Re: Office 365 Calendar support for macOS Calendar App

Mark, for what it's worth we do have a few Mac users and some of them do show an "Apple Internet Accounts" under the Azure Active Directory admin center -> Enterprise applications. I, myself, do not show this application under my account (despite the calendar app working fine). I do use both

Re: Office 365 Calendar support for macOS Calendar App

Same here. Added the account as Exchange within the Internet Accounts section of System Settings. No issues that I've seen and I use the Calendar app pretty regularly within MacOS, iOS, and the office.com website. On 5/23/2023 7:11 AM, Steve Lalonde wrote: Hi Mark, I’m using macOS native

Re: Aptum refuses to SWIP

On 5/4/2023 9:09 PM, Forrest Christian (List Account) wrote: I can't speak for aptum, but I'm curious as to why this is important to you? SWIP'ing or delegating address space is a requirement of the contract signed with ARIN when the addresses were granted. If you route a /24 to a customer

Re: PoE, Comcast Modems, and Service Outages

hing in our suite that was causing RF > interference, the provider might work with us to move the modem or the cable > run. > > -A > > On Tue Mar 29, 2022, 09:59 PM GMT, Blake Hudson wrote: > > On 3/29/2022 3:24 PM, Joe Greco wrote: > He's got graphs showing it

Re: PoE, Comcast Modems, and Service Outages

On 3/29/2022 3:24 PM, Joe Greco wrote: He's got graphs showing it every 24 hours? Liar, liar, pants on fire, lazy SOB is looking for an excuse to clear you off the line. Where the heck does this "24 hour" cycle even come from? What SNMP OID is there for "ghostly PoE build-up"? What crontab

Re: New minimum speed for US broadband connections

fine by paying $50k buildout or signing a 10 year agreement for TV/Phone/Internet and convincing 5 neighbors too ;) *Brandon * On Fri, Feb 11, 2022 at 1:32 PM Blake Hudson wrote: My mom moves to Olathe, KS. The realtor indicated that ATT, Comcast, and Googl

Re: New minimum speed for US broadband connections

My mom moves to Olathe, KS. The realtor indicated that ATT, Comcast, and Google Fiber all provided service to the neighborhood and the HOA confirmed. Unfortunately for her, Google fiber laid fiber ~3 years before and her cul-de-sac was developed ~2 years before she moved in. No Google Fiber,

Re: Latency/Packet Loss on ASR1006

On 11/26/2021 1:09 PM, Colin Legendre wrote: Hi, We have ... ASR1006  that has following cards... 1 x ESP40 1 x SIP40 4 x SPA-1x10GE-L-V2 1 x 6TGE 1 x RP2 We've been having latency and packet loss during peak periods... We notice all is good until we reach 50% utilization on output of...

Re: S.Korea broadband firm sues Netflix after traffic surge

at 10:19 AM Blake Hudson wrote: On 10/1/2021 8:48 AM, Sean Donelan wrote: > South Korean Internet service provider SK Broadband has sued Netflix > to pay for costs from increased network traffic and maintenance work > because of a surge of viewers to the U.S. firm'

Re: S.Korea broadband firm sues Netflix after traffic surge

nd sell to consumers: "America's most reliable network" (TM). On 10/1/2021 1:20 PM, Jay Hennigan wrote: On 10/1/21 07:19, Blake Hudson wrote: It's about time Netflix played chicken with one of these ISPs and stopped offering service  (or offered limited service) to the ISPs tha

Re: S.Korea broadband firm sues Netflix after traffic surge

On 10/1/2021 11:23 AM, Sean Donelan wrote: In the old days, postal services used to charge the recipient of a letter to deliver the letter. Then stamps were invented, and postal services charged the sender of the letter, and the recipent got free delivery. Now there is free-shipping,

Re: setting ntp with dhcp

Hi Giovane, a time server is a required DHCP option for DOCSIS devices. This uses the older TIME protocol (UDP port 37, RFC 868). However, it's common for DOCSIS devices like MTAs, STBs, etc to also request and use NTP server addresses received via DHCP (they may apply this using SNTP rather

