Re: [outages] NTP Issues Today

On 20 Nov 2012, at 15:38, Jeremy Chadwick j...@koitsu.org wrote: I'm still waiting for someone who was affected by this to provide coherent logs from ntpd showing exactly when the time change happened. Getting these, at least on an *IX system, is far from difficult folks. from firewall ntp

Re: [outages] NTP Issues Today

http://jdc.koitsu.org/ | | Mountain View, CA, US| | Making life hard for others since 1977. PGP 4BD6C0CB | On Tue, Nov 20, 2012 at 05:02:06PM +, Colin Johnston wrote: On 20 Nov 2012, at 15:38, Jeremy Chadwick j

Re: Checkpoint IPS

Thought I would add Astaro IPS works great, great functionality and does prevent ddos and exploits. Colin

Re: Checkpoint IPS

network traffic. Including fix-it updates. Definitely a case where the IPS caused major difficulties for a network. --p -Original Message- From: Colin Johnston [mailto:col...@gt86car.org.uk] Sent: Friday, February 06, 2015 10:32 AM To: Darden, Patrick Cc: Colin Johnston

Re: Checkpoint IPS

-Original Message- From: Colin Johnston [mailto:col...@gt86car.org.uk] Sent: Friday, February 06, 2015 10:46 AM To: Darden, Patrick Cc: Colin Johnston; Roland Dobbins; nanog@nanog.org Subject: [EXTERNAL]Re: Checkpoint IPS Yes, update can cause problems, same as router code updates as well

Re: Low cost WDM gear

Yes can do long distances without need to amplifier site (train tracks for example) but you need to make sure ground is stable and if using track bed of train track that the ballast is good and stable else ground tremors affect the signal quality. Colin On 7 Feb 2015, at 22:32, Tim Durack

Re: Office 365 Expert - I am not. I have a customer that...

On 20 Jan 2015, at 23:19, Christian Kuhtz chku...@microsoft.com wrote: I don't belong to the O365 product group, but did you look at this? https://technet.microsoft.com/en-us/library/hh852542.aspx and a blog article to go along with that:

Re: OT - Small DNS appliances for remote offices.

older apple tv will work as well :) Colin On 19 Feb 2015, at 19:47, Mel Beckman m...@beckman.org wrote: If your time is worth anything, you can't beat the Mac Mini, especially for a branch office mission-critical application like DNS. I just picked up a Mini from BestBuy for $480. I

Re: OT - Small DNS appliances for remote offices.

here here, apple kits rocks for low end server work, sun kit rocks for high end server work. Colin On 19 Feb 2015, at 20:55, Mel Beckman m...@beckman.org wrote: Keenan, Red. Herrings. You can provision macs over the network. That's one of the functions of Mac OSX Server OS. It's

Re: OT - Small DNS appliances for remote offices.

use a vm dns appliance on the same machine as your vm router instance Colin On 18 Feb 2015, at 14:28, Ray Van Dolson rvandol...@esri.com wrote: Hopefully not too far off topic for this list. Am looking for options to deploy DNS caching resolvers at remote locations where there may only

Re: Facebook outage?

implement service routers for pop machines using cbac checking and acl for private address range spoofing. block china ranges since never respond to abuse reports. move on Colin On 27 Jan 2015, at 07:23, Ken Chase m...@sizone.org wrote: cable was replugged, insta/fb back up here. /kc

Re: scaling linux-based router hardware recommendations

qnx os based router works well with powerpc, could be pushed far higher load than intel based chips Colin That's the problem though. Everyone has presentations for the most part, very few actual tools that end users can just use exist. On 1/28/2015 午後 08:02, Robert Bays wrote: On

Re: DDOS solution recommendation

On 12 Jan 2015, at 08:29, David Hofstee da...@mailplus.nl wrote: Hi Mike, About trying to hit the mail ports... It is very easy for a domain to set its MX to a random host name. So before you block you might want to check the To-domain in the header of the mail. Otherwise it is too

Re: DDOS solution recommendation

unfortunately chinanet antispam/abuse email box is always full, after a while people block . always check arin/ripe for known good provider blocks and actively exclude from rules ddos protection via careful overview ips rules and active web source ip monitoring works well, the hard part is

