On 16/09/2008, at 10:17 PM, *Hobbit* wrote:
So in cases like this where the community appears to agree that
there's
a consistently bad apple, what's preventing everyone from simply
nullrouting the netblocks in question and imposing the death penalty?
Dunno - but something did occur to me th
you expect them to apply a null route?
Well, I *have* been talking somewhat idealistically here and
there with this crop of questions, but frankly I thought in the
2 or 3 years I was ignoring the list that the NETWORK OPERATORS
ostensibly in custody of the intertubes would have pulled things
to
On Tue, 16 Sep 2008 12:47:26 -, *Hobbit* said:
> So in cases like this where the community appears to agree that there's
> a consistently bad apple, what's preventing everyone from simply
"what's preventing everyone"?
Geez Hobbit, I *know* you've been around long enough to know better than th
> It is only a good audit trail if the audit log can be trusted, though. Given
> how "secure" things like faxes are, well, that's a thing for another day, I
> suppose.
>
> Very few things out there in today's interconnected world really provide
> "hard" security, instead of security theatre/CY
It is only a good audit trail if the audit log can be trusted, though. Given
how "secure" things like faxes are, well, that's a thing for another day, I
suppose.
Very few things out there in today's interconnected world really provide "hard"
security, instead of security theatre/CYA/minor dete
Crist Clark wrote:
This should be easy. But sometimes things that seem like they
should be easy are not.
I want to change the nameservers for a bunch of domains. Really,
all I want to do is change the IP address, but it seems easier
just to change both the name and IP to avoid any possibility
Crist Clark wrote:
9) Turn off DNS services at old-dns1 and old-dns2 (i.e. take out
the firewall rules that allow queries to those addresses).
10) ...
10 ) Use one of the various sanity checking sites to validate some
subset of your hosted domain configurations.
We used to like http://www.
Crist Clark wrote:
This should be easy. But sometimes things that seem like they
should be easy are not.
I want to change the nameservers for a bunch of domains. Really,
all I want to do is change the IP address, but it seems easier
just to change both the name and IP to avoid any possibility
This should be easy. But sometimes things that seem like they
should be easy are not.
I want to change the nameservers for a bunch of domains. Really,
all I want to do is change the IP address, but it seems easier
just to change both the name and IP to avoid any possibility of
confusion. However,
[EMAIL PROTECTED] (*Hobbit*) writes:
> So in cases like this where the community appears to agree that there's
> a consistently bad apple, what's preventing everyone from simply
> nullrouting the netblocks in question and imposing the death penalty?
http://www.spamhaus.org/drop/ seems to have atr
Hello Subba ,
On Tue, 16 Sep 2008, [EMAIL PROTECTED] wrote:
I am being tasked to map a network. In the past I have used nmap to find the
systems on the local LAN and remote LANs (same enterprise).
This time I want to create a visual map of the LAN. With cheops, I reasonably
good res
> On Tue, 16 Sep 2008, Christian Koch wrote:
> > I dont mind, i think it is another good step towards 'good filtering'
> > but...i think the PITA part is
> > downstream 'clueless' customers, who may need an explanation on prefix
> > hijacking and the state
> > of the internet today, and that these
On Tue, 16 Sep 2008 [EMAIL PROTECTED] wrote:
> This time I want to create a visual map of the LAN.
Intermapper.
http://dartware.com/network_monitoring_products/intermapper/index.html
-Bill
On Fri, 12 Sep 2008, Kevin Oberman wrote:
Looks interesting, but it only takes a fairly short list of ASNs for a
prefix. For our big CIDR blocks, we have WAY too many ASNs to enter them
all, so it's pretty useless for me. I need to be able to enter at very
least a dozen ASes and I suspect may fol
The American Registry for Internet Numbers (ARIN), in cooperation with
the Cooperative Association for Internet Data Analysis (CAIDA), is
conducting a new survey to gather data regarding current and future use
of IPv6.
We have expanded the scope of the survey to seek IPv6 penetration data
Sorry, it is Los Angeles.
I don't know whether our circuit is ralative to ATT oc12
=
Chi-Young Joung
SAMSUNG NETWORKS Inc.
