Re: Providing geofeed info to Google

2023-09-18 Thread Robert Story 
Try putting it in your whois. More info on how this works and how to do
it here:

   https://geolocatemuch.com/

Regards,
Robert

--
USC Information Sciences Institute 
Networking and Cybersecurity Division


On Mon 2023-09-18 13:17:49+0300 Hank wrote:
> Old topic: if one doesn't have access to https://isp.google.com how
> does one update their geo-location data so Google sees it?
> 
> Thanks,
> 
> Hank
> 
> > On Tue, Aug 30, 2022 at 12:34:41PM -0700, Hugo Slabbert wrote:  
> >> Google folks:
> >>
> >> I see historical reference to needing to use the Google Peering
> >> Portal ( http://peering.google.com) if you need to provide Google
> >> with geofeed info for GeoIP info on network blocks, ref
> >> https://mailman.nanog.org/pipermail/nanog/2015-May/075229.html.
> >>
> >> Is that still the case?  Are there any avenues to provide Google
> >> with geofeed info if you're *not* currently peering with 15169? Or
> >> to get access to just the geofeed update portion of the Peering
> >> Portal?

Re: BGP routing ARIN space in APNIC region

2023-06-11 Thread Robert Story 
On Sat 2023-06-10 18:33:04+0200 Mark wrote:
> > [...]  you may run into geolocation issues where some geolocation
> > providers decide that many/all of your users are in one location or
> > the other,[...]
> 
> This is solvable by slicing your IPv4 prefixes into /24's and
> assigning them the correct country TLD in the ARIN WHOIS database.
> Yes, you might need to call a few geo-location providers to fix their
> back-end manually, but this is possible.

Everyone should check out Massimo Candela's presentation "Geolocation
problems: Do we have a solution?" for how to provide your own
geolocation data...

https://www.netnod.se/sites/default/files/2023-03/Massimo_Webpage.pdf

I've seen it at recent RIPE and LACNIC conferences. Supposedly all of
the big geolocation providers support it or are planning on supporting
it.

Regards,
--
Robert Story 
USC Information Sciences Institute <http://www.isi.edu/>
Networking and Cybersecurity Division

Re: New addresses for b.root-servers.net

2023-06-08 Thread Robert Story 
On Wed 2023-06-07 15:34:12-0700 Matthew wrote:
> If the goal is increased robustness by having addresses present from a
> different RIR, wouldn't it make this whole tempest in a teapot moot
> if, instead of *reunubering*, you simply *added* a second set of IPs,
> but continued to answer queries on the original addresses as well?

Hi Matt,

That is exactly what we've done. We are currently answering requests on
the new LACNIC addresses, the current ARIN address which we renumbered
to in 2017, and even the addresses from before that (cerca 2004). 

The commitment to maintain service for 1 year after the new LACNIC
addresses are switched in to the root.hints from IANA does not mean that
this is a cutoff date and that we intend to turn off service on the
older addresses after a year.  We currently have no plans to do so for
the foreseeable future. In fact, the possibility has not even been
suggested or discussed at all.

In short: Keep calm, and query on. :-)


Regards,
--
Robert Story 
USC Information Sciences Institute <http://www.isi.edu/>
Networking and Cybersecurity Division

Re: New addresses for b.root-servers.net

2023-06-04 Thread Robert Story 
On Sat 2023-06-03 23:00:33+0200 Terrence wrote:
> Forgive me if I'm missing something obvious, but why are you
> renumbering at all?
> 
> Of course the diversification of RIRs is a good thing, but couldn't
> that be accomplished just as well by transferring the current
> allocation to LACNIC?

Hi Terrence,

DNS Root Server addresses from ARIN are assigned from the critical
infrastructure pool, and ARIN policy does not allow them to be
transferred to another RIR. The relevant policy section is:

8.4. Inter-RIR Transfers to Specified Recipients

[...]

Conditions on source of the transfer:

[...]
Address resources from a reserved pool (including those designated
in Section 4.4 and 4.10) are not eligible for transfer.

Regards,
--
Robert Story 
USC Information Sciences Institute <http://www.isi.edu/>
Networking and Cybersecurity Division

New addresses for b.root-servers.net

2023-05-30 Thread Robert Story 


USC/ISI is renumbering both its IPv4 and IPv6 addresses for
b.root-servers.net on 2023-11-27. Our new IPv4 address will be
170.247.170.2 and our new IPv6 address will be 2801:1b8:10::b.
USC/ISI will continue to support root service over our current IPv4 and
IPv6 addresses for at least one year (until 2024-11-27) in order to
provide a stable transition period while new root hints files are
distributed in software and operating system packages.