Re: Getting hit hard by CHINANET

why not try if chinanet folks refuse to respond to abuse,apac details colin Sent from my iPhone On 18 Mar 2015, at 10:00, Roland Dobbins rdobb...@arbor.net wrote: On 18 Mar 2015, at 16:55, Colin Johnston wrote: would be interested to know of providers using bgp to auto block ranges

Re: Getting hit hard by CHINANET

would be interested to know of providers using bgp to auto block ranges from china colin Sent from my iPhone On 18 Mar 2015, at 09:49, Roland Dobbins rdobb...@arbor.net wrote: On 18 Mar 2015, at 13:32, Mark Tinka wrote: That's one of two issues - if the sources are overwhelming how

Re: Getting hit hard by CHINANET

interesting use of ripe atlas info :) was thinking same myself colin Sent from my iPhone On 18 Mar 2015, at 10:04, Roland Dobbins rdobb...@arbor.net wrote: On 18 Mar 2015, at 17:00, Roland Dobbins wrote: This is not an optimal approach, and most providers are unlikely to engage in

Re: Usage data from Turkey

use ripe atlas info :) Colin On 31 Mar 2015, at 18:19, Mehmet Akcin meh...@akcin.net wrote: Hello Today March 31 , 2015 GMT +0200 1030am-4pm Turkey has suffered a major power outage impacting nearly 70M people. I am writing a blog post about power outage vs impact to network usage. I

Re: Getting hit hard by CHINANET

China network blocks work great, I wish did not have to use but they never respond to admin or abuse contacts either Colin On 23 Mar 2015, at 13:06, Ray Soucy r...@maine.edu wrote: I did a test on my personal server of filtering every IP network assigned to China for a few months and over

Re: Verizon Policy Statement on Net Neutrality

fttc in uk works great for client code push remote installs , even faster than some offices since the fibre nodes are less contended. seen 18mb up work fine and sustained with voip in parallel as well colin Sent from my iPhone On 3 Mar 2015, at 16:20, Tim Franklin t...@pelican.org wrote: I

Re: optical gear cooling requirements

energis pop the cab doors would not open due to heat warping after loaded with two tnt max colin Sent from my iPhone On 4 Mar 2015, at 21:04, Ricky Beam jfb...@gmail.com wrote: On Tue, 03 Mar 2015 20:52:44 -0500, Martin Hannigan hanni...@gmail.com wrote: Remember the Ascend MAX TNT and

Re: OT: VPS with Routed IP space

deploy two utm's with bgp on the two internal and external interfaces col Sent from my iPhone On 24 Feb 2015, at 20:29, Zachary Giles zgi...@gmail.com wrote: Partial thread jack How about VPS providers who will do BGP... Do they exist? /Partial thread jack On Tue, Feb 24, 2015 at 3:11

Re: AOL Postmaster

block aol like china blocks with no engagement of comms as justification colin Sent from my iPhone On 24 Feb 2015, at 12:36, Rich Kulawiec r...@gsp.org wrote: On Tue, Feb 24, 2015 at 03:19:06AM +0100, Fred wrote: Having exactly the same issue. Also never received any response from AOL.

Re: Getting hit hard by CHINANET

use block firewall country flags, use strict packet compliance checking, dont bother with abuse email comms as is ignored, mentioned to trade missions but ignored colin Sent from my iPhone On 17 Mar 2015, at 02:06, Terrance Devor ter.de...@gmail.com wrote: Hello Everyone, I really hope

Re: BGP offloading (fixing legacy router BGP scalability issues)

or ignore/block russia and north korea and china network blocks takes away 5% of network ranges for memory headroom, especially the large number of smaller china blocks. Some may say this is harsh but is the network contacts refuse to co-operate with abuse and 100% of the traffic is bad then why

Re: BGP offloading (fixing legacy router BGP scalability issues)

On 2 Apr 2015, at 08:40, Paul S. cont...@winterei.se wrote: Do you have data on '100% of the traffic' being bad? as a example anything in 163data.com.cn is bad Colin I happen to have a large Chinese clientbase, and this is not the case on my network. On 4/2/2015 午後 04:35, Colin

