RE: GeoIP database issues and the real world consequences

2016-04-16 Thread frnkblk 
Note that for E911 purposes we are required to use the MSAG 
(http://netorange.com/nena-reference/index.php?title=Master_Street_Address_Guide_(MSAG))
 to verify street addresses.  From what my co-workers at my $DAYJOB tell me, 
there are many new addresses that are not resolvable.  

Despite those shortcomings, E911 calls are responded to and US postal mail is 
delivered, specifically because a human remains involved in interpreting the 
information.  The same needs to be done with GeoIP results.

Frank

-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Jeremy Austin
Sent: Tuesday, April 12, 2016 8:55 AM
To: John Levine 
Cc: niels=na...@bakker.net; NANOG list 
Subject: Re: GeoIP database issues and the real world consequences

On Tue, Apr 12, 2016 at 3:55 AM, John Levine  wrote:

>
> Please don't guess (like, you know, MaxMind does.)  USPS has its own
> database of all of the deliverable addresses in the country.  They
> have their problems, but give or take data staleness as buildings
> are built or demolished, that's not one of them.


A qualifier.

USPS has a database of *most* of the deliverable addresses in the country.

I'm in an unorganized borough. The USPS actually has no mandate, funding or
lever that I can pull (that I can find) to keep their database up to date.
Easily 30% of the legitimate addresses in my area are not geocodable nor in
the USPS database.

I suspect that there are areas of my state with an even worse percentage of
unavailable data.

UPS and FedEx rely on the USPS database, but will not lift a finger to fix
this gap.

Even as a municipal body there is no available federal mechanism for
updating the database. I've tried multiple times over 15+ years.



So yeah, USPS' database does have its problems.

-- 
Jeremy Austin

(907) 895-2311
(907) 803-5422
jhaus...@gmail.com

Heritage NetWorks
Whitestone Power & Communications
Vertical Broadband, LLC

Schedule a meeting: http://doodle.com/jermudgeon

Re: 10G-capable customer router recommendations?

2016-04-16 Thread Doug McIntyre 
On Fri, Apr 15, 2016 at 01:18:10PM -0700, David Sotnick wrote:
> I was recently asked to set up networking at a VIP's home where he has
> Comcast "Gigabit Pro" service, which is delivered on a 10G-SR MM port on a
> Comcast-supplied Juniper ACX-2100 router.
> 
> Which customer router would you suggest for such a setup? It needs to do
> IPv4 NAT, DHCP, IPv4+IPv6 routing and have a decent L4 firewall (that also
> supports IPv6).

FortiNet 600D?
36Gbps throughput with dual SFP+ port and several 1Gbps ports.
Specs say full NGFW throughput is 2.4Gbps (ie. you turn on all the knobs).

Re: 10G-capable customer router recommendations?

2016-04-16 Thread Josh Reynolds 
So after looking at the most recent testing I can find, it seems the that
the 10Gbps CCR can indeed do more than 1Gbps per flow. It requires jumbo
frames and fastpath  compatible config to pull off.

In short, you're still better off for the price using a L3 ASIC on a 10Gbps
capable switch which can do full line rate at the smallest packet sizes
with those limitations in mind.

MikroTik is indeed a good general purpose platform for many things.
Although the CLI IMO isn't as nice as JUNOS or Vyatta/EdgeOS (personal
preference here), many should not be so quick to dismiss it.
On Apr 16, 2016 12:51 AM, "Andrew Thrift"  wrote:

