Re: Prefix hijack by AS4761 (was Re: BGPMON Alert Questions)
On Wed, Apr 2, 2014 at 3:41 PM, joel jaeggli wrote: > yeah you're seeing the impact of a pretty broad prefix injection > > indosat's upstream filters seem to be working for the most part. Based on the image they tweeted, I don't think they are doing much filtering; the Syrian prefix was spread to a number of countries and AS. If you have good US connectivity the impact seems limited due to better AS Paths winning, but for less well connected prefixes I'm assuming it's more up in the air. Bob
Re: Comcast security please contact me off list
On Sat, Oct 22, 2011 at 12:56 AM, N Rauhauser wrote: > I do some protective service work, one client is the head of a Washington > D.C. NGO that faced a credible death threat last month. Tonight I received > information that the source of this threat traced one of the NGO's > volunteers to her home address via Comcast IP, and the location is a > relatively short drive away from a man who was arrested last month for > criminal harassment almost five hundred miles from his home. > > I have some genuine concerns for the physical safety of this Comcast > customer, and I'd like to talk to someone immediately. We've got an annoyed > FBI agent who will confirm the back story on this Monday, but the subjects > know they're under some sort of investigation and I'm afraid of what might > happen if further info leaks over the weekend. Then your FBI agent should probably go through the channels (http://security.comcast.net/get-help/contact-comcast-security.aspx) they have to speak to Comcast, especially if it involves a threat to life and safety. Asking on NANOG for a Comcast contact to give you customer information (which is what it seems like you're asking for) probably isn't going to help and makes it look more like you're trying to social engineer some information than trying to help someone. Bob
Re: The Choice: IPv4 Exhaustion or Transition to IPv6
On Jun 29, 2007, at 4:51 AM, Andy Davidson wrote: I'm not saying that v6 should be binned in favour of turning off the internet when we run out of v4, but this is a non-exhaustive list of projects we all should be undertaking. Is everyone on the list working through their own list ? I'd wager not. And you don't need to be pushing this to customers immediately to be getting ready. As discussed at NANOG37, Comcast is pushing out IPv6 initially to manage cable modems and set-top boxes (http:// www.nanog.org/mtg-0606/durand.html). While this doesn't benefit customers directly, it gets the routing environment set up to handle IPv6, it gets the operational staff up to speed, and lays the groundwork and infrastructure for when consumer IPv6 is more of a reality. Bob
Re: IPv6 Confusion
Frank Bulk wrote: Considering that the only real IPv6-ready CPE at your favorite N.A. electronics store is Apple's AirPort, it seems to me that it will be several years before the majority (50% plus 1) of our respective customer bases has IPv6-ready or dual-stack equipment. Actually, out of the box my newish Linksys WRT610N started sending RAs and provides IPv6 connectivity via 6to4. Came as a bit of a surprise when it stole traffic away from my existing IPv6 tunnel. Couple of problems, though: 1) No switch to turn it off 2) No firewalling/filtering is done. This makes it somewhat less than ideal, and worse than the original Apple Airport default configuration which at least had clear and obvious knobs to make it do the right thing even if they had a poor default setting. Bob
Re: CRS-3
On Wed, Mar 10, 2010 at 2:31 AM, Gregory Hicks wrote: > The press release at > http://newsroom.cisco.com/dlls/2010/prod_030910.html states that the > pricing for the CRS-3 STARTS AT $90K... Is that the cost for a nameplate you can stick on an empty rack with dark glass so you can fool people visiting your datacenter? I've put together BoMs for the CRS-1, and the pricing was at least an order of magnitude higher. Linecards are interesting. We get a 100Gb card, we get a linerate 14-port 10Gb card, but apparently there's still only a single port OC-768 40Gb card. Bob
Re: Cablevision's company line on IPv6 to the home
On Sat, May 28, 2011 at 4:21 PM, Greg Ihnen wrote: > I just got off the phone with a level 1 tech support guy about an issue with > my parents Cablevision/Optimum Online service and decided to ask the fellow > if there's any official company news about IPv6 being in the works. His > comments were that there is a test coming up (he was referring to World IPv6 > Day), though he admitted that Cablevision is choosing not to participate in > the "test" because they want to wait to see that IPv6 actually works without > problems before they turn it on. He said it with a tone that seemed to > express that the World IPv6 Day "test" is an irresponsible diversion. I > politely and without any noticeable condescension (I believe) told him > "that's what I expected" and bid him adieu. > > It's neat how they're going to skip that irresponsible testing phase and just > turn it on one day and it's going to work perfectly. Because when I want to know details of future major architectural changes to a network, I usually ask a level 1 tech support guy since he's the one most likely to know, right? He'll know it's being rolled out when they create a script for him to follow. One that'll likely say something like "For IPv6 problems, immediately escalate to someone we've actually training in IPv6." Bob
