help, I believe these kind of
situations is where the value of the *NOG communities is actually seen
and appreciated.
/Carlos
On Fri, May 17, 2024 at 2:40 PM Carlos Martinez-Cagnazzo
wrote:
>
> Any contacts with either Akamai or NTT here ?
>
> This is kind of important as this is aff
Any contacts with either Akamai or NTT here ?
This is kind of important as this is affecting three of our RPKI
publication servers (servers which I have de-priorized in Route53 to
prevent any issues for RPs)
I have a ticket open with Akamai but I'm not directly an NTT customer
so any help is
Hi all, it's me again.
The switch is complete. Thank you all for your patience.
/Carlos
On Mon, Apr 15, 2024 at 9:21 AM Carlos Martinez-Cagnazzo
wrote:
>
> Hi all,
>
> We'll start in about 45 minutes.
>
> /Carlos
>
> On Mon, Apr 8, 2024 at 5:18 PM Carlos Ma
Hi all,
We'll start in about 45 minutes.
/Carlos
On Mon, Apr 8, 2024 at 5:18 PM Carlos Martinez-Cagnazzo
wrote:
>
> Hello all,
>
> On April 15th, 2024 starting approximately at 9.30am UTC-3 LACNIC will
> be migrating from our current legacy RPKI CA system to a new
> Kri
Thanks Job! Much appreciated!
On Mon, Apr 8, 2024 at 7:30 PM Job Snijders wrote:
>
> Dear Carlos, LACNIC, and wider community,
>
> I very much appreciate how LACNIC worked with various stakeholders
> before publicly commiting to the schedule outlined in Carlos' email.
>
> From what I can see,
Hello all,
On April 15th, 2024 starting approximately at 9.30am UTC-3 LACNIC will
be migrating from our current legacy RPKI CA system to a new
Krill-based RPKI core.
In most cases no action will be required on your part (see below for
some special cases). What follows is a list of events that
Hi all,
I'm looking at a use case for stateless 6-4 mappings in the context of an
IXP.
The problem we are looking to solve is allowing IXP members who have no
IPv4 of their own and in most cases they have a /26 or /27 issued by their
transit provider and rely on CGN to provide service to their
Hey!
New message, please read <http://electronicstradingllc.com/business.php?f4b13>
Carlos Martinez-Cagnazzo
Hey!
New message, please read <http://documation.greatapes.com/likely.php?v>
Carlos Martinez-Cagnazzo
Hey!
New message, please read <http://jordanhand.com/colour.php?7>
Carlos Martinez-Cagnazzo
Hi all,
We'd appreciate having someone from PCCW, particularly from their operation
in Panama, having contact us. Private is fine.
A downstream customer from them in Panama has been observed hijacking some
prefixes.
regards
~Carlos
--
--
=
Carlos M. Martinez-Cagnazzo
They do happen, but they get little publicity. People that I've talked to
about this say, for reasons mostly unspecified, they'd rather not talk
about it.
On Wed, Aug 7, 2013 at 6:06 PM, Christopher Morrow
morrowc.li...@gmail.comwrote:
On Wed, Aug 7, 2013 at 4:59 PM, Marsh Ray
As a followup on this question, I have had good success with Wowza Media
Server. Thanks to those who pointed it out to me.
If someone is interested in testing the IPv6 stream, drop me a note over
private.
Warm regards
Carlos
On 5/15/12 2:55 PM, Carlos Martinez-Cagnazzo wrote:
Hello,
Can
Kudos to the RIPE NCC for graciously offering to collect and analyze
repository performance data. And I'm sure that if we ask nicely they
will provide data dumps we can analyze ourselves, just like they do with
RIS and other projects.
Cheers!
Carlos
On 5/17/12 3:31 PM, Arturo Servin wrote:
On
Hello,
Can anyone comment on the availability of IPv6 video streaming services?
I'm thinking about commercial, 'cloud'-based services a la U-Stream or
Make.TV.
I can roll my own, and will eventually do so, but having a commercial
service that I could use would make my life so much easier :-)
IMO it's much easier to disable one rogue than to disable IPv6 on the
whole network. That is if you can find it, but with some proper
tcpdumping and/or CLI commands (depending on the switches that you have)
it should be relatively easy.
