.)
Been there, done that...Stuck on Fios with no IPv6. Ran into rather
"interesting" problems with various streaming services with IPv6 configured.
Matthew Huff | Director of Technical Operations | OTA Management LLC
Office: 914-460-
Reminds me of something that happened about 25 years ago when an elementary
school visited our data center of the insurance company where I worked. One of
our operators strategically positioned himself between the kids and the
mainframe, leaned back and hit it's EPO button.
Matthew
out and be onsite within 12 hours. We
were down for 3 days, and got fined $250,000 by the insurance regulators since
we couldn’t pay claims.
Matthew Huff | Director of Technical Operations | OTA Management LLC
Office: 914-460-4039
mh...@ox.com<mailto:mh...@ox.com> | www.ox.com<http://w
Arghh...
Just an FYI, id.cisco.com is fubar'ed. Hopefully cisco has already fixed it and
the proxies/caches/cdns just need to timeout, but just in case anyone knows a
contact at Cisco's ops group...
[cid:image001.png@01D8309A.75491410]
Matthew Huff | Director of Technical Operat
stops. When the tragedy
happens again, and it will, they will end up undoing this again...
History repeats itself, first as a tragedy, then as a farce...
Matthew Huff | Director of Technical Operations | OTA Management LLC
Office: 914-460-4039
mh...@ox.com | www.o
and others.
Based on my experience and people on tech mailing list that are oriented toward
enterprises, I would bet that IPv6 deployment (with global addresses) is
significantly less than 10% nor is it on their horizon.
Matthew Huff | Director of Technical Operations | OTA Management LLC
Good to know. I’ll keep a look out for future implantations. Currently we are
using Cisco 3548P-XL switches with low-latency nat to support microsecond
latency natting. Hopefully someday they will support it.
Matthew Huff | Director of Technical Operations | OTA Management LLC
Office: 914-460
I grew up in rural Texas where my mother still lives. She has adequate speed
internet, the biggest issue is reliability. The whole town (there is only 1
provider) has an outage for about an hour every week. Two weeks ago, there was
no internet for 3 days. Cellular service is 4G and not even that
Still no IPv6 in Westchester County, NY ☹
Great sign though, maybe NY will get it eventually
From: NANOG On Behalf Of Joe Loiacono
Sent: Monday, June 13, 2022 10:55 AM
To: nanog@nanog.org
Subject: Re: Congrats to AS701
FiOS from Maryland (anonymized):
enp3s0: flags=4163 mtu 1500
inet
From my limited vantage point it appears that there is some issue between
Verizon & Baidu. Baidu has 182.61.0.0/16 registered, but is only advertising
pieces of it globally (or at least from what I can see). In our tables,we are
receiving none from Verizon of the subnets that are advertised dir
True,
But it's hard enough to get developers to understand the need to code for 61
seconds in a minute, and now they would need to code for 59 seconds as well.
If time systems simply skewed the time so that 60 seconds actually just took 61
seconds or 59 seconds, there would be other issues, bu
Also, for data center traffic, especially real-time market data and other UDP
multicast traffic, micro-bursting is one of the biggest issues especially as
you scale out your backbone. We have two 100GB switches, and have to distribute
the traffic over a LACL link with 4 different 100GB ports on
switch-core1# sh forwarding route x.x.x.x
slot 1
===
IPv4 routes for table default/base
--+-+--+-+-
Prefix| Next-hop| Interface
SFlow misconfiguration or bug on either the nexus or the sflow monitor? On the
monitor, can you verify that the snmp interfaces are mapped to the correct ones
on the nexus?
From: Mike Hammett
Sent: Monday, April 3, 2023 8:47 AM
To: Matthew Huff
Cc: NANOG
Subject: Re: Cisco Nexus 3k Route
clauses:
ipv6 address prefix-lists: prefix_ipv6_static_to_eigrp
Set clauses:
From: Mike Hammett
Sent: Monday, April 3, 2023 9:00 AM
To: Matthew Huff
Cc: NANOG
Subject: Re: Cisco Nexus 3k Route Selection\Packet Forwarding Debugging
It could be an sFlow bug, but I come at this from a
We got reports on that on some cloudflare sites, but it disappeared pretty
quickly. Looks like a CDN issue.
