Re: DNS cache Validation

[Adam Kennedy via NANOG]

I wrote a script to expose stats from unbound to SNMP and built a Cacti
template for that. Recently started moving the DNS stats to feed into
Telegraf that pushes to an InfluxDB server, then built a dashboard in
Grafana. We track DNS RTT for a few queries, number of drops, number of
rejects, various record type requests per second, etc. We also have a
Nagios plugin that checks each of our DNS cache resolving servers scattered
across the network to ensure they can resolve a handful of popular domains.
Adam Kennedy
Systems Engineer
adamkenn...@watchcomm.net | 800-589-3837 x120 <800-589-3837;120>
Watch Communications | www.watchcomm.net

3225 W Elm St, Suite A
Lima, OH 45805





On Mon, May 18, 2020 at 11:47 PM Justin Wilson (Lists) 
wrote:

> What are you folk doing to validate your DNS cache server configs
> and operation? In other words, what are you doing to make sure they are
> performing well, not just alive.
>
> Justin
> —
> https://blog.j2sw.com

DNS cache Validation

[Justin Wilson (Lists)]

What are you folk doing to validate your DNS cache server configs and 
operation? In other words, what are you doing to make sure they are performing 
well, not just alive.

Justin
—
https://blog.j2sw.com

[NANOG-announce] Register now for the NANOG 79 Virtual Meeting!

[NANOG Marketing]

*Participation is open to all!*
Share and discover the latest networking technologies and best practices
with the greater NANOG community — without ever leaving home. Registration
for the NANOG 79 Virtual meeting is now open, and free to attend with a
coupon code. Be sure to register in advance to join us from your desktop or
mobile device, June 1-3.

Register Now 

*The NANOG 79 agenda is LIVE *
>From talks and tutorials, to keynotes and panels, there's something for
everyone at the NANOG 79.

The virtual meeting will also include a number of interactive
opportunities, so you can share your ideas with the greater NANOG
community. Each session will have a live Q so you can directly engage
with NANOG 79 speakers, and the Community Meeting will also include
real-time polling so you can provide feedback and share your insights.

Check out the agenda to start planning your experience before the meeting
goes live!

View Agenda 

*NANOG 79 Program Updates*
*NANOG meeting first-timer?* Join us Monday, June 1 during the break for
the Newcomers Networking session.

*Calling all women in tech!* Join us Tuesday, June 2 during the break, for
the Women In Technology Networking session.

*Be sure to mark your interest *for either Zoom session when you register
for the NANOG 79 Virtual Meeting, and we’ll send you a calendar invite to
participate.

*Interested in sharing your thoughts* with a Lightning Talk? Submissions
will be accepted May 18-22, leading up to the NANOG 79 Virtual Meeting.
Learn more about Lightning Talks, here
. And, stay tuned
for more details from the Program Committee.

*Miss out on NANOG 78?*
Our last community-wide gathering may be over, but the hours of archived
keynotes, tutorials, talks, panels, and recaps featured in San Francisco
are just waiting to be explored, and we've gathered up all the very best of
NANOG 78, just for you!

View Recap 
___
NANOG-announce mailing list
NANOG-announce@nanog.org
https://mailman.nanog.org/mailman/listinfo/nanog-announce

Register now for the NANOG 79 Virtual Meeting!

[NANOG Marketing]

*Participation is open to all!*
Share and discover the latest networking technologies and best practices
with the greater NANOG community — without ever leaving home. Registration
for the NANOG 79 Virtual meeting is now open, and free to attend with a
coupon code. Be sure to register in advance to join us from your desktop or
mobile device, June 1-3.

Register Now 

*The NANOG 79 agenda is LIVE *
>From talks and tutorials, to keynotes and panels, there's something for
everyone at the NANOG 79.

The virtual meeting will also include a number of interactive
opportunities, so you can share your ideas with the greater NANOG
community. Each session will have a live Q so you can directly engage
with NANOG 79 speakers, and the Community Meeting will also include
real-time polling so you can provide feedback and share your insights.

Check out the agenda to start planning your experience before the meeting
goes live!

View Agenda 

*NANOG 79 Program Updates*
*NANOG meeting first-timer?* Join us Monday, June 1 during the break for
the Newcomers Networking session.

*Calling all women in tech!* Join us Tuesday, June 2 during the break, for
the Women In Technology Networking session.

*Be sure to mark your interest *for either Zoom session when you register
for the NANOG 79 Virtual Meeting, and we’ll send you a calendar invite to
participate.

*Interested in sharing your thoughts* with a Lightning Talk? Submissions
will be accepted May 18-22, leading up to the NANOG 79 Virtual Meeting.
Learn more about Lightning Talks, here
. And, stay tuned
for more details from the Program Committee.

*Miss out on NANOG 78?*
Our last community-wide gathering may be over, but the hours of archived
keynotes, tutorials, talks, panels, and recaps featured in San Francisco
are just waiting to be explored, and we've gathered up all the very best of
NANOG 78, just for you!

View Recap 

Re: Switch for SFP+

[Josh Baird]

LACP+tagged VLANs is not a problem for me on RouterOS.   I'm not wasting my
time on SwOS.

In general, Mikrotik's L2 switching implementation is very frustrating, but
I think it's gotten a bit better on the CRS3XX series of switches.

