While there are good solutions in this thread, some of them have scaling
issues with operator overhead.
We recently implemented a strategy that I proposed a couple years ago that
uses a bucket system.
We created 5 or 6 different buckets of limit values (for v4 and v6 of
course.) Depending on what
toss the route on the floor. That protection has been much
more useful than prefix limits IMO.
On Wed, Aug 18, 2021 at 11:37 AM t...@pelican.org wrote:
> On Wednesday, 18 August, 2021 14:21, "Tom Beecher"
> said:
>
> > We created 5 or 6 different buckets of limit values
The NY Times did a story within the last couple years showing how easy it
was to identify an individual solely from purchasing anonymized data
commonly sold by advertisers and the like.
Now take that and be able to pin a person to an IP, and aggregate flow data
to find out everything someone does.
My MacGuffin-O-Meter maxed out in that graph, definitely.
On Fri, Aug 27, 2021 at 1:41 PM Valdis Klētnieks
wrote:
> On Fri, 27 Aug 2021 09:50:01 -0700, Owen DeLong via NANOG said:
>
> > > Cloud innovation accounts for 80% of all AFRINIC whois updates in 2021
> > > to date and in AFRINIC whois,
Fundamentally I think everyone should care about this situation. As I read
it, it breaks down as :
- AFRINIC and Cloud Innovation are engaged in a dispute over number
assignment policies.
- AFRINIC invokes the clause that they are reclaiming the space in
question.
- Cloud Innovation files for garn
>
> Maybe some will, but they'd be better off selling them before the RIRs
> decide to expand their scope and start mass reclaiming for profit.
>
I'm sorry, what?
On Fri, Aug 27, 2021 at 9:36 PM Laszlo Hanyecz wrote:
>
> On 2021-08-28 00:58, Tom Beecher wrot
>
> It sounds like
> the whole situation with the asset freeze could have been avoided had
> AfriNIC not engaged in contempt of court to start with; surely having
> more contempt of court is not the solution here, now is it?
>
I'm sorry, in what universe is discussing the situation on a mailing l
tch to more nefarious tactics? Who
knows... Everyone likes having money, after-all.
--
Tom
Interested in this new fangled 'concensus' protocol .
ok not really. :)
On Thu, Jan 9, 2020 at 12:00 PM Matt Corallo wrote:
> lol no that’s even worse. “We put routing on the blockchain to make it
> secure and scalable the two things blockchains generally aren’t, now
> please buy our t
u're operating under the purview of the GDPR (i.e.
emailing long-distance[1]).
--
Tom
[1] http://bash.org/?142934
>
> You refer to a certain NR protocol. (NR - New Radio). It is
> possible to check in 3GPP specs what precisely does it mean an 'NR
> protocol'. The questions to answer when searching would be something
> like: is it TDD or FDD? Is it SC-FDMA? And then compare these terms to
> what the iphone
I see no issues on 2 separate Equinix Dallas connections.
On Thu, Jan 23, 2020 at 9:16 AM Faisal Imtiaz
wrote:
> Hello,
> Quick question, is there known issue with Equinix Dallas IXP ?
> (Or it is just our connection ? Seeing all peers down).
>
> Thanks.
> Regards.
>
> Faisal Imtiaz
> Snapp
>
> I think this is a tribute to how we’ve built and upgraded networks for
> capacity and speed.
>
I think it's spot on.
In years past it made more sense to distribute smaller , incremental
patches. More work on the software side, but it was likely a better option
than getting blasted on Twitter
>
> I get annoyed when I'm chatting with friends, waiting to play some game
> we decided to download, and it's ONLY downloading at 300 megabits per
> second! :P
In this scenario, which mechanism controls the download speed? I hear many
users complain that their gigabit internet connection is not
Not everybody leaves their console/PC on 24/7 so that they would pull the
patch at 3am local even if that’s when it was released.
It’s far from reckless. It’s not the game companies job to make sure the
network works. That’s our job.
On Sat, Jan 25, 2020 at 14:37 Darin Steffl wrote:
> Shouldn't
gt; -
>> Mike Hammett
>> Intelligent Computing Solutions
>> http://www.ics-il.com
>>
>> Midwest-IX
>> http://www.midwest-ix.com
>>
>> --
>> *From: *"Tom Beecher"
>> *To: *"Darin Steffl"
>
> Shouldn't game patches like this be released overnight during off-peak
> hours? Fortnite releases their updates around 3 or 4am when most ISP's
> networks are at their lowest utilization. It seems somewhat reckless to
> release such a large patch during awake hours.
