Re: IPv4 Hijacking For Idiots

On Mon, 05 Jun 2017 18:04:54 -0700, "Ronald F. Guilmette" said: > So you're saying that whichever criminal is behind this stuff, that he > maybe could have pulled it all off for the astounding and impressive > sum of zero dollars and zero cents ($0.00) ? > > (Well, I guess that's not quite accurat

Re: Some advice on IPv6 planning and ARIN request, please

On Sat, 08 Jul 2017 18:59:36 +0200, "Radu-Adrian Feurdean" said: > Now please show be a hotel room that has close to 65536 items in it > (also tell me how much does a night in such a room cost). > Then how many rooms may host close to 256 devices that can transmit and > receive data ? Well, as I

Re: noction vs border6 vs kentik vs fcp vs ?

On Wed, 12 Jul 2017 11:03:50 -0700, ShaColby Jackson said: > I know solutions like Kentik do a lot more but I’m focusing on just the > above use case. Also ignoring the cloud vs. on-prem difference, assume that > doesn’t matter. Might want to re-think that. In a world where some eyeball netw

Re: Zabbix IT Services feature set

On Tue, 18 Jul 2017 14:33:19 -, Graham Johnston said: > My question is, has anyone gotten the Zabbix IT Services to work correctly?   > Is there a trick to getting it to work, some configuration we are doing > incorrectly? We're a Zabbix shop, with a large number of boxes being monitored. Th

Re: IOS new versions and network load

On Mon, 18 Sep 2017 16:57:55 +0100, Marco Slater said: > > While we don’t use Apple's caching servers we do have transparent caching > > in place which nets us about 82% of their content being serverd locally. On > > a > > big IOS update it will probably be close to 99% for that one title. > Wo

Re: AS PATH limits

On Tue, 19 Sep 2017 13:33:03 -, craig washington said: > How many AS PATHS are too many? Well - how many do you see when things are operating nominally? How many do you regard as "the other end is obviously too crazy to listen to"? Add them up and divide by two. Of course, the hard part is

Re: DHCPv6-PD -> Lack of route injection in RFC

On Sat, 23 Sep 2017 08:47:32 +1000, Mark Andrews said: > You know CPE devices are routers. They can tell you what routes > DHCP has given them. That annoucement could be cryptographically > authenticated. This is, of course, a lot easier if the CPE already has onboard the needed software to do t

Re: DHCPv6-PD -> Lack of route injection in RFC

On Tue, 26 Sep 2017 17:02:51 -0400, Lee Howard said: > Right. How many residential market gateways support any routing protocol > at all? Depends on how flabby a definition you use. Does "ask for a default route" count? :) pgpWsKLXrG1sf.pgp Description: PGP signature

Re: Hurricane Maria: Summary of communication status - and lack of

On Sun, 01 Oct 2017 22:28:31 -0400, Javier J said: > The media here in the states is no better. I have multiple confirmations > and am looking for hard proof but the Teamsters Puerto Rico trucking union > is refusing to move containers out of the port. Only 20% of truckers showed > up for work. I

Re: Hurricane Maria: Summary of communication status - and lack of

On Sun, 01 Oct 2017 22:09:55 -0500, Jason Baugher said: > The more I read about this, the more disturbed I get. On the one hand, we > keep hearing that the trucks aren't moving because roads are impassable. > Then I read that government officials are driving from their remote areas > to San Juan to

Re: RFC 1918 network range choices

On Thu, 05 Oct 2017 13:39:04 -0400, Jay Ashworth said: > I have seen a number of versions of that in reading things people sent me and > things I found myself, and all of them seem to depend on ASICs that didn't > exist at the time the ranges were chosen, and probably also CIDR which also > didn't

Re: 4 or smaller digit ASNs

On Thu, 12 Oct 2017 00:55:35 -0500, Steve Jones said: > as i understand it, you cant do bgp at all under 5 AS1312 does BGP quite nicely... Not sure what you meant there, unless the text/plain lost the tags... pgpHL9wI9WWJC.pgp Description: PGP signature

Re: Calgary <-> Toronto 100% Canadian Fibre Resiliency on failover

On Fri, 13 Oct 2017 18:00:04 -0400, Jean-Francois Mezei said: > Note: road has interesting side effects. A new bridge on highway 17 > "broke" when it got too cold: the stay cables on suspension bridge > contracted and ended up lifting bridge deck by about 1m above ground > level. So any fibre cond

Re: California fires: smart speakers and emergency alerts

On Fri, 13 Oct 2017 18:50:51 -0700, Joe Hamelin said: > I would think that Amazon knows where my Echo is since it's the same IP > that I order (way too much crap) from. It knows the usual delivery address. That's not necessarily the same thing. pgpJNTT6Lxc__.pgp Description: PGP signature

Gonna be a long day for anybody with CPE that does WPA2..

