- Original Message Follows -
From: Sean Donelan [EMAIL PROTECTED]
The U.S. is poorly prepared for a major disruption of the
Internet, according to a study that an influential group
Wow! They mean the internet backbone might break? We
better shore up that puppy and warn the tier 1
BGP Update Report
Interval: 09-Jun-06 -to- 22-Jun-06 (14 days)
Observation Point: BGP Peering with AS4637
TOP 20 Unstable Origin AS
Rank ASNUpds % Upds/PfxAS-Name
1 - AS25543 33646 3.0% 961.3 -- FASONET-AS ONATEL/FasoNet's
Autonomous System
2 - AS4323
This report has been generated at Fri Jun 23 21:44:32 2006 AEST.
The report analyses the BGP Routing Table of an AS4637 (Reach) router
and generates a report on aggregation potential within the table.
Check http://www.cidr-report.org/as4637 for a current version of this report.
Recent Table
At one of my old jobs, my boss honestly believed that we had a 'switch'
that turned the entire internet off or on. When she was having problems
accessing her shopping sites, she'd storm in the office and say something
like 'did you guys turn the the internet off again?' sigh
Then again,
Sounds like our typical customer service calls.
Them: Is the Internet down?
Us: Yes, someone will turn it back on soon.
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On
Behalf Of Peter Ferrigan
Sent: Friday, June 23, 2006 10:04 AM
To: nanog@merit.edu
Scott Weeks wrote:
- Original Message Follows -
From: Sean Donelan [EMAIL PROTECTED]
The U.S. is poorly prepared for a major disruption of the
Internet, according to a study that an influential group
Wow! They mean the internet backbone might break? We
better shore up
Sean Donelan wrote:
The Business Roundtable, composed of the CEOs of 160 large U.S. companies,
said neither the government nor the private sector has a coordinated plan
to respond to an attack, natural disaster or other disruption of the
Internet. While individual government agencies and
On Fri, 23 Jun 2006, Jeff Shultz wrote:
Thus explainith why CEOs should not be responsible for this. I wonder if
their CIOs or other techies have ever tried to explain the concept of a
CERT to them.
Of course they have. Gives you minty fresh breath, right?
jms
At 10:04 AM 6/23/2006, you wrote:
Then again, this is the same person that tried to tell me that 768
OC-192s are carried on a single DS1.
Now THAT is impressive compression! I don't know what your former
company did, but they should focus on selling that compression
technology. ;) The
On Fri, 23 Jun 2006 11:33:43 EDT, Robert Boyle said:
Now THAT is impressive compression! I don't know what your former
company did, but they should focus on selling that compression
technology. ;) The buffers must be enormous!
Infinite compression is easy, if you use a sufficiently lossy
My favorite was always the (potential) customers who would call up
and ask Can I get the Internet in my house? -- I would always
answer That depends, how big is your house?, but they NEVER got
it...
On Jun 23, 2006, at 7:09 AM, Jason Gauthier wrote:
Sounds like our typical
RB Date: Fri, 23 Jun 2006 11:33:43 -0400
RB From: Robert Boyle
RB Now THAT is impressive compression! I don't know what your former company
RB did, but they should focus on selling that compression technology. ;)
Irrational numbers can be described in finite space, yet extend
indefinitely with
One two three NOT IT!
Sorry, when I saw the subject, I couldn't resist.
On Fri, 23 Jun 2006 09:09:19 PDT, Warren Kumari said:
Ok, let the customer support anecdotes flow...
Part of the gear I usually lug around is an old bulky pair of Kenwood KPM-410
headphones. I've had people convinced that it's for computer security,
because when you ping the internet, you of
this is all silly. the answer to these is usually the folk
asking the question of who is in charge are the ones who
want to be.
randy
This is an automated weekly mailing describing the state of the Internet
Routing Table as seen from APNIC's router in Japan.
Daily listings are sent to [EMAIL PROTECTED]
If you have any comments please contact Philip Smith [EMAIL PROTECTED].
