Massive Spectrum Outage

[Kenneth McRae via NANOG]

Anyone outside of S. California affected?

Re: Mx204 alternative

[Kenneth McRae via NANOG]

On the MX204 that is..

Sent from my iPhone

> On Sep 2, 2019, at 3:27 PM, Kenneth McRae via NANOG  wrote:
> 
> 1 Gig is supported on later release versions 
> 
> Sent from my iPhone
> 
>> On Sep 2, 2019, at 1:49 AM, Mark Tinka  wrote:
>> 
>> 
>> 
>>> On 2/Sep/19 10:28, Hank Nussbacher wrote:
>>> 
>>> 
>>> 
>>> What about handling LAG on 1Gb/sec links?  That is a major showstopper
>>> if indeed it is missing:
>>> 
>>> https://www.juniper.net/documentation/en_US/junos/topics/reference/configuration-statement/speed-gigether-options.html
>>> 
>>> •On MX10003 and MX204 routers, rate selectability at PIC
>>> level and port level does not support 1-Gbps speed.
>>> •On MX10003 and MX204 routers, the interface name prefix
>>> must be xe.
>>> •On MX10003 and MX204 routers, even after configuring
>>> 1-Gbps speed, the protocol continues to advertise the bandwidth as
>>> 10-Gigabit Ethernet.
>>> •On MX10003 and MX204 routers, Link Aggregation Group
>>> (LAG) is supported on 10-Gbps speed only. It is not supported on
>>> 1-Gbps speed.
>> 
>> Well, that's not ideal at all.
>> 
>> That said, in the Metro, we don't generally support LAG's toward
>> customers because getting policing to work reliably on them is
>> difficult. So we wouldn't hit this issue, although I can see how
>> annoying it would be for networks that prefer to do this.
>> 
>> Mark.
> 

Re: Mx204 alternative

[Kenneth McRae via NANOG]

1 Gig is supported on later release versions 

Sent from my iPhone

> On Sep 2, 2019, at 1:49 AM, Mark Tinka  wrote:
> 
> 
> 
>> On 2/Sep/19 10:28, Hank Nussbacher wrote:
>> 
>>  
>> 
>> What about handling LAG on 1Gb/sec links?  That is a major showstopper
>> if indeed it is missing:
>> 
>> https://www.juniper.net/documentation/en_US/junos/topics/reference/configuration-statement/speed-gigether-options.html
>> 
>> •On MX10003 and MX204 routers, rate selectability at PIC
>> level and port level does not support 1-Gbps speed.
>> •On MX10003 and MX204 routers, the interface name prefix
>> must be xe.
>> •On MX10003 and MX204 routers, even after configuring
>> 1-Gbps speed, the protocol continues to advertise the bandwidth as
>> 10-Gigabit Ethernet.
>> •On MX10003 and MX204 routers, Link Aggregation Group
>> (LAG) is supported on 10-Gbps speed only. It is not supported on
>> 1-Gbps speed.
> 
> Well, that's not ideal at all.
> 
> That said, in the Metro, we don't generally support LAG's toward
> customers because getting policing to work reliably on them is
> difficult. So we wouldn't hit this issue, although I can see how
> annoying it would be for networks that prefer to do this.
> 
> Mark.

Re: NTP for ASBRs?

[Kenneth McRae via NANOG]

You will also need to add you localhost as a source if you want to show that 
ntp association status on the router

apply-flags omit;
term allow-ntp {
from {
source-prefix-list {
ntp-server;
localhost;
}
protocol udp;
port ntp;
}
then {
policer gen-use-1m;
accept;
}
}

show policy-options prefix-list localhost 
apply-flags omit;
apply-path "interfaces lo0 unit 0 family inet address <*>”;



> On May 8, 2019, at 7:22 AM, Vincent Bernat  wrote:
> 
> ❦  8 mai 2019 09:56 +02, Lars Prehn :
> 
>> do you NTP sync your AS boundary routers? If so, what are incentives
>> for doing so? Are there incentives, e.g. security considerations, not
>> to do it?
> 
> Ensure you have a firewall rule in place to prevent people to use your
> router for NTP amplification. NTP clients are also servers. On Juniper
> devices:
> 
> policy-options {
>prefix-list ntp-servers {
>apply-path "system ntp server <*>";
>}
> }
> firewall {
>/* ... */
>   term accept-ntp {
>from {
>source-prefix-list {
>ntp-servers;
>}
>protocol udp;
>port ntp;
>}
>then {
>policer management-1m;
>accept;
>}
>}
> }
> 
> (see
> 
> for more details).
> -- 
> Keep it simple to make it faster.
>- The Elements of Programming Style (Kernighan & Plauger)

Youtube Outage

[Kenneth McRae via NANOG]

Is this widespread?


signature.asc
Description: Message signed with OpenPGP

Re: Godaddy outage?

[Kenneth McRae via NANOG]

Outage confirmed by support staff.  No present ETR.

> On Aug 7, 2018, at 2:47 PM, William Herrin  wrote:
> 
> Hi,
> 
> Does anyone have information on the godaddy outage? I don't see
> anything on https://puck.nether.net/mailman/listinfo/outages or
> status.godaddy.com but my DNS server logs:
> 
> Aug  7 17:02:11 dns-a named[2383]: error (unexpected RCODE REFUSED)
> resolving 'pdns11.domaincontrol.com/A/IN': 173.201.65.35#53
> Aug  7 17:02:11 dns-a named[2383]: error (unexpected RCODE REFUSED)
> resolving 'pdns12.domaincontrol.com/A/IN': 173.201.65.35#53
> Aug  7 17:02:32 dns-a named[2383]: error (unexpected RCODE REFUSED)
> resolving 'ns38.domaincontrol.com/A/IN': 216.69.185.35#53
> Aug  7 17:02:32 dns-a named[2383]: error (unexpected RCODE REFUSED)
> resolving 'ns37.domaincontrol.com/A/IN': 216.69.185.35#53
> 
> my zones aren't resolving consistently and an attempt to access the
> web portal at https://dcc.godaddy.com/manage/dns reports "We apologize
> for this inconvenience, but an error has been detected."
> 
> First noticed about 75 minutes ago.
> 
> Thanks,
> Bill Herrin
> 
> --
> William Herrin  her...@dirtside.com  b...@herrin.us
> Dirtside Systems . Web: 



signature.asc
Description: Message signed with OpenPGP

Re: Console Servers & Cellular Providers

[Kenneth McRae]

Yes.  I use Opengear with great success.  I use Verizon, T-Mobile & AT 
prepaid service depending on the area.  When integrated with Opengear 
Lighthouse, the console server is fully manageable via cellular service.

Kenneth

> On Feb 6, 2018, at 6:34 AM, Michael Starr  wrote:
> 
> Hello NANOGers,
> 
> 
> 
> I am wondering if people still use console servers with cellular service as
> a disaster out-of-band management solution in your data centers? If not,
> what are the alternatives? If so, are there any recommendations for
> pay-as-you-go cellular service? Apologies if this is too trivial a question
> for this group.
> 
> 
> 
> Thanks for your time,
> 
> Mike

Passive Optical Network (PON)

[Kenneth McRae]

Greeting all,

Is anyone out there using PON in a campus or facility environment?  I am 
talking to a few vendors who are pushing PON as a replacement for edge 
switching on the campus and in some cases, ToR switch in the DC.  Opinions on 
this technology would be greatly appreciated.

Thanks,

Kenneth

Re: Juniper QFX5200-32C junos base services license and BGP

[Kenneth McRae]

Re: GRE performance over the Internet - DDoS cloud mitigation

[Kenneth McRae]

How stable can GRE transports and BGP sessions be when under load?
 
I typically protect the BGP session by policing all traffic being delivered to 
the remote end except for BGP.  Using this posture, my BGP session over GRE are 
stable; even under attack.

Kenneth 

On Jun 30, 2015, at 01:37 PM, Dennis B infinity...@gmail.com wrote:

Roland,

Agreed, Ramy's scenario was not truly spot on, but his question still
remains. Perf implications when cloud security providers time to
detect/mitigate is X minutes. How stable can GRE transports and BGP
sessions be when under load?

In my technical opinion, this is a valid argument, which deems wide
opinion. Specifically, use-cases about how to apply defense in depth
logically in the DC vs Hybrid vs Pure Cloud.

Good topic, already some back-chatter personal opinions from Nanog lurkers!

Regards,

Dennis B.


On Tue, Jun 30, 2015 at 2:45 PM, Roland Dobbins rdobb...@arbor.net wrote:


On 1 Jul 2015, at 1:37, Dennis B wrote:

Would you like to learn more? lol


I'm quite conversant with all these considerations, thanks.

OP asserted that BGP sessions for diversion into any cloud DDoS mitigation
service ran from the endpoint network through GRE tunnels to the
cloud-based mitigation provider. I was explaining that in most cloud
mitigation scenarios, GRE tunnels are used for re-injection of 'clean'
traffic to the endpoint networks.

---
Roland Dobbins rdobb...@arbor.net

Re: Low cost WDM gear

[Kenneth McRae]

Michelle speaks English.

On Apr 16, 2015, at 09:04 AM, Justin Wilson - MTIN li...@mtin.net wrote:

Does anyone have a English speaking rep for FiberStore? I have a client with a 
difficult time ordering some custom stuff. Language barrier is a big issue.



Justin Wilson j...@mtin.net
http://www.mtin.net Managed Services – xISP Solutions – Data Centers
http://www.thebrotherswisp.com Podcast about xISP topics
http://www.midwest-ix.com Peering – Transit – Internet Exchange 


On Feb 7, 2015, at 4:30 PM, Kenneth McRae kenneth.mc...@me.com wrote:

I will live vicariously though your experiences with them. I'm good on 
FiberStore. :-)

Thanks for the feedback..

On Feb 07, 2015, at 01:27 PM, Faisal Imtiaz fai...@snappytelecom.net wrote:

Maybe, your experience was the pivotal event that became a turning point in 
their customer service attitudes...

:)

Faisal Imtiaz
Snappy Internet  Telecom
7266 SW 48 Street
Miami, FL 33155
Tel: 305 663 5518 x 232

Help-desk: (305)663-5518 Option 2 or Email: supp...@snappytelecom.net
From: Kenneth McRae kenneth.mc...@me.com
To: Faisal Imtiaz fai...@snappytelecom.net
Cc: Rodrigo 1telecom rodr...@1telecom.com.br, NANOG nanog@nanog.org
Sent: Saturday, February 7, 2015 4:24:18 PM
Subject: Re: Low cost WDM gear

Point taken on the specs.. Still doesn't excuse poor customer service and tech 
support. I never expect to be told that no refund will be issued when I am 
dissatisfied with the product. A request for RMA because something is not 
working as expected should not have to be escalated to the President of the 
company.

Other than that I am sure FiberStore is a great company :-)

On Feb 07, 2015, at 01:17 PM, Faisal Imtiaz fai...@snappytelecom.net wrote:

My point is..
... The thing to rely on is/are the Specs.
If the Specs are right or specs are wrong, that is what determines the 
product's mfg shortcoming (defect).

Mfg. Engineers are people, just like you and me and people can make 
mistakes...
Being an Engineer, when I ask someone to do the design work, I ask them to 
explain it, and this way I double check their work Yes Mfg. Engineers are 
known to F***up too.

While it is expected to be disappointed when something does not work.. and 
having a bad taste for dealing with that mfg, claiming that all of that mfg 
products are bad is a whole different issue.

I deal with FiberStore, my experience have been very different, when stuff 
purchased from them, did not meet the specs, they took it back no questions 
asked.

