Howdy,
Recently I have been noticing a good amount of totally bogus DNS traffic coming
in on my transit links via my own IP addresses (spoofed).
SLOT 2:Jul 2 11:26:02 EDT: %SEC-6-IPACCESSLOGP: list 119 permitted udp
x.x.145.161(0) - x.x.145.235(0), 1 packet
SLOT 2:Jul 2 11:26:02 EDT:
How would you feel if you paid for priority access to hulu.com via this means,
only to see your carrier de-prioritize that traffic because they're getting a
check from Netflix?
Isn't this where competition/may the best provider win comes into play?
-Drew
Hi,
Over the last several years I've noticed there seems to be no limit to the
number of proxy/DNS based DDoS protection services springing up all over the
place so I am wondering if anyone has any insights on what sorts of tools, etc
these companies use to provide this service (Open Source,
Yes, but this obviously completes the 'DDoS attack' and sends the signal that
the bully will win.
-Drew
-Original Message-
From: alvaro.sanc...@adinet.com.uy [mailto:alvaro.sanc...@adinet.com.uy]
Sent: Wednesday, December 08, 2010 8:46 AM
To: rdobb...@arbor.net; North American
The most common attacks that I have seen over the last 12 months, and let's say
I have seen a fair share have been easily detectable by the source network.
It is either protocol 17 (UDP) dst port 80 or UDP Fragments (dst port 0..)
What valid application actually uses UDP 80?
You could
I would say that 99% of the attacks that we see are 'link fillers' with 1%
being an application attack.
thanks,
-Drew
-Original Message-
From: Dobbins, Roland [mailto:rdobb...@arbor.net]
Sent: Wednesday, December 08, 2010 10:41 AM
To: North American Operators' Group
Subject: Re:
You can get a dedicated server for $80 with a 1Gbps connection to the Internet
without looking that hard.
It is pretty easy/cheap to kill a 1Gbps connection now a days.
Soon several providers will begin offering dedicated servers with a 10Gbps
connection to a single machine.
-Drew
Upstream providers generally have a hard time allowing you to write routes that
you don't own into their table(s).
thanks,
-Drew
-Original Message-
From: Chris Boyd [mailto:cb...@gizmopartners.com]
Sent: Wednesday, December 08, 2010 2:19 PM
To: NANOG
Subject: Re: Over a decade of
?
On Wed, Dec 8, 2010 at 8:47 AM, Jay Coley j...@prolexic.com wrote:
On 08/12/2010 16:14, Drew Weaver wrote:
I would say that 99% of the attacks that we see are 'link fillers' with
1% being an application attack.
thanks,
-Drew
This has been our recent experience as well. There are some pure
.
-Drew
-Original Message-
From: Michael Costello [mailto:mc3...@columbia.edu]
Sent: Wednesday, December 08, 2010 11:59 AM
To: nanog@nanog.org
Subject: Re: Over a decade of DDOS--any progress yet?
On Wed, 8 Dec 2010 11:13:01 -0500
Drew Weaver drew.wea...@thenap.com wrote:
The most common
Nobody has really driven the point home that yes you can purchase a system from
Arbor, RioRey, make your own mitigation system; what-have you, but you still
have to pay for the transit to digest the attack, which is probably the main
cost right now.
-Drew
-Original Message-
From:
...@fast-serv.com]
Sent: Wednesday, December 08, 2010 11:59 AM
To: Drew Weaver; 'Jeffrey Lyon'; Jack Bates
Cc: North American Operators' Group
Subject: RE: Over a decade of DDOS--any progress yet?
Soon several providers will begin offering dedicated servers with a
10Gbps connection to a single
verizon's ddos service was/is 3250/month flat... not extra if there
was some sort of incident, and completely self-service for the
customer(s). Is 3250/month a reasonable insurance against loss?
(40k/yr or there abouts)
-chris
That doesn't sound too unreasonable as long as you are in a market
I'm certain there are thresholds to that. Carrier grade mitigation
solutions will start low and ramp up to 5, 6, 7, etc. figures
depending on the attack and amount of bandwidth to be filtered among
other variables.