Looks like WPA2 may have just become the new WEP. And it looks like we're all going to be reflashing a lot of devices. "The proof-of-concept exploit is called KRACK, short for Key Reinstallation Attacks. The research has been a closely guarded secret for weeks ahead of a coordinated disclosure th

Re: Google DNS intermittent ServFail for Disney subdomain

On Fri, 20 Oct 2017 08:01:00 +0200, Bjørn Mork said: > That's the way it is. Posting to a public forum always make you think > about the issue a second time, and that's what it takes. > > The weird thing is that I've tried to cheat the system by thinking > without posting, and it doesn't work! D

Re: Major ISP Issues

On Wed, 01 Nov 2017 14:55:58 -, Jon Zamani said: > Who else reporting the same? > > CenturyLink > Comcast/XFinity > > Seems nationwide Path from my office to my home in Comcast territory (which loops all the way through 250 miles to Ashburn and back to get 2.5 miles) hasn't even blipped. So it

Re: Incoming SMTP in the year 2017 and absence of DKIM

On Wed, 29 Nov 2017 09:32:27 -0800, Michael Thomas said: > There are quite a few things you can do to get the mailing list > traversal rate > 90%, iirc. Only 90% should be considered horribly broken. Anything that makes it difficult to run a simple mailing list with less that at least 2 or 3 9's

Re: lists and DMARC and ARC, was Incoming SMTP in the year 2017 and absence of DKIM

On Wed, 29 Nov 2017 13:46:05 -0800, Michael Thomas said: > Apparently the levine unit is hearing things again because nobody -- > least of all me -- has > said anything about arc. I believe it was a pre-emptive statement. pgp2H7Fy1I06i.pgp Description: PGP signature

Re: Incoming SMTP in the year 2017 and absence of DKIM

On Thu, 30 Nov 2017 11:16:09 -0800, Owen DeLong said: > i.e. rarely to bank robbers sign their names to the robbery note. An amazing number of them use a deposit slip with their name on it for the note. pgpLt6XbYQz1w.pgp Description: PGP signature

Re: Suggestions for a more privacy conscious email provider

On Sun, 03 Dec 2017 09:48:02 -0800, "Michael S. Singh" said: > I am on the Linux Kernel mailing list which receives around 300 emails a day. If you're only getting 300 a day, your mail infrastructure is severely broken. As I write this, I've gotten 2,151 mails from linux-kernel so far this month,

Re: Suggestions for a more privacy conscious email provider

On Mon, 04 Dec 2017 15:06:07 -0700, Grant Taylor via NANOG said: > Namely, when I ran my server at home, it took a search warrant to > legally enter my house to access the server, which I would be > immediately made aware of. I'll just remind everybody that if this is a serious component of your t

Re: Suggestions for a more privacy conscious email provider

On Mon, 04 Dec 2017 16:41:55 -0600, Brad Knowles said: > > (Those 6 of you who *are* serious professionals at this can ignore = > that advice :) > > Do I count? I only accused the Director of the NSA of High Treason in > my letter to the editors of the Communications of the ACM (see >

Re: Suggestions for a more privacy conscious email provider

On Wed, 06 Dec 2017 16:26:00 -0500, Rich Kulawiec said: > 2. Y'know, if I can see attacks/abuse arriving at networks/systems > that I run, then surely they can see it leaving networks/systems that > they run. A packet stream that will DoS a 20/2 cable subscriber is just a tiny fraction of a 100G p

Re: Static Routing 172.16.0.0/32

On Fri, 08 Dec 2017 03:13:57 +, Ryan Hamel said: > Greetings, > A colleague of mine has static routed 172.16.0.0/32 to a usable IP address, > to have a single known IP address be static routed to a regions closest > server. > While I understand the IP address does work (pings and what not), I

Re: UPnP/IPv6 support in home routers?

