Re: De-bogon not possible via arin policy.
On Dec 15, 2011 10:35 PM, Brielle Bruns br...@2mbit.com wrote: On 12/15/11 3:31 PM, Ricky Beam wrote: On Thu, 15 Dec 2011 16:36:32 -0500, David Conrad d...@virtualized.org wrote: ... I had thought new allocations are based on demonstrated need. The fact that addresses are in use would seem to suggest they're needed. That depends on how you see their demontrated need. The way I look at it, if you build your network squatting on someone elses addresses, that's a problem of your own making and does not equate to any immediate need on my (channeling ARIN) part. This is a mess they created for themselves and should have known was going to bite them in the ass sooner than later. Translation: they should have started working to resolve this a long time ago. (or never done it in the first place.) And if I may say, they've demonstrated no need at all for public address space. They simply need to stop using 5/8 as if it were 10/8 -- i.e. they need more private address space. They don't need *public* IPv4 space for that. They will need to re-engineer their network to handle the addressing overlaps (ala NAT444.) Heh, if this is about TMO, then they're squatting on alot more then just 5/8... My phone has an IP address in 22/8, and I've seen it get IPs in 25/8, 26/8 as well. I've always wondered what the deal was with the obviously squatted addresses that my device gets. 5/8 is not used for squat space in this case, somebody along this thread mentioned 5/8 as an example, not a data point. There's an effort to avoid squat space that appears in the dfz. Yes, that is a moving target. Cb -- Brielle Bruns The Summit Open Source Development Group http://www.sosdg.org/ http://www.ahbl.org
Re: BGP and Firewalls...
On Wed, Dec 7, 2011 at 7:31 PM, Gregory Croft gcr...@shoremortgage.com wrote: Does anyone have any experience with using firewalls as edge devices when BGP is concerned? Doing so very successfully with Fortigate devices.
Re: Overall Netflix bandwidth usage numbers on a network?
Requests to this address appear to go unanswered? Dave Temkin wrote the following on 12/11/2011 6:29 PM: Feel free to contact peering@netflixdotcom - we're happy to provide you with delivery statistics for traffic terminating on your network. Regards, -Dave Temkin Netflix On 12/7/11 8:57 AM, Blake Hudson wrote: Yeah, that's an interesting one. We currently utilize netflow for this, but you also need to consider that netflix streaming is just port 80 www traffic. Because netflix uses CDNs, its difficult to pin down the traffic to specific hosts in the CDN and say that this traffic was netflix, while this traffic was the latest windows update (remember this is often a shared hosting platform). We've done our own testing and have come to a good solution which uses a combination of nbar, packet marking, and netflow to come to a conclusion. On a ~160Mbps link, netflix peaks out between 30-50Mbps around 8-10PM each evening. The rest of the traffic is predominantly other forms of HTTP traffic (including other video streaming services). Martin Hepworth wrote the following on 12/3/2011 2:36 AM: Also checkout Adrian Cockcroft presentations on their architecture which describes how they use aws and CDns etc Martin
RE: Overall Netflix bandwidth usage numbers on a network?
Same here. --- Dennis Burgess, Mikrotik Certified Trainer Link Technologies, Inc -- Mikrotik WISP Support Services Office: 314-735-0270 Website: http://www.linktechs.net LIVE On-Line Mikrotik Training - Author of Learn RouterOS -Original Message- From: Blake Hudson [mailto:bl...@ispn.net] Sent: Friday, December 16, 2011 8:11 AM To: Dave Temkin Cc: nanog@nanog.org Subject: Re: Overall Netflix bandwidth usage numbers on a network? Requests to this address appear to go unanswered? Dave Temkin wrote the following on 12/11/2011 6:29 PM: Feel free to contact peering@netflixdotcom - we're happy to provide you with delivery statistics for traffic terminating on your network. Regards, -Dave Temkin Netflix On 12/7/11 8:57 AM, Blake Hudson wrote: Yeah, that's an interesting one. We currently utilize netflow for this, but you also need to consider that netflix streaming is just port 80 www traffic. Because netflix uses CDNs, its difficult to pin down the traffic to specific hosts in the CDN and say that this traffic was netflix, while this traffic was the latest windows update (remember this is often a shared hosting platform). We've done our own testing and have come to a good solution which uses a combination of nbar, packet marking, and netflow to come to a conclusion. On a ~160Mbps link, netflix peaks out between 30-50Mbps around 8-10PM each evening. The rest of the traffic is predominantly other forms of HTTP traffic (including other video streaming services). Martin Hepworth wrote the following on 12/3/2011 2:36 AM: Also checkout Adrian Cockcroft presentations on their architecture which describes how they use aws and CDns etc Martin
Re: BGP and Firewalls...
