On Wed, 8 Jan 2020 at 15:24, Mark Tinka wrote:
> Hmmh, now I'm curious... please explain why rewriting MED but not ORIGIN
> doesn't help.
If you reset MED in effort to stop me from transferring my
infrastructure costs to your network, I can still set origin and force
cold potato in your
Tracked it down.
Sony are using "Imperva" which is former Incapsula.
The IP's that was attacked by this DDoS Attack, have been added to their
threatradar, their phone support (Imperva) literally hangs up the call when you
try to question if they can provide more information about why the IP's
On 8/Jan/20 16:26, James Jun wrote:
>
> I get that you'd want to reset MED on peering sessions, but any particular
> rationale on why you'd rewrite MED to 0 on customer sessions?
>
> I would argue that providing the ability for customers to transfer backhaul
> costs onto their transit provider
> From: Saku Ytti
> Sent: Wednesday, January 8, 2020 1:09 PM
>
> On Wed, 8 Jan 2020 at 14:46, wrote:
>
> > Other might be: “These experimental work is of great value to the
> community and there’s a process now to announce and manage these
> experiments, what about net neutrality, and besides
On 8/Jan/20 15:49, Saku Ytti wrote:
>
> If you reset MED in effort to stop me from transferring my
> infrastructure costs to your network, I can still set origin and force
> cold potato in your network.
Okay, I see how this could be abused in a scenario where you have
multiple peering
On Tue, Jan 07, 2020 at 05:45:39PM -0500, Martin Hannigan wrote:
> On Tue, Jan 7, 2020 at 08:51 John Curran wrote:
>
> > On 7 Jan 2020, at 5:01 AM, Martijn Schmidt via NANOG
> > wrote:
> > >
> > > Out of curiosity, since we aren't affected by this ourselves, I know of
> > cases where Cogent has
On 8/Jan/20 16:52, James Jun wrote:
> I see. LOCAL_PREF and RFC 1998 style of community attributes however are
> not the right tool for signalling exit locations -- it does not scale.
> Sure, it's a useful hammer to hard enforce a baseline mode of preference
> on given route (e.g. route of
On Wed, Jan 08, 2020 at 03:06:45PM +0200, Mark Tinka wrote:
>
> From our side, on peering links, re-write all MED to 0 and scrubs all
> communities, and replace them with our own.
>
> On customer links, we re-write MED to 0.
[ snip ]
I get that you'd want to reset MED on peering sessions, but
On Wed, Jan 08, 2020 at 04:36:29PM +0200, Mark Tinka wrote:
>
> We provide customers with a ton of LOCAL_PREF options they can activate
> in our network via communities:
>
> http://as37100.net/?bgp
>
> As I mentioned to Saku re: the ORIGIN attribute, I don't mind customers
> using this on us
I’m pretty sure cogent has had issues providing full internet connectivity via
ipv6 to google and perhaps he (hurricane electric), perhaps others as well, for
quite some time now.
-Aaron
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of James Breeden
Sent: Tuesday, January 7,
On Wed, Jan 8, 2020 at 2:58 AM Rob Seastrom wrote:
> It’s called “business tangible personal property tax”, and it’s technically
> levied by the counties, not by the state (although authorized by the
> legislature, as all local government activities must be in a Dillon’s Rule
> state).
>
>
Hello,
On Wed, 8 Jan 2020 at 16:53, Octolus Development wrote:
> But here's the funny part, when connecting to their own website imperva.com
> from those IP's -- we are getting the exactly same error code that Sony are
> returning.
And what error code / full error is that *exactly*?
I assumed
Hi guys
Something odd has happened and I’m not sure how to sort. One of our public
prefixes, 205.174.3.0/24 issued from ARIN has suddenly had its geo changed and
now everyone accessing the internet from it is showing up as a UK IP, London
specifically. We announce this and every other prefix
Hey Jason,
try the geo database providers first:
http://thebrotherswisp.com/index.php/geo-and-vpn/
--
Patrick
Am 08.01.2020 um 18:53 schrieb JASON BOTHE via NANOG:
> Hi guys
>
> Something odd has happened and I’m not sure how to sort. One of our public
> prefixes, 205.174.3.0/24 issued from
Thanks Patrick for the link. I like that all of them are together for ease of
reference. Just did a quick scan and all looks well. I guess I’ll dig a little
further internally.