On Mon, May 18, 2020 at 5:53 PM Randy Carpenter 
wrote:

>
> I could never get LACP + tagged VLANs to work on SwOS.
>
> Then again, it doesn't work reliably on RouterOS either, so I gave up.
> Spending more on hardware that is well supported is worth it versus my time
> and sanity.
>
> I think Ubiquiti pretty much has the "cheap hardware that works well, but
> commercial support lacking" market cornered.
>
> thanks,
> -Randy
>
> - On May 18, 2020, at 5:43 PM, nanog  wrote:
>
> Yep, run SwichOS, prevents you from running things in software. 
>
>
>
>
>
> *[image: LTI-Full_175px]*
>
>
> *Dennis Burgess, Mikrotik Certified Trainer MTCNA, MTCRE, MTCWE, MTCTCE,
> MTCINE, MTCSE, HE IPv6 Sage, Cambium ePMP Certified *
>
> Author of "Learn RouterOS- Second Edition”
>
> *Link Technologies, Inc* -- Mikrotik & WISP Support Services
>
> *Office*: 314-735-0270  Website: http://www.linktechs.net
>
> Create Wireless Coverage’s with www.towercoverage.com
>
>
>
> *From:* NANOG  *On Behalf Of *Mike Hammett
> *Sent:* Monday, May 18, 2020 4:37 PM
> *To:* Mauro Gasparini 
> *Cc:* nanog@nanog.org
> *Subject:* Re: Switch for SFP+
>
>
>
> That's a downfall of Mikrotik, they give you ultimate power. You can do
> some pretty atypical things on there.
>
>
>
> -
> Mike Hammett
> Intelligent Computing Solutions
> 
> 
> 
> 
> 
> Midwest Internet Exchange 
> 
> 
> 
> The Brothers WISP 
> 
> 
> --
>
> *From: *"Mauro Gasparini" 
> *To: *nanog@nanog.org
> *Sent: *Monday, May 18, 2020 1:45:59 PM
> *Subject: *Re: Switch for SFP+
>
> It's clear then that I must use "bridge vlan" to achieve the goal I am
> looking for.
> Now it's time for me to study, research and test on my side.
> If I have any specific questions, I will draw on your experience.
> Thanks a lot.
>
> El 15/5/20 a las 22:11, Travis Garrison escribió:
>
> On the CRS 3xx line, use vlan filtering instead. This guarantees hardware
> offloading.
>
>
>
> PS. Do not use this method on the 1xx or 2xx lines.
>
>
>
> /interface bonding
> add mode=802.3ad name=bond-inet slaves=ether9,ether10,ether8
> transmit-hash-policy=layer-2-and-3
>
>
>
> /interface bridge
>
> add name=bridge vlan-filtering=yes
>
>
>
> /interface bridge port
>
> add bridge=bridge interface=bond-inet
>
> add bridge=bridge interface=sfp1
>
>
>
> /interface bridge vlan
>
> add bridge=bridge tagged=bond-inet,sfp1 vlan-ids=201
>
>
>
> Thanks
>
> Travis
>
>
>
> *From:* NANOG   *On
> Behalf Of *Mauro Gasparini
> *Sent:* Friday, May 15, 2020 10:55 AM
> *To:* nanog@nanog.org
> *Subject:* Re: Switch for SFP+
>
>
>
> This works well on my CRSs:
>
> /interface bonding
> add mode=802.3ad name=bond-inet slaves=ether9,ether10,ether8
> transmit-hash-policy=layer-2-and-3
>
> /interface bridge port
> add bridge=br-cabase interface=bond-inet
> add bridge=br-cabase interface=sfp1
>
> But if I want to bridge vlans behind some bonding Instead of bridging phy
> interfaces, cpu explodes:
>
> /interface vlan
> add name=vl201-mmen vlan-id=201 interface=sfp1
> add name=vl201-mment vlan-id=201 interface=bond-inet
>
> /interface bridge port
> add bridge=br-mment interface=vl201-mmen
> add bridge=br-mment interface=vl201-mment
>
> El 15/5/20 a las 12:06, Mike Hammett escribió:
>
> https://wiki.mikrotik.com/wiki/Manual:CRS3xx_series_switches#Bonding
>
>
>
> -
> Mike Hammett
> Intelligent Computing Solutions
> 
> 
> 
> 
> 
> Midwest Internet Exchange 
> 
> 
> 
> The Brothers WISP 
> 

Re: Switch for SFP+

[Randy Carpenter]

I could never get LACP + tagged VLANs to work on SwOS. 

Then again, it doesn't work reliably on RouterOS either, so I gave up. Spending 
more on hardware that is well supported is worth it versus my time and sanity. 

I think Ubiquiti pretty much has the "cheap hardware that works well, but 
commercial support lacking" market cornered. 

thanks, 
-Randy 

- On May 18, 2020, at 5:43 PM, nanog  wrote: 

> Yep, run SwichOS, prevents you from running things in software. 

> Dennis Burgess, Mikrotik Certified Trainer
> MTCNA, MTCRE, MTCWE, MTCTCE, MTCINE, MTCSE, HE IPv6 Sage, Cambium ePMP 
> Certified

> Author of "Learn RouterOS- Second Edition”

> Link Technologies, Inc -- Mikrotik & WISP Support Services

> Office : 314-735-0270 Website: [ http://www.linktechs.net/ |
> http://www.linktechs.net ]

> Create Wireless Coverage’s with [
> https://zimbra.network1.net/zimbra/www.towercoverage.com |
> www.towercoverage.com ]

> From: NANOG  On Behalf Of Mike Hammett
> Sent: Monday, May 18, 2020 4:37 PM
> To: Mauro Gasparini 
> Cc: nanog@nanog.org
> Subject: Re: Switch for SFP+

> That's a downfall of Mikrotik, they give you ultimate power. You can do some
> pretty atypical things on there.