We are renumbering to increase the resilience of the Root Servers
System by further diversifying the number of Regional Internet
Registries (RIRs) that have allocated IP addresses to Root Server
Operators. Our addresses will be the first in the Root Server System to
have been allocated by LACNIC and our routes will be verifiable through
LACNIC’s Resource Public Key Infrastructure (RPKI) Trust Anchor
Location (TAL). We thank LACNIC for helping make this renumbering
possible, and ARIN for supporting our prior addressing assignments.


The LACNIC announcement, with English, Spanish and Portuguese
translations, can be found on their website here:

https://www.lacnic.net/6868/1/lacnic/lacnic-asigna-recursos-de-numeracion-al-servidor-raiz-de-usc_isi

Please direct any comments or questions to b-poc  isi.edu.

Regards,
Robert

P.S. Apologies to anyone receiving multiple copies of this announcement.

--
Robert Story 
USC Information Sciences Institute <http://www.isi.edu/>
Networking and Cybersecurity Division

Re: DNS resolution for hhs.gov

2023-04-11 Thread Robert Story 
On Tue 2023-04-11 08:12:35-0700 Samuel wrote:
> A dig +trace cob.cms.hhs.gov fails for me as it looks like the NS for
> hhs.gov does not seem to resolve the hostname.
> 
> However dig +trace cms.hhs.gov resolves and so does dig +trace
> eclkc.ohs.acf.hhs.gov
> 
> However if I simply ask my local resolver to resolve cob.cms.hhs.gov,
> it works. Any thoughts on why this is the case?

Looks like their v6 resolvers are failing, but v4 works fine.

DNSVis.net is a good place to check nameserver issues..

-- 
Regards,
Robert

--
Robert Story 
USC Information Sciences Institute <http://www.isi.edu/>
Networking and Cybersecurity Division

Re: Suppliers of Optics, Cables, and Parts and Support in Argentina

2023-01-25 Thread Robert Story 
On Wed 2023-01-25 21:02:09+ nanoguser99 wrote:
> South America is a difficult region to procure parts in but Argentina
> is particularly difficult.  Our current process is to ship spare gear
> to Argentina but we get hit very hard with import duties. I'm looking
> for a local supplier of Optics, Cables, and Parts (drives, RAM, etc.)
> locally in Argentina.
> [...]

You might try posting to the LACNOG list. In Spanish if you can, but
there are occasional posts in English too..

lac...@lacnic.net
https://mail.lacnic.net/mailman/listinfo/lacnog

Regards,
Robert

--
Robert Story 
USC Information Sciences Institute <http://www.isi.edu/>
Networking and Cybersecurity Division

Re: LACNOG2022 - Call for Presentations

2022-06-14 Thread Robert Story 
That link returns a 404 error. This one works:

  https://www.lacnic.net/6298/71/evento/lacnog-2022---call-for-presentations

For those that haven't attended/presented before, their conferences are
tri-lingual, with presentations in English, Spanish and Portuguese.
Their event platform has excellent support for listening to any
presentation and asking questions in your language of choice.

