> Please relay to your CCIE/JNCIE friends, I am giving out
> name@theccie.comand n...@jncie.com email accounts, anyone interested
> can contact me.
but who would want to deal with such slime?
Sorry, ARIN's been keeping me busy
since the NANOG wrap-up, but finally
took some time after the social tonight
to finish posting all the rest of my notes,
minus the IP Reputation notes, to
http://nanog.cluepon.net/index.php/NANOG59
Another awesome NANOG, one of the
best ones in a while; thanks aga
Access to Baghdad(Iraq) via internet is not possible. Anyone seeing the
same thing ?
Regards
-Ray L.
Seriously... Those cert monkeys think they know everything ;)
Stefan Fouant
JNCIE-SEC, JNCIE-SP, JNCIE-ENT, JNCI
m (703) 625-6243
On Oct 11, 2013, at 3:28 AM, Randy Bush wrote:
>> Please relay to your CCIE/JNCIE friends, I am giving out
>> name@theccie.comand n...@jncie.com email accounts, anyo
Hi,
They did, unfortunately I've been having one busy week. I should get around
to pinging the person who replied to me today, and thank you if that person
reads this email and to you as well. It's much appreciated.
Thanks,
On Fri, Oct 11, 2013 at 1:11 PM, Paul Rolland wrote:
> Hello Guillaum
I'm having a discussion with a small network in a part of the world
where bandwidth is scarce and multiple DSL lines are often used for
upstream links. The topic is policy-based routing, which is being
described as "load balancing" where end-user traffic is assigned to a
line according to source ad
On Oct 11, 2013, at 1:27 PM, William Waites wrote:
> I'm having a discussion with a small network in a part of the world
> where bandwidth is scarce and multiple DSL lines are often used for
> upstream links. The topic is policy-based routing, which is being
> described as "load balancing" where
On Oct 12, 2013, at 12:27 AM, William Waites wrote:
> But I'm having a distinct lack of success locating rants and diatribes or
> even well-reasoned articles supporting this opinion.
Possibly because it's so commonly known that PBR is generally a Very Bad Idea
for the reasons you cite, and mo
On Oct 11, 2013, at 10:27 AM, William Waites wrote:
> I'm having a discussion with a small network in a part of the world
> where bandwidth is scarce and multiple DSL lines are often used for
> upstream links. The topic is policy-based routing, which is being
> described as "load balancing" wher
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Le 11/10/2013 19:41, joel jaeggli a écrit :
>
> On Oct 11, 2013, at 10:27 AM, William Waites
wrote:
>
>> I'm having a discussion with a small network in a part of the world
>> where bandwidth is scarce and multiple DSL lines are often used for
>> ups
On Fri, 11 Oct 2013 18:27:00 +0100 (BST)
William Waites wrote:
> I'm having a discussion with a small network in a part of the world
> where bandwidth is scarce and multiple DSL lines are often used for
> upstream links. The topic is policy-based routing, which is being
> described as "load balan
On Fri, 11 Oct 2013 10:41:46 -0700, joel jaeggli said:
> you take all the useful information that an IGP could be (or is)
> providing you, and then you ignore it and do something else.
Yes, that's another part of the conversation, encouraging the use of
an IGP, which has been a source of
On Fri, 11 Oct 2013, Jared Mauch wrote:
I think this all depends on how it's configured, and if you can monitor/detect
failures.
I've seen folks do things like this with a Linux box with "multiple
routing tables". If you have something validate the link is working,
you can easily have it "f
Most if not all IGPs can be configured to work without multicast. Now if
you're talking IPv6 you may have some issuesŠ
On 10/11/13 2:13 PM, "William Waites" wrote:
>On Fri, 11 Oct 2013 10:41:46 -0700, joel jaeggli said:
>
>> you take all the useful information that an IGP could be (or is)
- Original Message -
> From: "joel jaeggli"
> you take all the useful information that an IGP could be (or is)
> providing you, and then you ignore it and do something else.
Well, I tell you what.
My perception of where this was a good idea is the use case a recent
client might have fo
On Fri, Oct 11, 2013 at 2:13 PM, William Waites wrote:
> On Fri, 11 Oct 2013 10:41:46 -0700, joel jaeggli said:
> > evil is not a synonym for ugly patch placed over a problem that
> > could be handled better.
>
> Ok, fair enough. My first experience with PBR was as a summer intern in
> th
This is an automated weekly mailing describing the state of the Internet
Routing Table as seen from APNIC's router in Japan.
The posting is sent to APOPS, NANOG, AfNOG, AusNOG, SANOG, PacNOG, LacNOG,
TRNOG, CaribNOG and the RIPE Routing Working Group.
Daily listings are sent to bgp-st...@lists.ap
I think they are referring to something like Cisco PBR, where you
configure routing policy statically on each hop. Yes, it can be
configured to fail over, etc, but inherently it is a management nightmare
if you are configuring PBR on each device in your network. May as well
move back to static ro
What is SDN at its essence ?
> Message: 9
> Date: Fri, 11 Oct 2013 19:13:57 +0100 (BST)
> From: William Waites
> To: joe...@bogus.com
> Cc: nanog@nanog.org
> Subject: Re: Policy-based routing is evil? Discuss.
> Message-ID: <20131011.191357.239591912.wwai...@tardis.ed.ac.uk>
> Content-Type: tex
Centralized management / control plane. Kind of the reverse of widely
dispersed per-node policy based routing.
On 10/11/13 2:47 PM, "Vytautas V Grigaliunas" wrote:
>What is SDN at its essence ?
