ll-on-windows-10/
http://www.pcworld.com/article/3106463/windows/how-to-get-bash-on-windows-10-with-the-anniversary-update.html
-Hank
>> If you run it against multiple configuration files at once it will also
>> attempt to link
>> between them when applicable (e.g. BGP neighbors,
interconnections.]
-Hank
>
> Normally I use IRR Explorer, but somehow the return is empty
> http://irrexplorer.nlnog.net/search/AS-RR-Res
>
>
> Yang
>
> On Tue, Oct 25, 2016 at 12:41 PM, Gary Baribault wrote:
>> Hi folks, how to I find all ASNs that belong to an ISP? I wan
experienced some sort of Gmail failure in the past 8 hours.
Thanks,
Hank
On 05/12/2016 16:50, Graham Johnston wrote:
http://openspeedtest.com/
http://labs.comcast.com/beta-testing-a-new-open-source-speed-test
-Hank
> For many years we have had a local instance of the Ookla speedtest.net on our
> network, and while it is pretty good some other tests seem i
GPlay (attached) it seems that the main culprit was HE
that propagated it onward.
-Hank
On 25/04/2018 08:29, Hank Nussbacher wrote:
> On 24/04/2018 21:35, Fredrik Korsbäck wrote:
>
>> TLDR; So it seems that AS10297 (some small hostingprovider in the US)
>> suddenly started to announce de-aggregated AWS
>> IP-space, containing quite alot of Route53 infrastr
On 16/05/2018 19:12, Michael Crapse wrote:
HE listed currently in 7th place:
http://as-rank.caida.org/
-Hank
> Additionally, whilst not "technically" a tier 1 provider, Hurricane
> electric should be high on that list. Especially as one of the best
> providers of and propone
they understand the GDPR exceeds the number
> who actually understand it by several orders of magnitude. The "you
> have to delete all my messages from the archive if I unsubscribe"
> nonsense is a good indicator. R's, John
Every generation needs its religious wars. Unix vs Windows. OSI vs
TCPIP. Now there is GDPR vs Theworld.
-Hank
org, ec.europa.eu and some other key .eu sites. When the
response they get will be "sorry, we can't determine who is attacking
you since that contravenes GDPR", will the EU light bulb go on that
something in GDPR needs to be tweaked.
-Hank
On 01/06/2018 15:24, niels=na...@bakker.net wrote:
> * h...@efes.iucc.ac.il (Hank Nussbacher) [Fri 01 Jun 2018, 06:56 CEST]:
>> The entire whois debacle will only get resolved when some hackers attack
>> www.eugdpr.org, ec.europa.eu and some other key .eu sites. When the
>> r
o the strict
new data protection law* that it has imposed across Europe after it was
revealed the personal information of hundreds of people had been leaked
on its website. "
-Hank
> And here is the court decision,
> https://www.icann.org/en/system/files/files/litigation-icann-v-ep
1 you can buy transit from any of the 4 listed above.
At the Bezeqint site they only allow Bezeqint circuits so you are
limited to only one carrier.
If you need contacts at any of the companies, drop me an email and I'll
send you email contacts at each of the companies.
-Hank
> Hi all,
Bit of a longshot, but I'm having some very interesting issues with the Fastly
nodes in Miami.
Thanks,
Hank.
On 26/06/2018 07:49, Ronald F. Guilmette wrote:
You are mistaken. Cogent and Level3 are signatories to MANRS:
https://www.manrs.org/participants/
so this clearly can't happen and you are making this up.
:-)
-Hank
>
>
> The fact that there exists a jerk like this on the Interne
On 26/06/2018 17:08, Thomas King wrote:
Kudos to DE-CIX for getting it right.
-Hank
> I am the guy who gave the presentation. We ask our customers to report
> misbehavior of peers at DE-CIX IXPs (e.g. IP hijack, ASN hijacks) to
> ab...@de-cix.net. We will look into reported cases an
conditions (or abuse policies) and applying them to your operations, or
>> remain silent.
> ah! there are net police.
>
> come back with a warrant
>
Of course there are cuz I made them up 24 years ago:
http://www.interall.co.il/netcops.html
-Hank
d if it
don't appear there then you and I are clearly delusional.