We run redundant solutions for a number of our customers and have always decoupled the routing and firewalling. I can think of one situation where the customer manages the BGP and firewall failover on their firewalls, it doesn't work too well. The issue as I see it is that in the event of a device failure if you only have firewalls you need to keep the firewall session states when failing over to the second device, the BGP sessions will not if in an active passive HA setup whereas user traffic states will. If you run in an active active setup, BGP states will remain up however user traffic states will not always be transferred. If you're only using one firewall then this is not going to be an issue but it depends if the solution you're deploying has only redundant connectivity or redundant equipment as well. My experience is mainly using Juniper routers and firewalls so not able to comment on the Palo Alto platform. Decoupling the two functions gives a much better model from an NSP sales perspective as it means you're able to sell failover with no managed equipment / just managed routers / full solution with routers and firewalls. -- --- Patrick Sumby Network Architect Sohonet On 07/12/2011 17:31, Gregory Croft wrote: Hi All, Does anyone have any experience with using firewalls as edge devices when BGP is concerned? Specifically the Palo Alto series of devices. If so please contact me off list. Thank you. Thank you, Gregory S. Croft
Re: Overall Netflix bandwidth usage numbers on a network?
I'll take a guess they are back logged - they have been working on our traffic stats since a week before that posting made it to nanog list --- Sent via IPhone On 2011-12-16, at 9:16 AM, Dennis Burgess dmburg...@linktechs.net wrote: Same here. --- Dennis Burgess, Mikrotik Certified Trainer Link Technologies, Inc -- Mikrotik WISP Support Services Office: 314-735-0270 Website: http://www.linktechs.net LIVE On-Line Mikrotik Training - Author of Learn RouterOS -Original Message- From: Blake Hudson [mailto:bl...@ispn.net] Sent: Friday, December 16, 2011 8:11 AM To: Dave Temkin Cc: nanog@nanog.org Subject: Re: Overall Netflix bandwidth usage numbers on a network? Requests to this address appear to go unanswered? Dave Temkin wrote the following on 12/11/2011 6:29 PM: Feel free to contact peering@netflixdotcom - we're happy to provide you with delivery statistics for traffic terminating on your network. Regards, -Dave Temkin Netflix On 12/7/11 8:57 AM, Blake Hudson wrote: Yeah, that's an interesting one. We currently utilize netflow for this, but you also need to consider that netflix streaming is just port 80 www traffic. Because netflix uses CDNs, its difficult to pin down the traffic to specific hosts in the CDN and say that this traffic was netflix, while this traffic was the latest windows update (remember this is often a shared hosting platform). We've done our own testing and have come to a good solution which uses a combination of nbar, packet marking, and netflow to come to a conclusion. On a ~160Mbps link, netflix peaks out between 30-50Mbps around 8-10PM each evening. The rest of the traffic is predominantly other forms of HTTP traffic (including other video streaming services). Martin Hepworth wrote the following on 12/3/2011 2:36 AM: Also checkout Adrian Cockcroft presentations on their architecture which describes how they use aws and CDns etc Martin
RE: Overall Netflix bandwidth usage numbers on a network?
From: Blake Hudson [mailto:bl...@ispn.net] Yeah, that's an interesting one. We currently utilize netflow for this, but you also need to consider that netflix streaming is just port 80 www traffic. Because netflix uses CDNs, its difficult to pin down the traffic to specific hosts in the CDN and say that this traffic was netflix, while this traffic was the latest windows update (remember this is often a shared hosting platform). We've done our own testing and have come to a good solution which uses a combination of nbar, packet marking, and netflow to come to a conclusion. On a ~160Mbps link, netflix peaks out between 30-50Mbps around 8-10PM each evening. The rest of the traffic is predominantly other forms of HTTP traffic (including other video streaming services). We (Sandvine) also have a product that does this measurement in the IP network, per CDN, per device type (e.g. how much Netflix on xbox is on Akamai vs Limelight). In addition it measures the delivered quality per CDN. Anyone can feel free to contact me off list for more information. [cid:image001.jpg@01CCBBE1.BCF573A0] inline: image001.jpg
IP Management Software
Hi everybody, Can anybody share his/her experience with IP Management software's? Which I can use it managing near 100K IP Address? IPPlan is not good enough, I think its covering all my need and not fully flexible. If you have discuss this before here please share me the link. Thanks -- Regards, Shahab Vahabzadeh, IP Engineer, *nix Admin and Geek
Re: IP Management Software
Shahab Vahabzadeh (sh.vahabzadeh) writes: Hi everybody, Can anybody share his/her experience with IP Management software's? Which I can use it managing near 100K IP Address? IPPlan is not good enough, I think its covering all my need and not fully flexible. If you have discuss this before here please share me the link. Hi Shahab, Look at the archives for NANOG - there are plenty of solutions. You might want to look at: - Netdot: https://osl.uoregon.edu/redmine/projects/netdot - TIPP: http://tipp.tobez.org/ Cheers, Phil
Re: IP Management Software
Try noc project On Friday, December 16, 2011, Shahab Vahabzadeh sh.vahabza...@gmail.com wrote: Hi everybody, Can anybody share his/her experience with IP Management software's? Which I can use it managing near 100K IP Address? IPPlan is not good enough, I think its
Comcast Mail Admin
Apologies to the list for the noise, but if there's a clueful Comcast mail admin on list, can you please get in touch with me off list? My employer's network is having problems sending mail to your domain, and several attempts to clear it up using the Blocked Provider Request Form have failed (it looks like the comments I provided on the form aren't being read, as the link I provided to some of our log snippets showing the problem hasn't been hit). Thanks! - Peter Kristolaitis http://www.comcastsupport.com/rbl
Re: Is AS information useful for security?