Regards.

Faisal Imtiaz
Snappy Internet  Telecom
7266 SW 48 Street
Miami, FL 33155
Tel: 305 663 5518 x 232

Help-desk: (305)663-5518 Option 2 or Email: supp...@snappytelecom.net
From: Kenneth McRae kenneth.mc...@me.com
To: Faisal Imtiaz fai...@snappytelecom.net
Cc: Rodrigo 1telecom rodr...@1telecom.com.br, NANOG nanog@nanog.org
Sent: Saturday, February 7, 2015 4:01:29 PM
Subject: Re: Low cost WDM gear

That's true up to a point. Specs are only as good as the entity providing the 
data. I can tell you a few stories about specs and some MAJOR fails by a major 
network equipment manufacturer failing to meet advertised specs. When you 
engage the engineering folks to assist in a build, they should know the true 
specs of their gear better than anyone else. If they say for a certain distance 
that A+B will work, then that is exactly what I expect.

That is pretty basic.

On Feb 07, 2015, at 12:56 PM, Faisal Imtiaz fai...@snappytelecom.net wrote:

More power to you 

I always get a chuckle out of statements such as ... Compared FiberStore to another 
Vendor...

It was pointed out to me long time ago when someone said.. My Chevy is better 
than a Ford
Someone pointed out, hey, which Chevy ? the Chevette ? or the Corvette ? and 
Which Ford the Fiesta or Mustang ?


Every mfg. has a lots and lots of products, and they are always getting 
improved...

One has to pay attention to the specs.. even the same model products at 
different times don't have the same specs !

:)

Faisal Imtiaz
Snappy Internet  Telecom
7266 SW 48 Street
Miami, FL 33155
Tel: 305 663 5518 x 232

Help-desk: (305)663-5518 Option 2 or Email: supp...@snappytelecom.net
From: Kenneth McRae kenneth.mc...@me.com
To: Faisal Imtiaz fai...@snappytelecom.net
Cc: Rodrigo 1telecom rodr...@1telecom.com.br, NANOG nanog@nanog.org
Sent: Saturday, February 7, 2015 3:49:16 PM
Subject: Re: Low cost WDM gear

That's why I engage the engineering resources on their end to make sure the 
chosen candidate will support the use case. I have now performed an A/B 
comparison and the FiberStore gear is inferior. Excessive loss on the mux and 
optics.

On Feb 07, 2015, at 12:44 PM, Faisal Imtiaz fai...@snappytelecom.net wrote:

If you pay close attention to the Spec Sheets, on power output, insertion loss, 
sensitivity, and do the proper calculation for your link, then using anyone's 
products, passive or active will work unless the devices do not meet specified 
specs.

If you don't do your homework

Re: PoC for shortlisted DDoS Vendors

[Kenneth McRae]

Why aren't you also looking at Hauwei?

On Apr 01, 2015, at 09:53 AM, Mohamed Kamal mka...@noor.net wrote:

In our effort to pick up a reasonably priced DDoS appliance with a
competitive features, we're in a process of doing a PoC for the
following shortlisted vendors:

1- RioRey
2- NSFocus
3- Arbor
4- A10

The setup will be inline. So it would be great if anyone have done this
before and can help provide the appropriate tools, advices, or the
testing documents for efficient PoC.

Thanks.

--
Mohamed Kamal
Core Network Sr. Engineer

Re: Low cost WDM gear

[Kenneth McRae]

Mike,

I just replaced a bunch of FiberStore WDM passive muxes with OSI Hardware 
equipment.  The FiberStore gear was a huge disappointment (excessive loss, poor 
technical support, refusal to issue refund without threatening legal action, 
etc.).   I have had good results from the OSI equipment so far.  I run passive 
muxes for CWDM (8 - 16 channels).

On Feb 07, 2015, at 09:51 AM, Manuel Marín m...@transtelco.net wrote:

Hi Mike

I can recommend a couple of vendors that provide cost effective solutions.
Ekinops  Packetlight.

On Saturday, February 7, 2015, Mike Hammett na...@ics-il.net wrote:

I know there are various Asian vendors for low cost (less than $500) muxes
to throw 16 or however many colors onto a strand. However, they don't work
so well when you don't control the optics used on both sides (therefore
must use standard wavelengths), obviously only do a handful of channels and
have a distance limitation.
What solutions are out there that don't cost an arm and a leg?
-
Mike Hammett
Intelligent Computing Solutions
http://www.ics-il.com


--
TRANSTELCO| Manuel Marin | VP Engineering | US: *+1 915-217-2232* | MX: *+52
656-257-1109*

CONFIDENTIALITY NOTICE: This communication is intended only for the use
of the individual or entity to which it is addressed and may contain
information that is privileged, confidential, and exempt from disclosure
under applicable law. If you are not the intended recipient of this
information, you are notified that any use, dissemination, distribution, or
copying of the communication is strictly prohibited.

AVISO DE CONFIDENCIALIDAD: Esta comunicación es sólo para el uso de la
persona o entidad a la que se dirige y puede contener información
privilegiada, confidencial y exenta de divulgación bajo la legislación
aplicable. Si no es el destinatario de esta información, se le notifica que
cualquier uso, difusión, distribución o copia de la comunicación está
estrictamente prohibido.

Re: Low cost WDM gear

[Kenneth McRae]

Are you looking for an active or passive solution?

On Feb 07, 2015, at 10:06 AM, Mike Hammett na...@ics-il.net wrote:

One particular route I'm looking at is 185 miles, so of the options presented 300 km is closest. ;-) 





- 
Mike Hammett 
Intelligent Computing Solutions 
http://www.ics-il.com 


- Original Message -

From: Christopher Morrow morrowc.li...@gmail.com 
To: Kenneth McRae kenneth.mc...@me.com 
Cc: NANOG nanog@nanog.org 
Sent: Saturday, February 7, 2015 12:02:11 PM 
Subject: Re: Low cost WDM gear 

would be good for mike to define 'long distances' here, is it: 
2km 
30km 
300km 
3000km 

Probably the 30-60k range is what you mean by 'long distances' but... 
clarity might help. 

On Sat, Feb 7, 2015 at 12:55 PM, Kenneth McRae kenneth.mc...@me.com wrote: 
Mike,

I just replaced a bunch of FiberStore WDM passive muxes with OSI Hardware
equipment. The FiberStore gear was a huge disappointment (excessive loss,
poor technical support, refusal to issue refund without threatening legal
action, etc.). I have had good results from the OSI equipment so far. I
run passive muxes for CWDM (8 - 16 channels).
On Feb 07, 2015, at 09:51 AM, Manuel Marín m...@transtelco.net wrote:
Hi Mike
I can recommend a couple of vendors that provide cost effective solutions.
Ekinops  Packetlight.
On Saturday, February 7, 2015, Mike Hammett na...@ics-il.net wrote:
I know there are various Asian vendors for low cost (less than $500) muxes
to throw 16 or however many colors onto a strand. However, they don't work
so well when you don't control the optics used on both sides (therefore
must use standard wavelengths), obviously only do a handful of channels and
have a distance limitation.
What solutions are out there that don't cost an arm and a leg?
-
Mike Hammett
Intelligent Computing Solutions
http://www.ics-il.com
--
TRANSTELCO| Manuel Marin | VP Engineering | US: *+1 915-217-2232* | MX: *+52
656-257-1109*
CONFIDENTIALITY NOTICE: This communication is intended only for the use
of the individual or entity to which it is addressed and may contain
information that is privileged, confidential, and exempt from disclosure
under applicable law. If you are not the intended recipient of this
information, you are notified that any use, dissemination, distribution, or
copying of the communication is strictly prohibited.
AVISO DE CONFIDENCIALIDAD: Esta comunicación es sólo para el uso de la
persona o entidad a la que se dirige y puede contener información
privilegiada, confidencial y exenta de divulgación bajo la legislación
aplicable. Si no es el destinatario de esta información, se le notifica que
cualquier uso, difusión, distribución o copia de la comunicación está
estrictamente prohibido.

Re: Low cost WDM gear

[Kenneth McRae]

Hi Enviado,

I cannot recommend FiberStore as I had a bad experience with them.  I needed to 
cover only 3km from A to B side.  When using 10km optics, I saw a loss of over 5db 
 with their passive mux inserted into the path which created a total loss of over 
-20db which is outside of the tolerances for our equipment with 10km SFP+.  Using 
another vendors low insertion loss mux corrected our issue.  I am sure if you are 
using an 80km optic, you may be able to tolerate a higher insertion loss to cover 
 60km.  I also notice that their CDWM optics averaged about 3db less in power 
output when compared to other vendors.

Thanks

Kenneth

On Feb 07, 2015, at 10:33 AM, Rodrigo 1telecom rodr...@1telecom.com.br wrote:

Hi kenneth... which the distance do you have from side A to side B when you 
using passive solutions from fiberstore( mux and demux)?
I buy this mux and demux(4 channels single fiber) and only make a test about 
60km( mux side A and demux on side B) with sfp+10gb for 80km... ( only see ddm 
on my ex3300( about -19db for 60km). Test switch access with ssh and pinging 
tests...
What kind os issue do you have? For distances less than 60km is this solution 
good?
Thanks!!!

Enviado via iPhone 
Grupo Connectoway

Em 07/02/2015, às 14:55, Kenneth McRae kenneth.mc...@me.com escreveu:
Mike,
I just replaced a bunch of FiberStore WDM passive muxes with OSI Hardware 
equipment. The FiberStore gear was a huge disappointment (excessive loss, poor 
technical support, refusal to issue refund without threatening legal action, 
etc.). I have had good results from the OSI equipment so far. I run passive 
muxes for CWDM (8 - 16 channels).
On Feb 07, 2015, at 09:51 AM, Manuel Marín m...@transtelco.net wrote:
Hi Mike
I can recommend a couple of vendors that provide cost effective solutions.
Ekinops  Packetlight.
On Saturday, February 7, 2015, Mike Hammett na...@ics-il.net wrote:
I know there are various Asian vendors for low cost (less than $500) muxes
to throw 16 or however many colors onto a strand. However, they don't work
so well when you don't control the optics used on both sides (therefore
must use standard wavelengths), obviously only do a handful of channels and
have a distance limitation.
What solutions are out there that don't cost an arm and a leg?
-
Mike Hammett
Intelligent Computing Solutions
http://www.ics-il.com
--
TRANSTELCO| Manuel Marin | VP Engineering | US: *+1 915-217-2232* | MX: *+52
656-257-1109*
CONFIDENTIALITY NOTICE: This communication is intended only for the use
of the individual or entity to which it is addressed and may contain
information that is privileged, confidential, and exempt from disclosure
under applicable law. If you are not the intended recipient of this
information, you are notified that any use, dissemination, distribution, or
copying of the communication is strictly prohibited.
AVISO DE CONFIDENCIALIDAD: Esta comunicación es sólo para el uso de la
persona o entidad a la que se dirige y puede contener información
privilegiada, confidencial y exenta de divulgación bajo la legislación
aplicable. Si no es el destinatario de esta información, se le notifica que
cualquier uso, difusión, distribución o copia de la comunicación está
estrictamente prohibido.

Re: Low cost WDM gear

[Kenneth McRae]

Yeah, you can get up to 80km on a passive unit using SFP+ and up to 120km using 
XFP.  To cover the distance you are considering, you would need to insert an 
amplifier.  Depending on the number of channels you require, a passive solution 
with an amplified would still be less expensive than an active solution.  When 
I was conducting my research, I could not find an active solution under $25K.

