Hey all, if any Verizon engineer could hit me up offline about a ticket
we've had, it would be appreciated. We've got a site in Illinois that has a
new circuit, works well to Verizon speedtest, but poor elsewhere, including
our SD-WAN destinations. I'm curious if UDP/2426 gets any unusual treatme
y,
the 23" extension ears from Cisco are serious and my router chassis' don't sag.
Mark
On 4/27/2023 10:04 AM, Chris Marget wrote:
On Thu, Apr 27, 2023 at 9:53 AM Chuck Church mailto:chuckchu...@gmail.com> > wrote:
for a Cisco ASA1001, there aren’t rails, but rather fr
Hey all. Question about standard 4 post racks. We bought some that are
adjustable. Unfortunately, the posts are very flimsy, as these are some
fancy cabinets with spacing on the sides for vertical patch panels, etc. We
found that 2 post mounting of most Cisco devices (namely Cat 9500 1RU
switch
Can anyone from Cogent hit me up off-list? Having an issue in South America
getting packets to our site in Brazil. Traceroute shows route though a
Cogent router, then RFC1918 replies. So not sure if problem is Cogent or a
peer of theirs. Two hosts in the 177.10.168.124/30 are acting differently
NANOG,
Sorry if this is the wrong forum, but I figured we could all
use a distraction from IPV4 expansion for a bit. We're facing a problem
with corporate use of browsers and google location services. Our users
across North and South America seem to be getting location info fo
If anyone has access to a Google Nest engineer could you pass their info to
me offline? Going through tech support didn't get me anywhere. We're
seeing that their cameras and the cloud servers they home back to
(oculus-xxx.dropcam.com) are using TLS 1.0 and no server name in the certs,
which our
Isn’t this a better topic for CNet as opposed to NANOG?
Chuck
From: NANOG On Behalf Of
ITechGeek
Sent: Friday, September 11, 2020 4:12 PM
To: nanog@nanog.org
Subject: Re: Wildfires: Reminder smart devices don't include emergency warnings
while streaming
At least cell phones have a re
You mean not everyone still looks up the classifications on
mulletsgalore.com?
Chuck
On Wed, May 13, 2020, 7:54 PM Valdis Klētnieks
wrote:
> On Wed, 13 May 2020 10:40:36 +0300, Denys Fedoryshchenko said:
> > What about introducing some cache offloading, like CDN doing? (Google,
> > Facebook, Ne
Isn't this a topic for an outage list? Or a power grid list?
Chuck
On Wed, Oct 9, 2019, 5:28 PM Sean Donelan wrote:
> On Wed, 9 Oct 2019, William Herrin wrote:
> > Wasn't California in a similar mess 20 years ago when government
> regulation
> > at the time also put PG&E in the position that
Are you sure the problem isn’t NTT? My buddy’s WISP peers with Spirit and had
a boatload of problems with random packet loss affecting initially just SIP and
RTP (both UDP). Spirit was blaming NTT. Problems went away when Spirit
stopped peering with NTT yesterday. Path is through Telia now t
When I first started working with Cisco products (around 1999) I came upon
a router doing NAT for internet access that used a discontiguous mask to
determine which address to PAT the hosts against as they were doing some
creative load balancing. It worked really well, no matter what part of the
'b
Under 1K for 48 10G ports? Are you missing a decimal place?
Chuck
-Original Message-
From: NANOG On Behalf Of Mike Hammett
Sent: Sunday, November 25, 2018 9:39 AM
To: 'North American Network Operators' Group'
Subject: Cheap switch with a couple 100G
I keep hearing how cheap 100G is co
I've had problems with my Synology router and tunnel broker for several
days. Used to work, config didn't change, assigned IPv4 address for me
didn't change, but acting flakey, not much debugging capability on Synology
I can find to figure it out.