>
I can't speak for PS4 and
Trying to summarize here, this convo has been a bit disjointed.
Is this an accurate summary?
- The malicious traffic with spoofed sources is targeting multiple
different destinations.
- The aggregate of all those flows is causing Impervia to flag your IP
range as a bad actor.
- Sony uses Impervia
Reporting the issue is good and I’m sure appreciated by all.
I appreciate that those who work in fields tracking down bad actors have a
natural tendency to start viewing everything through that same lens, but
assuming that every issue is cause by malice or stupidity gets really,
really tiring.
On
Agreed.
I also would be very wary of any traffic that I don’t know about sourcing
from my network. The amount of money spent on lawyers when something
malicious comes though this ‘sharing’ , and I’m in the jackpot because it
sourced from me, is likely going to be many multiples of whatever dollar
I feel like I saw this once with large communities, but memory is a bit
fuzzy.
On Fri, Feb 7, 2020 at 15:12 Randy Bush wrote:
> Feb 7 05:30:12 rpd[1752]: Prefix Send failed ! 103.148.40.0/24
> bgp_rt_trace_too_big_message:1209 path attribute too big. Cannot build
> update.
>
> anyone else seen
ould suggest that we haven't had a World War in a
while; business is far too good.
--
Tom
lities in LLDP, and does
indeed demonstrate that network segmentation (i.e. "dude it's just L2")
is not the last word in mitigating against said vulnerabilities.
You ought to all be far more concerned, IMO.
--
Tom
There is a major update that has released today, how's everything looking
for everyone?
Tom
On Thu, Jan 23, 2020 at 10:14 AM Aaron Gould wrote:
> My gosh, what in the word was that coming out of my local Akamai aanp
> servers yesterday !? starting at about 12:00 noon central t
Yup, Call of Duty update, 68GB on xbox platform.
Tom
On Tue, Feb 11, 2020 at 10:26 PM Aaron Gould wrote:
> Huge! Big as ever. My aanp links are (were) pegged, seriously. I will
> be contacting Akamai about lighting up an additional 10 gig link to my
> local clusters. Started a
sleep.
>
Xbox has this feature, but it doesn't work very well. A quick google search
shows that many users have their consoles set to receive updates, but that
feature doesn't seem to be working properly.
Tom
On Wed, Feb 12, 2020 at 1:46 PM Mike Hammett wrote:
> Aren't
not downloading w/o
user interaction.
Tom
On Wed, Feb 12, 2020 at 2:03 PM Josh Luthman
wrote:
> Because the disks are shut off by default in standby mode.
>
> Josh Luthman
> Office: 937-552-2340
> Direct: 937-552-2343
> 1100 Wayne St
> Suite 1337
> Troy, OH 45373
>
>
The discussion about what the consoles can or can not do is honestly not
solving anything.
Saying that the consoles should or should not be doing a thing is simply
trying to throw the problem to someone else.
On Wed, Feb 12, 2020 at 15:40 Carsten Bormann wrote:
> On 2020-02-12, at 20:45, Mike H
I know people who have 300 mb all the way up to gigabit in their home, they
still struggled with the update since the bottleneck wasn't the speed of
their internet connection.
Tom
On Fri, Feb 14, 2020 at 12:41 PM Jeff Shultz wrote:
> Sure, some of them can get it. Some still have DSL
/Program Committee Hat On
One of the speakers from 78 had requested their talk not be recorded, and
to honor that request the livestream recordings were made private.
Some additional discussions were had on Friday, and those might be able to
be restored next week, assuming YouTube still has the
og/videos
<http://chinog.org/presentation-archive/>The program committee is looking
forward to your submission and attendance.
Thank you,
Tom Kacprzynski
CHI-NOG Program Committee Chair
Wasn’t that CNID where PRIs ignored the flag set not to present the data?
On Mon, Jan 27, 2020 at 15:01 wrote:
>
> On January 27, 2020 at 22:57 ma...@isc.org (Mark Andrews) wrote:
> > The hardware support was 2B+D but you could definitely just use a
> single B. 56k vs 64k depended on where yo
Net neutrality!*
*Except if someone drives through a power pole.
