Re: Network / Infrastructure security testing services

Your asking if anyone does it or your offering your services? -jim On Tue., Mar. 9, 2021, 3:56 p.m. Nathanael Cariaga, wrote: > Apologies for this shameless plug, but wanted to ask if any folks on this > list who does network/infrastructure security testing? Please to reach back > to me off the

Re: DDoS attack with blackmail

While I have no design to engage in over email argument over how much latency people can actually tolerate, I will simply state that most people have a very poor understanding of it and how much additional latency is really introduced by DDoS mitigation. As for implying that DDoS mitigation compan

Re: Any2 LAX

Also saw a major traffic drop. There is a Root Cause to be issued early in the week I'm told. -jim On Fri, Jun 11, 2021 at 2:42 PM Siyuan Miao wrote: > Yea, it was down but both RS are online and feeding us unreachable > nexthops during the outage . > > On Sat, Jun 12, 2021 at 1:27 AM Seth Mat

Re: Cogent x RPKI

It won't get them depeered, nor should it. I don't currently based much value in RPKI for BGP. On Mon., Aug. 9, 2021, 8:43 a.m. Rubens Kuhl, wrote: > From a Cogent support ticket: > "Hello, > > Please see the attached LOA. > > Regarding the RPKI ROA, for now, we don't create ROA for our prefixe

Re: netflow in the core used for surveillance

Randy, We all know many folks send their *flow to someone or somewhere. In exchange for pretty graphs for intelligence. I suspect in many cases this data is then reused in many cases for many purposes. But let's not overplay the risk here. There would be much easier ways for rogue nations, b

Re: "Is BGP safe yet?" test

I remember having this discussion more than 20yrs ago, minus the ARIN bit, couldn't get every to agree to it it then either :(. We don't need more rules, we just need to start with basic hygiene. Was a novel idea :) On Mon., Apr. 20, 2020, 2:41 p.m. Christopher Morrow, < morrowc.li...@gmail.com> w

Re: do bgp optimizers think?

Suspect for most th answer is poorly. This is a conversation I've had with a few people about how they could be well made -jim On Thu., Sep. 9, 2021, 12:45 p.m. Randy Bush, wrote: > to control inbound traffic, how do bgp optimizers decide how to tune > what they announce? slfow? exploration?

Re: S.Korea broadband firm sues Netflix after traffic surge

Having done peering for many $big_boys_club and $small_isps, it always comes down to politics, $$ and time. The balance may change but end of day its those variables and its a painful game some days. From all sides :( -jim On Fri, Oct 1, 2021 at 1:07 PM Laura Smith via NANOG wrote: > > > The

Re: Disaster Recovery Process

World broke. Crazy $$ per hour down time. Doors open with a fire axe. Glass breaks super easy too and much less expensive then adding 15 min to failure. -jim On Tue., Oct. 5, 2021, 7:05 p.m. Jeff Shultz, wrote: > 7. Make sure any access controlled rooms have physical keys that are > available

Re: Disaster Recovery Process

I don't see posting in a DR process thead about thinking to use alternative entry methods to locked doors and spreading false information. If do well. Mail filters are simple. -jim On Tue., Oct. 5, 2021, 7:35 p.m. Niels Bakker, wrote: > * deles...@gmail.com (jim deleskie) [Tue 05

Re: Redploying most of 127/8 as unicast public

This is actually worse than our collective progress on replacing v4 to date. -jim On Wed, Nov 17, 2021 at 7:31 PM Jay R. Ashworth wrote: > This seems like a really bad idea to me; am I really the only one who > noticed? > > https://www.ietf.org/id/draft-schoen-intarea-unicast-127-00.html > > Th

Re: Contact request AS 6453

Have you found anyone. Not there any more but can probably still find someone for you. -jim On Thu, Jan 13, 2022, 10:11 AM Drew Weaver wrote: > Does anyone have a contact for AS 6453 or are there any AS 6453 folks on > list? > > > > Seeing some routing trouble from their customers to the US. >

Re: The role of Internet governance in sanctions

I respect the people and goals here, but strongly echo Mel's statement. This is a much larger hammer then mail filtering lists. -jim On Thu, Mar 10, 2022, 11:26 AM Mel Beckman wrote: > In my view, there is a core problematic statement in this document: > > “Military and propaganda agencies and