-Original Message-
From: NANOG On Behalf Of Stephen Satchell
Sent: Tuesday, July 2, 2019 10:17 AM
To: nanog@nanog.org
Subject: Intermittent "bad gateway"
Are we having another BGP
>From a corporate standpoint, this is exactly correct. There are also some
>regulatory issues involved (FINRA, SEC, etc...)
We are required to block access to web based email (gmail, etc...) in our
corporate network (please don't ask why, ours is not to reason why...), so
every method to "bypas
Any recommendations to keep track of different SFP and keep them organized? Any
storage boxes / trays designed for SFPs?
It’s not about optimization, it’s about the contract with the content
providers. The agreement is to restrict content by geographical regions mainly
for marketing purposes. They block VPN access to keep people from bypassing
those restrictions. It’s true of all the streaming providers.
> On Nov
are seeing for our
prefixes?
129.77.0.0/16
2620:0:2810::/48
We should be advertised via AS6128 and AS46887
----
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
OTA Management LLC | Phone: 914-460-4039
aim: matthewbhuff | Fax: 914-694-5669
11:39 AM
> To: Matthew Huff
> Cc: nanog@nanog.org
> Subject: Re: Need BGP route check
>
> $ telnet route-views.oregon-ix.net
> Username: rviews
>
> $ show ip bgp paths 14607
>
> might help
>
> /kc
>
>
> On Fri, May 20, 2016 at 03:31:48PM +,
am guessing that 46887 might be set with a community to not export our IPv4
prefixes except to direct peers? Anyone directly peered with 46887 that could
see the community for 129.77.0.0/16 and verify?
----
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 1057
I would imagine it was done on purpose. The purpose of the Netflix VPN
detection was to block users from outside of different regions due to content
providers requests. Since HE provides free ipv6 tunnels, it's an easy way to
get around the blockage, hence the restriction.
Matthew
ir currently is
no practical way of providing GEOIP information about that users that the
content providers require.
----
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
OTA Management LLC | Phone: 914-460-4039
aim: matthewbhuff | Fax:
number of users they would impact
would never make it worth their wile.
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
OTA Management LLC | Phone: 914-460-4039
aim: matthewbhuff| Fax: 914-694-5669
From: Scott Morizot [mailto:tmori
ve
> any evidence to back up this claim?
>
> Actual evidence vs. just a very good educated guess and speculation could
> prove very useful in this circumstance.
>
> Owen
>
>> On Jun 6, 2016, at 7:59 AM, Matthew Huff wrote:
>>
>> Netflix IS acting in
but
until someone comes up with a better idea and gets it implemented ( one that
can't be modified by the end user), people with a business model that depends
on it will continue to block based on IP. "Good faith" will be laughed at, and
rightly so.
Matthew Huff
NetFlix.
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
OTA Management LLC | Phone: 914-460-4039
aim: matthewbhuff| Fax: 914-694-5669
From: Spencer Ryan [mailto:sr...@arbor.net]
Sent: Wednesday, June 8, 2016 4:02 PM
To: Tony Hain
Cc
What does https://www.maxmind.com/en/geoip-demo show for your IPv6 prefix? If
it is incorrect, try https://support.maxmind.com/geoip-data-correction-request/
On Jun 8, 2016, at 5:08 PM, Chris Knipe wrote:
>
> Exactly.
>
> So what precisely are the metrics they use to block? I'm not using a pr
GeoIP into maxmind's
database, etc..., I don't know how well it would work, but it would probably be
the best bet.
----
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
OTA Management LLC | Phone: 914-460-4039
aim: matthewbhuff
Your correct. I misread your email. Not enough blood in my caffeine stream yet.
I think your idea of a button and/or a daily/weekly update to maxmind based on
the source IPv4 address would be a good idea regardless of Netflix.
Matthew Huff | 1 Manhattanville Rd
Director of
We saw a slight uptick in routes today (at least since the last time I looked),
but a large number of route flaps coming out of the APNIC region. Anyone else
notice anything?
