Re: Frontier FlashWave Support contact

[Mel Beckman]

Thank you Frontier for the very rapid out-of-band contact! 

 -mel beckman

> On Aug 2, 2016, at 6:28 PM, Mel Beckman  wrote:
> 
> Can someone from Frontier provide a CO contact for customer-prem FlashWave 
> units? We have several in alarm, although otherwise functional, but Frontier 
> front line support seems unable to open tickets on this gear, since it's not 
> apparently considered CPE by Frontier. 
> 
> -mel beckman

RE: Brighthouse Orlando Port blocking ISAKMP

[Eric C. Miller]

All is well, now.

It appears that it may have been on XO's network. My crypto tunnel between AT&T 
and BH crossed XO, and asymmetric routing from my office network had Cogent and 
XO outgoing, and Level3 on the return. If I forced my office connection to use 
Level3 for the outbound, the tunnel established immediately.

Brighthouse's phone support was a grade F, by the way. Their phone support had 
me yanked around for an hour, before they finally consulted with Tier3. After 
relaying the response, which was simply, "BH doesn't filter customer traffic - 
It must be on your side," I asked to speak with them directly. The person I was 
speaking to proceeded to tell me that Tier-3 had just closed, and that they 
would have to call me back. It was 48 hours before I received a call back.

Grr.



Eric Miller, CCNP
Network Engineering Consultant




-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Mallette, Edwin J
Sent: Monday, August 1, 2016 9:54 AM
To: NANOG 
Subject: Re: Brighthouse Orlando Port blocking ISAKMP

Hi Erik,

We definitely do not filter UDP500 across our network.  I¹m going to reach out 
to you directly to see if I can help figure out what¹s going on.

Cheers!

Ed

On 7/30/16, 11:38 PM, "NANOG on behalf of Eric C. Miller"
 wrote:

>Hello!
>
>Subject says it all!!! I cannot open any IPSec tunnels, because UDP 500 
>is not making it through to my Brighthouse connection. I've tried from 
>Level3, Cogent, and AT&T. Are there any Brighthouse engineers on that 
>would help me shed some light on this?
>
>Thank you,
>
>Eric

Re: NFV Solution Evaluation Methodology

[David Barak via NANOG]

Simpler > complex *sometimes*.   It turns out that sometimes the complexity is 
worth it (eg https://youtu.be/-iiXsbrEv3U ).  Perhaps "as simple as possible, 
by no simpler" would be reasonable?

David Barak
Sent from mobile device, please excuse autocorrection artifacts

> On Aug 2, 2016, at 7:08 PM, Ca By  wrote
> CB
> 
> Ps. Also, simpler > complex. Lots of $ in this statement.

Re: NFV Solution Evaluation Methodology

[Valdis . Kletnieks]

On Tue, 02 Aug 2016 19:16:04 -0700, Eric Kuhnke said:
> But but but...  cloud!  THE CLOUD!  Cloudy clouds fluffy white flying
> through the air, you should move everything to the Cloud (tm).

Running the stuff you need to keep your own network running on the cloud?
That's the sort of thing I encourage my competitors to do. :)


pgpkOvBdLFLyb.pgp
Description: PGP signature

Re: NFV Solution Evaluation Methodology

[Christopher Morrow]

On Tue, Aug 2, 2016 at 10:16 PM, Eric Kuhnke  wrote:

> But but but...  cloud!  THE CLOUD!  Cloudy clouds fluffy white flying
> through the air, you should move everything to the Cloud (tm).
>
> Sometimes people forget that *somebody* needs to run the bare metal and OSI
> layer 1 things that physically make up the cloud.
>
>
mr by isn't wrong there are lots of ... over sold things.
but, NFV isn't necessarily 'cloud'... It CAN BE taking purpose built
appliance garbage that can't scale in a cost effective manner and replacing
it with some software solution on 'many' commodity unix-like-hosts that can
scale horizontally.

-chris
(just a chemical engineer... really)

Re: NFV Solution Evaluation Methodology

[Eric Kuhnke]

But but but...  cloud!  THE CLOUD!  Cloudy clouds fluffy white flying
through the air, you should move everything to the Cloud (tm).