On Mon, 11 Dec 2017 09:23:11 -0300, Fernando Gont said: > Anyone can comment on the UPnP support for IPv6 in home routers? > > Those that I have checked have UPnP support for IPv4, but not for IPv6 > -- even when the home router does otherwise support IPv6. Well, there's a bit of a problem there.

Re: UPnP/IPv6 support in home routers?

On Mon, 11 Dec 2017 12:10:39 -0300, Fernando Gont said: > On 12/11/2017 10:44 AM, valdis.kletni...@vt.edu wrote: > > Unfortunately, if you want your Xbox or Playstation to be able > > to work, you need to be using IGDv1. > > Could you elaborate on why IGDv1 is needed? (why things break with IGDv2

Re: Free access to measurement network

On Fri, 15 Dec 2017 07:47:42 -0500, Dovid Bender said: > What kind of internet are these devices on? With Net Neutrality gone here > in the US it would be a good way to measure certain services such as SIP to > see which ISP's if any are tampering with packets. Given previous history, the answer w

Re: Companies using public IP space owned by others for internal routing

On Tue, 19 Dec 2017 20:18:57 +, "UpTide ." said: > If we allocate a /64 like we do single ipv4 addresses now the space gets 2^56 > (16777216) times larger; but if we start doing something crazy like allocating > a /48 or /56 that number plummets. (256 times larger, and 65536 times larger > resp

Re: Companies using public IP space owned by others for internal routing

On Tue, 19 Dec 2017 17:03:36 -0600, Bryan Holloway said: > Comcast, at least in my neck of the woods, hands out /56s. Hmm. Odd. Around here, they're handing out /60s. Which is OK, since I'm living in a 3 bedroom apartment that can be covered by one router. If I had to do downstream delegation t

Re: Waste will kill ipv6 too

On Wed, 20 Dec 2017 18:15:44 -0500, Joe Maimon said: > There is plenty more to wonder about, for example, will the rest of the > unicast space get Class E'd? That's a non-starter, as pretty much all the gear out there has code that says 'Class E is reserved" (including gear that's *already* doing

Re: Companies using public IP space owned by others for internal routing

On Wed, 20 Dec 2017 20:09:08 -0800, Owen DeLong said: > That’s OK… You seem to have your directions reversed... > > > A /48 is 16 more bits than a /32, so 65536 times bigger. > > You mean smaller. The original poster obviously meant "bigger" as in "number of them available". pgpe44xeo8iQZ.p

Re: Waste will kill ipv6 too

On Thu, 28 Dec 2017 14:14:06 -0500, b...@theworld.com said: > My wild guess is if we'd just waited a little bit longer to formalize > IPng we'd've more seriously considered variable length addressing with > a byte indicating how many octets in the address even if only 2 > lengths were immediately

Re: Waste will kill ipv6 too

On Thu, 28 Dec 2017 21:54:46 -0500, "Ricky Beam" said: > Every scenario everyone has come up with is "unlikely". Home networks with > multiple LANs??? Never going to happen; people don't know how to set them > up, and there's little technical need for it. And yet, my Lede-based router burned up 5

Re: Waste will kill ipv6 too

On Thu, 28 Dec 2017 20:26:46 -0700, Brock Tice said: > I will again say I am indeed no expert, I am happy to get feedback. Is > there some kind of allocation scheme where a residential user or even a > small or medium business will have any chance of using 4096 /64s? They won't burn 4096 consecut

Re: Waste will kill ipv6 too

On Thu, 28 Dec 2017 22:41:57 -0500, "Chuck Church" said: > If we'd just put a stake in the ground and say residences can have one > router and bridge everything below that we'd be further ahead. I just can't > see 99.999% of users being interested in subnetting their homes and writing > firewall

Re: Waste will kill ipv6 too

On Fri, 29 Dec 2017 15:36:51 +1100, Mark Andrews said: > PD is designed so that a device (router) can request multiple PD requests > upstream. The interior router just needs to make a upstream request on behalf > of the downstream device and any prefixes it will be allocating itself. OK, I obvious

Re: Threads that never end (was: Waste will kill ipv6 too)

On Sun, 31 Dec 2017 13:36:32 +0900, Randy Bush said: > thomas watson: i think there is a world market for maybe five computers "The Yale Book of Quotations quotes an I.B.M. source that this '... is a misunderstanding of remarks made at I.B.M.'s annual stockholders meeting on April 28, 1953. In re

