~$45k is the US list price... typical discount applies :-)
thanks,
-Randy
- On Aug 8, 2019, at 2:33 AM, Baldur Norddahl
wrote:
> 45k? No no, the mx204 with enough license to do BGP is more like 20k - 25k or
> less. It is actually quite cheap, so I doubt the OP will find anything much
45k? No no, the mx204 with enough license to do BGP is more like 20k - 25k
or less. It is actually quite cheap, so I doubt the OP will find anything
much cheaper without going used or do a software router.
I feel it should be mentioned that a Linux box with 4x10G NIC and some
random switch as
Well, I don't want any net nannies sensoring the news I get, any ideas
the nanny does not like I will never see (?)
On Wed, 07 Aug 2019 15:37:48 -0400,
b...@theworld.com wrote:
>
>
> I propose that the RIGHT THING TO DO would be to seek out, promote (to
> both customers and the public), and
Hi all,
My colleagues and I at UC Berkeley and the International Computer Science
Institute are working on a project evaluating third-party blacklists. As
part of that, we're interested in hearing how you utilize them, and what
you perceive as their strengths and weaknesses. If you have five to
Hello Networkers,
We are looking for something to manage our LAN. This would include all the
usual suspects. PSIRT or similar notifications on code, automation of
networks, micro segmentation all in an overlay fabric, streaming telemetry.
Of course Cisco has DNA Center which is not to impressive
In response to feedback from operational security communities,
CAIDA's source address validation measurement project
(https://spoofer.caida.org) is automatically generating monthly
reports of ASes originating prefixes in BGP for systems from which
we received packets with a spoofed source address.
Any domain/DNS administrators for Salliemae on the list that could contact me
directly or perhaps take a look at the DNSSEC implementation on the domain?
Resolvers validating DNSSEC are unable to resolve the domain:
http://dnsviz.net/d/salliemae.com/dnssec/
—
Brian Ellwood
Senior Systems
Has anyone had success with getting Ookla / Maxmind to update subnets whois
data? I've submitted the correction request with Maxmind ten times over the
last 5 years and all of our resources still show the previous allocation
owner as the 'isp' when visiting speed test.net
Thanks
TJ Trout
Volt
Anushah, I'm replying simply to inform you that your site works just fine,
in multiple browsers, with and without ad/script blockers in place, in
hopes to counteract the particularly unwelcoming email by Mr. Medcalf.
Minus a handful of smaller voices, you should hopefully find our community
to be
Hello
How about Juniper vMX? 8x 10G is no problem in a 2U server. Two Intel X710
NICs with 4 interfaces on each.
I found this guide:
https://gbe0.com/networking/juniper/vmx/ubuntu-14-04-kvm-host-setup-for-juniper-vmx
Regards
Baldur
On Thu, Aug 8, 2019 at 5:04 AM Mehmet Akcin wrote:
>
I think the only reason DS-Lite got more implementations is that it was the
first and "only" choice or IPv6-only with IPv4aaS.
Regards,
Jordi
@jordipalet
El 8/8/19 22:57, "NANOG en nombre de Jay Hanke" escribió:
> I can't think of a public presentation off the top of my head that
Hope this is not too off topic but can any one advise if a Dell S4048-ON
can support full ebgp routes?
--
Arthur Stephens
Senior Network Administrator
Ptera Inc.
PO Box 135
24001 E Mission Suite 50
Liberty Lake, WA 99019
509-927-7837
ptera.com |
facebook.com/PteraInc | twitter.com/Ptera
This is one of the best and funnest emails I have seen in a long time!
Thank you, Anne!
Lyle Giese
On 8/8/2019 2:50 PM, Anne P. Mitchell, Esq. wrote:
RESEARCHER'S NOTES, DAY 1:
I and my colleagues have observed the operators and patrons of blacklists in
the wild. They appear to be hostile
On Thu, 08 Aug 2019 13:31:03 -0600, "Keith Medcalf" said:
> Cannot access your website. Just has a spinning colostomy bag.