Re: Dropping support for the .ru top level domain

Terrible idea on so many levels. -jim On Mon, Mar 14, 2022, 12:30 PM Patrick Bryant wrote: > I don't like the idea of disrupting any Internet service. But the current > situation is unprecedented. > > The Achilles Heel of general public use of Internet services has always > been the functionali

Re: IPv6 Only - was Re: Let's Focus on Moving Forward Re: V6 still not supported re: 202203261833.AYC

If then industry still hasn't adopted v6 full in 25 years maybe it's v6 that should be given up it, that it clearly wasn't what customers wanted. Perhaps we should should have a small group working on the next iteration. -jim On Tue, Mar 29, 2022, 5:54 PM Jacques Latour wrote: > So, in 25, 50 o

Re: Opinions on Arista for BGP?

I did an eval for some folks last Aug on Arista and 2 other vendors, one of the others decided they didn't want to play the 3rd did. Of the 3 Arista performed better/best. The test plan was shared with all 3 vendors prior to testing and it definitely push all this to and then past their published

Re: 10 Do's + Don'ts for Visiting Québec + Register Now for N85!

Having lived in and continue to spend as much time in Montreal as I can. This list made be laugh, especially for a group where most of us do a lot of travel. Other then no right on red. Montreal like any other city. Don't be an ass and enjoy yourself. On Thu, May 5, 2022, 9:56 AM Nanog News

Re: Rogers Outage Canada

i cant see BGP taking out SS7. -jim On Fri, Jul 8, 2022 at 2:45 PM Snowmobile2004 wrote: > According to Cloudflare Radar > , Rogers > BGP announcements spiked massively to levels 536,777% higher than normal > (343,601 vs 64 normall

Re: AKAMAI Contact

Seriously search the list people. Even a little effort on your own. Same question a few days ago. -jim On Wed, Sep 28, 2022, 3:45 PM Joshua Pool via NANOG wrote: > Anyone have a contact for AKAMAI? > > Thanks in advance. > > Josh >

Re: Understanding impact of RPKI and ROA on existing advertisements

I dont think ive every agreed with Owen this much, maybe this is the first sign the wording is ending further proving his statement :) On Wed, Nov 2, 2022 at 10:30 PM Owen DeLong via NANOG wrote: > Oh, I’m not ignoring it, I’m just rather underwhelmed by it and given how > long it took SIDRWG to

Re: TATA Communications

Have you tried NOC not sure who from their actively monitors the list anymore? Forwarding to a former colleague. -jim On Mon, Dec 12, 2022 at 2:49 PM Norman Jester wrote: > Contact me off list... seeing major loss at 64.86.252.65 in your path. > > Norman Jester > 619-319-7055 >

Re: modeling residential subscriber bandwidth demand

+1 on this. its been more than 10 years since I've been responsible for a broadband network but have friends that still play in that world and do some very good work on making sure their models are very well managed, with more math than I ever bothered with, That being said, If had used the methods

Re: modeling residential subscriber bandwidth demand

lso to allow for spikes in traffic for various events > throughout the year. > > Louie > Google Fiber > > > On Tue, Apr 2, 2019 at 11:36 AM jim deleskie wrote: > >> +1 on this. its been more than 10 years since I've been responsible for a >> broadband network

Re: DOs and DONTs for small ISP

triggered :) On Tue, Jun 4, 2019 at 11:31 AM Bryan Holloway wrote: > > On 6/4/19 9:20 AM, Mark Tinka wrote: > > > > > > On 3/Jun/19 15:41, Fletcher Kittredge wrote: > >> > >> Here is your checklist in descending order of importance: > >> > >> 1. market opportunity > >> 2. finding the right pa

Re: Disney+ Geolocation issues

Using a TPIA provider here at home in Nova Scotia same issue. -jim On Tue., Nov. 12, 2019, 6:29 p.m. Michael Crapse, wrote: > Myself and a few other ISPs are having our eyeballs complain about > disney+ saying that they're on a VPN. Does anyone have any idea, or who to > contact regarding this