Re: BGP offloading (fixing legacy router BGP scalability issues)

09:35, Colin Johnston wrote: or ignore/block russia and north korea and china network blocks takes away 5% of network ranges for memory headroom, especially the large number of smaller china blocks. Some may say this is harsh but is the network contacts refuse to co-operate with abuse

Re: BGP offloading (fixing legacy router BGP scalability issues)

On 2 Apr 2015, at 08:57, Mark Tinka mark.ti...@seacom.mu wrote: On 2/Apr/15 09:52, Stefan Neufeind wrote: Of course it's not something you should generalise about all people or all traffic from certain countries. But it's obvious that there are some countries which seem to care almost

Re: BGP offloading (fixing legacy router BGP scalability issues)

yes have tried chinese language communication as well. none of it works, they dont believe bad traffic is a big issue where it has been proved 100% is bad we do belive this is due to bad abuse practice not informing customers and also deliberately sending bad traffic to test exploits on a large

Re: BGP offloading (fixing legacy router BGP scalability issues)

Most of the spam I get comes from North America. Go figure. I'm not about to cut access to that continent off. I'd have to consider all other options really exhausted about fixing this for myself before I have to go and fix it in the network in a way that impacts other customers who may

Fwd: Holborn fire is still burning under the pavement - BBC News

Will take a lot of water to clear this up if gone into main tunnels :( Colin http://www.bbc.co.uk/news/uk-england-london-32157618 http://www.bbc.co.uk/news/uk-england-london-32157618 Holborn fire is still burning under the pavement Local road closures are in place but Holborn Tube

Re: BGP offloading (fixing legacy router BGP scalability issues)

09:35, Colin Johnston wrote: or ignore/block russia and north korea and china network blocks takes away 5% of network ranges for memory headroom, especially the large number of smaller china blocks. Some may say this is harsh but is the network contacts refuse to co-operate with abuse

Re: macomnet weird dns record

/04/15 15:36, Colin Johnston wrote: never saw hex in host dns records before. host-242.strgz.87.118.199.240.0xfff0.macomnet.net range is blocked non the less since bad traffic from Russia network ranges. Colin

Re: dns on fios/frontier

works fine from uk folks Col On 20 Apr 2015, at 07:51, Randy Bush ra...@iij.ad.jp wrote: anyone on fios/frontier can please run a quickie and see if you can get to http://psg.com/? have a net friend who can not from multiple hosts on their home lan and he has rebooted router. called

Re: common checks performed when passing on an IPv4 PA allocation from one end-customer to another

On 28 Apr 2015, at 10:32, Martin T m4rtn...@gmail.com wrote: Hi, as far as I know, some large US Internet companies like Google, Facebook or Amazon restrict access to some services for certain regions like Crimea or countries like Iran or North Korea. Do they rely on services

Re: macomnet weird dns record

-87.118.199.240.domain.ru so often banned by weird antispam systems by mask \d+\.\d+\.\d+\d+ as home ISP subnets which produce bunch of spam. On Tue, Apr 14, 2015 at 5:00 PM, Colin Johnston col...@gt86car.org.uk wrote: Hi Nikolay, I have obvious hit a cultural nerve here, if so I am sorry. At least

Re: macomnet weird dns record

to fix bad traffic coming from home user they don't bother do anything with it as it cost money for them. On 14/04/15 17:00, Colin Johnston wrote: Hi Nikolay, I have obvious hit a cultural nerve here, if so I am sorry. At least there is communication on some level, Chinese colleagues would

Re: macomnet weird dns record

you already on edge of your profits, you don't bother fixing these clients. Its not about best practice which I agree, but business you are running, which is suppose to be profitable. And fixing these bad machines doesn't give you any profits. On 14/04/15 17:37, Colin Johnston wrote: costs

Re: macomnet weird dns record

and only afterwards everyone else. On 14/04/15 16:26, Colin Johnston wrote: Because looks strange especially if the traffic is 100% bad Best practice says avoid such info in records as does not aid debug since mix of dec and hex Colin On 14 Apr 2015, at 14:09, Nikolay Shopik sho

