check but it looks like traffic is flowing thru the peer points currently, for
thing like MSN/OWA/etc. I can ping and reach peers, but all traceroute thru
the peering point seems to now stop at the border. Maybe they added some sort
of filtering and hosed themselves? Not sure.
Adrian
On Wednesday 27 July 2016 07:58:49 Paras Jha wrote:
> Hi Justin,
>
> I have submitted abuse reports in the past, maybe from 2014 - 2015, but I
> gave up after I consistently did not even get replies and saw no action
> being taken. It is the same behavior with other providers who host malware
> kn
the $4 a month and I know I could not fund a build out for
that price.
I take it you have not been a service provider for a while? Thanks to its
removal from the tariff list, that $4 DSL pair from the ILEC for a third party
ISP now costs $34... That doesn't include ISP cost.
Adrian
g from this IP. This router is part of the Tor Anonymity
Network, which is dedicated to providing privacy to people who need it most:
average computer users. This router IP should be generating no other traffic,
unless it has been compromised.
...
H, interesting..
Adrian
ver.
>
> On Sun, Aug 21, 2011 at 7:43 AM, Adrian wrote:
> > H, interesting..
He contacted me privately and stated he always uses Tor. I explained how that
lends even less credibility than a questionable/forged transfer authority in
business discussions... He claims he will
til 2:30
a.m. Sunday."
Adrian
On Saturday 24 September 2011 22:24, Adrian wrote:
> On Saturday 24 September 2011 21:27, Chris Woodfield wrote:
> > Hearing rumblings of a major AT&T Wireless outage in southern California.
> > Anyone have more detail? Limited to cell towers or are transit circuits
> >
ce here other than watching it being done
for new pulls into existing developments. No need for digging up
yards/sidewalks/parking lots, just a bunch of potholes at the new junction
box locations and a single horizontal bore down the property line from the
street, intercepting each of the potholes.
Adrian
trenching 6ft down with a wheel or cable plow and
cutting all the tree roots in the path would be bad...
Adrian
tom fiber - Gruber
Electrical (equip)/fiber/wall enclosures - Graybar/Tesco
Electrical (power) - Local electrical shops/Home depot
Adrian
ere does
that link really go?
http://www.google.com/url?q=http://faq.ssl.com/article.aspx%3Fid%3D10068&sa=U&ei=JcI1T_DRKJDXiAKauoSvCg&ved=0CBgQFjAB&usg=AFQjCNHSmrhtgWQczEe1j0LhdMdUW5x4LA
So much for looking at what mouse-over shows
Adrian
), never given us a
problem in years of service... Well, one network management card that lost
its mind, reset the configuration and went on with life, but the UPS just
chugged along. Biggest plus has been that they don't cook their batteries
like APCs do.
Adrian
er discussions, they were apparently continuously sending client
deauth packets to any non-Marriott access points within range.
Adrian
e.com/article/707542/china-not-to-blame-for-backdoor-in-us-military-chip
Adrian
srcaddr=203.84.212.53
Dec 17 01:56:17: %CRYPTO-4-RECVD_PKT_INV_SPI: decaps:
rec'd IPSEC packet has invalid spi for
destaddr= prot=50 spi=0xEF7ED795(4018067349)
srcaddr=68.180.160.17
Dec 17 03:27:47: %CRYPTO-4-RECVD_PKT_INV_SPI: decaps:
rec'd IPSEC packet has invalid spi for
destaddr= prot=50 spi=0xEF7ED795(4018067349)
srcaddr=203.84.212.34
--
Best regards,
Adrian Minta
looking like some kind of adjustable depth sleeve, to get the cold air
to the equipment, and perhaps a brush strip opening to allow power
cables in?
Thanks!
--
Best regards,
Adrian Minta
ad of an existing one.
Cheers,
Adrian
ume of customer service
calls.
Appears to be failure in DNS resolution.
--
Best regards,
Adrian Minta
/1FAIpQLSc4VCkqd7i88y0CbJ31B7tVXyxBlhEy_zsYZByx6tsKAE7ROg/viewform?usp=pp_url&entry.549791324=NANOG+mailing+list
We thank you for helping inform our further work on this project. We will
be happy to share the results with the community.