Sometimes people forget that *somebody* needs to run the bare metal and OSI
layer 1 things that physically make up the cloud.


On Tue, Aug 2, 2016 at 7:08 PM, Ca By  wrote:

> On Tuesday, August 2, 2016, Kasper Adel  wrote:
>
> > Hi,
> >
> > I am interested in hearing the approach and thought-process that senior
> > people on NANOG are following when presented with an NFV solution.
> Assuming
> > that the exercise at hand is to consider NFV for future expansions of
> > Firewalls and L3VPNs or stay with the existing model of what is called
> PNF
> > (physical network function)...i.e : classic routers and FWs.
> >
> > There are a lot of factors to consider and Vendors will typically give
> > their biased opinion, so i'm trying to get my head out of their game, to
> be
> > able to think agnostically about the whole thing.
> >
> > 1) Product and Service/Support Cost.
> > 2) Operation Complexity/Learning Curve. (open source products included).
> > 3) X Factors (Those that are never listed but do bite in the back) :
> > Quality, Integration with Classic, Migration, Usability...etc
> >
> > The main goal behind us exploring NFV is the promised cost-saving, so a
> > good method to be able to do the math of whether NFV will save opex/capex
> > or NOT is definitely needed here and i'm trying to gather guidelines from
> > the list.
> >
> > I think its easier to keep this post high-level, and later dig deeper.
> >
> > Cheers,
> > K
> >
>
> Sorry , just a junior person here. Maybe a sr can pipe up later.
>
> But my business cases and associated data points show NFV like SDN
> are snake oil.
>
> If you know your requirements, buy / implement the best value solution. You
> can call it NFV if that makes you feel better.
>
> There is nothing new under the sun. Running DNS or bgp on linux cough... is
> not a new thing.
>
> If you are google or fb and have the best software engineers in the world,
> you can express your requirements to your dev team and they can just build
> it. And support it.
>
> But i see a lot of folks paying premium for sdn/nfv and tooting their own
> horns ... but the needle is not moving
>
> Buyer beware. Ymmv.
>
> CB
>
> Ps. Also, simpler > complex. Lots of $ in this statement.
>

Re: NFV Solution Evaluation Methodology

[Ca By]

On Tuesday, August 2, 2016, Kasper Adel  wrote:

> Hi,
>
> I am interested in hearing the approach and thought-process that senior
> people on NANOG are following when presented with an NFV solution. Assuming
> that the exercise at hand is to consider NFV for future expansions of
> Firewalls and L3VPNs or stay with the existing model of what is called PNF
> (physical network function)...i.e : classic routers and FWs.
>
> There are a lot of factors to consider and Vendors will typically give
> their biased opinion, so i'm trying to get my head out of their game, to be
> able to think agnostically about the whole thing.
>
> 1) Product and Service/Support Cost.
> 2) Operation Complexity/Learning Curve. (open source products included).
> 3) X Factors (Those that are never listed but do bite in the back) :
> Quality, Integration with Classic, Migration, Usability...etc
>
> The main goal behind us exploring NFV is the promised cost-saving, so a
> good method to be able to do the math of whether NFV will save opex/capex
> or NOT is definitely needed here and i'm trying to gather guidelines from
> the list.
>
> I think its easier to keep this post high-level, and later dig deeper.
>
> Cheers,
> K
>

Sorry , just a junior person here. Maybe a sr can pipe up later.

But my business cases and associated data points show NFV like SDN
are snake oil.

If you know your requirements, buy / implement the best value solution. You
can call it NFV if that makes you feel better.

There is nothing new under the sun. Running DNS or bgp on linux cough... is
not a new thing.

If you are google or fb and have the best software engineers in the world,
you can express your requirements to your dev team and they can just build
it. And support it.

But i see a lot of folks paying premium for sdn/nfv and tooting their own
horns ... but the needle is not moving

Buyer beware. Ymmv.

CB

Ps. Also, simpler > complex. Lots of $ in this statement.