Re: macomnet weird dns record

Book Guy would probably declare: Worst Naming Convention Ever Chuck -Original Message- From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Colin Johnston Sent: Tuesday, April 14, 2015 9:27 AM To: Nikolay Shopik Cc: nanog@nanog.org Subject: Re: macomnet weird dns record

macomnet weird dns record

never saw hex in host dns records before. host-242.strgz.87.118.199.240.0xfff0.macomnet.net range is blocked non the less since bad traffic from Russia network ranges. Colin

Re: BGP offloading (fixing legacy router BGP scalability issues)

china says not a problem since they have head in sand and ignore cooperation phone contact with chinse folks does not help either colin Sent from my iPhone On 3 Apr 2015, at 19:51, Barry Shein b...@world.std.com wrote: On April 3, 2015 at 20:22 baconzom...@gmail.com (Bacon Zombie) wrote:

Fwd: Google Apps Status Alert

Sent from my iPhone Begin forwarded message: From: Google Apps apps-nore...@google.com Date: 4 April 2015 20:05:33 BST To: col...@mx5.org.uk Subject: Google Apps Status Alert Status: Service disruption We expect to resolve the problem affecting a majority of users of Gmail at

Re: Fixing Google geolocation screwups

Globalisation only works if network abuse and network contacts follow best practice and engage. Else trade blocks and network country blocks are done and remain in place until certain countries ethically/practically do the right thing. Colin On 8 Apr 2015, at 13:17, Tim Franklin

Re: BGP offloading (fixing legacy router BGP scalability issues)

yes, china ignores everything said beit by phone,email,chat at least if you call a us provider you can at least communicate its not a english language issue either chinatelcom,chinanet contact info might as well not be documented colin Sent from my iPhone On 2 Apr 2015, at 19:05,

Re: BGP offloading (fixing legacy router BGP scalability issues)

it is not censorship to check traffic follows correct standards and does not deliberately constantly try to exploit. it could easily be solved if china abuse departments co-operate and acknowledge reports and fix if not then country bans are in place and will remain in place until culture

Re: Low Cost 10G Router

How much of that traffic is valid legit traffic as well :( Colin On 19 May 2015, at 19:32, Oleg A. Arkhangelsky syso...@yandex.ru wrote: 19.05.2015, 21:26, Max Tulyev max...@netassist.ua: Last config I touched: 2xIntel(R) Xeon(R) CPU E5-2650 0 @ 2.00GHz, 12 Gbit summary, 5% each core

Re: leap second outage

oracle linux did this Jul 1 02:01:29 oraclelinux ntpd[600]: 0.0.0.0 061c 0c clock_step -1.006445 s Jul 1 02:01:29 oraclelinux ntpd[600]: 0.0.0.0 0615 05 clock_sync Jul 1 02:01:29 oraclelinux systemd: Time has been changed Jul 1 02:01:30 oraclelinux ntpd[600]: 0.0.0.0 c618 08 no_sys_peer all

Re: Low Cost 10G Router

If you want virtual 10gb ports go vmware with a cisco routing vm or juniper routing vm Colin On 19 May 2015, at 18:40, Steve Noble sno...@sonn.com wrote: You could potentially do it with a Vyatta 5600 or a 6Wind Turbo router running on a generic server, but I am not sure where the cost

multipath tcp now in production use for linux based mobile devices

http://blog.multipath-tcp.org/blog/html/2015/07/24/korea.html

Re: China Telecom / China Unicom IP Transit Pricing

Is this based on 90% to 95% of the traffic is invalid/spam/scans/direct-attacks ? If based on engagement with abuse teams then give a factor for engagement, otherwise don’t bother. Colin On 17 Aug 2015, at 13:10, James Braunegg james.braun...@micron21.com wrote: Dear All Just wondering

Re: A multi-tenant firewall for an MSSP

sophos utm works great :) Colin On 17 Aug 2015, at 05:56, Rakesh M raaki...@gmail.com wrote: I have seen one of our customers using Sophos and they are relatively happy about it. Not directly experienced though. Thanks Rakesh On Mon, Aug 17, 2015 at 10:16 AM, Ramy Hashish