Re: S.Korea broadband firm sues Netflix after traffic surge

On 10/1/2021 8:48 AM, Sean Donelan wrote: South Korean Internet service provider SK Broadband has sued Netflix to pay for costs from increased network traffic and maintenance work because of a surge of viewers to the U.S. firm's content, an SK spokesperson said on Friday. [...] Last year,

Re: uPRF strict more

On 9/29/2021 5:30 PM, Sabri Berisha wrote: - On Sep 29, 2021, at 8:03 AM, Blake Hudson bl...@ispn.net wrote: Hi Blake,     200 deny ip 10.0.0.0 0.255.255.255 any (91057035 matches)     210 deny ip 172.16.0.0 0.15.255.255 any (1366408 matches)     220 deny ip 192.168.0.0 0.0.255.255

Re: uPRF strict more

On 9/29/2021 9:27 AM, Mark Tinka wrote: On 9/29/21 16:21, Blake Hudson wrote: I do not use uRPF on upstream/transit/IX links or with multi-homed customers - or anywhere else where traffic could be asymmetrical; I prefer to use stateless ACLs at these locations. On peering and transit

Re: uPRF strict more

As an eyeball network operator (Cable, DSL, Fiber) we use uRPF strict mode on customer facing ports on the BRAS gear. Our access gear also tends to include source address verification via DHCP snooping (as well as limits on the number of DHCP leases and/or MAC addresses each customer is

Re: Upcycling devices like DOCSIS 3.0 MODEMs

While most cable networks consist primarily of DOCSIS 3.0 devices, there's an appreciable difference between an older 8 channel capable modem with 802.11n and a 16-32 channel capable modem with 802.11ac. Most ISPs I've worked with also like to standardize on a single vendor or a few models for

Re: NAT devices not translating privileged ports

On 6/10/2021 4:04 AM, Fernando Gont wrote: Hi, Blake, Thanks a lot for your comments! In-line On Fri, 2021-06-04 at 11:13 -0500, Blake Hudson wrote: Current gen Cisco ASA firewalls have logic so that if the connection from a private host originated from a privileged source port, the NAT

Re: NAT devices not translating privileged ports

Current gen Cisco ASA firewalls have logic so that if the connection from a private host originated from a privileged source port, the NAT translation to public IP also uses an unprivileged source port (not necessarily the same source port though). I found out that this behavior can cause

Re: New minimum speed for US broadband connections

On 6/2/2021 6:19 AM, Mike Hammett wrote: While I don't have any stats to back it up myself, one of my fixed wireless colleagues reported moving nearly a whole neighborhood from 25 meg fixed wireless to 200 - 500 meg fiber. The 95th% usage changed approximately 10%. - Mike Hammett

Re: New minimum speed for US broadband connections

On 6/1/2021 10:50 PM, Haudy Kazemi via NANOG wrote: On bandwidth: perhaps some kind of 80/20 or 90/10 rule could be applied that uses broadly available national peak service speeds as the basis for a formula. An example might be...the basic service tier speed available to 80% of the

Re: New minimum speed for US broadband connections

*From:* NANOG on behalf of Blake Hudson *Sent:* Friday, May 28, 2021 9:02 AM *To:* nanog@nanog.org *Subject:* Re: New minimum speed for US broadband connections What is the rationale for changing it? Have the applications changed

Re: New minimum speed for US broadband connections

What is the rationale for changing it? Have the applications changed? Has our use of them changed? Yes, somewhat. There's been, and will continue to be, more cord cutting of non-IP broadcast video services towards unicast IP streaming services. However, video codecs have gotten more efficient

Re: Best practice for ptp/loopback numbering for "small" enterprise multihome setup

On 3/26/2021 3:27 PM, Lukas Tribus wrote: Another alternative is to use the actual user interface to get your iBGP across, which is publicly addressed. I think this may actually be the best solution proposed so far. iBGP (as spec'd by the op) can be setup between the WAN, LAN, loopback, or

Re: Best practice for ptp/loopback numbering for "small" enterprise multihome setup

