Sorry to invoke the NANOG pager this way, but:
This pertains to F-Root operations at my day job with isc.org, in both the
US and Europe markets.
Feel free to use dmahoney at isc.org instead of this, my personal email.
Best (and stay safe),
-Dan Mahoney
--
Dan Mahoney
Techie
I've been seeing a long thread about why ipv6 adoption isn't there yet.
This is half a "paging someone with clue" post and half a "...really,
guys?" Picard-facepalm post.
I just (earlier this week) had to disable ipv6 outbound on one of
$dayjob's MX servers, because Gmail, who hosts nanog.org,
On Sun, 3 Apr 2022, Niels Bakker wrote:
I also run my own mail server. I had to firewall off Google's MXes for this
exact reason: silent and not-so-silent email rejection when offered over
IPv6.
Every now and then they rotate their IP addresses, which causes mail to get
dropped for a while.
On Sun, 3 Apr 2022, Jeroen Massar wrote:
Hi Dan,
Hope the rest of the world is treating you decently!
There are a lot of bits and bobs that one has to get right for mail to flow,
amongst which:
- IP -> PTR lookup -> that hostname lookup, and match to IP again
(https://en.wikipedia.org/wiki
On Sat, 2 Apr 2022, Michael Thomas wrote:
On 4/2/22 6:21 PM, John Levine wrote:
It appears that Michael Thomas said:
I'll be eager to see the papers substantiating this. Until then I remain
completely skeptical. It's an experimental RFC for a reason. Let's see the
data.
ARC is not menti
On Mon, 4 Apr 2022, Bjørn Mork wrote:
"John Levine" writes:
It appears that Michael Thomas said:
On 4/3/22 12:12 PM, Bjørn Mork wrote:
On a slightly related subject... This DKIM failure surprised me, but at
least I verified that many NANOG subscribers have mailservers returning
DMARC failu
On Tue, 5 Apr 2022, Job Snijders via NANOG wrote:
I think all of us recognize a need to declaw "third party" IRR databases
like RADB and ALTDB ("declawing" meaning that it is not desirable that
anyone can just register *anything*); on the other hand our community
also has to be cognizant about t
On Mon, 4 Apr 2022, Jon Lewis wrote:
On Mon, 4 Apr 2022, Dan Mahoney (Gushi) wrote:
As one datapoint, two tiny /24's I (not-dayjob) originate are legacy
resources. They cannot be added to either RPKI or the ARIN IRR objects
without endeavoring to spend an
at-least-this-much-money-
On Tue, 5 Apr 2022, John Curran wrote:
On 4 Apr 2022, at 9:52 PM, Jon Lewis wrote:
...
I guess this legacy IP space, which is probably visible in ARIN's whois DB, but
for which they provide no additional services unless you sign a LRSA and are
then on the hook for annual membership fees?
On Tue, 5 Apr 2022, Owen DeLong wrote:
On Apr 4, 2022, at 17:40 , John Curran wrote:
On 4 Apr 2022, at 7:42 PM, Dan Mahoney (Gushi)
wrote:
Ironically, to find the way forward, ARIN would require incorporation,
the signing of a RSA, and Moar Money for this same
On Tue, 5 Apr 2022, Owen DeLong via NANOG wrote:
Of course there's an argument that say "mom and pop should not run
their own mailserver, there are professionals for that!" but at the end
of the day what this really serves is deliberate and pre-mediated
centralisation, slowly but steadily stam
All,
The dayjob has a LOT of ASes (we peer with a unique AS per-site), so our
IRR entries are kind of a lot. When "email templates" was the only way to
do things, this was really annoying to update and maintain.
I will say that having RPKI roas for the correct ASes for all of our
entries ha
All,
Dayjob uses RADB mainly but would like for authority purposes to put some
things in ARIN.
I've had an ARIN help desk ticket in for a couple days, and would like to
move to letting our IPAM files be the source of truth and push everything
in via the API, but I'm finding a few things about
Hey there.
I hate that I only use NANOG for this, but it seems right now
that my day job can't add an additional nameserver to our NS-set.
There's no email support or ticket system, and I've been told several
untrue things about how the DNS and SRS work in text-based chat, and I
Need An Adul
All,
Just to let people know via this list:
As of DNS-OARC 27 (where the change was done live) ISC's DLV Registry has
now been replaced with a signed empty zone (SOA/NS/A/TXT/DNSKEY/RRSIG),
which will be auto-re-signed with the same keys for the forseeable future.
The IP address for the old DLV
On Wed, 18 Dec 2024, Dan Mahoney wrote:
Hey there,
Dayjob recently got a report from complia...@tucows.com alleging that an old,
historic bind9.tar.gz.asc (a plain-text checksum file) on ftp.isc.org is
malware. It’s not. It’s a false positive.
Additionally, the URL they sent to vew the rep
16 matches
Mail list logo