Re: BGP FlowSpec

I was going to avoid this thread because I've never been a huge fan of Flowspec for my own reasons. However having work on /been responsible for several "Tier 1 and 2" networks and DDoS mitigation services over the last 20 years, I can say I, nor any of my peers ( in any sense of that word) that

Re: Netflix VPN detection - actual engineer needed

I don't suspect many folks that are outside of this list would likely have any idea how to set up a v6 tunnel. Those of us on the list, likely have a much greater ability to influence v6 adoption or not via day job deployments then Netflix supporting v6 tunnels or not. On Fri, Jun 3, 2016 at 8:49

Re: Netflix VPN detection - actual engineer needed

Damian, I HIGHLY doubt regular folks are running into issues with this, I suspect its not even geeks in general having issues, I suspect 80% plus of those having issues spend most of their time complaining about something related to v6 and the rest of the geeks not loving them/it enough. -jim On

Re: cross connects and their pound of flesh

I don't buy this. They sold you one cable before, they sell you cable now. Little difference then we moved customers from a T1 to T3 back in the 90's. If Colo's can't understand more then 20+ yrs of evolution its hardly right to blame it on the market. -jim Mimir Networks www.mimirnetworks.c

Re: cloudflare hosting a ddos service?

sigh... On Tue, Jul 26, 2016 at 10:55 PM, Patrick W. Gilmore wrote: > CloudFlare will claim they are not hosting the problem. They are just > hosting the web page that lets you pay for or points at or otherwise > directs you to the problem. > > The actual source of packets is some other IP addre

Re: cloudflare hosting a ddos service?

Back in the day didn't we refer to such hosting as bulletproof hosting? On Tue, Jul 26, 2016 at 11:17 PM, Phil Rosenthal wrote: > Plus, it’s good for business! > > -Phil > > > On Jul 26, 2016, at 10:14 PM, jim deleskie wrote: > > > > sigh... > > > &

Re: NFV Solution Evaluation Methodology

I struggled with this whole SDN/NVF/insert marketing term for a while at first, until I sat down and actually though about. When I strip away all the foo, what I'm left with is breaking things down to pieces and and putting logo blocks together in a way that best suits what I'm doing. It is reall

Re: "Defensive" BGP hijacking?

Redirecting someone's traffic, with out there permission or a court order, by a court in your jurisdiction, not a lot different then the "bad guys" themselves. On Sun, Sep 11, 2016 at 5:54 PM, Hugo Slabbert wrote: > Hopefully this is operational enough, though obviously leaning more > towards

Re: Krebs on Security booted off Akamai network after DDoS attack proves pricey

They were hosting him for free, and like insurance, I can assure you if you are consistently using a service, and not covering the costs of that service you won't be a client for long. This is the basis for AUP/client contracts and have been going back to the days when we all offered only dialup i

Re: Krebs on Security booted off Akamai network after DDoS attack proves pricey

Not at all. I refered to AUP's as a way people remove you from a service when you use more of it then you are paying for. On Fri, Sep 23, 2016 at 3:58 PM, Marcin Cieslak wrote: > On Fri, 23 Sep 2016, jim deleskie wrote: > > > They were hosting him for free, and like insurance,

Re: Krebs on Security booted off Akamai network after DDoS attack proves pricey

Sorry but you are mistaken. I've worked at Sr. levels for several LARGE and medium sized networks. What does it cost and what do we make doing it, over rules what is "good for the internet" every time it came up. On Sun, Sep 25, 2016 at 2:27 PM, Ca By wrote: > On Sunday, September 25, 2016, Joh

Re: Krebs on Security booted off Akamai network after DDoS attack proves pricey

ck proves pricey > From: jim deleskie > Sorry but you are mistaken. I've worked at Sr. levels for several LARGE and > medium sized networks.  What does it cost and what do we make doing it, > over rules what is "good for the internet" every time it came up. "nice

Re: Legislative proposal sent to my Congressman

Can we please not get the government ( who's gov ) involved. I fully agree that it will not only not help, but will make some things worse. This is why we can't have nice things. On Tuesday, October 4, 2016, Anne Mitchell wrote: > (Interesting and inarguably well-intentioned, and possibly even

