Hi list.
I'd like to setup my default routes to the Interwebz to be conditional on
reachability of something on the Interwebz. I got two different ISPs (no
BGP). I'm trying to figure out what would be a reliable object to track?
Meaning, it's probably not reasonable to track my ISPs default
On 01/02/10 10:13 -0500, Andrey Gordon wrote:
Hi list.
I'd like to setup my default routes to the Interwebz to be conditional on
reachability of something on the Interwebz. I got two different ISPs (no
BGP). I'm trying to figure out what would be a reliable object to track?
Meaning, it's
I'd rather send him to something more open like kernel.org; anything
but Google's DNS. Google's DNS is a little too nefarious for my taste.
On 2/1/2010 10:31 AM, Dan White wrote:
On 01/02/10 10:13 -0500, Andrey Gordon wrote:
Hi list.
I'd like to setup my default routes to the Interwebz
-Original Message-
From: Curtis Maurand [mailto:cmaur...@xyonet.com]
Sent: Monday, February 01, 2010 10:47 AM
To: nanog@nanog.org
Subject: Re: Default route with object tracking
I'd rather send him to something more open like kernel.org; anything
but Google's DNS. Google's DNS
Would it be more reasonable to track a root DNS server that is available via
anycast?? Something like 192.33.4.12?
Not sure how accurate this is:
http://en.wikipedia.org/wiki/Root_nameserver
-
Andrey Gordon [andrey.gor...@gmail.com]
On Mon, Feb 1, 2010 at 10:47 AM, Curtis Maurand cmaur...@xyonet.com wrote:
I'd rather send him to something more open like kernel.org; anything but
Google's DNS. Google's DNS is a little too nefarious for my taste.
tinfoil hat off
nefarious? as a route object to track for selection of a
On Feb 1, 2010, at 11:26 AM, Christopher Morrow wrote:
On Mon, Feb 1, 2010 at 10:47 AM, Curtis Maurand cmaur...@xyonet.com wrote:
I'd rather send him to something more open like kernel.org; anything but
Google's DNS. Google's DNS is a little too nefarious for my taste.
tinfoil hat off
I think that good is all relative to what you are most likely to be
able to reach from wherever your location happens to be!
Google's... Level 3's. Root DNS servers (anycast) Pick something.
Scott
Curtis Maurand wrote:
I'd rather send him to something more open like kernel.org;
I'm in the process of trying to setup bgp peering with Cymru to receive
the bogon route list. I've got everything setup using the examples they
have listed, but can't get the filtering to actually work on the
incoming bgp. Using a Cisco 7200 router. Any off-list help would be
appreciated.
Can you give us a little more details around how you're trying to convert the
BGP routes received into an ACL?
While we're on the topic, I'd really love for the Team Cymru folks to turn
their bogon list into a Flowspec feed hint hint ;)
Sorry for the top post, I'm on my BB.
Stefan Fouant
I'm try to redesign the Sudanese NREN (National Research Education Network).
we provide end to end service,to our customers. Our network is build over local
ISPs. But the problem of the current design that each time we need to go back
to the ISP to change our Infrastructure IP addresses, when
To be absolutely safe, choose 4-5 of the ideas, track all of them and use a
composite track object to combine them :)
You can find a lot more details (including the oscillating routing problem)
here:
http://www.nil.com/ipcorner/SmallSiteMultiHoming/
http://wiki.nil.com/Small_site_multihoming
On Mon, Feb 1, 2010 at 11:07, Stefan Fouant
sfou...@shortestpathfirst.net wrote:
Can you give us a little more details around how you're trying to convert the
BGP routes received into an ACL?
As he said, there are examples of how to implement this on the Cymru
website, see:
Tarig,
I am not quite sure what you mean, but it sounds like you're suggesting
that different pieces of your network are fragmented across different
connections to different ISPs.
Depending on what exactly the problem is, the solution would be either
(a) to get a provider-independent IP
I've been getting repeated junk emails from an XO customer and
reports to ab...@xo.net are going unanswered and the problem is
unresolved. Is there anyone who has a better contact who can take action
on this issue? Offlist replies welcome.
Thanks.
Chris Gotstein wrote:
I'm in the process of trying to setup bgp peering with Cymru to receive
the bogon route list. I've got everything setup using the examples they
have listed, but can't get the filtering to actually work on the
incoming bgp. Using a Cisco 7200 router. Any off-list help
Hello NANOG,
Long time listener, first time caller.
A recent organizational change at my company has put someone in charge
who is determined to make things perfect. We are a service provider,
not an enterprise company, and our business is doing provisioning work
during the day. We recently
On Tue, Feb 2, 2010 at 7:51 AM, Chadwick Sorrell mirot...@gmail.com wrote:
This outage, of a high profile customer, triggered upper management to
react by calling a meeting just days after. Put bluntly, we've been
told Human errors are unacceptable, and they will be completely
eliminated.
On Feb 2, 2010, at 10:28 AM, Suresh Ramasubramanian wrote:
Automated config deployment / provisioning. And sanity checking before
deployment.
A lab in which changes can be simulated and rehearsed ahead of time, new OS
revisions tested, etc.
A DCN.
Vijay Gill had some real interesting insights into this in a presentation he
gave back at NANOG 44:
http://www.nanog.org/meetings/nanog44/presentations/Monday/Gill_programatic_N44.pdf
His Blog article on Infrastructure is Software further expounds upon the
benefits of such an approach -
On 2/1/2010 6:21 PM, Chadwick Sorrell wrote:
Any other comments on the subject would be appreciated, we would like
to come to our next meeting armed and dangerous.
If upper management believes humans can be required to make no errors, ask
whether they have achieved that ideal for
Anyone have any info on a current issue with a feed apparently being cut
between AZ and CA that's causing problems for Cox customers by chance?
--
Micheal Patterson
I'll say as vijay gill notes after Stefan posted those two very
interesting links. He's saying much the same that I did - in a great
deal more detail. Fascinating.
http://www.nanog.org/meetings/nanog44/presentations/Monday/Gill_programatic_N44.pdf
His Blog article on Infrastructure is
Michael,
We saw routes change on Level3's network about 13:40 PDT today. Routes
from San Diego to Phoenix now go up to SJC, to Denver, to Dallas, to
Phoenix. Some customers trying to reach us from Cox in Phoenix had some
issues where Cox and Level 3 peer. Overall, *we* are not down,
From: Michael J McCafferty m...@m5computersecurity.com
Date: Mon, 01 Feb 2010 19:29:24 -0800
Michael,
We saw routes change on Level3's network about 13:40 PDT today. Routes
from San Diego to Phoenix now go up to SJC, to Denver, to Dallas, to
Phoenix. Some customers trying to reach us
The IETF MARTINI WG has been chartered to standardize an important aspect of
SIP trunking: multiple AOR registration.
This is not one of those we'll deliver a standard when we're good and
ready working groups.
This WG is aiming to deliver a single standard solution that can displace
the
Tariq
It's really nice to hear from Sudan in NANOG :) , the problem as Alex state
it's not clear at all a PI address / BGP peering could be a solutions for it ,
VNE (Virtual Network Environment) it's to isolate the applications located in
one machine in virtual networks like ( VMware ) using
27 matches
Mail list logo