Re: CloudFlare Issues?

Did anyone see any collateral damage from this outside of Cloudflare? Specifically Azure? I manage a very large site in Azure, and at the exact same time of the Cloudflare incident we saw a spike in traffic (like a DDoS or Bot), then followed by unusual hardware resource anomalies. We’re

Re: CloudFlare Issues?

Once upon a time, Peter Kristolaitis said: > Cloudflare's status page acknowledged a recursive DNS issue as of a > few minutes ago.  Lots of reports of problems on the Outages list > and Reddit. It was not just recursive - authoritative DNS on Cloudflare servers also did not respond. -- Chris

Re: MX204 Rails

I tried the Juniper EX-4PST-RMK Kit and the holes do not line up with the MX204. Sent from my mobile device > On Jul 17, 2020, at 2:52 PM, Travis Garrison wrote: > > We have used these (purchased from ebay) as universal rails for different > products. Seemed a bit better than a shelf. > >

Re: CloudFlare Issues?

The team is working on it. _ *Justin Paine* Head of Trust & Safety PGP: BBAA 6BCE 3305 7FD6 6452 7115 57B6 0114 DE0B 314D 101 Townsend St., San Francisco, CA 94107 On Fri, Jul 17, 2020 at

CloudFlare Issues?

Anyone seeing Cloudflare DNS outages or site issues? Affecting a bunch of sites in Washington and Oregon. -A

Re: CloudFlare Issues?

> On Jul 17, 2020, at 5:38 PM, Chris Grundemann wrote: > > Looks like there may be something big up (read: down) at CloudFlare, but > their status page is not reporting anything yet. > > Am I crazy? Or just time to give up on the internet for this week? > > You’re not crazy. I’m seeing

Re: CloudFlare Issues?

CloudFlare updated their status page and confirmed the issue: https://www.cloudflarestatus.com/ -A On Fri, Jul 17, 2020 at 2:33 PM Aaron C. de Bruyn wrote: > More digging shows high latency to CloudFlare DNS servers from Comcast in > Washington and Oregon as well as a few other providers

Re: CloudFlare Issues?

From cloudflarestatus.com Cloudflare Network and Resolver Issues *Investigating* - Cloudflare is investigating issues with Cloudflare Resolver and our edge network in certain locations. Customers using Cloudflare services in certain

Re: CloudFlare Issues?

Cloudlflare's status page shows they are investigating an issue. Discord's status page also shows Cloudflare has an issue. Most people aren't making the Cloudflare connection yet and reporting many other services down instead. On Fri, Jul 17, 2020 at 4:40 PM Chris Grundemann wrote: > Looks like

Re: CloudFlare Issues?

Cloudflare's status page acknowledged a recursive DNS issue as of a few minutes ago.  Lots of reports of problems on the Outages list and Reddit. From their status page: *Investigating*- Cloudflare is investigating issues with Cloudflare Resolver and our edge network in certain locations.

RE: CloudFlare Issues?

My sites appear to be normal. Maybe it’s time for happy hour? Thank you, Spencer From: NANOG On Behalf Of Chris Grundemann Sent: Friday, July 17, 2020 4:39 PM To: NANOG list Subject: CloudFlare Issues? CAUTION: This email originated from an external source. Verify the sender before taking

Re: CloudFlare Issues?

Chris Grundemann wrote on 7/17/2020 2:38 PM: Looks like there may be something big up (read: down) at CloudFlare, but their status page is not reporting anything yet. Am I crazy? Or just time to give up on the internet for this week? -- @ChrisGrundemann http://chrisgrundemann.com Status

RE: CloudFlare Issues?

https://www.cloudflarestatus.com/ From: NANOG On Behalf Of Chris Grundemann Sent: Friday, July 17, 2020 4:39 PM To: NANOG list Subject: CloudFlare Issues? *External Email: Use Caution* Looks like there may be something big up (read: down) at CloudFlare, but their status page is not

Re: CloudFlare Issues?

I think they were down for about 30 or so minutes, but came back up right about the time you hit the send button --Rob McEwen On 7/17/2020 5:38 PM, Chris Grundemann wrote: Looks like there may be something big up (read: down) at CloudFlare, but their status page is not reporting anything yet.

Re: CloudFlare Issues?

More digging shows high latency to CloudFlare DNS servers from Comcast in Washington and Oregon as well as a few other providers (Charter, ToledoTel), etc... Sites that do resolve using other DNS servers but are hosted on CloudFlare aren't loading. Sites that use CloudFlare for their DNS aren't

CloudFlare Issues?

Looks like there may be something big up (read: down) at CloudFlare, but their status page is not reporting anything yet. Am I crazy? Or just time to give up on the internet for this week? -- @ChrisGrundemann http://chrisgrundemann.com

Re: Wifi Calling Firewall Holes to Punch

In our university environment, wifi calling works just fine over NAT and we have not made any inbound port exceptions in the firewall for it. The critical piece for (non-enterprise) VoIP traffic is that your firewall must not try to function as a SIP ALG, but I'm not sure that's directly relevant

Re: Wifi Calling Firewall Holes to Punch

On 17/Jul/20 22:09, Josh Luthman wrote: > I do dozens of VZW WiFi calls a day.  My phone is behind NAT, no problem. > > It's probably 50/50 where the call starts on WiFi vs switches to WiFi > after ~3 seconds from the poor VZW signal. Same here, one of my cell operators uses VoWiFi for their

Re: Wifi Calling Firewall Holes to Punch

I do dozens of VZW WiFi calls a day. My phone is behind NAT, no problem. It's probably 50/50 where the call starts on WiFi vs switches to WiFi after ~3 seconds from the poor VZW signal. Josh Luthman Office: 937-552-2340 Direct: 937-552-2343 1100 Wayne St Suite 1337 Troy, OH 45373 On Fri, Jul

RE: MX204 Rails

We have used these (purchased from ebay) as universal rails for different products. Seemed a bit better than a shelf. https://www.apc.com/shop/us/en/products/APC-4-Post-Rackmount-Rails/P-SU032A Thanks Travis -Original Message- From: NANOG On Behalf Of Cory Andrews Sent: Thursday,

Verizon FIOS DNS contact?

