Pardon my ignorance here but what does Comcast do for the NANOG community?
I know they attend many conferences and share their experiences with a lot
of us which is very much appreciated...
Just asking ;)
-Original Message-
From: Backdoor Parrot [mailto:backdoorpar...@hotmail.com]
Sent:
ccusation without there being /any
/supporting evidence, as far as I can see, that the graphs are anything
to do with Comcast. I fear we're likely to see the same results from
these IRC logs.
All we're ending up with is what is mostly hearsay being treated as facts.
Paul
>
>
>
>
-BEGIN PGP SIGNATURE-
Version: PGP Desktop 9.5.3 (Build 5003)
wj8DBQFNDlQ5q1pz9mNUZTMRAn5XAKC0O3ZNO51bnAX7D99SRRqR04QIQQCfZDwH
dQN8fG2TYk6RUFYplRAiHDE=
=em1c
-END PGP SIGNATURE-
--
"Fergie", a.k.a. Paul Ferguson
Engineering Architecture for the Internet
fergdawgster(at)gmail.com
ferg's tech blog: http://fergdawg.blogspot.com/
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Sun, Dec 19, 2010 at 12:29 PM, Simon Waters wrote:
> On 19/12/10 18:51, Paul Ferguson wrote:
>> Not for nothing, but Spamhaus wasn't the only organization to warn about
>> Heihachi:
>>
>> http://blog.trendmi
On 20/12/10 21:29, Jim Mercer wrote:
now, can anyone suggest a source for SDSL links, for private networks in the
UK?
There are a number of network operators capable of supplying SDSL (Annex
B) in the UK depending on the location.
There are a chose of operators with their own DSLANs at the t
An old classic, but maybe it will help put everyone in the holiday spirit.
The Twelve Days of NYIIX
On the first day of Christmas, NYIIX gave to me,
A BPDU from someone's spanning tree.
On the second day of Christmas, NYIIX gave to me,
Two forwarding lo
nodes whilst the supernodes are
fixed.
Paul
IN PGP SIGNATURE-
Version: PGP Desktop 9.5.3 (Build 5003)
wj8DBQFNJWVcq1pz9mNUZTMRAtimAJ4xWmqbP4Or5KFnonDW8XtOMMvMjgCcCswk
9JDJXNyDgUV4RnZlfDcBges=
=KKZ+
-END PGP SIGNATURE-
--
"Fergie", a.k.a. Paul Ferguson
Engineering Architecture for the Internet
fergdawgster(at)gmail.com
ferg's tech blog: http://fergdawg.blogspot.com/
ld 5003)
wj8DBQFNJXTUq1pz9mNUZTMRAs9BAKDh1N+BJFgmbROPSIOf+rM5v+Ol1ACbBfcr
qXiMOvfkjLtTaQX55I+Sc2U=
=aFv3
-END PGP SIGNATURE-
--
"Fergie", a.k.a. Paul Ferguson
Engineering Architecture for the Internet
fergdawgster(at)gmail.com
ferg's tech blog: http://fergdawg.blogspot.com/
.
Much thanks,
Eric & Paul
----
Paul Scanlon
Arbor Networks
+1.303.477.0919 office
+1.303.810.7260 mobile
ity wanted arin to run SIGs or WGs
on things like routing policy arin could do it but that a lot of folks would
say that's mission creep and that it would be arin poaching on nanog lands.
--
Paul Vixie
Chairman and Chief Scientist, ISC
Trustee, ARIN
have specific questions which were
not answered by john's response or which were raised by john's response you
should ask them. saying "i heard a rumour, would anyone care to refute it?"
is not going to move the conversational line of scrimmage at all.
paul
> From: David Conrad
> Date: Fri, 7 Jan 2011 21:01:52 -1000
>
> > do you have a specific proposal? i've noted in the past that arin tries
> > hard to stick to its knitting, which is allocation and allocation policy.
>
> Yes. This is a positive (IMHO), however it seems that occasionally,
> ARIN's
> From: David Conrad
> Date: Fri, 7 Jan 2011 23:11:32 -1000
>
> On Jan 7, 2011, at 10:24 PM, Paul Vixie wrote:
> > the price of changing what ARIN does is, at a minimum: participation.