My point was, if you mitigate the attack vs. null routing the target you have
Anyone have any opinion on a user friendly and low-to-mid-priced CWDM or DWDM
system?
We need to take one pair of dark fiber and get about 5-6 10G ports on both
sides.
This is the info that the DF provider has given us on the route:
Operating Wavelength: 1310/1550nm
Maximum Attenuation:
Yes, sorry I should've specified 10Gig-E and I would like to avoid using
CWDM/DWDM optics if possible I would just like to use regular LR optics.
thanks,
-Drew
-Original Message-
From: Randy Bush [mailto:ra...@psg.com]
Sent: Wednesday, December 22, 2010 6:35 PM
To: Drew Weaver
Cc
I feel a bit silly asking this but I have had the hardest time finding a sales
representative for the TW Telecom national group.
Can someone please assist off-list?
thanks,
-Drew
Howdy and Happy New Year.
We're having some IP/routing issues with AS 20057/7018 and so far attempts at
hitting n...@att.netmailto:n...@att.net and
n...@attglobal.netmailto:n...@attglobal.net haven't been successful.
Does anyone have a contact at 20057 or 7018 or if anyone from those orgs are
They're doing this to our routes in any2 in LA as well.
...
-Original Message-
From: Job Snijders [mailto:job.snijd...@atrato.com]
Sent: Wednesday, March 06, 2013 4:04 AM
To: Matsuzaki Yoshinobu
Cc: nanog@nanog.org
Subject: Re: Dreamhost/AS26347 unauthorized bgp announcement
Hi Mat,
Hi All,
I'm attempting to devise a method which will provide continuous operation of
certain resources in the event of a disaster at a single facility.
The types of resources that need to be available in the event of a disaster are
ecommerce applications and other business critical resources.
Howdy,
Keep in mind I am basing this 'idea' off of fixed orbit's data which can
sometimes be a bit out of date, etc.
(in theory, and based upon number of peers, data): If you have a network with
these upstream connections to the Internet you should see inbound traffic
utilization in this
On Jul 20, 2009, at 5:26 PM, Neil J. McRae wrote:
GSR is far better platform.
Concur 100%.
---
I'm probably wrong, but aren't the 7600s 40Gbps per slot vs the GSR only being
10Gbps per slot? and doesn't that mean that there should (fairly soon) be a new
version of the GSR coming that ups the
Off-list, please.
Thanks,
-Drew
Anyone know why SAAVIS would be allowing PEER1 (AS 13768) to advertise routes
for whatever IP addresses they want?
route-views.oregon-ix.netsh ip bgp 173.45.110.0 | i 13768
2905 701 3561 13768
1221 4637 3561 13768
3549 3561 13768
3277 3267 174 3561 13768
6539 3561 13768
16150 3549
Hi,
All of my contacts within Avaya who work with the CNA/APC system have seemingly
vanished, does anyone on the list have any contacts in Avaya which still know
about the existence of this product?
Also, does anyone have any contact information for someone at Internap who has
sales
Howdy,
Can anyone suggest a network monitoring system that knows the difference
between a cisco 1701 and a GSR 12810/6500, etc?
What I mean is, many times these days there are several different sub systems
you have to monitor inside of a router/switch and not just interface
utilization, the
Ah, I was mainly interested in an Orion like system that actually has all of
that kind of worked-in.
Thanks for the heads up.
-Drew
-Original Message-
From: Charles Wyble [mailto:char...@thewybles.com]
Sent: Friday, September 11, 2009 3:07 PM
To: Drew Weaver
Cc: NANOG list
Subject: Re
Howdy,
Can anyone recommend a decent software package one can use to download e-mail
sent to an abuse alias which then grabs IPs/hostnames out of the body of the
email and makes nice actionable reports?
