One more add:
Properly engineered, fixed wireless links can have better-than-wireline
availability. Two jobs ago, we had customer links with zero dropped
packets in 5 years, which is outstanding compared to most copper-based
services.
Properly engineered, however, is the key. Make sure whom-ever
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Scott Weeks
Thanks everyone,
I feel a lot more confident on this project after
this discussion. I will be working with a comm
engineer who'll be doing the various radio links.
I just need to be sure he
I don't know how accurate it is, but here's a site that more plainly spells out
upstream\peer\customer:
https://radar.qrator.net/
-
Mike Hammett
Intelligent Computing Solutions
http://www.ics-il.com
- Original Message -
From: Faisal Imtiaz fai...@snappytelecom.net
To:
BGP Update Report
Interval: 29-Jan-15 -to- 05-Feb-15 (7 days)
Observation Point: BGP Peering with AS131072
TOP 20 Unstable Origin AS
Rank ASNUpds % Upds/PfxAS-Name
1 - AS23752 272647 6.5%2198.8 -- NPTELECOM-NP-AS Nepal
Telecommunications Corporation,
This report has been generated at Fri Feb 6 21:14:23 2015 AEST.
The report analyses the BGP Routing Table of AS2.0 router
and generates a report on aggregation potential within the table.
Check http://www.cidr-report.org/2.0 for a current version of this report.
Recent Table History
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Scott
Weeks
Sent: Saturday, 7 February 2015 5:26 AM
To: nanog@nanog.org
Subject: RE: mpls over microwave
There is no choice in this situation. I get what
I get and make it work. And, it is hard to
Hoping to speak with a Consolidated Communications (AS5742) engineer
regarding routing in Illinois region towards Gaikai (AS33353).
Thanks,
Chris Costa
- Original Message -
From: Mike Hammett na...@ics-il.net
This is the third or fourth request I've seen lately. I'm assuming
they don't have anyone on here.
Not necessarily.
Some people reply privately, so as not to come out of the closet.
Cheers,
-- jra
--
Jay R. Ashworth
Yeah, but it's the same guy looking for the same people for the same issue. I
know it sucks to have things not working right, but they're probably not here.
-
Mike Hammett
Intelligent Computing Solutions
http://www.ics-il.com
- Original Message -
From: Jay Ashworth
Oops, sorry. Didn't think those other requests got through the moderator. :)
On Feb 6, 2015 6:18 PM, Mike Hammett na...@ics-il.net wrote:
Yeah, but it's the same guy looking for the same people for the same
issue. I know it sucks to have things not working right, but they're
probably not here.
This is the third or fourth request I've seen lately. I'm assuming they don't
have anyone on here.
-
Mike Hammett
Intelligent Computing Solutions
http://www.ics-il.com
- Original Message -
From: Chris Costa ccosta92...@gmail.com
To: nanog@nanog.org
Sent: Friday,
We approach this in the following empirical manner.
1) Who is available to you easily and within the budget.
2) Where is the other side of the network connectivity consumers ?
i.e. do you need good connectivity to Cable Network ? ATT Broadband ? Europe ?
Mexico ? Latin America ?
3) What is
With how many people cogent connects with, it is almost never a bad
idea to have them in your mix.
On Fri, Feb 6, 2015 at 12:26 PM, Colton Conor colton.co...@gmail.com wrote:
We have a network that is single homed with Level3 at this time in Dallas.
They already have BGP and their own ASN and
On 6 Feb 2015, at 20:08, Ray Soucy wrote:
An IDS tied into an internal RTBH setup to leverage uRPF filtering in
hardware can be pretty effective at detecting and blocking the typical
UDP attacks out there before they reach systems that don't handle that
as gracefully (e.g. firewalls or host
I would try to recommend finding a microwave guy that knows IP. Quite a lot of
them do now since most of their installs are IP traffic backhaul.
Steven Naslund
Chicago IL
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Scott Weeks
Sent: Thursday, February
IPSes are like any security technology, they are only as good as their
implementor/administrator. I've seen some installations just set up defaults
and leave them that way without any maintenance nor much oversight of alarms.
I've even seen some that do 0-day implementation of new signatures,
Hey,
We run few mpls links ( 7600s/3600s on the mpls side mostly ) over Ceragon
wireless gear. Nothing too fancy, I just treat them as switches ( or even just
cables for some boxes, not doing mac learning at all ). No issues whatsoever
on the networking side.
My thoughts and words are my
On 6 Feb 2015, at 21:27, Darden, Patrick wrote:
I understand the whole argument against state, and dismiss it.