I'm almost afraid to ask if that's the site itself doing javascript/CSS, or the
browser, or a browser extension, or if the Unicode guys have totally gone off
the deep end on
Just as well as the proper signature divider in an email is actually “dash dash
space”
\o/
Site works just fine. Doubt javascript here is of any concern to anyone
whatsoever.
Just sayin
> On Aug 8, 2019, at 14:31, Keith Medcalf wrote:
>
>
> Cannot access your website. Just has a
Corporate identity theft is a simple ploy which may be used to illicitly
obtain valuable IPv4 address space. Actual use of this fradulent ploy
was first described publicly in April, 2008 (https://wapo.st/2YLEhlZ).
Quite simply, a party bent on undertaking this ploy may just search
the publicly
On Thursday, 8 August, 2019 13:43, J. Hellenthal wrote:
>Just as well as the proper signature divider in an email is actually
>“dash dash space”
>\o/
>Site works just fine. Doubt javascript here is of any concern to
>anyone whatsoever.
>Just sayin
qualtics.com loads a blacklisted malicious
Hi Lee,
I recall the original sender of this post indicated a small number of users,
that’s why I responded that.
Regards,
Jordi
@jordipalet
El 8/8/19 22:17, "NANOG en nombre de Lee Howard" escribió:
On 8/2/19 1:10 PM, JORDI PALET MARTINEZ via NANOG wrote:
The cost of
Yes, good point, I was under the impression that it would take the 12 port
10/1 mda-e card but on looking closer it appears it only supports the high
capacity mda-e-xp (6x100/40/10 ports or 12x100/40/10 ports) cards. This
means, as you say if you want physical 10G or lower ports then a
hey,
This > means, as you say if you want physical 10G or lower ports then a>
7210-sas-sx64 would be needed which is less than ideal.
Or you could talk to your account team, there are some new MDAs coming
for IOM-5 and SR-1 that might suit the 10G/1G requirements without
breakout or
Cannot access your website. Just has a spinning colostomy bag. Too much
malicious javascript and malicious trackers.
If you expect people to visit the website, perhaps you should make it more
useable, because at the moment, it is completely and utterly useless!
And there is no way I am
RESEARCHER'S NOTES, DAY 1:
I and my colleagues have observed the operators and patrons of blacklists in
the wild. They appear to be hostile and combative. We hypothesize that they
will have trouble mating.
---
On 8/2/19 11:39 AM, Jay Hanke wrote:
Is there a summary presentation someplace laying out the options that
are active in the wild with some deployment stats?
I can't think of a public presentation off the top of my head that
explains how each major transition technology works, and the pros
> I can't think of a public presentation off the top of my head that
> explains how each major transition technology works, and the pros and
> cons of each. There must be one, but it's hard to cover the major
> options in an hour.
Actually your post is better than a presentation. I was quite
On Thu, 8 Aug 2019 10:35:09 -0700
TJ Trout wrote:
> Has anyone had success with getting Ookla / Maxmind to update subnets whois
> data? I've submitted the correction request with Maxmind ten times over the
> last 5 years and all of our resources still show the previous allocation
> owner as the
The name is from WHOIS records. The location is from Maxmind.
Josh Luthman
Office: 937-552-2340
Direct: 937-552-2343
1100 Wayne St
Suite 1337
Troy, OH 45373
On Thu, Aug 8, 2019 at 1:36 PM TJ Trout wrote:
> Has anyone had success with getting Ookla / Maxmind to update subnets
> whois data?
On 8/2/19 1:10 PM, JORDI PALET MARTINEZ via NANOG wrote:
The cost of sharing IPs in a static way, is that services such as Sony
Playstation Network will put those addresses in the black list, so you
need to buy more addresses. This hasn’t been the case for
464XLAT/NAT64, which shares the
Hello,
Numerous customers that have had phishing issues reported to them as a result
of Google’s Safe Browsing program have taken care of said issues. The URL(s)
reported to them either return a 404 or 5xx error but the URL stays listed,
according to the GSB’s API, for weeks afterwards.
Does
How does one request Ookla to update their database to reflect the proper
whois owner of a netblock? The process must not be automated because these
netblocks have been under a new name for 3 to 5 years now.
On Thu, Aug 8, 2019, 11:02 AM Josh Luthman
wrote:
> The name is from WHOIS records.