NFV Solution Evaluation Methodology

[Kasper Adel]

Hi,

I am interested in hearing the approach and thought-process that senior
people on NANOG are following when presented with an NFV solution. Assuming
that the exercise at hand is to consider NFV for future expansions of
Firewalls and L3VPNs or stay with the existing model of what is called PNF
(physical network function)...i.e : classic routers and FWs.

There are a lot of factors to consider and Vendors will typically give
their biased opinion, so i'm trying to get my head out of their game, to be
able to think agnostically about the whole thing.

1) Product and Service/Support Cost.
2) Operation Complexity/Learning Curve. (open source products included).
3) X Factors (Those that are never listed but do bite in the back) :
Quality, Integration with Classic, Migration, Usability...etc

The main goal behind us exploring NFV is the promised cost-saving, so a
good method to be able to do the math of whether NFV will save opex/capex
or NOT is definitely needed here and i'm trying to gather guidelines from
the list.

I think its easier to keep this post high-level, and later dig deeper.

Cheers,
K

Frontier FlashWave Support contact

[Mel Beckman]

Can someone from Frontier provide a CO contact for customer-prem FlashWave 
units? We have several in alarm, although otherwise functional, but Frontier 
front line support seems unable to open tickets on this gear, since it's not 
apparently considered CPE by Frontier. 

 -mel beckman

Verizon Wireless contact

[Matt Larson]

Could someone from Verizon Wireless please contact me off-list?

Thanks,

Matt
--
Matt Larson 
VP of Research
Office of the CTO, ICANN
+1 240 459-9562 (mobile)

RE: Level3 (3356) to outlook.office365.com via v6?

[Sam Norris]

We have 2 customers complaining about this in the past 3 days - both using IPv4 
only.  Glad to see this because maybe it’s a larger problem outside of our 
network.

Sam


> -Original Message-
> From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of David Hubbard
> Sent: Tuesday, August 02, 2016 1:48 PM
> To: nanog@nanog.org
> Subject: Level3 (3356) to outlook.office365.com via v6?
>
> Curious if anyone else is having issues reaching outlook.office365.com via 
> ipv6
> over Level 3?  Our customers have begun reporting failures checking email, 
> and in
> the ones who have had this issue, are using the mail server name
> outlook.office365.com and are on v6.  Traceroute6 shows the traffic dying 
> shortly
> into Level 3 land at 2001:1900:4:1::3d1 which is likely a Tampa-area router.
>
> Thanks,
>
> David
>
>



---
This email has been checked for viruses by Avast antivirus software.
https://www.avast.com/antivirus

Level3 (3356) to outlook.office365.com via v6?

[David Hubbard]

Curious if anyone else is having issues reaching outlook.office365.com via ipv6 
over Level 3?  Our customers have begun reporting failures checking email, and 
in the ones who have had this issue, are using the mail server name 
outlook.office365.com and are on v6.  Traceroute6 shows the traffic dying 
shortly into Level 3 land at 2001:1900:4:1::3d1 which is likely a Tampa-area 
router.

Thanks,

David

CenturyLink Executive

[Dennis Burgess]

I have been working on a circuit outage since Monday morning, my tickets are 
closed, can't get ahold of anyone, no phone calls, problem not resolved, anyone 
from CenturyLink Executive Team could give me a call or e-mail to see if we can 
get these issues solved.

[DennisBurgessSignature]
www.linktechs.net - 314-735-0270 x103 - 
dmburg...@linktechs.net

Re: ExtremeWare

[Alain Hebert]

Hey,

Those are still current here =D

But yes 12.x or 15.x XOS has support, but only for official EN optics.

-
Alain Hebertaheb...@pubnix.net   
PubNIX Inc.
50 boul. St-Charles
P.O. Box 26770 Beaconsfield, Quebec H9W 6G7
Tel: 514-990-5911  http://www.pubnix.netFax: 514-990-9443

On 08/02/16 02:17, Paul Thornton wrote:
> Hi
>
> On 01/08/2016 23:39, Mike Hammett wrote:
>> Can those that ran switches with ExtremeWare on them remember that
>> far back?
>
> Just about.
>>
>> I've got a Summit 400t-48 and I can't seem figure out how to get DDM
>> information from the SFP. Did they have that ability?
> They probably do, but only in the deep runic debug mode (nofeep) which
> was never a recommended practice unless you had the TAC on the
> 'phone.  I have a couple of old 48si boxes hanging around in the lab
> LAN - Extremeware 7.8.4 certainly doesn't understand "show port n
> transceiver".  I think this is XOS only.
>
> Paul.
>
>

Re: Operations task management software?