Re: Death of the Internet, Film at 11

It is also likely the desired use case. In my office I like to be able to login when needed when on the road, when the alarm company calls me at 2am for a false alarm so I don't have to get someone else out of bed to have them dispatched to check on the site. -jim On Sat, Oct 22, 2016 at 1:42 PM

Re: Death of the Internet, Film at 11

y iPhone* > > On Oct 22, 2016, at 12:06 PM, jim deleskie wrote: > > It is also likely the desired use case. In my office I like to be able to > login when needed when on the road, when the alarm company calls me at 2am > for a false alarm so I don't have to get someone else

Re: Death of the Internet, Film at 11

Sure lets sue people because they put too many/bad packets/packets I don't like on the internet. Do you think this will really solve the porblem? Do you think we'll not just all end up with internet prices like US medical care prices? On Sun, Oct 23, 2016 at 4:41 PM, wrote: > > >So once identi

Re: Death of the Internet, Film at 11

I've heard this crap for 20+ years now. "attack traffic" is unplanned traffic. Build networks to support "random" bursts of garbage is much more expensive then you will ever get to bill for. You clearly have no understanding of the economics of networks. On Sun, Oct 23, 2016 at 10:39 PM, Keith

Re: Spitballing IoT Security

So device is certified, bug is found 2 years later. How does this help. The info to date is last week's issue was patched by the vendor in Sept 2015, I believe is what I read. We know bugs will creep in, (source anyone that has worked with code forever) Also certification assuming it would work,

Re: BFD on back-to-back connected BGP-speakers

Hugo, I've used this configuration in a past line when I may of had multiple L2 steps between L3 devices. The only concern we had was around load BFD put on _some_ endpoint routers, if was handles on the RouteProcessor vs on line cards. -jim On Tue, Nov 29, 2016 at 2:23 PM, Hugo Slabbert wr

Re: Canadian National Railway contact

Have a friend that used to work there, will reach out to see if he still does. -jim On Tue, Dec 6, 2016 at 11:48 AM, Andy Ringsmuth wrote: > If there happens to be someone here from the Canadian National Railway, or > if someone knows someone there, could you hit me up off-list? > > Attempting

Re: Rogers Peering Request

Will reach out to some folks I know there. PM me Network, AS etc. On Thu, Dec 15, 2016 at 3:33 PM, Ryan Gard wrote: > Looking for a Rogers contact to get things moving on a peering request. > Been trying to shout into their ear for well over a month, and haven't > heard anything back. Further, P

Re: [OT] Internet in China

Chinese ISP's typically like to run their links very hot. Don't expect much different if you change providers. -jim On Mon, Jul 23, 2018 at 8:37 AM, Danijel Starman wrote: > Hi, > > Can someone suggest a reliable internet provider in China? Are all > options China Telecom? > > Some current lin

Re: Service Provider NetFlow Collectors

Erik, Feel free to ping me, I own Mimir Networks, we have a full-service flow collection/DDoS detection and mitigation system that I'd love to show you. We built it having been a long time user of other commercial and open source tools, for very large deployments. Would be happy to give you a f

Re: Out of ideas - Comcast issue BGP peering with Tata

I many years ago worked at Tata, responsible for their BGP, they are giving you the right answer, Comcast has to be the one contacting them, as then both sides can see what is being sent and received and can resolve this issue. -jim On Fri, Nov 17, 2023 at 10:04 AM Jamie Chetta via NANOG wrote:

Re: Cogent-TATA peering dispute?

Not even the first time tata and cogent separated. Will avoid public details but I was on the keyboard at 6453 that time. On Fri, May 17, 2024, 6:05 PM William Herrin wrote: > On Fri, May 17, 2024 at 9:55 AM Ben Cartwright-Cox via NANOG > wrote: > > Also poking around on RIPE Atlas suggests th

Re: Long AS Path

I see 5+ prepends as maybe not reason to have your "BGP driving license revoked" but if I can continue with the concept that you have your BGP learners permit. If I think back to when I learned to code or when making ACL's, we still used line number and practice would be to give ourselves lots of

Re: Bell outage

Cell and the internet all down here from Bell and those sharing their towers, also 911 services. Banking / ATM also impacted, no idea reason though. -jim Mimir Networks www.mimirnetworks.com On Fri, Aug 4, 2017 at 12:14 PM, Krunal Shah wrote: > Does anyone know what is happening with Bell net

