> Vincent Bernat
> Sent: Wednesday, May 8, 2019 3:22 PM
>
> ❦ 8 mai 2019 09:56 +02, Lars Prehn :
>
> > do you NTP sync your AS boundary routers? If so, what are incentives
> > for doing so? Are there incentives, e.g. security considerations, not
> > to do it?
>
> Ensure you have a firewall
On 8/May/19 09:56, Lars Prehn wrote:
> Hi everyone,
>
> do you NTP sync your AS boundary routers? If so, what are incentives
> for doing so? Are there incentives, e.g. security considerations, not
> to do it?
Yes.
There are probably a lot of technical reasons you will receive from
folk, but
In response to feedback from operational security communities,
CAIDA's source address validation measurement project
(https://spoofer.caida.org) is automatically generating monthly
reports of ASes originating prefixes in BGP for systems from which
we received packets with a spoofed source address.
I was just about to email the group for a related issue.
We are also seeing some funky routing/peering within the AWS network.
We primarily communicate with Verizon Media/Oath - AS10310. Verizon Media has a
presence in Singapore, and its peered locally with AWS AS38895 - we normally
see 8ms
--- j...@ntt.net wrote:
From: Job Snijders
on this topic, i strongly recommend to operate all
devices in the Etc/UTC timezone, this makes
coordination with external entities much easier.
Yes, this! Holy crap I come upon a lot of networks
that
Hi are there any AWS engineers out there? We are seeing routing problems
between NTT and AWS in Ashburn, Va and would like to find out which side is
having the problem.
Thanks,
Curt
On Wed, May 08, 2019 at 07:47:56PM -0500, Bryan Holloway wrote:
> 100% true. But there is also a practical side to this ...
>
> When a NOC-ling, in their own local timezone, says, "hey, what happened
> two hours ago?", they have to make a calculation. And that calculation
> annoyingly depends
On 5/8/19 4:00 PM, Scott Weeks wrote:
--- j...@ntt.net wrote:
From: Job Snijders
on this topic, i strongly recommend to operate all
devices in the Etc/UTC timezone, this makes
coordination with external entities much easier.
Yes, this! Holy crap I
To sum it all up... if and when ... I doubt we will worry about the internet.
Food, Water, shelter and ammunition’s || that’s all else if anyone could
possibly make it through.
#ProblemSolved
--
J. Hellenthal
The fact that there's a highway to Hell but only a stairway to Heaven says a
On 5/8/19 6:54 PM, Scott Weeks wrote:
--- br...@shout.net wrote:
From: Bryan Holloway
On 5/8/19 4:00 PM, Scott Weeks wrote:
--- j...@ntt.net wrote:
From: Job Snijders
on this topic, i strongly recommend to operate all
devices in the Etc/UTC timezone, this makes
coordination with external
On 08/05/2019 02:44, Sean Donelan wrote:
> Of course, any fictional scenario is more likely to hit an ocean or
> miss the planet. But that makes for a dull exercise.
An ocean impact needn't be boring. It would potentially create
megatsunamis over a possibly wide area on multiple coasts. Even
--- br...@shout.net wrote:
From: Bryan Holloway
On 5/8/19 4:00 PM, Scott Weeks wrote:
> --- j...@ntt.net wrote:
> From: Job Snijders
>
> on this topic, i strongly recommend to operate all
> devices in the Etc/UTC timezone, this makes
> coordination with external entities much easier.
>
On Wed, 08 May 2019 14:00:11 -0700, "Scott Weeks" said:
> From: Job Snijders
>
> on this topic, i strongly recommend to operate all
> devices in the Etc/UTC timezone, this makes
> coordination with external entities much easier.
>
>
>
> Yes, this! Holy
> isn't the point: "Pick one for all of your things, stick to that one
> thing" it's find if you pick central indiana time, if you are setting
> the same everywhere and keeping it update properly
i find the time zone they choose says a lot about an operation. can be
a flag of parochialism.
On Wed, May 8, 2019, at 14:21, Lars Prehn wrote:
> Hi everyone,
>
> do you NTP sync your AS boundary routers? If so, what are incentives for
> doing so? Are there incentives, e.g. security considerations, not to do it?
Hi,
We (and I suppose a lot of others) do sync the border routers like any
On Wed, May 8, 2019 at 9:42 PM Valdis Klētnieks wrote:
>
>
> Newfoundland time, anybody? :)
>
isn't the point: "Pick one for all of your things, stick to that one thing"
it's find if you pick central indiana time, if you are setting the
same everywhere and keeping it update properly...AND you
On 5/8/19 10:15 PM, Bryan Holloway wrote:
On 5/8/19 7:55 PM, Brian Kantor wrote:
On Wed, May 08, 2019 at 07:47:56PM -0500, Bryan Holloway wrote:
100% true. But there is also a practical side to this ...
