ter...so many of the big names,
including players from the early days, are in chapter 11 or about to be.
It's a sad day when Qwest looks like a good company.
Andy
xxxxxxxx
Andy Dills 301-682-9972
Xecune
and prepend our
announcements such that most of the traffic flows through Qwest. I plan on
trying it out regardless, but I'd like to hear from the list first.
Thanks,
Andy
xxxx
Andy Dills 301-682-9972
Xecunet, LLC
e: DSB-KR
>
> (I heared about this via IRC so credits for discovery go somewhere else :)
Mind explaining exactly what your discovery is, for those of us without
mind reading abilities?
Andy
xxxx
Andy Dills
is a BGP
problem...I can't help you. Let me try to get somebody from the IP noc."
So, I wait on hold for about 15 minutes, only to be given dial tone.
Please tell me it isn't always THIS bad?
Andy
Andy
en reading nanog for several
years and reading/posting to inet-access since 95...I know that these
lists are the LAST place to go for sympathy :)
Glad I posted though, I've receieved several helpful notes on avoiding
qwest's nonsense and getting somebody clued on th
ut probably related to global router configs that needed to
be auto-updated I'm guessing...
Andy
xxxx
Andy Dills 301-682-9972
Xecunet, LLCwww.xecu.net
idth significantly...overall, I'm satisfied so far. It's
not like I have a lot of time to give to this craziness, but if I have to
choose two from "bandwidth, really inexpensive, and my time", I'd have to
be spending somebody else's money to not pick the first two...
Andy
On Wed, 22 May 2002, Jeffrey Meltzer wrote:
>
> I've gotten at least 5 messages from you on this list today...
Yeah, maybe NANOG implemented WFQ...
Andy
xxxx
Andy Dills 301-682-9972
X
On Wed, 22 May 2002, Ralph Doncaster wrote:
> On Wed, 22 May 2002, Andy Dills wrote:
> > On Wed, 22 May 2002, Jeffrey Meltzer wrote:
> > >
> > > I've gotten at least 5 messages from you on this list today...
> >
> > Yeah, maybe NANOG implemented WF
f-topic, I'll happily
> shut up wait to be told what are accpetable topics.
I don't think they're off topic. But other people do. YMMV. HTH.
Andy
Andy Dills 301-682-9972
Xecunet, LLCwww.xecu.net
Dialup * Webhosting * E-Commerce * High-Speed Access
r the new job
> except _gay can read a books and can learn to answer a questions_.
I know you're not a native speaker, but that doesn't make this any less
hilarious.
Andy
xxxxxxxx
Andy Dills 301
, to answer your question directly, the list of protocols that all
carries support includes IP, TCP, UDP, and ICMP. Some might do IPv6, but
don't count on it. So how do you get to 10 or 20?
Andy
xxxx
Andy Dills
;re either routing IP, or you're routing `wc -l /etc/services`
number of services plus possibly infinite more.
Andy
Andy Dills 301-682-9972
Xecunet, LLCwww.xecu.net
xxx
On Mon, 10 Jun 2002, E.B. Dreger wrote:
>
> AD> Date: Mon, 10 Jun 2002 14:21:59 -0400 (EDT)
> AD> From: Andy Dills
>
>
> AD> How can you forget the king of all protocols, RIP? :)
>
> RIP isn't an IP protocol. :-)
No, but UDP is, and RIP runs on top of UDP.
cted by ICANN mismanagement...
Andy
xxxx
Andy Dills 301-682-9972
Xecunet, LLCwww.xecu.net
Dialup * Webhosting * E-Commerce * High-Speed Access
. :)
Note: I have absolutely no experience or data to base my assumptions on,
so don't slap me too hard.
Andy
xxxx
Andy Dills 301-682-9972
Xecunet, LLCwww.xecu.net
xx
circuits bouncing?
Basically, anybody can answer whatever they want based on the lack of
detail in the question. I'd love to take both sides of the bet so I can
collect from both you and your boss...