On Feb 07, 2015, at 10:32 AM, Mike Hammett na...@ics-il.net wrote:

Well, I'm not an expert in the world of long haul optics, but I think I'd want active over passive for the ability to use standard interfaces on the equipment (routers, switches, etc.) at either end. Then again, maybe something has changed that I don't know about. I would also think active would be better able to go those 185 mile distances than passive. I assume I'd need an amplifier in the middle to even make it that far. 





- 
Mike Hammett 
Intelligent Computing Solutions 
http://www.ics-il.com 


- Original Message -

From: Kenneth McRae kenneth.mc...@me.com 
To: Mike Hammett na...@ics-il.net 
Cc: NANOG nanog@nanog.org 
Sent: Saturday, February 7, 2015 12:17:35 PM 
Subject: Re: Low cost WDM gear 



Are you looking for an active or passive solution? 

On Feb 07, 2015, at 10:06 AM, Mike Hammett na...@ics-il.net wrote: 







One particular route I'm looking at is 185 miles, so of the options presented 300 km is closest. ;-) 





- 
Mike Hammett 
Intelligent Computing Solutions 
http://www.ics-il.com 

- Original Message - 

From: Christopher Morrow  morrowc.li...@gmail.com  
To: Kenneth McRae  kenneth.mc...@me.com  
Cc: NANOG  nanog@nanog.org  
Sent: Saturday, February 7, 2015 12:02:11 PM 
Subject: Re: Low cost WDM gear 

would be good for mike to define 'long distances' here, is it: 
2km 
30km 
300km 
3000km 

Probably the 30-60k range is what you mean by 'long distances' but... 
clarity might help. 

On Sat, Feb 7, 2015 at 12:55 PM, Kenneth McRae  kenneth.mc...@me.com  wrote: 


blockquote
Mike, 



blockquote

/blockquote

blockquote
I just replaced a bunch of FiberStore WDM passive muxes with OSI Hardware 
/blockquote


blockquote
equipment. The FiberStore gear was a huge disappointment (excessive loss, 
/blockquote


blockquote
poor technical support, refusal to issue refund without threatening legal 
/blockquote


blockquote
action, etc.). I have had good results from the OSI equipment so far. I 
/blockquote


blockquote
run passive muxes for CWDM (8 - 16 channels). 
/blockquote


blockquote

/blockquote

blockquote
On Feb 07, 2015, at 09:51 AM, Manuel Marín  m...@transtelco.net  wrote: 
/blockquote


blockquote

/blockquote

blockquote
Hi Mike 
/blockquote


blockquote

/blockquote

blockquote
I can recommend a couple of vendors that provide cost effective solutions. 
/blockquote


blockquote
Ekinops  Packetlight. 
/blockquote


blockquote

/blockquote

blockquote
On Saturday, February 7, 2015, Mike Hammett  na...@ics-il.net  wrote: 
/blockquote


blockquote

/blockquote

blockquote
I know there are various Asian vendors for low cost (less than $500) muxes 
/blockquote


blockquote
to throw 16 or however many colors onto a strand. However, they don't work 
/blockquote


blockquote
so well when you don't control the optics used on both sides (therefore 
/blockquote


blockquote
must use standard wavelengths), obviously only do a handful of channels and 
/blockquote


blockquote
have a distance limitation. 
/blockquote


blockquote
What solutions are out there that don't cost an arm and a leg? 
/blockquote


blockquote
- 
/blockquote


blockquote
Mike Hammett 
/blockquote


blockquote
Intelligent Computing Solutions 
/blockquote


blockquote
http://www.ics-il.com 
/blockquote


blockquote

/blockquote

blockquote

/blockquote

blockquote
--
/blockquote

blockquote
TRANSTELCO| Manuel Marin | VP Engineering | US: *+1 915-217-2232* | MX: *+52 
/blockquote


blockquote
656-257-1109* 
/blockquote


blockquote

/blockquote

blockquote
CONFIDENTIALITY NOTICE: This communication is intended only for the use 
/blockquote


blockquote
of the individual or entity to which it is addressed and may contain 
/blockquote


blockquote
information that is privileged, confidential, and exempt from disclosure 
/blockquote


blockquote
under applicable law. If you are not the intended recipient of this 
/blockquote


blockquote
information, you are notified that any use, dissemination, distribution, or 
/blockquote


blockquote
copying of the communication is strictly prohibited. 
/blockquote


blockquote

/blockquote

blockquote
AVISO DE CONFIDENCIALIDAD: Esta comunicación es sólo para el uso de la 
/blockquote


blockquote
persona o entidad a la que se dirige y puede contener información 
/blockquote


blockquote
privilegiada, confidencial y exenta de divulgación bajo la legislación 
/blockquote


blockquote
aplicable. Si no es el destinatario de esta información, se le notifica que 
/blockquote


blockquote
cualquier uso

Low cost WDM gear

[Kenneth McRae]

Faisal, I worked directly with FiberStore's engineers to determine the optics 
and mux needed for my use case.  They recommended the mux and the optics for 
the 3km distance.   You can always buy stronger optics, but that is not point I 
am making.   I provided the scale and scope of the project and they provided 
the BOM to deliver the required service.  When the equipment failed, FiberStore 
refused to honor their return policy and issue an RMA until we threatened legal 
action. 

Same sales scenario with OSI Hardware..  They provide the BOM with passive 
muxes and 10km optics and it works with no problem.

In this scenario, I can definitely blame the manufacturer.  No to mention the 
terrible technical support that they offer.


On Feb 07, 2015, at 12:30 PM, Faisal Imtiaz fai...@snappytelecom.net wrote:

Kenneth, 


I am sorry, but it sounds like you made a mistake in not calculating loss of 
the devices in the path, and are blaming a Mfg for the mistake... They clearly 
list the insertion loss for the different muxes in the specs on their website.


Faisal Imtiaz
Snappy Internet  Telecom

- Original Message -
From: Kenneth McRae kenneth.mc...@me.com
To: Rodrigo 1telecom rodr...@1telecom.com.br
Cc: NANOG nanog@nanog.org
Sent: Saturday, February 7, 2015 2:04:10 PM
Subject: Re: Low cost WDM gear
Hi Enviado,
I cannot recommend FiberStore as I had a bad experience with them.  I needed
to cover only 3km from A to B side.  When using 10km optics, I saw a loss of
over 5db  with their passive mux inserted into the path which created a
total loss of over -20db which is outside of the tolerances for our
equipment with 10km SFP+.  Using another vendors low insertion loss mux
corrected our issue.  I am sure if you are using an 80km optic, you may be
able to tolerate a higher insertion loss to cover  60km.  I also notice
that their CDWM optics averaged about 3db less in power output when compared
to other vendors.
Thanks
Kenneth
On Feb 07, 2015, at 10:33 AM, Rodrigo 1telecom rodr...@1telecom.com.br
wrote:
Hi kenneth... which the distance do you have from side A to side B when you
using passive solutions from fiberstore( mux and demux)?
I buy this mux and demux(4 channels single fiber) and only make a test about
60km( mux side A and demux on side B) with sfp+10gb for 80km... ( only see
ddm on my ex3300( about -19db for 60km). Test switch access with ssh and
pinging tests...
What kind os issue do you have? For distances less than 60km is this solution
good?
Thanks!!!
Enviado via iPhone 
Grupo Connectoway
Em 07/02/2015, às 14:55, Kenneth McRae kenneth.mc...@me.com escreveu:
Mike,
I just replaced a bunch of FiberStore WDM passive muxes with OSI Hardware
equipment. The FiberStore gear was a huge disappointment (excessive loss,
poor technical support, refusal to issue refund without threatening legal
action, etc.). I have had good results from the OSI equipment so far. I run
passive muxes for CWDM (8 - 16 channels).
On Feb 07, 2015, at 09:51 AM, Manuel Marín m...@transtelco.net wrote:
Hi Mike
I can recommend a couple of vendors that provide cost effective solutions.
Ekinops  Packetlight.
On Saturday, February 7, 2015, Mike Hammett na...@ics-il.net wrote:
I know there are various Asian vendors for low cost (less than $500) muxes
to throw 16 or however many colors onto a strand. However, they don't work
so well when you don't control the optics used on both sides (therefore
must use standard wavelengths), obviously only do a handful of channels and
have a distance limitation.
What solutions are out there that don't cost an arm and a leg?
-
Mike Hammett
Intelligent Computing Solutions
http://www.ics-il.com
--
TRANSTELCO| Manuel Marin | VP Engineering | US: *+1 915-217-2232* | MX: *+52
656-257-1109*
CONFIDENTIALITY NOTICE: This communication is intended only for the use
of the individual or entity to which it is addressed and may contain
information that is privileged, confidential, and exempt from disclosure
under applicable law. If you are not the intended recipient of this
information, you are notified that any use, dissemination, distribution, or
copying of the communication is strictly prohibited.
AVISO DE CONFIDENCIALIDAD: Esta comunicación es sólo para el uso de la
persona o entidad a la que se dirige y puede contener información
privilegiada, confidencial y exenta de divulgación bajo la legislación
aplicable. Si no es el destinatario de esta información, se le notifica que
cualquier uso, difusión, distribución o copia de la comunicación está
estrictamente prohibido.

Re: Low cost WDM gear

[Kenneth McRae]

That's why I engage the engineering resources on their end to make sure the 
chosen candidate will support the use case.  I have now performed an A/B 
comparison and the FiberStore gear is inferior.  Excessive loss on the mux and 
optics. 

On Feb 07, 2015, at 12:44 PM, Faisal Imtiaz fai...@snappytelecom.net wrote:

If you pay close attention to the Spec Sheets, on power output, insertion loss, 
sensitivity, and do the proper calculation for your link, then using anyone's 
products, passive or active will work unless the devices do not meet specified 
specs.

If you don't do your homework, cals on the design, loss, and just buy stuff 
based on whatever, then it does not matter who the mfg. is, you are very very 
likely to be surprised in a bad way.

:)

Faisal Imtiaz
Snappy Internet  Telecom

- Original Message -
From: Rodrigo 1telecom rodr...@1telecom.com.br
To: Kenneth McRae kenneth.mc...@me.com
Cc: NANOG nanog@nanog.org
Sent: Saturday, February 7, 2015 3:24:43 PM
Subject: Re: Low cost WDM gear
What others vendors do you using? Here in Brazil only PADTEC have this
passive solution... Some days ago Digitel contact me to show your multiplex
solution... Is a active solution...
We import this from fiberstore, but i don't know others vendors to buy 10G
sfp+ cwdm and this mux/demux...
Enviado via iPhone 
Grupo Connectoway

Em 07/02/2015, às 16:04, Kenneth McRae kenneth.mc...@me.com escreveu:

Hi Enviado,

I cannot recommend FiberStore as I had a bad experience with them. I
needed to cover only 3km from A to B side. When using 10km optics, I saw
a loss of over 5db with their passive mux inserted into the path which
created a total loss of over -20db which is outside of the tolerances for
our equipment with 10km SFP+. Using another vendors low insertion loss
mux corrected our issue. I am sure if you are using an 80km optic, you
may be able to tolerate a higher insertion loss to cover  60km. I also
notice that their CDWM optics averaged about 3db less in power output when
compared to other vendors.

Thanks

Kenneth


On Feb 07, 2015, at 10:33 AM, Rodrigo 1telecom rodr...@1telecom.com.br
wrote:




Hi kenneth... which the distance do you have from side A to side B when
you using passive solutions from fiberstore( mux and demux)?
I buy this mux and demux(4 channels single fiber) and only make a test
about 60km( mux side A and demux on side B) with sfp+10gb for 80km... (
only see ddm on my ex3300( about -19db for 60km). Test switch access with
ssh and pinging tests...
What kind os issue do you have? For distances less than 60km is this
solution good?
Thanks!!!