Re: Attacks from poneytelecom.eu

On Thu, 04 Jan 2018 09:33:51 -0500, William Herrin said: > Why anyone thinks it's acceptable for the form submission to vanish in to > the faceless support queue is more of a quandary. The form submission > should provide a case number, the individual to whom it is assigned, direct > contact infor

Re: Attacks from poneytelecom.eu

On Thu, 04 Jan 2018 09:48:24 -0700, Michael Crapse said: > I've never dealt with a support queue that resolved the issue faster than a > direct contact. Which would the user prefer - a guaranteed 15 minute response time from the queue, or 10 minute from a direct contact, unless it's an hour beca

Re: IPv4 smaller than /24 leasing?

On Thu, 04 Jan 2018 17:40:27 -0500, Justin Wilson said: > I know of dozens, if not hundreds of small ISPs that can’t participate in > BGP > because they don’t have big enough blocks. What's the business model, if you have less than 120 customers? Selling value-add services on top of moving th

Re: Attacks from poneytelecom.eu

On Thu, 04 Jan 2018 12:58:48 -0800, Dan Hollis said: > On Thu, 4 Jan 2018, valdis.kletni...@vt.edu wrote: > > Been there, done that. Been out of the country and offline for 36 hours, > > reconnect and there's a user with a problem that would have been dealt > > with 36 hours earlier if they had se

Re: IPv4 smaller than /24 leasing?

On Thu, 04 Jan 2018 19:20:26 -0500, Justin Wilson said: > How is this a good use of resources when they have to justify 80% of a /24 in > which they only need half of? I have 5 ISPs I work with that have 300-500 > customer and are using a /26 or smaller of IP space. They can’t have true > redund

Re: MTU to CDN's

On Mon, 08 Jan 2018 17:55:55 -0500, Dovid Bender said: > Hi, > > N00b here trying to understand why certain CDN's such as Cloudfare have > issues where my MTU is low. For instance if I am using pptp and the MTU is > at 1300 it wont work. If I increase to 1478 it may or may not work. Wait, what? M

Re: Blockchain and Networking

On Thu, 11 Jan 2018 15:28:19 -0500, William Herrin said: > On Thu, Jan 11, 2018 at 2:46 PM, Dale W. Carder wrote: > > > > Traceroute or any other path diagnostics comes to mind. > That's not obvious to me. Assuming the time-exceeded message was modified > to include the necessary data, how would

Re: Blockchain and Networking

On Tue, 23 Jan 2018 17:27:45 -0600, Jimmy Hess said: > However, a blockchain could also be used to allow an authority to make a > statement representing > a resource that can be made a non-withdrawable statement --- in other words, > the authority's role > or job in the registration process i

Re: listserv hosed? [Was: Fwd: nanog.org mailing list memberships reminder]

On Fri, 02 Feb 2018 06:30:20 -0500, Rich Kulawiec said: > > 1. It's not a listserv. It's a mailing list. ListServ is obsolete, > expensive, closed-source garbage software used exclusively by people > who don't know any better and like to waste their money. Well Rich, your bias is obvious. Have

Re: listserv hosed? [Was: Fwd: nanog.org mailing list memberships reminder]

On Fri, 02 Feb 2018 19:13:04 +0100, Måns Nilsson said: > A VM/370 app that still does all internal processing in EBCDIC, even on > POSIX OSes[0], with almost-ascii config files, and that ran very well > on VMS? What is there not to love? > [0] Eric Thomas, mr LISTSERV himself, told me this when w

Re: improving signal to noise ratio from centralized network syslogs

On Mon, 05 Feb 2018 10:49:42 -0800, "Scott Weeks" said: > I have no knowledge of syslog-ng. Does it do the > real time scrolling like I mention? Use 'tail -f' or similar. pgppqrj2ic42P.pgp Description: PGP signature

Re: improving signal to noise ratio from centralized network syslogs

On Mon, 05 Feb 2018 20:27:13 +, James Bensley said: > On 5 February 2018 at 18:57, wrote: > > On Mon, 05 Feb 2018 10:49:42 -0800, "Scott Weeks" said: > >> I have no knowledge of syslog-ng. Does it do the > >> real time scrolling like I mention? > > > > Use 'tail -f' or similar. > > The only

Re: Websurfing trouble to .gov and .il.us

On Mon, 12 Mar 2018 17:44:47 -, Sam Kretchmer said: > I am part of a small ISP based in Chicago. We have several clients > complaining of an inability to hit a couple specific government websites, > specifically http://tierii.iema.state.il.us/TIER2MANAGER/Account/Login.aspx > and > https://ww

Re: CDN-provided caching platforms?