>
> Another view is that ARIN's whole and sole reason for being is to
>
> Date: Sat, 08 Jan 2011 18:17:55 +0900
> From: Randy Bush
>
> let me be a bit more clear on this
thanks.
> o you affect the operational community, you talk with (not to) the
> operational community where the operational community talks
i think arin does this today. certainly that is th
Cisco shop here that is avidly converting to Juniper.
Paul
-Original Message-
From: Brandon Kim [mailto:brandon@brandontek.com]
Sent: Monday, January 10, 2011 10:32 AM
To: nanog group
Subject: Is Cisco equpiment de facto for you?
Hello gents:
I wanted to put this out there
Without NAT, you're unpatched PC will get infected in less than 1 minute.
Cheers,
- - ferg
-BEGIN PGP SIGNATURE-
Version: PGP Desktop 9.5.3 (Build 5003)
wj8DBQFNLf8gq1pz9mNUZTMRAjduAJ4w7az13wwn1zsze0DoLTRvOajxxQCgmWMG
ZckeFBpLWyoqG/g9iD2cKIk=
=yYof
-END PGP SIGNATURE-
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Wed, Jan 12, 2011 at 1:18 PM, wrote:
> On Wed, 12 Jan 2011 11:21:24 PST, Paul Ferguson said:
>
>> Try this at home, with/without NAT:
>>
>> 1. Buy a new PC with Windows installed
>> 2. Install all security p
that may or may not be relevant.
- - ferg
-BEGIN PGP SIGNATURE-
Version: PGP Desktop 9.5.3 (Build 5003)
wj8DBQFNLhzuq1pz9mNUZTMRAgN0AJ4hrUq0qSfLLNMWq6RAXleb8bya2ACglxTU
tT/sP0oVu89WeWrG6XodcKU=
=+pa8
-END PGP SIGNATURE-
--
"Fergie", a.k.a. Paul Ferguson
Engineer
c.com/netlinx-blog/45-dns/118-introduction-to-anycast-dns.html
Paul
in). I know there's not always a good vs bad
here but looking for opinions from folks who may have already done this
comparison for a "boardroom discussion"
Thanks ;)
Paul
I may be dense, networking isn't my primary field (sysadmin).. but isn't
ICMP there for a good reason? I.e. congestion control? I've always
argued vehemently with PCI-DSS and similar auditors that I will not
filter /all/ ICMP traffic on the border.
Paul
On 1/25/2011 7:20 PM
ne to hit me offlist if they are interested in the
feedback received so far...
Thanks folks,
Paul
usage per customer...
Today, they have no interest nor can they get IPv6 which is a shame
having said that, we want to provide a solution to them than can do IPv6 in
the future...
Thanks,
Paul
-Original Message-
From: Miquel van Smoorenburg [mailto:mik...@xs4all.net]
Sent: Wednesday,
ardly at all).
No, we're not putting ERX's at people's homes ... not sure where you got
that from? What I was saying is that if you're running PPPOE then you have
have somewhere in the service provider network to "terminate" the
sessions
Paul
o the chairs cc'd.
Looking forward to seeing you in Miami.
Best,
Paul
On Jan 6, 2011, at 6:01 PM, Scanlon, Paul wrote:
> Hi All,
>
> Happy New Year.
>
> NANOG 51 in Miami is rapidly approaching, January 30 - February 2, and we are
> looking for topics for the ISP Secur
mind that there are who knows how many people who have read it already
and now have the wrong idea, as long as it's correct now, right?
Paul
On 01/27/2011 10:26 AM, Mark Keymer wrote:
What I don't understand is I can only guess they must have a IT team.
And Maybe even 1 or more p
I'd suspect it's got a lot more to do with the open rioting on the
streets, government shooting people, the numbers involved in protests,
what happened in Tunisia next door etc. etc. Loss of Internet
connectivity is relatively minor in comparison.