On 3/26/2021 2:01 PM, William Herrin wrote: If you feel like getting fancy... Use /32 routes to reclaim the unused base and broadcast address in any /30s Pick the next largest size block that has your /24 neither at the start or end and assign that to your lan. Use proxy arp and more

Re: Best practice for ptp/loopback numbering for "small" enterprise multihome setup

On 3/26/2021 12:01 PM, vom513 wrote: Hello, tl;dr - If I only have a /24 PI - is there any way to use this and not “chop it up / deagg” to use for ptp/loopbacks ? Hopefully I can explain this in a manner that makes sense. Say I have a vanilla dual router/dual upstream setup (think

Re: Apple Catalina Appears to Introduce Massive Jitter

On the latest Catalina 10.15.7 from a MacBook Air (early 2014) via WiFi to Google Wifi Mesh router (only a single unit network): Over 2.4Ghz through 3 interior walls: --- 192.168.86.1 ping statistics --- 100 packets transmitted, 100 packets received, 0.0% packet loss round-trip

Re: Ingress filtering on transits, peers, and IX ports

Speaking as an ISP:     Most of the ISP networks I manage are multi-homed, and I don't think uRPF provides the knobs to ensure legitimate traffic doesn't get dropped in some cases, so we use static ACLs at the upstream edge on ingress (and egress). These need updated any time new IP space is

Re: ISPs are hit hardest by COVID-19 disruption

The findings from Thousand Eyes seems reasonable and data driven, but Mr Barker's article on that report seems to have reached the wrong conclusions and added a sensational headline that doesn't jive with the data at all (IMO). My take on the Thousand Eyes findings: ISP's performed more

Re: How to manage Static IPs to customers

my iPhone/ On May 8, 2020, at 4:02 PM, Blake Hudson wrote: Aaron, I was thinking something similar. I've never once had a node split require moving a customer to a different CMTS. Even the very old and (relatively) low capacity 7200 VXR could serve several nodes per line card and supported

Re: How to manage Static IPs to customers

Aaron, I was thinking something similar. I've never once had a node split require moving a customer to a different CMTS. Even the very old and (relatively) low capacity 7200 VXR could serve several nodes per line card and supported several line cards per chassis. Newer cBR8, E6k, and the like

Re: rack rails

On point #1, I typically look for a part number and use Google. If a part number is present it often provide clues as to the brand, if not a range of compatible models. If no part number, sometimes the finish can provide clues - e.g. powder coated black rails or mounts often went with other

Re: COVID-19 vs. our Networks

Have you heard of the Patriot Act? Tom is correct that this does set a precedent of suppressing freedom of speech (I realize this is not a right in the EU like it is in US). "They that can give up essential liberty to purchase a little temporary safety, deserve neither liberty nor safety."

Re: COVID-19 vs. our Networks

tps://twitter.com/mdwestix> The Brothers WISP <http://www.thebrotherswisp.com/> <https://www.facebook.com/thebrotherswisp><https://www.youtube.com/channel/UCXSdfxQv7SpoRQYNyLwntZg> -------- *From: *"Blake Hudson" *To: *nanog@n

Re: COVID-19 vs. our Networks

swisp><https://www.youtube.com/channel/UCXSdfxQv7SpoRQYNyLwntZg> -------- *From: *"Blake Hudson" *To: *nanog@nanog.org *Sent: *Friday, March 20, 2020 8:32:45 AM *Subject: *Re: COVID-19 vs. our Networks On 3/19/2020 12:22 PM, Mark Tinka wrote: > >

Re: COVID-19 vs. our Networks

On 3/19/2020 12:22 PM, Mark Tinka wrote: On 19/Mar/20 18:07, Matt Hoppes wrote: Agreed... 720 or 1080 Netflix will work just as fine as 4K for the next month or two. Well, the article claims "Drop stream quality from HD". That means 4K, 1080p and 720p. If you have an OCA on your network,

Google Fiber (KC) NOC contact

Does someone from Google Fiber hang out on this list? I've contacted arin-cont...@google.com (the WHOIS tech and admin contact), but not gotten any response and I suspect contacting a frontline callcenter would be fruitless. It appears that some portion of customers in KC are being provided

Re: COVID-19 vs. our Networks

On 3/17/2020 1:54 PM, Dan White wrote: On 03/17/20 14:38 -0400, Rich Kulawiec wrote: On Tue, Mar 17, 2020 at 08:38:28AM -0700, Mike Bolitho wrote: Anybody who works in the healthcare vertical will tell you just how bad medical devices are to work with from an IT perspective. Medical

Re: backtracking forged packets?