On 15/12/2011 16:28, Drew Weaver wrote: -Original Message- From: Justin M. Streiner [mailto:strei...@cluebyfour.org] Sent: Thursday, December 15, 2011 9:45 AM To: nanog@nanog.org Subject: Re: Is AS information useful for security? origin-AS could be another story. If you know of an AS that is being used by the bad guys for bad purposes, you can write a routing policy to dump all traffic to/from that AS into the bit bucket or take some other action that could be dictated by your security policy. In that case, a routing policy could beconsidered an extension of a security policy. I could be wrong here but I believe origin-AS uses a lookup from the routing table to figure out what the originAS for the source IP should be (and not what it explicitly IS) which means the information is unreliable. For example if someone is sending spoofed packets towards you the origin AS will always show up as the originator of the real route instead of the origin AS of the actual traffic. This is why it would be useful to have the originAS (from the actual origin) in the packet header. How would you determine and enforce this? Ok so a packet leaves my network that I know originated from my network based on some factor (IGP route existing or matched prefix list) and the origin AS is put into a new field in the packet header... Whats to stop the spoofer putting that origin AS into their spoofed packet headers? This means that another level of checking then needs to be put into inter AS BGP sessions to make sure that all traffic passing across the link would need to be checked to make sure origin ASs are matched. Couldn't most of the same protection be solved by more people running BCP38 and RPKI? Thanks, -Drew
Re: IP Management Software
Check out 6connect. Sent from my iPhone On Dec 16, 2011, at 11:03, Shahab Vahabzadeh sh.vahabza...@gmail.com wrote: Hi everybody, Can anybody share his/her experience with IP Management software's? Which I can use it managing near 100K IP Address? IPPlan is not good enough, I think its covering all my need and not fully flexible. If you have discuss this before here please share me the link. Thanks -- Regards, Shahab Vahabzadeh, IP Engineer, *nix Admin and Geek
Wireless/Free Space Enterprise ISP in Palo Alto
Apologies if this is not the most appropriate forum for this, but I am not aware of a better list to use. I recently took over responsibility for the network connectivity at an office in downtown Palo Alto (University and Emerson). Unfortunately, and perhaps ironically, the connectivity options here are not as great as I would like- currently they are using DSL, there is no cable service, and lead times for T1's and above are higher than I would like. I have already started the process of getting fiber from the city of Palo Alto between the office and Equinix/SD/PAIX/529 Bryant, which will resolve the problem. However, the city's time estimate is longer than we need, and experience implies there may be delays. So- I am investigating wireless/free space ISP's in downtown Palo Alto, and also possible options for doing a point-to-point wireless connection between our office and 529 Bryant (I am reaching out to Equinix on this). Any pointers to known good providers, or other suggestions would be very welcome- off list is fine. I am already reaching out to a telecom broker, but wanted to reach out for suggestions. To clarify- I am trying to get either a) rapidly turned up IP transit or b) rapidly turned up point-to-point (presumably wireless) between 529 Bryant/PAIX and the office (University and Emerson). Thanks very much! --D -- -- Darren Bolding -- -- dar...@bolding.org --