Any investor with even half a brain is going to
r+vU=
=SRH3
-END PGP SIGNATURE-
--
"Fergie", a.k.a. Paul Ferguson
Engineering Architecture for the Internet
fergdawgster(at)gmail.com
ferg's tech blog: http://fergdawg.blogspot.com/
--END PGP SIGNATURE-
--
"Fergie", a.k.a. Paul Ferguson
Engineering Architecture for the Internet
fergdawgster(at)gmail.com
ferg's tech blog: http://fergdawg.blogspot.com/
R6XVmOwCdGV/i
VzTaxnJQOPVqyY2bP8ZraDA=
=daOC
-END PGP SIGNATURE-
--
"Fergie", a.k.a. Paul Ferguson
Engineering Architecture for the Internet
fergdawgster(at)gmail.com
ferg's tech blog: http://fergdawg.blogspot.com/
nce he needs on this question. i
hope to see many of you at the upcoming ARIN public policy meeting in
san juan PR where this is sure to be discussed both at the podium and in
the hallways and bar rooms.
Paul Vixie
Chairman and Chief Scientist, ISC
Member, ARIN BoT
if so what mode to deploy in. on the ARIN BoT i
have likewise been very interested in and supportive of RPKI and i'm
happy to repeat john curran's words which were, ARIN is looking at the
risks and benefits of various RPKI deployment scenarios, and we expect
to do more public and member outrea
11
> changed:hm-chan...@apnic.net 20081205
> changed:hm-chan...@apnic.net 20101217
> source: APNIC
>
> My apologies for any confusion.
>
> Owen
>
>
-BEGIN PGP SIGNATURE-
Version: PGP Desktop 9.5.3 (Build 5003)
wj8DBQFNR5GVq1pz9mNUZTMRAgJRAKDxMal+5IUv+9VHtlTHcCbX1p0UfwCgqcFH
J0SH1yd7Vn1zmOVPq67Zzx8=
=xv1i
-END PGP SIGNATURE-
--
"Fergie", a.k.a. Paul Ferguson
Engineering Architecture for the Internet
fergdawgster(at)gmail.com
ferg's tech blog: http://fergdawg.blogspot.com/
rators, who lets face it are traditionally lazy^W^W
cautious people , to do anything.
Paul
On 02/01/2011 10:32 AM, Majdi S. Abbas wrote:
On Tue, Feb 01, 2011 at 10:27:45AM -1000, Paul Graydon wrote:
insignificant changes between v4 and v6. There is nothing on line
that isn't accessible over IPv4 so there has been no critical app
outside the infrastructure to spur such change
On 02/01/2011 11:38 AM, Owen DeLong wrote:
On Feb 1, 2011, at 12:36 PM, david raistrick wrote:
On Tue, 1 Feb 2011, Dave Israel wrote:
responsibility. If they want to use DHCPv6, or NAT, or Packet over Avian
Carrier to achieve that, let them. If using them causes them problems, then
they s
ounted for in the
plots.
Owen
(Including Geoff because it's not fair to criticize his work behind his back)
Are there any expectations of a Gold Rush for the remaining addresses?
I would expect to see at least see some kind of escalation.
Paul
Jeffrey Lyon writes:
> One cannot be owned by a carrier and remain carrier neutral.
>
> My two cents,
my experience running PAIX when it was owned by MFN was not like you're saying.
--
Paul Vixie
KI6YSY
e. i think the "neutral and commercial" model is very well
established and that verizon will not want to be the only carrier in
those facilities nor have their circuit-holders be the only customers
for the real estate. it's an awful lot of space to use just as colo,
and it's bot
> localized to my region (Northern NY)?
>
> I've created a ticket with the provider, although with it being the
> weekend, I have doubts it'll be a quick resolution. I'm sure its a
> strange knee-jerk response to the monlist garbage. Still, stopping
> time wit
till deserves a lot of kicking.
$.02,
- - ferg (co-author of BCP38)
- --
Paul Ferguson
VP Threat Intelligence, IID
PGP Public Key ID: 0x54DC85B2
-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.22 (MingW32)
Comment: Using GnuPG with Thunderbird - http://www
t in a way that no one will like.