> -
> Mike Hammett
> [
> https://imsva91-ctp.trendmicro.com/wis/clicktime/v1/query?url=http%3a%2f%2fwww.ics%2dil.com=B47E9451-A5F3-0D05-8BDE-9FDBD4B4C161=079c058f437b7c6303d36c6513e5e8848d0c5ac4-285b59a47041a35803b05fa3a991e89443b374c5
> | Intelligent Computing Solutions ]
> [ https://www.facebook.com/ICSIL ] [
> https://plus.google.com/+IntelligentComputingSolutionsDeKalb ] [
> https://www.linkedin.com/company/intelligent-computing-solutions ] [
> https://twitter.com/ICSIL ]
> [ http://www.midwest-ix.com/ | Midwest Internet Exchange ]
> [ https://www.facebook.com/mdwestix ] [
> https://www.linkedin.com/company/midwest-internet-exchange ] [
> https://twitter.com/mdwestix ]
> [ http://www.thebrotherswisp.com/ | The Brothers WISP ]
> [ https://www.facebook.com/thebrotherswisp ] [
> https://www.youtube.com/channel/UCXSdfxQv7SpoRQYNyLwntZg ]

> From: "Mauro Gasparini" < [ mailto:mjgaspar...@gmail.com | 
> mjgaspar...@gmail.com
> ] >
> To: [ mailto:nanog@nanog.org | nanog@nanog.org ]
> Sent: Monday, May 18, 2020 1:45:59 PM
> Subject: Re: Switch for SFP+

> It's clear then that I must use "bridge vlan" to achieve the goal I am looking
> for.
> Now it's time for me to study, research and test on my side.
> If I have any specific questions, I will draw on your experience.
> Thanks a lot.

> El 15/5/20 a las 22:11, Travis Garrison escribió:

>> On the CRS 3xx line, use vlan filtering instead. This guarantees hardware
>> offloading.

>> PS. Do not use this method on the 1xx or 2xx lines.

>> /interface bonding
>> add mode=802.3ad name=bond-inet slaves=ether9,ether10,ether8
>> transmit-hash-policy=layer-2-and-3

>> /interface bridge

>> add name=bridge vlan-filtering=yes

>> /interface bridge port

>> add bridge=bridge interface=bond-inet

>> add bridge=bridge interface=sfp1

>> /interface bridge vlan

>> add bridge=bridge tagged=bond-inet,sfp1 vlan-ids=201

>> Thanks

>> Travis

>> From: NANOG [ mailto:nanog-boun...@nanog.org |  ] On
>> Behalf Of Mauro Gasparini
>> Sent: Friday, May 15, 2020 10:55 AM
>> To: [ mailto:nanog@nanog.org | nanog@nanog.org ]
>> Subject: Re: Switch for SFP+

>> This works well on my CRSs:

>> /interface bonding
>> add mode=802.3ad name=bond-inet slaves=ether9,ether10,ether8
>> transmit-hash-policy=layer-2-and-3

>> /interface bridge port
>> add bridge=br-cabase interface=bond-inet
>> add bridge=br-cabase interface=sfp1

>> But if I want to bridge vlans behind some bonding Instead of bridging phy
>> interfaces, cpu explodes:

>> /interface vlan
>> add name=vl201-mmen vlan-id=201 interface=sfp1
>> add name=vl201-mment vlan-id=201 interface=bond-inet

>> /interface bridge port
>> add bridge=br-mment interface=vl201-mmen
>> add bridge=br-mment interface=vl201-mment

>> El 15/5/20 a las 12:06, Mike Hammett escribió:

>>> [ https://wiki.mikrotik.com/wiki/Manual:CRS3xx_series_switches#Bonding |
>>> https://wiki.mikrotik.com/wiki/Manual:CRS3xx_series_switches#Bonding ]

>>> -
>>> Mike Hammett
>>> [
>>> https://imsva91-ctp.trendmicro.com/wis/clicktime/v1/query?url=http%3a%2f%2fwww.ics%2dil.com=B47E9451-A5F3-0D05-8BDE-9FDBD4B4C161=079c058f437b7c6303d36c6513e5e8848d0c5ac4-285b59a47041a35803b05fa3a991e89443b374c5
>>> | Intelligent Computing Solutions ]
>>> [ https://www.facebook.com/ICSIL ] [
>>> https://plus.google.com/+IntelligentComputingSolutionsDeKalb ] [
>>> https://www.linkedin.com/company/intelligent-computing-solutions ] [
>>> https://twitter.com/ICSIL ]
>>> [ http://www.midwest-ix.com/ | Midwest Internet Exchange ]
>>> [ https://www.facebook.com/mdwestix ] [
>>> https://www.linkedin.com/company/midwest-internet-exchange ] [
>>> https://twitter.com/mdwestix ]
>>> [ http://www.thebrotherswisp.com/ | The Brothers WISP ]
>>> [ https://www.facebook.com/thebrotherswisp ] [
>>> 

RE: Switch for SFP+

[Dennis Burgess via NANOG]

Yep, run SwichOS, prevents you from running things in software. 


[LTI-Full_175px]
Dennis Burgess, Mikrotik Certified Trainer
MTCNA, MTCRE, MTCWE, MTCTCE, MTCINE, MTCSE, HE IPv6 Sage, Cambium ePMP Certified
Author of "Learn RouterOS- Second Edition”
Link Technologies, Inc -- Mikrotik & WISP Support Services
Office: 314-735-0270  Website: 
http://www.linktechs.net
Create Wireless Coverage’s with www.towercoverage.com

From: NANOG  On Behalf Of Mike Hammett
Sent: Monday, May 18, 2020 4:37 PM
To: Mauro Gasparini 
Cc: nanog@nanog.org
Subject: Re: Switch for SFP+

That's a downfall of Mikrotik, they give you ultimate power. You can do some 
pretty atypical things on there.