It's not complete, but if you're receiving the ICMP net/port unreachable backscatter it should include a portion of the original packet. This might provide some insight into the TTL left on TCP the packet when it reached its destination which could provide a rough radius that you would need to

Re: QUIC traffic throttled on AT residential

As a network operator my goal was always to ensure customers receive the traffic they expected, high rates of UDP were often not what they wanted. Adusting the limits may be useful but I still think the question of what rate of UDP traffic is acceptable is a practical one for

Re: QUIC traffic throttled on AT residential

On 2/20/2020 1:10 PM, Jared Mauch wrote: On Thu, Feb 20, 2020 at 10:57:46AM -0600, Blake Hudson wrote: On 2/20/2020 10:34 AM, Ca By wrote: On Thu, Feb 20, 2020 at 10:19 AM Blake Hudson mailto:bl...@ispn.net>> wrote: Dropping udp is not from a “best practice” doc from a

Re: QUIC traffic throttled on AT residential

On 2/20/2020 10:41 AM, Dave Bell wrote: Not indiscriminate. Indiscriminate - done at random or without careful judgement. Considering that Daniel is complaining that QUIC is broken, it certainly seems like some network operators are subjecting all UDP traffic on their network to the

Re: QUIC traffic throttled on AT residential

On 2/20/2020 10:34 AM, Ca By wrote: On Thu, Feb 20, 2020 at 10:19 AM Blake Hudson <mailto:bl...@ispn.net>> wrote: Your comments seem to differentiate IP4 vs IP6, but I don't believe that is relevant to the issue of an ISP throttling or breaking specific application

Re: QUIC traffic throttled on AT residential

On 2/19/2020 3:21 PM, Daniel Sterling wrote: On Wed, Feb 19, 2020 at 3:34 PM Blake Hudson wrote: Yeah, that was a nice surprise to find that my tethered LTE connection was out performing my wired cable modem service. Of course, I had already signed up for a year of service and there were

Re: QUIC traffic throttled on AT residential

og.org *Sent: *Wednesday, February 19, 2020 3:01:20 PM *Subject: *Re: QUIC traffic throttled on AT residential On Wed, 2020-02-19 at 13:54 -0600, Blake Hudson wrote: > > Isn't this exactly why Net Neutrality is a thing: Isn't it a "dead" thing in the USofA? > So that people (or

Re: QUIC traffic throttled on AT residential

On 2/19/2020 2:01 PM, Daniel Sterling wrote: On Wed, Feb 19, 2020 at 2:55 PM Blake Hudson wrote: I'm guessing ATT doesn't disclose this policy transparently either. they disclose it pretty transparently to their customers in the form of very slow youtube traffic when using v4 QUIC

Re: QUIC traffic throttled on AT residential

On 2/18/2020 6:00 PM, Ca By wrote: On Tue, Feb 18, 2020 at 5:44 PM Daniel Sterling mailto:sterling.dan...@gmail.com>> wrote: I've AT fiber (in RTP, NC) (AS7018) and I notice UDP QUIC traffic from google (esp. youtube) becomes very slow after a time. This especially occurs with

Re: Dual Homed BGP

On 1/23/2020 6:01 PM, Brian wrote: Hello all. I am having a hard time trying to articulate why a Dual Home ISP should have full tables. My understanding has always been that full tables when dual homed allow much more control. Especially in helping to prevent Async routes. Brian, you're

Re: Hulu thinks all my IP addresses are "business class", how to reach them?

t...@pelican.org wrote on 11/21/2019 4:32 AM: On Wednesday, 20 November, 2019 21:25, "William Herrin" said: This is why you don't go after Hulu. You go after the content owners who conspired to compel Hulu to limit distribution in a way that tortiously interferes with your contract with

Re: Hulu thinks all my IP addresses are "business class", how to reach them?

