Re: While we worry about Vyatta and Bras.....
On Mon, Jul 19, 2010 at 3:15 PM, Larry Sheldon larryshel...@cox.net wrote: ..in other news (that seems to have attracted little attention)... http://www.moonbattery.com/archives/2010/07/73000-blogs-shu.html 73000 Internet sites where shutdown by somebody, for something. http://yro.slashdot.org/story/10/07/19/2052202/Blogetery-Shutdown-Due-To-al-Qaeda-Info The single host/box had bomb making info and hit lists. Yeah, I'd shut it down too if it was on my network. Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: While we worry about Vyatta and Bras.....
On Mon, Jul 19, 2010 at 3:25 PM, Larry Sheldon larryshel...@cox.net wrote: Seems like somebody would know who ordered it. And were all 73000 sites about making bombs? From TFA it was the FBI and it was one box with no back-ups. The hosting company decided to do the adult thing and pull the plug. 73k 'sites' may be a bit of a stretch IMHO. http://news.cnet.com/8301-31001_3-20010923-261.html Sources close to the investigation say that included in those materials were the names of American citizens targeted for assassination by al-Qaeda. Messages from Osama bin Laden and other leaders of the terrorist organization, as well as bomb-making tips, were also allegedly found on the server. But Marr said a Burst.net employee erred in telling Blogetery's operator and members of the media that the FBI had ordered it to terminate Blogetery's service. He said Burst.net did that on its own. Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: FW: Who controlls the Internet?
I thought that Randy Bush won it from Paul Vixie in a poker game. Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: off-topic: historical query concerning the Internet bubble
On Thu, Aug 5, 2010 at 11:38 AM, Andrew Odlyzko odly...@umn.edu wrote: To get a better understanding of the dynamics of that bubble, to assist in the preparation of a book about that incident, I am soliciting information from anyone who was active in telecom during that period. We saw that or better growth at Flying Crocodile (aka sextracker.com) during that period. I don't have access to the stats anymore (if they even exist) but in two years we went from 1Mb/s to over 1Gb/s in outbound traffic. This was 1998 to 2000ish. It was fun to try to keep enough pipe and cards in the GSR12000s even being in the Westin. Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Troubleshooting TCP performance tutorial
In a situation like yours I found Internet Core Protocols: The Definitive Guide by Eric Hall an easy to read guide to insuring that what you are seeing via wireshark. I was able to find an issue with the DF bit in a load balancer that was causing confounding headaches in a network using wireshark and this book. Walk it through the syn-ack dance and don't trust that the devices are handling it correctly. Start at one end and work your way through and insure to YOUR satisfaction that every device proscribes to the protocol. Don't rush, don't jump to conclusions. Just follow the packet. That's the best advice I can give you. http://oreilly.com/catalog/9781565925724/ -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474 On Fri, Sep 17, 2010 at 5:06 PM, Abel Alejandro aalejan...@worldnetpr.com wrote: Greetings, This past week I have been trying to find the root cause of tcp performance problems of a few clients that are using a third party metro Ethernet for transport. RFC2544 tests (Layer 2) and iperf using UDP give good symmetric performance almost 100% the speed of the circuit. However all kind of TCP tests result in some kind of asymmetrical deficiency, either the upstream or downstream of the client is hugely different. The latency is not a huge factor since all the metro Ethernet connections have less than 2 ms. So the question basically if is there a good tutorial or white paper for troubleshooting tcp with emphasis of using tools like Wireshark to debug and track this kind of problems. Regards, Abel.
