On Feb 18, 2012 10:24 PM, "Robert Bonomi" wrote:
>
> Even better, nat to a 'bogon' DNS server -- one that -- regardless of the
> query -- returns the address of a dedicated machine on your network set up
> especially for this purpose.
What happens when the client sends a POST from a cached page o
On Feb 19, 2012, at 10:59, Ken Gilmour wrote:
> On Feb 18, 2012 10:24 PM, "Robert Bonomi" wrote:
>>
>> Even better, nat to a 'bogon' DNS server -- one that -- regardless of the
>> query -- returns the address of a dedicated machine on your network set up
>> especially for this purpose.
>
> What
On 2012-02-19 12:59 , Patrick W. Gilmore wrote:
> On Feb 19, 2012, at 10:59, Ken Gilmour wrote:
>> On Feb 18, 2012 10:24 PM, "Robert Bonomi" wrote:
>>>
>>> Even better, nat to a 'bogon' DNS server -- one that -- regardless of the
>>> query -- returns the address of a dedicated machine on your net
On Sun, 19 Feb 2012 13:02:01 +0100, Jeroen Massar said:
> Per default most webservers (Apache, nginx, etc) won't log POST
> variables, GET variables will be logged (as they are part of the query)
> but those should not contain any PII.
Right. They shouldn't. But the security mailing lists have l
Hello,
We use DSL as a backup for some of our client sites where there is no
better alternative. I am looking for a preferably facilities based CLEC in
NJ who can provide us with DSL in sprint/centurytel territories. If anyone
has any recommendations for companies which can do this, experiences, e
> From ken.gilm...@gmail.com Sun Feb 19 05:04:39 2012
> Date: Sun, 19 Feb 2012 11:59:37 +0100
> Subject: Re: DNS Attacks
> From: Ken Gilmour
> To: Robert Bonomi
> Cc: nanog@nanog.org
>
> On Feb 18, 2012 10:24 PM, "Robert Bonomi" wrote:
> >
> > Even better, nat to a 'bogon' DNS server -- one tha
On Feb 18, 2012, at 6:51 PM, George Bonser wrote:
>> academics in ontario are gonna need a scalable vpn service until they
>> find jobs elsewhere.
>>
>> http://www.cautbulletin.ca/en_article.asp?SectionID=1386&SectionName=Ne
>> ws&VolID=336&VolumeName=No%202&VolumeStartDate=2/10/2012&EditionID=3
On Feb 18, 2012, at 1:55 PM, Astrodog wrote:
> On Fri, Feb 17, 2012 at 7:13 PM, Gary Buhrmaster
> wrote:
>> On Sat, Feb 18, 2012 at 01:02, George Herbert
>> wrote:
>>
Will IANA accept netblock transfers as an exchange medium for
datacenter goodies vending machine payments? ... ;-
Anyone noticing issues with Dynadot (site is down) and Dynadot related
domain names where you are using their DNS servers?
--
--C
"The dumber people think you are, the more surprised they're going to
be when you kill them." - Sir William Clayton
On Sun, Feb 19, 2012 at 11:21 AM, John Curran wrote:
> On Feb 18, 2012, at 1:55 PM, Astrodog wrote:
>> On Fri, Feb 17, 2012 at 7:13 PM, Gary Buhrmaster
>> wrote:
>>> On Sat, Feb 18, 2012 at 01:02, George Herbert
>>> wrote:
>>>
> Will IANA accept netblock transfers as an exchange medium
On Feb 18, 2012, at 3:31 AM, Masataka Ohta wrote:
> David Barak wrote:
>
>>> From: Owen DeLong o...@delong.com
>>
>>> Sigh... NAT is a horrible hack that served us all too well in
> >> address conservation. Beyond that, it is merely a source of pain.
>>
>> I understand why you say that - NAT d
On 2/18/2012 4:32 PM, Everett Batey wrote:
> facebook.com DNS not found 20120218 2125 UTC
> Is there any outage information for DNS for facebook.com / www.facebook.com
> ?
> "Oops! Google Chrome could not find www.facebook.com"
I have had two reports of "can't get to facebook" from campus toda
> > I have running code to make the reverse translations, with
> > which protocols such as ftp with PORT commands are working.
>
> No, I think you do not understand...
>
> I have a NAT gateway with a single public address.