With kind regards
Prateek Mittal, Adrian Perrig, Yixin Sun
t; Sorry to rain on your parade guys!
No problem, thank you for your honest feedback! It is very important to
gather these opinions / viewpoints.
All the best
Adrian
On Mon, Jan 24, 2022 at 10:32 PM Laura Smith via NANOG
wrote:
> ‐‐‐ Original Message ‐‐‐
>
> On Friday, Janua
each ISD (ISD = Isolation Domain) have it's own DNS?
The SCION DNS story has evolved much since the first book, to only use a
single global name space in the current design (which is written up in the
new SCION book that will go to the printer next week, ping me if you'd like
to see a pre-p
e cert, and people's
Firefox browsers have mass-disabled addons.
Whoops.
--
Best regards,
Adrian Minta
to the same level of
scrutiny.
Reviews of drafts on the Independent Stream are always welcome. You can send
comments and thoughts direct to the authors or to me as Independent
Submissions Editor via rfc-...@rfc-editor.org
<mailto:rfc-...@rfc-editor.org> .
Thanks,
Adrian
--
Adrian Farre
>From AfterLogic you may use the following webmail clients:
- without calendar -> WebMail-lite PHP
- with personal calendar -> WebMail PHP
- with calendar and full sharing exchange style -> Aurora
On Tue, Jun 14, 2016 at 8:50 PM, Guillaume Tournat
wrote:
> Zimbra is a full featured groupware se
My son who has a Canadian line got it while in the Washington state area.
Adrian
On Wed, Oct 3, 2018 at 1:44 PM Stan Barber wrote:
> I got it on ATT IPhone I have and a Verizon Pixel as well.
>
> On Wed, Oct 3, 2018 at 1:38 PM Ray Van Dolson wrote:
>
>> Anecdotally, we had
es, regardless of the configuration.
Last week somebody on the internet started a campaign to scan and
perhaps to exploit some zero day ipsec vulnerabilities.
This is the list of ip addresses we saw: https://pastebin.com/vrLRai9Q
--
Best regards,
Adrian Minta
contact me off list.
Many thanks,
Adrian.
Sent from my iPhone
HI Adam
I'm interested in that as well. Nanog had good grants/sponsorships in the
past
Thank you!
Adrian
On Thu, Aug 15, 2024 at 1:07 PM Adam Thompson
wrote:
> Does anyone know if there are travel grants or sponsorships available for
> people who cannot afford the US$700 (~C$1k) r
a huge mess.
You assume that people simply select ULA prefixes randomly and don't
start doing linear allocations from the beginning of the ULA range.
Adrian
, "over-enthusiastic" HTTP procotol/application
designers.
NAT's going to be needed, but it's going to be more stateful
inspection-y than most of the vocal nanog+ipv6 people desire. :)
Adrian
On Fri, Oct 22, 2010, bmann...@vacation.karoshi.com wrote:
> The IPv4 space here was retired in 2009. We love the IVI
> translator code. Whats keeping the rest of you?
Just hazarding a guess:
router# conf t
router(config)# ipv6 ivi enable
router(config)# ^Z
Adrian
7;AS702'
aut-num:AS702
as-name:AS702
descr: Verizon Business EMEA - Commercial IP service provider in Europe
...
Adrian
>
> computer:~ me$ whois as702
>
> No match for "AS702".
> >>> Last update of whois database: Tue, 26 O
death lhs of the ptr record.
>
> rmac.psg.com:/Users/randy> host 2001:418:1::61
> Host 1.6.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.1.0.0.0.8.1.4.0.1.0.0.2.ip6.arpa
> not found: 3(NXDOMAIN)
>
But Randy, everyone has a web browser installed. Not everyone has perl, python,
cc,
s that I've been playing with, and some weird attempt at
shoe-horning in a cell phone into a Palm Pilot (or the other way around?
I'm not sure. I'm still not sure.)
Oh you mean, your apple airport, apple macbook, and apple iphone? AH.