Email: [EMAIL PROTECTED]
Tel +82 70 7015 0623, Mobile +82 17 520 9193
Fax +82 70 7016 0031
==
good point... :)
On Tue, Sep 16, 2008 at 10:24 AM, Jon Lewis <[EMAIL PROTECTED]> wrote:
> On Tue, 16 Sep 2008, Christian Koch wrote:
>
>> I dont mind, i think it is another good step towards 'good filtering'
>> but...i think the PITA part is
>> downstream 'clueless' customers, who may need an expl
On Tue, 16 Sep 2008, Christian Koch wrote:
I dont mind, i think it is another good step towards 'good filtering'
but...i think the PITA part is
downstream 'clueless' customers, who may need an explanation on prefix
hijacking and the state
of the internet today, and that these are all just combin
>Is this a common practice? Our past experience indicates that a simple
>request to a NOC or update of a routing registry usually is sufficient.
>
>Regards,
>Mauricio Rodriguez
>FPL Fibernet, LLC
Cogent AFAIK have been doing this for years. Not many others require this
unless there is a serious
I dont mind, i think it is another good step towards 'good filtering'
but...i think the PITA part is
downstream 'clueless' customers, who may need an explanation on prefix
hijacking and the state
of the internet today, and that these are all just combined efforts to
minimize the risk of accepting a
So in cases like this where the community appears to agree that there's
a consistently bad apple, what's preventing everyone from simply
nullrouting the netblocks in question and imposing the death penalty?
Sorry if this seems naive, but if no legitimate purpose is shown it
seems like the obvious
On Tue, 16 Sep 2008, Rodriguez, Mauricio wrote:
Recently, one of our Transit providers has started requiring a Letter of
Authorization for addition of any of our own Transit customers' prefixes
to their filters. The verbiage of the LoA basically states that the
owner of the assignment or allo
La as in Los Angeles? Or Louisiana?
There we're numerous strange issues last night in Los Angeles with T-Mobile
that were caused by att loosing some oc12 circuits.
That could have affected other carriers I'm sure.
--Original Message--
From: ChiYoung Joung
To: nanog
ReplyTo: [EMAIL PRO
Recently, one of our Transit providers has started requiring a Letter of
Authorization for addition of any of our own Transit customers' prefixes to
their filters. The verbiage of the LoA basically states that the owner of the
assignment or allocation (not necessarily our customer) allows us to
Jean-François Mezei wrote:
>> For instance, out of Australia we have a single, old cable going West
>> out of Perth to Singapore (SEA-ME-WE3) which allows only low speed
>> circuits,
>
> Was there any thought about building cables to singapore from darwin now
> that it has had fibre links to t
Or his DSL is set to bridging.
--p
-Original Message-
From: Nathan Ward [mailto:[EMAIL PROTECTED]
Sent: Tuesday, September 16, 2008 12:47 AM
To: nanog list
Subject: Re: confusing packet data
On 16/09/2008, at 4:43 PM, Hank Nussbacher wrote:
> Are you running Skype? Have you become a s
This issue was finally resolved by ATT.. No need to contact me...
Thanks
Erik
[EMAIL PROTECTED] wrote:
> I am being tasked to map a network. In the past I have used nmap to find the
> systems on the local LAN and remote LANs (same enterprise).
>
> This time I want to create a visual map of the LAN. With cheops, I
> reasonably good results but cannot be documented for ma
Actually, it is not true that Layer 2 Ethernet is 'best effort'.
It depends.
There are Layer 1 Ethernet products that involve no Layer 2 switching or Layer
2 routing, just an efficient and transparent mapping of Ethernet into
SDH/SONET.
And some of those products can be upgrade in 50 meg inc
I am being tasked to map a network. In the past I have used nmap to find the
systems on the local LAN and remote LANs (same enterprise).
This time I want to create a visual map of the LAN. With cheops, I reasonably
good results but cannot be documented for managers with certainty. What are
so
On Sep 16, 2008, at 1:55 AM, Paul Ferguson wrote:
By the way, a lot of folks are watching all domains registered
within Atrivo/Intercage IP address space every day. Here's a few
for you to decide -- and they have been registered only in the past
few days:
undaground.biz
pillshere.net
ukrnic.inf
Can someone from ATT with BGP configuration access please contact me
off list, the provisioning group has been having trouble turnup our
BGP session on our 2xOC3 to AS7018 since 12AM and now its 4:30AM.
Erik
[EMAIL PROTECTED]
Jean-François Mezei wrote:
Did western europe ever really have a primary route via the USA to reach
asia ? (I realise that during the cable cuts in middle east last year,
traffic might have been rerouted via USA but this would be a temporary
situation).
Yes.
And the main issue is not technical
I have EWAN circuits of Wiltel(currently same company with Level3 you know) as
my backbone circuit in LA.
About 2 months ago, there were some packet loss on L2 circuit, but I didn't get
any clear answer from Level3 support center.
It became okey without any action, but now, same problem happen ag
34 matches
Mail list logo