[Saku Ytti]

On 27 July 2016 at 21:16, David Hubbard  wrote:

Hey,

> Hi all, curious if anyone has recommendations on software that helps manage 
> routine duties assigned to operations staff?

I'd solicit opinions as well. There are few features I'd like to see:

1) ability to create parent+child, if all childs are closed, parent
closes if parent is closed, childs close

2) ability to create dependencies, perhaps I have some design change I
want to make, but it can't be done until large bunch of operational
work is done, I could create tickets for ops, and then create ticket
for myself, and make it depend on the the ops ticket being solved. It
wouldn't be seen in my work queue, until all solve-dependencies are
solved.

3) user (non-admin) access to API, if the UI is bad, like it probably
is for my very small subnet of things I need, I could create own CLI
UI addressing solely the use cases that are relevant to me, in an
streamlined, low-time-cost UI to me. In dream scenario shipping webUI
is dog-fooding documented API, so anything I can do there, I can do
from my own CLI UI.

There are probably others, but those are the main things I think I need.


-- 
  ++ytti

RE: ExtremeWare

[Robert Jacobs]

To old feature was not supported on that code rev or model.  

Robert Jacobs | Network Director/Architect 

Direct:  832-615-7742
Main:   832-615-8000
Fax:    713-510-1650

5959 Corporate Dr. Suite 3300; Houston, TX 77036



A Certified Woman-Owned Business 

24x7x365 Customer  Support: 832-615-8000 | supp...@pslightwave.com
This electronic message contains information from Phonoscope Lightwave which 
may be privileged and confidential. The information is intended to be for the 
use of individual(s) or entity named above. If you are not the intended 
recipient, any disclosure, copying, distribution or use of the contents of this 
information is prohibited. If you have received this electronic message in 
error, please notify me by telephone or e-mail immediately.



-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Paul Thornton
Sent: Tuesday, August 2, 2016 1:18 AM
To: nanog@nanog.org
Subject: Re: ExtremeWare

Hi

On 01/08/2016 23:39, Mike Hammett wrote:
> Can those that ran switches with ExtremeWare on them remember that far back?

Just about.
>
> I've got a Summit 400t-48 and I can't seem figure out how to get DDM 
> information from the SFP. Did they have that ability?
They probably do, but only in the deep runic debug mode (nofeep) which was 
never a recommended practice unless you had the TAC on the 'phone.  
I have a couple of old 48si boxes hanging around in the lab LAN - Extremeware 
7.8.4 certainly doesn't understand "show port n transceiver".  I think this is 
XOS only.

Paul.

Re: Operations task management software?

[Jeroen Wunnink]

We use redmine, combined with scripts that call it’s API to create automated 
tickets/tasks that NOC or engineers need to attend to.
Has email notifications, wiki, documents, files, code repo, calendar, 
customisable fields all built in.



—
Jeroen Wunnink
IP Engineering Manager
Hibernia Networks - Amsterdam Office
Main numbers (Ext: 1011): USA +1.908.516.4200 | Canada +1.902.442.1780
Ireland +353.1.867.3600 | UK +44.1704.322.300 | Netherlands +31.208.200.622
24/7/365 IP NOC Phone: +31.20.82.00.623

jeroen.wunn...@hibernianetworks.com
www.hibernianetworks.com







On 27/07/16 20:16, "NANOG on behalf of David Hubbard"  wrote:

>Hi all, curious if anyone has recommendations on software that helps manage 
>routine duties assigned to operations staff?
>
>For example, let’s say we have a P&P that says someone from the netops group 
>must check that Rancid is successfully backing up all router configs 
>bi-weekly.  Ideally, it would send an email reminder to this pre-defined group 
>of people saying hey, it’s Monday, someone needs to check this and come 
>acknowledge the task as having been completed.  If that doesn’t occur, 
>pre-defined manager X is notified on Tuesday.  If manager X doesn’t get 
>someone to complete the task, director Y is notified, so on and so forth.  
>Then, perhaps periodically it emails manager X anyway and says hey, it’s been 
>three months, you need to audit netops to ensure they’re actually doing the 
>Rancid audit and not just checking that it was done.  This could be applied to 
>the staff who check on backup failures, backup internet circuit status, out of 
>band interfaces, etc.
>
>A data center I looked at recently had QR code stickers on all of their 
>infrastructure stuff and there were staff assigned to check and log certain 
>displayed values each day.  The software would at least ensure they actually 
>visited the equipment by requiring they scan the relevant QR code when in 
>front of it.  So I figure something that does what I’m looking for properly 
>already exists.
>
>Thanks,
>
>David
>
This e-mail and any attachments thereto is intended only for use by the 
addressee(s) named herein and may be proprietary and/or legally privileged. If 
you are not the intended recipient of this e-mail, you are hereby notified that 
any dissemination, distribution or copying of this email, and any attachments 
thereto, without the prior written permission of the sender is strictly 
prohibited. If you receive this e-mail in error, please immediately telephone 
or e-mail the sender and permanently delete the original copy and any copy of 
this e-mail, and any printout thereof. All documents, contracts or agreements 
referred or attached to this e-mail are SUBJECT TO CONTRACT. The contents of an 
attachment to this e-mail may contain software viruses that could damage your 
own computer system. While Hibernia Networks has taken every reasonable 
precaution to minimize this risk, we cannot accept liability for any damage 
that you sustain as a result of software viruses. You should carry out your own 
virus checks before opening any attachment.

Re: Operations task management software?

[Matt Ryanczak]

Jira works well as a task tracking system for ops. Customizable work flows,
decent integration with ldap, etc. Also good for tracking software
projects. Having both software and ops tasks in one place has many benefits.

On Wed, Jul 27, 2016, 16:28 David Hubbard 
wrote:

> Full automation is planned but does not eliminate the need for the
> software.  Zero human auditing of fully automated processes and data
> collection are not acceptable to various certifying entities, the relevant
> auditors, the inevitably involved lawyers, and won’t pick up on bad data,
> like a bad thermometer or snmp counter that says a CRAC is 65 degrees when
> it’s really 90.  So I’m still going to need a management solution to the
> issue whether it’s to tell someone to do the work or to tell someone to
> check the automated work.
>
> David
>
> On 7/27/16, 7:19 PM, "Lee"  wrote:
>
> On 7/27/16, David Hubbard  wrote:
> > Hi all, curious if anyone has recommendations on software that helps
> manage
> > routine duties assigned to operations staff?
>
> Have computers do the routine scut work - not people.
>
> > For example, let’s say we have a P&P that says someone from the
> netops group
> > must check that Rancid is successfully backing up all router configs
> > bi-weekly.
>
> You've got the source code for rancid, so change rancid-run to do
> something like
>   LOGFILE=$LOGDIR/$GROUP.`date +%Y%m%d.%H%M%S`; export LOGFILE
> change the
>   ) >$LOGDIR/$GROUP.`date +%Y%m%d.%H%M%S` 2>&1
> to
>   ) >$LOGFILE 2>&1
>
> and then in control_rancid do something like
>   grep "clogin error:" $LOGFILE | sort | uniq -c >$TMP.fail
>   if [ -s $TMP.fail ]; then
>  # got some output, mail the report
>  ...
>
> Do the same type thing for checking on
> > backup failures, backup internet circuit status, out of band
> interfaces, etc.
>
> Automate the checks, put the scripts in crontab & mail out an
> "OhNoes!" or "all clear" msg at the end.   At which point you're left
> with the problem of making sure the managers are looking at the emails
> & making sure whatever problems are found actually get fixed :)
>
> Regards,
> Lee
>
>
>