Owen DeLong wrote on 11/20/2019 11:51 AM: On Nov 20, 2019, at 07:38 , Tom Beecher > wrote: Never did figure out if it was stupidity or malice driving that. Personally I think it's neither; it's just $. They could invest in a robust system to

Re: Hulu thinks all my IP addresses are "business class", how to reach them?

Doug, out of curiosity, what does Hulu do once they have classified your IP ranges as "business class"? Charge customers a different rate? Offer different content? Refuse service? Doug McIntyre wrote on 11/18/2019 10:41 AM: I've been offering residential and business ISP services for a long

Re: Disney+ Streaming

Neither Good Omens nor Game of Thrones are available for streaming on Netflix (you'll have to go to one of their competitors). Overall I tend to agree with Brian that people's time and eyeballs are finite. As more streaming services emerge, usage will simply be split between streaming

Re: all major US carriers received text messages overnight that appear to have been sent around Valentine's Day 2019

Jared Mauch wrote on 11/8/2019 12:33 PM: On Nov 8, 2019, at 1:26 PM, Matt Hoppes wrote: “During an internal maintenance cycle last night, 168,149 previously undelivered text messages were inadvertently sent to multiple mobile operators’ subscribers," Syniverse said in a statement. how

Re: Protecting 1Gb Ethernet From Lightning Strikes

+1 on the Ubiquiti surge protectors specifically designed for PoE gear in mind (other brands like Cambium that are outdoor AP or camera oriented may work equally as well). I would also recommend continuing to isolate and protect as much as possible. For example, connecting your outdoor PoE

Re: Estimated LTE Data Utilization in Failover Scenario

Matt Harris wrote on 7/31/2019 9:46 AM: On Wed, Jul 31, 2019 at 9:21 AM Shaun Dombrosky mailto:sdombro...@blackfoot.com>> wrote: Good Morning, First time NANOG poster, apologies if I breach etiquette. Does anyone have any first-hand data on how much data a small-medium

Re: BGP prefix filter list

William Herrin wrote on 5/24/2019 1:22 PM:  If you drop the /24, you break the Internet when my connection to CenturyLink is inoperable. Not really. The remote networks that drop visibility to your /24 announcement still have a default route. They just just leave the decision of the best

Re: BGP prefix filter list

adamv0...@netconsultings.com wrote on 5/22/2019 3:23 AM: From: NANOG On Behalf Of Blake Hudson Sent: Monday, May 20, 2019 4:35 PM As I recall reading about one vendor's platform (the ASR9k perhaps?) and its TCAM organization process, it stored /32 routes in a dedicated area for faster lookups

Re: BGP prefix filter list

Gracias Alejandro, I had never considered anti-hijack, anti-DoS, or RTBH advertisements in this equation. Another knock against filtering based on prefix size is that it may not have the intended outcome on some platforms. As I recall reading about one vendor's platform (the ASR9k perhaps?)

Re: BGP prefix filter list

Baldur Norddahl wrote on 5/18/2019 3:57 AM: ... One router knows about 2 paths, the other about 4 paths. Why? Because BGP only advertises the route that is in use. Everyone here of course knows this, I am just pointing it out because culling information before allowing it to be redistributed

Re: BGP prefix filter list

I would argue that one can generally safely add information to his or her router's RIB (such as adding a local preference, weight, or advertising with prepends to direct traffic toward a better performing, less utilized, or lower cost peer), but that removing information

Re: BGP prefix filter list

Baldur Norddahl wrote on 5/17/2019 11:05 AM: On Fri, May 17, 2019 at 3:28 PM Blake Hudson <mailto:bl...@ispn.net>> wrote:  From my perspective one's ability to intelligently route IP traffic is directly correlated to the data they have available (their routing

Re: BGP prefix filter list

Radu-Adrian Feurdean wrote on 5/17/2019 9:15 AM: On Fri, May 17, 2019, at 15:28, Blake Hudson wrote: From my perspective one's ability to intelligently route IP traffic is directly correlated to the data they have available (their routing protocol and table). For example, with static default