$.02,
- - ferg
- --
Paul Ferguson
VP Threat Intelligence, IID
PGP Public Key ID: 0x54DC85B2
-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.22 (MingW32)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
iF4EAREIAAYFAlLxLL4ACgkQKJasdVTc
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On 2/4/2014 10:47 AM, valdis.kletni...@vt.edu wrote:
> On Tue, 04 Feb 2014 10:09:02 -0800, Paul Ferguson said:
>
>> I'd like to echo Jared's sentiment here -- collectively
>> speaking, service providers need to f
>
> If we could figure out a reasonable way (i.e., one that the
> customers might be willing to implement) to handle this, it'll make
> BCP38 a lot more doable.
>
BCP84? :-)
- - ferg
- --
Paul Ferguson
VP Threat Intelligence, IID
PGP Public Key ID: 0x54DC85B2
-
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On 2/5/2014 7:06 PM, Jimmy Hess wrote:
> The last-mile is the best possible place to filter, without
> breaking things.
I could not agree more. :-)
- - ferg
- --
Paul Ferguson
VP Threat Intelligence, IID
PGP Public Key ID: 0x54
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On 2/5/2014 7:35 PM, Mark Andrews wrote:
> In message <52f2ff98.2030...@mykolab.com>, Paul Ferguson writes:
>> On 2/5/2014 7:06 PM, Jimmy Hess wrote:
>>
>>> The last-mile is the best possible place to filter, without
ike to think (and I am not happy smiley person as you well know)
that perhaps we can motivate some younger, brighter, ingenious people
who have not been tilting at this for 15 years to consider new ways to
approach this problem. :-) <-- Smiley!
- - ferg
- --
Paul Ferguson
VP Threat I
34&0xDFDFDFDF=0x4154494f &&
> 0x38&0xDFDFDFDF=0x4e415454 && 0x3c&0xDFDFDFDF=0x41434b53 &&
> 0x40&0xFFDFDFFF=0x02434300" -j DROP -m comment --comment "DROP DNS
> Q dnsamplificationattacks.cc"
>
>
> but here I am not sure how to create such str
centre.
Drop me a line if you are interested, and we can talk.
I have also been burned by the “cheap” (usually quality, not price) VPS
instances on oversold hardware in someone’s basement.
paul
On Feb 11, 2014, at 3:01 PM, Carlos Kamtha wrote:
> Hi,
>
> I was wondering
ive is get people to understand that anti-spoofing is
good, and efforts to combat spoofing should be encouraged.
- - ferg
- --
Paul Ferguson
VP Threat Intelligence, IID
PGP Public Key ID: 0x54DC85B2
-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.22 (MingW32)
any more
> or less valid to the average third party than the next guy.
>
Taken to the logical extreme, the "right thing" to do is to deny any
spoofed traffic from abusing these services altogether. NTP is not the
only one; there is also SNMP, DNS, etc.
- - ferg
- --
Paul Ferguson
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On 2/14/2014 3:00 PM, Larry Sheldon wrote:
> On 2/14/2014 12:42 PM, Paul Ferguson wrote:
>> Taken to the logical extreme, the "right thing" to do is to deny
>> any spoofed traffic from abusing these services altogether.
&g
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On 2/14/2014 4:09 PM, Joe Provo wrote:
> On Fri, Feb 14, 2014 at 10:42:55AM -0800, Paul Ferguson wrote:
> [snip]
>> Taken to the logical extreme, the "right thing" to do is to deny
>> any spoofed traffic from abusing th
Better yet, why is your ntp server even reachable off net?
Providing a public clock service needs a lot more configuration effort
than a simple, default one -- as just demonstrated.
(However, this is not to say that private servers should have management
queries enabled.)
On 2/17/2014 9:03
s that one will never be able to measure nor
> audit as well, but that doesn't mean we shouldn't continue to work
> on tracking back spoofed packets and reporting the attacks, and
> securing devices.
>
> - Jared
>
>
>
>
- --
Paul Ferguson
VP Threat Inte
Lantronix is pretty solid if it doesn't have issues with your hardware.
I have a bunch of older Dell boxes where turning on virtual media makes
them stall indefinitely on the boot prompt.
Though, for serial only stuff -- it should be pretty good.
On 2/22/2014 午前 12:39, Bryan Socha wrote:
We
. Denying this is no more useful than trying to
> push the tide back with a teaspoon.