Enviado via iPhone 
Grupo Connectoway


Em 07/02/2015, às 14:55, Kenneth McRae kenneth.mc...@me.com escreveu:
Mike,
I just replaced a bunch of FiberStore WDM passive muxes with OSI Hardware
equipment. The FiberStore gear was a huge disappointment (excessive
loss, poor technical support, refusal to issue refund without
threatening legal action, etc.). I have had good results from the OSI
equipment so far. I run passive muxes for CWDM (8 - 16 channels).
On Feb 07, 2015, at 09:51 AM, Manuel Marín m...@transtelco.net wrote:
Hi Mike
I can recommend a couple of vendors that provide cost effective
solutions.
Ekinops  Packetlight.
On Saturday, February 7, 2015, Mike Hammett na...@ics-il.net wrote:
I know there are various Asian vendors for low cost (less than $500)
muxes
to throw 16 or however many colors onto a strand. However, they don't
work
so well when you don't control the optics used on both sides (therefore
must use standard wavelengths), obviously only do a handful of channels
and
have a distance limitation.
What solutions are out there that don't cost an arm and a leg?
-
Mike Hammett
Intelligent Computing Solutions
http://www.ics-il.com
--
TRANSTELCO| Manuel Marin | VP Engineering | US: *+1 915-217-2232* | MX:
*+52
656-257-1109*
CONFIDENTIALITY NOTICE: This communication is intended only for the use
of the individual or entity to which it is addressed and may contain
information that is privileged, confidential, and exempt from disclosure
under applicable law. If you are not the intended recipient of this
information, you are notified that any use, dissemination, distribution,
or
copying of the communication is strictly prohibited.
AVISO DE CONFIDENCIALIDAD: Esta comunicación es sólo para el uso de la
persona o entidad a la que se dirige y puede contener información
privilegiada, confidencial y exenta de divulgación bajo la legislación
aplicable. Si no es el destinatario de esta información, se le notifica
que
cualquier uso, difusión, distribución o copia de la comunicación está
estrictamente prohibido.

Re: Low cost WDM gear

[Kenneth McRae]

That's true up to a point.  Specs are only as good as the entity providing the 
data.  I can tell you a few stories about specs and some MAJOR fails by a major 
network equipment manufacturer failing to meet advertised specs.  When you 
engage the engineering folks to assist in a build, they should know the true 
specs of their gear better than anyone else.  If they say for a certain 
distance that A+B will work, then that is exactly what I expect.

That is pretty basic.

On Feb 07, 2015, at 12:56 PM, Faisal Imtiaz fai...@snappytelecom.net wrote:

More power to you  

I always get a chuckle out of statements such as ... Compared FiberStore to another 
Vendor...  

It was pointed out to me long time ago when someone said.. My Chevy is better 
than a Ford
Someone pointed out, hey, which Chevy ?  the Chevette ? or the Corvette ? and 
Which Ford the Fiesta or Mustang ?


Every mfg. has a lots and lots of products, and they are always getting 
improved...

One has to pay attention to the specs.. even the same model products at 
different times don't have the same specs !

:)

Faisal Imtiaz
Snappy Internet  Telecom
7266 SW 48 Street
Miami, FL 33155
Tel: 305 663 5518 x 232

Help-desk: (305)663-5518 Option 2 or Email: supp...@snappytelecom.net 


From: Kenneth McRae kenneth.mc...@me.com
To: Faisal Imtiaz fai...@snappytelecom.net
Cc: Rodrigo 1telecom rodr...@1telecom.com.br, NANOG nanog@nanog.org
Sent: Saturday, February 7, 2015 3:49:16 PM
Subject: Re: Low cost WDM gear

That's why I engage the engineering resources on their end to make sure the 
chosen candidate will support the use case.  I have now performed an A/B 
comparison and the FiberStore gear is inferior.  Excessive loss on the mux and 
optics. 

On Feb 07, 2015, at 12:44 PM, Faisal Imtiaz fai...@snappytelecom.net wrote:

If you pay close attention to the Spec Sheets, on power output, insertion loss, 
sensitivity, and do the proper calculation for your link, then using anyone's 
products, passive or active will work unless the devices do not meet specified 
specs.

If you don't do your homework, cals on the design, loss, and just buy stuff 
based on whatever, then it does not matter who the mfg. is, you are very very 
likely to be surprised in a bad way.

:)

Faisal Imtiaz
Snappy Internet  Telecom

- Original Message -
From: Rodrigo 1telecom rodr...@1telecom.com.br
To: Kenneth McRae kenneth.mc...@me.com
Cc: NANOG nanog@nanog.org
Sent: Saturday, February 7, 2015 3:24:43 PM
Subject: Re: Low cost WDM gear
What others vendors do you using? Here in Brazil only PADTEC have this
passive solution... Some days ago Digitel contact me to show your multiplex
solution... Is a active solution...
We import this from fiberstore, but i don't know others vendors to buy 10G
sfp+ cwdm and this mux/demux...
Enviado via iPhone 
Grupo Connectoway

Em 07/02/2015, às 16:04, Kenneth McRae kenneth.mc...@me.com escreveu:

Hi Enviado,

I cannot recommend FiberStore as I had a bad experience with them. I
needed to cover only 3km from A to B side. When using 10km optics, I saw
a loss of over 5db with their passive mux inserted into the path which
created a total loss of over -20db which is outside of the tolerances for
our equipment with 10km SFP+. Using another vendors low insertion loss
mux corrected our issue. I am sure if you are using an 80km optic, you
may be able to tolerate a higher insertion loss to cover  60km. I also
notice that their CDWM optics averaged about 3db less in power output when
compared to other vendors.

Thanks

Kenneth


On Feb 07, 2015, at 10:33 AM, Rodrigo 1telecom rodr...@1telecom.com.br
wrote:




Hi kenneth... which the distance do you have from side A to side B when
you using passive solutions from fiberstore( mux and demux)?
I buy this mux and demux(4 channels single fiber) and only make a test
about 60km( mux side A and demux on side B) with sfp+10gb for 80km... (
only see ddm on my ex3300( about -19db for 60km). Test switch access with
ssh and pinging tests...
What kind os issue do you have? For distances less than 60km is this
solution good?
Thanks!!!

Enviado via iPhone 
Grupo Connectoway


Em 07/02/2015, às 14:55, Kenneth McRae kenneth.mc...@me.com escreveu:
Mike,
I just replaced a bunch of FiberStore WDM passive muxes with OSI Hardware
equipment. The FiberStore gear was a huge disappointment (excessive
loss, poor technical support, refusal to issue refund without
threatening legal action, etc.). I have had good results from the OSI
equipment so far. I run passive muxes for CWDM (8 - 16 channels).
On Feb 07, 2015, at 09:51 AM, Manuel Marín m...@transtelco.net wrote:
Hi Mike
I can recommend a couple of vendors that provide cost effective
solutions.
Ekinops  Packetlight.
On Saturday, February 7, 2015, Mike Hammett na...@ics-il.net wrote:
I know there are various Asian vendors for low cost (less than $500)
muxes
to throw 16 or however many colors onto a strand. However, they don't
work
so well when you don't control the optics

Re: Low cost WDM gear

[Kenneth McRae]

All the more reason to bring in engineering with accurate data when engaging 
with customers.  I kinda figured that FiberStore was a broker when I was told 
that all technical support issues had to be directed through the sale rep. 

On Feb 07, 2015, at 01:26 PM, Faisal Imtiaz fai...@snappytelecom.net wrote:

BTW, I hope you realize that FiberStore is not a mfg. but a Seller/broker.  
they have to rely on the specs provided to them from the MFG. 

In the Far East, mfg, distribution, sales is organized is a slightly different 
manner than the West.

:)

Faisal Imtiaz
Snappy Internet  Telecom
7266 SW 48 Street
Miami, FL 33155
Tel: 305 663 5518 x 232

Help-desk: (305)663-5518 Option 2 or Email: supp...@snappytelecom.net 


From: Kenneth McRae kenneth.mc...@me.com
To: Faisal Imtiaz fai...@snappytelecom.net
Cc: Rodrigo 1telecom rodr...@1telecom.com.br, NANOG nanog@nanog.org
Sent: Saturday, February 7, 2015 4:01:29 PM
Subject: Re: Low cost WDM gear

That's true up to a point.  Specs are only as good as the entity providing the 
data.  I can tell you a few stories about specs and some MAJOR fails by a major 
network equipment manufacturer failing to meet advertised specs.  When you 
engage the engineering folks to assist in a build, they should know the true 
specs of their gear better than anyone else.  If they say for a certain 
distance that A+B will work, then that is exactly what I expect.

That is pretty basic.

On Feb 07, 2015, at 12:56 PM, Faisal Imtiaz fai...@snappytelecom.net wrote:

More power to you  

I always get a chuckle out of statements such as ... Compared FiberStore to another 
Vendor...  

It was pointed out to me long time ago when someone said.. My Chevy is better 
than a Ford
Someone pointed out, hey, which Chevy ?  the Chevette ? or the Corvette ? and 
Which Ford the Fiesta or Mustang ?


Every mfg. has a lots and lots of products, and they are always getting 
improved...

One has to pay attention to the specs.. even the same model products at 
different times don't have the same specs !

:)

Faisal Imtiaz
Snappy Internet  Telecom
7266 SW 48 Street
Miami, FL 33155
Tel: 305 663 5518 x 232

Help-desk: (305)663-5518 Option 2 or Email: supp...@snappytelecom.net 


From: Kenneth McRae kenneth.mc...@me.com
To: Faisal Imtiaz fai...@snappytelecom.net
Cc: Rodrigo 1telecom rodr...@1telecom.com.br, NANOG nanog@nanog.org
Sent: Saturday, February 7, 2015 3:49:16 PM
Subject: Re: Low cost WDM gear

That's why I engage the engineering resources on their end to make sure the 
chosen candidate will support the use case.  I have now performed an A/B 
comparison and the FiberStore gear is inferior.  Excessive loss on the mux and 
optics. 

On Feb 07, 2015, at 12:44 PM, Faisal Imtiaz fai...@snappytelecom.net wrote:

If you pay close attention to the Spec Sheets, on power output, insertion loss, 
sensitivity, and do the proper calculation for your link, then using anyone's 
products, passive or active will work unless the devices do not meet specified 
specs.

If you don't do your homework, cals on the design, loss, and just buy stuff 
based on whatever, then it does not matter who the mfg. is, you are very very 
likely to be surprised in a bad way.

:)

Faisal Imtiaz
Snappy Internet  Telecom

- Original Message -
From: Rodrigo 1telecom rodr...@1telecom.com.br
To: Kenneth McRae kenneth.mc...@me.com
Cc: NANOG nanog@nanog.org
Sent: Saturday, February 7, 2015 3:24:43 PM
Subject: Re: Low cost WDM gear
What others vendors do you using? Here in Brazil only PADTEC have this
passive solution... Some days ago Digitel contact me to show your multiplex
solution... Is a active solution...
We import this from fiberstore, but i don't know others vendors to buy 10G
sfp+ cwdm and this mux/demux...
Enviado via iPhone 
Grupo Connectoway

Em 07/02/2015, às 16:04, Kenneth McRae kenneth.mc...@me.com escreveu:

Hi Enviado,

I cannot recommend FiberStore as I had a bad experience with them. I
needed to cover only 3km from A to B side. When using 10km optics, I saw
a loss of over 5db with their passive mux inserted into the path which
created a total loss of over -20db which is outside of the tolerances for
our equipment with 10km SFP+. Using another vendors low insertion loss
mux corrected our issue. I am sure if you are using an 80km optic, you
may be able to tolerate a higher insertion loss to cover  60km. I also
notice that their CDWM optics averaged about 3db less in power output when
compared to other vendors.