Re: Wireless/Free Space Enterprise ISP in Palo Alto
I can't help with most, but for wireless gear check out the ubiquity nanobridge stuff. Cheap fast and good. I've seen these work at 5km range with high speeds (eg: 30-60mbps) when using 40mhz channels. Works well to bridge the last mile in cases where you have access to mount hardware. A pair costs around $180 or so. Jared Mauch On Dec 16, 2011, at 1:24 PM, Darren Bolding dar...@bolding.org wrote: Apologies if this is not the most appropriate forum for this, but I am not aware of a better list to use. I recently took over responsibility for the network connectivity at an office in downtown Palo Alto (University and Emerson). Unfortunately, and perhaps ironically, the connectivity options here are not as great as I would like- currently they are using DSL, there is no cable service, and lead times for T1's and above are higher than I would like. I have already started the process of getting fiber from the city of Palo Alto between the office and Equinix/SD/PAIX/529 Bryant, which will resolve the problem. However, the city's time estimate is longer than we need, and experience implies there may be delays. So- I am investigating wireless/free space ISP's in downtown Palo Alto, and also possible options for doing a point-to-point wireless connection between our office and 529 Bryant (I am reaching out to Equinix on this). Any pointers to known good providers, or other suggestions would be very welcome- off list is fine. I am already reaching out to a telecom broker, but wanted to reach out for suggestions. To clarify- I am trying to get either a) rapidly turned up IP transit or b) rapidly turned up point-to-point (presumably wireless) between 529 Bryant/PAIX and the office (University and Emerson). Thanks very much! --D -- -- Darren Bolding -- -- dar...@bolding.org --
Weekly Routing Table Report
This is an automated weekly mailing describing the state of the Internet Routing Table as seen from APNIC's router in Japan. The posting is sent to APOPS, NANOG, AfNOG, AusNOG, SANOG, PacNOG, LacNOG, CaribNOG and the RIPE Routing Working Group. Daily listings are sent to bgp-st...@lists.apnic.net For historical data, please see http://thyme.rand.apnic.net. If you have any comments please contact Philip Smith pfsi...@gmail.com. Routing Table Report 04:00 +10GMT Sat 17 Dec, 2011 Report Website: http://thyme.rand.apnic.net Detailed Analysis: http://thyme.rand.apnic.net/current/ Analysis Summary BGP routing table entries examined: 387142 Prefixes after maximum aggregation: 167902 Deaggregation factor: 2.31 Unique aggregates announced to Internet: 189021 Total ASes present in the Internet Routing Table: 39612 Prefixes per ASN: 9.77 Origin-only ASes present in the Internet Routing Table: 32512 Origin ASes announcing only one prefix: 15502 Transit ASes present in the Internet Routing Table:5342 Transit-only ASes present in the Internet Routing Table:145 Average AS path length visible in the Internet Routing Table: 4.3 Max AS path length visible: 33 Max AS path prepend of ASN (48687) 24 Prefixes from unregistered ASNs in the Routing Table: 1923 Unregistered ASNs in the Routing Table: 999 Number of 32-bit ASNs allocated by the RIRs: 2095 Number of 32-bit ASNs visible in the Routing Table:1758 Prefixes from 32-bit ASNs in the Routing Table:4191 Special use prefixes present in the Routing Table:2 Prefixes being announced from unallocated address space: 90 Number of addresses announced to Internet: 2502485008 Equivalent to 149 /8s, 40 /16s and 228 /24s Percentage of available address space announced: 67.5 Percentage of allocated address space announced: 67.5 Percentage of available address space allocated: 