>
Yes, udp is here to stay, and I quote Randy Bush on this, "I encourage
my competitors to block udp." :-p
- - ferg
- --
Paul Ferguson
VP Threat Intelligence, IID
PGP Public Key ID: 0x54DC85B2
Rancid with the git plugin can be used to attain pretty much the exact
same thing a lot more easily, if you're after an existing implementation
of it.
Cheers,
Paul
On 2/27/2014 午後 09:44, Harry Hoffman wrote:
Wow, this sounds fantastic! Have any code you can share?
Cheers,
Harry
On F
+1, which semi-large eyeball does Cogent NOT have capacity problems to?
On 2/28/2014 午前 11:55, Suresh Ramasubramanian wrote:
With cogent? Now you will be asking us if the Pope is really Catholic :)
On 28-Feb-2014 7:43 AM, "Aidan Scheller" wrote:
Hello,
We send periodic 10-15Mbps bursts of
ying the epiphany
about why FiOS doesn't do IPv6 yet
Bonus - enjoy complementary epiphany about why AT&T uVerse uses 6RD
Drive Slow,
Paul
For all it's worth, it might be Cox ignoring TTLs and enforcing their
own update times instead.
Wait 24-48 hours, and it should probably fix it all up.
I'm not seeing anything majorly broken with your system except the SOA
EXPIRE being ridiculously large.
On 3/5/2014 午後 01:40, Mark Keymer wr
OP is actually the owner of it as per ARIN whois data.
-- Paul
On 3/6/2014 午後 09:41, Nick Hilliard wrote:
On 06/03/2014 12:14, bmann...@vacation.karoshi.com wrote:
On Wed, Mar 05, 2014 at 07:52:10AM -0500, Rob Seastrom wrote:
to secondary nameservers. Speaking of that...
;; ADDITIONAL
On 3/8/2014 午前 01:07, Jason Lixfeld wrote:
I don't need to use it much, but when I do, it's an ever-increasing royal pain
in the ass.
My current plight revolves around not being able to get full dumps of objects.
Certain mandatory fields in objects are 'filtered' and/or replaced with dummy
d
ference do you?
>
> http://en.wikipedia.org/wiki/Hacker_%28term%29
>
>
>
See also the seminal book by Steven Levy:
https://en.wikipedia.org/wiki/Hackers:_Heroes_of_the_Computer_Revolution
- - ferg
- --
Paul Ferguson
VP Threat Intelligence, IID
PGP Public Key ID: 0x54
down to a single box or manufacturer" so it seems the answer
>>>> is No.
>>>
>>>
>>> It is my understanding that many CPEs work off of same
>>> reference implementation(s). I haven't had any cycles for this
>>> but with all the CPE is
**
Thanks,
Paul
;>> This email is the reason I spend money with digital ocean. :)
>>>
>>> You should too.
>>
>> uhh, no. It's the 21st century. I prefer to spend my money with
>> those that, at a bare minimum, provide IPv6.
>>
>> -Jim P.
>
>
>
iot
>
> [1] https://www.iab.org/mailman/listinfo/internetgovtech [2]
> http://tools.ietf.org/html/draft-iab-iana-framework-01 [3]
> http://www.ietf.org/mail-archive/web/ietf-announce/current/msg12562.html
>
>
[4] http://1net-mail.1net.org/mailman/listinfo/discuss
> [5]
w?
drive slow...
Paul
d it would be *great* pain) to move to IPv6 while
their IPv4 networks work just fine.
Also, IPv6 introduces some serious security concerns, and until they
are properly addressed, they will be a serious barrier to even
considering it.
$.02,
- - ferg
- --
Paul Ferguson
VP Threat Intelligence, I
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On 3/23/2014 2:27 PM, Timothy Morizot wrote:
>
> On Mar 23, 2014 11:27 AM, "Paul Ferguson"
> mailto:fergdawgs...@mykolab.com>>
> wrote:
>> Also, IPv6 introduces some serious security concerns, and until
>> t
say on the matter on NANOG.
Best & Cheers,
- - ferg
- --
Paul Ferguson
VP Threat Intelligence, IID
PGP Public Key ID: 0x54DC85B2
-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.22 (MingW32)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
iF4EAREIAAYFAlMvbI4ACgkQKJa
I'd simply just recommend using the route views servers, you don't
really need the graphical representation.