On Tue, Feb 18, 2020 at 11:11 AM Darin Steffl
wrote:
> Matt,
>
> You're correct that if most of these small cells goes offline during a
> power outage, the remaining macro cells would not be able to handle the
> load well.
>
> Dat
>
> I only wish I were insane; but from where I'm sitting, QUIC has broken
> my internet, and the resolution is blocking QUIC.
>
The QUIC protocol itself isn't breaking anything ; some middlebox is
breaking QUIC. It's likely collateral damage from honest attempts to
mitigate bad stuff. Blocking QU
>
> i don't think you've addressed the "replace your broken ISP" action that
> is clearly sane and would fix this, right?
>
The sanity presumes two things:
A: That he could do so without having to change addresses as well.
(Something that is still all too true for much of the US.)
B: The other pr
It is spoofing, but it is also absolutely amplification. Look at the preso
that Damien linked :
https://www.usenix.org/conference/woot14/workshop-program/presentation/kuhrer
Hope that this doesn't become one of the 'services' that you provide! :)
On Thu, Feb 20, 2020 at 6:40 PM Jean | ddostest.me
pe, speakers signed off
> for livestream but not VOD. If just one speaker objects, it can take the
> whole thing down.
>
>
> Yes.
>
> As Tom mentioned in an earlier message, there was apparently some
> confusion about which rights were granted for at least one talk. So to be
&
On 21/02/2020 23:37, Owen DeLong wrote:
> What’s next? Why not simply eliminate port numbers altogether in favor
> of a single 16-bit client-side unique session identifier.
I see what you did there.
--
Tom
Poor network performance between the Chinese networks and the rest of the
world is not a bug ; it's an intentional feature. The government of China
has constructed these multiple systems to both control what information is
or is not received by their citizens, but also to ensure that domestic
inter
I like the topic, but I think we should dispense with comments like 'house
arrest'.
On Thu, Mar 12, 2020 at 2:47 PM g...@1337.io wrote:
> With talk of there being an involuntary statewide (WA) and then national
> quarantines (house arrest) for multiple weeks, has anyone put thought into
> the im
Mike-
The TSP program provides for priority treatment for only 2 things :
provisioning of new capacity, and restoration of capacity. It provides no
accommodations for intermittent degradation events upstream.
Source :
DHC Office of Emergency Communications, TSP Program Office, TSP Vendor
Handboo
The answer is don't shove application traffic that has tight service level
requirements onto the public internet at large and expect the same
performance as private circuits or other SLA protected services.
On Tue, Mar 17, 2020 at 11:40 AM Mike Bolitho wrote:
> If an x-ray machine won't work b
d via fully SLAed private lines. We have zero issues there. I think
> people vastly underestimate just how much in the healthcare vertical is
> outside of a medical providers control/ownership.
>
> - Mike Bolitho
>
>
> On Tue, Mar 17, 2020 at 9:54 AM Tom Beecher wrote:
>
>>
Depends on the verbiage of the clause.
On Wed, Mar 18, 2020 at 10:41 AM Seth Mattinen wrote:
> On 3/17/20 10:03 AM, Mike Bolitho wrote:
> >
> > We have two redundant private lines out of each hospital connecting back
> > to primary and DR DCs and a metro connecting everything together in each
>
EU regulations with such things are vastly different than in the US.
On Thu, Mar 19, 2020 at 12:08 PM Mike Bolitho wrote:
> I was getting blasted earlier for suggesting streaming services and gaming
> DLCs could likely be slowed by government intervention. EU is currently
> working with Netflix
, 2020 at 12:53 PM Mike Bolitho wrote:
> I've said it over and over again, we have TSP and it could easily be used
> to enforce priority to emergency preparedness customers. It's built into
> the language.
>
> - Mike Bolitho
>
>
> On Thu, Mar 19, 2020 at 9
raded circuits we had to do everything in our power to
> restore to full operations. If capacity is an issue and causes TSP coded
> DIA circuits to be unusable then that falls under the "any reason" clause
> of that line.
>
>
> - Mike Bolitho
>
>
> On Thu,
It is something that matters, because it has the potential to set a
dangerous precedent.