100.0 Percentage of address space in use by end-sites: 91.7 Total number of prefixes smaller than registry allocations: 163725 APNIC Region Analysis Summary - Prefixes being announced by APNIC Region ASes:95726 Total APNIC prefixes after maximum aggregation: 31275 APNIC Deaggregation factor:3.06 Prefixes being announced from the APNIC address blocks: 92115 Unique aggregates announced from the APNIC address blocks:38521 APNIC Region origin ASes present in the Internet Routing Table:4609 APNIC Prefixes per ASN: 19.99 APNIC Region origin ASes announcing only one prefix: 1248 APNIC Region transit ASes present in the Internet Routing Table:726 Average APNIC Region AS path length visible:4.3 Max APNIC Region AS path length visible: 18 Number of APNIC region 32-bit ASNs visible in the Routing Table:123 Number of APNIC addresses announced to Internet: 631919968 Equivalent to 37 /8s, 170 /16s and 85 /24s Percentage of available APNIC address space announced: 80.1 APNIC AS Blocks4608-4864, 7467-7722, 9216-10239, 17408-18431 (pre-ERX allocations) 23552-24575, 37888-38911, 45056-46079, 55296-56319, 58368-59391, 131072-132095, 132096-133119 APNIC Address Blocks 1/8, 14/8, 27/8, 36/8, 39/8, 42/8, 43/8, 49/8, 58/8, 59/8, 60/8, 61/8, 101/8, 103/8, 106/8, 110/8, 111/8, 112/8, 113/8, 114/8, 115/8, 116/8, 117/8, 118/8, 119/8, 120/8, 121/8, 122/8, 123/8, 124/8, 125/8, 126/8, 133/8, 175/8, 180/8, 182/8, 183/8, 202/8, 203/8, 210/8, 211/8, 218/8, 219/8, 220/8, 221/8, 222/8, 223/8, ARIN Region Analysis Summary Prefixes being announced by ARIN Region ASes:146548 Total ARIN prefixes after maximum aggregation:74859 ARIN Deaggregation factor: 1.96 Prefixes being announced from the ARIN address blocks: 118628 Unique aggregates announced from the ARIN address blocks: 48721 ARIN Region origin ASes present in the Internet Routing Table:14807 ARIN Prefixes per ASN: 8.01 ARIN Region origin ASes announcing only one prefix:
playing NICE
http://csrc.nist.gov/nice/framework/ its only a tad over 100 pages. :) the comment period has been extended to january 2012. something to read by the fire over the holiday. /bill
I'm looking for routing/switching guys near the SF Bay Area
Preferably with consulting experience. If that's you, please contact me directly. Thanks. Thomas Cannon CCDP, CCNP, BCNE, CISSP tcan...@c2company.commailto:tcan...@c2company.com
Re: IP Management Software
http://getipv6.info/index.php/IPv6_Management_Tools A good list of stuffs On Fri, Dec 16, 2011 at 12:54 PM, Rafael Rodriguez packetjoc...@gmail.com wrote: Check out 6connect. Sent from my iPhone On Dec 16, 2011, at 11:03, Shahab Vahabzadeh sh.vahabza...@gmail.com wrote: Hi everybody, Can anybody share his/her experience with IP Management software's? Which I can use it managing near 100K IP Address? IPPlan is not good enough, I think its covering all my need and not fully flexible. If you have discuss this before here please share me the link. Thanks -- Regards, Shahab Vahabzadeh, IP Engineer, *nix Admin and Geek -- Just my $.02, your mileage may vary, batteries not included, etc
RE: IP Management Software
+1, agree on 6connect.net. -Original Message- From: Rafael Rodriguez [mailto:packetjoc...@gmail.com] Sent: Friday, December 16, 2011 12:55 PM To: Shahab Vahabzadeh Cc: nanog@nanog.org Subject: Re: IP Management Software Check out 6connect. Sent from my iPhone On Dec 16, 2011, at 11:03, Shahab Vahabzadeh sh.vahabza...@gmail.com wrote: Hi everybody, Can anybody share his/her experience with IP Management software's? Which I can use it managing near 100K IP Address? IPPlan is not good enough, I think its covering all my need and not fully flexible. If you have discuss this before here please share me the link. Thanks -- Regards, Shahab Vahabzadeh, IP Engineer, *nix Admin and Geek
