Hey all, if any Verizon engineer could hit me up offline about a ticket
we've had, it would be appreciated. We've got a site in Illinois that has a
new circuit, works well to Verizon speedtest, but poor elsewhere, including
our SD-WAN destinations. I'm curious if UDP/2426 gets any unusual
y,
the 23" extension ears from Cisco are serious and my router chassis' don't sag.
Mark
On 4/27/2023 10:04 AM, Chris Marget wrote:
On Thu, Apr 27, 2023 at 9:53 AM Chuck Church mailto:chuckchu...@gmail.com> > wrote:
for a Cisco ASA1001, there aren’t rails, but rather front and
Hey all. Question about standard 4 post racks. We bought some that are
adjustable. Unfortunately, the posts are very flimsy, as these are some
fancy cabinets with spacing on the sides for vertical patch panels, etc. We
found that 2 post mounting of most Cisco devices (namely Cat 9500 1RU
Can anyone from Cogent hit me up off-list? Having an issue in South America
getting packets to our site in Brazil. Traceroute shows route though a
Cogent router, then RFC1918 replies. So not sure if problem is Cogent or a
peer of theirs. Two hosts in the 177.10.168.124/30 are acting
NANOG,
Sorry if this is the wrong forum, but I figured we could all
use a distraction from IPV4 expansion for a bit. We're facing a problem
with corporate use of browsers and google location services. Our users
across North and South America seem to be getting location info
If anyone has access to a Google Nest engineer could you pass their info to
me offline? Going through tech support didn't get me anywhere. We're
seeing that their cameras and the cloud servers they home back to
(oculus-xxx.dropcam.com) are using TLS 1.0 and no server name in the certs,
which our
Isn’t this a better topic for CNet as opposed to NANOG?
Chuck
From: NANOG On Behalf Of
ITechGeek
Sent: Friday, September 11, 2020 4:12 PM
To: nanog@nanog.org
Subject: Re: Wildfires: Reminder smart devices don't include emergency warnings
while streaming
At least cell phones have a
You mean not everyone still looks up the classifications on
mulletsgalore.com?
Chuck
On Wed, May 13, 2020, 7:54 PM Valdis Klētnieks
wrote:
> On Wed, 13 May 2020 10:40:36 +0300, Denys Fedoryshchenko said:
> > What about introducing some cache offloading, like CDN doing? (Google,
> > Facebook,
Isn't this a topic for an outage list? Or a power grid list?
Chuck
On Wed, Oct 9, 2019, 5:28 PM Sean Donelan wrote:
> On Wed, 9 Oct 2019, William Herrin wrote:
> > Wasn't California in a similar mess 20 years ago when government
> regulation
> > at the time also put PG in the position that
Are you sure the problem isn’t NTT? My buddy’s WISP peers with Spirit and had
a boatload of problems with random packet loss affecting initially just SIP and
RTP (both UDP). Spirit was blaming NTT. Problems went away when Spirit
stopped peering with NTT yesterday. Path is through Telia now
When I first started working with Cisco products (around 1999) I came upon
a router doing NAT for internet access that used a discontiguous mask to
determine which address to PAT the hosts against as they were doing some
creative load balancing. It worked really well, no matter what part of the
Under 1K for 48 10G ports? Are you missing a decimal place?
Chuck
-Original Message-
From: NANOG On Behalf Of Mike Hammett
Sent: Sunday, November 25, 2018 9:39 AM
To: 'North American Network Operators' Group'
Subject: Cheap switch with a couple 100G
I keep hearing how cheap 100G is
I've had problems with my Synology router and tunnel broker for several
days. Used to work, config didn't change, assigned IPv4 address for me
didn't change, but acting flakey, not much debugging capability on Synology
I can find to figure it out.