>
> I have 15 FTP servers and 22 web servers behind it.
>
> I want peopl
On Sun, Feb 19, 2012 at 6:24 PM, Owen DeLong wrote:
> I have 15 FTP servers and 22 web servers behind it.
> I want people to be able to go to ftp:// and/or http://
> for each of them.
For HTTP; You put a device on that one IP that will accept each TCP
connection, await the SNI or Host header
Please feel free to unicast me if you ever see any reproducible issues.
-Callahan
On Sun, Feb 19, 2012 at 5:01 PM, Jeff Kell wrote:
> On 2/18/2012 4:32 PM, Everett Batey wrote:
>> facebook.com DNS not found 20120218 2125 UTC
>> Is there any outage information for DNS for facebook.com / www.face
In message <201202200107.q1k17w5l000...@aurora.sol.net>, Joe Greco writes:
> > > I have running code to make the reverse translations, with
> > > which protocols such as ftp with PORT commands are working.
> >
> > No, I think you do not understand...
> >
> > I have a NAT gateway with a single pu
On Wed, 15 Feb 2012 12:47:15 -0800, John Kristoff wrote:
I have a handful of common misconceptions that I'd put on a top 10 list,
but I'd like to solicit from this community what it considers to be the
most annoying and common operational misconceptions future operators
often come at you with.
On Sun, 2012-02-19 at 19:09 -0600, Jimmy Hess wrote:
> For HTTP; You put a device on that one IP that will accept each TCP
> connection, await the SNI or Host header from the client, and then
> make/forward the connection to a proper server for that hostname.
So you need an extra device to w
Owen DeLong wrote:
>> I have running code to make the reverse translations, with
>> which protocols such as ftp with PORT commands are working.
> No, I think you do not understand...
How can't I understand several minor issues with the running code.
> I have 15 FTP servers and 22 web servers be
On Mon, 20 Feb 2012 11:17:32 +0900, Masataka Ohta
wrote:
>draft-ohta-urlsrv-00.txt
>
>DNS SRV RRs of a domain implicitly specify servers and port numbers
>corresponding to the domain.
>
>By combining URLs and SRV RRs, no port numbers have to be specified
>explicitly in URLs,
On Sun, Feb 19, 2012 at 10:09 PM, Andrew Jones wrote:
> On Mon, 20 Feb 2012 11:17:32 +0900, Masataka Ohta
> It seems to me that this will create all sorts of headaches for firewall
> ALGs. Rather than just passing port 21/tcp traffic to the FTP ALG for
> example, the devices would need to inspect
On Sun, Feb 19, 2012 at 3:05 PM, Astrodog wrote:
> This gives me an idea. The vending machine could also sell hosting.
> Sometimes, the box just won't come back to life and you need somewhere
> to stuff the data. *grin*
How about a vending machine, where you insert a hard drive, swipe your card,
Nice idea of future! :)
Btw as side question - I heard transfer rates from S3 are capped badly.
Something like 5-10Mbps. Is that true? Anyone of you ever came across such
cap?
On Mon, Feb 20, 2012 at 11:08 AM, Jimmy Hess wrote:
> On Sun, Feb 19, 2012 at 3:05 PM, Astrodog wrote:
> > This gives
My rsync appeared to be running at 20+ Mbps to S3 last night...
Sent from my iPhone
On Feb 19, 2012, at 21:41, Anurag Bhatia wrote:
> Nice idea of future! :)
>
>
> Btw as side question - I heard transfer rates from S3 are capped badly.
> Something like 5-10Mbps. Is that true? Anyone of you ever
George Bonser wrote:
>> It is seemingly working well means there is not much PMTU changes,
>> which means we had better assumes some PMTU (1280B, for example) and
>> use it without PMTUD.
> It depends on the OS and the method being used. If you set the
> option to "2" on Linux, it will do MTU pr
--
Sent from my smart phone. Please excuse my brevity
On Feb 19, 2012 4:10 p.m., "Robert Bonomi" wrote:
>
> > From ken.gilm...@gmail.com Sun Feb 19 05:04:39 2012
> > Date: Sun, 19 Feb 2012 11:59:37 +0100
> > Subject: Re: DNS Attacks
> > From: Ken Gilmour
> > To: Robert Bonomi
> > Cc: nanog@nano
26 matches
Mail list logo