Chuck
-Original Message-
From: NANOG [
I smell some BS here, at least in their 'Verified Purchase' reviews:
"It is installed as a network hub in my basement and it is working fine. Great
quality product. I've had a lot of business with FS for years. This is a very
reliable company and they stand behind their company's products with a
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Ricky Beam
Sent: Thursday, December 28, 2017 9:55 PM
To: Owen DeLong
Cc: NANOG list
Subject: Re: Waste will kill ipv6 too
>Every scenario everyone has come up with is "unlikely". Home networks with
>multiple LA
Maybe a silly idea, but shouldn't the sale of a block of addresses (RIR
ownership change) trigger a removal of that block from all reputation list
databases? If I buy a car from a police auction, I'm fairly sure the FBI
doesn't start tailing me, because the car was once used for less than legal
That bug note indicates all 3.13.* are vulnerable to this, but our 3.13.3 lab
router seemed ok, no reload. Logged:
Dec 31 23:59:59: %IOSXE-5-PLATFORM: R0/0: kernel: Clock: inserting leap second
23:59:60 UTC
But the release notes seem to indicate that bugs:
CSCut82336 ASR1002-X: Handle lea
Foul language is frowned upon.
https://www.nanog.org/list
Chuck
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of James Bensley
Sent: Wednesday, July 13, 2016 4:24 AM
To: nanog
Subject: Re: IX in Iran by TIC
On 12 July 2016 at 14:36, Bevan Slattery wrote:
>
suit.
Chuck
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Scott Weeks
Sent: Friday, June 10, 2016 5:55 PM
To: nanog@nanog.org
Subject: RE: Netflix banning HE tunnels
--- chuckchu...@gmail.com wrote:
From: "Chuck Church"
The true jerks who used H
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Elvis Daniel Velea
Sent: Tuesday, June 07, 2016 6:36 PM
To: nanog@nanog.org
Subject: Re: Netflix banning HE tunnels
Netflix, YOU are the ones forcing people to turn IPv4 off... this is just
insane. tens (if not h
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Leo Bicknell
Sent: Monday, May 16, 2016 10:28 AM
To: nanog@nanog.org
Subject: Re: Cost-effectivenesss of highly-accurate clocks for NTP
>For a typical site, there are two distinct desires from the same NTP
process
-Original Message-
>From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Leo Bicknell
>Sent: Wednesday, May 11, 2016 9:31 AM
>To: nanog@nanog.org
>Subject: Re: NIST NTP servers
>Personally, my network gets NTP from 14 stratum 1 sources right now.
>You, and the hacker, do not know whic
-Original Message-
From: Gary E. Miller [mailto:g...@rellim.com]
Sent: Tuesday, May 10, 2016 3:58 PM
To: Chuck Church
Cc: 'Majdi S. Abbas' ; nanog@nanog.org
Subject: Re: NIST NTP servers
Yo Chuck!
On Tue, 10 May 2016 10:29:35 -0400
"Chuck Church" wrote:
> Cha
True, but I did mention verifying packet sources. That needs to happen
everywhere, and it's not hard to do. Just getting everyone to do it is tough.
Chuck
-Original Message-
From: Allan Liska [mailto:al...@allan.org]
Sent: Tuesday, May 10, 2016 10:40 AM
To: Chuck Church ; &#x
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Majdi S. Abbas
> So how does this stop from distributing time to their customers via
NTP?
> GPS doesn't save the protocol, in particular where the S1 clocks
involved are embedded devices with rather co
--
Hi Nick,
>You missed the point. Sloppy memory management is a "canary in a coal mine."
>It's a user-visible symptom that reflects poor code quality underneath.
>Programmers who
Uggghhh. I've always hated this 'reboot, see if it fixes it' methodology. If
the CPEs can't recover from error conditions correctly, they shouldn't be used.
I blame Microsoft for making this concept acceptable. LOL.
Chuck
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.or
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Tim McKee
>The factor of 6 was just in reduction of overhead. Granted in the greater
scheme of things the overall 4% is relatively insignificant, but there have
been many times when doing >multiple 10-100+GB tran
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Matt Palmer
Sent: Sunday, December 20, 2015 10:29 PM
To: nanog@nanog.org
Subject: Re: Nat
>Depends on how many devices you have on it. Once you start filling your
home with Internet of Unpatchable Security Holes
-Original Message-
From: Mark Andrews [mailto:ma...@isc.org]
Sent: Thursday, December 17, 2015 7:46 PM
To: Chuck Church
Cc: 'Matthew Petach' ; 'North American Network
Operators' Group'
Subject: Re: Nat
>I have a single CPE router and 3 /64's in u
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Matthew Petach
Sent: Thursday, December 17, 2015 1:59 PM
Cc: North American Network Operators' Group
Subject: Re: Nat
>I'm still waiting for the IETF to come around to allowing feature parity
>between IPv4 and I
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Dave Taht
Sent: Wednesday, December 16, 2015 4:37 AM
To: William Herrin
Cc: NANOG
Subject: Re: reliably detecting the presence of a bridge?