Chuck
-Original Message-
From: NANOG
I smell some BS here, at least in their 'Verified Purchase' reviews:
"It is installed as a network hub in my basement and it is working fine. Great
quality product. I've had a lot of business with FS for years. This is a very
reliable company and they stand behind their company's products with
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Ricky Beam
Sent: Thursday, December 28, 2017 9:55 PM
To: Owen DeLong
Cc: NANOG list
Subject: Re: Waste will kill ipv6 too
>Every scenario everyone has come up with is
Maybe a silly idea, but shouldn't the sale of a block of addresses (RIR
ownership change) trigger a removal of that block from all reputation list
databases? If I buy a car from a police auction, I'm fairly sure the FBI
doesn't start tailing me, because the car was once used for less than
That bug note indicates all 3.13.* are vulnerable to this, but our 3.13.3 lab
router seemed ok, no reload. Logged:
Dec 31 23:59:59: %IOSXE-5-PLATFORM: R0/0: kernel: Clock: inserting leap second
23:59:60 UTC
But the release notes seem to indicate that bugs:
CSCut82336 ASR1002-X: Handle
Foul language is frowned upon.
https://www.nanog.org/list
Chuck
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of James Bensley
Sent: Wednesday, July 13, 2016 4:24 AM
To: nanog
Subject: Re: IX in Iran by TIC
On 12 July 2016 at 14:36, Bevan
.
Chuck
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Scott Weeks
Sent: Friday, June 10, 2016 5:55 PM
To: nanog@nanog.org
Subject: RE: Netflix banning HE tunnels
--- chuckchu...@gmail.com wrote:
From: "Chuck Church" <chuckchu...@gmail.com>
Th
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Elvis Daniel Velea
Sent: Tuesday, June 07, 2016 6:36 PM
To: nanog@nanog.org
Subject: Re: Netflix banning HE tunnels
Netflix, YOU are the ones forcing people to turn IPv4 off... this is just
insane. tens (if not
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Leo Bicknell
Sent: Monday, May 16, 2016 10:28 AM
To: nanog@nanog.org
Subject: Re: Cost-effectivenesss of highly-accurate clocks for NTP
>For a typical site, there are two distinct desires from the same NTP
-Original Message-
>From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Leo Bicknell
>Sent: Wednesday, May 11, 2016 9:31 AM
>To: nanog@nanog.org
>Subject: Re: NIST NTP servers
>Personally, my network gets NTP from 14 stratum 1 sources right now.
>You, and the hacker, do not know
-Original Message-
From: Gary E. Miller [mailto:g...@rellim.com]
Sent: Tuesday, May 10, 2016 3:58 PM
To: Chuck Church <chuckchu...@gmail.com>
Cc: 'Majdi S. Abbas' <m...@latt.net>; nanog@nanog.org
Subject: Re: NIST NTP servers
Yo Chuck!
On Tue, 10 May 2016 10:29:35 -0400
&
True, but I did mention verifying packet sources. That needs to happen
everywhere, and it's not hard to do. Just getting everyone to do it is tough.
Chuck
-Original Message-
From: Allan Liska [mailto:al...@allan.org]
Sent: Tuesday, May 10, 2016 10:40 AM
To: Chuck Church <chuck
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Majdi S. Abbas
> So how does this stop from distributing time to their customers via
NTP?
> GPS doesn't save the protocol, in particular where the S1 clocks
involved are embedded devices with rather
--
Hi Nick,
>You missed the point. Sloppy memory management is a "canary in a coal mine."
>It's a user-visible symptom that reflects poor code quality underneath.
>Programmers who
Uggghhh. I've always hated this 'reboot, see if it fixes it' methodology. If
the CPEs can't recover from error conditions correctly, they shouldn't be used.
I blame Microsoft for making this concept acceptable. LOL.
Chuck
-Original Message-
From: NANOG
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Tim McKee
>The factor of 6 was just in reduction of overhead. Granted in the greater
scheme of things the overall 4% is relatively insignificant, but there have
been many times when doing >multiple 10-100+GB
-Original Message-
From: Mark Andrews [mailto:ma...@isc.org]
Sent: Thursday, December 17, 2015 7:46 PM
To: Chuck Church <chuckchu...@gmail.com>
Cc: 'Matthew Petach' <mpet...@netflight.com>; 'North American Network
Operators' Group' <nanog@nanog.org>
Subject: Re: Nat
&g
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Matt Palmer
Sent: Sunday, December 20, 2015 10:29 PM
To: nanog@nanog.org
Subject: Re: Nat
>Depends on how many devices you have on it. Once you start filling your
home with Internet of Unpatchable Security Holes
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Matthew Petach
Sent: Thursday, December 17, 2015 1:59 PM
Cc: North American Network Operators' Group
Subject: Re: Nat
>I'm still waiting for the IETF to come around to allowing feature parity
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Dave Taht
Sent: Wednesday, December 16, 2015 4:37 AM
To: William Herrin
Cc: NANOG
Subject: Re: reliably detecting the presence of a bridge?