On Tue, 27 Mar 2018 02:26:24 -, Russell Berg said: > I was wondering if there are other CDN caching platforms out there we should > be researching/deploying? Does traffic analysis show any other destinations that have enough traffic that caching might help? pgpuOk1TczoI0.pgp Description: P

Re: Yet another Quadruple DNS?

On Fri, 30 Mar 2018 14:27:47 -0400, Ken Chase said: > uh, quad the f do you think you're doing?! > > you think anything.255 is routable by COTS gear? :) Obviously posted 48 hours early. :) pgpKuzBvYWA9n.pgp Description: PGP signature

Re: do you use SPF TXT RRs? (RFC4408)

On Mon, 04 Oct 2010 13:30:55 PDT, Owen DeLong said: > Removing a few points probably isn't a bad idea so long as you have a list of > domains for which points should be added. 140 million .coms. Throw-away domains. I do believe that Marcus Ranum had "trying to enumerate badness" on his list of "S

Re: do you use SPF TXT RRs? (RFC4408)

On Mon, 04 Oct 2010 17:05:12 EDT, Suresh Ramasubramanian said: > dig throwaway1.com NS > dig throwaway2.com NS > > etc etc ... and then check_sender_ns_access in postfix, for example. Yes, that *is* better than whack-a-mole on the same DNS server, but... The NANOG lurker in the next cubicle used

Re: Facebook down!! Alert!

On Wed, 06 Oct 2010 16:39:03 EDT, Andrew Kirch said: > No, the majority does not define what "operational" means. Facebook is > not a mission critical internet resource (such as a fiber cut, power > loss at a peering point, DoS attack. Yes, but anytime something spikes the number of calls at m

Re: New hijacking - Done via via good old-fashioned Identity Theft

On Thu, 07 Oct 2010 12:10:37 -, Sven Olaf Kamphuis said: > If what you're asking under point c is "what happens if a system that > contains such a password for your email address gets compromised" the > answer is simple, you remove that specific password from your approved > passwords list

Re: New hijacking - Done via via good old-fashioned Identity Theft

On Thu, 07 Oct 2010 14:16:00 -, Sven Olaf Kamphuis said: > you just give contacts for the passwords with which you have received a > new one. > > each potential person that can send email to your email address, gets a > unique password from you. You missed the point. How does perso...@gmai

Re: Network Operators Unite Against SORBS

On Tue, 12 Oct 2010 05:35:11 PDT, iHate SORBS said: > I am calling on all Network Operators to stand up and stop routing > dnsbl.sorbs.net until that time they can commit to making real changes. You *do* realize your beef isn't with SORBS, it's with the mail operators that are using that as part

Re: Only 5x IPv4 /8 remaining at IANA

On Mon, 18 Oct 2010 14:41:36 +0200, Jens Link said: > Jeroen Massar writes: > > > So, if your company is not doing IPv6 yet, you really are really getting > > late now. > > They won't listen. Consider it evolution in action. :) pgpBYy5yKbRFN.pgp Description: PGP signature

Re: Only 5x IPv4 /8 remaining at IANA

On Mon, 18 Oct 2010 10:52:18 PDT, George Bonser said: > > From: Owen DeLong [mailto:o...@delong.com] > > The good news is that stateful inspection doesn't go away in IPv6. It works > > just fine. All that goes away is the header mangling. > > Exactly true but there are people out there who experi

Re: Only 5x IPv4 /8 remaining at IANA

On Tue, 19 Oct 2010 13:49:10 +0200, Jens Link said: > valdis.kletni...@vt.edu writes: > > > Those people are next on my hit list, after we've finally eliminated those > > who still talk about class A/B/C addresses. :) > > You are going to kill about 90% of all net-/sysadmins? Do you *really* wa

Re: Topic: Inter-AS BGP Local Preference Matrix

On Fri, 29 Oct 2010 09:55:06 PDT, "Rettke, Brian" said: > It's obviously something that each of us would need to do individually, but > I'm wondering if there is any way this could become a de facto standard, > or could be a method that the community at large could enforce somehow. Alice's Restau