The latter.
In this case a routing optimization that works well on wi
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of
valdis.kletni...@vt.edu
Sent: Tuesday, November 24, 2015 11:47 AM
To: Mark Andrews
Cc: nanog@nanog.org
Subject: Re: DHCPv6 PD & Routing Questions
>If you have a *workable* solution for the case where you're hand
Hey!
New message, please read <http://mixmajor.com/reached.php?518zu>
Chuck Church
Hey!
New message, please read <http://sibzem.ru/woman.php?57>
Chuck Church
Hey!
New message, please read <http://shophorseplay.com/does.php?7m1ds>
Chuck Church
Hey!
New message, please read <http://accentbanking.com/mention.php?ypoz>
Chuck Church
Any hotel wi-fi around 7PM local time.
Chuck
On Sep 18, 2015, at 10:42 AM, Dovid Bender
mailto:do...@telecurve.com>> wrote:
Hi,
I am working on a presentation and looking to create samples of what a trace
should not look like? Anyone have IP's that I can trace from the US or UK that
will sh
Agree. Most OOB is lacking redundancy too, so a single failure can really take
the shine off an OOB deployment. Especially when you've put your management
traffic on it, including radius traffic, and you're using 802.1X. Found that
out the hard way a few years ago.
Chuck
-Original Mes
I hate to be that guy, but this is getting really outside the scope of
NANOG.
Chuck
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Joe Greco
Sent: Thursday, July 30, 2015 12:58 PM
To: Scott Helms
Cc: NANOG
Subject: Re: Windows 10 Release
> I was just think
So, I've been following this IPv6 discussion for a while now. Putting much
more thought into it than ever before. What I've gathered so far:
We need both SLAAC and DHPCv6 on CPE router to support all end clients.
Android and some other platforms still have some issues with a v6-addressed
DNS
-Original Message-
From: John R. Levine [mailto:jo...@iecc.com]
Sent: Tuesday, July 14, 2015 4:50 PM
To: Chuck Church
Cc: nanog@nanog.org
Subject: RE: Dual stack IPv6 for IPv4 depletion
>This is IPv6. Why shouldn't they have their own PI space?
Same way it happens today.
What about dual-homed customers? Or are they all expected to have their own
PI space?
Chuck
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Mel Beckman
Sent: Tuesday, July 14, 2015 4:33 PM
To: valdis.kletni...@vt.edu
Cc: John Levine; nanog@nanog.org
Subject:
eals it. They're still a
criminal, even though you made their 'job' as easy as possible.
Chuck
-Original Message-
From: Mark Andrews [mailto:ma...@isc.org]
Sent: Thursday, July 09, 2015 10:06 PM
To: Chuck Church
Cc: 'Jared Mauch'; 'Colin Johnston'; nanog@na
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Jared Mauch
Sent: Thursday, July 09, 2015 9:08 AM
To: Colin Johnston
Cc: nanog@nanog.org
Subject: Re: Possible Sudden Uptick in ASA DOS?
>My guess is a researcher.
I wouldn't classify someone sending known mali
IPX with EIGRP or NLSP wasn't bad over the WAN. Can't help you with
TokenRing though.
Chuck
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Randy Bush
Sent: Saturday, June 27, 2015 8:14 PM
To: Bacon Zombie
Cc: nanog@nanog.org
Subject: Re: How long will it tak
Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Ray Soucy
Sent: Wednesday, June 17, 2015 3:14 PM
To: Joe Hamelin
Cc: NANOG list
Subject: Re: Anycast provider for SMTP?
>As such, you typically only see it leveraged for simple services (e.g. DNS,
>NTP).