-
Mike Hammett
Intelligent Computing 
Solutions
[https://imsva91-ctp.trendmicro.com:443/wis/clicktime/v1/query?url=http%3a%2f%2fwww.ics%2dil.com%2fimages%2ffbicon.png%5d=B47E9451-A5F3-0D05-8BDE-9FDBD4B4C161=079c058f437b7c6303d36c6513e5e8848d0c5ac4-c5ec4171d8eb30d5845a6c42bb158eac5049c875[https://imsva91-ctp.trendmicro.com:443/wis/clicktime/v1/query?url=http%3a%2f%2fwww.ics%2dil.com%2fimages%2fgoogleicon.png%5d=B47E9451-A5F3-0D05-8BDE-9FDBD4B4C161=079c058f437b7c6303d36c6513e5e8848d0c5ac4-be2e4edf2d685ea567f2602c305bfa048c02fad1[https://imsva91-ctp.trendmicro.com:443/wis/clicktime/v1/query?url=http%3a%2f%2fwww.ics%2dil.com%2fimages%2flinkedinicon.png%5d=B47E9451-A5F3-0D05-8BDE-9FDBD4B4C161=079c058f437b7c6303d36c6513e5e8848d0c5ac4-9b0374f5a186eee94c15990608340f801b26[https://imsva91-ctp.trendmicro.com:443/wis/clicktime/v1/query?url=http%3a%2f%2fwww.ics%2dil.com%2fimages%2ftwittericon.png%5d=B47E9451-A5F3-0D05-8BDE-9FDBD4B4C161=079c058f437b7c6303d36c6513e5e8848d0c5ac4-5022b39587706bd2ec7239629cf89dc0926aa6a9
Midwest Internet Exchange
[https://imsva91-ctp.trendmicro.com:443/wis/clicktime/v1/query?url=http%3a%2f%2fwww.ics%2dil.com%2fimages%2ffbicon.png%5d=B47E9451-A5F3-0D05-8BDE-9FDBD4B4C161=079c058f437b7c6303d36c6513e5e8848d0c5ac4-c5ec4171d8eb30d5845a6c42bb158eac5049c875[https://imsva91-ctp.trendmicro.com:443/wis/clicktime/v1/query?url=http%3a%2f%2fwww.ics%2dil.com%2fimages%2flinkedinicon.png%5d=B47E9451-A5F3-0D05-8BDE-9FDBD4B4C161=079c058f437b7c6303d36c6513e5e8848d0c5ac4-9b0374f5a186eee94c15990608340f801b26[https://imsva91-ctp.trendmicro.com:443/wis/clicktime/v1/query?url=http%3a%2f%2fwww.ics%2dil.com%2fimages%2ftwittericon.png%5d=B47E9451-A5F3-0D05-8BDE-9FDBD4B4C161=079c058f437b7c6303d36c6513e5e8848d0c5ac4-5022b39587706bd2ec7239629cf89dc0926aa6a9
The Brothers WISP
[https://imsva91-ctp.trendmicro.com:443/wis/clicktime/v1/query?url=http%3a%2f%2fwww.ics%2dil.com%2fimages%2ffbicon.png%5d=B47E9451-A5F3-0D05-8BDE-9FDBD4B4C161=079c058f437b7c6303d36c6513e5e8848d0c5ac4-c5ec4171d8eb30d5845a6c42bb158eac5049c875[https://imsva91-ctp.trendmicro.com:443/wis/clicktime/v1/query?url=http%3a%2f%2fwww.ics%2dil.com%2fimages%2fyoutubeicon.png%5d=B47E9451-A5F3-0D05-8BDE-9FDBD4B4C161=079c058f437b7c6303d36c6513e5e8848d0c5ac4-c3a2a0a72aa5c9ab369580d4aacc6f70b7e85886

From: "Mauro Gasparini" mailto:mjgaspar...@gmail.com>>
To: nanog@nanog.org
Sent: Monday, May 18, 2020 1:45:59 PM
Subject: Re: Switch for SFP+

It's clear then that I must use "bridge vlan" to achieve the goal I am looking 
for.
Now it's time for me to study, research and test on my side.
If I have any specific questions, I will draw on your experience.
Thanks a lot.
El 15/5/20 a las 22:11, Travis Garrison escribió:
On the CRS 3xx line, use vlan filtering instead. This guarantees hardware 
offloading.

PS. Do not use this method on the 1xx or 2xx lines.

/interface bonding
add mode=802.3ad name=bond-inet slaves=ether9,ether10,ether8 
transmit-hash-policy=layer-2-and-3

/interface bridge
add name=bridge vlan-filtering=yes

/interface bridge port
add bridge=bridge interface=bond-inet
add bridge=bridge interface=sfp1

/interface bridge vlan
add bridge=bridge tagged=bond-inet,sfp1 vlan-ids=201

Thanks
Travis

From: NANOG  On Behalf 
Of Mauro Gasparini
Sent: Friday, May 15, 2020 10:55 AM
To: nanog@nanog.org
Subject: Re: Switch for SFP+

This works well on my CRSs:

/interface bonding
add mode=802.3ad name=bond-inet slaves=ether9,ether10,ether8 
transmit-hash-policy=layer-2-and-3

Re: Switch for SFP+

[Mike Hammett]

That's a downfall of Mikrotik, they give you ultimate power. You can do some 
pretty atypical things on there. 