Re: Failover IPv6 with multiple PA prefixes (Was: IPv6 fc00::/7 - Unique local addresses)

On Thu, 21 Oct 2010 19:21:41 PDT, George Bonser said: > With v6, while changing prefixes is easy for some gear, other gear is > not so easy. If you number your entire network in Provider A's space, > you might have more trouble renumbering into Provider B's space because > now you have to change

Re: Failover IPv6 with multiple PA prefixes (Was: IPv6 fc00::/7 - Unique local addresses)

On Tue, 02 Nov 2010 03:46:55 +1030, Mark Smith said: > How about algorithmically generating these addresses, so that > they're near unique, instead of having the overhead of a central > registry, and a global routability expectation? Go re-read RFC4193, section 3.2.3: 3.2.3. Analysis of the Uni

Re: IPv6 rDNS

On Tue, 02 Nov 2010 18:21:14 -, Sven Olaf Kamphuis said: > getting rid of bind has various other advantages, such as no longer > needing tcp to transfer "zone files" (Retarded concept to say the least) > so there are no more "tcp issues" related to anycasting your authorative > dns servers,

Re: Failover IPv6 with multiple PA prefixes (Was: IPv6 fc00::/7 - Unique local addresses)

On Wed, 03 Nov 2010 17:01:32 PDT, Owen DeLong said: > On Nov 3, 2010, at 3:43 PM, Mark Andrews wrote: > > Actually PI is WORSE if you can't get it routed as it requires NAT or > > it requires MANUAL configuration of the address selection rules to be > > used with PA. > It's very easy to get PIv6 r

Re: RINA - scott whaps at the nanog hornets nest :-)

On Mon, 08 Nov 2010 19:36:49 +0100, Mans Nilsson said: > Given this empirical data, clearly pointing to the fact that It Does > Not Matter, I think we can stop this nonsense now. That's right up there with the sites that blackhole their abuse@ address, and then claim they never actually see any c

Re: Current trends in capacity planning and oversubscription

On Wed, 10 Nov 2010 07:42:32 EST, ML said: > > - An external Internet connection to the Internet Service Provider of at > > least 100 Mbps per 1,000 students/staff 30K students here, 2x10GE to the outside world. > > - Internal wide area network connections from the district to each > > school and

Re: AS path question.

On Wed, 10 Nov 2010 15:31:25 EST, Jared Mauch said: > The best question is: > > Do you know what prefix you just lost reachability to, or do you just > point default as a last resort anyways, so don't know. One has to wonder how many places are using the prepend-me-harder commands to do traffic e

Re: AS path question.

On Wed, 10 Nov 2010 21:35:50 EST, Jon Lewis said: > anywhere near that long". Worst case, someone is silly with their number > of prepends, we don't see their route. I can't say how long I've been > doing this...it predates our rancid setup, which means >6 years. Though > it's caused numerou

Re: Current trends in capacity planning and oversubscription

On Fri, 12 Nov 2010 18:52:20 EST, Sean Donelan said: > The difference is the people using LHC data usually have someone who can > figure out network capacity planning, while the people in an > administrative school office may not have anyone. > > So what is a reasonable network capacity for 1,0

Re: Introducing draft-denog-v6ops-addresspartnaming

On Sat, 20 Nov 2010 12:12:09 EST, William Herrin said: > 260:abcde:123456:98::1 > > 260 - IANA to ARIN, a /12 > abcde - ARIN to ISP, a /32 > 123456 - ISP to customer, a /56 > 98 - customer subnet > ::1 - LAN address What do you do when ARIN gives Tier1 a /24, and Tier1 gives Billy Bob's Bait, Ta

Re: Auditing a network to add Voice

On Mon, 22 Nov 2010 16:59:54 +0200, Kasper Adel said: > Breaking it down [high level] for me sounds like : (suggestions are more > than welcomed) : > > 1) Looking at hardware computation finite resources (cpu, memory...etc) > 2) Looking at available bandwidth > 3) QoS policy > 4) High Availability

Re: Jumbo frame Question

On Fri, 26 Nov 2010 19:26:30 +0200, Saku Ytti said: > You are theoretically winning 4.2%, which works only internally in your > network, so maybe you'll be able to capitalize on that 4.2% on backup > traffic or so. > Doesn't seem like that critical win to be honest. That's only half the calculati

