All,
I've started adding the ability to link between files (e.g. BGP
neighbor statements, assuming you have both configuration files)
I'd be very interested to hear anyone's feedback if they've gotten the
script to work or have some ideas for improvements like Robert suggested
Thanks,
We are currently using Wanguard. Have had it in place for about 6months.
Have not setup BGP peering with my edges to blackhole inbound traffic yet
simply because I haven't had time, but the product itself seems to be
pretty full featured and has lots of options and a pretty reasonable
interface.
please reply offlist, mutual customer issue.
/kc
--
Ken Chase - m...@sizone.org Toronto Canada
I'm in the same boat myself. One thing I can share is Juniper really
doesn't want to talk about the PTX1000 at all right now as it's not due to
be available until November. They're going to suggest you look at the
MX240/480 instead.
*[image: userimage]Scott Larson[image: los angeles]
We (AS55803) have also been using WANGuard for well over a year, and as
with the other comments.. it has been very reliable and integrates quite
well with literally anything you want.
Regards,
Matt.
On 11/08/2015 09:36, Nick Pratley wrote:
+1 from me for WanGuard.
I have this running taking
ASNumber: 701 - 705
ASName: UUNET
ASHandle: AS701
RegDate:1990-08-03
Updated:2012-03-20
Ref:http://whois.arin.net/rest/asn/AS701
Although not having been updated yet makes it one of the older
registry entries, having just passed 25 years..
On Mon,
On Aug 10, 2015, at 6:29 PM, Wayne E Bouchard w...@typo.org wrote:
ASNumber: 701 - 705
ASName: UUNET
ASHandle: AS701
RegDate:1990-08-03
Updated:2012-03-20
Ref:http://whois.arin.net/rest/asn/AS701
Although not having been updated yet
+1 from me for WanGuard.
I have this running taking 2x 10G span ports of our network. We are able to
mitigate an attack within 7 seconds (local filtering where transit can
handle) and if it gets to the point that transit can not handle the attack
it moves the /24 related to the attack to a DDoS
+1
On 11/08/2015 12:10 AM, Job Snijders wrote:
On Mon, Aug 10, 2015 at 04:38:40PM +0300, Pavel Odintsov wrote:
We have some open source software for this task
https://github.com/FastVPSEestiOu/fastnetmon :) Feel free to ask me
any questions off list.
I can attest that fastnetmon is a great
On 8/10/2015 12:43, Ken Chase wrote:
please reply offlist, mutual customer issue.
Seems like this exact question comes up pretty frequently.
Maybe NANOG should consider a repository of frequent inquiries...
--
sed quis custodiet ipsos custodes? (Juvenal)
Did you come across one?
Sent from my Windows Phone
From: Chris Boydmailto:cb...@gizmopartners.com
Sent: 8/6/2015 1:04 PM
To: NANOGmailto:nanog@nanog.org
Subject: Data Center operations mail list?
Is there a mail list that’s analogous to NANOG, but focused on
On Tue, 11 Aug 2015 09:36:07 +1000, Nick Pratley said:
Once setup correctly. very good product - it's been running for 8 months
now and hasn't had any issues. It's been very reliable.
I'll bite - (roughly) how many times has it triggered and mitigated an actual
DDoS during those 8 months? We
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On 8/10/2015 6:07 PM, valdis.kletni...@vt.edu wrote:
On Tue, 11 Aug 2015 09:36:07 +1000, Nick Pratley said:
Once setup correctly. very good product - it's been running for 8
months now and hasn't had any issues. It's been very reliable.
Some base numbers as it stands now:
Total Anomalies: ~8000
Total Prefixes in BGP: ~400
We don't mitigate _everthing_ - if our transit can handle the inbound then
it doesn't do anything - just alert and take a pcap dump for further
tuning. If we see congestion, it moves prefixes around to a
You can also try librenms (http://www.librenms.org/) which has associated
agent to monitor bind (
http://librenms.readthedocs.org/Extensions/Agent-Setup/index.html?highlight=bind
)
On Mon, Aug 10, 2015 at 6:02 AM, Dustin Jurman dus...@rseng.net wrote:
There is also a windows utility from Steve
Hello!
We have some open source software for this task
https://github.com/FastVPSEestiOu/fastnetmon :) Feel free to ask me
any questions off list.
On Mon, Aug 10, 2015 at 9:58 AM, Marcel Duregards
marcel.durega...@yahoo.fr wrote:
Dear Nogers,
We are currently evaluating some DDOS
Anyone know why Zayo still hasn't renamed the BGP AS network names for all
the AboveNet ASNs?
Not to poke fun at Global Crossing, but they changed Level 3's AS name in
less time (which, if I recall, took over a year to happen...)
I don't see Zayo using the Above.net brand anywhere
Dear Nogers,
We are currently evaluating some DDOS detection/mitigation solutions.
Do you have any inputs/experiences on Wanguard from Andrisoft, please
?https://www.andrisoft.com/software/wanguard
Currently we are just interested on the packets/flows sensors with the console
for detection and
On Aug 10, 2015, at 8:45 AM, Blair Trosper blair.tros...@gmail.com wrote:
Anyone know why Zayo still hasn't renamed the BGP AS network names for all
the AboveNet ASNs?
They don’t want to disrupt their Alternet peering sessions.
-Bill
signature.asc
UUNet would have been 40% funnier. (I rounded up from 39.975%)
On Mon, Aug 10, 2015 at 8:57 AM, Bill Woodcock wo...@pch.net wrote:
On Aug 10, 2015, at 8:45 AM, Blair Trosper blair.tros...@gmail.com
wrote:
Anyone know why Zayo still hasn't renamed the BGP AS network names for
all
the
On Mon, Aug 10, 2015 at 04:38:40PM +0300, Pavel Odintsov wrote:
We have some open source software for this task
https://github.com/FastVPSEestiOu/fastnetmon :) Feel free to ask me
any questions off list.
I can attest that fastnetmon is a great tool for dealing with high pps
or high bandwidth
21 matches
Mail list logo