Anything out there exist?
thanks,
-Drew
Howdy,
If you have several transit providers connected to your network and much of
your traffic is generally directed by the BGP tiebreaker (i.e. lowest IP
address) is there a way, without specifying on a per-prefix basis to prefer the
tie breaker winner slightly less often? I don't want to
Sure, it still works however (for now).
-Drew
-Original Message-
From: jeffrey.l...@gmail.com [mailto:jeffrey.l...@gmail.com] On Behalf Of
Jeffrey Lyon
Sent: Tuesday, November 10, 2009 1:34 PM
To: Drew Weaver
Cc: nanog@nanog.org
Subject: Re: BGP Traffic Engineering question
Isn't Route
Has anyone been able to pull any magic off that allows PPTP connectivity over
sprint's 3G/4G wireless network?
I assume they're just filtering it flat out, but before I contact them I wanted
to see if anyone has found a resolution on their own.
I have several Nexus S 4G devices which are
The current line is Level3 is currently having an issue where they have certain
code versions of a certain router vendor deployed.
They haven't said anything yet, so it's still kind of sketchy.
-Original Message-
From: Peter Pauly [mailto:ppa...@gmail.com]
Sent: Monday, November 07,
Any idea where this information can be found publically?
-Original Message-
From: Lane Powers [mailto:lane.pow...@swat.coop]
Sent: Monday, November 07, 2011 10:06 AM
To: Peter Pauly; nanog@nanog.org
Subject: Re: Time Warner Telecom problems
L3 reported multiple links bouncing nationwide
-Original Message-
From: rob.vercoute...@kpn.com [mailto:rob.vercoute...@kpn.com]
Sent: Wednesday, November 30, 2011 3:05 PM
To: matlo...@exempla.org; richard.bar...@gmail.com;
andrew.wall...@rocketmail.com
Cc: nanog@nanog.org; lel...@taranta.discpro.org
Subject: RE: Recent DNS attacks
I've asked several times about this in the past; although I learned quickly to
stop asking.
It seems that the consensus has generally been that the best way to handle
traffic engineering in networks where you have multiple full-feed up-streams is
to do it manually (i.e. set preference for your
seems the feeling is that if you have multiple full feeds and need to
loadshare, you really don't want (in most cases) ispa=500mbps + ispb=500mbps.
you really want destinationA to be reached across the 'best path'
(best ... in some form, distance? packetdrop%? jitter? cost?) you'll most
This is why I wish they would release it as open source or sell it to someone
else, the product really did work well, the kernel in the underlying Linux is
the biggest hurdle.
Thanks,
-Drew
-Original Message-
From: Rampley Jr, Jim F [mailto:jim.ramp...@chartercom.com]
Sent: Wednesday,
-Original Message-
From: Justin M. Streiner [mailto:strei...@cluebyfour.org]
Sent: Thursday, December 15, 2011 9:45 AM
To: nanog@nanog.org
Subject: Re: Is AS information useful for security?
origin-AS could be another story. If you know of an AS that is being used by
the bad guys for
We ran into a 25Gbps SNMP 'reply/amplification attack' from a cable modem
network about a month ago.
Hopefully the particular network has fixed that issue now, but it was a banner
day to be sure.
Thanks,
-Drew
-Original Message-
From: virendra rode [mailto:virendra.r...@gmail.com]
-Original Message-
From: Christopher Morrow [mailto:morrowc.li...@gmail.com]
Sent: Wednesday, January 18, 2012 11:43 AM
To: Steven Bellovin
Cc: nanog@nanog.org
Subject: Re: DNS Attacks
yup... I think roland and nick (he can correct me, roland I KNOW is saying
this) are basically
Isn't the ASR9001 closer to the MX80?
Thanks,
-Drew
-Original Message-
From: jon Heise [mailto:j...@smugmug.com]
Sent: Thursday, January 19, 2012 3:10 PM
To: nanog@nanog.org
Subject: juniper mx80 vs cisco asr 1000
Does anyone have any experience with these two routers, we're looking
RTG uses MySQL for it's backend, so you can basically setup queries however you
like and you can use RTGPOLL to graph multiple interfaces as well.