Re: wikileaks unreachable

On Sun, 28 Nov 2010 16:46:25 EST, Andrew Kirch said: > On 11/28/2010 4:34 PM, Randy Bush wrote: > > anyone know why https://www.wikileaks.org/ is not reachable? nations > > state level censors trying to close the barn door after the horse has > > left? > > > > randy > > > Good riddance. The soone

Re: Level 3 Communications Issues Statement Concerning Comcast's Actions

On Mon, 29 Nov 2010 15:34:52 PST, Seth Mattinen said: > My take on this is that settlement free peering only remains free as > long as it is beneficial to both sides, i.e. equal amounts of traffic > exchanged. Equal *value* of traffic exchanged. A network that has a lot of eyeballs may be willin

Re: Level 3 Communications Issues Statement Concerning Comcast's Actions

On Mon, 29 Nov 2010 17:11:18 CST, Jack Bates said: > I agree. This type of maneuver is no different than ESPN3 charging the > ISP for the ISP customers to access the content. Both are unscalable > models that threaten the foundation of an open Internet. Oddly enough, cable channels like ESPN ask

Re: Level 3 Communications Issues Statement Concerning Comcast'sActions

On Wed, 01 Dec 2010 16:32:47 EST, Jared Mauch said: > Ultimately I managed to work something out and get service, but for > those on the "edge" areas, its much harder than you would think to gain > access. I suspect there will be ongoing property devaluation as a > consequence of lack of these ut

Re: Want to move to all 208V for server racks

On Fri, 03 Dec 2010 13:21:07 PST, Matthew Petach said: > People are still feeding their gear with AC? Save on PS inefficiency, > and feed direct 12/5vDC to the servers. Save space, save power, > save cooling. What does that do to customer equipment choices? I've got a quarter acre of boxes that

Re: ARIN space not accepted

On Fri, 03 Dec 2010 14:24:16 PST, Leo Bicknell said: > It is speculated that no later than Q1, two more /8's will be allocated, > triggering a policy that will give the remaining 5 /8's out to the > RIR's. That means, prior to end of Q1, the bogon list will be: > > 0/8 > 10/8 > 127/8 > 172.16/12

Re: Google mail admin contact needed (STARTTLS capabilities issue)

On Fri, 03 Dec 2010 17:30:38 PST, Brent Jones said: > For example, below shows the same MX at Google responding with and > without TLS. I attempted about a dozen times over a few minutes to the > same MX until I got STARTTLS listed in the capabilities list, but the > next attempt to the same MX wo

Re: U.S. officials deny technical takedown of WikiLeaks

On Sat, 04 Dec 2010 19:24:46 EST, Bret Clark said: > On 12/04/2010 06:03 PM, Ken Gilmour wrote: > > Now Sarah Palin is suggesting Wikileaks are terrorists and should be taken > > offline with technical capabilities > Enough already...this is not a political list! However, given the political clim

Re: U.S. officials deny technical takedown of WikiLeaks

On Sun, 05 Dec 2010 02:53:22 GMT, Michael Sokolov said: > Factoid: we outnumber the pigs by 1000 to 1. Even if only 1% of us were > to go out and shoot a pig, we would still outnumber them 10 to 1! We > *CAN* win -- wake up, people! Yes, but shooting down an RFC1925-compliant porker may require

Re: ARIN space not accepted

On Mon, 06 Dec 2010 17:02:40 PST, somebody said: > >>> From: valdis.kletni...@vt.edu > From: valdis.kletni...@vt.edu > >>> Date: Fri, 03 Dec 2010 20:00:15 -0500 > > 224/3 > >>> Oh. And don't forget to do *bidirectional* filtering of these addresses. > >>> ;) > >> Ahh, not quite. Blockin

Re: Start accepting longer prefixes as IPv4 depletes?

On Wed, 08 Dec 2010 20:10:46 +0100, Mohacsi Janos said: > Do you think adopting LISP or similar architectures to reduce the > problems mentioned above? You're better off taking the mindset that it's time to stick a fork in IPv4, it's done. Focus your attention on getting LISP or similar ad

Re: Over a decade of DDOS--any progress yet?

On Wed, 08 Dec 2010 07:43:52 PST, JC Dill said: > Why isn't ANYONE going after Microsoft over this? If Microsoft were > held accountable for the spam and DDOSs that spew from their crappy > software, they would find a way to stop the problem. I've raised this > issue before, IMHO Windows OSs

Re: Over a decade of DDOS--any progress yet?