If you say "$Service should reduce their bit rates because this is an
emergency!" , I guarantee that exact same argument will be made well after
this crisis has passed with a different definition of "emergency
> difference between a once-in-a-lifetime pandemic and somebody who’s having
> a “personal emergency”?
>
> -mel
>
> On Mar 20, 2020, at 7:43 AM, Tom Beecher wrote:
>
>
> It is something that matters, because it has the potential to set a
> dangerous precedent.
>
&g
s in order to protect populations
> from COVID-19. You will be changing your tune when your mother is sick and
> can't get the care she needs because the system is overwhelmed because we
> (communities, not just network operators) didn't do what was
> necessary because of some ide
I see no possible future outcome in which "one simple authentication
mechanism" could ever be remotely close to reasonably secure.
On Mon, Mar 23, 2020 at 5:57 PM Eric Tykwinski
wrote:
> I think that’s the major sticky point, I would hope we could all agree on
> one thing, but that also leaves
>
> What yubikey are you talking about? I have a password protecting my
> ssh key but the yubikeys I've used (including the FIPS version) spit
> out a string of characters when you touch them. No pin.
>
PIV enabled ones have pins if you are using that functionality.
On Mon, Mar 23, 2020 at 8:51 P
Alexandre-
I do hope that you reconsider your decision to unsubscribe. Many of us post
massively uninformed bullshit here on a regular basis, myself included. I
don't think anything you have posted here rose to that curious standard.
Be well!
On Tue, Mar 24, 2020 at 11:47 AM Alexandre Petrescu <
tled,
"List of BGP networks implementing RPKI"... :)
If we can have nerdy lists of GPUs and CPUs, this must be valid also?
--
Tom
y to suggest where we could best host this information, however!
--
Tom
Their device by itself did not leak anything, no. But it was the thing that
created the more specifics that were then leaked due to other errors.
On Wed, Mar 25, 2020 at 7:50 PM Michel Py wrote:
> > In recent months, I've been trying to bring your attention to BGP
> optimization.
>
> Is that no
I do understand that you mean well, but do realize that interconnection
between the rest of the world and the networks controlled by the Chinese
government is a very, very sensitive and often touchy subject. It's also
generally true that networks aren't going to disclose terms of commercial
relati
I was watching one of Jim Browning's s Youtube series the other day, the
one where he got into a scam call center's network so completely that he
had access to their entire operation, including CCTV cameras, and
eventually got BBC Panorama involved, which got the place shut down.
He mentioned that
0.0.0.0/8.
Longer answers will no doubt be available. :)
--
Tom
My recommendation would be not to bother. :)
Just encode the router loopback IPv4 address in the system identifier bytes
and call it a day.
On Mon, Apr 13, 2020 at 9:55 AM JASON BOTHE via NANOG
wrote:
> Does anyone have any recommendations for a database or IPAM platform that
> can house IS-IS
I would agree that Twitter is not a primary place for abuse reporting.
If they are reporting things via your correct abuse channel and you are
indeed handling them within 48 business hours, then I would also agree this
much extra spray and pray is excessive. However RiskIQ is known to be
pretty re
gency response teams as well as attorney generals
>> or other applicable authorities.
>>
>> We all need to work together. Please do not hesitate to contact me and I
>> will make sure we are meeting our end of aspiring to be a good partner, and
>> look forward to working
At a previous employer much earlier in my career, we inherited some simple
webhosting from a company acquisition. In one of the early meetings we had
about integrating it, someone from our support team asked some questions
about the abuse report procedures, etc. Our owner came straight out and
said
>
>
> On 20/Apr/20 18:24, Tom Beecher wrote:
> > Technical people need to make the business case to management for RKPI
> > by laying out what it would cost to implement (equipment, resources,
> > ongoing opex), and what the savings are to the company from protecting
>
>
> I think the bigger issue is they are all entirely operated out of india.
>
Why is that specifically a problem, exactly?
There are many reasons why it is *easier* to setup a scam call center in
India, but it's not like the Indian authorities completely ignore the
problem. One operation in Indi
>
>
> https://www.theinternetpatrol.com/how-to-shake-down-robocallers-and-robotexters-for-fun-and-profit/
>
I absolutely endorse this idea. Very early in my career, I worked for a
shop that provided network/IT services for a bottom tier debt collector,
one of the early innovators of the 'rent-a-la
IMO, the answer is balance.