The point is that the situation is that same for *all* the transition
mechanisms, except DS-Lite, which was the first one.
Even lw4o6, which is a better choice than DS-LITE is not well supported even
the CE is basically doing the same!
I've a recent presentation in the last APNIC meeting,
> Art Stephens
> ope this is not too off topic but can any one advise if a Dell S4048-ON can
> support full ebgp routes?
RTFM :
https://i.dell.com/sites/doccontent/shared-content/data-sheets/en/Documents/Dell-EMC-Networking-S4048-ON-Spec-Sheet.pdf
128K IPv4 routes.
TSI Disclaimer: This message
On 8 Aug 2019, at 22:40, Art Stephens
mailto:asteph...@ptera.com>> wrote:
Hope this is not too off topic but can any one advise if a Dell S4048-ON can
support full ebgp routes?
Datasheet
VMX (and VSR) throughput capacity pricing is excessive once you get over about
20G from what I have seen.
From: NANOG On Behalf Of Baldur Norddahl
Sent: Friday, 9 August 2019 9:16 AM
To: nanog@nanog.org
Subject: Re: Mx204 alternative
Hello
How about Juniper vMX? 8x 10G is no problem
On Fri, Aug 9, 2019 at 5:17 AM Lee Howard wrote:
>
> On 8/2/19 1:10 PM, JORDI PALET MARTINEZ via NANOG wrote:
>
> The cost of sharing IPs in a static way, is that services such as Sony
> Playstation Network will put those addresses in the black list, so you need
> to buy more addresses. This
On 08/08/2019 04:02, Mehmet Akcin wrote:
>
> I am looking for some suggestions on alternatives to mx204.
>
> Any recommendations on something more affordable which can handle full
> routing tables from two providers?
>
> Prefer Juniper but happy to look alternatives.
> Min 6-8 10G ports are
On 07/08/2019 17:15, Anderson, Charles R wrote:
> 1000mm deep. APC AR3100 racks are 600mm x 1070mm. APC also makes
> 1200mm deep ones, and 750mm wide ones, and both together.
Unsure as to why this was cross-posted, but...
Many vendors do these sizes now. 600x1200 is rather useful when you have
Lee Howard wrote:
MAP-T, MAP-E. IPv6-only between CE and Border Relay (BR). CPE is
provisioned with an IPv4 address and a range of ports. It does basic
NAT44, but only uses the reserved ports. Then it translates to IPv6
(MAP-T) or encapsulates in IPv6 (MAP-E) and forwards to the configured
❦ 8 août 2019 16:18 -04, Lee Howard :
> NAT64. IPv6-only to users. DNS resolver given in provisioning
> information is a DNS64 server. When it does a lookup but there's no
> , it invents one based on the A record (e.g., 2001:db8:64:: address>). The IPv6 prefix in the invented is
Update is done to Maxmind at
https://support.maxmind.com/geoip-data-correction-request/
One tab for location.. other tab for ISP/Org
---
Colin Legendre
President and CTO
Coextro - Unlimited. Fast. Reliable.
w: www.coextro.com
e: clegen...@coextro.com
p: 647-693-7686 ext.101
m: 416-560-8502
f:
I am not certain on the value of having 1GbE interfaces natively on a $25k
plus router in the year 2019. Pair the router with a nice 1RU 1/10GbE
switch installed directly next to it with full metro Ethernet layer 2
feature set.
Anything that needs a 1GbE inteface, attach it to that switch, give
Hey folk,
Martijn Schmidt said.
> They're also working on getting the format standardised in the IETF. I
> applaud this, because less badly guessed geoip data and more reliably
> self-published data is better:
>
> https://datatracker.ietf.org/doc/html/draft-google-self-published-geofeeds
Hi,
SR1 (without s) is 2u high, bit it doesn't have 1G ports. It doesn't even have
"native" 10G ports. Only 40/100G, with 4x10G optics for 10G. For 1G you would
need a 7210 in sattelite mode, which is one extra U + $$$.
Otherwise very nice box...
On Thu, Aug 8, 2019, at 05:30, Mehmet Akcin
42 matches
Mail list logo