-Hank
el is
$5840/month. Discounts are available :-)
Keep complaining about $350/mo costs. You have no idea how lucky you are.
-Hank
On 18/09/2018 08:02, Christopher Morrow wrote:
>
>
> On Mon, Sep 17, 2018 at 9:44 PM Hank Nussbacher <mailto:h...@efes.iucc.ac.il>> wrote:
>
> On 17/09/2018 23:26, Phil Lavin wrote:
> >> $350/mo seems to be standard. Our DCs are at $250. Seems
>
+Telecom%27s+Internet+Traffic+Misdirection>
Madori. "However, there is truth to the assertion that China Telecom
(whether intentionally or not) has misdirected internet traffic
(including out of the United States) in recent years."
"I know because I expended a great deal of effort to stop it in 2017,"
Madori said.
He then goes on to detail several of China Telecom's BGP route
"misdirections," most of which have involved hijacking US-to-US traffic
and sending it via mainland China before returning it to the US."
-Hank
CT's behalf,
> but rather a pretty standard leak by SKB followed by sloppy filtering
> by CT and TC both.
>
> Tore
>
Internet Vulnerability Takes Down Google
https://blog.thousandeyes.com/internet-vulnerability-takes-down-google/
-Hank
are under-represented:
https://atlas.ripe.net/get-involved/become-a-ripe-atlas-ambassador/
-Hank
bbing server which will
only block the requests to the forbidden FQDNs. Oh but wait, what
about DoH?
Governments that require ISPs to block "certain" sites have no clue what
is required technologically to adhere to their demands.
-Hank
On 21/12/2018 17:10, Jared Mauch wrote:
So expect now BGP hijackers to announce /25s from here on in. They
generally adopt BCPs faster than providers.
-Hank
Folks have studied announcing a /25 etc.. and it can help because many
providers will accept them.. it won’t get everyone, but
NSSEC validating before
issuing certs. The Let’s Encrypt guys at least seemed interested in learning
from their mistake. Can’t say as much of Comodo.
-Bill
Bill,
Did you have a CAA record defined and if not, why not?
-Hank
On 25/02/2019 11:37, Ask Bjørn Hansen wrote:
On Feb 24, 2019, at 22:03, Hank Nussbacher wrote:
Did you have a CAA record defined and if not, why not?
If the attacker got a CA to issue the cert because they changed the DNS server
to be their own, a CAA record wouldn’t have helped (or at
On 06/10/2023 16:07, Mike Hammett wrote:
I have found that for low end DWDM solutions,
https://www.packetlight.com/ has always been the cheapest available.
Regards,
Hank
I've been using various forms of passive WDM for years. I have a couple
different projects on my plate that requi
We just had every single prefix in AS378 start being announced by AS2027.
Every announcement by AS2027 is failing RPKI yet being propagated a bit.
Is this yet another misbehaving device or an actual attack?
Thanks,
Hank
On 04/12/2023 16:09, Drew Weaver wrote:
Although not an answer to your specific question, when I need to reduce
latency to a Google cloud region I use:
https://gcping.com/
Regards,
Hank
Hello,
We are trying to reduce latency to a region in Google Cloud which we
are in the same city of
On 04/01/2024 9:13, Raja Sekhar Gullapalli via NANOG wrote:
https://www.iucc.ac.il/en/blog/2021-05-google-geo-location/
:-)
Regards,
Hank
Team,
We are having issues in our lasvegas office & it shows geolocation in
all browsers as Israel instead of US region when we access
news.google
Thanks,
Hank
On 29/02/2024 17:21, Jared Mauch wrote:
On behalf of cisco-nsp and outages - we salute you.
-Hank
On Feb 28, 2024, at 1:30 AM, Daniel Marks via NANOG wrote:
We’re getting rocked by storms here in Michigan, could be related.
[ brief version of what happened from what I can tell
ts:
https://labs.ripe.net/author/fergalc/enhancing-email-delivery-at-the-ripe-ncc/
https://blog.google/products/gmail/gmail-security-authentication-spam-protection/
Regards,
Hank
https://www.kentik.com/blog/dissecting-the-fccs-proposal-to-improve-bgp-security/
-Hank
On 31/07/2024 7:14, Peter Fisher wrote:
These short and immediate revocations as well as other issues will keep
happening since the CA/B has no end user representation.