It's a super good tool and I think there is a group working on RTG2 at
googlecode (I think).
-Drew
-Original Message-
From: Keegan Holley
I would like to point out that in my experience if you do a lot of
coding/devops/automation work with SNMP extreme is a lot harder to work with
than Cisco and some of their OIDs/MIBs produce unusual results.
Thanks,
-Drew
-Original Message-
From: Grant Ridder
Hi,
Just a general note on the UDP 80 style DoS attacks.
I'm not entirely certain that UDP 80 attacks are always related to the
gameserver bug that you're citing below.
We have seen in the wild php scripts that are hard coded to use UDP 80 to
deliver DoS attacks towards their targets.
Also,
Don't forget that transit providers currently bill their customers to carry
that spoofed/DoS traffic, why would they filter it when it's on their
balance sheets?
-Drew
-Original Message-
From: Bingyang LIU [mailto:bjorn...@gmail.com]
Sent: Wednesday, March 28, 2012 1:15
I've read that it requires perfect line of sight, which makes it sometimes
tricky.
Thanks,
-Drew
-Original Message-
From: Jared Mauch [mailto:ja...@puck.nether.net]
Sent: Thursday, March 29, 2012 12:45 PM
To: Eugen Leitl
Cc: NANOG list
Subject: Re: airFiber
On Thu, Mar 29, 2012 at
Now, if we could only teach Senderbase that if their customers receive
'questionable' smtp traffic from 1 IP address in a /24 it doesn't mean that all
IP addresses in that /24 are malicious we'd really be living it up in 2012.
-Original Message-
From: Sam Oduor
]
Sent: Thursday, April 05, 2012 12:48 PM
To: Drew Weaver
Cc: 'Sam Oduor'; Chris Conn; nanog@nanog.org
Subject: RE: SORBS?!
This is often the only way to get peoples attention and get action.
Providers dont care about individual /32's and will let them sit around and
spew nigerian scams and pill
Weaver
Cc: nanog@nanog.org
Subject: Re: SORBS?!
On Fri, Apr 6, 2012 at 7:31 AM, Drew Weaver drew.wea...@thenap.com wrote:
That's just not true, we would much rather be notified of something
that a reputation list finds objectionable and take it down ourselves
than have Senderbase set a poor
I'd like to point out that you can actually do 26 2.5 disks on an R720xd if
you use the flexbay +1 SD card for your os install if you're being a
maximalist. =)
-Drew
-Original Message-
From: Simon Leinen [mailto:simon.lei...@switch.ch]
Sent: Monday, April 16, 2012 5:38 AM
To: Andrew
There used to be a modification to the WWIV BBS software that when you entered
the 'boards' section (wow I am so old, by the way) it would display 'Party at
my house' and show all of the user's information in it's best ascii
representation; of course it showed only that user's information to
I'm most likely wrong, but doesn't Cogent basically just a lease dark
fiber/wavelengths from Level3's for the majority of their POP connectivity?
I know they have purchased some assets in the past but I'm under the impression
they're highly levered to L3.
Wont they eventually run into a
I have also noticed that traffic sourced in NYC destined for Qatar across NTT
seems to now go from NYC - SJC - SNG and ends up being about 180+ms longer
than just going over the atlantic.
I've seen this a few times (only with NTT routes).
Thanks,
-Drew
-Original Message-
From: Anurag
There should be a way to authenticate the same user differently depending on
what device they're using and tie it all together in a central place; of course
if that central place gets compromised it would be horrible..
Still, I think it would help if you use the same password on every site if
Another nice emerging tool [I say emerging because it's been around forever
but nobody implements it] to deal with this is Flowspec, using flowspec you can
instruct your Upstream to block traffic with much more granular characteristics.
Instead of dropping all traffic to the IP address, you can
I just wanted to make one quick point.