Re: BGP prefix filter list

Radu-Adrian Feurdean wrote on 5/17/2019 5:10 AM: On Thu, May 16, 2019, at 16:38, Blake Hudson wrote: offloading that responsibility onto the transit provider. IMHO, what's the point of being multi-homed if you can't make intelligent routing decisions and provide routing redundancy in the case

Re: BGP prefix filter list

Ca, taking a self-originated default route (with or without an additional partial view of the global routing table) from your transit provider's edge router seems to make the assumption that your transit provider's edge router either has a full table or a working default route itself. In the

Re: Comcast XB6 Blocking TFTP

You may already be aware, but TFTP - like FTP - is not a NAT friendly protocol and requires a helper or ALG to inspect the control channel in order to open up and translate the connections used by the data channel (which use unrelated high numbered UDP ports). If TFTP is not working when NAT

Re: No IPv6 by design to increase reliability...

Broken IPv6 connectivity happens all the time, sometimes for weeks, before some folks seem to notice. I could understand why one could take the stance that IPv4 only is less problematic (and therefore more available) than dual stack. Overall, it might depend on your application and the happy

Re: Network Speed Testing and Monitoring Platform

Zach Puls wrote on 1/16/2019 1:53 PM: Maybe try setting up an Ookla on-site speedtest server? I believe the product is called Speedtest Custom. Setup is pretty simple, and is relatively inexpensive. That gives you the ease-of-use of speedtest.net, with the accuracy similar to having a

Re: Network Speed Testing and Monitoring Platform

I investigated building a product that could reliably speedtest up to a gig and found the same thing. A raspberry Pi 3B or 3B+ can reliably test up to ~100Mbps. The 3B only has a 10/100 NIC; The 3B+, while having a gigabit NIC, tops out at ~300Mbps internally. Both models of the Pi are

Re: IP Dslams

I was thinking the same thing. They're a few years out of support, but the Zhone 42xx IP DSLAM provides a 1Gbps ethernet uplink and 24 ADSL2+ DSL user ports per 1U chassis (stackable to achieve 192 ports total). Wish they were available in AC for non-telco use.

Re: Extending network over a dry pair

Nick Bogle wrote on 12/12/2018 3:25 PM: A quick question for you guys; If you had a single dry pair (pair of copper wires originally for phones) to a remote site that was around 6 miles away, what would you use? We currently are just extending a T1 line to this site, but 1.5Mbps isn't

Re: Brocade SLX Internet Edge

Chris Welti wrote on 11/1/2018 10:03 AM: Nicolas Fevrier has a very detailed blog post on how Cisco handles the prefixes on their Broadcom Jericho based NCS 5500 gear. https://xrdocs.io/cloud-scale-networking/tutorials/2017-08-03-understanding-ncs5500-resources-s01e02/ I'm pretty sure the

Re: China ’s Maxim – Leave No Access Point Unexploited: The Hidden Story of China Telecom’ s BGP Hijacking

Harley H wrote on 10/26/2018 8:52 AM: Curious to hear others' thoughts on this. https://scholarcommons.usf.edu/cgi/viewcontent.cgi?article=1050=mca This paper presents the view that several BGP hijacks performed by China Telecom had malicious intent. The incidents are: * Canada to Korea -

Re: CloudFlare D.N.S. Resolvers... (1.1.1.1 & 1.0.0.1)

valdis.kletni...@vt.edu wrote on 9/26/2018 1:44 PM: On Wed, 26 Sep 2018 10:52:07 +0300, Michael Bullut said: Has anyone deployed the aforementioned in your individual networks? A quick test suggests it is quite fast compared with Google's D.N.S. resolvers: *Reply from 1.1.1.1

Re: IPv6 Management

Agreed, lots of (relatively) old switches support IPv6 management addresses without issue. My suggestion is to dedicate a nibble in your IPv6 numbering plan for loopbacks/mgmt addresses, firewall access to this nibble as necessary, and go to town. Owen DeLong wrote on 8/23/2018 1:54 PM: I