Andy
Andy Dills
der the importance of your words.
Andy
xxxx
Andy Dills 301-682-9972
Xecunet, LLCwww.xecu.net
Dialup * Webhosting * E-Commerce * High-Speed Access
for a
second unless it was signed and I verified it.
Andy
Andy Dills 301-682-9972
Xecunet, LLCwww.xecu.net
Dialup * Webhosting * E-Commerce * High-Speed Access
On Wed, 10 Jul 2002, Jordyn A. Buchanan wrote:
> On 7/10/02 3:01 PM, "Andy Dills" <[EMAIL PROTECTED]> wrote:
>
>
> > Ah, and that's where the arrogance comment came from. You assume that the
> > members of nanog care. I'm not trying to call y
tically verified pgp signatures, I
would be totally in favor of signing every single email. But the simple
fact is that not only do most mail clients not support that, many mail
clients can't even display the signed text inline! Surely a compromise is
needed for now.
Andy
xx
t level would you
> choose to validate a message like this?
"Not everything is black and white." Does that mean you agree with me that
not everything needs to be signed? Or does that mean you agree with me in
that a judgement call must be made?
Andy
xx
ced anybody knows the truth. As far as I can tell,
the situations in which they can ask for your records is broadened, but
that doesn't require you to keep records...
I'd love for somebody to point out what I'm missing...
Andy
hat's only for packets directed
at its interfaces.
So, I might see 5% packetloss from the router itself, but 0% packetloss
for everything behind it.
Andy
xxxx
Andy Dills 301
It's ok if you want a bandaid, just don't try to tell anybody that your
bandaid is actually a solid, best-practice solution.
Andy
Andy Dills 301-682-9972
Xecunet, LLCwww.xecu.net
Dialup * Webhosting * E-Commerce * High-Speed Access
egate, and the whole issue is solved.
Then, when you have the Ottawa 100m transit link up, you can announce your
/20 to both transit providers all the time.
Andy
xxxx
Andy Dills 301-682-9972
Xecunet, LLC
be only used for backup: conditional BGP announcements and a gre
tunnel over the transit links in both cities.
Andy
Andy Dills 301-682-9972
Xecunet, LLCwww.xecu.net
On Tue, 30 Jul 2002, Miguel Mata-Cardona wrote:
>
> who make these kits nowaday? Had some contacts, but most of them
> are gone. URL or contact email will be very appreciated.
www.rockstar.com is the current industry favorite...
Andy
itely in
the lower range controlled by ARIN. No idea why ARIN doesn't have a record
for it...they only carry records for ASN 16779, which is Telstra-USA.
Andy
xxxx
Andy Dills 301-682-9972
Xecu
IPE-NCC-NONE-MNT
changed: [EMAIL PROTECTED] 20010423
source: RIPE
Is that just a general mess at the top where, in general, ARIN is in
charge but not always? Or just a special situation?
Andy
xxxx
Andy Dills
at would be quite nice...
Thanks,
Andy
xxxx
Andy Dills 301-682-9972
Xecunet, LLCwww.xecu.net
Dialup * Webhosting * E-Commerce * High-Speed Access
hout a marketable product, and without a need for
the considerable future, will IPv6 remain a barely supported protocol for
too long to be implemented? Will IPv6 be surpassed by a superior protocol
before it becomes neccessary to be implemented? 10 years is a long time...
Andy
xx
records)
perl -pi'.BAK' -e 's/MX\s*(\d*)\s*mail.oldcompany.com/MX $1 mail.newcompany.com/' *
rm *.BAK
Read `man perlrun`, it details some of the most useful and least used
features.
Andy
Andy Dills
cal machine that will
happily send their mail (with reasonable limits on number of recipients
per arbitrary time period, which all of your mail servers should have
anyway).
Andy
xxxx
Andy Dills 301-682-9972
Xecunet
; ask and i'll clarify.
I think the only thing confusing people is why you continue to post
self-serving lunacy to the list.