When a NOC-ling, in their own local timezone, says, "hey, what happened
two hours ago?",
On Wed, May 8, 2019 at 7:16 PM Bryan Holloway wrote:
> On 5/8/19 7:55 PM, Brian Kantor wrote:
> > On Wed, May 08, 2019 at 07:47:56PM -0500, Bryan Holloway wrote:
> >> 100% true. But there is also a practical side to this ...
> >>
> >> When a NOC-ling, in their own local timezone, says, "hey,
Once upon a time, Royce Williams said:
> The La Crosse 404-1235UA-SS UltrAtomic (not affiliated, just a fan) tracks
> DST - and even leap seconds. They have much better reach than previous
> similar clocks.
Looks like somebody finally brought a clock to market that uses the
new-format
--- valdis.kletni...@vt.edu wrote:
From: "Valdis Klētnieks"
On Wed, 08 May 2019 14:00:11 -0700, "Scott Weeks" said:
> From: Job Snijders
>
> on this topic, i strongly recommend to operate all
> devices in the Etc/UTC timezone, this makes
> coordination with external entities much easier.
>
On Wed, May 08, 2019 at 10:11:10AM -0400, Sean Donelan wrote:
> Many exercise designers could use help coming up with useful Internet
> disaster sub-plots. Bad enough to inject stress into the exercise, but not
> extinction.
>
> All ISP tech support agents are infected, and become brain eating
On 5/8/19 7:55 PM, Brian Kantor wrote:
On Wed, May 08, 2019 at 07:47:56PM -0500, Bryan Holloway wrote:
100% true. But there is also a practical side to this ...
When a NOC-ling, in their own local timezone, says, "hey, what happened
two hours ago?", they have to make a calculation. And that
❦ 8 mai 2019 09:56 +02, Lars Prehn :
> do you NTP sync your AS boundary routers? If so, what are incentives
> for doing so? Are there incentives, e.g. security considerations, not
> to do it?
Ensure you have a firewall rule in place to prevent people to use your
router for NTP amplification.
Hi everyone,
do you NTP sync your AS boundary routers? If so, what are incentives for
doing so? Are there incentives, e.g. security considerations, not to do it?
Best regards,
Lars
On Wed, May 8, 2019 at 8:38 AM Job Snijders wrote:
>
> Dear Lars,
>
> On Wed, May 08, 2019 at 09:56:33AM +0200, Lars Prehn wrote:
> > do you NTP sync your AS boundary routers?
>
> yes
>
> > If so, what are incentives for doing so? Are there incentives, e.g.
> > security considerations, not to do
Dear Lars,
On Wed, May 08, 2019 at 09:56:33AM +0200, Lars Prehn wrote:
> do you NTP sync your AS boundary routers?
yes
> If so, what are incentives for doing so? Are there incentives, e.g.
> security considerations, not to do it?
The major advantage of NTP syncing your routers is that it
On 5/7/19 3:39 PM, Mark Seiden wrote:
> excellent! (but i was hoping this would be a swamp-draining-by-vaporization
> exercise.)
the matador...the matador... the matador!
--
Bryan Fields
727-409-1194 - Voice
http://bryanfields.net
You will also need to add you localhost as a source if you want to show that
ntp association status on the router
apply-flags omit;
term allow-ntp {
from {
source-prefix-list {
ntp-server;
localhost;
}
protocol udp;
port ntp;
}
On Tue, 7 May 2019, Haudy Kazemi wrote:
For any hit, a lot depends on impactor size. With an impactor of the size
that took out the non-avian dinosaurs...the site of impact probably won't
matter to us if humanity is unable to deflect it.
I understand the intent. Earth is still a single point
On Tue, May 7, 2019 at 11:20 AM Sean Donelan wrote:
> The scenario was chosen to stress the partcipants, not an actual asteroid
> impact. It was a fictional scenario. This was only an exercise.
>
> 60 meter asteroid impact in New York City, NY (roughly Central Park, NYC)
>
So what happened?
Did anyone trying calling Bruce Willis?
On Wed, May 8, 2019 at 10:41 AM William Herrin wrote:
> On Tue, May 7, 2019 at 11:20 AM Sean Donelan wrote:
>
>> The scenario was chosen to stress the partcipants, not an actual asteroid
>> impact. It was a fictional scenario. This was only an exercise.
On Wed, 8 May 2019 07:56:33 +
Lars Prehn wrote:
> do you NTP sync your AS boundary routers? If so, what are incentives for
> doing so? Are there incentives, e.g. security considerations, not to do it?
In addition to what others have mentioned, if these systems are to
perform route origin
On 8/May/19 16:22, Vincent Bernat wrote:
> Ensure you have a firewall rule in place to prevent people to use your
> router for NTP amplification. NTP clients are also servers. On Juniper
> devices:
Yep, that's a nasty little situation in Junos that took me a week to
figure out back in the day
33 matches
Mail list logo