On 3/24/2014 午前 02:46, Damien Burke wrote:
Hello,
Are there any tools similar to the routing tab at stat.ripe.net ?
To be more specific, I'm looking for the "BGP route visibility" feat
username "rviews". See http://routeviews.org/aaa.html
**
route-views>sho ip bgp 59.229.189.0
% Network not in table
route-views>
- - ferg
- --
Paul Ferguson
VP Threat Intelligence, IID
PGP Public Key ID: 0x54DC85B2
-BEGIN PGP SIGNATURE-
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On 3/24/2014 2:13 PM, Paul Ferguson wrote:
> On 3/24/2014 1:53 PM, Christopher Morrow wrote:
>
>> On Mon, Mar 24, 2014 at 4:49 PM, greg whynott
>> wrote:
>>> 59.229.189.0
>
>> $ whois -h whois.cymru.com 59
Your customers are your compasses. And as Randy Bush always like to
say (paraphrased), "I encourage my competitors to dismiss customer
concerns over IPv6 migration."
Cheers,
- - ferg
On 3/24/2014 6:18 PM, Owen DeLong wrote:
>
> On Mar 23, 2014, at 2:45 PM, Paul Ferguson
>
we should
likely go ask our various communities their thoughts on this and other issues
which seems to be in line with what your asking.
And no - not embarrassed… However the always colourful feedback is appreciated
and will be taken into account.
Cheers,
-p
—
Paul Andersen
EGATE Ne
we should
likely go ask our various communities their thoughts on this and other issues
which seems to be in line with what your asking.
And no - not embarrassed… However the always colourful feedback is appreciated
and will be taken into account.
Cheers,
-p
—
Paul Andersen
EGATE Ne
Randy,
Thanks for giving me a lead in!
ARIN has been gradually evolving and tweaking the governance over the past
fifteen years. Given it’s a small board it’s been generally done at the full
Board historically.
We’ve recently started to take a long look at a variety of issues to see if
there
Hi Anil,
Have you setup MBF? I've seen that as an issue before. If you don't have a
default route set, than MBF might help you send the response out the interface
on which it was received.
Paul
> On Mar 24, 2014, at 11:46 PM, Anil KARADAG wrote:
>
> Hi,
>
>
ned IPv4/IPv6 blocks
> announced over BGP. Some of us actually have to make do with
> (sometimes very) limited budgets and what the market is offering us
> and has made available.
>
>
- --
Paul Ferguson
VP Threat Intelligence, IID
PGP Public Key ID: 0x54DC85B2
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On 3/25/2014 2:38 PM, Elizabeth Zwicky wrote:
> Local policy, sure; local DMARC policy, wait what?
My goof. Apparently just local policy sans DMARC.
- - ferg
- --
Paul Ferguson
VP Threat Intelligence, IID
PGP Public Key ID: 0x54DC8
provider assigned you an IP address with no reverse DNS, and
> you set up a mail server on that IP address. Most people would say
> that was unreliable even before knowing you're talking about IPv6
> instead of IPv4.
>
Also, please do *not* expect folks to toss anti-spam measure
On 3/26/2014 午後 12:31, Cutler James R wrote:
Wow, what a lot of NANOG traffic about IPv6 readiness for SMTP!
Please explain my misunderstanding on the following:
1. IPv6 is a Routing Layer Protocol (with some associated helpers, like RA,
ND, DHCP-PD, and the like).
2. SMTP is an Application
Of course it is, you don't even need to think about logic to answer that
one.
On 3/26/2014 午後 09:55, rw...@ropeguru.com wrote:
On Tue, 25 Mar 2014 23:28:04 -0500
Larry Sheldon wrote:
According to the Ace of Spades HQ blog:
IPv6 would allow every atom on the surface of the earth to have its
- I already *pay* to send mail. I migrated all of
my personal e-mail off of free webmail platforms some time ago to a
paid service (e.g. "If you are not paying for a service, you are the
product.").
