Re: Reminiscing our first internet connections (WAS) Re: akamai yesterday - what in the world was that

My first internet connection was some generic 2400baud.I had software support for MNP 5, which probably claims speeds up to 9600 bps? {perfomance in the lab with pretty cooperative factors like noise when squirrels eat through the protective coatings, and then chew up the actual wire, and at least

Re: Backup over 4G/LTE

Cradlepoint is probably the biggest player in this space. On Tue, Jan 28, 2020 at 5:31 PM K MEKKAOUI wrote: > Dear NANOG Community, > > > > Can anyone help with any device information that provides redundancy for > business internet access? In other words when the internet provided through >

Re: Reminiscing our first internet connections (WAS) Re: akamai yesterday - what in the world was that

Right?? That’s in a customer’s office building too… I’ve got the same connection on my workstation of course. I actually have another test that I don’t normally share. It’s NOT fake. I found out that the speedtest algorithm rounds to the nearest whole millisecond. And that it will round

Re: Backup over 4G/LTE

New player in this space is Ubiquiti: https://unifi-lte.ui.com - more suited for branch office applications IMO, but the setup couldn’t be easier.Expect this space to grow dramatically. -Ben Cannon CEO 6x7 Networks & 6x7 Telecom, LLC b...@6by7.net > On Jan 28,

Re: Reminiscing our first internet connections (WAS) Re: akamai yesterday - what in the world was that

Carrying on with the “first Internet connection” thread: I forget how I found out about Usenet and UUCP email (lost in the mosts of time). I ran a store and forward dial-up link from South Africa to DDSW1 in Chicago (Hi Karl! Thanks!). I cobbled together a package with a DOS-based mail

Re: Reaching out to Sony NOC, resolving DDoS Issues - Need POC

I recommend you *not* block the outgoing RST packets, as blocking them will only make matters worse: - it leaves the webservers being abused for reflection in the half-open SYN_RECV state, which may attract more attention (and blacklisting) - retries from those servers will increase the load

Re: Backup over 4G/LTE

All Cisco Meraki MX and Z units. Some via USB and some with SIM slot. https://meraki.cisco.com/products/appliances *Security Made Simple with Cisco Meraki: *http://bit.ly/MerakiSecure *Brandon Svec* CA C-7 Lic. #822064

Re: Reminiscing our first internet connections (WAS) Re: akamai yesterday - what in the world was that

So to add my two stories: I provided the Idea and a whole bunch of time/labor/etc to start a dialup ISP in our hometown back in 1994. I remember having a big debate on whether to bring in a single 56K leased line or 128K fractional T1. We went with the Fractional T1 just because it could be

Re: Backup over 4G/LTE

Peplink Balance line of routers: https://www.peplink.com/products/balance/ -Mike > On Jan 28, 2020, at 15:31, K MEKKAOUI wrote: > >  > Dear NANOG Community, > > Can anyone help with any device information that provides redundancy for > business internet access? In other words when the

Backup over 4G/LTE

Dear NANOG Community, Can anyone help with any device information that provides redundancy for business internet access? In other words when the internet provided through the cable modem fails the 4G/LTE takes over automatically to provide internet access to the client. Thank you KARIM

Re: AFRINIC: The Saga Continues

In message , thomas brenac wrote: >Thank you Ronald, I also heard of governance issue in AFRINIC by some >people during the last RIPE meeting so the word is spreading. Now is >there any other /16 impacted to your knowledge ? Would be worth pushing >to have them in as many Drop list as

Re: Recommended DDoS mitigation appliance?

Mike, What did you end up going with if not fastnetmon? Were you using their paid or free version? On Thu, Dec 5, 2019 at 4:45 PM Mike wrote: > > On 12/5/19 1:43 PM, Hugo Slabbert wrote: > >> FastNetMon is awesome, but its a detection tool with no mitigation > >> capacity whatsoever. > > > >

Re: RIP: Bill Manning

I also had the good fortune of working with Bill. I learned a lot from him, both while he was officially our vendor, and afterwards, when he was always ready and willing to provide insight and advice when I asked. He was absolutely one of those rare individuals who would never hesitate to help out

Re: Reaching out to Sony NOC, resolving DDoS Issues - Need POC

Yes, my server would then respond with RST. Screenshot: https://i.imgur.com/ZVti2yY.png We've blocked outgoing RST, 136.244.67.19 was our test server. But even if the ip is not even exposed to the internet, services will blacklist us. Even if we don't respond, and block every request from the

Re: Reaching out to Sony NOC, resolving DDoS Issues - Need POC

But you do receive the SYN/ACK? The way to open a TCP socket is the 3 way handshake. Sorry to write that here... I feel it's useless. 1. SYN 2. SYN/ACK 3. ACK Step 1: So hackers spoof the original SYN with your source IP of your network. Step 2: You should then receive those SYN/ACK

Re: AFRINIC: The Saga Continues

Hi there, Thank you Ronald, I also heard of governance issue in AFRINIC by some people during the last RIPE meeting so the word is spreading. Now is there any other /16 impacted to your knowledge ? Would be worth pushing to have them in as many Drop list as possible maybe :) I took the

Major issues with Cloudflare DNS (specifically DNS-over-HTTPS)

Can someone from Cloudflare contact me off-list? I work for a major search engine (not Google) and starting yesterday, we are getting reports from around the world about a DNS issue. They are either not resolving our site, or they are getting incorrect resolution (i.e. the wrong IP). The

Re: Reminiscing our first internet connections (WAS) Re: akamai yesterday - what in the world was that

> On Jan 28, 2020, at 10:53 AM, Paul Ebersman wrote: > > wsimpson> When we first designed PPP in the late '80s to replace SLIP > wsimpson> and SLFP, it was expected to run at 300 bps and scale up, so > wsimpson> the timeouts reflected that. When I designed PPP over ISDN, > wsimpson> added

Re: Reminiscing our first internet connections (WAS) Re: akamai yesterday - what in the world was that

On Tuesday, 28 January, 2020 16:53, "Paul Ebersman" said: > SLIP and PPP were quite... robust. Some UCB folks managed to get SLIP > over tin can and string. Two acoustic coupler 150b modems, 2 8oz V8 cans > and waxed cotton thread.