Andy
xxxxxxxx
Andy Dills 301-682-9972
Xecunet, LLCwww.xecu.net
xx
s.
I can't see any reason why this wouldn't work or would be a poor idea...
Andy
([EMAIL PROTECTED] HASCS guys hate me, I was a huge pain in the
ass when I was an undergrad...still am, I guess)
xxxx
Andy Dills
On Fri, 10 Jan 2003, Al Rowland wrote:
>
> And you are using shielded cable, correct?
Nah, I'm guessing he strung bare copper seperated by cotton balls.
That's what I like to use in my 27-floor 100tx runs.
Andy
xxx
than Susan. She doesn't care if you've been posting
for 7 years, if you annoy her, you're gone unless you do what she tells
you to. But I'm bitter and biased...mea culpa.
Andy
And
ied.
I'd be happy if every ISP had at least one competent engineer who cared
about their job...
Andy
xxxx
Andy Dills 301-682-9972
Xecunet, LLC
ouse? Do you try to hold the power company
responsible for the people who use their electricity to grow weed?
I assume you were beating down the doors of Congress, tyring to get rock
artists to be responsible for the people who committed suicide after
listening to their albums?
iguration (for those users who, like me, just don't give a damn about
getting mail from people who can't take the time to configure reverse
DNS.)
Andy
xxxx
Andy Dills 301-682-9972
Xecunet, LLC
d
all but 1000 routes through IAD...still trying to get somebody on the
phone at their IP noc, not having much luck. Genuity seems fine at the
moment...
Any speculation yet? Kind of an odd coincidence of problems...
Oh, just got through...fiber cut in DC?
Andy
xxx
twork, I guess I'm enough to have colo customers who patch their
boxes...
Andy
xxxxxxxx
Andy Dills 301-682-9972
Xecunet, LLCwww.xecu.net
Di
On Sat, 25 Jan 2003, Andy Dills wrote:
> Yet, with Genuity, I don't seem to be having difficulties reaching
> anywhere. Are people still being absolutely ravaged by the worm at this
> minute? I personally never saw any serious increase of traffic on my
> network, I guess I'
less you're a masochist.)
Andy
xxxx
Andy Dills 301-682-9972
Xecunet, LLCwww.xecu.net
Dialup * Webhosting * E-Commerce * High-Speed Access
On Fri, 7 Feb 2003, Andy Dills wrote:
>
> On Fri, 7 Feb 2003, Drew Weaver wrote:
>
> >
> > Howdy, Im having a little difficulty with a 7507, when I do sh run
> > it just returns a newline and doesn't show me any the running-configuration.
> > My
a potentially beneficial practice due to its abuse by
criminals?
Andy
xxxx
Andy Dills 301-682-9972
Xecunet, LLCwww.xecu.net
Dialup * Webhosting * E-Commerce * High-Speed Access
On Fri, 28 Feb 2003, Charlie Clemmer wrote:
> At 03:52 PM 2/28/2003 -0500, Andy Dills wrote:
> >Why is probing networks wrong?
>
> Depends on why you're doing the probing.
If so, why outlaw the act of probing? Why not outlaw "probing for the
purposes of..."?
>
n, and if they do, they
WILL NOT hack from where they scan. So that reactive filter rule based on
the portscan doesn't help you.
So, in your hypothetical, when some popular daemon develops a
vulnerability (like with openssh and apache within the last year), what
are YOU going to do about it bef
with multiple routing arbiters), who should be allowed to
announce which prefix.
Andy
xxxx
Andy Dills 301-682-9972
Xecunet, LLCwww.xecu.net
Di
hat to the point of demanding a service
credit
Andy
xxxx
Andy Dills 301-682-9972
Xecunet, LLCwww.xecu.net
Dialup * Webhosting * E-Comme
g able to get somebody on the phone without effort when trying to get
things running the first time (but with multiple emails and calls, it's
still inexcusable). However, if you're already exchanging routes with
them, there's no excuse for not being able to get somebody who understan
e; the business end of cash-desperate networks are the driving
force in this industry, not us.