- 
Mike Hammett 
Intelligent Computing Solutions 

Midwest Internet Exchange 

The Brothers WISP 

- Original Message -

From: "Mauro Gasparini"  
To: nanog@nanog.org 
Sent: Monday, May 18, 2020 1:45:59 PM 
Subject: Re: Switch for SFP+ 

It's clear then that I must use "bridge vlan" to achieve the goal I am looking 
for. 
Now it's time for me to study, research and test on my side. 
If I have any specific questions, I will draw on your experience. 
Thanks a lot. 


El 15/5/20 a las 22:11, Travis Garrison escribió: 




On the CRS 3xx line, use vlan filtering instead. This guarantees hardware 
offloading. 

PS. Do not use this method on the 1xx or 2xx lines. 

/interface bonding 
add mode=802.3ad name=bond-inet slaves=ether9,ether10,ether8 
transmit-hash-policy=layer-2-and-3 

/interface bridge 
add name=bridge vlan-filtering=yes 

/interface bridge port 
add bridge=bridge interface=bond-inet 
add bridge=bridge interface=sfp1 

/interface bridge vlan 
add bridge=bridge tagged=bond-inet,sfp1 vlan-ids=201 


Thanks 
Travis 



From: NANOG  On Behalf Of Mauro Gasparini 
Sent: Friday, May 15, 2020 10:55 AM 
To: nanog@nanog.org 
Subject: Re: Switch for SFP+ 

This works well on my CRSs: 

/interface bonding 
add mode=802.3ad name=bond-inet slaves=ether9,ether10,ether8 
transmit-hash-policy=layer-2-and-3 

/interface bridge port 
add bridge=br-cabase interface=bond-inet 
add bridge=br-cabase interface=sfp1 

But if I want to bridge vlans behind some bonding Instead of bridging phy 
interfaces, cpu explodes: 

/interface vlan 
add name=vl201-mmen vlan-id=201 interface=sfp1 
add name=vl201-mment vlan-id=201 interface=bond-inet 

/interface bridge port 
add bridge=br-mment interface=vl201-mmen 
add bridge=br-mment interface=vl201-mment 



El 15/5/20 a las 12:06, Mike Hammett escribió: 



https://wiki.mikrotik.com/wiki/Manual:CRS3xx_series_switches#Bonding 



- 
Mike Hammett 
Intelligent Computing Solutions 

Midwest Internet Exchange 

The Brothers WISP 

- Original Message -


From: "Mauro Gasparini"  
To: nanog@nanog.org 
Sent: Friday, May 15, 2020 8:55:22 AM 
Subject: Re: Switch for SFP+ 

Thanks. I am currently using CRS326-24G-2S+ (with routerOS) for this, but when 
I want to do vlan trunking through the bonding, cpu load grows from 3% to more 
than 90%. 
I'm consulting Mikrotik's support in the meantime, because routerOS probably 
doesn't take advantage of the switch hardware as swOS would. 



El 15/5/20 a las 10:03, Alain Hebert escribió: 


Hi, 

Mikrotik is a decent product and I'm always amazed at their features set, 
but... 

Using the UI to configuring the switch will punt too much traffic toward the 
CPU. However, it is possible to configure the switch fabric with the cli and 
attain the desired results. 

It does not compare to a JNP QFX5100 or a Extreme Network x650, x670... etc. 
- Alain Hebert aheb...@pubnix.net PubNIX Inc. 50 boul. St-Charles P.O. Box 
26770 Beaconsfield, Quebec H9W 6G7 Tel: 514-990-5911 
http://www.pubnix.net Fax: 514-990-9443 

On 2020-05-14 15:11, Adam Thompson wrote: 



Have you actually looked at Mikrotik switches? I don't like the OS, but the 
hardware does what you want it to. 
https://mikrotik.com/products/group/switches?filter=c={%22sfp_plus_interface%22:{%22s%22:%223%22,%22e%22:%2224%22}}#!
 
If necessary, buy your SFP modules from FS.com and get them coded as Mikrotik 
modules at the factory - that's what we do for Cisco, Brocade, Juniper, 
Extreme, etc. 
Even the top-of-the-line Mikrotik only costs US$899. 
-Adam 




Adam Thompson 
Consultant, Infrastructure Services 
[MERLIN LOGO]
100 - 135 Innovation Drive 
Winnipeg, MB, R3T 6A8 
(204) 977-6824 or 1-800-430-6404 (MB only) 
athomp...@merlin.mb.ca 
www.merlin.mb.ca 




From: NANOG  on behalf of Mauro Gasparini 
 
Sent: Thursday, May 14, 2020 8:46:21 AM 
To: Mehmet Akcin 
Cc: nanog 
Subject: Re: Switch for SFP+ 



Thank you. The problem is that to get a price lower than U$D 3000 I have to 
resort to a used device. 

El 14/5/20 a las 01:08, Mehmet Akcin escribió: 




Used Juniper QFX5100-48T will do it. Probably overkill but you can grab one 
cheap @ebay 




On Wed, May 13, 2020 at 16:36 Mauro Gasparini < mjgaspar...@gmail.com > wrote: 


Good afternoon. 

I'm looking for a switch with the following capabilities: 
. transport for more than 20 gbps 
. link aggregation LACP 
. slots for SFP+ 
. seamlessly when trunking vlans through the link aggregation. 

And essentially that doesn't exceed US$D 2000 and is compatible with 
10GBASE-ER and/or 10GBASE-ZR modules that are not from the vendor itself 
(e.g. SPFs: Huawei, Mikrotik, Sumitomo, OEMs). 