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
went belly up, but other than that, no other apparent leap
second issues.
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
OTA Management LLC | Phone: 914-460-4039
aim: matthewbhuff | Fax: 914-694-5669
The reason for allocating a /64 for a point to point link is due to various
denial of service attack vectors. Just do it. The numbers in IPv6 are
staggering. The generally accepted best practice is to allocate a /64 and use a
/128 within that /64 for point to point links.
Matthew Huff
7 4:56 PM
> To: Matthew Huff
> Cc: Michael Still ; nanog@nanog.org
> Subject: Re: Questions on IPv6 deployment
>
> On Tue, Jan 17, 2017 at 4:07 PM, Matthew Huff wrote:
> > The reason for allocating a /64 for a point to point link is due to
> various denial of service attack v
If anyone is looking for a product that is reasonably priced and is still being
produced/update, the ADVA Optical (aka MRV, aka Xyplex) console servers still
work great
https://www.advaoptical.com/en/products/network-infrastructure-assurance/lx-series
From their specs:
4, 8, 16, 32 and 48 seria
I received it on my iPhone XS Max running iOS 12.0 with AT&T, wifi calling
off...
----
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
OTA Management LLC | Phone: 914-460-4039
-Original Message-
From: NANOG [mailto:nanog-
packets
1 firewall (10.1.1.1) 0.675 ms 0.347 ms 0.322 ms
2 media-router-fp2.prod1.media.vip.bf1.yahoo.com (72.30.35.10) 2.456 ms
21.139 ms 12.834 ms
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
OTA Management LLC | Phone: 914-460
ution shortly.
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
OTA Management LLC | Phone: 914-460-4039
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Yang Yu
Sent: Friday, December 28, 2018 6:23
We have two stratum-1 servers synced with GPS and a PTP feed from a provider
that also provides PTP to market data systems, but we still have to monitor
drift between system time and NIST time. Don't ask for the logic behind it,
it's a regulation, not a technical requirement.
----
Ma
.
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
OTA Management LLC | Phone: 914-460-4039
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Stephen Satchell
Sent: Saturday, December 29, 2018 10:01 AM
To: nanog
We use an older model of
https://www.microsemi.com/product-directory/enterprise-network-time-servers/4117-syncserver-s600
with rubidium oscillator. Not cheap, but hardened and extremely accurate.
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
Regulatory.
If we were to lose the GPS signal (antenna failure, etc...) then our stratum 1
time sources wouldn't drift as much and as quickly. For telco and general
usage, the cost may not be worthwhile, but when you have auditors looking over
your shoulder
Matthew
irements due to a short GPS
outage, makes this a no-brainer.
----
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
OTA Management LLC | Phone: 914-460-4039
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of
This weekend our uninterruptible power supply became interruptible and we lost
all circuits. While I was doing initial debugging of the problem while I waited
on site power verification, I noticed that there was still paths being shown in
rviews for the circuit that were down. This was over an h
It appears that Reliance Globalcom (AS6157) added an RADB entry for our prefix
(129.77.0.0/16) when we were a peer of theirs years ago, and it was never
removed when we ended the relationship. We are ASN 14607.
I've reached out to their support, but does anyone have a suggestion on how I
could
.
From: on behalf of Christopher Morrow
Date: Wednesday, September 13, 2017 at 10:58 AM
To: Matthew Huff
Cc: nanog2
Subject: Re: Reliability of looking glass sites / rviews
On Wed, Sep 13, 2017 at 5:30 AM, Matthew Huff
mailto:mh...@ox.com>> wrote:
This weekend our uninterruptible power
pathid: 0, tx pathid: 0x0
From: Tim Evens [mailto:t...@snas.io]
Sent: Friday, September 15, 2017 10:45 AM
To: Matthew Huff
Cc: morrowc.li...@gmail.com; nanog@nanog.org
Subject: Re: FW: Reliability of looking glass sites / rviews
You didn't mention details about which ASN or prefixes you
pment project
2) Opensource or low cost
3) SNMP MIB compiler
Any suggestions?
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
OTA Management LLC | Phone: 914-460-4039
Oh hell yes, there isn’t anything simple about SNMP. A number of people have
very quickly suggested SNMPTT, which is the sort of product I was looking for.