Re: Bell outage

Single fiber cut causes the much impact? -jim On Fri, Aug 4, 2017 at 2:59 PM, J wrote: > https://www.theglobeandmail.com/news/national/much-of- > atlantic-canada-loses-cellphone-service-in-widespread-outage/ > article35881182/ > > > > Apparently some fiber cut. No word on the exact model of co

Re: AS PATH limits

In my MUCH younger days, I may have helped abuse the global table via prepends, but never to that level :) On Wed, Sep 20, 2017 at 4:36 PM, Randy Bush wrote: > > Below is an example showing an excessive amount of prepending for prefix > > 185.135.134.0/23 at 2017-09-18 20:20:05 UTC. > > and the

Re: AS PATH limits

Maybe the next best path had, had 562 prepends? :) On Sat, Sep 30, 2017 at 12:09 PM, wrote: > > If you're on cogent, since 22:30 UTC yesterday or so this has been > happening > > (or happened). > > Still happening here. I count 562 prepends (563 * 262197) in the > advertisement we receive from

Re: 2010.10.06 NANOG50 day 3, Wednesday morning notes

+1 On Wed, Oct 6, 2010 at 1:49 PM, Guerra, Ruben wrote: > Thanks for the notes Matt! :) > > > > -Original Message- > From: Matthew Petach [mailto:mpet...@netflight.com] > Sent: Wednesday, October 06, 2010 10:54 AM > To: nanog@nanog.org > Subject: 2010.10.06 NANOG50 day 3, Wednesday mornin

Re: Internet in DPRK / North Korea

and his 3g's and his wifi's? :) On Sun, Oct 10, 2010 at 9:56 PM, Christopher Morrow wrote: > On Sun, Oct 10, 2010 at 8:38 PM, John R. Levine wrote: > > 175.45.179.68/ > > > once senses that the potential successor wants his twitters and > facebooks... > >

Re: U.S. officials deny technical takedown of WikiLeaks

+1 On Sat, Dec 4, 2010 at 8:24 PM, Bret Clark wrote: > On 12/04/2010 06:03 PM, Ken Gilmour wrote: >> >> Now Sarah Palin is suggesting Wikileaks are terrorists and should be taken >> offline with technical capabilities >>  http://www.golem.de/1012/79848.html >> >> or for anyone who can't speak Ger

Re: Over a decade of DDOS--any progress yet?

+1 On Wed, Dec 8, 2010 at 10:30 AM, Drew Weaver wrote: > Yes, but this obviously completes the 'DDoS attack' and sends the signal that > the bully will win. > > -Drew > > > -Original Message- > From: alvaro.sanc...@adinet.com.uy [mailto:alvaro.sanc...@adinet.com.uy] > Sent: Wednesday, De

Re: Routing Suggestions

What Joe Said. Static with 1918 space. If they NEED global space, explain 1918 space will work and tell them to use it. -jim On Wed, Jan 12, 2011 at 9:02 PM, Joe Hamelin wrote: >>> There are two companies, Company A and Company B, that are planning to >>> continuously exchange a large amount

Re: Securing Border Routers

Never put a firewall in front of a router, it will die first. The team CYMRU stuff is great make sure you have ACL's on your VTY and allow access only from trusted internal IPs. I also like using non world routable space on any interface I can. On Wed, Jan 19, 2011 at 9:38 PM, Brandon Kim wrote

Re: Connectivity status for Egypt

iMCI or WCOM? :) On Fri, Jan 28, 2011 at 5:18 PM, Christopher Morrow wrote: > On Fri, Jan 28, 2011 at 3:51 PM, Alastair Johnson wrote: > > > For instance, our corporate WAN links into Cairo are still up (UUNET > PIP). > > that's the MCI PIP... > >

Re: Hackers hijack 300, 000-plus wireless routers, make malicious changes | Ars Technica

Why want to swing such a big hammer. Even blocking those 2 IP's will isolate your users, and fill your support queue's. Set up a DNS server locally to reply to those IP's Your customers stay up and running and blissfully unaware. Log the IP's hitting your DNS servers on those IP and have your s