Andy
xxxxxxxx
Andy Dills 301-682-9972
Xecunet, LLCwww.xecu.net
xxx
his could happen
> to the Internet! (with your help--go for it!)
Except, nobody's health is affected by this...and the revenue impact is
minimal also. Otherwise, that would have been the motivation to fix the
problem long ago. Your propose to make the revenue impact much greater
(through collat
re LA and Amsterdam?
Neither is tropical, but they have plenty of drugs and women.
Andy
xxxx
Andy Dills 301-682-9972
Xecunet, LLCwww.xecu.net
Dialup * Webhosting * E-Commerce * High-Speed Access
he IRRs for being fragmented and greedy.
And if that doesn't poison your inverse arp, then multiplex a private
bogon server with a centralized host scanner-based DNSBL. Don't forget the
trailing dot! And don't forget to invert the subnet mask!
Andy
xxxxx
this?
I've been peering with Rob's bogon server for a little while, and it works
great. All of my customers get routes that point the bogons to a traffic
sink on my network. If they were so inclined, they could sink that traffic
before leaving their network.
Andy
ready to be a nail for
the LDAP hammer and whether or not people actually understand how sBGP is
proposed to work.
But at the same time, I can't think of a place this stuff would be more
relevant. Which is why it's good to filter...so you still be subscribed to
the list AND not be annoyed.
that
people will be forced to fix their filters. But is that the only way?
And would your answer change if you were one of the first networks to be
assigned space in the new range?
Andy
xxxx
Andy Dills
ust
have a static ACL...unless you can't afford the ACL hit, in which case
filtering announcements from your peers and routing everything bogon into
a traffic sink would be a great solution.
We're all filtering announcements from our peers anyway, right? :)
Andy
all bogon route filters that need to be
> maintained?
Sure. If the NSPs would just filter the bogon routes, nobody else would
have to bother. Why is it that they don't?
Andy
xxxx
Andy Dills
On Wed, 12 Mar 2003, Peter E. Fry wrote:
> Andy Dills wrote:
> >
> > Sure. If the NSPs would just filter the bogon routes, nobody else would
> > have to bother. Why is it that they don't?
>
> Filter (public, private and transit) peers or customers..
y me, now and in the future. What goes around comes around,
> girlfriend.
Except, you know he's male, and he didn't know you were female. So, you
end up looking like a petty whiner who siezed upon the ability to be
offended, even when there was no cause for it.
Get over it. If
should work, but I don't have the
pragmatism that comes with running a nationwide network staffed by banana
eaters. If nothing else, it seems like a worthy stopgap until the next
iteration of BGP comes along to really address the trust issues.
Andy
xxx
he routes they send?
As long as people continue to have unfiltered peers (save for
maximum-prefix), this would seem a reasonable measure of implementing the
principle of being liberal with what you accept and conservative with what
you send.
Andy
xxxx
certainly causes its
share of problems.
Andy
xxxxxxxx
Andy Dills 301-682-9972
Xecunet, LLCwww.xecu.net
Dialup * Webhosting * E-Commerce * High-Speed Access
t they can justify, unless they are potentially a
huge revenue customer, to who you would give whatever they want (within
reason).
$50 per /24 at the high end, $5 per /29 at the low end.
Andy
xxxx
Andy Dills
ith Virtual PC, the keyspan adapter can be "shared" with
the emaulated PC, and you can use SecureCRT, "the best terminal emulator
ever".
Andy
Andy Dills
great command line solution.
.cshrc:
alias console "sudo /usr/local/etc/conserver.rc start; sleep 2; \
/usr/local/bin/console -p 1025 -M 127.0.0.1 serial; sudo \
/usr/local/etc/conserver.rc stop"
I didn't like zterm...
Andy
xxxxx
ser.
Looming large, of course, is the fact that people would have to upgrade to
get any of this "security upgrade" functionality. So we'd really be only
partially solving a problem in which we won't see any benefit for years to
come, which is usually enough impetus to
ows that up with
"Tried that, they had no idea what was wrong".