- Handful of SSH connection attempts against a server. Nobody got in,
security hardening did it's job. I don't think that is worth reporting.
- Constant brute force SSH attempts from a given source over an extended
period of time, or a clear pattern of probing, yes, rep
What if I am at home, and while working on a project, fire off a wide
ranging nmap against say a /19 work network to validate something
externally? Should my ISP detect that and make a decision that I shouldn't
be doing that, even though it is completely legitimate and authorized
activity? What if
Well, I think our disagreement is on what we constitute 'legitimate abuse'
to be.
On Wed, Apr 29, 2020 at 1:51 PM Mukund Sivaraman wrote:
> On Wed, Apr 29, 2020 at 01:49:14PM -0400, Tom Beecher wrote:
> > What if I am at home, and while working on a project, fire off a wi
the addressing is to
increase the size of the subnet on the link. Does anyone here know better,
and if so, could you point me to someone at BT who could help get an
additional PA block allocated for us?
Tom
--
-----
Tom Ammon
Replied off list. Thanks very much!
Tom
On Fri, May 1, 2020 at 11:49 AM Neil J. McRae wrote:
> Hello Tom,
> Can you send me details to neil.mc...@bt.com and I’ll take a look.
>
> Neil.
>
> Sent from my iPhone
>
> On 1 May 2020, at 14:49, Tom Ammon wrote:
>
>
Lots of content providers use multiple CDNs, and shift traffic between them
for various reasons.
On Tue, May 5, 2020 at 9:58 AM Fick, Brad wrote:
> We saw a big shift in traffic away from CenturyLink on Saturday night,
> looks like much of the traffic shifted over to Verizon Digital Media
> Serv
d time again and is this valid traffic use ?
Amongst a certain group of users, bulk downloading of the archive is popular:
https://www.reddit.com/r/DataHoarder/comments/an8srw/is_there_anyway_to_bulk_download_collections_from/
Tom
For you an I, a hundred grand of reinvestment in the product and business
makes perfect sense. Make a good product, you will sell more of it, the
customers win, the business wins, the shareholders win.
For those who ascribe a different line of thinking, a few hundred grand
of reinvestment in the p
Mostly agree, but the "your pet bug" argument has validity.
When the thing that isn't working is basic functionality, (e.g. IPv6) ,
there is no excuse for that not to work, and a company that tries to spin
'basic functionality" as "feature request" tends to dig their own grave.
But many, many bug
I have seen no disruption or connectivity issues on my Telia services in
Dallas today.
On Wed, May 27, 2020 at 6:18 PM Kaiser, Erich wrote:
> I know they have a ring in Texas between several major Metros. I would
> ask your CSR how your service is being delivered to Austin and raise the
> quest
Agree with Mike on looking at communities first. Depending on the provider,
that could be a very nice tool, or completely worthless.
For your planned idea on smaller "regional" nodes, you could do something
like :"default || ( customer && specific cities/states/regions/countries )"
, d
I would de
United Cable Company is primarily a broker.
To Rod's questions :
Sure, you can light a pair and monitor it many different ways. However, as
James has said already, most people who want dark fiber are going to want
one pair of glass from A to Z with nothing in the middle at all that they
don't kno
That is the correct Youtube channel, yes.
Monday is 2 weeks from the conference start, so I think we can safely say
give it a couple more days. Edward is really good about following up on
these things, and we know that the vendor that we worked with is really
really busy with a lot of virtual conf
o justify
> SR-MPLS, you need to want to do existing things while reducing
> complexity and state.
Unsurprisingly, there would be no way on Earth that I could have said
that better, so you shall find only loud cheering from over here.
--
Tom
https://help.yahoo.com/kb/postmaster
On Wed, Jun 17, 2020 at 5:39 PM Fawcett, Nick via NANOG
wrote:
> Could someone from Yahoo email NOC contact me offline. We have been
> getting complains from our users trying to send to yahoo.com addresses.
> Email is getting deliverd, but randomly going int
>
> I'd be down with that. Gamers will kill for even 1 nanosecond of lower
> "ping" :-).
>
Which has long made me chuckle. It's analogous to the golfers buying things
to "fix your slice!" or "get 10 more yards!" , when the true reason those
things happen is completely your swing. :)
On Sat, Jun 2
der to test a market with as little exposure as
> possible.
