m asking what are my options with regard to failover
between one Internet connection and the other?
I'm hoping to figure out whether adding an extra Internet connection actually
gives us that much, in fact whether it justifies the complexity and spend.
Many Thanks for your comments.
Adel
so is terminating bgp on the ssg also an option? I really
like the flexibility of route based VPN with addresable tun interfaces.
Thanks
adel
On Sun 3:47 PM , "Joe Maimon" jmai...@ttec.com sent:
>
>
> adel@
> baklawasecrets.com wrote:> HI,
> >
> >
> &g
licy so traffic is directed at the active BGP
connection. Whats involved here, preferring one BGP link over the other?
Thanks again, I obviously need to do some reading of my own, but all the
suggestions so far have been very valuable and definitely seem to be pointing
in some
fruitful directio
Hi,
Thanks for the info on UKNOF. I've started a thread there with regards to RIPE
and obtaining ASN numbers and so on., as
this is I guess quite UK specific.
Adel
On Sun 8:40 PM , Arnold Nipper wrote:
> Hi Adel,
>
> On 08.11.2009 21:24 Ken Gilmour wrote
>
> &
been very valuable
and definitely seem to be pointing in some fruitful directions.
Adel
On Sun 6:31 PM , James Hess wrote:
> On Sun, Nov 8, 2009 at 11:34 AM, wrote:
> [..]
> > connections from different providers I would still have issues. So
> > I guess that if my prima
to carry a full Internet routing table,
correct?
So I can get away with some "lightweight" BGP routers not being an ISP if that
makes sense?
Adel
On Sun 9:26 PM , Ken Gilmour wrote:
> Hey,
>
> Yes you apply to RIPE for your allocation. You should ask them for a
> /
I think partial routes makes perfect sense, makes sense that traffic for
customers who are connected to each of my upstreams should go out of
the correct BGP link as long as they are up! Now I need to start thinking of
BGP router choices, sure I have a plethora of choices :-(
On Sun 10:01 P
.
Thanks
Adel
On Sun 10:18 PM , Seth Mattinen wrote:
> a...@baklawasecrets.com wrote:
> > I think partial routes makes perfect sense, makes sense that traffic
> for customers who are connected to each of my upstreams should go out of
> > the correct BGP link as long as they are
.
Thanks
Adel
On Sun 10:18 PM , Seth Mattinen wrote:
> a...@baklawasecrets.com wrote:
> > I think partial routes makes perfect sense, makes sense that traffic
> for customers who are connected to each of my upstreams should go out of
> > the correct BGP link as long as they are
t; in any other alternatives people suggest. I realise this is quite a
> broad
> > question, but hoping this will provide a starting point. Oh and
> > if I have missed any specs I should have included above, please let me
> > know.
> >
> > Thanks
> >
> > Adel
>
>
>
nbsd, or linux with quagga.
>
> > > Probably looking at Cisco or Juniper products, but interested
> > > in any other alternatives people suggest. I realise this is quite a
> > broad
> > > question, but hoping this will provide a starting point. Oh and
> > > if I have missed any specs I should have included above, please let
> me
> > > know.
> > >
> > > Thanks
> > >
> > > Adel
> >
> >
> >
>
>
>
Looking at two 100Mbit/s BGP connections, so I think I want something that will
do more than 100 but nowhere close to a gig. So full routing table capability
with throughput of mixed traffic around 200Mbit/s. If that makes sense. Do
the 2850s fall into that sort of price point?
Adel
On
t the price point using Cisco, obviously other solutions are going to come
into the picture.
Adel
On Mon 11:39 AM , Arnold Nipper wrote:
> On 09.11.2009 11:53 a...@baklawasecrets.com wrote
>
> > You will laugh, but the budget at the moment looks like £13k.
> > Imposs
ne.
Thanks for your comments. Look forward to hearing which solutions come back
into the mix having dropped the full routing table requirement.
Regards,
Adel
On Mon 11:45 AM , Joe Greco wrote:
> > > > Basically the organisation that I'm working for will not have the
> skill
BGP as a means
of failover between two separate upstream ISPs. We are not an ISP.