Cheers to a good weekend,
Andy
Andy Dills 301-682-9972
Xecunet, Inc. www.xecu.net
Dialup * Webhosting * E-Commerce * High-Speed Access
who actually need this router, price
isn't a factor. If you actually need it, there are no other options. And
if money is a primary consideration, this is not the router for you. The
secondary market is obviously where the value is...and I doubt these will
show up on ebay.
Andy
---
Andy Dills
Xecunet, Inc.
www.xecu.net
301-682-9972
---
od.
As far as I'm concerned, that guy would have a better shot at suing
Microsoft then challenging his bandwidth bill.
Andy
---
Andy Dills
Xecunet, Inc.
www.xecu.net
301-682-9972
---
that in the future they will be liable for 100% of the packets coming from
their port, regardless of the circumstances. Maybe we should start putting
this in writing, but it hasn't really been a problem.
Andy
---
Andy Dills
Xecunet, Inc.
www.xecu.net
301-682-9972
---
Which network do you run again? I'm starting to think I'm talking to a
kook. Here this whole time I thought you represented cox.net. Clearly not.
Andy
---
Andy Dills
Xecunet, Inc.
www.xecu.net
301-682-9972
---
o cross your streams.
Andy
---
Andy Dills
Xecunet, Inc.
www.xecu.net
301-682-9972
---
uld have to do in
order to "sell" their IP space is to create a contract stating that they
are doing so.
Contracts are rarely as binding as people think they are. Of course, I'm
no lawyer, I just hate paying them.
Andy
---
Andy Dills
Xecunet, Inc.
www.xecu.net
301-682-9972
---
m of
property rights in any numbering resources in the United States or any
other country."
Seems pretty clear to me.
Andy
---
Andy Dills
Xecunet, Inc.
www.xecu.net
301-682-9972
---
not have in
the first place. This is one of the easiest ways to have a contact or part
of a contract rendered void.
I'm no lawyer, but that doesn't mean I'm wrong ;)
Andy
---
Andy Dills
Xecunet, Inc.
www.xecu.net
301-682-9972
---
was the customer's express purpose of acquiring
the IP space from ARIN, as their request form will inherently attest to.
They were negligent to not implement a solution in that year, and since
the "irreparable harm" can be completely eliminated with an inexpensive
technical solution, there's no case (from where I sit).
Andy
---
Andy Dills
Xecunet, Inc.
www.xecu.net
301-682-9972
---
ur reputation, I'd assume you were
trolling.
Andy
---
Andy Dills
Xecunet, Inc.
www.xecu.net
301-682-9972
---
#x27;s not a good idea to look at the counter on day 1 and on day 30
and compare them. Check it every 5 minutes and store it in a database.
That way, the same system can do aggregate or 95th percentile, it's all in
the report script you write.
Andy
---
Andy Dills
Xecunet, Inc.
www.xecu.net
301-682-9972
---
#x27;re not buying it from us (and we'll sell just about anything to
just about anybody).
Perhaps a product made by a company that makes the slightest effort to put
out a quality product would serve you better.
Andy
---
Andy Dills
Xecunet, Inc.
www.xecu.net
301-682-9972
---
long.
--
Andy
---
Andy Dills
Xecunet, Inc.
www.xecu.net
301-682-9972
---
> needed anymore?
People still use usenet? ;)
Seriously though, you'd have to be an awfully large organization for
outsourced news to not be a slam dunk financially.
Andy
---
Andy Dills
Xecunet, Inc.
www.xecu.net
301-682-9972
---
tance)?
I use rate limiting for some of my customers, and when correctly
configured (you _must_ use the right burst sizes), you will get the
exact rate specified, TCP or not. However, I've never had to rate-limit
above 30mbps, so perhaps you have some experience that I don't.
Andy
ectly configured bursts, the saw-toothing affect did not
prevent delivery of the configured throughput.