The latter.
In this case a routing
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of
valdis.kletni...@vt.edu
Sent: Tuesday, November 24, 2015 11:47 AM
To: Mark Andrews
Cc: nanog@nanog.org
Subject: Re: DHCPv6 PD & Routing Questions
>If you have a *workable* solution for the case
Hey!
New message, please read <http://accentbanking.com/mention.php?ypoz>
Chuck Church
Hey!
New message, please read <http://mixmajor.com/reached.php?518zu>
Chuck Church
Hey!
New message, please read <http://shophorseplay.com/does.php?7m1ds>
Chuck Church
Hey!
New message, please read <http://sibzem.ru/woman.php?57>
Chuck Church
Any hotel wi-fi around 7PM local time.
Chuck
On Sep 18, 2015, at 10:42 AM, Dovid Bender
> wrote:
Hi,
I am working on a presentation and looking to create samples of what a trace
should not look like? Anyone have IP's that I can trace from the
Agree. Most OOB is lacking redundancy too, so a single failure can really take
the shine off an OOB deployment. Especially when you've put your management
traffic on it, including radius traffic, and you're using 802.1X. Found that
out the hard way a few years ago.
Chuck
-Original
I hate to be that guy, but this is getting really outside the scope of
NANOG.
Chuck
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Joe Greco
Sent: Thursday, July 30, 2015 12:58 PM
To: Scott Helms khe...@zcorum.com
Cc: NANOG nanog@nanog.org
Subject: Re:
So, I've been following this IPv6 discussion for a while now. Putting much
more thought into it than ever before. What I've gathered so far:
We need both SLAAC and DHPCv6 on CPE router to support all end clients.
Android and some other platforms still have some issues with a v6-addressed
DNS
-Original Message-
From: John R. Levine [mailto:jo...@iecc.com]
Sent: Tuesday, July 14, 2015 4:50 PM
To: Chuck Church chuckchu...@gmail.com
Cc: nanog@nanog.org
Subject: RE: Dual stack IPv6 for IPv4 depletion
This is IPv6. Why shouldn't they have their own PI space?
Same way it happens
What about dual-homed customers? Or are they all expected to have their own
PI space?
Chuck
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Mel Beckman
Sent: Tuesday, July 14, 2015 4:33 PM
To: valdis.kletni...@vt.edu
Cc: John Levine; nanog@nanog.org
Subject:
a
criminal, even though you made their 'job' as easy as possible.
Chuck
-Original Message-
From: Mark Andrews [mailto:ma...@isc.org]
Sent: Thursday, July 09, 2015 10:06 PM
To: Chuck Church
Cc: 'Jared Mauch'; 'Colin Johnston'; nanog@nanog.org
Subject: Re: Possible Sudden Uptick in ASA DOS
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Jared Mauch
Sent: Thursday, July 09, 2015 9:08 AM
To: Colin Johnston
Cc: nanog@nanog.org
Subject: Re: Possible Sudden Uptick in ASA DOS?
My guess is a researcher.
I wouldn't classify someone sending known
IPX with EIGRP or NLSP wasn't bad over the WAN. Can't help you with
TokenRing though.
Chuck
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Randy Bush
Sent: Saturday, June 27, 2015 8:14 PM
To: Bacon Zombie
Cc: nanog@nanog.org
Subject: Re: How long will it
Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Ray Soucy
Sent: Wednesday, June 17, 2015 3:14 PM
To: Joe Hamelin
Cc: NANOG list
Subject: Re: Anycast provider for SMTP?
As such, you typically only see it leveraged for simple services (e.g. DNS,
NTP).