Re: A multi-tenant firewall for an MSSP

one vm per sophos utm per customer works well even with low ram as well Colin On 17 Aug 2015, at 08:14, Andrew Jones a...@jonesy.com.au wrote: Is there a multi-tennant capable UTM from Sophos? Or are you using a vm instance per customer? Thanks, Andrew On 17.08.2015 16:47, Colin

Re: Windows 10 Release

4.0gb in 10mins using home fttc is not bad :) Colin On 29 Jul 2015, at 13:20, Scott Helms khe...@zcorum.com wrote: It's downloading for me right now, though I did reserve my slot. Scott Helms Vice President of Technology ZCorum (678) 507-5000

Re: Branch Location Over The Internet

sophus utm is the ideal technology for this requirement and vmware image works well for virtual device colin Sent from my iPhone On 11 Aug 2015, at 19:21, Colton Conor colton.co...@gmail.com wrote: We have an enterprise that has a headquarter office with redundant fiber connections, its

Re: ISP in NYC

good isp's / peers are in no particular order bt telstra ex psinet uk/eu colin Sent from my iPhone On 17 Jul 2015, at 07:52, Jared Geiger ja...@compuwizz.net wrote: HE uses Telia for Transit. So you won't gain much redundancy there. I would go with Cogent if you have lots of European

Re: AW: AW: Prefix-Hijack by AS7514

any idea why error happened ? what config needs fixing to mitigate mistake? it was easy to see problem via ripe atlas :) colin Sent from my iPhone On 17 Jul 2015, at 09:32, Matsuzaki Yoshinobu m...@iij.ad.jp wrote: Date: Fri, 17 Jul 2015 15:38:13 +0900 Paul S. cont...@winterei.se wrote I

Re: AW: AW: Prefix-Hijack by AS7514

even if customer router crash fault, should have been filtered via prefix list blocking to only allow customer network prefixs to be anounced onwards ? as per best practice colin Sent from my iPhone On 17 Jul 2015, at 09:55, Matsuzaki Yoshinobu m...@iij.ad.jp wrote: Colin Johnston col

Re: 20-30Gbps UDP 1720 traffic appearing to originate from CN in last 24 hours

see below for china ranges I believe, ipv4 and ipv6 1.0.1.0/24 1.0.2.0/23 1.0.8.0/21 1.0.32.0/19 1.1.0.0/24 1.1.2.0/23 1.1.4.0/22 1.1.8.0/21 1.1.16.0/20 1.1.32.0/19 1.2.0.0/23 1.2.2.0/24 1.2.4.0/22 1.2.8.0/21 1.2.16.0/20 1.2.32.0/19 1.2.64.0/18 1.3.0.0/16 1.4.1.0/24 1.4.2.0/23 1.4.4.0/22

Re: 20-30Gbps UDP 1720 traffic appearing to originate from CN in last 24 hours

route block china range whole of and/or firewall block china range whole of then contact gov and tell them trade talks need to involve china engaging with incident teams and abuse teams colin Sent from my iPhone On 20 Jul 2015, at 16:57, Drew Weaver drew.wea...@thenap.com wrote: Has anyone

Re: 20-30Gbps UDP 1720 traffic appearing to originate from CN in last 24 hours

blocking to mitigate risk is a better trade off gaining better percentage legit traffic against a indventant minor valid good network range. Sent from my iPhone On 20 Jul 2015, at 21:20, valdis.kletni...@vt.edu wrote: On Mon, 20 Jul 2015 21:12:33 +0100, Colin Johnston said: source user

Re: 20-30Gbps UDP 1720 traffic appearing to originate from CN in last 24 hours

On 20 Jul 2015, at 21:04, valdis.kletni...@vt.edu wrote: On Mon, 20 Jul 2015 20:18:46 +0100, Colin Johnston said: in war you take information at face value and use it if needed to mitigate risk, if there is legit traffic in blocked ranges then excemption procedure in place to unblock

Re: 20-30Gbps UDP 1720 traffic appearing to originate from CN in last 24 hours

, Colin Johnston said: see below for china ranges I believe, ipv4 and ipv6 You may believe... but are you *sure*? (Over the years, we've seen *lots* of block China lists that accidentally block chunks allocated to Taiwan or Australia or other Pacific Rim destinations). And remember