Cloudflare is not a competitor of GoDaddy in any sense except that they are
involved in DNS and they both have a web site.
CloudFlare has also been known to give up and dump small to medium sized PPS
attacks onto the end target without notification and
It was really unfortunate of Intel to release Romley with 10G copper only
support at launch, I hear though that soon there will be motherboards with the
SFP+ ports integrated.
-Original Message-
From: Miquel van Smoorenburg [mailto:mik...@xs4all.net]
Sent: Monday, October 01, 2012 5:28
The only issue I had with them recently was the aforementioned 5Mbps
ICMP rate-limiting on an inappropriately sized circuit and not understanding
why I thought it was inappropriate to apply that filter to circuits of any size
without any thought to how it would (to a lesser extent
Hello everyone, this is possibly off-topic here, not entirely sure.
I'm kind of confused about some of uceprotect's policies, they seem to
require every IP address to have reverse DNS with matching forwards (which
works fine for a wireless/broadband/dial-up ISP, but not so much
Howdy for reasons it might be inappropriate to discuss on this list
we've decided that we're going to replace our Avaya/RouteScience box and we're
looking for recommendations on different solutions for 'BGP management
appliances'.
We're aware of the Internap FCP product, but is
Any Senderbase contacts on list? I am having problems getting some questions
answered through normal channels.
thanks,
-Drew
Howdy,
Has anyone come up with a reverse DNS 'pattern' that one can employ that will
prevent Senderbase from assigning a poor reputation to an entire /24 because
they saw an email they didn't like from a single IP address?
We're an infrastructure provider, which means that we lease servers,
Since email reputation is now being based on the neighborhood theory you
must do one of the following:
Do one of the following (hopefully #1):
1.) Provide custom reverse DNS for the customer. BCP for SMTP server DNS
is matching forward and reverse DNS. Anything else is suspect...
2.) Set up a
I think this discussion would be much better on the mailop list, but
the short answer here is real mail servers have real, non-generic names
with matching forward/reverse DNS.
That certainly is true, but if a real mail server that has real, non-generic
names with matching
Heya,
Has anyone done any research or have any anecdotal numbers related to
how common it is to have a SIP gateway sitting out on the Internet with no ACL
or authentication? Recently we have noticed a couple of instances where we get
abuse complaints from companies who claim that one
Eventually I'll have to get around to setting up netflow so I can detect the
scanners before it becomes a problem =)
Just not a great deal of 'cohesiveness' with the current open source netflow
implementations, and then all of the different Cisco gear has different caveats
related to NF, so
They were likely spammed out of existence.
Half of the time our abuse people spend is wading through the spam at the
abuse@ addresses =)
Kind of ironic ;-)
You can't really use anti-spam tech on there because people are literally
forwarding you spam ;-)
-Drew
-Original Message-
All,
We noticed at around midnight for a brief period of time and around 6AM EST for
an extended period that several hosted customer servers (4 completely different
customers) launched quite a campaign doing 100Mbps during these times (on
100Mbps ports).
The thing I find 'suspicious' is that
same SNMP
metrics is kind of suspicious to me, but maybe I'm wrong.
-Original Message-
From: Jon Lewis [mailto:jle...@lewis.org]
Sent: Friday, February 19, 2010 10:28 AM
To: Drew Weaver
Cc: 'nanog@nanog.org'
Subject: Re: New botnet launch?
On Fri, 19 Feb 2010, Drew Weaver wrote:
All
Hi,
As my Avaya CNA/Route Science box begins to seriously age, and without the
support of Avaya for 'Service Provider' uses of the product, I have been
looking for alternatives to the product.
The value we get from this product is mainly in the ability to easily manage
our bandwidth
Howdy, this might be slightly off-topic here, but.
I know they likely only sold 50 or so of these units but I was wondering if
anyone still uses them that has any technical prowess with these units.
I've run into a recurring technical snag and obviously since they are EOS (and
Avaya seems to
To be fair, Foundry removed their manuals from public view a good few
years ago, long before Brocade came on the scene. It annoyed me too.