Re: [ PRIVACY Forum ] Critical crypto bug leaves Linux, hundreds of apps open to eavesdropping

Doing some serious adjusting of my tinfoil today over his :) -jim On Wed, Mar 5, 2014 at 5:03 PM, Jay Ashworth wrote: > - Original Message - > > From: "Leo Bicknell" > > > On Mar 4, 2014, at 9:07 PM, Jay Ashworth wrote: > > > > > Is this the *same* bug that just broke in Apple code l

Re: Canada and IPv6 (was: Ars Technica on IPv4 exhaustion)

Those all sounds like legit business questions. -jim On Thu, Jun 19, 2014 at 2:45 PM, William F. Maton Sotomayor < wma...@ottix.net> wrote: > On Wed, 18 Jun 2014, Sadiq Saif wrote: > > On 6/18/2014 14:25, Lee Howard wrote: >> >>> Canada is way behind, just 0.4% deployment. >>> >> >> Any Canadi

Re: Verizon Public Policy on Netflix

So it sounds like your customers want to use the service being sold, but you can't afford to service them due to the pricing they are being charged...Sounds like you need to raise prices. While I haven't worked for a rural wireless ISP, I have work for wired ISP's in the days of modems, Large tran

Re: NANOG List Update - Moving Forward

+1 On Tue, Jul 12, 2011 at 8:32 AM, William Pitcock wrote: > On Tue, 12 Jul 2011 10:50:38 +0100 (BST) > Tim Franklin wrote: > >> > Thankfully, the current test has been a success. >> >> Including stopping non-members from posting to the list, and other >> anti-spam? >> >> I've got a sudden influ

Re: NetFlix Down

Unreachable from eastern Canada as well 2011/7/17 : > Ipad app says "Service Temporarily Unavailable" at the moment. > > Netflix claims to be operating about 90% of their services out of aws and the > only issue on the aws status page is a vpn end point issue from yesterday. > > -Original Me

Re: OSPF vs IS-IS

Having run both on some good sized networks, I can tell you to run what your ops folks know best. We can debate all day the technical merits of one v another, but end of day, it always comes down to your most jr ops eng having to make a change at 2 am, you need to design for this case, if your usi

Re: OSPF vs IS-IS

SPFv3 too. I will have to look more deeply into >> OSPFv3. >> >> Thanks, >> >> -CJ >> >> On Thu, Aug 11, 2011 at 9:34 AM, jim deleskie wrote: >> >>> Having run both on some good sized networks, I can tell you to run >>> what your ops folks

Re: [Nanog-futures] Admission for Committee Members

I have no problem with speakers getting in free. Speakers may or may not be active in the community and if you want to continue to draw quality speakers this is truly the least the community can do. Many conferences will pick up travel costs, or even token 'gifts' for speakers. As for committee

Re: [Nanog-futures] Admission for Committee Members

t a small number of > people here, at most 1-2 per conference I suspect based on historical chats. > > Jared Mauch > > On Sep 2, 2011, at 11:27 AM, jim deleskie wrote: > >> If a >> members company is willing to pay anyway, then people always have the >> option o

Re: Do Not Complicate Routing Security with Voodoo Economics

While I can think of some corner cases for this, ie you have a satellite down link from one provider and fiber to anther. I expect this is not the norm for most networks/customers. -jim On Sun, Sep 4, 2011 at 10:59 AM, Randy Bush wrote: >> I have worked for more then one transit free network, a

Re: Do Not Complicate Routing Security with Voodoo Economics

Because routing to peers as a policy instead of customer as a matter of policy, outside of corner cases make logical sence. While many providers aren;t good at making money it is fact the purpose of the ventures. If I route to a customer I get paid for it. If I send it to a peer I do not. On S

Re: Strange static route

Wouldn't it make more sense to filter in bound default? or use a single static default if you where worried about that? -jim On Fri, Sep 23, 2011 at 10:18 PM, Joel Maslak wrote: > Protection against learning a bad default route through whatever routing > protocol they are learning, since these

Re: Vancouver, BC providers

I'd expect you could find, Rogers, Telus, Shaw and Bell all there. -jim On Tue, Oct 25, 2011 at 3:18 PM, Ravi Pina wrote: > Hi, > > I was looking for some metro-e options in Vancouver, BC CA > specifically in the Downtown/Gastown area.  I'm finding the area > isn't the most built up so options

Re: Manage an enterprise network? Please fill out my survey - for Science! :-)

A quick look at her web pg shows her undergad @ UWash On Mon, Oct 31, 2011 at 11:23 PM, Adefisayo Adegoke wrote: > Hello Justine, > > I find it interesting, to say the least, that all of the communication > that you have about a Berkeley research program while your email came > from washington.