>
>
>
>> Message: 9
>> Date: Fri, 11 Oct 2013 19:13:57 +0100 (BST)
>> From: William Waites
>> To: j
On Fri, Oct 11, 2013 at 12:28 AM, Randy Bush wrote:
> but who would want to deal with such slime?
>
I dunno, it looks pretty legit to me!!
Domain Name.. theccie.com
Creation Date 2013-09-28
Registration Date 2013-09-28
Expiry Date.. 2014-09-28
Organisation N
Hey,
No offense but this could potentially look like a phishing expedition to
some people. I'm saying this regardless of whether you are legit or not, I
did not do much research and am only giving you my honest impression.
Just saying, anyone could purchase a domain name and say they want to
prov
On Oct 11, 2013, at 12:27 PM, William Waites wrote:
> I'm having a discussion with a small network in a part of the world
> where bandwidth is scarce and multiple DSL lines are often used for
> upstream links. The topic is policy-based routing, which is being
> described as "load balancing" wher
On Fri, 2013-10-11 at 12:45 -0700, Scott Howard wrote:
> I dunno, it looks pretty legit to me!!
>
> Domain Name.. theccie.com
> Creation Date 2013-09-28
> Registration Date 2013-09-28
> Expiry Date.. 2014-09-28
>
> Organisation Name the ccie
> Organisatio
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Hi all,
We use Linux for our edge routers which have multiple interfaces to
different BGP peers. Policy based routing allows us to insure that
traffic originating from a particular external IP address on the router,
goes out the matching network.
W
This report has been generated at Fri Oct 11 21:15:04 2013 AEST.
The report analyses the BGP Routing Table of AS2.0 router
and generates a report on aggregation potential within the table.
Check http://www.cidr-report.org for a current version of this report.
Recent Table History
Date
BGP Update Report
Interval: 03-Oct-13 -to- 10-Oct-13 (7 days)
Observation Point: BGP Peering with AS131072
TOP 20 Unstable Origin AS
Rank ASNUpds % Upds/PfxAS-Name
1 - AS36998 62516 3.0% 48.1 -- SDN-MOBITEL
2 - AS982940360 1.9% 23.7 -- B
On Fri, Oct 11, 2013 at 12:27 PM, William Waites wrote:
> In my opinion the main problems with this are:
> - It's brittle, when a line fails, traffic doesn't re-route
>
Yes, but this is no worse than if you just had one single DSL link.
Manual failover is a perfectly valid solution for very sma
I'm having a discussion with a small network in a part of the world
where bandwidth is scarce and multiple DSL lines are often used for
upstream links. The topic is policy-based routing, which is being
described as "load balancing" where end-user traffic is assigned to a
line according to source ad
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Phil Bedard wrote:
> I'm having a discussion with a small network in a part of the world
> where bandwidth is scarce and multiple DSL lines are often used for
> upstream links. The topic is policy-based routing, which is being
> described as "load bala
Hey, I'm a security guy, I'm paid to be paranoid, the only question is
whether I'm paranoid enough .. I don't need another EMail addy
Gary Baribault
Courriel: g...@baribault.net
GPG Key: 0x685430d1
Fingerprint: 9E4D 1B7C CB9F 9239 11D9 71C3 6C35 C6B7 6854 30D1
On 10/11/2013 04:51 PM, Richard Golo
I'd hope that an IE would get this email for a vanity address on some
blog.. I would hope..
On 10/11/13 4:07 PM, "Gary Baribault" wrote:
>Hey, I'm a security guy, I'm paid to be paranoid, the only question is
>whether I'm paranoid enough .. I don't need another EMail addy
>
>Gary Baribault
>Cour
I think I'll look to one up him and register "theccar.com"
> On Oct 11, 2013, at 18:09, Gary Baribault wrote:
>
> Hey, I'm a security guy, I'm paid to be paranoid, the only question is
> whether I'm paranoid enough .. I don't need another EMail addy
>
> Gary Baribault
> Courriel: g...@baribault.n
On 10/11/2013 7:07 PM, Gary Baribault wrote:
> Hey, I'm a security guy, I'm paid to be paranoid, the only question is
> whether I'm paranoid enough .. I don't need another EMail addy
>
> Gary Baribault
> Courriel: g...@baribault.net
> GPG Key: 0x685430d1
> Fingerprint: 9E4D 1B7C CB9F 9239 11D9 71C3
Well in case you wondering how much the domain costs me, it costs me 1.99
for 1 year :-)
On Sat, Oct 12, 2013 at 7:26 AM, ML wrote:
> On 10/11/2013 7:07 PM, Gary Baribault wrote:
> > Hey, I'm a security guy, I'm paid to be paranoid, the only question is
> > whether I'm paranoid enough .. I don't
Really appreciated this video! Tracking amplification on Comcast as we
speak!
On Thu, Oct 10, 2013 at 12:59 AM, Mikael Abrahamsson wrote:
> On Wed, 9 Oct 2013, Niels Bakker wrote:
>
> * d...@temk.in (David Temkin) [Tue 08 Oct 2013, 23:43 CEST]:
>>
>>> We're proud to announce that all of the rec
As others have pointed out, PBR ...
* Is a fragile configuration. You're typically forcing next-hop without
a [direct] failover option,
* Often incurs a penalty (hardware cycles, conflicting feature sets, or
outright punting to software),
* Doesn't naturally load-balance (you pick the source rang
The email accounts are hosted at Microsoft, I have setup auto-responder so
if you email r...@theccie.com, you can see for yourself if the reply comes
from live.com/hotmail.com. Microsoft takes care all the authentication in
case you wonder.
On Sat, Oct 12, 2013 at 8:16 AM, ku po wrote:
>
> Wel
38 matches
Mail list logo