Now I see why you think you're in the future.
:-)
Adrian
;t recover well. It required a background ICMP to keep the damned
session nailed up to "fast". :-)
Adrian
TCP maximum window sizes.
Application socket buffer sizes.
Fix those and re-test!
Adrian
On Fri, Nov 26, 2010, Harris Hui wrote:
>
>
> Hi
>
> Does anyone have experience on design / implementing the Jumbo frame
> enabled network?
>
> I am working on a project t
or the first time I'm hoping to not meet some of the nanog members in person
> at a Nanog conference should I ever attend
I think you've got it backwards. See if he's actively like this in person.
Email ... "changes things" with communication.
Adrian
Hi all
I need high laten cy network devices products. eg: router/switch/firewall
Can you share to me?
and How can I test it also?
Thank you so much
"AC wins." :-)
If you're at all serious about discussing this, I bet spending 15 minutes
doing some research and then an hour or so crafting some simultaneous equations
to solve/graph would be very very eye-opening.
Come on guys/girls, you're a bright bunch, post some models and discuss
those rather than un-substantiated datapoints! :-)
2c,
Adrian
ked" not to share what has occured with
anyone. I hear that kind of thing happens today.
Adrian
Botnets are the symptom.
The real problem is people.
Adrian
On Wed, Dec 08, 2010, Dobbins, Roland wrote:
>
> On Dec 8, 2010, at 11:26 AM, Sean Donelan wrote:
>
> > Other than trying to hide your real address, what can be done to prevent
> > DDOS in the first place.
&
On Wed, Dec 08, 2010, Dobbins, Roland wrote:
>
> On Dec 8, 2010, at 11:52 AM, Adrian Chadd wrote:
>
> > The real problem is people.
>
> Well, yes - but short of mass bombardment, eliminating people doesn't scale
> very well, and is generally frowned upon.
> >>
> >
> > The tool makes HTTP/1.0 requests, most browsers make HTTP/1.1 requests.
>
> Is there anything else to it, or just the protocol version?
Be careful - plenty of Squid's make HTTP/1.0 version.
ProTip: be careful. :-)
Adrian
--
- Xenion - http://www.xenion.com.au/ - VPS Hosting - Commercial Squid Support -
- $24/pm+GST entry-level VPSes w/ capped bandwidth charges available in WA -
On Thu, Dec 09, 2010, Adrian Chadd wrote:
> Be careful - plenty of Squid's make HTTP/1.0 version.
make HTTP/1.0 requests, not "version". Tsk.
(And here I am, studying linguistics. Pshaw.)
Adrian
w where it
> is/It's at the post office"
>
> When was the last time USPS delivered you a 100 pound UPS unit over night
> from across the country while letting you track it's progress?
Trouble is, now they can't. Why? Because they'd be threatening the jobs of
h
m unable to verify that level of behaviour.
So, is anyone using WCCPv2 redirection on gige and 10ge interfaces,
and mind sharing with me the equipment/configuration/IOS version?
Thanks,
Adrian
? If not, game over.
Thing is, not enough noise was made about that in the Australian National
Broadband Plan until late in the game.
I'm patiently waiting for a time when a major power outage incident occurs
and the cellular network system locally fails.
Adrian
rfaces.
Ah, vendors.. :-)
Adrian
On Sat, Jan 01, 2011, Graham Wooden wrote:
> Hi there,
>
> I encountered an interesting issue today and I found it so bizarre ? so I
> thought I would share it.
>
> I brought online a spare server to help offload some of the recent VMs that
>
7;d like to ensure the sensitive traffic doesn't cross an
"unsafer" default rout path if the XC is down.
(Assuming the prefixes are both public IPv4/6 space to begin with.)
Adrian
--
- Xenion - http://www.xenion.com.au/ - VPS Hosting - Commercial Squid Support -
- $24/pm+GST entry-level VPSes w/ capped bandwidth charges available in WA -
Yes, I've seen "secure" network cross-connects get bitten by this. :-)
Adrian
--
- Xenion - http://www.xenion.com.au/ - VPS Hosting - Commercial Squid Support -
- $24/pm+GST entry-level VPSes w/ capped bandwidth charges available in WA -
?
