etween the firewalls can block those ports. I know the ASA supports
this, because I have setup customers with "private" IP addresses on their
ASAs in certain circumstances. I'm not familiar enough with the Fortinet
equipment, but you may need to turn on a NAT-T feature.
HTH,
Fred Re
Because PPPOE comes from PPP, which was designed for dialup. You typically
don't want to leave a dialup connection up forever.
Sent from my Verizon Wireless 4G LTE smartphone
Original message
From: Joe
Date: 05/30/2013 5:11 AM (GMT-05:00)
To: NANOG
Subject: why does dail-
Canada signed the WIPO Copyright Treaty in 1997:
http://www.wipo.int/treaties/en/ShowResults.jsp?lang=en&treaty_id=16
I don't know enough about Canadian law to say whether you need to ratify
it or "accession" it before it becomes Canadian lawŠ
HTH,
On 6/5/13 7:40 PM, "Nick Khamis" wrote:
>On
It is also called a "sawtooth" or similar terms. Just google "tcp
sawtooth" and you will see many references, and images that depict the
traffic pattern.
HTH,
Fred Reimer | Secure Network Solutions Architect
Presidio | www.presidio.com <http://www.presidio.com/>
325
o
complain to when things don't work, but recent events show that it is also
easily abused. I much rather prefer the current cooperative
administration of the Internet.
Thanks,
Fred Reimer
On 6/20/13 6:39 PM, "Phil Fagan" wrote:
>at what point is the Internet a piece
nconstitutional and which they refuse the fight in court, then at
a minimum they could have said something to the effect of "no comment."
Again, this is only somewhat shocking, because I believe everyone expected
they were lying, but to see them try and cover up now is both somewhat
comi
Why should Apple care if providers have oversubscribed lines or not? As
far as I know, Akamai delivers most of the data anyway, so it is not
coming all from Apple. I don't know for sure, but I doubt they have
enough bandwidth themselves to saturate so many links concurrently. Apple
also does not
Woah there. I think you are crossing another line, or at least opening
another topic of discussion, when you start talking about transit or last
mile providers charging companies for bandwidth that their customers are
already paying for. I'd suggest a subject change if we want to open a
discussio
I certainly don't want to put words in his mouth, but I thin Warren's
problem is that he can't upgrade his pipes. Physics limits the bandwidth
available, as I think he is a satellite provider. My argument is that if
I'm a satellite user I should be well aware, particularly because this is
not a n
: Thursday, September 19, 2013 2:52 PM
To: Fred Reimer , Mikael Abrahamsson
, Paul Ferguson
Cc: NANOG
Subject: Re: iOS 7 update traffic
>My.. Our.. Users expect one thing..
>
>Internet.
>
>It is our job to make that happen. When a electronics manufacturer
>decides to enable
gt;>
Date: Thursday, September 19, 2013 5:00 PM
To: Valdis Kletnieks mailto:valdis.kletni...@vt.edu>>
Cc: Fred Reimer mailto:frei...@freimer.org>>, Mikael
Abrahamsson mailto:swm...@swm.pp.se>>, Paul Ferguson
mailto:fergdawgs...@mykolab.com>>, NANOG
mailto:nanog@nanog.org
I would need to lab it up, but assuming a MPLS core, can't you do a TE
tunnel from the source to the desired egress router?
On 10/5/13 2:43 PM, "Christopher Morrow" wrote:
>On Sat, Oct 5, 2013 at 2:08 PM, joel jaeggli wrote:
>>
>> On Oct 5, 2013, at 9:45 AM, Christopher Morrow
>> wrote:
>>
>>>
Most if not all IGPs can be configured to work without multicast. Now if
you're talking IPv6 you may have some issuesŠ
On 10/11/13 2:13 PM, "William Waites" wrote:
>On Fri, 11 Oct 2013 10:41:46 -0700, joel jaeggli said:
>
>> you take all the useful information that an IGP could be (or is)
I think they are referring to something like Cisco PBR, where you
configure routing policy statically on each hop. Yes, it can be
configured to fail over, etc, but inherently it is a management nightmare
if you are configuring PBR on each device in your network. May as well
move back to static ro
Centralized management / control plane. Kind of the reverse of widely
dispersed per-node policy based routing.
On 10/11/13 2:47 PM, "Vytautas V Grigaliunas" wrote:
>What is SDN at its essence ?
>
>
>
>> Message: 9
>> Date: Fri, 11 Oct 2013 19:13:57 +0100 (BST)
>> From: William Waites
>> To: j
same hash value,
thereby bypassing the security checks. So in this scenario rooted IOS would
only exist transiently; a reboot would load the known good code again (or
brick the box if "bad" ROMMON were burned).
Fred Reimer, CISSP, CCNP, CQS-VPN, CQS-ISS
Senior Network Engineer
Coleman Tec
This is not a crypto form, so we shouldn't get deep into the MD5 collision
debate, but I didn't say HOW there has been limited success. Sorry if the
wording of my message was not clear and implied that all you would need were
the plaintext and the hash.
Fred Reimer, CISSP, CCNP, CQS-VP
initial boot code, which would only be designed to check the boot ROM
signature and nothing else so presumably would never need to be replaced and
hence would be designed to be non-flashable.
Fred Reimer, CISSP, CCNP, CQS-VPN, CQS-ISS
Senior Network Engineer
Coleman Technologies, Inc.
954-298-1697
'd be much more
interested in any unique methods that people use to harden their systems
that have not already been widely distributed through vendor or industry
best practices.
Fred Reimer, CISSP, CCNP, CQS-VPN, CQS-ISS
Senior Network Engineer
Coleman Technologies, Inc.
954-298-1697
> -Origi
Yea, an hour and a half ago the PS3 80G bundle with Metal Gear Solid 4 was
opened up for pre-purchase.
;-)
Fred Reimer, CISSP, CCNP, CQS-VPN, CQS-ISS
Senior Network Engineer
Coleman Technologies, Inc.
954-298-1697
-Original Message-
From: Scott Weeks [mailto:[EMAIL PROTECTED]
Sent
The actual headers returned are:
Server: NS_6.1
Content-Length: 62
Connection: close
503 Service Unavailable
Fred Reimer, CISSP, CCNP, CQS-VPN, CQS-ISS
Senior Network Engineer
Coleman Technologies, Inc.
954-298-1697
-Original Message-
From: Bjorn Townsend [mailto:[EMAIL PROTECTED
21 matches
Mail list logo