Thanks

Kenneth


On Feb 07, 2015, at 10:33 AM, Rodrigo 1telecom rodr...@1telecom.com.br
wrote:




Hi kenneth... which the distance do you have from side A to side B when
you using passive solutions from fiberstore( mux and demux)?
I buy this mux and demux(4 channels single fiber) and only make a test
about 60km( mux side A and demux on side B) with sfp+10gb for 80km... (
only see ddm on my ex3300( about -19db for 60km). Test switch access with
ssh and pinging tests...
What kind os issue do you

Re: Low cost WDM gear

[Kenneth McRae]

I will live vicariously though your experiences with them.  I'm good on 
FiberStore.  :-)

Thanks for the feedback..

On Feb 07, 2015, at 01:27 PM, Faisal Imtiaz fai...@snappytelecom.net wrote:

Maybe, your experience was the pivotal event that became a turning point in 
their customer service attitudes... 

:)

Faisal Imtiaz
Snappy Internet  Telecom
7266 SW 48 Street
Miami, FL 33155
Tel: 305 663 5518 x 232

Help-desk: (305)663-5518 Option 2 or Email: supp...@snappytelecom.net 


From: Kenneth McRae kenneth.mc...@me.com
To: Faisal Imtiaz fai...@snappytelecom.net
Cc: Rodrigo 1telecom rodr...@1telecom.com.br, NANOG nanog@nanog.org
Sent: Saturday, February 7, 2015 4:24:18 PM
Subject: Re: Low cost WDM gear

Point taken on the specs..  Still doesn't excuse poor customer service and tech 
support.  I never expect to be told that no refund will be issued when I am 
dissatisfied with the product.   A request for RMA because something is not 
working as expected should not have to be escalated to the President of the 
company. 

Other than that I am sure FiberStore is a great company :-)

On Feb 07, 2015, at 01:17 PM, Faisal Imtiaz fai...@snappytelecom.net wrote:

My point is..
    ... The thing to rely on is/are the Specs.
            If the Specs are right or specs are wrong, that is what determines 
the product's mfg shortcoming (defect).

    Mfg. Engineers are people, just like you and me and people can make 
mistakes... 
    Being an Engineer, when I ask someone to do the design work, I ask them to 
explain it, and this way I double check their work Yes Mfg. Engineers are 
known to  F***up too.

While it is expected to be disappointed when something does not work.. and 
having a bad taste for dealing with that mfg, claiming that all of that mfg 
products are bad is a whole different issue.

I deal with FiberStore, my experience have been very different, when stuff 
purchased from them, did not meet the specs, they took it back no questions 
asked.

Regards. 

Faisal Imtiaz
Snappy Internet  Telecom
7266 SW 48 Street
Miami, FL 33155
Tel: 305 663 5518 x 232

Help-desk: (305)663-5518 Option 2 or Email: supp...@snappytelecom.net 


From: Kenneth McRae kenneth.mc...@me.com
To: Faisal Imtiaz fai...@snappytelecom.net
Cc: Rodrigo 1telecom rodr...@1telecom.com.br, NANOG nanog@nanog.org
Sent: Saturday, February 7, 2015 4:01:29 PM
Subject: Re: Low cost WDM gear

That's true up to a point.  Specs are only as good as the entity providing the 
data.  I can tell you a few stories about specs and some MAJOR fails by a major 
network equipment manufacturer failing to meet advertised specs.  When you 
engage the engineering folks to assist in a build, they should know the true 
specs of their gear better than anyone else.  If they say for a certain 
distance that A+B will work, then that is exactly what I expect.

That is pretty basic.

On Feb 07, 2015, at 12:56 PM, Faisal Imtiaz fai...@snappytelecom.net wrote:

More power to you  

I always get a chuckle out of statements such as ... Compared FiberStore to another 
Vendor...  

It was pointed out to me long time ago when someone said.. My Chevy is better 
than a Ford
Someone pointed out, hey, which Chevy ?  the Chevette ? or the Corvette ? and 
Which Ford the Fiesta or Mustang ?


Every mfg. has a lots and lots of products, and they are always getting 
improved...

One has to pay attention to the specs.. even the same model products at 
different times don't have the same specs !

:)

Faisal Imtiaz
Snappy Internet  Telecom
7266 SW 48 Street
Miami, FL 33155
Tel: 305 663 5518 x 232

Help-desk: (305)663-5518 Option 2 or Email: supp...@snappytelecom.net 


From: Kenneth McRae kenneth.mc...@me.com
To: Faisal Imtiaz fai...@snappytelecom.net
Cc: Rodrigo 1telecom rodr...@1telecom.com.br, NANOG nanog@nanog.org
Sent: Saturday, February 7, 2015 3:49:16 PM
Subject: Re: Low cost WDM gear

That's why I engage the engineering resources on their end to make sure the 
chosen candidate will support the use case.  I have now performed an A/B 
comparison and the FiberStore gear is inferior.  Excessive loss on the mux and 
optics. 

On Feb 07, 2015, at 12:44 PM, Faisal Imtiaz fai...@snappytelecom.net wrote:

If you pay close attention to the Spec Sheets, on power output, insertion loss, 
sensitivity, and do the proper calculation for your link, then using anyone's 
products, passive or active will work unless the devices do not meet specified 
specs.

If you don't do your homework, cals on the design, loss, and just buy stuff 
based on whatever, then it does not matter who the mfg. is, you are very very 
likely to be surprised in a bad way.

:)

Faisal Imtiaz
Snappy Internet  Telecom

- Original Message -
From: Rodrigo 1telecom rodr...@1telecom.com.br
To: Kenneth McRae kenneth.mc...@me.com
Cc: NANOG nanog@nanog.org
Sent: Saturday, February 7, 2015 3:24:43 PM
Subject: Re: Low cost WDM gear
What others vendors do you using? Here in Brazil only PADTEC have

Re: Low cost WDM gear

[Kenneth McRae]

Point taken on the specs..  Still doesn't excuse poor customer service and tech 
support.  I never expect to be told that no refund will be issued when I am 
dissatisfied with the product.   A request for RMA because something is not 
working as expected should not have to be escalated to the President of the 
company. 

Other than that I am sure FiberStore is a great company :-)

On Feb 07, 2015, at 01:17 PM, Faisal Imtiaz fai...@snappytelecom.net wrote:

My point is..
    ... The thing to rely on is/are the Specs.
            If the Specs are right or specs are wrong, that is what determines 
the product's mfg shortcoming (defect).

    Mfg. Engineers are people, just like you and me and people can make 
mistakes... 
    Being an Engineer, when I ask someone to do the design work, I ask them to 
explain it, and this way I double check their work Yes Mfg. Engineers are 
known to  F***up too.

While it is expected to be disappointed when something does not work.. and 
having a bad taste for dealing with that mfg, claiming that all of that mfg 
products are bad is a whole different issue.

I deal with FiberStore, my experience have been very different, when stuff 
purchased from them, did not meet the specs, they took it back no questions 
asked.

Regards. 

Faisal Imtiaz
Snappy Internet  Telecom
7266 SW 48 Street
Miami, FL 33155
Tel: 305 663 5518 x 232

Help-desk: (305)663-5518 Option 2 or Email: supp...@snappytelecom.net 


From: Kenneth McRae kenneth.mc...@me.com
To: Faisal Imtiaz fai...@snappytelecom.net
Cc: Rodrigo 1telecom rodr...@1telecom.com.br, NANOG nanog@nanog.org
Sent: Saturday, February 7, 2015 4:01:29 PM
Subject: Re: Low cost WDM gear

That's true up to a point.  Specs are only as good as the entity providing the 
data.  I can tell you a few stories about specs and some MAJOR fails by a major 
network equipment manufacturer failing to meet advertised specs.  When you 
engage the engineering folks to assist in a build, they should know the true 
specs of their gear better than anyone else.  If they say for a certain 
distance that A+B will work, then that is exactly what I expect.

That is pretty basic.

On Feb 07, 2015, at 12:56 PM, Faisal Imtiaz fai...@snappytelecom.net wrote:

More power to you  

I always get a chuckle out of statements such as ... Compared FiberStore to another 
Vendor...  

It was pointed out to me long time ago when someone said.. My Chevy is better 
than a Ford
Someone pointed out, hey, which Chevy ?  the Chevette ? or the Corvette ? and 
Which Ford the Fiesta or Mustang ?


Every mfg. has a lots and lots of products, and they are always getting 
improved...

One has to pay attention to the specs.. even the same model products at 
different times don't have the same specs !

:)

Faisal Imtiaz
Snappy Internet  Telecom
7266 SW 48 Street
Miami, FL 33155
Tel: 305 663 5518 x 232

Help-desk: (305)663-5518 Option 2 or Email: supp...@snappytelecom.net 


From: Kenneth McRae kenneth.mc...@me.com
To: Faisal Imtiaz fai...@snappytelecom.net
Cc: Rodrigo 1telecom rodr...@1telecom.com.br, NANOG nanog@nanog.org
Sent: Saturday, February 7, 2015 3:49:16 PM
Subject: Re: Low cost WDM gear

That's why I engage the engineering resources on their end to make sure the 
chosen candidate will support the use case.  I have now performed an A/B 
comparison and the FiberStore gear is inferior.  Excessive loss on the mux and 
optics. 

On Feb 07, 2015, at 12:44 PM, Faisal Imtiaz fai...@snappytelecom.net wrote:

If you pay close attention to the Spec Sheets, on power output, insertion loss, 
sensitivity, and do the proper calculation for your link, then using anyone's 
products, passive or active will work unless the devices do not meet specified 
specs.

If you don't do your homework, cals on the design, loss, and just buy stuff 
based on whatever, then it does not matter who the mfg. is, you are very very 
likely to be surprised in a bad way.

:)

Faisal Imtiaz
Snappy Internet  Telecom

- Original Message -
From: Rodrigo 1telecom rodr...@1telecom.com.br
To: Kenneth McRae kenneth.mc...@me.com
Cc: NANOG nanog@nanog.org
Sent: Saturday, February 7, 2015 3:24:43 PM
Subject: Re: Low cost WDM gear
What others vendors do you using? Here in Brazil only PADTEC have this
passive solution... Some days ago Digitel contact me to show your multiplex
solution... Is a active solution...
We import this from fiberstore, but i don't know others vendors to buy 10G
sfp+ cwdm and this mux/demux...
Enviado via iPhone 
Grupo Connectoway

Em 07/02/2015, às 16:04, Kenneth McRae kenneth.mc...@me.com escreveu:

Hi Enviado,

I cannot recommend FiberStore as I had a bad experience with them. I
needed to cover only 3km from A to B side. When using 10km optics, I saw
a loss of over 5db with their passive mux inserted into the path which
created a total loss of over -20db which is outside of the tolerances for
our equipment with 10km SFP+. Using another vendors low insertion loss
mux corrected our

Optical Transport Platform

[Kenneth McRae]

Greetings Everyone..