Re: 20-30Gbps UDP 1720 traffic appearing to originate from CN in last 24 hours

level and abuse level colin Sent from my iPhone On 20 Jul 2015, at 20:40, ML m...@kenweb.org wrote: On 7/20/2015 2:57 PM, valdis.kletni...@vt.edu wrote: On Mon, 20 Jul 2015 19:42:39 +0100, Colin Johnston said: see below for china ranges I believe, ipv4 and ipv6 You may believe

Re: BGP hold timer on IX LAN

low bgp timers usually done to allow faster hsrp failover result colin Sent from my iPhone > On 27 Oct 2015, at 08:20, Nick Hilliard wrote: > >> On 27/10/2015 08:31, marcel.durega...@yahoo.fr wrote: >> I'm asking because we see more and more peering partners which force the

Re: Uptick in spam

hosted gmail did catch some of the spam but not all , into auto junk filter due to some of the weblinks were spammy Colin > On 27 Oct 2015, at 14:18, Ian Smith wrote: > > I'm not making any argument about the relation of SPF compliance to message > quality or spam/ham

Re: Dial Up Solutions

ipass worldwide aka psinet did such with end auth on psinet radius infrastructure Sent from my iPhone > On 17 Oct 2015, at 16:54, Stephen Satchell wrote: > >> On 10/17/2015 07:29 AM, Jason Canady wrote: >> I'm going to go with Justin's suggestion and go with a wholesale >>

Re: Possible Sudden Uptick in ASA DOS?

across a LC with a very specific set of software it would crash. If you crashed just upgrade your code, don't hide behind blocking an IP as people now know what to send/do. It won't be long. Jared Mauch On Jul 9, 2015, at 7:44 AM, Colin Johnston col...@gt86car.org.uk wrote: Hi

Fwd: Test-drive the OS X El Capitan public beta

lots of 6GB downloads this morning :) Colin Begin forwarded message: From: Apple Beta Software Program betaprog...@insideapple.apple.com Subject: Test-drive the OS X El Capitan public beta Date: 10 July 2015 05:08:06 BST To: col...@mx5.org.uk The El Capitan public beta is now

Re: NTP versions in production use?

ntpd - NTP daemon program - Ver. 4.2.6 Colins-iMac:~ colinj$ uname -a Darwin Colins-iMac.home 15.0.0 Darwin Kernel Version 15.0.0: Sun Jun 28 00:25:56 PDT 2015; root:xnu-3247.1.36~7/RELEASE_X86_64 x86_64 (10.11 osx el capitan) -bash-4.2$ uname -a Linux oraclelinux 3.8.13-68.1.2.el7uek.x86_64 #2

Re: Possible Sudden Uptick in ASA DOS?

Hi Jared, thanks for update do you know provider/source ip of the source of the attack ? Colin On 9 Jul 2015, at 12:27, Jared Mauch ja...@puck.nether.net wrote: Really just people not patching their software after warnings more than six months ago: July-08 UPDATE: Cisco PSIRT is aware

Re: Test-drive the OS X El Capitan public beta

as well hopefully less upgrade traffic once installed as update install images less big as well colin Sent from my iPhone On 10 Jul 2015, at 14:11, John Curran jcur...@arin.net wrote: On Jul 10, 2015, at 2:17 AM, Colin Johnston col...@mx5.org.uk wrote: lots of 6GB downloads this morning

Re: Weekly Routing Table Report

that might be solved in future with a dump to a storage area, diff of previous dump and flag problem if diff show significant difference colin Sent from my iPhone > On 5 Sep 2015, at 15:04, Philip Smith wrote: > > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > Hi

Re: Chile Status?

anyone tried ripe atlas to see effect :) Colin > On 17 Sep 2015, at 14:47, Marshall Eubanks wrote: > > Given the huge (7.9 - 8.3) Earthquake last night, does anyone have any > information about the status of the Internet in Chile, and in particular > about the

Fwd: Byte Night Manchester - Action for Children - donation help needed please :)

t 2015 from 7pm to 6am next morning, I (Colin > Johnston) am participating in > Action for Children Byte Night Manchester. > As we have been asked to dress up for nice social media pictures I decided > that being dressed as a Sylvester Cat > would be good fun

