On 2014-11-21 03:12, Roland Dobbins wrote:
On 21 Nov 2014, at 6:22, Denys Fedoryshchenko wrote:
Netflow is stateful stuff,
This is factually incorrect; NetFlow flows are unidirectional in
nature, and in any event have no effect on processing of data-plane
traffic.
Word stateful has nothing
On 2014-11-21 06:45, freed...@freedman.net wrote:
Netflow is stateful stuff, and just to run it on wirespeed, on
hardware,
you need to utilise significant part of TCAM,
Cisco ASRs and MXs with inline jflow can do hundreds of K flows/second
without affecting packet forwarding.
Yes, i
On Friday, November 21, 2014 12:00:47 AM Curtis L. Parish
wrote:
We have recently added a second ISP (third if you count
I2). Our first ISP is actually a private state
network that peers with two Tier 1 providers. We own an
AS number and our IP space but at the last minute
learned our
On Fri, 21 Nov 2014 11:07:49 +0200, Mark Tinka mark.ti...@seacom.mu said:
We own an AS number and our IP space but at the last minute
learned our state network is advertising our network using two
different ASNs (neither ours)
This will work, as in the BGP path selection
On Thu, Nov 20, 2014 at 5:00 PM, Curtis L. Parish curtis.par...@mtsu.edu
wrote:
We have recently added a second ISP (third if you count I2).
Our first ISP is actually a private state network that peers with
two Tier 1 providers. We own an AS number and our IP space
but at the last minute
On 21 Nov 2014, at 15:17, Denys Fedoryshchenko wrote:
Word stateful has nothing common with stateful firewall.Stateful
protocol. a protocol which requires keeping of the internal state on
the server is known as a stateful protocol.
Correct - and NetFlow is not stateful, by this definition.
On 2014-11-21 14:50, Roland Dobbins wrote:
On 21 Nov 2014, at 15:17, Denys Fedoryshchenko wrote:
Word stateful has nothing common with stateful firewall.Stateful
protocol. a protocol which requires keeping of the internal state on
the server is known as a stateful protocol.
Correct - and
Thanks for all the responses. I will answer a few questions that have come on
and off list. (Sorry for length)
We advertise our ASN into the state network with more specific routes that we
advertise via ISP2 via our ASN.This is done because the state (vendor
managed) network runs
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
I'll apologize up front if this offends anyone's sensitivities as to
what is relevant for list conversation... but one sentence in this
Channel4 News story (from what I understand, Channel4 is a very
popular news source in the UK) struck me as
Paul Ferguson fergdawgs...@mykolab.com writes:
I'll apologize up front if this offends anyone's sensitivities as to
what is relevant for list conversation... but one sentence in this
Channel4 News story (from what I understand, Channel4 is a very
popular news source in the UK) struck me as
Most written peering agreements have a clause that says you can't provide that
data unless required to by authorities and only in compliance with applicable
local law.
The article says that's still an open question:
Channel 4 News has been unable to establish whether Reliance Communications
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On 11/21/2014 7:07 AM, Daniel Corbe wrote:
Paul Ferguson fergdawgs...@mykolab.com writes:
I'll apologize up front if this offends anyone's sensitivities as
to what is relevant for list conversation... but one sentence in
this Channel4 News
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On 11/21/2014 7:09 AM, Siegel, David wrote:
Most written peering agreements have a clause that says you can't
provide that data unless required to by authorities and only in
compliance with applicable local law.
The article says that's still
Nanog list members,
I was looking at some statistic and noticed we are sending out a massive amount
of SMS messages from our monitoring systems.
This left me wondering if there isn't a better (and cheaper) alternative to
this, something just as reliant but IP based. We all have smartphones
The advantage of SMS is that it is out of band. Any smtp or other IP based
solution requires a stable and working network environment, which is what the
alert may be trying to tell you is down.
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
Pagerduty for phone calls. Can do SMS as well, I believe.
Josh Luthman
Office: 937-552-2340
Direct: 937-552-2343
1100 Wayne St
Suite 1337
Troy, OH 45373
On Fri, Nov 21, 2014 at 10:52 AM, Thijs Stuurman thijs.stuur...@is.nl
wrote:
Nanog list members,
I was looking at some statistic and
The advantage of SMS is that it is out of band. Any smtp or other IP based
solution requires a stable and working network environment, which is what the
alert may be trying to tell you is down.
I do not worry so much about that, part of the monitoring solution is out of
band for that
While we do not do this ourseleves, I wonder why we would not use Twitter.