> This has not been the case for at least a year now.
>
> Most Mikrotik routers now support FastPath/FastTrack.  This is kind of
> like CEF in Cisco land.
>
> http://wiki.mikrotik.com/wiki/Manual:Fast_Path
>
> http://wiki.mikrotik.com/wiki/Manual:Wiki/Fasttrack
> On 16/04/2016 10:07 am, "Josh Reynolds"  wrote:
>
>> Can't do more than 1Gbps per flow. Not suitable for this application.
>> On Apr 15, 2016 5:03 PM,  wrote:
>>
>> > Check out the Mikrotik Cloud Core routers, they make them with SFP+
>> > support now. I have one of them with 10g deployed right now.
>> >
>> > -Mike
>> >
>> > > On Apr 15, 2016, at 14:52, Aaron  wrote:
>> > >
>> > > Not a lot of 10G capable CPEs out there.  For our 10G residential
>> > customers we install Brocade ICXs.
>> > >
>> > > Aaron
>> > >
>> > >
>> > >> On 4/15/2016 3:18 PM, David Sotnick wrote:
>> > >> Hello masters of the Internet,
>> > >>
>> > >> I was recently asked to set up networking at a VIP's home where he
>> has
>> > >> Comcast "Gigabit Pro" service, which is delivered on a 10G-SR MM port
>> > on a
>> > >> Comcast-supplied Juniper ACX-2100 router.
>> > >>
>> > >> Which customer router would you suggest for such a setup? It needs
>> to do
>> > >> IPv4 NAT, DHCP, IPv4+IPv6 routing and have a decent L4 firewall (that
>> > also
>> > >> supports IPv6).
>> > >>
>> > >> The customer pays for "2Gb" service (Comcast caps this at 2G+10% =
>> > 2.2Gbps)
>> > >> and would like to get what he pays for (*cough*) by having the
>> ability
>> > to
>> > >> stream two 1Gbps streams (or at least achieve > 1.0Gbps).
>> > >>
>> > >> I'm tempted to get another ACX-2100 and do a 4x1Gb LACP port-channel
>> to
>> > the
>> > >> customer switch, or replace the AV-integrator-installed Cisco
>> SG300-52P
>> > >> (Cisco switch with e.g. an EX-3300 with 10Gb uplinks).
>> > >>
>> > >> Thanks in advance for your suggestions.
>> > >>
>> > >> -Dave
>> > >
>> > > --
>> > > 
>> > > Aaron Wendel
>> > > Chief Technical Officer
>> > > Wholesale Internet, Inc. (AS 32097)
>> > > (816)550-9030
>> > > http://www.wholesaleinternet.com
>> > > 
>> > >
>> >
>>
>

Re: 10G-capable customer router recommendations?

2016-04-16 Thread Josh Reynolds 
Facebook is for losers.

Forums are for closers. ;)
On Apr 16, 2016 9:21 AM, "Mike Hammett"  wrote:

> If you were on FB, the TBW page would be a great venue. ;-)
>
>
>
>
> -
> Mike Hammett
> Intelligent Computing Solutions
> http://www.ics-il.com
>
>
>
> Midwest Internet Exchange
> http://www.midwest-ix.com
>
>
> - Original Message -
>
> From: "Josh Reynolds" 
> To: "Andrew Thrift" 
> Cc: "NANOG" 
> Sent: Saturday, April 16, 2016 9:12:13 AM
> Subject: Re: 10G-capable customer router recommendations?
>
> You might ask Normis about that :) It has nothing to do with fastpath, and
> isn't scheduled to be fixed until 7.x when many features are rewritten to
> take advantage of multiple tile cores.
>
> Currently each port is pinned to a single cpu (affinity) due to latency and
> performance reasons - but yes there are drawbacks when your per core clock
> is still in 1GHz territory.
>
> If you want to talk more about this, we can discuss.offlist or on the
> Mikrotik forum.
> On Apr 16, 2016 12:51 AM, "Andrew Thrift" 
> wrote:
>
> > This has not been the case for at least a year now.
> >
> > Most Mikrotik routers now support FastPath/FastTrack. This is kind of
> > like CEF in Cisco land.
> >
> > http://wiki.mikrotik.com/wiki/Manual:Fast_Path
> >
> > http://wiki.mikrotik.com/wiki/Manual:Wiki/Fasttrack
> > On 16/04/2016 10:07 am, "Josh Reynolds"  wrote:
> >
> >> Can't do more than 1Gbps per flow. Not suitable for this application.
> >> On Apr 15, 2016 5:03 PM,  wrote:
> >>
> >> > Check out the Mikrotik Cloud Core routers, they make them with SFP+
> >> > support now. I have one of them with 10g deployed right now.
> >> >
> >> > -Mike
> >> >
> >> > > On Apr 15, 2016, at 14:52, Aaron 
> wrote:
> >> > >
> >> > > Not a lot of 10G capable CPEs out there. For our 10G residential
> >> > customers we install Brocade ICXs.
> >> > >
> >> > > Aaron
> >> > >
> >> > >
> >> > >> On 4/15/2016 3:18 PM, David Sotnick wrote:
> >> > >> Hello masters of the Internet,
> >> > >>
> >> > >> I was recently asked to set up networking at a VIP's home where he
> >> has
> >> > >> Comcast "Gigabit Pro" service, which is delivered on a 10G-SR MM
> port
> >> > on a
> >> > >> Comcast-supplied Juniper ACX-2100 router.
> >> > >>
> >> > >> Which customer router would you suggest for such a setup? It needs
> >> to do
> >> > >> IPv4 NAT, DHCP, IPv4+IPv6 routing and have a decent L4 firewall
> (that
> >> > also
> >> > >> supports IPv6).
> >> > >>
> >> > >> The customer pays for "2Gb" service (Comcast caps this at 2G+10% =
> >> > 2.2Gbps)
> >> > >> and would like to get what he pays for (*cough*) by having the
> >> ability
> >> > to
> >> > >> stream two 1Gbps streams (or at least achieve > 1.0Gbps).
> >> > >>
> >> > >> I'm tempted to get another ACX-2100 and do a 4x1Gb LACP
> port-channel
> >> to
> >> > the
> >> > >> customer switch, or replace the AV-integrator-installed Cisco
> >> SG300-52P
> >> > >> (Cisco switch with e.g. an EX-3300 with 10Gb uplinks).
> >> > >>
> >> > >> Thanks in advance for your suggestions.
> >> > >>
> >> > >> -Dave
> >> > >
> >> > > --
> >> > > 
> >> > > Aaron Wendel
> >> > > Chief Technical Officer
> >> > > Wholesale Internet, Inc. (AS 32097)
> >> > > (816)550-9030
> >> > > http://www.wholesaleinternet.com
> >> > > 
> >> > >
> >> >
> >>
> >
>
>