My google foo had failed me. Thanks.
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
OTA
Anyone have any recommendations for a 16-17" LCD keyboard/mouse combo pull-out
tray that supports DisplayPort/USB as an input?
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
OTA Management LLC | Phone: 914-460-4039
happening? Any suggestions on
whom we should contact?
----
Matthew Huff | One Manhattanville Rd
OTA Management LLC | Purchase, NY 10577
http://www.ox.com | Phone: 914-460-4039
aim: matthewbhuff | Fax: 914-460-4139
<>
Our system is PRI based, not sip.
Matthew Huff | One Manhattanville Rd
OTA Management LLC | Purchase, NY 10577
http://www.ox.com | Phone: 914-460-4039
aim: matthewbhuff | Fax: 914-460-4139
> -Original Message-
> From: wher...@gmail.com [mailto:wher...@gmail.c
100% sure that we
are makign the harrasing calls.
Just wanted nanog to be aware of this since the only two numbers that this has
happened with are the ones in our ARIN whois records.
----
Matthew Huff | One Manhattanville Rd
OTA Management LLC | Purchase, NY 10577
http://www.ox.com |
have two Symmetricom Stratum 1 time servers synced via GPS with Rubidium
oscillators, and two RHEL 6 servers running ntpd for our 4 servers.
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
OTA Management LLC | Phone: 914-460-4039
cluding traffic
engineering and network information hiding. Most of the partners on the other
side of the extranet have very tight ACLs. If we were to need to change our
source IP, it would take a miracle to get it changed on their side short of 3-4
weeks. That's the world some people live in.
S 174] 80 msec
15 63.251.160.18 [AS 14744] 76 msec 76 msec 72 msec
16 * * *
17 * * *
18 * * *
19 * * *
20 * * *
21 * * *
22 * * *
23 * * *
24 * * *
25 * * *
26 * * *
27 * * *
28 * * *
29 * * *
30 * * *
----
Mat
ching out to them as well.
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
OTA Management LLC | Phone: 914-460-4039
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Matthew Huff
Sent: Tuesday, May 2
Doesn't surprise me at all. Another thing I've seen lately is number of
software (especially system management software) after being certified/tested
with IPv6 no longer function when IPv6 is enabled. At least one vendor that
broke IPv6 with a recent patch told me they only tested it once for IP
Another couple of reasons to use a delayed transition ATS:
1) Motor lock. Delays on HVAC equipment never get triggered if the system never
goes offline. Having a correct "open" period allows the motors to spin down,
and start back up on the delays that are programmed keeping them from being
syn
It's called Microsoft Exchange ActiveSync :)
It works with Android, Apple and Microsoft devices. I believe both Lotus and
Groupwise have licensed and support it as well. We have a few (but now, very
few) blackberry users remaining. They won't let it go until we rip it out of
their hands.
>
Also,
Most enterprises that support Exchange remote access use RPC over HTTPS which
is encrypted and easy to allow on the firewall.
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
OTA Management LLC | Phone: 914-460-4039
aim: matthewbhuff
About 10 minutes ago we stopped being able to pass traffic through cogent. I
de-peered us from Cogent, and everything appears
better. When I call cogent, all I get is a busy signal (must be a major
outage). Anyone else seeing anything?
Matthew Huff | 1 Manhattanville Rd
We are peered in Westchester Co, NY (north of NYC). Reports from
status.cogentco.com suggest a problem in NYC. I wonder if it's
related to the 75 Broad Street explosion this morning. According to Cogent
status, they are running on generator.
Matthew Huff | 1 Manhattanvil
I'm seeing the same thing from my home lan via fios. I've run a recursive dns
server for years and can't reach the roots. Had to switch to using verizon's
dns servers as forwarders.
Sent from my iPad
On Dec 11, 2011, at 8:07 PM, "Brandon Kim" wrote:
>
> I too am now experiencing issues. I c
Consumer fios. Verizon forums are full of posts about it. Too tired this
evening to worry about it.