Thank you again.
J~
> On Jan 8, 2020, at 13:00, Patrick Schultz wrote:
>
> Hey Jason,
> try the geo database
AOC stands for Active Optical Cable, which means it’s really 4 SFP+ and a qsfp
plus intermediate fiber all permanently attached. 1M is the length, 1 meter.
This is distinct from DAC (Direct Attach Cable) which is all copper (you don’t
want these, fiber for one thing isolates ground/emi)
This
> However, if you just need to use 10g of the 40g port, you can do it
> much cheaper and easier with just this part:
>
> https://www.fs.com/products/72582.html
we will test to be sure this appears as one port of a breakout
randy
i am not a fiber/sfp/... geek, so clue bat please
on my left, i have a delta 9020SL running arcos, female 40g qsfp
on my right, i have incoming 10g 1310nm single mode from the seattle
internet exchange. it is currently into a redstone 10g sfp
NAMEVALUE
You'd need something like this, which you can jumper over to the 10G port.
https://www.fs.com/products/37016.html
Cable to break it out.
https://www.fs.com/products/68048.html
Luke
Ns
-Original Message-
From: NANOG On Behalf Of Randy Bush
Sent: Wednesday, January 08,
This is another good way to go, make sure you have a single mode handoff from
the IX (you should, but double check this, orange fiber and yellow fiber are
very different physically in size and generally not compatible.
-Ben Cannon
CEO 6x7 Networks & 6x7 Telecom, LLC
b...@6by7.net
On Wed, Jan 8, 2020 at 2:20 PM Luke Guillory wrote:
>
> You'd need something like this, which you can jumper over to the 10G port.
>
>
> https://www.fs.com/products/37016.html
>
> Cable to break it out.
>
> https://www.fs.com/products/68048.html
>
>
I believe that these (and the AOC option)
> I believe that these (and the AOC option) require that the switch
> understand / supports splitting the 40G interface into 4x10s
arcos does what i expect, sub units
as i have no problem wasting ports on the delta box (there are 48 and i
only need two :) i think ben's
I doubt it applies to Randy's 48 port switch (and maybe in general), but
for posterity: be advised that the QSFP28 to SFP+ adapter is physically
taller than a standard QSFP28 optic, outside of the device. Inside is still
to spec of course.
Sort of like how RJ45 SFPs are slightly taller than fiber
I think you're looking for an MTP breakout cable, rather than a QSFP28
breakout.
The MTP breakout requires separate optics, whereas the active breakout can
plug directly into a device's SFP+ ports.
Something like...
https://www.fs.com/products/24422.html
And
Old module says "10G_BASE_SX" so that is multimode fiber, which complicates
things a bit.
You can see about getting a single-mode handoff instead, or you may need the
QSFP-SFP+ adapter (or intermediary switch).
thanks,
-Randy
- On Jan 8, 2020, at 2:26 PM, Ben Cannon b...@6by7.net
In article
you write:
>El Reg is more of a tabloid than industry media, but you can read almost
>the same views at domain industry blogs:
>http://domainincite.com/25129-breaking-verisign-pays-icann-20-million-and-gets-to-raise-com-prices-again
On Wed, Jan 8, 2020 at 12:46 PM John Levine wrote:
> The impact of this is that if you have a .com domain name, you may
> have to budget as much as an additional $3/yr. Wahoo.
Hi John,
I have no problem paying an extra $3/year for my .com IF every domain
speculator must also pay an extra $3
The thing is.
I can buy a brand new IP.
It works fine on the websites.
The moment it's hit by a DDoS Attack (TCP-AMP) .. Only 24-48 hours later, it's
banned from all Inculpsa's aka Imperva's websites :) so something is horrible
done wrong on their end and they're not interested in helping..