Re: DirecTV Now Geolocation Contact

Hey Dan, just an FYI we had a client indicate issues with previously working DirecTV service suddenly stop working last month because DirecTV was geolocating their customer to the wrong state. There was some errant whois information likely to blame for this, but the WHOIS information had been

Re: NG Firewalls & IPv6

I've used pfSense (BSD firewall) in a dual stack setup. Not all features are at parity with v4 (the captive portal doesn't support v6, for example), but the core features of stateful firewall, DHCPv6, etc seemed to work without any fuss. Joe Klein wrote on 4/2/2018 5:58 PM: > All, > > At security

Re: Cisco switch recommendations

The 38xx, 37xx, 36xx, 35xx, etc line have generally not been wirespeed on all ports and have had smaller buffers. For applications where we wanted to guarantee wirespeed I've generally stuck to the 4948 lineup or a switch based on the 4500 family. Any reason you don't mention the 4948E(-F)

Re: Bandwidth distribution per ip

Denys Fedoryshchenko wrote on 12/20/2017 12:07 PM: Still, i am running some dedicated servers on colo in EU/US, some over 10G(bonding), and _single_ ip on server, i never faced such balancing issues, thats why i am asking, if someone had such carrier, who require to balance bandwidth between

Re: Bandwidth distribution per ip

Denys Fedoryshchenko wrote on 12/20/2017 11:38 AM: On 2017-12-20 19:16, Blake Hudson wrote: Denys Fedoryshchenko wrote on 12/20/2017 8:55 AM: National operator here ask customers to distribute bandwidth between all ip's equally, e.g. if i have /22, and i have in it CDN from one of the big

Re: Bandwidth distribution per ip

Denys Fedoryshchenko wrote on 12/20/2017 8:55 AM: National operator here ask customers to distribute bandwidth between all ip's equally, e.g. if i have /22, and i have in it CDN from one of the big content providers, this CDN use only 3 ips for ingress bandwidth, so bandwidth distribution is

Re: Incoming SMTP in the year 2017 and absence of DKIM

Eric Kuhnke wrote on 11/29/2017 11:03 AM: For those who operate public facing SMTPd that receive a large volume of incoming traffic, and accordingly, a lot of spam... How much weight do you put on an incoming message, in terms of adding additional score towards a possible value of spam, for

Re: CPE that support 1G with BGP multihomed

marcel.duregards--- via NANOG wrote on 9/26/2017 4:29 AM: Currently on Cisco side, we see the following candidates: - ASR 1001-x - ASR 1002 - ISR 4431, 4451 - ISR G2 2921 + 2951 + 3925(E) (EoL soon, so we are currently in the process of evaluating other solution). Keep in mind the ASR1002

Re: Apple Caching Server question

lane.pow...@swat.coop wrote on 1/13/2017 7:43 AM: I saw the apple caching server mentioned on an earlier thread. Is this appropriate/functional/scaleable enough to implement as an ISP? It is an intriguing idea. From the docs I could find, I couldn't tell if it was only geared towards home /

Re: Canada joins the 21st century !

Jean-Francois Mezei wrote on 12/22/2016 8:59 AM: ... Yesterday, the CRTC declared the Internet to be a basic service (which enables additional regulatory powers) and set speed goals to 50/10. Note that this is not a definition of broadband as the FCC had done, it one of many criteria that will

Re: Recent NTP pool traffic increase

I would think if a service provider failed, the stats would bear that out. For example, if one of the top ISPs in the world was forwarding requests, then you would likely see an increase in the number of queries generated from IP addresses registered to that organization. A similar effect

Re: bogon identified? how to track down bogus IPs/ASN's

As far as I can tell, AS394786 (Avetria Wireless) made up both AS135022 and the associated bogon IP ranges that AS announces (103.206.16.0/22 & 182.161.32.0/22) for its own use. Avetria's sole upstream provider appears to be AS54889 (Bluwest Inc). Probably an issue to discuss with both of

Re: CDN Overload?

Mike, you might want to reference this thread - http://mailman.nanog.org/pipermail/nanog/2016-July/thread.html#87147 - as another data point. LLNW was sending data at levels ~ 10x greater than my policed DSL user's subscription rates. It seems to me that either the client or the server TCP

Re: "Defensive" BGP hijacking?