I'm all for IPv6. And I'm all for avoiding conjecture
and getting to the task at hand. But simply assuming
that the IPv6 address space will forever remain that -
only unique host identifiers - I think is disingenious
at best. :-)
Adrian
On Tue, Jan 25, 2011, Owen DeLong wrote:
> I l
us all something to repeat endlessly on lists and in presos.
I think having a graph that reached full and stays there will be quite
powerful. :)
Adrian
s/IPv6/ATM/g
Just saying...
Adrian
On Tue, Feb 01, 2011, Iljitsch van Beijnum wrote:
> On 1 feb 2011, at 13:01, Owen DeLong wrote:
>
> >>> IPv4 is very dead in the sense that it's not going to go anywhere in the
> >>> future.
>
> >>taking
BGPMon for data collection purposes.
--
Best regards,
Adrian Minta
On 06/17/11 21:55, Elliot Finley wrote:
Anyone using a CPE that is reliable and costs<= $300 ?
features needed:
SFP for uplink, QnQ, basic layer 2 functionality.
If you're using something with the above parameters and you like it,
please share. :)
Thanks,
Elliot
Something like Zyxel MES-21
that you
describe seems to fit exactly within the 3692 definitions.
Adrian
http://www.google.org/publicalerts/alert?aid=d8c6cebb80c5dbfb&hl=en&gl=US&source=web
On Fri, Dec 7, 2012 at 10:36 AM, JP Viljoen wrote:
> On 07 Dec 2012, at 10:33 AM, Seiichi Kawamura
> wrote:
> > FYI, another big earthquake in Japan just now. M7.3
>
> Inland or coast?
>
>
ss-threading, or stripping, or snapping the heads off of the screws on
> something important, leading to unrecoverable problems with expensive
> modules that you can no longer easily remove to replace when the need
> arises.
So you would recommend using a virtual screwdriver in the datacenter?
Adrian
Cisco has finally release a new 10G switch, Catalyst 4500-X:
http://www.cisco.com/en/US/products/ps12332/index.html
Does anyone know the price range, or the FCS date for this ?
We already have this type of attack in Bucharest/Romania since last
Friday. The targets where IP's of some local webhosters, but at one
moment we event saw IP's from Go Daddy.
Tcpdump will show something like:
11:10:41.447079 IP target > open_resolver_ip.53: 80+ [1au] ANY? isc.org.
(37)
11:10:4
On 13 Jul 2012, at 17:11, Tom Cooper wrote:
> On Fri, Jul 13, 2012 at 11:05 AM, TJ wrote:
>
> As an IPv6 newbie myself, I wonder how hosts handle link local, ULA and
> global addresses.
> For example, if you have some internal web traffic used for intranet use
> only, do you bind those servers
Better to use communities instead.
On Aug 2, 2012 11:34 AM, "Fredy Kuenzler" wrote:
> From my observation Level3 has recently changed their routing policy. It
> seems that 3356 always prefers customer prefixes of 3549, regardless of the
> AS path length. Example (seen from 3356):
>
> 3549_13030_[
On 17 Sep 2012, at 13:28, John Mitchell wrote:
>
> > Given that the first 3 bits of a public IPv6 address are always 001, giving
> > /48 allocations to customers means that service providers will only have
> > 2^(48-3) or 2^45 allocations of /48 to hand out > to a population of
> > approxima
Hi,
On 17 Sep 2012, at 15:02, Nick Hilliard wrote:
> On 17/09/2012 14:37, Adrian Bool wrote:
>> It seems a tad unfair that the bottom 80 bits are squandered away with a
>> utilisation rate of something closely approximating zero
>
> You are thinking in ipv4 mo
construct their addressing plan in a logical, hierarchal manner whilst allowing
for growth - and most importantly ensuring they only advertise a single route
into the global routing table.
Kind regards,
Adrian
On 24 Sep 2012, at 17:57, Tore Anderson
wrote:
> * Tore Anderson
>
>> I would pay very close attention to MAP/4RD.