Re: 10G-capable customer router recommendations?

2016-04-16 Thread Mike Hammett 
If you were on FB, the TBW page would be a great venue. ;-) 




- 
Mike Hammett 
Intelligent Computing Solutions 
http://www.ics-il.com 



Midwest Internet Exchange 
http://www.midwest-ix.com 


- Original Message -

From: "Josh Reynolds"  
To: "Andrew Thrift"  
Cc: "NANOG"  
Sent: Saturday, April 16, 2016 9:12:13 AM 
Subject: Re: 10G-capable customer router recommendations? 

You might ask Normis about that :) It has nothing to do with fastpath, and 
isn't scheduled to be fixed until 7.x when many features are rewritten to 
take advantage of multiple tile cores. 

Currently each port is pinned to a single cpu (affinity) due to latency and 
performance reasons - but yes there are drawbacks when your per core clock 
is still in 1GHz territory. 

If you want to talk more about this, we can discuss.offlist or on the 
Mikrotik forum. 
On Apr 16, 2016 12:51 AM, "Andrew Thrift"  wrote: 

> This has not been the case for at least a year now. 
> 
> Most Mikrotik routers now support FastPath/FastTrack. This is kind of 
> like CEF in Cisco land. 
> 
> http://wiki.mikrotik.com/wiki/Manual:Fast_Path 
> 
> http://wiki.mikrotik.com/wiki/Manual:Wiki/Fasttrack 
> On 16/04/2016 10:07 am, "Josh Reynolds"  wrote: 
> 
>> Can't do more than 1Gbps per flow. Not suitable for this application. 
>> On Apr 15, 2016 5:03 PM,  wrote: 
>> 
>> > Check out the Mikrotik Cloud Core routers, they make them with SFP+ 
>> > support now. I have one of them with 10g deployed right now. 
>> > 
>> > -Mike 
>> > 
>> > > On Apr 15, 2016, at 14:52, Aaron  wrote: 
>> > > 
>> > > Not a lot of 10G capable CPEs out there. For our 10G residential 
>> > customers we install Brocade ICXs. 
>> > > 
>> > > Aaron 
>> > > 
>> > > 
>> > >> On 4/15/2016 3:18 PM, David Sotnick wrote: 
>> > >> Hello masters of the Internet, 
>> > >> 
>> > >> I was recently asked to set up networking at a VIP's home where he 
>> has 
>> > >> Comcast "Gigabit Pro" service, which is delivered on a 10G-SR MM port 
>> > on a 
>> > >> Comcast-supplied Juniper ACX-2100 router. 
>> > >> 
>> > >> Which customer router would you suggest for such a setup? It needs 
>> to do 
>> > >> IPv4 NAT, DHCP, IPv4+IPv6 routing and have a decent L4 firewall (that 
>> > also 
>> > >> supports IPv6). 
>> > >> 
>> > >> The customer pays for "2Gb" service (Comcast caps this at 2G+10% = 
>> > 2.2Gbps) 
>> > >> and would like to get what he pays for (*cough*) by having the 
>> ability 
>> > to 
>> > >> stream two 1Gbps streams (or at least achieve > 1.0Gbps). 
>> > >> 
>> > >> I'm tempted to get another ACX-2100 and do a 4x1Gb LACP port-channel 
>> to 
>> > the 
>> > >> customer switch, or replace the AV-integrator-installed Cisco 
>> SG300-52P 
>> > >> (Cisco switch with e.g. an EX-3300 with 10Gb uplinks). 
>> > >> 
>> > >> Thanks in advance for your suggestions. 
>> > >> 
>> > >> -Dave 
>> > > 
>> > > -- 
>> > >  
>> > > Aaron Wendel 
>> > > Chief Technical Officer 
>> > > Wholesale Internet, Inc. (AS 32097) 
>> > > (816)550-9030 
>> > > http://www.wholesaleinternet.com 
>> > >  
>> > > 
>> > 
>> 
>

Re: 10G-capable customer router recommendations?