Here is one for the transport/backbone/data center guys.  Can you tell which 
manufactures you like for optical transport?  I am looking for a solution to 
provide 8 channels of DWDM using tuned optics in my network gear. DWDM 
transport will be used for multiplexing only (no amplification or wavelength 
generation).  So far, I have been looking at Fiberstore and PacketLight.. 

Any suggestions?

All feedback is greatly appreciated!

Thanks

Kenneth

Re: out of band management gear

[Kenneth McRae]

Using open gear exclusively now...no real issues with it.

Sent from my iPad

 On Feb 21, 2014, at 6:39 AM, Hank Disuko gourmetci...@hotmail.com wrote:
 
 Hi folks, 
 I wonder if anyone has good experiences to share with out-of-band hardware?
 I'm looking for a good OOB hardware vendor.  I need to manage my 
 routers/switches/firewalls in a datacenter located overseas, and I'm looking 
 to setup a good serial console server via an OOB link.
 I've been looking at Lantronix, OpenGear, Raritan...but they all seem to have 
 the same basic features.  I'm having trouble really differentiating them.
 I'm interested in analog modem, cellular options for my OOB link.  Or even a 
 secondary internet circuit either wired or wifi if the DC has that option 
 available.
 Any good suggestions or experiences with a current OOB solution out there?  
 What are you doing for your OOB management?
 thanks,Hank 

Re: Network configuration archiving

[Kenneth McRae]

Hiw about SolarWinds Config Mgmt software?
On Oct 24, 2013 8:38 PM, Jimmy Hess mysi...@gmail.com wrote:

 On Thu, Oct 24, 2013 at 4:25 PM, Job Snijders 
 job.snijd...@hibernianetworks.com wrote:

  Dear all,
  I am unsure what we as networkers have done in the past, but I am sure
  we've done our fair share of atonement and don't have to keep using
  RANCID.
 

 Does the nature of the codebase and future development matter all that
 much?Not to dismiss it as a factor,   but I think other criteria should
 be more important  :)

 Nrmally  when I would want to compare software    I would be concerned
 first and foremost, (1)  What does it do/what makes it unique --  is
 something special about  package X  over package Y?;
 (2)   Does it meet all the  minimum needs I have right now to be a viable
 solution?
Does it grab all my configs and  put them in a permanent
 revision control system?  :)

 (3) How reliable is it,  can I trust it?   Is it very secure and safe to
 use?It's no good if it breaks, fails,  or does something dangerous.
 How much care and feeding will it need to keep working?  If it
 needs complex repair work every few weeks,  I don't like it.

 (4) How easy is it to get up and running,  and to perform any required
 ongoing maintenance
 (5) What extra nice to have functionality does it have?


 (6)  Maybe other stuff like  what language its written in,  if extra
 features need to be added

 --
 -JH

Re: Network configuration archiving

[Kenneth McRae]

By device or you can purchase an unlimited device count..
On Oct 24, 2013 8:59 PM, Tammy Firefly tammy-li...@wiztech.biz wrote:

 Is that licensed per device or per user out of curiosity ?


 Sent from my iPhone

 On Oct 24, 2013, at 21:45, Kenneth McRae kenneth.mc...@dreamhost.com
 wrote:

  Hiw about SolarWinds Config Mgmt software?
  On Oct 24, 2013 8:38 PM, Jimmy Hess mysi...@gmail.com wrote:
 
  On Thu, Oct 24, 2013 at 4:25 PM, Job Snijders 
  job.snijd...@hibernianetworks.com wrote:
 
  Dear all,
  I am unsure what we as networkers have done in the past, but I am sure
  we've done our fair share of atonement and don't have to keep using
  RANCID.
 
  Does the nature of the codebase and future development matter all that
  much?Not to dismiss it as a factor,   but I think other criteria
 should
  be more important  :)
 
  Nrmally  when I would want to compare software    I would be
 concerned
  first and foremost, (1)  What does it do/what makes it unique --  is
  something special about  package X  over package Y?;
  (2)   Does it meet all the  minimum needs I have right now to be a
 viable
  solution?
Does it grab all my configs and  put them in a permanent
  revision control system?  :)
 
  (3) How reliable is it,  can I trust it?   Is it very secure and safe to
  use?It's no good if it breaks, fails,  or does something dangerous.
  How much care and feeding will it need to keep working?  If it
  needs complex repair work every few weeks,  I don't like it.
 
  (4) How easy is it to get up and running,  and to perform any required
  ongoing maintenance
  (5) What extra nice to have functionality does it have?
 
 
  (6)  Maybe other stuff like  what language its written in,  if extra
  features need to be added
 
  --
  -JH
 

Re: Vpn tunnel Asa 5505 to fortigate 60c

[Kenneth McRae]

What is the public peer address on the ISP end?
On May 18, 2013 8:15 AM, akurenath akuren...@hotmail.com wrote:

 Hi nanog,

 I have a fortigate 60c connecting a vpn tunnel to an asa 5505. I have the
 connection setup,  but it will not connect because unfortunately the isp at
 the fortigate end decided to give us a 192.168.13/24 address. Now what I'd
 like to know is if there is any way to get this vpn connection to work
 through a pat connection until the isp resolves this issue?

 Thank you for any help.

 Zane


 Sent from Samsung mobile

Re: Dreamhost/AS26347 unauthorized bgp announcement

[Kenneth McRae]

Hi Guys,

Sorry to see this come up again.  We are no announcing the prefix in
question.  I am happy to work with you to investigate.

dh_admin@gar-bdr-01 show route advertising-protocol bgp 206.223.143.122

inet.0: 447113 destinations, 1801741 routes (447105 active, 8 holddown, 0
hidden)
  Prefix  Nexthop  MED LclprefAS path
* 64.111.96.0/19  SelfI
* 66.33.192.0/19  SelfI
* 66.33.197.0/24  Self 6  I
* 67.205.0.0/18   SelfI
* 69.163.128.0/17 SelfI
* 75.119.192.0/19 SelfI
* 173.236.128.0/17SelfI
* 205.196.208.0/20SelfI
* 208.97.128.0/18 SelfI
* 208.113.128.0/17SelfI
* 208.113.200.0/24Self 6  I

Best,


Kenneth

{master}
dh_admin@gar-bdr-01

On Wed, Mar 6, 2013 at 8:11 AM, Job Snijders job.snijd...@atrato.comwrote:

 Hi all,

 I tried contacting Coresite/Any2 to have somebody login to the routeserver
 and doublecheck
 which peer is actually announcing this NLRI. Because there is a remote
 possibility that the
 route-server is being manipulated by a third party and dreamhost is a
 victim here.

 After the usual hurdles like What is your circuit ID? Without a
 workorder I cannot login to
 the routeserver! and 5580? that can't be an AS number I unfortunately
 got nowhere so I
 still don't know who exactly announced these prefixes to the route-server.

 As of now the announcements for the more specifics seem to be gone.

 Can anybody (preferably from Any2 or Dreamhost) shed more light on this
 matter?

 Kind regards,

 Job

 On Mar 6, 2013, at 2:43 PM, Drew Weaver drew.wea...@thenap.com wrote:

  They're doing this to our routes in any2 in LA as well.
 
  ...
 
 
 
  -Original Message-
  From: Job Snijders [mailto:job.snijd...@atrato.com]
  Sent: Wednesday, March 06, 2013 4:04 AM
  To: Matsuzaki Yoshinobu
  Cc: nanog@nanog.org
  Subject: Re: Dreamhost/AS26347 unauthorized bgp announcement
 
  Hi Mat,
 
  I see the same thing, we learn the prefix from the route-server in LAX:
 
  tel...@r1.lax1.usshow ip bgp routes detail 90.201.80.0/20 Number of
 BGP Routes matching display condition : 1 Status A:AGGREGATE B:BEST
 b:NOT-INSTALLED-BEST C:CONFED_EBGP D:DAMPED
E:EBGP H:HISTORY I:IBGP L:LOCAL M:MULTIPATH
 m:NOT-INSTALLED-MULTIPATH
S:SUPPRESSED F:FILTERED s:STALE
  1   Prefix: 90.201.80.0/20,  Status: BE,  Age: 0h22m15s
  NEXT_HOP: 206.223.143.83, Metric: 0, Learned from Peer:
 206.223.143.253 (19996)
   LOCAL_PREF: 400,  MED: none,  ORIGIN: incomplete,  Weight: 0
  AS_PATH: 26347
 COMMUNITIES: 5580:12431
 Adj_RIB_out count: 18,  Admin distance 20
Last update to IP routing table: 0h22m15s, 1 path(s) installed:
 
  Kind regards,
 
  Job
 
  On Mar 6, 2013, at 9:59 AM, Matsuzaki Yoshinobu m...@iij.ad.jp wrote:
 
  According to RIPE RIS, AS26347 announced a bunch of prefixes again.
  - http://www.ris.ripe.net/dashboard/26347
 
  First suspicious announcement was started 2013-03-06 07:52:40 UTC, and
  last seen 2013-03-06 08:33:56 UTC.  195 prefixes total.
 
  It seems these unauthorized announcements have the same profile as
  before - AS26347 shrinks the prefix lenght of their received prefix
  somehow upto /20, and re-originates the prefix with origin AS26347.
 
  Any known bugs?
 
  Regards,
  -
  Matsuzaki Yoshinobu m...@iij.ad.jp
  - IIJ/AS2497  INOC-DBA: 2497*629
 
 
  --
  AS5580 - Atrato IP Networks
 
 
 

 --
 AS5580 - Atrato IP Networks

Re: box against dos/ddos

[Kenneth McRae]

2nd the Peakflow recommendation.

On Thu, Jan 31, 2013 at 7:23 AM, Suresh Ramasubramanian ops.li...@gmail.com
 wrote:

 arbor peakflow to start with?

 On Thursday, January 31, 2013, Piotr wrote:

  Hi,
 
  I looking some box (vendor, model), which i can put out of the
  main/product network,  which can analyze packets  netflow,sflow,syslog
 from
  bgp router(s) and after discover some anomaly it can do some action, for
  example:
 
  - Box have bgp session with bgp router and advertise attacked ip prefix
  with some community. Bgp router set next-hop for this prefix to /dev/null
 
  Normal traffic via bgp router is about 1G/s in and 10G/s out
 
  What is worth of looking and what you suggest ?
 
  thanks for help,
  Piotr
 
 

 --
 --srs (iPad)




-- 
Best Regards,



Kenneth McRae
*Director, Network Operations*
kenneth.mc...@dreamhost.com
Ph: 818-447-2589
www.dreamhost.com

Re: Ddos mitigation service

[Kenneth McRae]

Arbor Networks..

On Thu, Jan 31, 2013 at 10:13 AM, matt kelly mjke...@gmail.com wrote:

 Can anyone recommended ddos mitigation companies with US east coast
 presence that provide the services via bgp?  We are not interested in an
 appliance but rather offloading the traffic.

 Thanks.




-- 
Best Regards,



Kenneth McRae
*Director, Network Operations*
kenneth.mc...@dreamhost.com
Ph: 818-447-2589
www.dreamhost.com

Re: box against dos/ddos

[Kenneth McRae]

I think Radware has to sit inline. I do not believe they offer BGP offramp,
so keep that in mind.

On Thu, Jan 31, 2013 at 10:39 AM, Jay Coley j...@jcoley.net wrote:

 +1 for Radware

 On 31/01/2013 18:36, dennis wrote:
  Agreed, my shortlist for evaluation would include  Arbor, Radware and
  Genie NRM.   New players to the market include just about every IPS and
  application load balancing solution out there.
 
