPA] Anyone ever had your phone number spoofed?

2016-10-21 Thread Martha Huizenga
Yesterday we started receiving a large number of calls saying that we were calling them and they got disconnected or talked to someone who tried to scam them (yesterdays's scam was a government grant sent to their nearest western union). We called our provider (RingCentral) and they said our

Re: [WISPA] routing issues

2016-10-21 Thread Eric Tykwinski
That would be correct... paypal.com. 172800 IN NS ns1.p57.dynect.net. paypal.com. 172800 IN NS ns2.p57.dynect.net. paypal.com. 172800 IN NS ns3.p57.dynect.net. paypal.com. 172800 IN NS ns4.p57.dynect.net.

Re: [WISPA] routing issues

2016-10-21 Thread Mark Steckel
The attacked is targeting a major DNS provider. See: www.nytimes.com/2016/10/22/business/internet-problems.html - Marco Coelho wrote: > Going through cogent, in the last two weeks I've had networks drop at > cogent including paypal today. I've heard the DDOS noise,

[WISPA] routing issues

2016-10-21 Thread Marco Coelho
Going through cogent, in the last two weeks I've had networks drop at cogent including paypal today. I've heard the DDOS noise, but have never seen paypal taken down. Any input? Marco -- Marco C. Coelho Argon Technologies Inc. POB 875 Greenville, TX 75403-0875 903-455-5036

Re: [WISPA] Another Large DDoS, Stop Being a Dick

2016-10-21 Thread Shawn C. Peppers
Im sick of the shit tooeveryone needs to start using upstream bgp communities properly and put an end to it. If we all could just null a route all the way back to the originating ASN, problem would go away imho. Shawn C. Peppers Video Direct Satellite & Entertainment 866-680-8433 Toll

[WISPA] Another Large DDoS, Stop Being a Dick

2016-10-21 Thread Mike Hammett
There's another large DDoS going on now. Go to this page to see if you can be used for UDP amplification (or other spoofing) attacks: https://www.caida.org/projects/spoofer/ Go to these pages for more longer term bad behavior monitoring: https://www.shadowserver.org/wiki/

[WISPA] Wireless Installers in Big Spring, TX area

2016-10-21 Thread Garry Wellman
Hello, We are looking for wireless installers to install some Point to Point/Multipoint equipment in the Big Spring, TX area. Can anyone please provide recommendations? ___ Wireless mailing list Wireless@wispa.org