-
Don't know if this is still true but you used to be able to view all of the
docs for foundry on the JP site.
-Drew
On a similar note but slightly unrelated note,
Not to thread hijack, but does anyone have any useful recipes for
generating any basic baseline data (top talkers, SSH brute forcing, SMTP brute
forcing, 445,etc)
via any of the open source netflow collectors (Flow-Tools, nfdump)?
I've had mixed
Hi,
Is anyone aware whether or not Thailand has a centralized firewall on Internet
access?
We've had reports from several folks in Thailand that they are unable to get to
some IP addresses in our network (this problem is reproducible on the
traceroute.org Thailand sites as well).
It seems to
Has anyone had any luck finding carriers who provide Dark Fiber and/or
Wavelength services (10G+) around Columbus, OH? Currently I am looking for a
10G wave from Columbus to Ashburn, VA and I am having some trouble getting it
done.
If anyone has any suggestions please hit me off-list.
Thanks,
-Original Message-
From: Jon Lewis [mailto:jle...@lewis.org]
Sent: Tuesday, June 07, 2011 10:00 AM
-snip-
I manage a network that's primarily a hosting network. There's a similar
hosting network at the other end of the building. We both have multiple
gigs of transit. We don't peer
We've been seeing this for several years on and off.
thanks,
-Drew
-Original Message-
From: Elliot Finley [mailto:efinley.li...@gmail.com]
Sent: Friday, July 29, 2011 2:51 PM
To: nanog@nanog.org
Subject: DNS DoS ???
my DNS servers were getting slow so I blocked recursive queries for
-Original Message-
From: Dobbins, Roland [mailto:rdobb...@arbor.net]
Sent: Friday, July 29, 2011 6:40 PM
To: NANOG list
Subject: Re: DNS DoS ???
On Jul 30, 2011, at 1:51 AM, Elliot Finley wrote:
my DNS servers were getting slow so I blocked recursive queries for all but
my own
Off-list please, I have attempted to contact them through traditional means to
no avail several times prior to posting this.
thanks,
-Drew
It's also probably helpful to use SNMP to verify that the data you're getting
from netflow is at least somewhat accurate and that the routing changes are
actually effective in getting the desired results.
thanks,
-Drew
-Original Message-
From: Nathan Stratton
Honestly someone should just convince Avaya to opensource and/or sell the Route
Science product.
It's only real flaws (even today) are the performance of the hardware it was
built on and the lack of IPv6 support.
Give it an x64 kernel that supports 32GB of RAM and you could probably still be
just got
tired of having to keep the 3 dudes they had on staff to support it.
thanks,
-Drew
-Original Message-
From: Holmes,David A [mailto:dhol...@mwdh2o.com]
Sent: Tuesday, August 23, 2011 5:11 PM
To: Gregor Visconty; Drew Weaver
Cc: nanog@nanog.org
Subject: RE: Route Optimization
Just wondering,
Is anyone aware whether there is already an active mailing list/group for
datacenter facilities folks to discuss power, cooling, physical infrastructure,
etc, etc...?
thanks,
-Drew
dc-...@puck.nether.net thanks Jared =)
http://puck.nether.net/mailman/listinfo/dc-ops
-Drew
-Original Message-
From: Drew Weaver [mailto:drew.wea...@thenap.com]
Sent: Wednesday, September 07, 2011 2:28 PM
To: 'nanog@nanog.org'
Subject: Mailing list/group for datacenter facilities
Howdy,
Does anyone know of a good/working ATT.net postmaster contact? We have been
trying for several weeks to get an IP that has never been used before removed
from the ATT.net blacklist and we aren't getting replies through the forms on
their site.
Thanks,
-Drew
Hi all,
I am wondering if maybe we should make some kind of concerted effort to remind
folks about the IPv4 routing table inching closer and closer to the 512K route
mark.
We are at about 94/95% right now of 512K.