Hi Folks, Is there a contact I could chat with regarding fios dns not resolving one of our domains correctly. DNS servers in question are 71.252.0.12 71.252.0.14 Those servers are doing the NXDOMAIN redirect(searchassistant) to a domain that does exist. Ping me offlist please. Thank you for

Weekly Routing Table Report

This is an automated weekly mailing describing the state of the Internet Routing Table as seen from APNIC's router in Japan. The posting is sent to APOPS, NANOG, AfNOG, SANOG, PacNOG, SAFNOG TZNOG, MENOG, BJNOG, SDNOG, CMNOG, LACNOG and the RIPE Routing WG. Daily listings are sent to

Re: Wifi Calling Firewall Holes to Punch

It's been a minute since I've set this up in a corp/campus wifi scenario, but my notes for Verizon VoWiFi from the last time I did say that you need outbound udp/500 and udp/4500 IPSec protocol (IKE and ESP) permitted out the firewall. Tunnel endpoints live in 141.207.0.0/16, so hopefully that

Re: BFD for long haul circuit

On 17/Jul/20 18:42, Tom Hill wrote: > Yes, I rather think that you've drawn comparison to "consumer" as being > in a home somewhere. > > Someone that consumes a circuit, and someone that provides the service > (or resells one). A business customer is a consumer in that case - I > won't

Re: BFD for long haul circuit

On 17/07/2020 16:40, Mark Tinka wrote: > I don't know of "Consumers" that buy l2vpn's. Most consumers usually go > for ADSL, FTTH or 4G... all carrying IP :-). > > We have several customers that buy EoMPLS circuits from us both within > and outside of countries, and between continents. The

Wifi Calling Firewall Holes to Punch

Hey gang. We're setting up a unified wireless network for the students here, and to get around the issues with Nintendo and NAT we devoted a large chunk of public IP space to them. We're aware that this is causing issues with wifi calling on Verizon, TMo etc because it appears they initiate

RE: BFD for long haul circuit

Classification:Internal Hi Mark, Thanks for the update. You have any backhauls, that is running over an L2 xconnect ? I’m facing issue only on the backhaul link over a l2vpn ckt. Ta, From: NANOG On Behalf Of Mark Tinka Sent: Thursday, July 16, 2020 8:35 PM To: nanog@nanog.org Subject: Re:

Re: MX204 Rails

Have you tried the Juniper EX-4PST-RMK Rail Kit?  It is listed as compatible with Juniper EX and QFX compatible, but appears to be potentially the same as the slide rail kit that comes with the MX series devices. Cory J Andrews NetEquity.com 793 Center St. #551 Lewiston, NY 14092 877-582-4726

Re: BFD for long haul circuit

On 17/Jul/20 17:12, Nick Hilliard wrote: > > I was going to suggest that there wasn't much in the way of consumer > grade international circuits, so why would you even bring this up?  > But then I lol'd. Now you have me wondering whether Tom was serious or not :-). It's time for my Friday

Re: BFD for long haul circuit

On 17/Jul/20 17:06, Tom Hill wrote: > The differentiation is: consumer vs. service provider. > > If you're a service provider, don't buy a consumer product and hope to > sell it on at a similar (or higher) SLA rate to other consumers; that > way lies ruin. I don't know of "Consumers" that buy

Re: BFD for long haul circuit

Tom Hill wrote on 17/07/2020 16:06: If you're a service provider, don't buy a consumer product and hope to sell it on at a similar (or higher) SLA rate to other consumers; that way lies ruin. I was going to suggest that there wasn't much in the way of consumer grade international circuits, so

Re: BFD for long haul circuit

On 17/07/2020 10:57, Mark Tinka wrote: > I suppose a lot of customers go for it because they need an Ethernet > service slower than 1Gbps, and 1Gbps via a DWDM service is pricier. > > Where I've seen it be popular is in intercontinental circuits that > customers want in order to test a market

Re: BFD for long haul circuit

On 17/Jul/20 11:50, Robert Raszuk wrote: > > Fortunately very fortunately Mark. Hehe, I meant in the context of not having a similar condition as the OP. > L2VPNs running on someone's IP backbone sold by many as "circuits" has > many issues ... stability, MTU blackhols, random drops -

Re: BFD for long haul circuit

> Unfortunately not. Fortunately very fortunately Mark. L2VPNs running on someone's IP backbone sold by many as "circuits" has many issues ... stability, MTU blackhols, random drops - and that is pretty much the same all over the world :( Very unfortunate technology just to mux more users

Re: BFD for long haul circuit

On 17/Jul/20 02:37, Harivishnu Abhilash wrote: >   > > Thanks for the update. You have any backhauls, that is running over an > L2 xconnect  ? I’m facing issue only on the backhaul link over a l2vpn > ckt.  > Unfortunately not. All our backbones are either over dark fibre or EoDWDM. Mark.