See my blog post from 4 years ago:
https://www.iucc.ac.il/en/blog/internet-certificates/
Regards,
Hank
Actually it looks
the prefixes when queried
> against RPKI system.
Suggest reading:
https://www.nanog.org/sites/default/files/3_Gilad_Are_We_There_v1.pdf
from NANOG 69 earlier this month.
Regards,
Hank
> Reply from the community members shows that majority are using RPKI system.
> Is community using anyot
opped.
-Hank
> Well, the idea behind the mail was to know if anyone in the community are
> doing real time BGP IP prefix hijacking.
> Like Artemis detection tool claims to be detecting in 1.4 ~ 3.1 minutes. So
> I wanted to know if anyone in the community are using such tools for
> d
company that laid the cable. One can try to deduce the path
by looking for manhole covers but that would require opening and
physically inspecting.
-Hank
clueless IX, 18 have peered with you within
a week and you have established your bona-fides. You are now in your
way to growing your business :-)
Regards,
Hank
> On Mon, Jun 5, 2017 at 6:56 AM, Ronald F. Guilmette
> wrote:
>
>> So, I guess then, if you're clever, you look
ing is a solution.
>>
>>
> ii quagga 0.99.22.4-3ubu i386 BGP/OSPF/RIP routing
> daemon
>
> interestingly enough that isn't crashlooping nor is it bouncing bgp
> sessions:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=2009-1572
Quagga 0.99.11 and e
ASNs, but you could always ask
> ARIN.
>
> I'm curious what your client's rationale is for wanting a low ASN.
It is called ASN-envy.
-Hank
AS378 :-)
> It can't be efficiency, since the numbers all take the same number of bits
> ultimately. If they just like small
On 02/11/2017 20:01, LF OD wrote:
Try: https://www.packetlight.com/
-Hank
> We have several buildings and a couple data centers spread around the city
> and interconnected via dark fiber. It's a very simple setup - no ROADM, no
> real ring, no extended layer-2 or layer-3 via th
On 20/12/2017 00:18, Job Snijders wrote:
Wow! This is great! I have just started using it and will need to set
aside a swath of time to delve deeper into this.
Regards,
Hank
> Dear NANOG,
>
> I'd like to share an update on some routing security activities that
> ARIN, N
swicthes
and freeware, open source software.
And even better - has anyone done a benchmark to see which performs best?
Thanks,
Hank
Analyzer
<https://testconnectivity.microsoft.com/> - Initiate connectivity tests.
|
testconnectivity.microsoft.com
|
no
|
13.67.59.89/32
40.69.150.142/32
40.85.91.8/32
104.211.54.99/32
104.211.54.134/32
|
TCP 80 & 443
-Hank
> Ken,
>
> A little di
th the help of the Mozilla
developer community and content management and delivery network firm
Cloudflare. Developers will be testing a proposed standard called
Trusted Recursive Resolver via DNS over HTTPS, or DoH for short."
Cloudflare and DoH. Cloudflare and 1.1.1.1. Coincidence?
-Hank
x27;s our responsibility to make significant changes to live
> infrastructures just so they can continue to look clever with the IP address.
>
> Simon
Perhaps they are running all this to shake out exactly these type of
issues? I think that is exactly why APNIC research is called for.
-Hank
On 03/04/2018 01:39, Matt Hoppes wrote:
You might be interested in these links which compare the services:
https://medium.com/@nykolas.z/dns-resolvers-performance-compared-cloudflare-x-google-x-quad9-x-opendns-149e803734e5
https://webxtrakt.com/public-dns-performance
-Hank
> So in all t
http://yro.slashdot.org/story/10/10/13/0044233/Dutch-Hotels-Must-Register-As
-ISPs
Usenet postings they imported years ago after they
bought out Dejanews. You won't find much. I've reported bugs (search
function, language search, etc.) over the past 3 years to them via their
Groups forums and other means and basically they all end up in dev/null.