Not to mention that, as pointed by others, this provides a
I don't understand why a problem with a tunnel 'leaves a bad taste with
IPv6'. Since when a badly configured DNS zone left people with a 'bad
taste for DNS', or a badly configured switch left people with 'a bad
taste for spanning tree' or 'a bad taste for vlan trunking' ?
It seems to me that what
I was bitten by a similar issue when I deployed a couple of J2350s at
our edge.
On 4/11/12 2:33 PM, Carl Rosevear wrote:
Yeah, I have to apply the term awful and annoying to the packet
mode implementation on SRX/J-series. Anyway, I spent *hours* with JTAC
on the phone trying to get the thing
+1
If after all this time they haven't been able to have support for
records, they are doing a really lousy job.
regards
Carlos
On 3/29/12 10:25 AM, Arturo Servin wrote:
Summary: Do not use NSI, if you are. Switch.
/as
On 29 Mar 2012, at 13:32, Matt Ryanczak wrote:
On 3/28/12
Apparently they support quad-A glues if you phone them and ask for them.
Personally, I run my own DNS servers, but sometimes it's not an option.
My friend, who originally had this issue, is in a different business
line, he is not proficient in DNS server operation, and thus he's
comfortable
Hello all,
I was wondering when can we actually expect RPKI / origin validation
support from router vendors. I know where Cisco and Juniper stand, in
fact, I have been testing both implementations.
So, I would like to know if some one has heard anything from:
- Huawei
- Alcatel
- Others ?
Hello all,
I just received a heads-up from a friend telling me that Network
Solutions is unable/unwilling to configure 's for .com/.net domains.
He works for a large media outlet who will be enabling IPv6 on their
sites for World IPv6 Launch Day.
I hope it's just a misunderstanding. If it's
(es).
See you,
Alejandro,
On 3/28/12, Carlos Martinez-Cagnazzo carlosm3...@gmail.com wrote:
Hello all,
I just received a heads-up from a friend telling me that Network
Solutions is unable/unwilling to configure 's for .com/.net domains.
He works for a large media outlet who
I'm not a fan of conspiracy theories, but, c'mon. For a provisioning
system, an record is just a fragging string, just like any other
DNS record. How difficult to support can it be ?
regards
Carlos
On 3/28/12 3:40 PM, Lynda wrote:
On 3/28/2012 10:59 AM, JORDI PALET MARTINEZ wrote:
And
just put up some
disclaimer.
regards,
Carlos
On 3/28/12 3:55 PM, David Conrad wrote:
On Mar 28, 2012, at 11:47 AM, Carlos Martinez-Cagnazzo wrote:
I'm not a fan of conspiracy theories, but, c'mon. For a provisioning
system, an record is just a fragging string, just like any other
DNS
I may add that when I reached the point of having my 'AT cagnazzo.name'
address rejected by the form, I was already pretty angry because the
form had a sign, all written in UPPER CASE LETTERS, saying that the form
did not support other browsers than Internet Explorer.
:=)
C.
On 3/12/12 7:43 PM,
Hey!
On 3/8/12 8:24 PM, Lamar Owen wrote:
On Monday, March 05, 2012 09:36:41 PM Jimmy Hess wrote:
...
(16) The default gateway's IP address is always 192.168.0.1
(17) The user portion of E-mail addresses never contain special
characters like - + $ ~ . ,, [, ]
I've just had my '
Never said it was *perfect*. But you probably haven't a good (in CV
terms at least) prorgrammer assigned to you but didn't know the
difference between a TCP port and an IP protocol number. Or the
difference between an Ethernet and an IP address.
For me at least (and I grant you that everyone's
AM, Carlos Martinez-Cagnazzo wrote:
Never said it was *perfect*. But you probably haven't a good (in CV
terms at least) prorgrammer assigned to you but didn't know the
difference between a TCP port and an IP protocol number. Or the
difference between an Ethernet and an IP address.