You can receive SMS, or texts in the app on a smart phone, or look at a
webpage. You can make them private and have lots of subscribers. I find
Twitter more reliable that our local SMS providers too.
d
On Fri, Nov 21,
We use OpsGenie for notifications (and on-call scheduling, etc). There
are other similar options such as PagerDuty, etc, as well.
Notifications can be submitted to the service in a variety of ways
(email, web API, etc), has a variety of integrations with other tools
(Nagios, Pingdom, etc) to
Could a NOC engineer from Level3 contact me off list? I am having issues
out of Dallas on a circuit with traffic on your network -- Latency above
100ms --- My peer claims the issue is fixed but I am still seeing the same
problem -- Thanks
*Nathan Mallory*
*Network Engineer*
Opelika Power
Actually, sFlow from many vendors is pretty good (per your points about
flow
burstiness and delays), and is good enough for dDoS detection. Not for
security forensics, or billing at 99.99% accuracy, but good enough for
traffic visibility, peering analytics, and (d)DoS detection.
Well, if
I know of a firend that is using Growl / Prowl to push out the notifications to
their phones, even to their TV's at home.
Sk.
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Thijs Stuurman
Sent: Friday, November 21, 2014 10:52 AM
To: nanog@nanog.org
Subject:
On 2014-11-21 18:41, Peter Phaal wrote:
Actually, sFlow from many vendors is pretty good (per your points
about
flow
burstiness and delays), and is good enough for dDoS detection. Not
for
security forensics, or billing at 99.99% accuracy, but good enough
for
traffic visibility, peering
Larry, please contact me offlist and we'll ping one of our GD contacts for you.
Anne
Anne P. Mitchell, Esq.
CEO/President
ISIPP SuretyMail Email Accreditation Certification
Your mail system + SuretyMail accreditation = delivered to their inbox!
http://www.SuretyMail.com/
This is an automated weekly mailing describing the state of the Internet
Routing Table as seen from APNIC's router in Japan.
The posting is sent to APOPS, NANOG, AfNOG, AusNOG, SANOG, PacNOG,
CaribNOG and the RIPE Routing Working Group.
Daily listings are sent to bgp-st...@lists.apnic.net
For
A NOC engineer has reached out -- Thanks for the quick response
*Nathan Mallory*
*Network Engineer*
Opelika Power Services
600 Fox Run Pkwy
Opelika, Al 36801
Office: (334) 705-1601
On Fri, Nov 21, 2014 at 10:29 AM, N M digitallysto...@gmail.com wrote:
Could a NOC engineer from Level3
pmacct includes sfacctd which is an sflow collector.. Accessible via
the same methods as it's nfacctd collector or pcap based collector..
--
Tim
On Fri, Nov 21, 2014 at 9:06 AM, Denys Fedoryshchenko de...@visp.net.lb wrote:
On 2014-11-21 18:41, Peter Phaal wrote:
Actually, sFlow from many
On Fri, Nov 21, 2014 at 10:56 AM, Matthew Huff mh...@ox.com wrote:
The advantage of SMS is that it is out of band. Any smtp
or other IP based solution requires a stable and working
network environment, which is what the alert may be
trying to tell you is down.
Which is why you locate a small
Thanks! Most important there is plugin API,so it is easy to write custom
code to do some analysis and on events - actions.
On 2014-11-21 20:32, Tim Jackson wrote:
pmacct includes sfacctd which is an sflow collector.. Accessible via
the same methods as it's nfacctd collector or pcap based
But I am buying 1 Gig on a 1 Gig circuit. I could see if it were
burstable but it was being billed as 1Gig on a Gig circuit.
Justin
--
Justin Wilson j...@mtin.net
http://www.mtin.net http://www.mtin.net/blog
Managed Services xISP Solutions Data Centers
http://www.thebrotherswisp.com
This report has been generated at Fri Nov 21 21:14:20 2014 AEST.
The report analyses the BGP Routing Table of AS2.0 router
and generates a report on aggregation potential within the table.
Check http://www.cidr-report.org/2.0 for a current version of this report.
Recent Table History
BGP Update Report
Interval: 13-Nov-14 -to- 20-Nov-14 (7 days)
Observation Point: BGP Peering with AS131072
TOP 20 Unstable Origin AS
Rank ASNUpds % Upds/PfxAS-Name
1 - AS12897 1723660 29.3% 246237.1 -- HEAGMEDIANET HSE Medianet
GmbH,DE
2 - AS23752
On Tue, Nov 18, 2014 at 7:41 PM, Robert Drake rdr...@direcpath.com wrote:
On 11/18/2014 8:11 PM, Michael Brown wrote:
[snip]
amelioration. So I'm left with a very unsatisfactory feeling of either
shutting down a possibly innocent customer based on a machines word, or
attempting to start a
33 matches
Mail list logo