 
  --
  From: Suresh Ramasubramanian ops.li...@gmail.com
  Sent: Thursday, January 31, 2013 10:23 AM
  To: Piotr piotr.1...@interia.pl
  Cc: nanog@nanog.org
  Subject: Re: box against dos/ddos
 
  arbor peakflow to start with?
 
  On Thursday, January 31, 2013, Piotr wrote:
 
  Hi,
 
  I looking some box (vendor, model), which i can put out of the
  main/product network,  which can analyze packets
  netflow,sflow,syslog from
  bgp router(s) and after discover some anomaly it can do some action,
 for
  example:
 
  - Box have bgp session with bgp router and advertise attacked ip prefix
  with some community. Bgp router set next-hop for this prefix to
  /dev/null
 
  Normal traffic via bgp router is about 1G/s in and 10G/s out
 
  What is worth of looking and what you suggest ?
 
  thanks for help,
  Piotr
 
 
 
  --
  --srs (iPad)
 
 
 
 

Re: Dreamhost hijacking my prefix...

[Kenneth McRae]

Jeff,

We are not announcing the prefix in question nor do we peer with AS42861.


-- 
Best Regards,



Kenneth McRae
*Director, Network Operations*
kenneth.mc...@dreamhost.com
Ph: 818-447-2589
www.dreamhost.com



On Fri, Jan 11, 2013 at 7:23 AM, Jeff Kell jeff-k...@utc.edu wrote:

 Not sure how widespread their leakage may be, but Dreamhost just
 hijacked one of my prefixes...

  
  Possible Prefix Hijack (Code: 10)
  
  Your prefix:  150.182.192.0/18:
  Update time:  2013-01-11 14:14 (UTC)
  Detected by #peers:   11
  Detected prefix:  150.182.208.0/20
  Announced by: AS26347 (DREAMHOST-AS - New Dream Network, LLC)
  Upstream AS:  AS42861 (PRIME-LINE-AS JSC Prime-Line)
  ASpath:   8331 42861 42861 42861 26347

 Anyone have a contact there?  ASinfo gives net...@dreamhost.com where I
 have submitted a report, but so far no joy...

 Jeff






-- 
Best Regards,



Kenneth McRae
*Sr. Network Engineer*
kenneth.mc...@dreamhost.com
Ph: 323-375-3814
www.dreamhost.com

Re: Dreamhost hijacking my prefix...

[Kenneth McRae]

Just checked all BGP speakers again and I show no peering with AS42861.

On Fri, Jan 11, 2013 at 7:49 AM, Jeff Kell jeff-k...@utc.edu wrote:

  Robtex would beg to differ... you show peered with AS42861, perhaps
 someone (else) is looping their advertisements?

   *R*egistered
 *O*ther side
 *B*GP visible Peer  OB AS174 COGENT /PSI  B AS4323 TWTC Autonomous system
 for tw telecom .  B AS4826 VOCUS-BACKBONE-AS Vocus Connect International
 Backbone Vocus Communications Level 2, Vocus House 189 Miller Street North
 Sydney NSW 2060  B AS5580 ATRATO-IP / Atrato IP Networks  B AS6461 MFNX
 MFN - Metromedia Fiber Network  B AS6939 HURRICANE Electric  B AS7575
 AARNET-AS-AP Australia's Research and Education Network (AARNet3)  B AS7922
 COMCAST-IBONE Comcast Cable Communications, Inc. 1800 Bishops Gate Blvd Mt
 Laurel, NJ 08054 US  B AS8359 MTS Dummy description for  B AS10912
 INTERNAP-BLK Internap Network Services  B AS10913 INTERNAP-BLK Internap
 Network Services  B AS12989 HWNG Eweka Internet Services B.V.  B AS36351
 SOFTLAYER Technologies Inc.  B AS42861 PRIME-LINE-AS Dummy description for


 On 1/11/2013 10:42 AM, Kenneth McRae wrote:

 Jeff,

  We are not announcing the prefix in question nor do we peer with AS42861.


  --
 Best Regards,



  Kenneth McRae
 *Director, Network Operations*
 kenneth.mc...@dreamhost.com
 Ph: 818-447-2589
  www.dreamhost.com



 On Fri, Jan 11, 2013 at 7:23 AM, Jeff Kell 
 jeff-k...@utc.edujeff-k...@utc.eduwrote:

 Not sure how widespread their leakage may be, but Dreamhost just
 hijacked one of my prefixes...

  
  Possible Prefix Hijack (Code: 10)
  
  Your prefix:  150.182.192.0/18:
  Update time:  2013-01-11 14:14 (UTC)
  Detected by #peers:   11
  Detected prefix:  150.182.208.0/20
  Announced by: AS26347 (DREAMHOST-AS - New Dream Network, LLC)
  Upstream AS:  AS42861 (PRIME-LINE-AS JSC Prime-Line)
  ASpath:   8331 42861 42861 42861 26347

 Anyone have a contact there?  ASinfo gives net...@dreamhost.com where I
 have submitted a report, but so far no joy...

 Jeff






  --
 Best Regards,



  Kenneth McRae
 *Sr. Network Engineer*
 kenneth.mc...@dreamhost.com
 Ph: 323-375-3814
  www.dreamhost.com







-- 
Best Regards,



Kenneth McRae
*Sr. Network Engineer*
kenneth.mc...@dreamhost.com
Ph: 323-375-3814
www.dreamhost.com

Re: Dreamhost hijacking my prefix...

[Kenneth McRae]

That would be my guess.  We have had some issues with this in the past with
operators from China and Russia.

On Fri, Jan 11, 2013 at 7:51 AM, Jon Lewis jle...@lewis.org wrote:

 Sounds like someone in Russia is having some fun with as-path prepending
 and prefix hijacking.


 On Fri, 11 Jan 2013, Kenneth McRae wrote:

  Jeff,

 We are not announcing the prefix in question nor do we peer with AS42861.


 --
 Best Regards,



 Kenneth McRae
 *Director, Network Operations*
 kenneth.mc...@dreamhost.com
 Ph: 818-447-2589
 www.dreamhost.com




 On Fri, Jan 11, 2013 at 7:23 AM, Jeff Kell jeff-k...@utc.edu wrote:

  Not sure how widespread their leakage may be, but Dreamhost just
 hijacked one of my prefixes...

  ==**==**
 
 Possible Prefix Hijack (Code: 10)
 ==**==**
 
 Your prefix:  150.182.192.0/18:
 Update time:  2013-01-11 14:14 (UTC)
 Detected by #peers:   11
 Detected prefix:  150.182.208.0/20
 Announced by: AS26347 (DREAMHOST-AS - New Dream Network, LLC)
 Upstream AS:  AS42861 (PRIME-LINE-AS JSC Prime-Line)
 ASpath:   8331 42861 42861 42861 26347


 Anyone have a contact there?  ASinfo gives net...@dreamhost.com where I
 have submitted a report, but so far no joy...

 Jeff






 --
 Best Regards,



 Kenneth McRae
 *Sr. Network Engineer*
 kenneth.mc...@dreamhost.com
 Ph: 323-375-3814
 www.dreamhost.com


 --**--**--
  Jon Lewis, MCP :)   |  I route
  Senior Network Engineer |  therefore you are
  Atlantic Net|
 _ 
 http://www.lewis.org/~jlewis/**pgphttp://www.lewis.org/~jlewis/pgpfor PGP 
 public key_




-- 
Best Regards,



Kenneth McRae
*Director, Network Operations*
kenneth.mc...@dreamhost.com
Ph: 818-447-2589
www.dreamhost.com

Re: Dreamhost hijacking my prefix...

[Kenneth McRae]

Thanks for that info Andree.  The only valid peer I see on the list would
be HE.  We do not peer with any of the others listed.

Kenneth

On Fri, Jan 11, 2013 at 8:46 AM, Andree Toonk andree+na...@toonk.nl wrote:

 Hi,
 Here's a quick summary of what we saw at BGPMon.net.

 At 2013-01-11 14:14:13 we saw announcements (seemingly) originated by
 26347, for prefixes normally announced by other ASn's (origin change /
 hijack).

 This seems to have affected 112 prefixes for 110 ASn's [1], including
 Rogers, Tata, Sprint, Ziggo, Verizon, KPN, Vodafone, CloudFlare, XS4ALL,
 ATT, Bell Canada and many more.
 Most of these were new more specific(!) announcements.

 With regards to next-hop ASN's (peers). It seems this hijack was
 propagated via 12 unique (AS26347) peers [1]

 A quick look at the prefix that was mentioned by Jeff, 150.182.208.0/20
 (more specific of 50.182.192.0/18)
 The first announcement for this prefix was seen at 2013-01-11 14:14:28
 and withdrawn at 2013-01-11 15:20:57.  It was detected by 42 unique peers.

 some example paths:
 271 6939 26347
 5580 26347|
 37312 5713 6939 26347
 1126 24785 12989 26347

 [1] I've posted some details  (Unique next-hop ASN's and affected origin
 ASN's), check if your AS was affected here:
 http://portal.bgpmon.net/data/hijack20130111.txt

 Cheers,
  Andree




 .-- My secret spy satellite informs me that at 2013-01-11 7:23 AM  Jeff
 Kell wrote:
  Not sure how widespread their leakage may be, but Dreamhost just
  hijacked one of my prefixes...
 
  
  Possible Prefix Hijack (Code: 10)
  
  Your prefix:  150.182.192.0/18:
  Update time:  2013-01-11 14:14 (UTC)
  Detected by #peers:   11
  Detected prefix:  150.182.208.0/20
  Announced by: AS26347 (DREAMHOST-AS - New Dream Network, LLC)
  Upstream AS:  AS42861 (PRIME-LINE-AS JSC Prime-Line)
  ASpath:   8331 42861 42861 42861 26347
 
  Anyone have a contact there?  ASinfo gives net...@dreamhost.com where I
  have submitted a report, but so far no joy...
 
  Jeff
 
 
 

Re: Dreamhost hijacking my prefix...

[Kenneth McRae]

Yes, now that is possible (just no direct peering).  So that takes me back
to my original statement about not announcing the 150.182.208.0/20 prefix
to begin with.

Kenneth

On Fri, Jan 11, 2013 at 10:31 AM, Andree Toonk andree+na...@toonk.nlwrote:

 Hi Kenneth,

 .-- My secret spy satellite informs me that at 2013-01-11 8:54 AM
 Kenneth McRae wrote:
  Thanks for that info Andree.  The only valid peer I see on the list
  would be HE.  We do not peer with any of the others listed.

 Could it be these ASns receive your routes via an IX route-server?