2016-04-16 Thread Josh Reynolds 
You might ask Normis about that :) It has nothing to do with fastpath, and
isn't scheduled to be fixed until 7.x when many features are rewritten to
take advantage of multiple tile cores.

Currently each port is pinned to a single cpu (affinity) due to latency and
performance reasons - but yes there are drawbacks when your per core clock
is still in 1GHz territory.

If you want to talk more about this, we can discuss.offlist or on the
Mikrotik forum.
On Apr 16, 2016 12:51 AM, "Andrew Thrift"  wrote:

> This has not been the case for at least a year now.
>
> Most Mikrotik routers now support FastPath/FastTrack.  This is kind of
> like CEF in Cisco land.
>
> http://wiki.mikrotik.com/wiki/Manual:Fast_Path
>
> http://wiki.mikrotik.com/wiki/Manual:Wiki/Fasttrack
> On 16/04/2016 10:07 am, "Josh Reynolds"  wrote:
>
>> Can't do more than 1Gbps per flow. Not suitable for this application.
>> On Apr 15, 2016 5:03 PM,  wrote:
>>
>> > Check out the Mikrotik Cloud Core routers, they make them with SFP+
>> > support now. I have one of them with 10g deployed right now.
>> >
>> > -Mike
>> >
>> > > On Apr 15, 2016, at 14:52, Aaron  wrote:
>> > >
>> > > Not a lot of 10G capable CPEs out there.  For our 10G residential
>> > customers we install Brocade ICXs.
>> > >
>> > > Aaron
>> > >
>> > >
>> > >> On 4/15/2016 3:18 PM, David Sotnick wrote:
>> > >> Hello masters of the Internet,
>> > >>
>> > >> I was recently asked to set up networking at a VIP's home where he
>> has
>> > >> Comcast "Gigabit Pro" service, which is delivered on a 10G-SR MM port
>> > on a
>> > >> Comcast-supplied Juniper ACX-2100 router.
>> > >>
>> > >> Which customer router would you suggest for such a setup? It needs
>> to do
>> > >> IPv4 NAT, DHCP, IPv4+IPv6 routing and have a decent L4 firewall (that
>> > also
>> > >> supports IPv6).
>> > >>
>> > >> The customer pays for "2Gb" service (Comcast caps this at 2G+10% =
>> > 2.2Gbps)
>> > >> and would like to get what he pays for (*cough*) by having the
>> ability
>> > to
>> > >> stream two 1Gbps streams (or at least achieve > 1.0Gbps).
>> > >>
>> > >> I'm tempted to get another ACX-2100 and do a 4x1Gb LACP port-channel
>> to
>> > the
>> > >> customer switch, or replace the AV-integrator-installed Cisco
>> SG300-52P
>> > >> (Cisco switch with e.g. an EX-3300 with 10Gb uplinks).
>> > >>
>> > >> Thanks in advance for your suggestions.
>> > >>
>> > >> -Dave
>> > >
>> > > --
>> > > 
>> > > Aaron Wendel
>> > > Chief Technical Officer
>> > > Wholesale Internet, Inc. (AS 32097)
>> > > (816)550-9030
>> > > http://www.wholesaleinternet.com
>> > > 
>> > >
>> >
>>
>

Re: 10G-capable customer router recommendations?

2016-04-16 Thread Michael Brown 
"‎2 NIC module slots supporting 1/10/40G/Fiber/Copper/Bypass"

Get one of those with a server class processor and and it's a server that looks 
like a spiffy network appliance. 
‎
‎Very general purpose if general purpose is what you need, quagga / openbgpd on 
‎bsd, yes. And you can bake additional services onto it.

M.

  Original Message  
From: Ken Chase
Sent: Friday, April 15, 2016 20:26
To: NANOG
Subject: Re: 10G-capable customer router recommendations?