Thanks
Adel
On Mon 1:32 PM , a...@baklawasecrets.com wrote:
> Thanks,
>
> I've taken your advice and decided to reconsider my requirement for a
> full routing table. I believe I'm bein
with embedded network boxes as a pose
to a linux solution. I guess what I'm saying is this is partially a political
thing.
Adel
On Mon 3:20 PM , Joe Greco wrote:
> >
> > Thanks,
> >
> > I've taken your advice and decided to reconsider my requirement for a
&
Hi,
Thanks to everyone that replied to my post on failover configuration. This has
lead me to this post. I'm at a point now where I'm looking at dual-homing with
two BGP peers upstream. Now what I am looking at doing is as follows:
BGP Peer with Provider A who is multihomed to other provider
Managing
two cross connect providers, managing ongoing relationship with two Tier1
providers and so on. However
resilience comes at a cost I suppose is the answer.
Comments appreciated.
Adel
On Mon 7:10 PM , "William Herrin" herrin-na...@dirtside.com sent:
> On Mon, Nov 9, 200
the cross connects, I can
explain that to the business.
Adel
On Mon 7:10 PM , William Herrin wrote:
> On Mon, Nov 9, 2009 at 12:40 PM, wrote:
> > I have an existing relationship with provider A, colo, cross connects
> > etc. Provider A has offered to get the PI space
a gig
of IPSEC. I'm leaning towards keeping my exising Juniper SSG550's for
firewall/routing capability at each site. Then having a separate
encryption devices to handle the site-to-site vpn requiring the gig
throughput. Does anyone have any suggestions on devices to use?
Adel
On second thoughts, thinking about this I am probably looking for some
kind of Layer2 encryption devices. This will make things a lot easier
for the deployment. Any experiences, thoughts on these types of devices,
would be much appreciated.
Adel
On Wed 9:25 AM , a...@baklawasecrets.com
sort of regard they are held in the community.
Thanks
Adel
UK.
Hope the above makes sense.
Adel
on't have that
much experience with them.
I think my subject line mentioning IPSEC is a bit confusing as I'm really after
information on Layer2 encryption hardware.
Adel
On Wed 6:45 PM , Brad Fleming bdflem...@kanren.net sent:
>
> On Nov 11, 2009, at 3:25 AM, adel@
> baklawasecre
what point is adding
another peering in my case a waste of money.
I haven't gone into switch and power redundancy, because I "think" I understand
it. I wanted to concentrate on the multiple upstreams question. Heads
starting to whirl right about now.
Adel
On Wed 5:27 PM
In SPRING a time when segment and routing had no mismatch, a time when isis
and ospf ate a forbidden encap, all they had to do was forward bgp like its
hot, but crazy flapping doesnt leave any real LDP without some real FSM
check, My dynamic unnumbered neighbor.
Suddenly, Out of order, an AS is o
hi,
I am asked to build a large lab/test it. I'm provided crazy scale numbers
for lots of technologies (L*VPN, IPv*, IGP*, All Tunnels flavors...etc).
It took me a lot of time to build this lab, because when I got the
request/test plan handed over to me, I did not verify that these scaled
numbers
Hi,
I am interested in hearing the approach and thought-process that senior
people on NANOG are following when presented with an NFV solution. Assuming
that the exercise at hand is to consider NFV for future expansions of
Firewalls and L3VPNs or stay with the existing model of what is called PNF
(
Hi,
Vendor X wants you to run their VNF (Router, Firewall or Whatever) and they
refuse to give you root access, or any means necessary to do 'maintenance'
kind of work, whether its applying security updates, or any other similar
type of task that is needed for you to integrate the Linux VM into yo
Hi,
I am in the process of testing an 'automation/sdn' kind of controller, it
will be managing configuration on our routers and also deploying some VNFs
too.
Before accepting it, i'd like to perform some testing, to make sure of the
behavior if there are network issues between the controller and
Feedback about Cumulus has been positive :
https://www.mail-archive.com/cisco-nsp@puck.nether.net/msg66192.html
if i am not mistaken, they have added lots of networking enhancements to
the OS, they have videos on youtube that will paint the picture.
On Sat, Jan 20, 2018 at 11:26 AM, Colton Con
Hello
I’m asked to evaluate switching platforms that has different forwarding
chips but the same OS.