I've
Anyone on here from Unified Layer? Having an issue with a small ISP I help
out occasionally. Some of their IP Space can reach a hosted web server, but
their other prefixes cannot reach the destination. Traceroute from working
IP space to destination web server (a bank) :
15
Anyone from Akamai (or who might know),
Having an issue with AS 20940 either not seeing or ignoring a /23
we're announcing, and following a /22 to another path. Other ISPs our
upstream peers with see the /23. I didn't see a looking glass for Akamai to
verify. Anyone from Akamai able to
Sounds interesting. I wouldn't do more than a /23 (assuming IPv4) per subnet.
Join them all together with a fast L3 switch. I'm still trying to visualize
what several thousand tiny computers in a single rack might look like. Other
than a cabling nightmare. 1000 RJ-45 switch ports is a good
Sounds like you're talking to my dad. Tell him I said hi.
Chuck
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Randy Bush
Sent: Monday, April 20, 2015 2:45 PM
To: Christopher Morrow
Cc: North American Network Operators' Group
Subject: Re: dns on
Comic Book Guy would probably declare:
Worst Naming Convention Ever
Chuck
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Colin Johnston
Sent: Tuesday, April 14, 2015 9:27 AM
To: Nikolay Shopik
Cc: nanog@nanog.org
Subject: Re: macomnet weird dns record
Other phrases can be substituted.
no guts, no glory
go big or go home
no pain, no pain
Chuck
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Scott Weeks
Sent: Wednesday, March 25, 2015 1:41 AM
To: nanog@nanog.org
Subject: Re: Last-call DoS/DoS Attack BCOP
NDS? My first suggestion would be run DSREPAIR. Wow, that brings back
memories. But since you probably mean DNS, I'll stop right there.
Chuck
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Christopher Dye
Sent: Monday, March 09, 2015 1:20 PM
To:
Since this has turned into a discussion on upload vs download speed,
figured I'd throw in a point I haven't really brought up. For the most part,
uploading isn't really a time-sensitive activity to the general (as in 99% of
the ) public. Uploading a bunch of facebook photos, you hit
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Alain Hebert
Sent: Wednesday, October 29, 2014 9:14 AM
To: nanog@nanog.org
Subject: Re: .mil postmaster Contacts?
Might be related to the news (CNN this morning) about the WH network being
exploited for a few
You sure it's not a DNS issue? I've had problems resolving various
*.disa.mil sites today. Google DNS claims they don't exist.
Chuck
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Ray Van Dolson
Sent: Monday, October 27, 2014 1:52 PM
To: nanog@nanog.org
Given that probably 80+% (a guess, but I'd be really surprised at a lower
figure) of all internet traffic crosses at least one Cisco device somewhere,
I think it would be a huge disservice to discontinue sending these emails.
10 to 15 emails per year isn't much overhead, compared to seemingly
Along those same lines, we've been using alias exec for the same thing for a
while:
Alias exec NTP 6500_NTP_V1.0.1
Alias exec bgp 6500_peer_V2.0.0
Thanks,
Chuck
-Original Message-
From: Tim Durack [mailto:tdur...@gmail.com]
Sent: Thursday, February 27, 2014 11:50 AM
To: Ryan Shea
Or the country as a whole had WAY too many iPhones in need of a 7.0 upgrade.
Chuck
-Original Message-
From: Keith Medcalf [mailto:kmedc...@dessus.com]
Sent: Thursday, September 26, 2013 7:23 AM
To: nanog@nanog.org
Subject: RE: Sudan disconnected from the Internet
Of course it is
Newer IOS support setting precedence or DSCP for outbound SSH:
ip ssh prec 2
Thanks,
Chuck
-Original Message-
From: Andrey Khomyakov [mailto:khomyakov.and...@gmail.com]
Sent: Monday, July 29, 2013 12:07 PM
To: Nanog
Subject: management traffic QoS on Tunnel interfaces
Hi all,
I have
Anyone,
Hopefully this is a simple question about RADB. I'm
supporting a small wireless ISP, they just recently added a second upstream
connection - Charter (AS 20115). The IP space was originally issued by the
other upstream Windstream (AS 7029). Looking at a few resources
-Original Message-
From: Eric Krichbaum [mailto:e...@telic.us]
Sent: Tuesday, December 11, 2012 8:31 AM
To: 'Chuck Church'; nanog@nanog.org
Subject: RE: RADB entry
While not 100% accurate, it is very common. The origin being entered by a
provider as their own allows them to add
-Original Message-
From: Jimmy Hess [mailto:mysi...@gmail.com]
Sent: Tuesday, November 20, 2012 7:50 PM
To: Van Wolfe
Cc: nanog@nanog.org
Subject: Re: NTP Issues Today
This _should_ have caused NTP to execute a panic shutdown,
instead of setting the clock back 30 million seconds.