If any of you have a good experience with a device that meets these 
requirements (which are minimal with the exception of price and 
compatibility) ? 

Regards. 
Mauro Gasparini 


-- 

Mehmet 
+1-424-298-1903 

FW: Integrated WIFI router and phone adapter

[K MEKKAOUI]

I am interested in Ethernet WAN DHCP option.

 

Thank you

 

KARIM M.

 

From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Mark Tinka
Sent: May 18, 2020 3:04 AM
To: nanog@nanog.org
Subject: Re: Integrated WIFI router and phone adapter

 

 

On 18/May/20 07:00, K MEKKAOUI wrote:

Hi NANOG Community

 

Anyone knows about a good integrated WIFI router and phone adapter that can be 
used to provide home and business internet and phone service. We tried couple 
of them but we’ve seen some instability and reliability issues (i.e. wifi 
issues, phone issues, etc.). Also some of them are designed to work better over 
DSL but not over DOCSIS.


Have you looked at Calix:


https://www.calix.com/platforms/non-exos-premises-systems/gigafamily-overview/gigahubs.html

You don't mention what last mile you're using. The Calix Giga units are for 
GPON.

Mark.

Re: Switch for SFP+

[Mauro Gasparini]

It's clear then that I must use "bridge vlan" to achieve the goal I am 
looking for.

Now it's time for me to study, research and test on my side.
If I have any specific questions, I will draw on your experience.
Thanks a lot.

El 15/5/20 a las 22:11, Travis Garrison escribió:


On the CRS 3xx line, use vlan filtering instead. This guarantees 
hardware offloading.


PS. Do not use this method on the 1xx or 2xx lines.

/interface bonding
add mode=802.3ad name=bond-inet slaves=ether9,ether10,ether8 
transmit-hash-policy=layer-2-and-3


/interface bridge

add name=bridge vlan-filtering=yes

/interface bridge port

add bridge=bridge interface=bond-inet

add bridge=bridge interface=sfp1

/interface bridge vlan

add bridge=bridge tagged=bond-inet,sfp1 vlan-ids=201

Thanks

Travis

*From:* NANOG  *On Behalf Of *Mauro Gasparini
*Sent:* Friday, May 15, 2020 10:55 AM
*To:* nanog@nanog.org
*Subject:* Re: Switch for SFP+

This works well on my CRSs:

/interface bonding
add mode=802.3ad name=bond-inet slaves=ether9,ether10,ether8 
transmit-hash-policy=layer-2-and-3


/interface bridge port
add bridge=br-cabase interface=bond-inet
add bridge=br-cabase interface=sfp1

But if I want to bridge vlans behind some bonding Instead of bridging 
phy interfaces, cpu explodes:


/interface vlan
add name=vl201-mmen vlan-id=201 interface=sfp1
add name=vl201-mment vlan-id=201 interface=bond-inet

/interface bridge port
add bridge=br-mment interface=vl201-mmen
add bridge=br-mment interface=vl201-mment

El 15/5/20 a las 12:06, Mike Hammett escribió:

https://wiki.mikrotik.com/wiki/Manual:CRS3xx_series_switches#Bonding



-
Mike Hammett
Intelligent Computing Solutions 


Midwest Internet Exchange 


The Brothers WISP 





*From: *"Mauro Gasparini" 

*To: *nanog@nanog.org 
*Sent: *Friday, May 15, 2020 8:55:22 AM
*Subject: *Re: Switch for SFP+

Thanks. I am currently using CRS326-24G-2S+ (with routerOS) for
this, but when I want to do vlan trunking through the bonding, cpu
load grows from 3% to more than 90%.
I'm consulting Mikrotik's support in the meantime, because
routerOS probably doesn't take advantage of the switch hardware as
swOS would.

El 15/5/20 a las 10:03, Alain Hebert escribió:

Hi,

    Mikrotik is a decent product and I'm always amazed at
their features set, but...

    Using the UI to configuring the switch will punt too much
traffic toward the CPU.  However, it is possible to configure
the switch fabric with the cli and attain the desired results.

    It does not compare to a JNP QFX5100 or a Extreme Network
x650, x670...  etc.

-

Alain Hebert aheb...@pubnix.net 

PubNIX Inc.

50 boul. St-Charles

P.O. Box 26770 Beaconsfield, Quebec H9W 6G7

Tel: 514-990-5911 http://www.pubnix.net    Fax: 514-990-9443

On 2020-05-14 15:11, Adam Thompson wrote:

Have you actually looked at Mikrotik switches?  I don't
like the OS, but the hardware does what you want it to.


https://mikrotik.com/products/group/switches?filter=c={%22sfp_plus_interface%22:{%22s%22:%223%22,%22e%22:%2224%22}}#!



If necessary, buy your SFP modules from FS.com and get
them coded as Mikrotik modules at the factory - that's
what we do for Cisco, Brocade, Juniper, Extreme, etc.

Even the top-of-the-line Mikrotik only costs US$899.

-Adam

*Adam Thompson*
Consultant, Infrastructure Services
[MERLIN LOGO]
100 - 135 Innovation Drive
Winnipeg, MB, R3T 6A8
(204) 977-6824 or 1-800-430-6404 (MB only)
athomp...@merlin.mb.ca 
www.merlin.mb.ca 




*From:*NANOG 
 on behalf of Mauro
Gasparini 

*Sent:* Thursday, May 14, 2020 

Re: Integrated WIFI router and phone adapter

[Curtis Maurand]

don't forget to disable SIP-ALG on the units.  That will be a huge 
improvement.


On 5/18/20 12:34 PM, Mark Tinka wrote:


On 18/May/20 16:45, Kevin Burke wrote:

They have an Ethernet version and GPON version.