One can 'dismiss' the speed of light in a vacuum or the Planck constant,
but that doesn't exempt one from their constraints.
---
Roland Dobbins
On 6 Feb 2015, at 23:23, Darden, Patrick wrote:
And when your opinion is an acknowledged universal constant, I will
tip my hat to you.
It's been a constant for the last couple of decades - I can't count the
number of times I've been involved in mitigating penny-ante DDoS attacks
which
Thought I would add
Astaro IPS works great, great functionality and does prevent ddos and exploits.
Colin
Auto-Update can cause problems. I take the stance that updates should be
verified in a CERT or ISO first, before being operationalized.
--p
-Original Message-
From: Colin Johnston [mailto:col...@gt86car.org.uk]
Sent: Friday, February 06, 2015 10:46 AM
To: Darden, Patrick
Cc: Colin
Cogent has been very good in my experience. They have some issues they need to
work out, but are pretty solid. We have had some issues where they have said
they are doing maintenance on such and such night and it comes a day early. We
have also seen some routing weirdness when it comes to
We have a network that is single homed with Level3 at this time in Dallas.
They already have BGP and their own ASN and IP setup. Who would you
recommend for a second provider in Dallas to blend with Level3? Assuming
Level3 and this other provider would be the only two in the blend for a
long time
An IPS doesn't have to be in line.
It can be something watching a tap and scripted to use something else
to block traffic (e.g. hardware filtering options on a router that can
handle it).
An IDS tied into an internal RTBH setup to leverage uRPF filtering in
hardware can be pretty effective at
On Thu, Feb 5, 2015 at 10:47 AM, Roland Dobbins rdobb...@arbor.net wrote:
On 6 Feb 2015, at 0:38, Raymond Burkholder wrote:
There must some sort of value in that?
No - patch the servers.
Patching servers protects against 0 Day attacks only.
This does not protect against 0 day attacks,
Hello,
On 06/02/2015, at 11:08, Ray Soucy r...@maine.edu wrote:
An IPS doesn't have to be in line.
AFAIK this is basically what defines an IPS.
It can be something watching a tap and scripted to use something else
to block traffic (e.g. hardware filtering options on a router that can
Absolutely.
Valuable humans behind the tools will always provide better benefits than
what vendors may generically sell/deliver.
On 2/6/15 8:39 AM, Bill Thompson wrote:
You can fix a car with a swiss army knife, but why would you want to?
Is it a metric swiss army knife?
On Jan 30, 2015, at 07:37 , Owen DeLong owen@delong wrote:
/48 for all customer sites is not at all unreasonable and is fully supported
by ARIN policy.
Where Bill is correct is that some customers may have more than one site. The
official
policy definition of a site is a single building or
This is an automated weekly mailing describing the state of the Internet
Routing Table as seen from APNIC's router in Japan.
The posting is sent to APOPS, NANOG, AfNOG, AusNOG, SANOG, PacNOG,
CaribNOG and the RIPE Routing Working Group.
Daily listings are sent to bgp-st...@lists.apnic.net
For
And when your opinion is an acknowledged universal constant, I will tip my hat
to you. In the meantime, your argument is extremely soundbitey--sounds great,
but stupid.
--p
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Roland Dobbins
Sent: Friday,
Just because a cat has kittens in the oven, you don't call them biscuits. A
firewall can route, but it is not a router. Both have specialized tasks. You
can fix a car with a swiss army knife, but why would you want to?
--
Bill Thompson
bi...@mahagonny.com
On February 5, 2015 7:19:43 PM PST,
Yes, update can cause problems, same as router code updates as well.
but update is price of progress.
Col
On 6 Feb 2015, at 16:44, Darden, Patrick patrick.dar...@p66.com wrote:
Sorry, didn't mean to imply otherwise. Had an incident back in ~2004 where
an IPS signature update closed ALL
We run MPLS over wireless links of all kinds quite extensively. The key is to
make sure that packet loss is at a minimum (duh), and to ensure that your
wireless links have a large enough MTU to pass the additional bytes for each
label. Other than that, we treat the wireless links as wires.
--
Sorry, didn't mean to imply otherwise. Had an incident back in ~2004 where an
IPS signature update closed ALL network traffic. Including fix-it updates.
Definitely a case where the IPS caused major difficulties for a network.
--p
-Original Message-
From: Colin Johnston
yes, using new rules via test ips good best practice as well.
On 6 Feb 2015, at 16:47, Darden, Patrick patrick.dar...@p66.com wrote:
Auto-Update can cause problems. I take the stance that updates should be
verified in a CERT or ISO first, before being operationalized.
--p
36 matches
Mail list logo