Re: IP Management Software
Not to be a bandwagon jumper but +1 for 6connect as well. --Original Message-- From: Mike Walter To: nanog@nanog.org Subject: RE: IP Management Software Sent: Dec 16, 2011 4:42 PM +1, agree on 6connect.net. -Original Message- From: Rafael Rodriguez [mailto:packetjoc...@gmail.com] Sent: Friday, December 16, 2011 12:55 PM To: Shahab Vahabzadeh Cc: nanog@nanog.org Subject: Re: IP Management Software Check out 6connect. Sent from my iPhone On Dec 16, 2011, at 11:03, Shahab Vahabzadeh sh.vahabza...@gmail.com wrote: Hi everybody, Can anybody share his/her experience with IP Management software's? Which I can use it managing near 100K IP Address? IPPlan is not good enough, I think its covering all my need and not fully flexible. If you have discuss this before here please share me the link. Thanks -- Regards, Shahab Vahabzadeh, IP Engineer, *nix Admin and Geek Sent from my BlackBerry device on the Rogers Wireless Network
BGP Update Report
BGP Update Report Interval: 08-Dec-11 -to- 15-Dec-11 (7 days) Observation Point: BGP Peering with AS131072 TOP 20 Unstable Origin AS Rank ASNUpds % Upds/PfxAS-Name 1 - AS42116 163949 8.9%3345.9 -- ERTH-NCHLN-AS CJSC ER-Telecom Holding 2 - AS840244512 2.4% 24.5 -- CORBINA-AS OJSC Vimpelcom 3 - AS982930388 1.6% 39.4 -- BSNL-NIB National Internet Backbone 4 - AS27738 28941 1.6% 85.1 -- Ecuadortelecom S.A. 5 - AS44568 25931 1.4%1525.4 -- OPSOURCE-UK OpSource, Inc 6 - AS816325030 1.4% 80.7 -- METROTEL REDES S.A. 7 - AS755224318 1.3% 16.0 -- VIETEL-AS-AP Vietel Corporation 8 - AS32528 24316 1.3%4863.2 -- ABBOTT Abbot Labs 9 - AS20632 19939 1.1% 586.4 -- PETERSTAR-AS PeterStar 10 - AS55515 18990 1.0% 791.2 -- ONE-NET-HK INTERNET-SOLUTION -HK 11 - AS24560 14095 0.8% 14.2 -- AIRTELBROADBAND-AS-AP Bharti Airtel Ltd., Telemedia Services 12 - AS19223 13134 0.7% 13134.0 -- NTEGRATED-SOLUTIONS - Ntegrated Solutions 13 - AS580012855 0.7% 46.9 -- DNIC-ASBLK-05800-06055 - DoD Network Information Center 14 - AS746512846 0.7% 988.2 -- PROCERGS - Cia. de Processamento de Dados do RGS 15 - AS17974 12603 0.7% 8.4 -- TELKOMNET-AS2-AP PT Telekomunikasi Indonesia 16 - AS607212586 0.7% 899.0 -- UNISYS-6072 For routing issues, email hostmas...@unisys.com 17 - AS12479 12581 0.7% 63.2 -- UNI2-AS France Telecom Espana SA 18 - AS540012104 0.7% 117.5 -- BT BT European Backbone 19 - AS39353 11082 0.6%3694.0 -- PRINCAST-AS Gobierno del Principado de Asturias 20 - AS17488 10341 0.6% 14.9 -- HATHWAY-NET-AP Hathway IP Over Cable Internet TOP 20 Unstable Origin AS (Updates per announced prefix) Rank ASNUpds % Upds/PfxAS-Name 1 - AS19223 13134 0.7% 13134.0 -- NTEGRATED-SOLUTIONS - Ntegrated Solutions 2 - AS102095013 0.3%5013.0 -- SYNOPSYS-AS-JP-AP Japan HUB and Data Center 3 - AS32528 24316 1.3%4863.2 -- ABBOTT Abbot Labs 4 - AS373784777 0.3%4777.0 -- NIGERIA-AIRFORCE 5 - AS39353 11082 0.6%3694.0 -- PRINCAST-AS Gobierno del Principado de Asturias 6 - AS42116 163949 8.9%3345.9 -- ERTH-NCHLN-AS CJSC ER-Telecom Holding 7 - AS44568 25931 1.4%1525.4 -- OPSOURCE-UK OpSource, Inc 8 - AS746512846 0.7% 988.2 -- PROCERGS - Cia. de Processamento de Dados do RGS 9 - AS607212586 0.7% 899.0 -- UNISYS-6072 For routing issues, email hostmas...