I've be
Anyone on here from Unified Layer? Having an issue with a small ISP I help
out occasionally. Some of their IP Space can reach a hosted web server, but
their other prefixes cannot reach the destination. Traceroute from working
IP space to destination web server (a bank) :
15 162-144-240-55.un
Anyone from Akamai (or who might know),
Having an issue with AS 20940 either not seeing or ignoring a /23
we're announcing, and following a /22 to another path. Other ISPs our
upstream peers with see the /23. I didn't see a looking glass for Akamai to
verify. Anyone from Akamai able to
Sounds interesting. I wouldn't do more than a /23 (assuming IPv4) per subnet.
Join them all together with a fast L3 switch. I'm still trying to visualize
what several thousand tiny computers in a single rack might look like. Other
than a cabling nightmare. 1000 RJ-45 switch ports is a good
Sounds like you're talking to my dad. Tell him I said hi.
Chuck
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Randy Bush
Sent: Monday, April 20, 2015 2:45 PM
To: Christopher Morrow
Cc: North American Network Operators' Group
Subject: Re: dns on fios/frontie
Comic Book Guy would probably declare:
"Worst Naming Convention Ever"
Chuck
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Colin Johnston
Sent: Tuesday, April 14, 2015 9:27 AM
To: Nikolay Shopik
Cc:
Subject: Re: macomnet weird dns record
Because looks stra
Other phrases can be substituted.
"no guts, no glory"
"go big or go home"
"no pain, no pain"
Chuck
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Scott Weeks
Sent: Wednesday, March 25, 2015 1:41 AM
To: nanog@nanog.org
Subject: Re: Last-call DoS/DoS Attack BC
NDS? My first suggestion would be run DSREPAIR. Wow, that brings back
memories. But since you probably mean DNS, I'll stop right there.
Chuck
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Christopher Dye
Sent: Monday, March 09, 2015 1:20 PM
To: nanog@nano
Since this has turned into a discussion on upload vs download speed,
figured I'd throw in a point I haven't really brought up. For the most part,
uploading isn't really a time-sensitive activity to the general (as in 99% of
the ) public. Uploading a bunch of facebook photos, you hit up
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Alain Hebert
Sent: Wednesday, October 29, 2014 9:14 AM
To: nanog@nanog.org
Subject: Re: .mil postmaster Contacts?
> Might be related to the news (CNN this morning) about the WH network being
exploited for a few d
You sure it's not a DNS issue? I've had problems resolving various
*.disa.mil sites today. Google DNS claims they don't exist.
Chuck
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Ray Van Dolson
Sent: Monday, October 27, 2014 1:52 PM
To: nanog@nanog.org
Sub
Given that probably 80+% (a guess, but I'd be really surprised at a lower
figure) of all internet traffic crosses at least one Cisco device somewhere,
I think it would be a huge disservice to discontinue sending these emails.
10 to 15 emails per year isn't much overhead, compared to seemingly
never
Along those same lines, we've been using alias exec for the same thing for a
while:
Alias exec NTP 6500_NTP_V1.0.1
Alias exec bgp 6500_peer_V2.0.0
Thanks,
Chuck
-Original Message-
From: Tim Durack [mailto:tdur...@gmail.com]
Sent: Thursday, February 27, 2014 11:50 AM
To: Ryan Shea
Cc
Or the country as a whole had WAY too many iPhones in need of a 7.0 upgrade.
Chuck
-Original Message-
From: Keith Medcalf [mailto:kmedc...@dessus.com]
Sent: Thursday, September 26, 2013 7:23 AM
To: nanog@nanog.org
Subject: RE: Sudan disconnected from the Internet
Of course it is entire
Newer IOS support setting precedence or DSCP for outbound SSH:
ip ssh prec 2
Thanks,
Chuck
-Original Message-
From: Andrey Khomyakov [mailto:khomyakov.and...@gmail.com]
Sent: Monday, July 29, 2013 12:07 PM
To: Nanog
Subject: management traffic QoS on Tunnel interfaces
Hi all,
I have
-Original Message-
>From: Eric Krichbaum [mailto:e...@telic.us]
>Sent: Tuesday, December 11, 2012 8:31 AM
>To: 'Chuck Church'; nanog@nanog.org
>Subject: RE: RADB entry
>While not 100% accurate, it is very common. The origin being entered by a
provider as their o
Anyone,
Hopefully this is a simple question about RADB. I'm
supporting a small wireless ISP, they just recently added a second upstream
connection - Charter (AS 20115). The IP space was originally issued by the
other upstream Windstream (AS 7029). Looking at a few resources s
-Original Message-
>From: Jimmy Hess [mailto:mysi...@gmail.com]
>Sent: Tuesday, November 20, 2012 7:50 PM
>To: Van Wolfe
>Cc: nanog@nanog.org
>Subject: Re: NTP Issues Today
>This _should_ have caused NTP to execute a panic shutdown,
>instead of setting the clock back 30 million second
Network scan tools are a great way to verify what important protocols you
left out of your control plane policing non-default policies. Had a scanner
totally clog up our 6500 core router DHCP relay (ip helper) function once.