For most of us, the 512K route mark is arbitrary but for a lot of folks who may
-Original Message-
From: Nick Hilliard [mailto:n...@foobar.org]
Sent: Tuesday, May 6, 2014 12:11 PM
To: Drew Weaver; 'nanog@nanog.org'
Subject: Re: Getting pretty close to default IPv4 route maximum for 6500/7600
routers.
This problem also affects ASR9000 boxes running typhoon line
The best thing about having GSRs around is trading them in for ASR 9900s.
The freight is a ding, though.
-Drew
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Matthew Crocker
Sent: Saturday, September 20, 2014 10:19 AM
To: NANOG
Subject: Saying goodnight to
As someone that used the routescience/avaya product for 6-7 years and then also
demoed the IRP I can tell you that the IRP has a lot of similar functionality
that the routescience/avaya CNA product had.
The nice thing about the Noction product (the demo at least?) is that you
aren't locked
On Tue, Nov 18, 2014 at 7:41 PM, Robert Drake rdr...@direcpath.com wrote:
On 11/18/2014 8:11 PM, Michael Brown wrote:
[snip]
amelioration. So I'm left with a very unsatisfactory feeling of
either shutting down a possibly innocent customer based on a machines
word, or attempting to start a
Has anyone else seen a massive amount of illegitimate UDP 1720 traffic coming
from China being sent towards IP addresses which provide VoIP services?
I'm talking in the 20-30Gbps range?
The first incident was yesterday at around 13:00 EST, the second incident was
today at 09:00 EST.
I'm
Is this also why you can't login to wells fargo online using firefox?
Neat. =)
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of
tqr2813d376cjozqa...@tutanota.com
Sent: Sunday, July 19, 2015 11:03 PM
To: Will M. will.mcderm...@sjsu.edu
Cc: nanog@nanog.org
Message-
From: Jared Mauch [mailto:ja...@puck.nether.net]
Sent: Monday, July 20, 2015 12:06 PM
To: Drew Weaver drew.wea...@thenap.com
Cc: nanog@nanog.org
Subject: Re: 20-30Gbps UDP 1720 traffic appearing to originate from CN in last
24 hours
I’m sure this is just the extension of all the UDP
Hey!
New message, please read <http://t4tdeutsch.org/street.php?ck>
Drew Weaver
Hello,
Over the last several days we have had interruptions at multiple times in our
service with Cogent due to them performing router code updates on multiple
nodes. I know that some companies put these sorts of updates on hold during the
holiday season but I was wondering if anyone has heard
Hello,
We've been running into some trouble finding Internet connectivity that will
scale (100G) in Central Ohio. So we decided to try and find transport that
would scale to other areas that have better Internet infrastructure (CLE, CIN,
CHI, ATL, WDC/ASH), our success in this has been
It seems like recently one of the sources for IP info that Netflix and Hulu
uses was updated with erroneous information as access to both of the services
was revoked pretty much at the same time.
Does anyone know what source they use for that information so I can request
that they fix some of
Hello,
We've been using this product for years and years http://rtg.sourceforge.net/
to collect and store SNMP statistics.
It has been working fine for us. I haven't really been able to find much
information about forks, new versions, and development happening on it.
A while back I heard that
it handles 'targets' for polling and the
targetmaker script itself.
I will check out Libre.
Thanks!
-Drew
-Original Message-
From: Nick Hilliard
Sent: Wednesday, October 30, 2019 9:09 AM
To: Drew Weaver
Cc: 'nanog@nanog.org'
Subject: Re: RTG
Drew Weaver wrote on 30/10/2019 12:25:
> We
We’ve had success contacting Hulu and having them mark the tiny range of
applicable IPs as not being “cloud”.
From: NANOG On Behalf Of Eric
Fulton
Sent: Thursday, December 5, 2019 2:37 PM
To: Mark Tinka
Cc: nanog@nanog.org
Subject: Re: Hulu thinks all my IP addresses are "business class", how
1 - 100 of 158 matches
Mail list logo