--
Network scan tools are a great way to verify what important protocols you
left out of your control plane policing non-default policies. Had a scanner
totally clog up our 6500 core router DHCP relay (ip helper) function once.
Uggghhh, security people
Chuck
I agree. Perhaps the ISP goes a little above and beyond most, and will
provide configuration assistance to the downstream if they have issues.
Useful info they might want to see on the diagram could be your AS (duh),
ASes downstream from you, are you multihomed, and with who, what prefixes
and or
I disagree. I see it as an extra layer of security. If DOD had a network
with address space 'X', obviously it's not advertised to the outside. It
never interacts with public network. Having it duplicated on the outside
world adds an extra layer of complexity to a hacker trying to access it.
Does anyone know the reason /64 was proposed as the size for all L2 domains?
I've looked for this answer before, never found a good one. I thought I
read there are some L2 technologies that use a 64 bit hardware address,
might have been Bluetooth. Guaranteeing that ALL possible hosts could live
-Original Message-
From: david peahi [mailto:davidpe...@gmail.com]
Sent: Monday, March 26, 2012 1:54 PM
To: Jared Mauch
Cc: nanog@nanog.org
Subject: Re: last mile, regulatory incentives, etc (was: att fiber, et al)
I have discovered that the Federal School Lunch E-Rate program has built
Shouldn't a forged LOA be justification to contact law enforcement?
Chuck
-Original Message-
From: Kelvin Williams [mailto:kwilli...@altuscgi.com]
Sent: Tuesday, January 31, 2012 1:01 PM
To: nanog@nanog.org
Subject: Hijacked Network Ranges
Greetings all.
We've been in a 12+ hour
-Original Message-
From: valdis.kletni...@vt.edu [mailto:valdis.kletni...@vt.edu]
Sent: Tuesday, November 15, 2011 9:17 AM
To: Leigh Porter
Cc: nanog@nanog.org; McCall, Gabriel
Subject: Re: Arguing against using public IP space
And this is totally overlooking the fact that the vast
When you all say NAT, are you implying PAT as well? 1 to 1 NAT really
provides no security. But with PAT, different story. Are there poor
implementations of PAT that don't enforce an exact port/address match for
the translation table? If the translation table isn't at fault, are the
'helpers'
-Original Message-
From: Phil Regnauld [mailto:regna...@nsrc.org]
PAT (overload) will have ports open listening for return traffic,
on the external IP that's being overloaded.
What happens if you initiate traffic directed at the RFC1918
network itself, and send that to
Can we take this offline? I don't believe livestock behavior patterns have
much operational content.
Thanks,
Chuck
-Original Message-
From: Jason Baugher [mailto:ja...@thebaughers.com]
Sent: Thursday, September 22, 2011 11:31 AM
To: nanog@nanog.org
Subject: Re: Internet mauled by
-Original Message-
From: Erik Bais [mailto:eb...@a2b-internet.com]
Sent: Wednesday, September 14, 2011 7:56 AM
To: 'Frank Habicht'; nanog@nanog.org
Subject: RE: ouch..
Personally I think this is a pathetic action from Cisco, however I'm not
surprised by them doing it ...
Regards,
Erik
Original Message-
From: Dobbins, Roland [mailto:rdobb...@arbor.net]
Sent: Monday, September 12, 2011 2:56 PM
To: North American Network Operators' Group
Subject: Re: vyatta for bgp
zorched.
---
Zorch. I like that.
76 matches
Mail list logo