Assuming these vendors give the same SDK and similar documentation/support,
then what would be comparison points to consider, other than the obvious
(price, features, bps, pps).
I’m thinking, how
Hi
Anothe email thread to get some guidance on points to consider when
comparing new platforms that advocate using DPDK as the hardware
acceleration SDK vs the broadcom/mellanox.
The DPDK ones claim enhanced performance but every time i ask questions, i
get the logical and typical answer of “it d
Hi Ross
Did you make a decision to take that direction after reviewing ‘open
networking’ platforms like cumulus and pica8?
Are you trying to use the full routing table?
~kim
On Thursday, May 24, 2018, Ross Tajvar wrote:
> Hi all,
>
> Has anyone had any luck building their own routers on commo
me router, then there are a lot more factors and the CPU factors
> may
> outweigh the chipset factors. You may want to look at a list related to
> home
> routers for more guidance.
>
> Mack
>
> -Original Message-
> From: NANOG [mailto:nanog-boun...@nanog.org] On Be
I guess you can do that and more with a linux based switch like cumulus and
pica8.
They allow you to do all sorts of things like that because they are open.
On Thursday, June 7, 2018, wrote:
> In my previous life, we used a nac appliance from Bradford Networks
> whereby the mac address of every
How about some scripts around fail2ban, if the same account logs in
multiple times, its banning time.
Kasper
On Friday, June 8, 2018, David Hubbard
wrote:
> This thread has piqued my curiosity on whether there'd be a way to detect
> a rogue access point, or proxy server with an inside and outsi
Hi,
I'm not sure if the buzzword SD-WAN is used to compensate for another
buzzword that got over-utilized (SDN) or it is a true 'new and improved'
way of doing things that has some innovation into it.
I heard different explanation from different vendors:
1) appliances (+ controller) placed in-li
We are pretty new to those new-age network orchestrators and automation,
I am curious to ask what everyone is the community is doing? sorry for such
a long and broad question.
What is your workflow? What tools are your teams using? What is working
what is not? What do you really like and what do
Hi,
This is not a vendor bashing thread.
We are a group of networking engineers less experience with software) in
the middle of the process of procuring a network automation/orchestration
controller, if that is even a good definition and we are clueless on how to
evaluate them.
Other than the o
Hi,
My customer would like to add VoIP over their network and they asked us for
an audit. the result of the audit would be simply "you guys are ready for
it"
Breaking it down [high level] for me sounds like : (suggestions are more
than welcomed) :
1) Looking at hardware computation finite resour
Sorry i forgot to add more detail.
We are not looking for IP Telephony type of voice but RTP from Media
Gateways.
Cheers,
Kim
On Mon, Nov 22, 2010 at 4:59 PM, Kasper Adel wrote:
> Hi,
>
> My customer would like to add VoIP over their network and they asked us for
> an audit. the r
well at least in our WAN infrastructure.
>
> Bret
>
>
>
> On 11/22/2010 09:59 AM, Kasper Adel wrote:
>
>> Hi,
>>
>> My customer would like to add VoIP over their network and they asked us
>> for
>> an audit. the result of the audit would be si
Hello,
We are a 2nd level of escalation in a service provider, trying to put a $
value on the support we give to our NOC and other implementation teams,
when they email us about problems they face. But we are merely bits and
bytes engineers that cant quantify and justify the value of what we do to
them the dump tables and numbers that they are looking for.
Kim
On Thursday, February 14, 2013, Andrew Latham wrote:
> On Thu, Feb 14, 2013 at 3:52 PM, Kasper Adel
> >
> wrote:
> > Hello,
> >
> > We are a 2nd level of escalation in a service provider, trying to put a
ers, everyone
> will learn and benefit from the experience.
>
> Dave
>
> -Original Message-
> From: Kasper Adel [mailto:karim.a...@gmail.com ]
> Sent: Thursday, February 14, 2013 2:16 PM
> To: Andrew Latham
> Cc: NANOG list
> Subject: Re: Quantifying the value of cus
Hello,
I have never used any CLI other than Cisco so i am curious what useful and
creative knobs and bolts are available for other network appliance Vendors.