Re: Looking for a Tier 1 ISP Mentor for career advice.

What Chris said Get a job in the industry.. work like crazy learning as much as you can to learn, get involved in the industry to make connections. -jim On Sun, Nov 20, 2011 at 10:47 PM, Christopher Morrow wrote: > On Sun, Nov 20, 2011 at 9:40 PM, Tyler Haske wrote: >> I'm looking for a men

Re: Google Public DNS having issues.

reachable from eastern canada On Thu, Feb 7, 2013 at 1:41 PM, Blair Trosper wrote: > ...seems to be having trouble as reported by Systems Watch: > https://twitter.com/systemswatch/status/299572918936039424 > > Indeed, it's inaccessible to me from Minneapolis, Tampa, SJC, and > Seattle...both 8.8.

Re: What hath god wrought?

Maybe my tinfoil isn't on tight enough, or maybe I give to much credit to a gov't, or perhaps I'm just feeding the trolls, but I have a very hard time believing that DHS, launched a DoS from their own machines. -jim On Tue, May 21, 2013 at 12:18 PM, David Conrad wrote: > On May 20, 2013, at 9

Re: PRISM: NSA/FBI Internet data mining project

Knowing its going on, knowing nothing online is secret != OK with it, it mealy understand the way things are. -jim On Thu, Jun 6, 2013 at 9:16 PM, wrote: > On Thu, 6 Jun 2013, Matthew Petach wrote: > >> Much less stress in life that way. ^_^ >> > > complacency is always the easiest path. > >

Re: ISPs and full packet inspection

Asking for legal advice on NANOG is probably a REALLY REALLY bad idea. Talk to a lawyer in the area(s) you do business. -jim On Thu, May 24, 2012 at 9:50 AM, not common wrote: > Hello, > > I am looking for some guidance on full packet inspection at the ISP level. > > Is there any regulations tha

Re: Industry practice for BGP costs - one time or fixed/monthly?

IMHO the only reason(s) would be to discourage people from asking for it, or as a $$ grab. -jim On Fri, May 25, 2012 at 1:01 PM, Anurag Bhatia wrote: > Hello everyone > > > I have been aggressively looking for deals in servers in Europe for > anycasting. One thing which surprises me is the "setu

Re: Penetration Test Assistance

A complete diagram makes their life easier, may make for a more complete test, but they are working for you, so if you don't have it, you don't have. I'm not a big fan of having a single diagram with everything laid out anyway, but I'm from the old shcool. -jim On Tue, Jun 5, 2012 at 11:52 AM,

Re: very confusing.

Accidental, he didn't mean to get caught :) On Wed, Jun 13, 2012 at 7:10 PM, Richard Golodner wrote: > On Thu, 2012-06-14 at 07:05 +0900, >> ACCIDENTAL email > > How can my company get six accidental emails? Not even an idiot sends > six emails by mistake. > > Spammertechnology labs is more like

Re: job screening question

Pascal's wager.. almost :) On Fri, Jul 6, 2012 at 7:25 PM, wrote: > On Fri, 06 Jul 2012 15:07:51 -0700, goe...@anime.net said: > >> This is what baffles me. People keep putting stuff on their resume that >> they simply don't know anything about. TCP/IP expert, yet they don't know >> SYN/SYNACK

Re: /. Terabit Ethernet is Dead, for Now

That problem IMO will only be worse with a 4x speed multiplier over 100G what premium will anyone be willing to spend to have a single 400G pipe over 4 bonded 100G pipes? -jim On Thu, Sep 27, 2012 at 10:07 AM, Jared Mauch wrote: > > On Sep 27, 2012, at 8:58 AM, Darius Jahandarie wrote: > >> I

Re: max-prefix and platform tcam limits: they are things

I know that I should know better then comment on networks others then my own, ( and I know to never comment on my own publicly :) ) But here goes, 210x the size of normal really? 210% I'd have a hard time believing. Did anyone else anywhere see a route leak equal to larger then the entire Intern

Re: max-prefix and platform tcam limits: they are things

1:05:07 -0300, jim deleskie said: > >> But here goes, 210x the size of normal really? 210% I'd have a hard >> time believing. Did anyone else anywhere see a route leak equal to >> larger then the entire Internet that day, anywhere else that could of >> caused this?