-Hank
On Fri, 26 Nov 2010, Harris Hui wrote:
You might want to read this:
http://kb.pert.geant.net/PERTKB/JumboMTU
-Hank
Hi
Does anyone have experience on design / implementing the Jumbo frame
enabled network?
I am working on a project to better utilize a fiber link across east coast
and west
http://www.independent.co.uk/news/world/politics/wikileaks-splits-as-volunteers-quit-to-set-up-rival-website-2157420.html
-Hank
archers
who do not know how to say "oops, sorreee!?"
Or who do not know how to warn us in advance:
http://www.merit.edu/mail.archives/nanog/2009-01/msg00306.html
http://www.merit.edu/mail.archives/nanog/2009-01/msg00320.html
http://www.merit.edu/mail.archives/nanog/2009-01/msg00334.html
-Hank
At 14:01 21/12/2010 -0500, Scott Morris wrote:
Actually it depends on the # of route injects and withdrawls.
Sorry, couldn't help myself.
-Hank
Size doesn't matter. It's how well you use it.
Route it, baby...
;)
On 12/21/10 1:56 PM, Bryan Fields wrote:
On 1
: Resolve for NSs of . to A.ROOT-SERVERS.NET (198.41.0.4)
failed: query timed out
-Hank
--
Larry Smith
lesm...@ecsis.net
On Tue January 25 2011 08:38, p8x wrote:
> +1, also a quick check to make sure your name servers are actually set
> can be done with host.. host -t ns 0.168.
and have stopped many pkts that way. I still occasionally see hits in our
log from all sorts of newbies who continue to try old bugs.
-Hank
ith
>
> squish.net/dnscheck is great, except when I've had problems with it, or
> wanted a second opinion. Does anyone know another site that offers much
> the same functionality?
If you like a nice graphic schematic try:
http://www.zonecut.net/dns/index.cgi
-Hank
ses will
be used up soon, perhaps within weeks.
"I thought it was an experiment and I thought that 4.3 billion IPv4
addresses would be enough to do an experiment," Cerf was quoted as saying,
adding it is his "fault" that "we were running out of the addresses.""
Glad we cleared that up! :-)
-Hank
At 12:24 27/01/2011 +, Nick Hilliard wrote:
On 27/01/2011 11:21, Hank Nussbacher wrote:
"I thought it was an experiment and I thought that 4.3 billion IPv4
addresses would be enough to do an experiment," Cerf was quoted as saying,
adding it is his "fault" that "w
if the DC has that option
available.
Any good suggestions or experiences with a current OOB solution out there?
What are you doing for your OOB management?
thanks,Hank
Have them look at radware linkproof which is designed for small shops that
don't want to do bgp and getting their own ASN and pi address space. Been
around since 1999.
http://www.radware.com/Products/LinkProof/
Hank
On Mar 4, 2014 3:11 AM, Eric A Louie wrote:
>
> This may soun
At 15:42 28/03/2014 -0400, Chip Marshall wrote:
I have seen prefix leaking via AS3356 as well in the past year.
-Hank
On 2014-03-28, David Hubbard sent:
> Has anyone had issues with Level 3 leaking advertisements out their
> Global Crossing AS3356 for customers of 3549, but not accepti
Suppose you have an existing server closet. You want to split it so that
two different organizations can have access to it. Separate doors and a
divider in the middle. Does anyone make kit for this for hosting centers?
Thanks,
Hank
At 10:21 16/04/2014 -0600, Steven Briggs wrote:
Been discussed and nothing has been done:
http://www.ietf.org/proceedings/87/slides/slides-87-dnsop-8.pdf
https://www.dns-oarc.net/files/workshop-201005/DNS-Emergency-Alert-System.pdf
Will keep happening until someone decides to act.
-Hank
499260 282597
24-04-14499642 282663
25-04-14500177 282878
Historic event - 500K prefixes on the Internet.
-Hank
At 14:47 27/05/2014 -0400, Christopher Morrow wrote:
Measurement: 1666834 should be bill's measurement request... 50
icmptraceroutes from around the globez.