Re: Reminiscing our first internet connections (WAS) Re: akamai yesterday - what in the world was that

Imagine the racket! Is anyone connected with PPP over OC3? I'm just curious. I don't have that sort of connection myself. I'm just on dumbass DOCSIS. My first connection was PPP over the analogue PSTN. On Tue, 28 Jan 2020 09:53:26 -0700 Paul Ebersman wrote: > wsimpson> When we first designed

Re: Reminiscing our first internet connections (WAS) Re: akamai yesterday - what in the world was that

wsimpson> When we first designed PPP in the late '80s to replace SLIP wsimpson> and SLFP, it was expected to run at 300 bps and scale up, so wsimpson> the timeouts reflected that. When I designed PPP over ISDN, wsimpson> added language to allow faster retransmission. SLIP and PPP were quite...

Re: Reaching out to Sony NOC, resolving DDoS Issues - Need POC

I have tried numerous of times to reach out to Imperva. Imperva said Sony have to contact them & said they cannot help me because I am not a customer of theirs. Something Sony will not do. Sony simply stopped responding my emails after some time. But yes you are right. My IP's are being

Re: Reaching out to Sony NOC, resolving DDoS Issues - Need POC

Trying to summarize here, this convo has been a bit disjointed. Is this an accurate summary? - The malicious traffic with spoofed sources is targeting multiple different destinations. - The aggregate of all those flows is causing Impervia to flag your IP range as a bad actor. - Sony uses

Call for Presentations: 33rd DNS-OARC Workshop, Paris, France, May 09 - 10th 2020

The 33rd DNS-OARC Workshop will take place at the Marriott Rive Gauche Hotel & Conference Center in Paris, France on May 9th and 10th 2020. It is co-located with and will take place right after the ICANN GDD (May 3rd to 6th), Registrations Operations Workshop (May 6th) and ICANN DNS Symposium

DHCP Snooping Issue on Cisco N3K SW

Hi everyone, I hope all you are fine. I'm very new to this mailing list and looking for a solution if anyone could help me. I am a network operation engineer and working for an ISP in Bangladesh. We are serving internet, data connectivity, IPTSP, IPTV and other services to corporate and retail

Re: RIP: Bill Manning

I too am saddened by this news. I had the honor to work with Bill during our time together at ARIN. The world is dimmed by his passing. - Don Wilder - Programming today is a race between software engineers

Re: Reminiscing our first internet connections (WAS) Re: akamai yesterday - what in the world was that

I had a USR 2400 baud external modem. Local ISP offered PPP service as well. We also had a few BBS's in the area of which I ran two of them. On Mon, Jan 27, 2020 at 10:31 AM Daniel Seagraves < dseag...@humancapitaldev.com> wrote: > > On Jan 24, 2020, at 5:26 PM, Ben Cannon wrote: > > > > I

Re: akamai yesterday - what in the world was that

> > Shouldn't game patches like this be released overnight during off-peak > hours? Fortnite releases their updates around 3 or 4am when most ISP's > networks are at their lowest utilization. It seems somewhat reckless to > release such a large patch during awake hours. > I can't speak for PS4

Re: akamai yesterday - what in the world was that (now old guy stuff)

The Civil Engineering version of this is SWER electrical distribution. Single-Wire, Earth-Return. And it’s as crazy in implementation as it sounds now. -Ben Cannon CEO 6x7 Networks & 6x7 Telecom, LLC b...@6by7.net > On Jan 25, 2020, at 8:24 AM, Allen McKinley

Re: Reaching out to Sony NOC, resolving DDoS Issues - Need POC

Maybe we're looking at the wrong place when dealing with TCP amp. I believe there is a much easier way to solve this. @OP: can you post the tcp flags of the SYN/CK you are receiving from Sony? Thanks Jean On 2020-01-27 20:49, Damian Menscher via NANOG wrote: On Mon, Jan 27, 2020 at 5:43 PM

Re: Reaching out to Sony NOC, resolving DDoS Issues - Need POC

On 28 Jan 2020, at 18:15, Octolus Development wrote: > The problem is that they are spoofing our IP, to millions of IP's > running port 80. So that does in fact sound like a TCP reflection/amplification attack. If you have the relevant information, as it seems that you do, you can ask

Re: Reaching out to Sony NOC, resolving DDoS Issues - Need POC

The problem is that they are spoofing our IP, to millions of IP's running port 80. Making upstream providers filter it is quite difficult, i don't know all the upstream providers are used.  The main problem is honestly services that reports SYN_RECV as Port Flood, but there isn't much one can

Re: Reminiscing our first internet connections (WAS) Re: akamai yesterday - what in the world was that

On 1/27/20 3:06 PM, b...@theworld.com wrote: I remember going from 300b to 1200b and thinking wow, this is it, we're done, I cannot read text scrolling on the screen at 1200b. Other than the 75 and 110 baud teletypes that only did text, my first TCP/IP connection was 300b, back when we had to