Ca By wrote on 9/13/2016 2:53 PM: On Tuesday, September 13, 2016, Bryant Townsend wrote: @ca & Matt - No, we do not plan to ever intentionally perform a non-authorized BGP hijack in the future. Great answer. Thanks. Committing to pursuing a policy of weaponizing BGP

Re: "Defensive" BGP hijacking?

Bryant Townsend wrote on 9/13/2016 2:22 AM: This was the point where I decided I needed to go on the offensive to protect myself, my partner, visiting family, and my employees. The actions proved to be extremely effective, as all forms of harassment and threats from the attackers immediately

Re: "Defensive" BGP hijacking?

Scott Weeks wrote on 9/12/2016 11:31 AM: I am somewhat in agreement with Mel: "This thoughtless action requires a response from the community, and an apology from BackConnect. If we can't police ourselves, someone we don't like will do it for us. " But the first part seems to verge on

Re: "Defensive" BGP hijacking?

Scott Weeks wrote on 9/12/2016 11:08 AM: From: NANOG <nanog-boun...@nanog.org> on behalf of Blake Hudson <bl...@ispn.net> My suggestion is that BackConnect/Bryant Townsend should have their ASN revoked for fraudulently announcing another organization's address space. They

Re: "Defensive" BGP hijacking?

Hugo Slabbert wrote on 9/11/2016 3:54 PM: Hopefully this is operational enough, though obviously leaning more towards the policy side of things: What does nanog think about a DDoS scrubber hijacking a network "for defensive purposes"?

Re: Advertising rented IPv4 prefix from a different ASN.

Andrew wrote on 8/4/2016 2:39 PM: This space is rented long term but they are not interested in reassigning the space to us. Isn't this a violation of their agreement with ARIN (https://www.arin.net/resources/request/reassignments.html)?

Re: akamai abnormal spike

We noticed that on the 12th-14th we had multiple subscribers on ~5Mbps subscription rates that were being sent ~50Mbps of data sourced from TCP port 80 (apparently HTTP) from Limelight Networks' servers. The data did appear to be user requested, still not sure why TCP didn't throttle the data

Re: New ICANN registrant change process

As a customer of OpenSRS they sent us a notice about the change. The notice, and this page you linked, speak to their customer communication about policy changes. To be honest, I just breezed the email message and noted that it seemed like a positive change (without knowing the reasons that

Re: BGP peering strategies for smaller routers

Chuck Church wrote on 5/4/2016 12:14 PM: -- Hi Nick, You missed the point. Sloppy memory management is a "canary in a coal mine." It's a user-visible symptom that reflects poor

Re: BGP peering strategies for smaller routers

I turned up a full ip4 feed on an RP1 today. Took approximately 5 minutes to fill the rib and probably another 5 minutes to push to the fib. The CLI responsiveness was noticeably slowed during this process, but the router didn't drop traffic. I'm guessing a second feed would involve fewer rib

Re: BGP peering strategies for smaller routers

Łukasz Bromirski wrote on 5/3/2016 4:13 PM: On 03 May 2016, at 22:31, William Herrin wrote: On Tue, May 3, 2016 at 3:50 PM, Gustav Ulander wrote: Yes I can confirm that we also had the issue with the asr1001s. For us the router was fine

Re: BGP peering strategies for smaller routers

Mike wrote on 5/2/2016 9:43 PM: On 05/02/2016 07:35 PM, Eric Sabotta wrote: Mike, I just did this with a ASR1001. I had to upgrade it to 8gb of ram (I got the real Cisco stuff for ~ $500). Before the router would crash when loading the tables. Right now, I have full tables from two

Re: BGP peering strategies for smaller routers

Mike, the ASR1k series has several ESP options (ESP5, 10, 20, 40, 100, 200). Each ESP comes with a fixed amount of forwarding tcam which holds the forwarding information base (FIB). The ESP5 has 5MB of tcam can hold ~500k routes. The ESP10 has 10MB of tcam, so theoretically should hold roughly

  1   2   >