Re: Ransom DDoS attack - need help!

fingerprint shows China and Russia related as expected Why do the abuse teams in China and Russia ignore basic abuse reports, why peer/setup connections to companies where abuse is ignored. Colin > On 8 Dec 2015, at 07:24, Joe Morgan wrote: > > We received a similar

Re: John McAfee: Massive DDoS attack on the internet was from smartphone botnet on popular app

saw a lot of bad traffic from china mobile more recently, hard to solve since abuse reports ignored. colin Sent from my iPhone > On 12 Dec 2015, at 06:18, Jay Ashworth wrote: > > Is McAfee just talking to dry his teeth here? This isn't actually practical, > is it?

Fwd: ByteNight 2015 North West movie

As network/server techies (UK and EU/USA) lets raise even more money donations next year for Action for Children. Colin > Begin forwarded message: > > From: Colin Johnston <col...@gt86car.org.uk> > Subject: Fwd: ByteNight 2015 North West movie > Date: 17 December

de-peering for security sake

see http://map.norsecorp.com We really need to ask if China and Russia for that matter will not take abuse reports seriously why allow them to network to the internet ? Colin

Re: de-peering for security sake

> On 25 Dec 2015, at 00:48, valdis.kletni...@vt.edu wrote: > > On Thu, 24 Dec 2015 23:44:10 +0000, Colin Johnston said: >> We really need to ask if China and Russia for that matter will not take abuse >> reports seriously why allow them to network to the internet ? > >

Re: de-peering for security sake

been there, done that 网络滥用 fix you ntp reflection servers :) Sent from my iPhone > On 25 Dec 2015, at 20:29, Baldur Norddahl <baldur.nordd...@gmail.com> wrote: > >> On 25 December 2015 at 21:10, Colin Johnston <col...@gt86car.org.uk> wrote: >> >> why do t

Re: de-peering for security sake

why do the chinese network folks never reply and action abuse reports, normal slow speed network abuse is tolerated, but not high speed deliberate abuse albeit compromised machines Sent from my iPhone > On 25 Dec 2015, at 19:43, Baldur Norddahl wrote: > >> On 25

Re: de-peering for security sake

rg/pipermail/nanog/2015-January/072841.html > subject: Facebook outage? > author: Colin Johnston <col...@gt86car.org.uk> > > http://mailman.nanog.org/pipermail/nanog/2015-February/073556.html > subject: AOL Postmaster > author: Colin Johnston <col...@gt86car.org.uk> &g

Fwd: port 123 reflection attacks

to aid debug as well. Have had no response from HSOFT… Colin > Begin forwarded message: > > From: "cncertcc" <cnc...@cert.org.cn> > Subject: Re:Fwd: port 123 reflection attacks > Date: 30 December 2015 at 08:15:28 GMT > To: "Colin Johnston" <col...@g

Re: Gmail spam filtering

You can override the spam filter to inbox for specific domains/address's via googleapps gmail filter settings config Colin > On 22 Nov 2015, at 17:03, Jay Ashworth wrote: > > Bout a month ago, I had someone crack a POP password on my private mail > server, > and got a

Re: de-peering for security sake

cats are nice colin Sent from my iPhone > On 19 Jan 2016, at 15:12, "Michael O'Connor" wrote: > > Why do we believe network administrators can advocate perfectly for > customer access? > I couldn't control my own children's access without making us all > miserable. > > Nation

Re: How to find all of an ISP's ASNs

> On 25 Oct 2016, at 18:41, Gary Baribault wrote: > > Hi folks, how to I find all ASNs that belong to an ISP? I want to block > access to my IoT cameras from the world other than the two local major ISPs > (keeping last Friday in mind!) > > Gary B > > ripe atlas has

Fwd: Bonus support for Action for Children

excuse the subject, relevant as IT techies like this. > > Bonus support for Action for Children > A BT senior manager is donating half of his bonus to Action for Children’s > Byte Night North West event and encouraging others to do the same. > Colin Johnston is an IT technical

Re: Puerto Rico just lost internet?

one ripe atlas probe is still green though Probe ID20057IPv4 ASNAS5786 IPv4 Prefix136.145.0.0/16 IPv6 ASNAS65003 IPv6 Prefix2607:2000:100:116::/64