>
> FYI, Mark Townsley had a great presentation about MAP at RIPE65 today,
> it's 35 minutes you won't regret spending:
>
> https://ripe65.ripe.net/archives/video/5
> https://ri
On 24 Sep 2012, at 22:42, Mike Jones wrote:
> While you could do something similar without the encapsulation this
> would require that every router on your network support routing on
> port numbers,
Well, not really. As the video pointed out, the system was designed to
leverage hierarchy to r
.
Adrian
Will, I think you also need to consider the case where one operator runs more
than one network.
This can happen because of acquisition or administrative structure.
I regret it might also happen because of vendor equipment compatibility/lock-in
issues.
Cheers,
Adrian
> -Original Mess
This guy got funding and made a free series that teaches CCNA. I'm not
sure how good it is, but it's free.
https://www.youtube.com/playlist?list=PLmdYg02XJt6QRQfYjyQcMPfS3mrSnFbRC
http://www.reddit.com/r/sysadmin/comments/25mmoo/a_year_ago_i_asked_for_help_to_produce_a_free/
On Sun, Nov 2, 2014 at
ght
do the job.
--
Best regards,
Adrian Minta
about what has come out of the DPDK related stuff is, well, the
bar is set very high now. Now it's up to the open source groups to
stop messing around and do something about it.
If you're interested in more of this stuff, go poke Jim at pfsense/netgate.
-adrian
(This and RSS work i
whois.radb.net 43
Trying 207.75.117.18...
^C
--
Best regards,
Adrian Minta
Be careful, It appears that something is broken with ARP on this release.
We have no ARP on lan interface, and somebody else has a similar problem:
https://www.reddit.com/r/networking/comments/433kqx/cisco_asa_not_recording_an_arp_entry/
On Wed, Feb 10, 2016 at 10:36 PM, Sadiq Saif wrote:
> Up
Solved !
"Disable Proxy ARP" must be checked on NAT bypass rules (former nat 0).
On Thu, Feb 11, 2016 at 3:53 PM, Adrian M wrote:
> Be careful, It appears that something is broken with ARP on this release.
> We have no ARP on lan interface, and somebody else has a similar pr
32 obj-1.0.0.36_32
> destination static obj-1.0.0.36_32 obj-1.0.0.36_32 *no-proxy-arp*
> route-lookup
>
>
>
>
>
>
>
>
>
>
>
>
>
> Best Regards,
>
> _
>
> Roberto Taccon
>
>
>
> e-mail: robe...@ipnetworks.it
>
The quickest way of contacting the AOL Mail Team I'm aware of is through
their Twitter account at @AOLMail (https://twitter.com/AOLMail). Tell
them @6 sent you. ;)
Cordially,
A
-
~~
vox: +1 202 459 9800 x.1300 // secure: +1 410 874 0050
(phone
it looks like (according to linkedin) that Jeremy has moved to a stealth
startup.
-a
Adrian Beaudin
Principal Architect, Special Projects
Nominum, Inc.
o: +1.650.587.1513
adrian.beau...@nominum.com
From: NANOG [nanog-boun...@nanog.org] on behalf of
RFC number to reference within about 4
weeks from now.
Adrian
[1] https://datatracker.ietf.org/doc/draft-ietf-mpls-ldp-ipv6/
> -Original Message-
> From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Nick Hilliard
> Sent: 22 February 2015 16:21
> To: nanog@nanog.org
>
ut whatever we talked about. It was inspiring.
I had just turned 21 shortly before this happened. I had just moved
back to Australia and we had been keeping in touch. Then, this. It was
very sobering.
Sigh.
-adrian
(hi all!)
Hi,
You can also test WANGUARD, http://www.andrisoft.com/ for DDoS detection
and BGP triggered blackholing.
On Thu, Dec 19, 2013 at 11:32 AM, Eugeniu Patrascu wrote:
> Hi,
>
> You can also take a look at http://www.packetdam.com/ for DDoS protection.
>
> Eugeniu
>
>
> On Thu, Dec 19, 2013 at 10
more than once)
--
Best regards,
Adrian Minta
Good morning,
We're in the market to move our IX peering off of our core (too much
BGP/CPU :-/ ) and onto a dedicated switch.