Regards,
Robert

On Thu 2022-06-09 08:36:15-0400 Hernan wrote:
> Dear NANOG,
> 
> LACNOG 2022 - Call for Presentations
> 
> https://www.lacnog.org/eventos/ <http://www.lacnog.org/eventos/>
> 
> LACNOG, the Latin American and Caribbean Network Operators Group,
> will hold its LACNOG 2022 conference together with the LACNIC 38
> event from 3 to 7 October 2022. This meeting will be held in person
> in the city of Santa Cruz, Bolivia (provided that the evolution of
> the epidemiological situation in the region allows). Otherwise, the
> conference will once again be held online.
> 
> The LACNOG 2022 Program Committee invites the Internet community to 
> submit their presentation proposals for the event.
> 
> In line with the spirit of LACNOG, presentations should address
> topics geared towards regional Internet development. The following is
> a non-exhaustive list of some of the topics of interest for the
> LACNOG 2022 meeting:
> 
> ●Network operation and professional experiences, success stories
> 
> ●Internet of Things
> 
> ●MANRS
> 
> ●Community networks
> 
> ●IPv6 integration and deployment
> 
> ●Experiences involving botnets, malware, spam, viruses, denial of 
> service attacks, and exploit techniques
> 
> ●IP network architecture, sizing, configuration, and administration
> 
> ●Routing and switching protocols, including unicast, multicast,
> anycast, SDN, etc.
> 
> ●End-user applications (e.g., e-mail, HTTP, DNS, NFVs, etc.)
> 
> ●Value-added services, such as VPNs, distributed systems, cloud 
> computing, etc.
> 
> ●Peering, Internet traffic exchange, IXPs
> 
> ●Network data security and management, attack mitigation
> 
> ●Network monitoring, performance, measurements, and telemetry
> 
> ●Network automation, evolution, and convergence
> 
> ●Infrastructure and physical transport, including optical and
> wireless networks
> 
> ●Legislation, regulations, and Internet governance issues
> 
> ●Research and education
> 
> Possible presentation formats include:
> 
> ●Lightning talk: brief, 10-minute presentation (including a space for
> Q).
> 
> ●Presentation: 20-minute presentation (including a space for Q).
> 
> ●Poster: includes a single-page PDF (A2 or smaller) with the basic 
> information of the presentation and a 2- to 5-minute video with the 
> presentation.
> 
> The timeline for the 2022 call for proposals will be as follows:
> 
>   * Reception of proposals: 31 May to 17 July 2022
>   * Proposals will be accepted until: 17 July 2022 at 23:59 UTC-3
> (Uruguay time)
>   * Evaluation by the Program Committee: 18 July to 7 August 2022
>   * Announcement of results: 10 August 2022
>   * Reception of final presentations: 10 August to 18 September 2022
> at 23:59 UTC-3 (Uruguay time)
>   * Event date: 3 to 7 October 2022
> 
> Applicants must submit a summary and a draft of the slides of their 
> proposed presentation along with a brief biography, for which they
> must use the form available at https://eventos.nog.lat/e/lacnog2022 
> 
> 
> If your work is selected, you authorize LACNOG and LACNIC to publish 
> your name, photograph, biography, and final work in the event program.
> 
> Speakers presenting their work at the LACNOG 2022 conference will 
> receive a certificate acknowledging their participation.
> 
> Guidelines for Submitting a Presentation for LACNOG including a 
> description of the criteria that will be considered when evaluating
> each proposal, presentation format, and other details are available
> at https://lacnog.org/seccion/postulacion-trabajos 
> <https://lacnog.org/seccion/postulacion-trabajos>
> 
> Communications with the Program Committee will be handled through 
> p...@lacnog.org <mailto:p...@lacnog.org>.
> 
> We thank you in advance for your attention and look forward to
> receiving your proposals for LACNOG 2022.
> 
> The Program Committee



-- 
Robert Story 
USC Information Sciences Institute <http://www.isi.edu/>
Networking and Cybersecurity Division

Re: What is your preferred outage tracking service? (Hurricane Ida)

2021-08-30 Thread Robert Story 
On Sun 2021-08-29 17:29:06-0400 Sean wrote:
> Netblocks is reporting connectivity in New Orleans LA is at 72% of
> normal as Hurricane Ida makes landfall.
> 
> https://twitter.com/netblocks/status/1432038858460442625
> 
> There are per-incident things, like the outages mailing list and 
> downdetector.com.  And some academic outage discovery projects such
> as RIPE, IODA, etc.
> 
> The old outage dashboards seem to have been bought, merged and 
> disappeared.
> 
> What is your preferred long-term Internet outage tracking source?

self promotion for $DAYJOB: Another academic project from the Analysis
of Network Traffic (ANT) group at University of Southern California's
Information Sciences Institute. Here is a link that will playback Ida
making landfall at 1x, 2x or 4x speed.

https://outage.ant.isi.edu/?zoom=5=-96.19043=32.471349=dark=1630240920=4=ostreaming=1=0_scale=3

-- 
Robert Story <http://www.isi.edu/~rstory>
USC Information Sciences Institute <http://www.isi.edu/>

Re: DNSSEC Best Practices

2021-04-28 Thread Robert Story 
On Wed 2021-04-28 12:02:18+0200 Mark wrote:
> On 4/28/21 11:51, Tony Finch wrote:
> 
> > Yes. I recommend p256 because the security advantages of p384 are
> > not significant enough to justify the increased costs in space
> > (packet size) and time.  
> 
> Both 13 and 14 are already smaller than 8 (which is the most widely 
> deployed algorithm today).

For those interested, actual numbers for algorithm deployment can be
found in the DNSSEC parameter frequency analysis section of
https://stats.dnssec-tools.org/.