Charity IT Pulse :) one more sleep till Bytenight Action for Children 2017

many more still need >> our help. You can help support young people across the UK by generously >> donating to my page >> >> >> >> Yours >> >> Colin Johnston >> >> Colin Johnston >> <https://myprofile.bt.com/Person.aspx?ac

Re: Unusually High traffic from Akamai/Oracle - public-yum.oracle.com

latest yum oracle linux applied ok today fine, 153mb Have not seen looking content either Colin > On 9 May 2018, at 20:48, James Stahr wrote: > > > > Hi, > > Since I'm not a customer of either organization, I'm reaching out to NANOG > for a contact and perhaps others

Re: Yet another Quadruple DNS?

> On 2 Apr 2018, at 10:32, William Waites wrote: > > > >> On 2 Apr 2018, at 02:57, Aftab Siddiqui wrote: >> >> Here is the update from Geoff himself. I guess they didn't want to publish >> it on April 1st (AEST). >>

Re: Cloudflare 1.1.1.1 public DNS different as path info for 1.0.0.1 and 1.1.1.1 london

dont know if this is a problem but seeing different as paths for 1.0.0.1 and 1.1.1.1 in UK as lands 2 185.61.135.25 (185.61.135.25) 1.964 ms 72.824 ms 72.835 ms 3 10.254.84.3 (10.254.84.3) 2.671 ms 2.577 ms 2.601 ms 4 31.28.72.22 (31.28.72.22) 2.798 ms 2.897 ms 3.123 ms 5 * * *

Re: Hulu / ESPN: Commercial IP Address

nhs public wifi seems weird for hulu and wifi calling, uses sophos i see so wondered if right rules enabled... col Sent from my iPod > On 15 Oct 2018, at 09:10, Christian de Larrinaga wrote: > > Brandon, That is odd. Might this be an artefact of cellular carriers being > fixated on revenue

Re: CloudFlare D.N.S. Resolvers... (1.1.1.1 & 1.0.0.1)

also could use ripe atlas Colin > On 26 Sep 2018, at 09:15, Stephane Bortzmeyer wrote: > > On Wed, Sep 26, 2018 at 10:59:02AM +0300, > Michael Bullut wrote > a message of 192 lines which said: > >> How would you gauge good DNS performance? > > To test {XXX} performance, you use a {XXX}

Re: ASNs decimation in ZW this morning

sting lol. > > I guess the concerning thing to me is that the whole point of packet switched > networks was to provide resilience in the face of e.g. civil disorder. > > On Tue, Jan 15, 2019 at 11:50 AM Colin Johnston <mailto:col...@gt86car.org.uk>> wrote: > sorry top po

Re: ASNs decimation in ZW this morning

> On 17 Jan 2019, at 09:07, Mark Tinka wrote: > > > > On 16/Jan/19 19:49, John Von Essen wrote: > >> Im confused as to what exactly happened and how it was implemented. I >> assume the government wanted to restrict access to sites like >> whatsapp, facebook, twitter, etc.,. So did they

Re: ASNs decimation in ZW this morning

> On 18 Jan 2019, at 11:52, Mark Tinka wrote: > > > > On 17/Jan/19 16:57, Keith Medcalf wrote: > >> However, like the Internet Off switch installed in the Pentagon after 911 >> (which shutdown the DNS Severs), you may find that you have to reboot the >> Internet so you can upload your

Re: ASNs decimation in ZW this morning

sorry top posting, yup whatsup doesnt work in harare. phone circuits land ok though and checked ok col Sent from my iPod > On 15 Jan 2019, at 15:42, C. A. Fillekes wrote: > > > >> On Tue, Jan 15, 2019 at 10:34 AM C. A. Fillekes wrote: >> >> So @meileaben on twitter this morning notes: >>

Clueful Contact at IPVolume.net ?

Anyone know knowledgeable contact at IPvolume.net ? Having weird advance threat protection events from 93.174.93.73 and unable to get abuse contact to answer. Must be nice monitoring kit in London/NL/Frankfurt from Seychelles :( inetnum: 93.174.93.0 -

  1   2   >