Routing Table Report 04:00 +10GMT Sat 24 Jun, 2006
Now we are all allowed the occasional fun at the management lacking a clue - but come on. The users have an expectation that their "access to the Internet" works like a utility. When you say the "power is shut off" you don't expect to expand on whether the power grid in your state had a cascading
on Fri, Jun 23, 2006 at 11:23:44AM -0700, [EMAIL PROTECTED] wrote:
The users have an expectation that their access to the Internet
works like a utility. When you say the power is shut off you don't
expect to expand on whether the power grid in your state had a
cascading failure but people on
If DOS is such a large concern, IPSEC to an extent can be
used to mitigate against it. And IKEv1/v2 with IPSEC is not
the horribly inefficient mechanism it is made out to be. In
practice, it is quite easy to use.
IPSEC does nothing to protect a network device from a DOS attack. You
-Original Message-
From: Barry Greene (bgreene) [mailto:[EMAIL PROTECTED]
Sent: Friday, June 23, 2006 11:50 AM
To: Bora Akyol; Ross Callon; nanog@merit.edu
Subject: RE: key change for TCP-MD5
If DOS is such a large concern, IPSEC to an extent can be used to
mitigate
On Fri, Jun 23, 2006 at 11:49:33AM -0700, Barry Greene (bgreene) wrote:
Yes Jared - our software does the TTL after the MD5, but the hardware
implementations does the check in hardware before the packet gets punted
to the receive path. That is exactly where you need to do the
On Fri, 23 Jun 2006 13:35:20 PDT, Bora Akyol said:
The validity of your statement depends tremendously on how IPSEC is
implemented.
If 113 million packets all show up at once, you're going to get DoS'ed,
whether or not you have IPSEC enabled.
pgpRRK8AbWIKX.pgp
Description: PGP signature
On Fri, Jun 23, 2006 at 04:43:29PM -0400, Todd Underwood wrote:
On Fri, Jun 23, 2006 at 11:49:33AM -0700, Barry Greene (bgreene) wrote:
Yes Jared - our software does the TTL after the MD5, but the hardware
implementations does the check in hardware before the packet gets punted
to the
Assumptions, assumptions.
If your IPSEC is being done in hardware and you have appropriate QoS
mechanisms
in your network, you will probably not be able to pass your best effort
traffic but the rest should be OK.
Can we get back to the regularly scheduled programming
instead of throwing big
On Fri, Jun 23, 2006 at 05:01:00PM -0400, Richard A Steenbergen wrote:
Obviously in a perfect world, you don't want to do the expensive MD5 check
anywhere sooner than the last possible moment before you declare the data
valid and add it to the socket buffer. I assume that the reason they
On Jun 23, 2006, at 2:02 PM, Bora Akyol wrote:
If your IPSEC is being done in hardware and you have appropriate QoS
mechanisms in your network, you will probably not be able to pass
your best effort
traffic but the rest should be OK.
Unless the DoS is within the IPSEC tunnel and crowds
On 24-jun-2006, at 0:43, Owen DeLong wrote:
Why couldn't the network device do an AH check in hardware before
passing
the
packet to the receive path? If you can get to a point where all
connections
or traffic TO the router should be AH, then, that will help with DOS.
If you care that
On Jun 23, 2006, at 7:17 PM, Iljitsch van Beijnum wrote:
On 24-jun-2006, at 0:43, Owen DeLong wrote:
Why couldn't the network device do an AH check in hardware before
passing
the
packet to the receive path? If you can get to a point where all
connections
or traffic TO the router should
The Business Roundtable, composed of the CEOs of 160 large U.S.
companies,
said neither the government nor the private sector has a coordinated
plan
to respond to an attack, natural disaster or other disruption of the
Internet. While individual government agencies and companies have their
### On Fri, 23 Jun 2006 09:09:19 -0700, Warren Kumari [EMAIL PROTECTED]
### casually decided to expound upon Jason Gauthier [EMAIL PROTECTED]
### the following thoughts about Re: Who wants to be in charge of the
### Internet today?:
WK My favorite was always the (potential) customers who would
Hi Fellow Nanogers:
I searched the archives and could not find anything that really matches with my
requirement. I have been stalking this mailing list since quite some time and
its extremely rare that i post.
We are multihomed and connected to the Internet via two upstream providers. The
31 matches
Mail list logo