@unisys.com 10 - AS53362 857 0.1% 857.0 -- MIXIT-AS - Mixit, Inc. 11 - AS55515 18990 1.0% 791.2 -- ONE-NET-HK INTERNET-SOLUTION -HK 12 - AS38528 783 0.0% 783.0 -- LANIC-AS-AP Lao National Internet Committee 13 - AS31598 776 0.0% 776.0 -- TELECOMAX-AS TELECOMAX 14 - AS33621 0.2% 237.0 -- BORYSZEW BORYSZEW SPOLKA AKCYJNA 15 - AS6066 1368 0.1% 684.0 -- VERIZON-BUSINESS-MAE-AS6066 - Verizon Business Network Services Inc. 16 - AS20632 19939 1.1% 586.4 -- PETERSTAR-AS PeterStar 17 - AS196741646 0.1% 548.7 -- NAVPOINT - Navpoint Internet 18 - AS245621611 0.1% 537.0 -- UNESCAP-AS-AP The United Nations Economic and Social Commission for Asia and the Pacific (ESCAP) 19 - AS21863 532 0.0% 532.0 -- DMVNOC - Internet Connection 20 - AS25910 526 0.0% 526.0 -- TELTRAX-ARIN - TELTRAX CORP. TOP 20 Unstable Prefixes Rank Prefix Upds % Origin AS -- AS Name 1 - 84.204.132.0/24 19840 1.0% AS20632 -- PETERSTAR-AS PeterStar 2 - 67.97.156.0/2413134 0.7% AS19223 -- NTEGRATED-SOLUTIONS - Ntegrated Solutions 3 - 130.36.34.0/2412152 0.6% AS32528 -- ABBOTT Abbot Labs 4 - 130.36.35.0/2412152 0.6% AS32528 -- ABBOTT Abbot Labs 5 - 88.151.16.0/2211080 0.6% AS39353 -- PRINCAST-AS Gobierno del Principado de Asturias 6 - 46.147.72.0/22 7023 0.4% AS42116 -- ERTH-NCHLN-AS CJSC ER-Telecom Holding 7 - 46.147.80.0/22 7022 0.4% AS42116 -- ERTH-NCHLN-AS CJSC ER-Telecom Holding 8 - 95.78.20.0/22 7021 0.4% AS42116 -- ERTH-NCHLN-AS CJSC ER-Telecom Holding 9 - 95.78.4.0/22 7019 0.4% AS42116 -- ERTH-NCHLN-AS CJSC ER-Telecom Holding 10 - 95.78.16.0/22 7017 0.4% AS42116 -- ERTH-NCHLN-AS CJSC ER-Telecom Holding 11 - 46.147.76.0/22 7016 0.4% AS42116 -- ERTH-NCHLN-AS CJSC ER-Telecom Holding 12 - 95.78.12.0/22 7013 0.4% AS42116 -- ERTH-NCHLN-AS CJSC ER-Telecom Holding 13 - 46.147.84.0/22 7010 0.4% AS42116 -- ERTH-NCHLN-AS CJSC ER-Telecom Holding 14 - 46.147.92.0/22 6989 0.4% AS42116 -- ERTH-NCHLN-AS CJSC
The Cidr Report
This report has been generated at Fri Dec 16 21:12:27 2011 AEST.
The report analyses the BGP Routing Table of AS2.0 router
and generates a report on aggregation potential within the table.
Check http://www.cidr-report.org for a current version of this report.
Recent Table History
Date PrefixesCIDR Agg
09-12-11386491 227371
10-12-11386600 227223
11-12-11386365 227383
12-12-11386687 227266
13-12-11386830 226854
14-12-11387006 227323
15-12-11388632 223854
16-12-11385889 227871
AS Summary
39706 Number of ASes in routing system
16714 Number of ASes announcing only one prefix
3479 Largest number of prefixes announced by an AS
AS6389 : BELLSOUTH-NET-BLK - BellSouth.net Inc.
109169664 Largest address span announced by an AS (/32s)
AS4134 : CHINANET-BACKBONE No.31,Jin-rong Street
Aggregation Summary
The algorithm used in this report proposes aggregation only
when there is a precise match using the AS path, so as
to preserve traffic transit policies. Aggregation is also
proposed across non-advertised address space ('holes').
--- 16Dec11 ---
ASnumNetsNow NetsAggr NetGain % Gain Description
Table 389158 227932 16122641.4% All ASes
AS6389 3479 223 325693.6% BELLSOUTH-NET-BLK -
BellSouth.net Inc.
AS18566 2093 412 168180.3% COVAD - Covad Communications
Co.
AS4766 2517 994 152360.5% KIXS-AS-KR Korea Telecom
AS7029 2958 1525 143348.4% WINDSTREAM - Windstream
Communications Inc
AS22773 1513 114 139992.5% ASN-CXA-ALL-CCI-22773-RDC -
Cox Communications Inc.
AS4755 1515 213 130285.9% TATACOMM-AS TATA
Communications formerly VSNL
is Leading ISP
AS4323 1622 389 123376.0% TWTC - tw telecom holdings,
inc.
AS28573 1577 399 117874.7% NET Servicos de Comunicao S.A.
AS1785 1858 785 107357.8% AS-PAETEC-NET - PaeTec
Communications, Inc.
AS7552 1491 438 105370.6% VIETEL-AS-AP Vietel
Corporation
AS19262 1388 402 98671.0% VZGNI-TRANSIT - Verizon Online
LLC
AS10620 1717 751 96656.3% Telmex Colombia S.A.
AS2118 1097 144 95386.9% RELCOM-AS OOO NPO Relcom
AS7303 1247 362 88571.0% Telecom Argentina S.A.
AS18101 965 158 80783.6% RELIANCE-COMMUNICATIONS-IN
Reliance Communications
Ltd.DAKC MUMBAI
AS8151 1460 656 80455.1% Uninet S.A. de C.V.