The GPON version is the same price their Ethernet version + low end GPON ONT.

We stayed away from the GPON version for WiFi reasons.  Want the techs thinking 
about a good RF location.  Don't want them thinking about easy/good fiber 
routing.

To drive POTS lines, I suppose they are fine.

But agree that for home wi-fi, you're better off having a dedicated AP
so that you don't compromise wi-fi quality due to the fibre loop coming
into the back of your office/house, where only dust lives :-).

Mark.

Re: CBS Streaming NOC Contact

[Steve Feldman]

I have been told the proper way to handle geolocation issues is to open a 
support ticket by following the "Contact Us" instructions here: 
https://cbsi.secure.force.com/CBSi/KnowledgeHome?referer=cbs.com%2Faa

Once that's done if you don't get help in a reasonable timeframe, let me know 
your support ticket information and I'll attempt to escalate it.
 Steve

> On May 18, 2020, at 9:21 AM, Jesse DuPont  
> wrote:
> 
> Good morning. Does anyone have an email contact for CBS All Access streaming 
> NOC? We're struggling with what appear to be some geo-location issues - our 
> info is right on all the known geo-location providers, but we're still 
> struggling with some of our IP blocks being unable to stream from CBS.
> -- 
> 
> Jesse DuPont
> Owner / Network Architect
> email: jesse.dup...@celeritycorp.net
> Celerity Networks LLC / Celerity Broadband LLC
> Like us! facebook.com/celeritynetworksllc
> Like us! facebook.com/celeritybroadband
> 

Re: Integrated WIFI router and phone adapter

[Mark Tinka]

On 18/May/20 16:45, Kevin Burke wrote:
> They have an Ethernet version and GPON version.  
>
> The GPON version is the same price their Ethernet version + low end GPON ONT. 
>  
>
> We stayed away from the GPON version for WiFi reasons.  Want the techs 
> thinking about a good RF location.  Don't want them thinking about easy/good 
> fiber routing.  

To drive POTS lines, I suppose they are fine.

But agree that for home wi-fi, you're better off having a dedicated AP
so that you don't compromise wi-fi quality due to the fibre loop coming
into the back of your office/house, where only dust lives :-).

Mark.

CBS Streaming NOC Contact

[Jesse DuPont]

  
  
Good morning. Does anyone have an email contact for CBS All Access
streaming NOC? We're struggling with what appear to be some
geo-location issues - our info is right on all the known
geo-location providers, but we're still struggling with some of our
IP blocks being unable to stream from CBS.
-- 
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

  

Re: Integrated WIFI router and phone adapter

[Brandon Martin]

On 5/18/20 1:00 AM, K MEKKAOUI wrote:
Anyone knows about a good integrated WIFI router and phone adapter that 
can be used to provide home and business internet and phone service. We 
tried couple of them but we’ve seen some instability and reliability 
issues (i.e. wifi issues, phone issues, etc.). Also some of them are 
designed to work better over DSL but not over DOCSIS.


SmartRG (now part of Adtran) has some Ethernet-connected and therefore 
largely provider-tech agnostic models with FXS ports.  I've not used the 
voice functionality of them, but I've been quite happy with the Wi-Fi 
and NAT, and they generally "do the right thing" out of the box for most 
folks.

--
Brandon Martin

Re: Integrated WIFI router and phone adapter

[Kevin Burke]

They have an Ethernet version and GPON version.  

The GPON version is the same price their Ethernet version + low end GPON ONT.  

We stayed away from the GPON version for WiFi reasons.  Want the techs thinking 
about a good RF location.  Don't want them thinking about easy/good fiber 
routing.  


 
Kevin Burke
802-540-0979
Burlington Telecom

200 Church St, Burlington, VT

On 5/18/20, 9:46 AM, "NANOG on behalf of Bryan Holloway" 
 wrote:

WARNING!! This message originated from an External Source. Please use 
proper judgment and caution when opening attachments, clicking links, or 
responding to this email.

+1

But yes -- GPON.


On 5/18/20 9:03 AM, Mark Tinka wrote:
>
>
> On 18/May/20 07:00, K MEKKAOUI wrote:
>>
>> Hi NANOG Community
>>
>> Anyone knows about a good integrated WIFI router and phone adapter
>> that can be used to provide home and business internet and phone
>> service. We tried couple of them but we’ve seen some instability and
>> reliability issues (i.e. wifi issues, phone issues, etc.). Also some
>> of them are designed to work better over DSL but not over DOCSIS.
>>
>
> Have you looked at Calix:
>
> 
https://www.calix.com/platforms/non-exos-premises-systems/gigafamily-overview/gigahubs.html
>
> You don't mention what last mile you're using. The Calix Giga units are
> for GPON.
>
> Mark.

Re: Integrated WIFI router and phone adapter

[Bryan Holloway]

+1

But yes -- GPON.


On 5/18/20 9:03 AM, Mark Tinka wrote:



On 18/May/20 07:00, K MEKKAOUI wrote:


Hi NANOG Community

Anyone knows about a good integrated WIFI router and phone adapter 
that can be used to provide home and business internet and phone 
service. We tried couple of them but we’ve seen some instability and 
reliability issues (i.e. wifi issues, phone issues, etc.). Also some 
of them are designed to work better over DSL but not over DOCSIS.




Have you looked at Calix:

https://www.calix.com/platforms/non-exos-premises-systems/gigafamily-overview/gigahubs.html

You don't mention what last mile you're using. The Calix Giga units are 
for GPON.


Mark.

