On 20/11/2021 19:59, Michael Thomas wrote:
> but starving the beast doesn't have a great track record. We are talking
> about 20% of the address space that's being wasted so it's not nothing.
Starving the beast is actively working to make IPv4 cost-prohibitive. I
only wish those whom Jay refers
The log4j people have updated their security advisory to say that these
two mitigation measures are not sufficient to protect against the recent
vulnerability:
2. start java with "-D log4j2.formatMsgNoLookups=true" (v2.10+ only)
3. start java with "LOG4J_FORMAT_MSG_NO_LOOKUPS=true"
Thanks… That did find some additional packages hiding this scourge (about a
dozen or so packages,
around 100 packages removed after the dependency chains were resolved).
> On Dec 14, 2021, at 09:30 , Tyler Conrad wrote:
>
> Another handy one to find where it's hiding, since it can be bundled
> On Dec 14, 2021, at 06:54 , Doug McIntyre wrote:
>
> On Mon, Dec 13, 2021 at 11:38:04AM -0800, Owen DeLong via NANOG wrote:
>>> On Dec 11, 2021, at 04:11 , Nick Hilliard wrote:
> ...
>>> https://logging.apache.org/log4j/2.x/security.html
>>>
>>> 1. upgrade log4j to 2.15.0 and restart all
Another handy one to find where it's hiding, since it can be bundled inside
other JARs:
find / -name *.jar | xargs strings -f | grep -i log4j
On Tue, Dec 14, 2021 at 6:57 AM Doug McIntyre wrote:
> On Mon, Dec 13, 2021 at 11:38:04AM -0800, Owen DeLong via NANOG wrote:
> > > On Dec 11, 2021, at
Efficient-IP https://www.efficientip.com
Bluecat https://bluecatnetworks.com/
(both commercial)
. . . . . . . . . . . . . . . . . . . . . . . . .
Jethro R Binks, Network Manager,
Information Services Directorate, University Of Strathclyde, Glasgow, UK
The University
On Tue, Dec 14, 2021 at 10:12 AM Adam Thompson
wrote:
> > This may have been asked and answered, but I couldn’t find the answer.
>
> The answer changes every year, anyway.
>
> > What are people recommending these days for IP tracking systems? I’m
> > looking for something to track the
>From a previous run of this topic I made a wiki page and will copy paste
from it.
A list in no particular order
Mediawiki https://mediawiki.og
Netbox https://github.com/digitalocean/netbox
Ralph http://ralph.allegro.tech/
IPplan https://sourceforge.net/projects/iptrack/
Infoblox
> This may have been asked and answered, but I couldn’t find the answer.
The answer changes every year, anyway.
> What are people recommending these days for IP tracking systems? I’m
> looking for something to track the used/available IP addresses in my new
> lab.
FWIW, we use TeemIP/iTop,
We have used Gestio and like it. https://www.gestioip.net/
---
Regards,
David Funderburk
GlobalVision
On 2021/12/14 09:30, Mauricio Rodriguez via NANOG wrote:
> Shane, hi.
>
> This search turns up a few options:
> https://www.google.com/search?q=free+ipam.
>
> The commercial Infoblox
I've found success with NIPAP:
https://spritelink.github.io/NIPAP/
I've built some yaml-based templates and python-based loading tools that
populate everything from the VRF to the prefix pools and descriptions
etc... in a pretty complex setup. It's quite flexible, though you will
spend some time
On Mon, Dec 13, 2021 at 11:38:04AM -0800, Owen DeLong via NANOG wrote:
> > On Dec 11, 2021, at 04:11 , Nick Hilliard wrote:
...
> > https://logging.apache.org/log4j/2.x/security.html
> >
> > 1. upgrade log4j to 2.15.0 and restart all java apps
> > 2. start java with "-D
Shane, hi.
This search turns up a few options:
https://www.google.com/search?q=free+ipam.
The commercial Infoblox solution is great, and there's an eval on that list.
This one seems to be popular and complete: https://phpipam.net/.
Best Regards,
Mauricio Rodriguez
Founder / Owner
Fletnet
This may have been asked and answered, but I couldn’t find the answer.
What are people recommending these days for IP tracking systems? I’m looking
for something to track the used/available IP addresses in my new lab.
Thanks in advance.
Shane
On 29/11/2021 02:23, William Herrin wrote:
> This technique does in fact work for IPv6, allowing you to insert a
> firewall at the edge. Interestingly though, it won't receive IPv6
> packets for an address that isn't attached to a running instance in
> the interior subnet.
That sounds remarkably
15 matches
Mail list logo