Or ring-ping and ring-trace:
https://ring.nlnog.net/toolbox/
-Hank
On Tue, May 27, 2014 at 2:35 PM, Brian Rak wrote:
> Th
Try isp_ni...@012.net. They recently merged with another ISP and many
addresses stopped working. This one still works and should hopefully lead to
someone with a clue there.
Hank
On Jun 18, 2014 9:59 AM, Youssef Bengelloun-Zahr wrote:
>
> Dear All,
>
> I'm looking fo
aded with the latest config so that it
can be hot-swapped in within 15 minutes of failure.
This 1-path design is not for everyone. The vendors always recommend the
"cross" design since they sell 2x the amount of boxes but I have found that
life works fine with just a 1-path design as
, doing a simple SCP file transfer.
This reminds me of the work I did in 1999 on getting T3 sat links to fully
utilize the full 45Mb/sec:
http://www.interall.co.il/internet2-takes-to-the-air.pdf
-Hank
blem for us as a community if to find a benchmark of which company
"does have a clue" vs those that don't. Until then, it will just be
whack-a-mole/CA.
-Hank
--- Keith Medcalf
() ascii ribbon campaign against html e-mail
/\ www.asciiribbon.org
Did Level3 withdraw 4.0.0.0/8 today and start announcing it as two /9s?
-Hank
On Tue, 20 Sep 2011, Patrick W. Gilmore wrote:
Newbie question:
If I do:
route-views>sho ip bgp 4.0.0.0
BGP routing table entry for 4.0.0.0/9, version 821994
why do I see the /9 and not the /8 by default? If I do a specific lookup
for 4.0.0.0/8 it is there as well.
Thanks,
Hank
On Sep
the background
noise the Internet generates.
Regards,
Hank
On Sat, 15 Oct 2011, Simon Leinen wrote:
Ditto here.
-Hank
Geoff Huston writes:
Does anyone give a s**t about this any more?
I do; I check the weekly increase every week, and check who the top
offenders are. If someone from my vicinity/circles is on the list
(doesn't happen frequ
their job
even though we keep asking for it. Instead, the RIRs do other things with
our membership dues that we do not ask for. Go figure.
-Hank
dy credits
- service trial period
- monitoring - you will want some external mutually agreeable monitoring
service like gomez/compuware. Who pays for it?
Regards,
Hank
Chris Cunningham
Network Engineering
Secure Connectivity
704-427-3557 (Desk)
704-701-6924 (Cell)
samuel.cunning...@well
city.
You are discounting (pun intended) vanity and marketing. I am no longer
surprised at what people will be willing to pay (sometimes astonishing
amounts of) money for.
AS-envy.
-Hank
In Israel as well.
-Hank
On Mon, 10 Dec 2012, Andrew Latham wrote:
On Mon, Dec 10, 2012 at 11:56 AM, Philip Lavine wrote:
getting a 502 error
Some network issues on a normal Monday morning.
--
~ Andrew "lathama" Latham lath...@gmail.com http://lathama.net ~
ll.
And now Juniper is possibly getting into the act:
http://forums.juniper.net/t5/The-New-Network/Juniper-Networks-Acquires-Webscreen-Systems/ba-p/177177
-Hank
t to turn on PIM. The
map is dynamic and you can move your routers around and the links move with
the shift on the map. It also flags routers that are missing a connection
from the other end.
-Hank
-Garrett
http://www.isitdownrightnow.com/facebook.com.html
http://www.isitdownrightnow.com/feedly.com.html
-Hank
-Hank
> From: pno...@batblue.com
> Subject: Bermuda connectivity
> Date: Fri, 3 May 2013 14:48:29 -0400
> To: nanog@nanog.org
>
> Hello,
>
> I'm looking for a carrier to provide connectivity between New York (111 8th
> or 60 Hudson) and Bermuda.
> Can some
At 13:52 20/12/2011 -0500, Dave Pooser wrote:
Use one of the following services:
http://cyclops.cs.ucla.edu/
http://bgpmon.net/
You'll get an email whenever a routing change takes place in regards to the
prefix you are monitoring.