I guess what makes *NIX CLI/Shell so superior is that you can advanced
stuff from the CLI using sed, awk and all the great tools there so m
Hello,
We've been hearing about ISSU for so many years and i didnt hear that any
vendor was able to achieve it yet.
What is the technical reason behind that?
If i understand correctly, the way it will be done would be simply to have
extra ASICs/HW to be able to build dual circuits accessing the
gt; Juniper and Cisco with the 9K have gone through some hurdles but ISSU is
> actually usable now if the software versions support it.
>
> The main remaining hurdle is updating microcode on linecards, they still
> need to be rebooted after an upgrade.
>
> Phil
>
&g
t; On Thu, Nov 8, 2012 at 4:52 PM, Kasper Adel
>
> > wrote:
>
>> What i was asking is full ISSU, even with micro code. I assume between
>> Major release there will be microcode upgrade most of the time.
>>
>>
>> On Fri, Nov 9, 2012 at 2:48 AM, Phil
>&
s to be built with that in mind.
>
> Frank
>
> -----Original Message-
> From: Kasper Adel [mailto:karim.a...@gmail.com ]
> Sent: Thursday, November 08, 2012 5:23 PM
> To: NANOG list
> Subject: Whats so difficult about ISSU
>
> Hello,
>
> We've been hearing abo
Hello,
My vendor is giving me speeches on how they are improving their
product Serviceability, Usability and Manageability. They told me they
are adding a lot of new way of doing things, introducing more Unix-like
utilities and over all making CLI smarter by exposing more visibility into
system st
Hello.
I am looking for a way to do proactive monitoring of my network, what I am
specifically thinking about is receiving syslog msgs from the routers and
the backend engine would correlate certain msgs with output/data that i am
receiving through SSH/telnet sessions. What i am after is not expos
Hello,
A bit off topic but i was looking for a way/tool that could crawl through
nanog(or other) archives and try to filter most common discussions and
things like that, if anyone is aware of such a tool, pls let me know.
Thanks,
Kim
Hello Everyone,
I am currently working on building a NOC so i'm looking for
materials/pointers to Best Practices documented out there.
On the top of my head are things like:
1) Documenting Incidents and handling them
2) Documenting Syslog messages
3) Documenting Vendor Software Bugs
4) Shift to
anagement best practices and working with operations/engineering
when a change will be implemented
Should i be looking for ITIL stuff or its not any good?
Thanks,
Kim
On Wed, Jul 14, 2010 at 8:24 PM, Kasper Adel wrote:
> Hello Everyone,
>
> I am currently working on building a NOC
Hello everyone,
How would you calculate the cost of a network outage, specifically if its
related to a software bug or a misconfiguration.
Suppose that this could have been avoided by testing in a lab before
deployment, how can i calculate that too?
Unicast replies are welcomed.
Cheerio,
Kim
Havent seen a thread on this one so thought i'd start one.
Ripe tested a new attribute that crashed the internet, is that true?
Kim
Hello,
I am trying to capture x.25 traffic from a Sun Machine and i wonder if snoop
supports it because i asked my customer to capture it and send it over but
the trace doesnt include anything x/25 related.
Regards,
Kas
Hello,
I want to collect experience from the Gurus on this mailer on how they make
use of the data they can get from NOC. what i mean by data, trouble tickets
opened internally or with vendors.
I wonder what would be common or even uncommon type of statistics that a
network operator would like to
Good Day,
I have always been exposed to one vendor only so i can never compare but I
am curious to know what every one here have seen in their lives on the
below:
1) Which vendor has more bugs than others, what are the top 3
2) Who is doing a better job fixing them
3) What do you consider is a go
Good Day,
I have always been exposed to one vendor only so i can never compare but I
am curious to know what every one here have seen in their lives on the
below:
1) Which vendor has more bugs than others, what are the top 3 ?
2) Who is doing a better job fixing/handling these bugs overall
3)
Thanks Valdis.
On Sun, Feb 20, 2011 at 9:43 PM, wrote:
> On Sun, 20 Feb 2011 18:05:44 +0200, Kasper Adel said:
>
> (Disclaimer - I've never filed a bug report with Cisco or Juniper,
> but I've spent 3 decades filing bugs with almost everybody else in
> the co
63 matches
Mail list logo