Uggghhh, security people
Chuck
I agree. Perhaps the ISP goes a little above and beyond most, and will
provide configuration assistance to the downstream if they have issues.
Useful info they might want to see on the diagram could be your AS (duh),
ASes downstream from you, are you multihomed, and with who, what prefixes
and or
I disagree. I see it as an extra layer of security. If DOD had a network
with address space 'X', obviously it's not advertised to the outside. It
never interacts with public network. Having it duplicated on the outside
world adds an extra layer of complexity to a hacker trying to access it.
It'
Does anyone know the reason /64 was proposed as the size for all L2 domains?
I've looked for this answer before, never found a good one. I thought I
read there are some L2 technologies that use a 64 bit hardware address,
might have been Bluetooth. Guaranteeing that ALL possible hosts could live
t
-Original Message-
From: david peahi [mailto:davidpe...@gmail.com]
Sent: Monday, March 26, 2012 1:54 PM
To: Jared Mauch
Cc: nanog@nanog.org
Subject: Re: last mile, regulatory incentives, etc (was: att fiber, et al)
>I have discovered that the Federal School Lunch E-Rate program has built
Shouldn't a forged LOA be justification to contact law enforcement?
Chuck
-Original Message-
From: Kelvin Williams [mailto:kwilli...@altuscgi.com]
Sent: Tuesday, January 31, 2012 1:01 PM
To: nanog@nanog.org
Subject: Hijacked Network Ranges
Greetings all.
We've been in a 12+ hour orde
-Original Message-
From: valdis.kletni...@vt.edu [mailto:valdis.kletni...@vt.edu]
Sent: Tuesday, November 15, 2011 9:17 AM
To: Leigh Porter
Cc: nanog@nanog.org; McCall, Gabriel
Subject: Re: Arguing against using public IP space
> And this is totally overlooking the fact that the vast majo
-Original Message-
From: Phil Regnauld [mailto:regna...@nsrc.org]
>PAT (overload) will have ports open listening for return traffic,
>on the external IP that's being "overloaded".
>What happens if you initiate traffic directed at the RFC1918
>network itself, and send tha
When you all say NAT, are you implying PAT as well? 1 to 1 NAT really
provides no security. But with PAT, different story. Are there poor
implementations of PAT that don't enforce an exact port/address match for
the translation table? If the translation table isn't at fault, are the
'helpers' t
Can we take this offline? I don't believe livestock behavior patterns have
much operational content.
Thanks,
Chuck
-Original Message-
From: Jason Baugher [mailto:ja...@thebaughers.com]
Sent: Thursday, September 22, 2011 11:31 AM
To: nanog@nanog.org
Subject: Re: Internet mauled by bear
-Original Message-
>From: Erik Bais [mailto:eb...@a2b-internet.com]
>Sent: Wednesday, September 14, 2011 7:56 AM
>To: 'Frank Habicht'; nanog@nanog.org
>Subject: RE: ouch..
>Personally I think this is a pathetic action from Cisco, however I'm not
>surprised by them doing it ...
>Regards
Original Message-
From: Dobbins, Roland [mailto:rdobb...@arbor.net]
Sent: Monday, September 12, 2011 2:56 PM
To: North American Network Operators' Group
Subject: Re: vyatta for bgp
>zorched.
---
Zorch. I like that. So
76 matches
Mail list logo