-- 
Robert Story <http://www.isi.edu/~rstory>
USC Information Sciences Institute <http://www.isi.edu/>

Re: Texas internet connectivity declining due to blackouts

2021-02-17 Thread Robert Story 
See also ISI's [1] ANT Evaluation of Internet Outages map:

https://outage.ant.isi.edu/?zoom=6=-98.100178=36.512017=dark=1613564040=8=ostreaming=1=0_scale=3

[1] https://ant.isi.edu/outage/

On Mon 2021-02-15 18:04:07-0800 Eric wrote:
> See also, regional maps here. Thanks to CAIDA and the IODA project.
> 
> https://ioda.caida.org/ioda/dashboard
> 
> On Mon, Feb 15, 2021, 5:54 PM Sean Donelan  wrote:
> 
> > Not as bad as Myanmar (14%), Internet connectivity in Texas has been
> > declining today.  According to NetBlocks, which normally monitors
> > government imposed outages, reports network connectivity at 68% in
> > Texas.
> >
> > https://netblocks.org/
> >
> > Texas operates a separate electric grid, with limited
> > interconnections to the rest of North America.  For political
> > reasons
> >
> > For those with long memories, ENRON a Texas based corporation, once
> > upon a time drove rolling blackouts across California in order to
> > make billions. 



-- 
Robert Story <http://www.isi.edu/~rstory>
USC Information Sciences Institute <http://www.isi.edu/>

Re: anyone on from hotmail.com, msn.com, live.com smtp?

2020-05-09 Thread Robert Story 
On Fri 2020-05-08 19:35:08-0700 Joseph wrote:
> We are getting this messages when sending emails from our domain.
> We've submitted tickets, but haven't received a response yet. Anyone
> have any insights?
> 
> 550 5.7.1 Unfortunately, messages from [1.1.1.1] weren't sent. 


> It's our own address and everything on the Microsoft site says we are
> clean with no issues.

1.1.1.1 is your address? You are cloudfare's anycast dns server?


$ whois 1.1.1.1
[...]
inetnum:1.1.1.0 - 1.1.1.255
netname:APNIC-LABS
descr:  APNIC and Cloudflare DNS Resolver project

-- 
Robert Story <http://www.isi.edu/~rstory>
USC Information Sciences Institute <http://www.isi.edu/>

Re: Suggestions for a more privacy conscious email provider

2017-12-05 Thread Robert Story 
On Mon 2017-12-04 16:00:11-0700 Grant wrote:
> I've been using a VPS as my primary mail server for > 2 years and
> have only been black listed once.  Even that was a 12 hour automated
> listing because I sent one message to an address I had not used in 7
> years, which had since been converted into a spam trap.
> 
> I've also known others that use VPSs for this exact thing with 
> considerable success.

I do the same thing, with pretty much the same experience. One initial
blacklist hiccup that was easily resolved.

I ran my mail server at home for a while, but after a few storm-related
outages I switched to a cheap VPS doing store-and-foward.

You can also shop around to get some storage (20-50GB) that you can use
for remote backups of critical files (encrypted, of course).

I find Low End Box <https://lowendbox.com/> is a good resource for
finding VPS providers. You will have to pay attention if you want IPv6
support, as it's far from universal.


-- 
Robert Story <http://www.isi.edu/~rstory>
USC Information Sciences Institute <http://www.isi.edu/>


pgpknXoiRyZU_.pgp
Description: OpenPGP digital signature

B-root begins anycast in May

2017-04-24 Thread Robert Story 

To improve B-Root DNS service, B-Root will be activating anycast on
2017-05-01, providing service from a new site in Miami in addition to
our current site in Los Angeles.  We thank Florida International
University (https://www.fiu.edu) and Ampath.net (https://ampath.net) for
hosting our new hardware there, and USC (https://www.usc.edu) for
hardware support for this second site.

As part of this deployment, we will be renumbering B-Root's IPv6 address
to 2001:500:200::b, effective on 2017-06-01.  We also plan renumber our
IPv4 address later in 2017; we will announce that date here.
Renumbering will help support anycast with more resilient routing.  (We
will provide service on our old IPv6 and IPv4 addresses for at least one
year after renumbering.)


Robert
B-Root Operator team

-- 
Robert Story <http://www.isi.edu/~rstory>
USC Information Sciences Institute <http://www.isi.edu/>

Re: Safe IPv4 Was: Re: premiumcolo.net IP address rental

2017-01-09 Thread Robert Story 
On Mon, 9 Jan 2017 13:40:23 -0500 Martin wrote:
MH> 2. Apply for and receive a last /22 from RIPE. EVERYONE can do this.

Not quite everyone. You have to be a RIPE NCC member, which not everyone
can do.

"Who can become a Local Internet Registry (LIR)/RIPE NCC member?