This holds up with multiple concurrent transfers. The customer gets
whatever bandwidth is available under their cap, and when I look at their
bandwidth graphs, they have the ability to saturate their bandwidth to
100% of the configured rate. Works for me and mine.
Andy
---
Andy Dills
Xecunet, Inc.
www.xecu.net
301-682-9972
---
are of. But with a little work, you
could probably integrate it all into nagios. After all, you can make the
host names or descriptions URLs that link to bandwidth and error graphs or
other tools.
Andy
---
Andy Dills
Xecunet, Inc.
www.xecu.net
301-682-9972
---
hances your transfer switch
is going to fail?
Andy
xxxx
Andy Dills 301-682-9972
Xecunet, Inc. www.xecu.net
Dialup * Webhosting * E-Commerce * High-Speed Access
k"
> between each other, which scares the crap out of me. We are going to
> wait for a couple of revisions of the IOS before looking into that
> again.
Why on earth would you do anything other than push NAT responsibility to
the end-user CPE?
So you can do the aforementiond "cool stuff"?
Andy
---
Andy Dills
Xecunet, Inc.
www.xecu.net
301-682-9972
---
d you loud and clear. "My friend is a half-baked cluebie using
techniques I'll term fun and later encourage my competitors to employ". :)
Using a technology because it's "possible" is the single stupidest
rationale, probably resulting in almost as much downtime as sheer
incompetence.
Andy
---
Andy Dills
Xecunet, Inc.
www.xecu.net
301-682-9972
---
general principle of "easy to manage, easy to
break" at work here. Implement NAT in one box, if NAT breaks, every single
customer attached dies. Implement NAT in one box for each customer, and if
NAT breaks, a single customer dies.
Andy
---
Andy Dills
Xecunet, Inc.
www.xecu.net
301-682-9972
---
e at least
purchasing transit from multiple organizations (if not truly multihomed)
and could easily justify an ASN without having to specify their unique
routing policy.
What sorts of 'unique' routing policies justify an ASN?
Andy
---
Andy Dills
Xecunet, Inc.
www.xecu.net
301-682-9972
---
he
fact that they no longer have a nice dotted quad to remember.
So, how does IPv6 go from the shores of Japan and the minds of geeks
across America to being the primary protocol used on the net?
Andy
---
Andy Dills
Xecunet, Inc.
www.xecu.net
301-682-9972
---
elling you what you want to hear. Few people
really know how the fiber is run, and you don't have their phone number.
Bottom line is that you're going to have to rely 100% on the last mile
provided by your LEC. You could contract with a CLEC to take your circuit
cross-LATA; it's chea
red (9504 deferrals)
1636 bounced
718k rejected (83%)
0 reject warnings
0 held
0 discarded (0%)
Andy
---
Andy Dills
Xecunet, Inc.
www.xecu.net
301-682-9972
---
On Thu, 19 Jun 2003, Jack Bates wrote:
>
> Andy Dills wrote:
> > How do you get your mail delivery attempts to occur so linearly? :)
> >
> > I think something's busted with your mrtg script...
> >
>
> Depends on which stats he wants. He's showing t
well-known issues
> with some networks, especially internationally.
I dunno, there are plenty of smaller ASes who have yet to be forced to
register their routes.
We haven't yet been forced, but I finally got motivated to submit them to
altdb last night. Altdb definitely rocks.
Andy
---
Andy Dills
Xecunet, Inc.
www.xecu.net
301-682-9972
---
rks and
100,000 network devices?
Andy
---
Andy Dills
Xecunet, Inc.
www.xecu.net
301-682-9972
---
On Sun, 22 Jun 2003 [EMAIL PROTECTED] wrote:
> On Sun, 22 Jun 2003, Andy Dills wrote:
>
> > That's quite a "medium-scale".
> >
> > Is there a single entity in the world that controls 1,000 networks and
> > 100,000 network devices?
>
> WorldCo
1 - 100 of 138 matches
Mail list logo