- - ferg
- --
Paul Ferguson
VP Threat Intelligence, IID
PGP Public Key ID: 0x54DC85B2
---
Hi Anil,
The command is for the service or servicegroup and it is:
set service -useproxyport (NO|YES)
Paul
> On Apr 1, 2014, at 1:38, Anil KARADAG wrote:
>
> My aim is forwarding all sip packages from netscaler snip:client port number
> to backend server ip: backend server p
re vulnerable OpenSSL 1.0.1g is NOT
> vulnerable (released today, April 7, 2014) OpenSSL 1.0.0 branch is
> NOT vulnerable OpenSSL 0.9.8 branch is NOT vulnerable
>
- --
Paul Ferguson
VP Threat Intelligence, IID
PGP Public Key ID: 0x54DC85B2
-BEGIN PGP SIGNATURE-
Version: GnuPG v
.1e-16.el6_5.7 version and not older.
David
-----Original Message-
From: Paul Ferguson [mailto:fergdawgs...@mykolab.com]
Sent: Tuesday, April 08, 2014 1:07 AM
To: NANOG
Subject: Fwd: Serious bug in ubiquitous OpenSSL library: "Heartbleed"
-BEGIN PGP SIGNED MESSAGE-
Hash:
This should provide some background:
http://apps.fcc.gov/ecfs/document/view?id=7022026095
Drive Slow,
Paul
On Fri, Apr 11, 2014 at 6:50 PM, David Sotnick wrote:
> Hi Nanog,
>
> I have a ticket open with Level 3, with whom I have 1gig pipes in Oakland,
> CA and Las Vegas, NV.
&g
x27;legitimately' ie:
headers appear to show that the first hop was relayed out through a
normal route rather than just port 25 spray. Some are even kindly
pre-marked as spam.
We've had >250 turn up since 23:34 UTC yesterday (12 April). Appears to
have slowed/stopped around 0
standard. This has the
same predictable result as any duplicate MAC address, but since odds are it
conflicts with a router, takes out the entire subnet instead of a single
host. Of course this is not mentioned anywhere in CARP's documentation.
That's why I encourage my competitors to run it.
Drive slow,
Paul
Nothing personal Henning (and I like what you did with OpenBGPd and
OpenNTPd) but you'd gain a lot of respect in my eyes, as well as a
bunch of other people's, if you publicly admitted the CARP OUI
decision was a huge mistake. If your lawyers have advised you not to
apologize because of liability concerns (despite that "no warranty"
bit in the BSD license) it's OK - I completely understand.
Drive Slow,
Paul
Am I the only one who thinks this 'clench' is rather absurd especially
right after one company pretty much got 1/4th of all remaining address
space when there's such an insane crunch looming?
Regardless of how large / important they are, that is.
If anything, this is just gonna make things mor
There are many actually doing this, to be honest.
From the top of my head, in the greater Dallas area, 54540 comes to mind.
http://bgp.he.net/AS54540#_asinfo
For large ASNs like these, aggregation would really help the table size.
That said, working on reducing our own as well.
On 4/29/2014 1
RedIT
--
Paul Norton
Carlos Kamtha wrote:
Hi everyone,
I am currently not happy with out MX server provider, and so, inquiring
with anyone that can give a recommendation based on experience?
I found this list via google.
http://www.webhostingsearch.com/dedicated-server/mexico.php
I
As precaution, you should always deny ipv6 unicast on v4 sessions, and
vice versa.
On 5/3/2014 午後 03:01, Eugeniu Patrascu wrote:
On Fri, May 2, 2014 at 10:44 PM, Deepak Jain wrote:
Between peering routers on a dual-stacked network, is it considered best
practices to have two BGP sessions (on
It is important to consider bias and factual accuracy of the material.
George Ou was working for Comcast and AT&T as a lobbyist at the time
he produced the Youtube video.
Drive Slow,
Paul Wall
On Sat, May 10, 2014 at 3:04 PM, Rick Astley wrote:
> That was an interesting read but it&#x
is/was.
Drive Slow,
Paul Wall
On Fri, May 9, 2014 at 12:27 PM, Livingood, Jason
wrote:
> Hi Jeff – I noticed the question posed here so thought I’d respond, perhaps
> at risk of stirring up a hornet’s nest given how long the last thread was.
> ;-) Anyway… there’s no congestion betwee
201 - 300 of 1420 matches
Mail list logo