Re: NSA and the exchanges

If your talking "the NSA" I doubt anyone would tell you. That being said: it would mean the US gov't breaking Canadian law I suspect. Now in Canada it is quite possible that the Canadian Fed gov't monitors traffic but I would also say no one would tell you because telling you would also be in vio

Re: [OPINION] Best place in the US for NetAdmins

Rich, In principal I agree, and I've said this many times, for years I've telecommuted myself, mostly effectively. I'd work much longer hours, but not always worked as efficiently during all of those hours. When I started my own company, with $$ be in short supply like all start ups I I planned

Re: Facebook down?

>From East coast of Canada down as well. On Wed, Sep 3, 2014 at 4:48 PM, Warren Bailey < wbai...@satelliteintelligencegroup.com> wrote: > I¹m getting a ton done right now too.. Hasn¹t been working since my first > attempt about 20 minutes ago. > > > > On 9/3/14, 12:45 PM, "Marshall Eubanks" > w

Re: Checkpoint IPS

mh, you know that forcing traffic to be symmetrical is evil, and while backbone traffic and inspection don't play nice, there are very legit reasons why, in many cases edge traffic must be open for inspection. I'm on my way to the office, feel free to ping me if you want to discuss. Or maybe I

Re: net neutrality peering dispute between CenturyTel/Qwest and Cogent in Dallas

In my 20+ yrs now of playing this game, "everyone" has had a turn thinking their content/eyeballs are special and should get free "peering". On Sat, Aug 15, 2015 at 1:59 PM, Mike Hammett wrote: > Arrogance is the only reason I can think of why the incumbents think that > way. I'd be surprised if

Re: net neutrality peering dispute between CenturyTel/Qwest and Cogent in Dallas

015 at 5:35 PM, Mark Tinka wrote: > > > On 15/Aug/15 19:32, jim deleskie wrote: > > > In my 20+ yrs now of playing this game, "everyone" has had a turn > thinking > > their content/eyeballs are special and should get free "peering". > > That

Re: NetFlow - path from Routers to Collector

I've not read every reply, but let me add my voice as some who has worked on and ran SEVERAL large networks, in no case in the last long number of years have I had access to an OOB network that was sized to carry anything in large volume, and in fact like many others replied on a robust number of p

Re: NetFlow - path from Routers to Collector

Adding VRFs/VLAN's/anything else to separate the traffic to reduce fate sharing is only adding complexity that will likely result in operator errors. While many of us have clue, even when we don't agree on the solutions, there are many more out there typing at routers at 2am, when even the simples

Re: Ear protection

Maybe I've always listened to my music to loud and spend the bulk of time via ssh, but I've never felt a need for hearing protection in a DC, is this generally an issue for people? On Wed, Sep 23, 2015 at 8:08 AM, Alex Rubenstein wrote: > Why not just build a Datacenter that is quiet? > > On Sep

Re: The IPv6 Travesty that is Cogent's refusal to peer Hurricane Electric - and how to solve it

Was part of my first peering spat, probably 95/96‎ since then many more, couple even big enough they made nanog/ industry news, end of day they are all the same. If you need to reach every where have more then one provider, it's good practice anyway, a single cust or even a bunch of cust are NOT go

Re: Cogent <=> Google Peering issue

They haven't been since at least the mid 90's :) On Wed, Feb 17, 2016 at 12:50 PM, Nick Hilliard wrote: > Todd Underwood wrote: > > Can you scope "issue" with any facts or data? > > are facts or data strictly necessary on the nanog mailing list? > > Nick > > > T > > On Feb 17, 2016 11:16, "Fred

  1   2   >