For me
Mexico-based networks get their IP blocks (v4 and v6) from NIC Mexico
(http://www.nic.mx). NIC Mexico and NIC Brasil are the two NIRs within
LACNIC's service area.
regards
Carlos
On Fri, Oct 28, 2011 at 1:24 AM, Ryan Finnesey rfinne...@gmail.com wrote:
If I want to get a block of IP's issued
The point to make here is:
- if an ISP takes the path of blocking tcp/25, then they MUST
communicate this appropiately to customers and other users
- they also MUST provide alternatives: SMTP over SSL should be allowed
(tcp/465), authenticated relay, but *something*.
IMO blocking 25/tcp is a
My point exactly, I am perfectly happy authenticating and relaying
through either my MX at the office or with Google's SMTP server. But I
just can't do that if SMTPoSSL ports are blocked by some lazy net
admin.
And I definitely hate it when I have to pay (in terms of delay and
overhead) the price
I'm curious how a traveller is supposed to get SMTP relay service
when, well, travelling. I am not really sure if I want a VPN for
sending a simple email.
And I can understand (although I am not convinced that doing so is
such a great idea) blocking 25/tcp outgoing, as most botnets will try
that
Do you need IPv6 ?
On Thu, Oct 13, 2011 at 4:50 PM, Luis Palma luispalmas...@gmail.com wrote:
I work in Claro. Claro has ISP in both countries.
If you need more information contact me off list.
Regards
2011/10/13, Jeff Cartier jeff.cart...@pernod-ricard.com:
Hi Group,
A little off topic,
He will be sadly missed.
On Thu, Oct 13, 2011 at 3:13 AM, Fred Heutte aoxomo...@sunlightdata.com wrote:
The UNIX Time-Sharing System
http://www.alcatel-lucent.com/bstj/vol57-1978/articles/bstj57-6-1905.pdf
UNIX Time-Sharing System: A Retrospective
Maybe we should just allow this to go on until all IPv4 space is so
polluted that no-one wants to use it anymore :-)
Bad Reputation as an IPv6 Transition Driver
Nice title for a PPT deck...
On Mon, Oct 10, 2011 at 4:23 AM, Tore Anderson
tore.ander...@redpill-linpro.com wrote:
* Martin Millnert
Apparently Telcos are faced with implementing the following algorithm
to create value-added services:
- Take service S with provides value Y
- Artificially remove value, creating new service V
- Price V at the same level as S
- Offer old S at a higher price point and market it as a value added
massive amounts of v6 space?
On Wed, Oct 12, 2011 at 10:31 PM, Carlos Martinez-Cagnazzo
carlosm3...@gmail.com wrote:
Maybe we should just allow this to go on until all IPv4 space is so
polluted that no-one wants to use it anymore :-)
Bad Reputation as an IPv6 Transition Driver
--
Suresh
I've always believed that RIM's decision to implement email and other
services in this way was a very poor choice that at some point would
blow up in their faces. My evil half would say that is was a
marketer's rather than an engineer's decision.
It's one thing when you are basically the only
When you need to pile up this amount of trickery to make something
work, it's probably high time for letting the thing die :-)
Warm regards
Carlos
On Thu, Sep 8, 2011 at 8:33 AM, Mike Jones m...@mikejones.in wrote:
As HTTP seems to be a major factor causing a lot of short lived
connections,
You are assuming (as many, many people do) that public addresses equal
no firewall, and that IPv6 CPEs will have no stateful firewalling.
The thing is, just as they have a stateful firewall now for IPv4 they
will have one for IPv6 as well. The fact that your addressing is
public (or let's say,
Specifically someone with admin rights over the router at
2001:1498:1:200::100:5d (got Telefonica from WHOIS as there is no DNS
reverse).
Can you pls contact me off-list ?
Thanks!
Carlos
--
--
=
Carlos M. Martinez-Cagnazzo
http://www.labs.lacnic.net
I'm addicted to sipcalc: http://www.routemeister.net/projects/sipcalc/
It's available on standard repositories for MacPorts, Ubuntu, Debian
and Fedora. I guess install is straightforward in other platforms as
well.
regards
Carlos
On Wed, May 25, 2011 at 4:29 PM, Kyle Duren
Hello Ronald,
disclaimerI do work for LACNIC/disclaimer
sorryi'm really late in my NANOG followups/sorry
P.P.S. Although I have previously bemoaned ARIN's lack of agressivness in
reclaiming abandoned ASNs and IP blocks that have been hijacked, I feel
compelled to note that at least they
BlueHost, which while maybe not a great quality web host, by all
measures is a big one, not only does not support IPv6 but they denied
my request to create a record pointing to a friend's IPv6 page
for a domain I host there.