RE: Switch for SFP+

[Travis Garrison]

On the CRS 3xx line, use vlan filtering instead. This guarantees hardware 
offloading.

PS. Do not use this method on the 1xx or 2xx lines.

/interface bonding
add mode=802.3ad name=bond-inet slaves=ether9,ether10,ether8 
transmit-hash-policy=layer-2-and-3

/interface bridge
add name=bridge vlan-filtering=yes

/interface bridge port
add bridge=bridge interface=bond-inet
add bridge=bridge interface=sfp1

/interface bridge vlan
add bridge=bridge tagged=bond-inet,sfp1 vlan-ids=201

Thanks
Travis

From: NANOG  On Behalf Of Mauro Gasparini
Sent: Friday, May 15, 2020 10:55 AM
To: nanog@nanog.org
Subject: Re: Switch for SFP+

This works well on my CRSs:

/interface bonding
add mode=802.3ad name=bond-inet slaves=ether9,ether10,ether8 
transmit-hash-policy=layer-2-and-3

/interface bridge port
add bridge=br-cabase interface=bond-inet
add bridge=br-cabase interface=sfp1

But if I want to bridge vlans behind some bonding Instead of bridging phy 
interfaces, cpu explodes:

/interface vlan
add name=vl201-mmen vlan-id=201 interface=sfp1
add name=vl201-mment vlan-id=201 interface=bond-inet

/interface bridge port
add bridge=br-mment interface=vl201-mmen
add bridge=br-mment interface=vl201-mment

El 15/5/20 a las 12:06, Mike Hammett escribió:
https://wiki.mikrotik.com/wiki/Manual:CRS3xx_series_switches#Bonding


-
Mike Hammett
Intelligent Computing Solutions
[http://www.ics-il.com/images/fbicon.png][http://www.ics-il.com/images/googleicon.png][http://www.ics-il.com/images/linkedinicon.png][http://www.ics-il.com/images/twittericon.png]
Midwest Internet Exchange
[http://www.ics-il.com/images/fbicon.png][http://www.ics-il.com/images/linkedinicon.png][http://www.ics-il.com/images/twittericon.png]
The Brothers WISP
[http://www.ics-il.com/images/fbicon.png][http://www.ics-il.com/images/youtubeicon.png]

From: "Mauro Gasparini" 
To: nanog@nanog.org
Sent: Friday, May 15, 2020 8:55:22 AM
Subject: Re: Switch for SFP+

Thanks. I am currently using CRS326-24G-2S+ (with routerOS) for this, but when 
I want to do vlan trunking through the bonding, cpu load grows from 3% to more 
than 90%.
I'm consulting Mikrotik's support in the meantime, because routerOS probably 
doesn't take advantage of the switch hardware as swOS would.

El 15/5/20 a las 10:03, Alain Hebert escribió:
Hi,

Mikrotik is a decent product and I'm always amazed at their features set, 
but...

Using the UI to configuring the switch will punt too much traffic toward 
the CPU.  However, it is possible to configure the switch fabric with the cli 
and attain the desired results.

It does not compare to a JNP QFX5100 or a Extreme Network x650, x670...  
etc.

-

Alain Hebert
aheb...@pubnix.net

PubNIX Inc.

50 boul. St-Charles

P.O. Box 26770 Beaconsfield, Quebec H9W 6G7

Tel: 514-990-5911  http://www.pubnix.netFax: 514-990-9443
On 2020-05-14 15:11, Adam Thompson wrote:

Have you actually looked at Mikrotik switches?  I don't like the OS, but the 
hardware does what you want it to.


https://mikrotik.com/products/group/switches?filter=c={%22sfp_plus_interface%22:{%22s%22:%223%22,%22e%22:%2224%22}}#!

If necessary, buy your SFP modules from FS.com and get them coded as Mikrotik 
modules at the factory - that's what we do for Cisco, Brocade, Juniper, 
Extreme, etc.

Even the top-of-the-line Mikrotik only costs US$899.

-Adam


Adam Thompson
Consultant, Infrastructure Services
[[MERLIN LOGO]]
100 - 135 Innovation Drive
Winnipeg, MB, R3T 6A8
(204) 977-6824 or 1-800-430-6404 (MB only)
athomp...@merlin.mb.ca
www.merlin.mb.ca


From: NANOG  on behalf 
of Mauro Gasparini 
Sent: Thursday, May 14, 2020 8:46:21 AM
To: Mehmet Akcin
Cc: nanog
Subject: Re: Switch for SFP+

Thank you. The problem is that to get a price lower than U$D 3000 I have to 
resort to a used device.
El 14/5/20 a las 01:08, Mehmet Akcin escribió:
Used Juniper QFX5100-48T will do it. Probably overkill but you can grab one 
cheap @ebay

On Wed, May 13, 2020 at 16:36 Mauro Gasparini 
mailto:mjgaspar...@gmail.com>> wrote:
Good afternoon.

I'm looking for a switch with the 

Re: Integrated WIFI router and phone adapter

[Mark Tinka]

On 18/May/20 07:00, K MEKKAOUI wrote:
>
> Hi NANOG Community
>
>  
>
> Anyone knows about a good integrated WIFI router and phone adapter
> that can be used to provide home and business internet and phone
> service. We tried couple of them but we’ve seen some instability and
> reliability issues (i.e. wifi issues, phone issues, etc.). Also some
> of them are designed to work better over DSL but not over DOCSIS.
>

Have you looked at Calix:

   
https://www.calix.com/platforms/non-exos-premises-systems/gigafamily-overview/gigahubs.html

You don't mention what last mile you're using. The Calix Giga units are
for GPON.

Mark.