-Hank
Earlier this year I got a /24 of PA space, set u
At 03:58 01/02/2012 -0500, Kelvin Williams wrote:
Those ISPs that are good network citizens have done it already. Those who
don't care and who haven't done it yet - won't do it in the future. The
only recourse you have is exactly what you have done.
-Hank
How can we prev
d networking do have many unseen similarities.
-Hank
At 13:49 16/02/2012 +, Jethro R Binks wrote:
On Thu, 16 Feb 2012, Hank Nussbacher wrote:
> Nanosecond Trading Could Make Markets Go Haywire
> http://www.wired.com/wiredscience/2012/02/high-speed-trading/
>
> "Below the 950-millisecond level, where computerized trading oc
On Wed, 22 Feb 2012, Carlos Asensio wrote:
Not supported:
http://www.gns3.net/hardware-emulated/
-Hank
Hi John,
Thanks for your answer but, as far as I know, with GNS3 we can't run a CAT6500
IOS.
Any alternative?
Cheers,
Carlos.
-Mensaje original-
De: John Kreno [mailto:jo
.
-Hank
On Mon, 2 Apr 2012, Todd Snyder wrote:
Try:
http://live.icmynet.com/icmynet-dns/
http://www.zonecut.net/dns/index.cgi
Regards,
Hank
Good day all,
There have been a few instances where we've wanted to check our external
DNS servers from various external networks, so we've ut
nough, they think no one will block them and if they do it will
just be small cases and nothing massive that would make them into a 2nd
league ISP. This therefore becomes a cost savings area since you no
longer need any abuse staff to handle your customers. You just ignore it
all.
-Hank
Ya
won't
enumerate my switch interfaces in order to capture utilization.
I've downloaded several trial tools (WhatsUp, NetCure, Solarwinds LANsurveyor
etc.) but they don't serve this very basic need of mine to see the realtime
link util in the diagram.
Thanks,
Hank Disuko
least my crappy attempts at google search terms).
-Hank
> Date: Tue, 1 May 2012 13:22:35 -0400
> From: sr...@nwwnet.net
> To: gourmetci...@hotmail.com
> Subject: Re: Network diagram app that shows realtime link utilizatin
>
> I monitor no
-B -G as378".
I know of ezwhois but am looking for something better (for example - they
don't have whois.ripe.net listed - one can add it but not save it).
Thanks,
Hank
At 12:54 10/05/2012 +0530, Suresh Ramasubramanian wrote:
Did you try this one Hank?
http://www.mcafee.com/us/downloads/free-tools/trout.aspx
That is not a whois client. Doesn't come close to what I need. Thanks anyway.
-Hank
On Thu, May 10, 2012 at 12:19 PM, Hank Nussbacher
At 16:57 10/05/2012 -0400, Scott Berkman wrote:
I am looking for a simple Windows GUI s/w for a secretary to use to do
whois lookups for IP and ASNs and to easily copy/paste the
results. Amazing that there is no such beast.
-Hank
I use Launchy (a keystroke launcher similar to GnomeDo
I am seeing all IPv6 prefixes that are monitored by Sixxs as being down
and unavailable.
Anyone know why?
Thanks,
Hank
On Wed, 20 Jun 2012, Jeroen Massar wrote:
Ill report it to them but:
http://www.sixxs.net/tools/grh/tla/
Shows every country as V=0 (prefixes visible per country).
-Hank
On 2012-06-20 01:04, Hank Nussbacher wrote:
I am seeing all IPv6 prefixes that are monitored by Sixxs as being down
and
On Wed, 20 Jun 2012, Hank Nussbacher wrote:
It would appear that whatever was broken is now fixed.
-Hank
On Wed, 20 Jun 2012, Jeroen Massar wrote:
Ill report it to them but:
http://www.sixxs.net/tools/grh/tla/
Shows every country as V=0 (prefixes visible per country).
-Hank
On 2012-06
At 19:25 20/06/2012 -0400, Kyle Creyts wrote:
Until such time that Sixxs responds as to what happened, it will all be
conjecture.
-Hank
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-1820 possibly
related?
On Wed, Jun 20, 2012 at 11:34 AM, Jeroen Massar wrote:
> Good morn
101 - 200 of 330 matches
Mail list logo