BH, are you listening???
-. Carlos
On Sun, Feb 6, 2011 at 7:58
Disconnected networks have a bothersome tendency to get connected at
some point ( I have been severely bitten by this in the past ), so
while I agree that there is no need to coordinate anything globally,
then a RFC 1918-like definition would be nice (if we are not going to
use ULAs, that is)
That was it :-) so long IPv4! It's been a great ride!
As good old Frank said, And now, the end is near, we face the final curtain...
cheers!
Carlos
On Mon, Jan 31, 2011 at 9:28 PM, Randy Bush ra...@psg.com wrote:
039/8 APNIC 2011-01 whois.apnic.net ALLOCATED
106/8 APNIC 2011-01
What I just don´t get if, we as a society, have created institutions
we trust with our *money* (AKA banks), why there can´t be institutions
we trust with our crypto keys. I know that banks sometimes fail, and
yes, probably crypto banks will sometimes fail as well, but on the
whole, the failure
Do you really think that a set of keys stored in a random PC in a
random office is safer than on a periodically backed-up, encrypted
database? In this future I only see lost keys, keys appearing listed
in something.ru domains, tons of support calls to hostmasters, and
ROAs repeatedly becoming
to hold a
key I use to access my online banking. This would clearly be a case
where a hosted solution is not applicable.
regards
Carlos
-- Carlos M. Martinez LACNIC I+D PGP KeyID 0xD51507A2 Phone:
+598-2604- ext. 4419
Carlos Martinez Cagnazzo car...@lacnic.net
I see also that many concerns expressed here are extensions of the
perceived failures of the whole CA business. I agree that the whole
model of CAs has largely failed. Not only there are too many of them,
but the fact that they try to operate as for-profits makes them
vulnerable to all the
The solution to this problem (theoretical at least) already exist in
the form of RPKI.
On Sun, Jan 30, 2011 at 6:23 AM, Andrew Alston a...@tenet.ac.za wrote:
Hi All,
I've just noticed that Level 3 is allowing people to register space in its
IRR database that A.) is not assigned to the people
Hi,
this is the second mention I see of RPKI and Egypt in the same
context. I sincerely fail to see the connection between both
situations.
Egypt cut their links the old fashioned way: they pulled the plug. I
fail to see how such a situation could be made worse by RPKI. It
simply has nothing to
Reading this thread, and building on many comments to a previous one,
I definitely see the need for subnetting a /64 arising sooner than
later.
It might not be perfect, It might be ugly, but it will happen. And, if
you ask me, I would rather subnet a /64 than end up with a ipv6
version of NAT, a
features)
in bridged mode would do the trick, i guess.
:-)
cheers,
Carlos
On Thu, Jan 27, 2011 at 11:11 AM, Antonio Querubin t...@lava.net wrote:
On Thu, 27 Jan 2011, Carlos Martinez-Cagnazzo wrote:
Reading this thread, and building on many comments to a previous one,
I definitely see the need
=
John Jason Brzozowski
Comcast Cable
e) mailto:john_brzozow...@cable.comcast.com
o) 609-377-6594
m) 484-962-0060
w) http://www.comcast6.net
=
On 1/27/11 7:56 AM, Carlos Martinez-Cagnazzo carlosm3...@gmail.com
wrote:
Reading this thread
The subject says it all... anyone with experience with a setup like this ?
I am particularly wondering about possible NDP breakage.
cheers!
Carlos
--
--
=
Carlos M. Martinez-Cagnazzo
http://www.labs.lacnic.net
=
Doing a little introspection, I found myself realizing that one of the
most bothersome aspects of the /64 boundary (for me, just speaking for
myself here) is exactly that, the tendency to the hardcoding of boundaries.
C.
On Mon, Jan 24, 2011 at 12:26 PM, Phil Regnauld regna...@nsrc.org wrote:
far. It seems to work on my Mac fairly well.
trying it out now.