Sent from my iPad
On Dec 11, 2011, at 10:48 PM, "Christopher Morrow"
wrote:
> On Sun, Dec 11, 2011 at 10:28 PM, Matthew Huff wrote:
>> I'm seeing the same thing f
ssues, others are going through the standard script (reboot router,
reboot ONT, check settings on browser, i.e. clueless, even to the point of
saying that the person's router is bad and they would send them a new one).
----
Matthew Huff | 1 Manhattanville Rd
Director of Operations
, but previous
versions don't.
I wonder if someone has a list comparing root certificate support across
platforms?
----
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
OTA Management LLC | Phone: 914-460-4039
aim: matthewbhuff | Fax: 91
fix it (we are upgrading it for
other reasons).
For example:
int vlan110
standby 110 ipv6 FE80::1
standby 110 timers msec 250 msec 750
standby 110 priority 110
standby 110 preempt delay minimum 180
----
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
as well. However, their idea is to
>rid the world of the secondary market of used games.
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
OTA Management LLC | Phone: 914-460-4039
aim: matthewbhuff | Fax: 914-460-4139
> -Origi
We use MRV, and are very happy with them:
http://www.mrv.com/oobn/console-servers/
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
OTA Management LLC | Phone: 914-460-4039
aim: matthewbhuff | Fax: 914-460-4139
> -Origi
Anyone else see a massive increase of scanning/dos with TCP source and/or
dst port of 0? We started seeing a massive increase today creating some
issue with our firewalls.
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
OTA Management
ur network with the following specs:..."
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
OTA Management LLC | Phone: 914-460-4039
aim: matthewbhuff | Fax: 914-460-4139
Of course, we declined. I just thought it was worth posting so others might be
alerted that this was going on.
Hadn't known about the google page ranking SEO, but it makes sense
On Mar 8, 2012, at 8:06 PM, "George Michaelson" wrote:
>
> no. you misunderstand.
>
> The value proposition is not
5.x
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
OTA Management LLC | Phone: 914-460-4039
aim: matthewbhuff | Fax: 914-460-4139
> -Original Message-
> From: Anurag Bhatia [mailto:m...@anuragbhatia.com]
> Sen
>> An L2 device should not be fragmenting L3 packets.
Layer 2 fragmentation used (20+ years ago) to be a common thing with bridged
topologies like token-ring to Ethernet source-routing. Obviously, no so much
anymore (at least I hope not), but it can and does happen.
I think part of the problem
ivate business" can
handle it better.
----
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
OTA Management LLC | Phone: 914-460-4039
aim: matthewbhuff | Fax: 914-460-4139
> -Original Message-
> From: jeff murp
By any chance were you querying a Sup32 that had BGP full routes? That and
other large tables can easily swamp the cpu on the Sup32.
This technote is based on IOS, and I don't know if the same facilities exist in
CatOS, but as Nick mentioned, run, don't walk and convert to IOS. CatOS is dead.
h
I'm looking to have some equipment (2 x HP C7000 blade chassis ( each with 16
blades), 2 x Cisco 7600, and some small misc equipment) from a datacenter in
Mahwah, NJ to Secaucus, NJ. Anyone recommend someone?
BGPMon has been sending out alerts this morning starting around 15:14 UTC about
our 129.77.0.0/16 prefix. None of our BGP peers have flapped, and according to
the alert, it appears limited to:
Netherlands
Sweden
Kuwait
Italy
United Kingdom
Russia
Liechtenstein
I haven't seen anything on nanog o
The advantage of SMS is that it is out of band. Any smtp or other IP based
solution requires a stable and working network environment, which is what the
alert may be trying to tell you is down.
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
ing
Cogent. We were getting 5-10% packet loss (although the Cisco stats didn't show
it), and it was choking on it.
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
OTA Management LLC | Phone: 914-460-4039
aim: matthewbhuff |
providers really have a hold of the FCC.
----
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
OTA Management LLC | Phone: 914-460-4039
aim: matthewbhuff | Fax: 914-694-5669
-Original Message-
From: NANOG [mailto:nanog-boun...@nan
If your users are all using the latest models... great
We still have people using flip phones...