AS30036 1460 685 77553.1% MEDIACOM-ENTERPRISE-BUSINESS -
Mediacom Communications Corp
AS4808 1077 335 74268.9% CHINA169-BJ CNCGROUP IP
network China169 Beijing
Province Network
AS15557 1035 310 72570.0% LDCOMNET Societe Francaise du
Radiotelephone S.A
AS24560 996 279 71772.0% AIRTELBROADBAND-AS-AP Bharti
Airtel Ltd., Telemedia
Services
AS7545 1632 947 68542.0% TPG-INTERNET-AP TPG Internet
Pty Ltd
AS3356 1105 457 64858.6% LEVEL3 Level 3 Communications
AS17974 1716 1104 61235.7% TELKOMNET-AS2-AP PT
Telekomunikasi Indonesia
AS17676 675 74 60189.0% GIGAINFRA Softbank BB Corp.
AS8402 1446 873 57339.6% CORBINA-AS OJSC Vimpelcom
AS4804 663 95 56885.7% MPX-AS Microplex PTY LTD
AS20115 1604 1048 55634.7% CHARTER-NET-HKY-NC - Charter
Communications
AS22561 929 378 55159.3% DIGITAL-TELEPORT - Digital
Teleport Inc.
AS22047 582 33 54994.3% VTR BANDA ANCHA S.A.
AS9498 854 306 54864.2% BBIL-AP BHARTI Airtel Ltd.
Total 44271148892938266.4%
Re: IP Management Software
you didn't specify open source' so I'll throw out IPControl by BT/INS. I used it at my last place to manage about 100k+ DNS entries (3x /16s, misc blocks, RFC1918) and our DNS/DHCP servers. Worked great but not cheap :) -- Eric :) On Dec 16, 2011, at 4:46 PM, deles...@gmail.com wrote: Not to be a bandwagon jumper but +1 for 6connect as well. --Original Message-- From: Mike Walter To: nanog@nanog.org Subject: RE: IP Management Software Sent: Dec 16, 2011 4:42 PM +1, agree on 6connect.net. -Original Message- From: Rafael Rodriguez [mailto:packetjoc...@gmail.com] Sent: Friday, December 16, 2011 12:55 PM To: Shahab Vahabzadeh Cc: nanog@nanog.org Subject: Re: IP Management Software Check out 6connect. Sent from my iPhone On Dec 16, 2011, at 11:03, Shahab Vahabzadeh sh.vahabza...@gmail.com wrote: Hi everybody, Can anybody share his/her experience with IP Management software's? Which I can use it managing near 100K IP Address? IPPlan is not good enough, I think its covering all my need and not fully flexible. If you have discuss this before here please share me the link. Thanks -- Regards, Shahab Vahabzadeh, IP Engineer, *nix Admin and Geek Sent from my BlackBerry device on the Rogers Wireless Network
Re: IP Management Software
++ For many reasons not the least of which is they listen to what their customers need. They run on top of OSS which is great and have the service provider work flow in mind. The only negative is they (at the time of eval) were lacking for enterprise customers, but as I said they listen and are inclined to make improvement to the product. -r On Fri, Dec 16, 2011 at 12:54:40PM -0500, Rafael Rodriguez wrote: Check out 6connect. Sent from my iPhone On Dec 16, 2011, at 11:03, Shahab Vahabzadeh sh.vahabza...@gmail.com wrote: Hi everybody, Can anybody share his/her experience with IP Management software's? Which I can use it managing near 100K IP Address? IPPlan is not good enough, I think its covering all my need and not fully flexible. If you have discuss this before here please share me the link. Thanks -- Regards, Shahab Vahabzadeh, IP Engineer, *nix Admin and Geek
Re: IP Management Software
Subject: IP Management Software Date: Fri, Dec 16, 2011 at 07:33:41PM +0330 Quoting Shahab Vahabzadeh (sh.vahabza...@gmail.com): Hi everybody, Can anybody share his/her experience with IP Management software's? Which I can use it managing near 100K IP Address? IPPlan is not good enough, I think its covering all my need and not fully flexible. If you have discuss this before here please share me the link. I've been impressed by InfoBlox. Main factor behind that is the good integration between DHCP, IP address management and DNS. If you only need IP address management, there probably are other solutions. Also, I've seen no integration with RIR registries. Pricey, as well. We moved from IPPlan, and are a lot happier. In spite of above. -- Måns Nilsson primary/secondary/besserwisser/machina MN-1334-RIPE +46 705 989668 I was born in a Hostess Cupcake factory before the sexual revolution! signature.asc Description: Digital signature
Re: playing NICE
With SOPA/PIPA and so much fuss about IP (not the protocol) protection, CBS should sue the government for using an image that looks like a Borg cube from Startrek. -J On Fri, Dec 16, 2011 at 1:38 PM, bmann...@vacation.karoshi.com wrote: http://csrc.nist.gov/nice/framework/ its only a tad over 100 pages. :) the comment period has been extended to january 2012. something to read by the fire over the holiday. /bill