Any organisation with a legally established office in the RIPE NCC
service region can become a member of the RIPE NCC."

https://www.ripe.net/manage-ips-and-asns/resource-management/faq/faq-ipv4-address-space


Robert

-- 
Senior Software Engineer @ Parsons


pgphmGQ0C3I_v.pgp
Description: OpenPGP digital signature

Re: SoCal FIOS outage(?) / static IP readdressing

2017-01-06 Thread Robert Story 
On Fri, 6 Jan 2017 11:55:56 -0800 Owen wrote:
OD> > On Jan 6, 2017, at 08:21 , Leo Bicknell  wrote:
OD> > At a past address I had Comcast Business (cable modem) service at
OD> > a residential address, and then later downgraded it to Comcast
OD> > Residential service.
OD> > [...]
OD> > The differences I could see:
OD> >  - Cable Modem
OD> >- Residential: could rent a consumer grade or BYO (I did, a good one)
OD> >- Business: Comcast supplied and required their better-than-average,
OD> >modem.  It could be in bridge mode though.  
OD> - San Jose, I was able to use BYO. Had to escalate several levels and 
pull several teeth to get
OD> bridge mode on the Comcast unit while I had it.

I'm using BYO on business class in Atlanta. I thing that a static IP
requires that you use their modem. I'm happy with DHCP - my assigned IP
hasn't changed in years. And as you say, I can plug in multiple boxes and
each get's its own public IPv4 address.

OD> > Ultimately the reason to buy business class at a residential address
OD> > (and I think the Prosumer description is correct) is generally faster
OD> > repair times.

That's why I have it. Though if you BYOM, you'll likely have trouble
getting service as they'll blame it on your 'unspoorted' device (even
thought it's listed on supported devices page). I had to rent one of their
modems for about 3 months once while they struggled to find something in the
neighborhood with a flaky power supply that caused intermittent outages.


Robert

-- 
Senior Software Engineer @ Parsons


pgp_9J4RyiqnX.pgp
Description: OpenPGP digital signature

Re: Microsoft / Outlook.com contact???

2015-10-13 Thread Robert Story 
On Tue, 13 Oct 2015 12:25:27 -0700 Robert wrote:
RG> We are having a problem with email from a certain IP being rejected
RG> with code FBLW15.  We have gone through the normal channels but have
RG> received no communication/acknowledgement from Microsoft at all. Emails
RG> to any domain with *outlook.com MX records are rejected with the
RG> following:
RG> []
RG> We have emailed del...@messaging.microsoft.com, with no response.

This has happened to me twice this year. Both times I got an auto-response
fairly quickly, and a followup message within a week, and was delisted.
Never could get any info on why I was listed in the first place, though.


Robert

-- 
Senior Software Engineer @ Parsons


pgpq7os2n7Dnm.pgp
Description: OpenPGP digital signature

Re: Microsoft / Outlook.com contact???

2015-10-13 Thread Robert Story 
On Tue, 13 Oct 2015 17:47:28 -0700 Robert wrote:
RG> On 10/13/2015 5:44 PM, Robert Story wrote:
RG> > On Tue, 13 Oct 2015 12:25:27 -0700 Robert wrote:
RG> > RG> We are having a problem with email from a certain IP being
RG> > RG> rejected with code FBLW15.  We have gone through the normal
RG> > RG> channels but have received no communication/acknowledgement from
RG> > RG> Microsoft at all. Emails to any domain with *outlook.com MX
RG> > RG> records are rejected with the following:
RG> > RG> []
RG> > RG> We have emailed del...@messaging.microsoft.com, with no response.
RG> >
RG> > This has happened to me twice this year. Both times I got an
RG> > auto-response fairly quickly, and a followup message within a week,
RG> > and was delisted. Never could get any info on why I was listed in the
RG> > first place, though.
RG> >
RG> >
RG> > Robert
RG> >
RG> An MS engineer reached out earlier, gave me this:
RG> 
RG> https://postmaster.live.com/snds/addnetwork.aspx
RG> 
RG> Signing for and using that tool, I was able to pin-point the cause. You 
RG> can also sign-up for their junk-mail feedback loop.
RG> 
RG> Hope this helps you next time!

Excellent, thanks!


Robert

-- 
Senior Software Engineer @ Parsons


pgpDHjXkRnpre.pgp
Description: OpenPGP digital signature

Re: Comcast Outages?

2014-07-11 Thread Robert Story 
On Thu, 10 Jul 2014 03:14:40 -0400 Kraig wrote:
KB Anyone in the SE seeing and/or hearing of any massive Comcast outages
KB regionally?
KB 
KB (Fiber, Voice  DOCSIS modems from Atlanta, GA to Tallahassee, FL and in
KB some select areas Jacksonville, FL...)

My comcast business service in Atlanta has not seen any interruptions..


Robert

-- 
Senior Software Engineer @ Parsons


signature.asc
Description: PGP signature