On Thu, 09 Dec 2010 06:45:45 EST, Rich Kulawiec said: > I've been studying bot-generated spam for most of the last decade, and to > about 6 nine's, it's all been from Windows boxes. (The rest? A smattering > of "indeterminate" and various 'nix systems including MacOS.) > > The botnet problem is

Re: [Operational] Internet Police

On Fri, 10 Dec 2010 11:08:00 EST, Lamar Owen said: > In reality DoS threats/execution of those threats/ 'pwning' / website > vandalism are all forms of terrorism. Let's not dilute the meaning of terrorism to the point where graffiti, cyber or otherwise, is classifed as terrorism. The USA Patriot

Re: [Operational] Internet Police

On Fri, 10 Dec 2010 12:14:20 EST, Lamar Owen said: > Identity theft can cause loss of life due to the stress of mopping up > afterwards. Oh, give me a *break*. This is well off the end of the slippery slope. My car got totaled in a rear-end collision a few weeks ago. If I get so stressed dealin

Re: Some truth about Comcast - WikiLeaks style

On Wed, 15 Dec 2010 15:51:05 EST, Mikel Waxler said: > The reality is that most customers do not make uncapped connections. File > servers cap bandwidth per user and certain services, like gaming or > streaming media have a maximum rate. As long as the average data rate > allocated per customer is

Re: Some truth about Comcast - WikiLeaks style

On Wed, 15 Dec 2010 19:05:26 CST, Jack Bates said: > request financing? ie, Comcast could run lower rates and offer better > service by charging the content provider, while competitive eyeball > networks won't get the option to receive compensation from content > providers and have to charge ap

Re: SDSL circuits in UK?

On Mon, 20 Dec 2010 16:29:34 EST, Jim Mercer said: > > in the spirit of globalization, i've now added the UK to north america. Don't DSL links drop in maximum throughput based on cable-feet from the CO? At 21,495,394 cable feet, your up/down speeds are probably going to be somewhere south of 4bi

Re: Wireless IPv6

On Tue, 28 Dec 2010 12:49:37 EST, Christopher Morrow said: > on this, I HOPE vzw does the right thing and launches with v4/v6 > dualstack on the devices in all regions where deployment happens. I > don't have much hope that this will actually happen though :( Personally, I hope they roll it out a

Re: Wireless IPv6

On Tue, 28 Dec 2010 13:54:38 EST, Christopher Morrow said: > On Tue, Dec 28, 2010 at 1:15 PM, wrote: > > On Tue, 28 Dec 2010 12:49:37 EST, Christopher Morrow said: > > > >> on this, I HOPE vzw does the right thing and launches with v4/v6 > >> dualstack on the devices in all regions where deployme

Re: .gov DNSSEC operational message

On Wed, 29 Dec 2010 15:01:41 GMT, Tony Finch said: > No cryptography can expose the difference between data that is correctly > signed by the proper procedures and data that is correctly signed by a corrupt > procedure. Amen... Well, it *would* help detect an intruder that's smart enough to subv

Re: Software For Telcos

On Mon, 03 Jan 2011 23:04:14 PST, jacob miller said: > The tracking of Customer circuits to ensure that from marketing, sales, > accounts and technical department everything to do with the circuits has to be > tracked. Reading the NANOG archives will find enough examples of top telcos that *never

Re: NIST IPv6 document

On Thu, 06 Jan 2011 07:50:17 GMT, "Dobbins, Roland" said: > In my view, an IPv6 Internet is considerably less secure, and inherently less > securable, than the present horribly insecure and barely securable IPv4 > Internet; Playing devil's advocate for a moment... Even if an IPv6 network is 10 ti

Re: Satellite IP

On Mon, 10 Jan 2011 10:08:57 EST, Jay Ashworth said: > Almost all of what I'll need to do will be what the satellite guys call > "occasional use", ie: "I need a six hour block Thursday night, starting > at 7pm", as opposed to the "monthly service with an FAP" that most > people seem to sell. Wha

Re: Satellite IP

On Mon, 10 Jan 2011 11:06:32 EST, Kelly Olsen said: > That would only happen with an outrageously over-subscribed provider. OK - I'll feed the troll. What's the proper amount of unused and therefor non-revenue-generating capacity the operator is supposed to reserve in order to *guarantee* that ba

<    1   2   3   4   5   6   7   8   9   10   >