I'm tightening up some network-edge filters, and in the process of
testing filtering with IPv6, I found that there is a lot of ICMP
link-local (fe80::) to ff02:: activity at an IX. Is any of this
necessary? I am wary of over-filtering that cuts down functionality and
doesn't increase security
On 2/17/14, 7:26 AM, George, Wes wrote:
> I’ll note that this is less than 140 chars, and therefore fits nicely in a
> tweet.
>
> If you’re on twitter, Signal boost the PSA, please.
>
> My edited example: https://twitter.com/wesgeorge/status/435404354242478080
>
> Wes George
>
>
>
> On 2/16/14, 10:
On 2/16/14, 7:38 PM, Brian Rak wrote:
> Seriously, just fix your configuration. The part of NTP being abused
> is completely unrelated to actually synchronizing time. It's a
> management query, that has no real reason to be enabled remotely. You
> don't even need to resort to iptables for this, b
On 2/16/14, 11:29 AM, Pete Ashdown wrote:
> I've found that blocking TCP destination NTP to client servers/networks
> blocks legitimate NTP synchronization for their clients.
^TCP^UDP
Just in case you run a legitimate open NTP server, this iptable stanza
helps immensely:
## rate limit ntp
$IPTABLES -N NTP
$IPTABLES -N BLACKHOLE
$IPTABLES -A BLACKHOLE -m recent --set --name ntpv4blackhole --rsource
$IPTABLES -A BLACKHOLE -j DROP
$IPTABLES -A NTP -m recent --update --seconds 5 --
I've got a customer's point-to-point 50M that has taken too long to
install and is averaging 5M throughput. If someone can drop a solid
50-100M DIA in Blue Springs, Missouri, I'd like to hear from you. Email
me directly.
Thanks in advance.
I'm looking for a KVM guest swap on the US eastern coast for a tertiary
DNS server. Must have a minimum of 1GB RAM, 4 CPUs, and be IPv6
capable. I am willing to swap the same here in Salt Lake City, Utah.
Thanks in advance!
Itis just informational rather than real peering. Akamai CDN.
On 12/21/2012 12:45 PM, Jared Mauch wrote:
> On Dec 21, 2012, at 1:45 PM, Pete Ashdown wrote:
>
>> I've got a peer who wishes me to send my IPv6 announcements over IPv4 BGP.
>> I'm running around in circ
I've got a peer who wishes me to send my IPv6 announcements over IPv4 BGP.
I'm running around in circles with JTAC trying to find out how to do this
in JunOS. Does anyone have a snippet they can send me?
I don't have the quantity you need, but this reminded me that I'm in
need of a reliable supplier of CWDM 40KM XFP 10GbE optics. Specifically
1310nm, but I'll need other wavelengths soon. These things seem to be
manufactured by elves. I can't find a reliable supplier anywhere. Can
anyone help?
I am looking at freshening my news peer list. Please email me if you
are interested.
11 matches
Mail list logo