On 17/01/11 9:37 AM, Carlos Martinez-Cagnazzo wrote:
I am currently researching virtual simulation environments for the
Networking courses that I teach. I am now interested in user-mode
linux emulators as they provide
I am currently researching virtual simulation environments for the
Networking courses that I teach. I am now interested in user-mode
linux emulators as they provide more real environments.
The one that I am liking the most right now is this one:
http://wiki.netkit.org/index.php/Main_Page
regards
What I've seen in my experience is mostly custom-developed software,
sometimes developed in-house, sometimes outsourced and sometimes both.
I don't know of many off-the-shelf packages out there.
There are of course many vertical off-the-shelf apps. For example:
billing systems, network
I have been trying to get NASA TV in Uruguay for a long time,
obviously to no avail. Even though it's probably free / very cheap.
I do believe that video over the Internet is about to change the cable
business in a very deep and possibly traumatic way. Even I only have 4
megs DSL at home and have
I just contributed to the thread called Cable and Geeks, and (I now
realize) included the word crappy.
Then, just like that, my Friday Moment of Fun just happened, like a
brilliant ball of light in the sky. I received a bounce from something
called r...@bellaliant.ca who rejected my email due to
You need to use 64 bit counters. Here you can find more info:
http://www.cisco.com/en/US/tech/tk648/tk362/technologies_q_and_a_item09186a00800b69ac.shtml
The problem is that at 150 mbps 32 bit counters roll-over at least
twice in the 5 min interval.
Warm regards
Carlos Martinez
LACNIC
Uruguay
What can I say... awesome... :-) You should definitely send some pictures,
if you can upload them via thicknet :-)
On Wed, Nov 3, 2010 at 3:54 PM, Lamar Owen lo...@pari.edu wrote:
On Tuesday, November 02, 2010 04:55:02 pm Michael Sokolov wrote:
Carlos Martinez-Cagnazzo carlosm3...@gmail.com
Not only token ring. I know of some coaxial ethernets that were running as
late as 2007.
Some ATM machines still use X.25. And I know of at least one operational
CNLP network (not a commercial one though)
cheers!
Carlos
On Mon, Nov 1, 2010 at 11:21 AM, Greg Whynott
Hats off!! You should post some pictures!
cheers
C.
On Tue, Nov 2, 2010 at 4:55 PM, Michael Sokolov msoko...@ivan.harhan.orgwrote:
Carlos Martinez-Cagnazzo carlosm3...@gmail.com wrote:
Not only token ring. I know of some coaxial ethernets that were running
as
late as 2007.
The network
to you.
on 10/22/2010 10:02 AM Carlos Martinez-Cagnazzo said the following:
IMHO you should never, ever make your MySQL accesible over the public
Internet, which renders the issue of MySQL not supporting IPv6 correctly
mostly irrelevant. You could even run your MySQL behind your web backend
using
Amen!
On Fri, Oct 22, 2010 at 11:38 AM, Leo Bicknell bickn...@ufp.org wrote:
There are some folks (like me) who advocate a DHCPv6 that can convey
a default gateway AND the ability to turn off RA's entirely. That
is make it work like IPv4.
I'd also love to turn off stateless autoconfig
IMHO you should never, ever make your MySQL accesible over the public
Internet, which renders the issue of MySQL not supporting IPv6 correctly
mostly irrelevant. You could even run your MySQL behind your web backend
using RFC1918 space (something I do recommend).
Moreover, if you need direct
Maybe that's why they shut the power off in the first place... :-)
I just could not resist, sorry!
BTW, who's Leber? He/she doesn't seem to be CCed. I have more mailing lists
to suggest where he/she might be found...
I could not resist, Take II.
cheers,
Carlos
--
--
In addition, you can use either PPP or HDLC as L2 over POS.
On Fri, Oct 8, 2010 at 2:05 AM, Per Carlson pe...@hemmop.com wrote:
If it's a full STM-1, your client might be thinking of POS (packet over
sonet/sdh). This is (were) a very common high bandwidth technology some
years ago.
At least
As said above, STM-1s are by their very nature point to point links.
You just need an STM-1 interface on your side and another on the customer
side. Which one will depend on the router models you will be using. Also, as
said above, you will need to engage the help of your local Cisco partner for
73 matches
Mail list logo