Does that lanner even do SFP+? Dont see it listed in the specs. Looks like 4210 
has
2x SFP+, though their 'performance' level products look more in line with 
'useful'.

http://www.lannerinc.com/products/x86-network-appliances/x86-rackmount-appliances/fw-8877

As for the microtics, wonky user interface, so very unciscolike (i guess thats
my problem - but the GUI thing feels like a toy), but for their midrange models 
I found
their bgp convergence times pretty poor on their low end cpus...

What do you put on the lanner? OpenBGPd? Quagga? Also looking for a 10G solution
here, low power (than a full ASR stack..) is my goal for 5-6 full bgp feeds.

/kc


On Fri, Apr 15, 2016 at 07:45:39PM -0400, Michael Brown said:
>Not *exactly* what you're asking for, but a Lanner appliance 
>(???http://www.lannerinc.com/products/network-appliances/x86-rackmount-network-appliances/nca-5210)
> might suit your needs.
>
>M.
>
>?? Original Message ??
>From: David Sotnick
>Sent: Friday, April 15, 2016 16:19
>To: NANOG
>Subject: 10G-capable customer router recommendations?
>
>Hello masters of the Internet,
>
>I was recently asked to set up networking at a VIP's home where he has
>Comcast "Gigabit Pro" service, which is delivered on a 10G-SR MM port on a
>Comcast-supplied Juniper ACX-2100 router.
>
>Which customer router would you suggest for such a setup? It needs to do
>IPv4 NAT, DHCP, IPv4+IPv6 routing and have a decent L4 firewall (that also
>supports IPv6).
>
>The customer pays for "2Gb" service (Comcast caps this at 2G+10% = 2.2Gbps)
>and would like to get what he pays for (*cough*) by having the ability to
>stream two 1Gbps streams (or at least achieve > 1.0Gbps).
>
>I'm tempted to get another ACX-2100 and do a 4x1Gb LACP port-channel to the
>customer switch, or replace the AV-integrator-installed Cisco SG300-52P
>(Cisco switch with e.g. an EX-3300 with 10Gb uplinks).
>
>Thanks in advance for your suggestions.
>
>-Dave

Ken Chase - m...@sizone.org

Re: 10G-capable customer router recommendations?

2016-04-16 Thread Kurt Kraut 
I highly doubt that. It is not easy to configure, certainty trial and error
approaches will generate low performance.

I have Mikrotik CCR in production and everything the manufacturer states it
does, it does for me.

Best regards,

Kurt Kraut
Em 15 de abr de 2016 19:08, "Filip Hruska"  escreveu:

> Hi,
>
> I would also vote for Mikrotik products; IMHO this looks perfect for this
> situation.
>
> http://routerboard.com/CCR1009-8G-1S-1SplusPC
>
>
>
> On 04/16/2016 12:01 AM, mike.l...@gmail.com wrote:
>
>> Check out the Mikrotik Cloud Core routers, they make them with SFP+
>> support now. I have one of them with 10g deployed right now.
>>
>> -Mike
>>
>> On Apr 15, 2016, at 14:52, Aaron  wrote:
>>>
>>> Not a lot of 10G capable CPEs out there.  For our 10G residential
>>> customers we install Brocade ICXs.
>>>
>>> Aaron
>>>
>>>
>>> On 4/15/2016 3:18 PM, David Sotnick wrote:
 Hello masters of the Internet,

 I was recently asked to set up networking at a VIP's home where he has
 Comcast "Gigabit Pro" service, which is delivered on a 10G-SR MM port
 on a
 Comcast-supplied Juniper ACX-2100 router.

 Which customer router would you suggest for such a setup? It needs to do
 IPv4 NAT, DHCP, IPv4+IPv6 routing and have a decent L4 firewall (that
 also
 supports IPv6).

 The customer pays for "2Gb" service (Comcast caps this at 2G+10% =
 2.2Gbps)
 and would like to get what he pays for (*cough*) by having the ability
 to
 stream two 1Gbps streams (or at least achieve > 1.0Gbps).

 I'm tempted to get another ACX-2100 and do a 4x1Gb LACP port-channel to
 the
 customer switch, or replace the AV-integrator-installed Cisco SG300-52P
 (Cisco switch with e.g. an EX-3300 with 10Gb uplinks).

 Thanks in advance for your suggestions.

 -Dave

>>>
>>> --
>>> 
>>> Aaron Wendel
>>> Chief Technical Officer
>>> Wholesale Internet, Inc. (AS 32097)
>>> (816)550-9030
>>> http://www.wholesaleinternet.com
>>> 
>>>
>>>
>>