I have no problem paying an extra $3/year for my .com IF every domain
speculator must also pay an extra $3 for each of their .coms. Is that
what's happening here?
Yes. The contract very clearly says that everyone pays the same renewal
price to the registry.
Regards,
John Levine,
No, that is not why.
We deployed a brand new IP, and it was banned 24-48 hours after the DDoS Attack
was hit. The other IP that was never attacked, never got banned. We've tracked
down the issue and confirmed it is the DDoS Attack coming from Akamai and
Imperva's IP's that are banning us from
The error it displays on both Sony, and Imperva (and whatever websites who uses
their protection). So this problem is not with Sony, but rather Imperva
blocking IP's wildly.
The IP's are not blocks, it's a single IP and the block/blacklist lifts after 7
days.
Error that appears on those
In response to feedback from operational security communities,
CAIDA's source address validation measurement project
(https://spoofer.caida.org) is automatically generating monthly
reports of ASes originating prefixes in BGP for systems from which
we received packets with a spoofed source address.
Hello,
On Wed, 8 Jan 2020 at 18:26, Octolus Development wrote:
>
> The error it displays on both Sony, and Imperva (and whatever websites who
> uses their protection). So this problem is not with Sony, but rather Imperva
> blocking IP's wildly.
>
> The IP's are not blocks, it's a single IP
You're getting hit with something reported as "TCP-AMP" (I'm assuming TCP
amplification; not sure what's classifying this for you) on your IP
address, and then shortly thereafter that IP address is blocked from
Imperva's services? Are the source IP addresses in those "TCP-AMP" attacks
Sony IP
Peace,
Hey, your website says you're the developer of OctoVPN which is a VPN
solution.
*This* might be effectively the reason of blocking, not a DDoS. Gaming and
streaming services typically discourage VPN traffic because a) VPNs help to
circumvent regional restrictions, b) miscreants use VPNs
On Wednesday, 8 January, 2020 14:35. Octolus Development
wrote:
>Sony are currently "looking into it" but they do not seem to care much. I
>am a customer of Sony, I own PlayStation consoles and I am not able to
>access their service. They tell me to change my IP instead of solving the
>actual
On Sat, 2020-01-04 at 16:32 +0200, Max Tulyev wrote:
>
> Also, we implemented immediate answer and voice menu option, it says
> "Welcome, press ... to reach ...!" and circles. So me (as the telco
> operator) receive the money for call termination, and real customer
> do
> not get a spam call.
On 8/Jan/20 15:12, Saku Ytti wrote:
>
> If you rewrite MED but not origin, then you're not really
> accomplishing anything.
Hmmh, now I'm curious... please explain why rewriting MED but not ORIGIN
doesn't help.
Mark.
On Wed, 8 Jan 2020 at 14:46, wrote:
> Other might be: “These experimental work is of great value to the community
> and there’s a process now to announce and manage these experiments, what
> about net neutrality, and besides modern BGP implementations should handle
> well formatted
Would like to gather current views of a wider community on BGP Path
Attribute Filtering (discarding selected attributes in particular, not treat
as withdraw) as an addition to the long list of standard conditioning tools
like max as-path length limit, limiting number of communities all the way to
On Wed, 8 Jan 2020 at 15:09, Mark Tinka wrote:
> From our side, on peering links, re-write all MED to 0 and scrubs all
> communities, and replace them with our own.
If you rewrite MED, you SHOULD rewrite origin (which RFC prohibits,
incorrectly). I can understand rationale for rewriting MED,
>> On Jan 6, 2020, at 10:30, William Herrin wrote:
>
>> - Va Personal Property Tax Recovery (1.8%)
> If it's not written in to your contract, it's a breach of contract. Either
> way it's a deceitfully imposed surcharge, not a state tax. Virginia does not
> tax the sale of services like
On 8/Jan/20 14:44, adamv0...@netconsultings.com wrote:
> Would like to gather current views of a wider community on BGP Path
> Attribute Filtering (discarding selected attributes in particular, not
> treat as withdraw) as an addition to the long list of standard
> conditioning tools like max
43 matches
Mail list logo