The differentiation is: consumer vs. service provider.
If you're a service provider, don't buy a consumer product and hope to
sell it on at a similar (or higher) SLA rate to other consumers; that
way lies ruin.
--
Tom
customer is a consumer in that case - I
won't discriminate against what use someone has for wanting to consume
bandwidth between countries, but I do think the specificity here is in
whether you intend to just use it, or resell it, and that's where the
difference comes in relation to Robert's point.
--
Tom
: https://www.youtube.com/watch?v=9Cg3dLR95wY
Lots of interesting stuff in there, but the pertinent broadband
termination parts - which go on to mentioning MAP-T - start at ~15:00.
Regards,
--
Tom
On 24/07/2020 14:45, J. Hellenthal via NANOG wrote:
> This might be of assistance….
No, it'll force you to sign-up/sign-in before providing any "assistance".
--
Tom
On 24/07/2020 15:16, Mike Hammett wrote:
> and?
>
Meh. I haven't got the energy.
But generally speaking, if you're going to harvest personal data, be
more honest about it.
--
Tom
interested in this
sort of thing
My consultation fees are sizeable, and I expect them to be settled
exclusively in single malt.
--
Tom
rects.
It looks (and sounds from this thread) as a way to net some referral
bank on inquiries to these "partners", whom also apparently dictate how
you structure the site, and how you collect personal data.
--
Tom
t to decaf.
I'd suggest that you read the thread a little more closely.
(...and who goes full decaf when giving up single malt? 0_o)
--
Tom
you don't, then don't sign up.
>
> If you want to post to this list asking for help,
> then refusing the help you get because you don't
> have the energy or inclination to use one of the suggestions, then move on.
>
> I'd suggest that you switch from single malt to
There was a train derailment in Tempe, AZ yesterday AM that partially
collapsed a bridge that had a bunch of glass running over it. Possibly
related.
On Wed, Jul 29, 2020 at 10:37 PM Kenneth McRae via NANOG
wrote:
> Anyone outside of S. California affected?
>
>
>
It's not like there are scorecards, but there's a lot of fault to go
around.
However, again, BGP "Optimizers" are bad. The conditions by which the
inadvertent leak occur need to be fixed , no question. But in scenarios
like this, as-path length generally limits impact to "Oh crap, I'll fix
that, s
>
> So while I will continue pushing for the rest of the world to create
> ROA's, turn on RPKI and enable ROV, I'll also advocate that operators
> continue to have both AS- and prefix-based filters. Not either/or, but
> both. Also, max-prefix as a matter of course.
>
This is the correct approach.
>
> We can all do better. We should all do better.
>
Agreed.
However, every time we go on this Righteous Indignation of Should Do
crusade, it would serve us well to stop and remember that in every one of
our jobs, at many points in our careers, we have been faced with a
situation where something
>
> Why are you not on your soap box about BIRD, FRrouting, OpenBGPd, Cisco,
> Juniper, etc... about how they can possibly allow every day screw ups to
> happen, but the same options like the NO_EXPORT community are available for
> the engineer to use? One solution would be to implement "BGP Group/
Yes.
Every RIR has either assigned all the space that it has been allocated, or
is getting very close and restricting the amount of v4 addresses that can
be requested. Once that occurs, you can get on a waiting list to obtain
space from the RIR that has been returned to the pool, but there are no
>
> Wouldn't it be better to measure the basic performance like packet drop
> rates and queue sizes ?
>
Those values should be a standard part of monitoring and data collection,
but if they happen to MATTER or not in a given situation very much depends.
The traffic profile traversing the link may
It is possible to gather a lot of information about buffers and queues, at
least with the vendors we work with. That can be very helpful in a lot of
ways. :)
On Thu, Aug 13, 2020 at 9:21 AM Baldur Norddahl
wrote:
> Is it possible to do and is anyone monitoring metrics such as max queue
> length
For the sake of maximum pedanticness, the NANOG scholarship program and the
NANOG fellowship program are very different things.
NANOG scholarships are the traditional "Here's some money for non-alcohol
related college expenses."
https://nanog.org/outreach/scholarship-program/
https://learnmore.sc
101 - 200 of 1187 matches
Mail list logo