We had to shut down our legacy signal booster when a provider sent us a cease
and desist letter. We are still looking for a replacement solution that meets
the new code.
Matthew Huff
using, but the vendor
is slow to provide the patch.
There is a huge difference in what is good network/security designs between
content providers, transit networks, eyeball networks, corporate networks,
universities, etc... One size doesn't fit all.
----
Matthew Huff | 1 Manh
strongly support my competitors following your
advice.
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
OTA Management LLC | Phone: 914-460-4039
aim: matthewbhuff | Fax: 914-694-5669
-Original Message-
From: NANOG [mailto:nan
pending on what protocol you are using, it can be an issue or not. Our end
users on eyeball networks had difficulty maintaining VPN connections. We had to
drop our Cogent upstream and work with our remaining upstream provides to
traffic engineer around Cogent. YMMV.
----
Matthew Huff
There is also the problem with multi-homed customers where Cogent is in the
mix. The dropped packets at Cogent's peering points to eyeball networks break
certain protocols that are packet loss sensitive (VoIP, IPSEC, etc...).
Matthew Huff | 1 Manhattanville Rd
Direct
Yes,
SLAAC by default provides the address and default gateway (RA)
If SLAAC managed flag is set, then DHCPv6 is used get the address and other
configs (DNS, etc..)
If SLAAC other flag is set, then SLAAC provides the address, and uses DHCPv6
to get the other configs (DNS, etc..)
With SLAAC a
Hey!
New message, please read <http://gamingprogrammers.com/less.php?u2tj>
Matthew Huff
According to AT&T sales, the Netgear Beam is a "data-only" device and cannot
send SMS when I just tried to order one. I wouldn't care what they thought, but
they won't let me set up a plan that includes text. Anyone have any suggestions?
Matthew Huff
. If you suggest a carrier, what magic words do I
need to speak to have them order the right thing?
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
OTA Management LLC | Phone: 914-460-4039
aim: matthewbhuff | Fax: 914-694-5669
Starting around 7:17 am EST, we lost our IPv4 & IPv6 BGP connections to Cymru.
We have two connections in both IPv4 and IPv6 on both of our two routers. On
each router one connection is stuck in active, the other providing 0 prefixes.
I can’t get to http://www.team-cymru.org from either work or
* * *
8 * * *
9 * * *
10 * * *
11 * * *
12 * * *
13 * * *
14 * * *
15 * * *
16 * * *
17 * * *
18 * * *
19 * * *
20 * * *
21 * * *
22 * * *
23 * * *
24 * * *
25 * * *
26 * * *
27 * * *
28 * * *
29 * * *
30 * * *
On Jan 31, 2016, at 11:44 AM, Matthew Huff m
web access and even streaming video, with buffers, this might not be an
issue. But for corporate use with VOIP and/or VPNs, it was a killer. We had to
cancel our Cogent service and work with our remaining providers to
de-preference Cogent completely.
Matthew Huff | 1
es at various peering points as has been
reported in this and other mailing lists recently. Like I said, if VOIP and VPN
aren't an issue, go ahead and use cogent. But if packet loss makes your access
useless, then avoid them if it all possible. YMMV.
----
Matthew Huff | 1 Manhatt
on.
From my experience VPN software (both IPSEC and SSLVPN) are very susceptible to
high packet loss issues. A few retransmissions/out of order/dropped packets
aren't a problem. A sustained drop rate of 5-10% is a major issue.
----
Matthew Huff | 1 Manhattanville Rd
Directo
Given the size and that the data is stored in encrypted RAR files, I wonder if
they just busted a Usenet service provider rather than a P2P / file sharing
site.
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
OTA Management LLC | Phone
or doorknob twisting wouldn't be useful from the attacker if the
traffic doesn't return to them, so what gives?
BTW, we are in the ARIN region, the report came out of the RIPE region.
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
OTA Managem
, "Roland Dobbins" wrote:
>
>On 11 Mar 2015, at 6:40, Matthew Huff wrote:
>
>> I assume the source address was spoofed, but this leads to my
>> question. Since the person that submitted the report didn't mention a
>> high packet rate (it was on ssh port 22),
1 - 100 of 185 matches
Mail list logo