Brocade ICX 7750 Switch seems to satisfy all the requirements.
--
Best regards,
Adrian Minta
S info, they can see inside your home
network and be counted as "internal internet zone" to IE..
(perhaps not operational per-se, but pretty freaking scary.)
Adrian
the effects of oppertunistic IPSEC on stuff like
network IDSes?
k
Adrian
On Tue, May 29, 2007, Donald Stahl wrote:
> There is something to be said for not being able to blindly spew worm
> traffic and still expect to get a sensible hit ratio as with IPv4.
You don't need to blindly spew worm traffic anymore; you can just
spew based on p2p traffic.
Adrian
omething that you are really interested in?
I'd prefer to throw IPv6 network ranges at customer links, so they can have
"other" devices on IPv6. IPv6 isn't just for desktops.
How's Teredo servers tie into network security? Does the act of tunneling
from v4 to a v6 broker bypass firewalls, IDSes, etc?
Adrian
/ipv6/teredo.mspx
I've read that; but again enterprise and ISPs may impose restrictions
on the types of traffic to/from end users, and this circumvents that.
Host-based firewalls are not the be all or end all of network security.
Adrian
have a great deal of
> pressure to move to IPv6.
In fact, and call me crazy, but I can't help but wonder how many enterprises
out there will see IPv6 and its concept of "real IPs for all machines,
internal and external!" and respond with "Hell No."
Anyone got any numbers for that? I'm happy to admit I don't. :)
Adrian
quot;stateful" bit), won't said stateful
require protocol tracking modules with similar (but not -as-) complexity
to the existing NAT modules?
Adrian
the RTP session to occur. There's
still similar room for screwing up in the firewall implementation.
There's still similar angst possible with broken stateful protocol tracking.
Anyway, this is the last post from me on this topic. Time's going to tell
whether vendors implement IPv6 NAT; since their featuresets are customer
driven, not nanog@ driven. :)
Adrian
s boggle the mind
> >
>
> Fully mobile, high speed botnets?
Lets hope the iPhone and the (probably) rush of imitators following suit
don't give this a swifter kickstart..
Adrian
ged
and controlled like they are today.
Adrian
James Jones wrote:
I am currently looking at using RouterOS as a way to build a Metro
Ethernet solution. Does anyone have experience with the device and the
OS? How is the performance? Are there any "Gotchas"?
-James
Be carefull not to crash the whole internet:
http://www.renesys.com/blog/2
On Sun, Apr 18, 2010, joel jaeggli wrote:
> my load balancer needs 16 ips for every million simultaneous
> connections, so does yours.
Only because it hasn't broken the spec further. :)
adrian
t really any analysis for worst
case scenarios and how to possibly gracefully recover from those.
(eg, I've done some NAT hacks to detect idle HTTP pconns and toss
those before tossing the others.)
Adrian
On Mon, Apr 26, 2010, Joly MacFie wrote:
> I also grabbed the list http://isoc-ny.org/wiki/Networking
>
> Thanks to all who contributed.
Please feel free to add a link to the above url in the nanog wiki.
>
> j
>
>
> On Sat, Apr 3, 2010 at 6:52 AM, Adrian Chadd wrot
ost.
> All I need to do is run a popular web site on the IPv6 Internet, and I
> get all the addresses of connected hosts I want. That
> address-space-scanning is hard is nearly irrelevant.
or troll popular IPv6 bittorent end points when that becomes popular.
Adrian
MikroTik strikes again ?
%BGP-6-ASPATH: Long AS path ... 39412 39625 39625 39625 39625 39625
39625 39625 39625 39625 39625 39625 39625 39625 39625 39625 39625
39625 39625 39625 39625 39625 39625 39625 39625 39625 39625 39625
39625 39625 39625 39625 39625 39625 39625 39625 39625 39625 39625
39625 3
t a specific function in PF). This works extremely well
That keeps per-connection state. Be aware of the repercussions!
Adrian
1 - 100 of 311 matches
Mail list logo