 Below some examples that show a peering between 26347 and
 5580 as well as 12989

 5580 26347

 http://www.ris.ripe.net/cgi-bin/lg/index.cgi?rrc=RRC031query=12arg=5580+26347

 12989 26347:

 http://www.ris.ripe.net/cgi-bin/lg/index.cgi?rrc=RRC031query=12arg=12989+26347

 And route views:

 route-viewssh ip bgp regex 12989_26347
 BGP table version is 427410275, local router ID is 128.223.51.103
 Status codes: s suppressed, d damped, h history, * valid,  best, i -
 internal,
   r RIB-failure, S Stale
 Origin codes: i - IGP, e - EGP, ? - incomplete

Network  Next HopMetric LocPrf Weight Path
 *  64.111.96.0/19   208.74.64.40   0 19214 12989
 26347 i
 *  66.33.192.0/19   208.74.64.40   0 19214 12989
 26347 i
 *  67.205.0.0/18208.74.64.40   0 19214 12989
 26347 i
 *  69.163.128.0/17  208.74.64.40   0 19214 12989
 26347 i
 *  75.119.192.0/19  208.74.64.40   0 19214 12989
 26347 i
 *  173.236.128.0/17 208.74.64.40   0 19214 12989
 26347 i
 *  205.196.208.0/20 208.74.64.40   0 19214 12989
 26347 i
 *  208.97.128.0/18  208.74.64.40   0 19214 12989
 26347 i
 *  208.113.128.0/17 208.74.64.40   0 19214 12989
 26347 i
 *  208.113.200.0208.74.64.40   0 19214 12989
 26347 i



 Cheers,
  Andree

Re: Adding GPS location to IPv6 header

[Kenneth McRae]

I see major privacy issues with this.  Why introduce more intelligence
which WILL eventually be used for more intrusion into the private lives of
all of us?  I don't particularly care for smart ads and three like..
On Nov 24, 2012 9:37 AM, Ammar Salih ammar.sa...@auis.edu.iq wrote:

 Dears, I've proposed a new IPv6 extension header, it's now posted on IETF
 website, your ideas and comments are most welcome!




 http://datatracker.ietf.org/doc/draft-add-location-to-ipv6-header/?include_t
 ext=1



 Thanks!

 Ammar Salih

Re: High CPU utilization w/VRF NAT - Cat6500

[Kenneth McRae]

I would recommend you do this on a firewall (fwsm or something external)..

On Tue, Nov 13, 2012 at 10:39 AM, Rodrick Brown rodrick.br...@gmail.comwrote:

 ~80 or so static NAT's configured, multiple versions of IOS tested.
 Most of the traffic is being punted to the CPU through the NAT interfaces
 causing high CPU utilization.

 Increasing fast aging timers had 0 benefit, TCAM utilization is less than
 5%
 Does anyone have any thoughts on other configuration tweaks I should try? I
 think we're at the point where new hardware maybe FWSM or another platform
 for NAT should be explored.

 --RB




-- 
Best Regards,



Kenneth McRae
*Sr. Network Engineer*
kenneth.mc...@dreamhost.com
Ph: 323-375-3814
www.dreamhost.com

Re: Whats so difficult about ISSU

[Kenneth McRae]

Juniper also offers it on the EX virtual switching platform.  Works if you
have the correct version of JunOS.

On Thu, Nov 8, 2012 at 3:38 PM, Zaid Ali z...@zaidali.com wrote:

 Cisco Nexus platform does it pretty well so they have achieved it.

 Zaid

 On Nov 8, 2012, at 3:22 PM, Kasper Adel wrote:

  Hello,
 
  We've been hearing about ISSU for so many years and i didnt hear that any
  vendor was able to achieve it yet.
 
  What is the technical reason behind that?
 
  If i understand correctly, the way it will be done would be simply to
 have
  extra ASICs/HW to be able to build dual circuits accessing the same
 memory,
  and gracefully switch from one to another. Is that right?
 
  Thanks,
  Kim

Re: Whats so difficult about ISSU

[Kenneth McRae]

I have executed successfully on the MX960 with no issues.. EX on the other
hand, really depends on your version of JunOS.

On Thu, Nov 8, 2012 at 4:19 PM, Alex dreamwave...@yahoo.com wrote:

 http://www.juniper.net/**techpubs/en_US/junos/topics/**
 concept/issu-oveview.htmlhttp://www.juniper.net/techpubs/en_US/junos/topics/concept/issu-oveview.html

 The Juniper ISSU guide.

 You need two things:

 1. Separation of the control plane and  forwarding plane
 2. 2 routing engines in the same chassis -- the non active RE upgrades
 first, then when its up and running the active one goes into upgrade mode
 and control fails over to the secondary RE which is running the upgraded
 version of the software.

 I assume it works on any vendor that has 2 REs in the same chassis and the
 fwd and control planes are separated, and there is a redundancy protocol
 running between the two REs(like Graceful Switchover on Juniper gear).


 On 11/09/2012 01:42 AM, Kenneth McRae wrote:

 Juniper also offers it on the EX virtual switching platform.  Works if you
 have the correct version of JunOS.

 On Thu, Nov 8, 2012 at 3:38 PM, Zaid Ali z...@zaidali.com wrote:

  Cisco Nexus platform does it pretty well so they have achieved it.

 Zaid

 On Nov 8, 2012, at 3:22 PM, Kasper Adel wrote:

  Hello,

 We've been hearing about ISSU for so many years and i didnt hear that
 any
 vendor was able to achieve it yet.

 What is the technical reason behind that?

 If i understand correctly, the way it will be done would be simply to

 have

 extra ASICs/HW to be able to build dual circuits accessing the same

 memory,

 and gracefully switch from one to another. Is that right?

 Thanks,
 Kim

Re: Whats so difficult about ISSU

[Kenneth McRae]

I have performed micro code upgrades using ISSU on the Juniper platform.

On Thu, Nov 8, 2012 at 4:52 PM, Kasper Adel karim.a...@gmail.com wrote:

 What i was asking is full ISSU, even with micro code. I assume between
 Major release there will be microcode upgrade most of the time.


 On Fri, Nov 9, 2012 at 2:48 AM, Phil bedard.p...@gmail.com wrote:

  The major vendors have figured it out for the most part by moving to
  stateful synchronization between control plane modules and implementing
  non-stop routing.
 
  ALU has supported ISSU on minor releases for many years and just added
  support for major releases.
 
  The Cisco Nexus ISSU works well, I've done an upgrade on a 5K switch and
  it was completely hitless.
 
  Juniper and Cisco with the 9K have gone through some hurdles but ISSU is
  actually usable now if the software versions support it.
 
  The main remaining hurdle is updating microcode on linecards, they still
  need to be rebooted after an upgrade.
 
  Phil
 
  On Nov 8, 2012, at 6:22 PM, Kasper Adel karim.a...@gmail.com wrote:
 
   Hello,
  
   We've been hearing about ISSU for so many years and i didnt hear that
 any
   vendor was able to achieve it yet.
  
   What is the technical reason behind that?
  
   If i understand correctly, the way it will be done would be simply to
  have
   extra ASICs/HW to be able to build dual circuits accessing the same
  memory,
   and gracefully switch from one to another. Is that right?
  
   Thanks,
   Kim
 

Re: So what's the deal with 10Gbase-T

[Kenneth McRae]

Check out the Force 10 S4810 switch.

On Mon, Oct 1, 2012 at 12:47 PM, Andreas Echavez andr...@livejournalinc.com
 wrote:

 Hey guys,

 Does anyone here have experience running copper 10Gbase-T networks? It
 seems like the standard just died out. For us it would make a lot of sense
 for our applications -- even if throughput and latency aren't as great. If
 anyone out there knows of any *copper* 10 gig-t switches (48 port?), I'd be
 interested to hear your experiences. I can't seem to find any high-density
 ones from major vendors.

 Thanks,
 Andreas




-- 
Best Regards,



Kenneth McRae
*Sr. Network Engineer*
kenneth.mc...@dreamhost.com
Ph: 323-375-3814
www.dreamhost.com

Re: Squeezing IPs out of ARIN

[Kenneth McRae]

Negative..  I have never had to provide end user information.  I have been
required to provide utilization information.  I am sure this policy is
and add-on to make it more difficult to prevent hoarding..

On Tue, Apr 24, 2012 at 10:47 AM, Jonathan Lassoff j...@thejof.com wrote:

 On Tue, Apr 24, 2012 at 10:32 AM,  ad...@thecpaneladmin.com wrote:
  Anyone have any tips for getting IPs from ARIN? For an end-user
 allocation
  they are requesting that we provide customer names for existing
 allocations,
  which is information that will take a while to obtain. They are insisting
  that this is standard process and something that everyone does when
  requesting IPs.  Has anyone actually had to do this?

 Indeed. It's worked this way for a long time.

 When starting a new organization, there's a bit of a chicken and egg
 problem with IP space. If anyone could get IP space just for asking
 for it, it would have been consumed too quickly. So, organizations
 must first get some space assigned to them from an upstream provider
 and begin using it.
 At some point the current usage and growth rate of the assigned space
 will justify a direct allocation.

 Then, you can renumber into your new space and be totally independent.

 Cheers,
 jof




-- 
Best Regards,



Kenneth McRae
*Sr. Network Engineer*
kenneth.mc...@dreamhost.com
Ph: 323-375-3814
www.dreamhost.com

Re: Squeezing IPs out of ARIN

[Kenneth McRae]

I have never provided the names of end users..  How the address space would
be utilized?  Definitely..  But not the names of end users...

On Wed, Apr 25, 2012 at 8:34 AM, Owen DeLong o...@delong.com wrote:

 There is not a new policy added on to prevent hoarding. What is required
 is what
 has been required for several years. Utilization information and proper
 justification.

 If you are seeking an ISP allocation, then, reassignment (customer)
 information is
 in fact part of that utilization information.

 Owen

 On Apr 25, 2012, at 8:22 AM, Kenneth McRae wrote:

  Negative..  I have never had to provide end user information.  I have
 been
  required to provide utilization information.  I am sure this policy is
  and add-on to make it more difficult to prevent hoarding..
 
  On Tue, Apr 24, 2012 at 10:47 AM, Jonathan Lassoff j...@thejof.com
 wrote:
 
  On Tue, Apr 24, 2012 at 10:32 AM,  ad...@thecpaneladmin.com wrote:
  Anyone have any tips for getting IPs from ARIN? For an end-user
  allocation
  they are requesting that we provide customer names for existing
  allocations,
  which is information that will take a while to obtain. They are
 insisting
  that this is standard process and something that everyone does when
  requesting IPs.  Has anyone actually had to do this?
 
  Indeed. It's worked this way for a long time.
 
  When starting a new organization, there's a bit of a chicken and egg
  problem with IP space. If anyone could get IP space just for asking
  for it, it would have been consumed too quickly. So, organizations
  must first get some space assigned to them from an upstream provider
  and begin using it.
  At some point the current usage and growth rate of the assigned space
  will justify a direct allocation.
 
  Then, you can renumber into your new space and be totally independent.
 
  Cheers,
  jof
 
 
 
 
  --
  Best Regards,
 
 
 
  Kenneth McRae
  *Sr. Network Engineer*
  kenneth.mc...@dreamhost.com
  Ph: 323-375-3814
  www.dreamhost.com




-- 
Best Regards,



Kenneth McRae
*Sr. Network Engineer*
kenneth.mc...@dreamhost.com
Ph: 323-375-3814
www.dreamhost.com

Re: Squeezing IPs out of ARIN

[Kenneth McRae]

No I am speaking about my previous positons with large providers, telco,
etc.

On Wed, Apr 25, 2012 at 9:09 AM, Jonathan Lassoff j...@thejof.com wrote:

 On Wed, Apr 25, 2012 at 8:46 AM, Kenneth McRae 
 kenneth.mc...@dreamhost.com wrote:

 I have never provided the names of end users..  How the address space
 would be utilized?  Definitely..  But not the names of end users...


 Probably because you are an end user.
 If you're talking about AS26347, I don't think there is any re-assigned
 space in there.

 Do you ever assign users CIDR blocks of IP space for their own use? If
 it's just the transitory use of IPs in an operational network you control,
 then that sounds like end user use to me, even though you may sell the
 use of those IPs.

 If you have questions about this stuff, the ARIN NRPM is a great resource:
 https://www.arin.net/policy/nrpm.html

 Cheers,
 jof




-- 
Best Regards,



Kenneth McRae
*Sr. Network Engineer*
kenneth.mc...@dreamhost.com
Ph: 323-375-3814
www.dreamhost.com