Re: Troubleshooting TCP performance tutorial
http://www.amazon.com/Wireshark-Network-Analysis-Official-Certified/dp/1893939995 Spendy but looks good. I'll have to pick it up when the next consulting check comes in. Thanks! I was sad to see that Eric Hall's book was out of print. At least cheap used copies are available. I forgot my copy a few jobs ago... I'm sure someone is getting help from it. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474 On Fri, Sep 17, 2010 at 6:00 PM, Tim Eberhard xmi...@gmail.com wrote: To add on to that. Recently Wireshark Network Analysis was released. It's an excellent book covering wireshark and reading packet captures in general by Laura Chappell. I just finished reading it and I have to say it's an excellent book. Highly recommended. Between those two books I think you'll be very close to being a wireshark/packet capture guru. I hope this helps, -Tim Eberhard On Fri, Sep 17, 2010 at 7:33 PM, Joe Hamelin j...@nethead.com wrote: In a situation like yours I found Internet Core Protocols: The Definitive Guide by Eric Hall an easy to read guide to insuring that what you are seeing via wireshark. I was able to find an issue with the DF bit in a load balancer that was causing confounding headaches in a network using wireshark and this book. Walk it through the syn-ack dance and don't trust that the devices are handling it correctly. Start at one end and work your way through and insure to YOUR satisfaction that every device proscribes to the protocol. Don't rush, don't jump to conclusions. Just follow the packet. That's the best advice I can give you. http://oreilly.com/catalog/9781565925724/ -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474 On Fri, Sep 17, 2010 at 5:06 PM, Abel Alejandro aalejan...@worldnetpr.com wrote: Greetings, This past week I have been trying to find the root cause of tcp performance problems of a few clients that are using a third party metro Ethernet for transport. RFC2544 tests (Layer 2) and iperf using UDP give good symmetric performance almost 100% the speed of the circuit. However all kind of TCP tests result in some kind of asymmetrical deficiency, either the upstream or downstream of the client is hugely different. The latency is not a huge factor since all the metro Ethernet connections have less than 2 ms. So the question basically if is there a good tutorial or white paper for troubleshooting tcp with emphasis of using tools like Wireshark to debug and track this kind of problems. Regards, Abel.
Re: network name 101100010100110.net
On Saturday night, Day Domes daydo...@gmail.com postulated: I am thinking of using 101100010100110.net does anyone see any issues with this? It's truly unsigned? (15 bit) -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: network name 101100010100110.net
16 bit integers. Ok, a lame joke. 22694.NET and 58A6.NET are available. What are you trying to name? -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474 On Sat, Oct 16, 2010 at 10:02 PM, Day Domes daydo...@gmail.com wrote: On Sun, Oct 17, 2010 at 12:59 AM, Joe Hamelin j...@nethead.com wrote: On Saturday night, Day Domes daydo...@gmail.com postulated: I am thinking of using 101100010100110.net does anyone see any issues with this? It's truly unsigned? (15 bit) -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474 unsigned?
Re: network name 101100010100110.net
Matthew said: And imagine answering the phones... Bender's Big Score. Is this for Jewish Hospital (AS 22694)? And many years ago I had jh.org, but domains were $70 back then and my wife thought I had too many... -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: network name 101100010100110.net
That's why 3M registered mmm.com back in 1988. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474 On Sun, Oct 17, 2010 at 8:18 PM, Mark Andrews ma...@isc.org wrote: In message 20101018024021.gc8...@vacation.karoshi.com., bmann...@vacation.kar oshi.com writes: On Sun, Oct 17, 2010 at 09:16:04PM -0500, James Hess wrote: On Sat, Oct 16, 2010 at 11:46 PM, Day Domes daydo...@gmail.com wrote: I have been tasked with coming up with a new name for are transit data network. I am thinking of using 101100010100110.net does anyone see any issues with this? The domain-name starts with a digit, which is not really recommended, RFC 1034, due to the fact a valid actual hostname cannot start with a digit, and, for example, some MTAs/MUAs, that comply with earlier versions of standards still in us e, will possibly have a problem sending e-mail to the flat domain, even if the actual hostname is something legal such as mail.101100010100110.net. if there is code that old still out there, it desrves to die. the leading character restriction was lifted when the company 3com was created. its been nearly 18 years since that advice held true. Which goes back to one of the standard-provided definitions of domain name syntax used by RFC 821 page 29: domain ::= element | element . domain element ::= name | # number | [ dotnum ] mailbox ::= local-part @ domain ... name ::= a ldh-str let-dig ... a ::= any one of the 52 alphabetic characters A through Z in upper case and a through z in lower case d ::= any one of the ten digits 0 through 9 at least three times in the past decade, the issues of RFC 821 vs Domain lables has come up on the DNSEXT mailing list in the IETF (or its predacessor). RFC 821 hostnames are not the convention for Domain Labels, esp as we enter the age of Non-Ascii labels. Correct but if you want to be able to send email to them then you *also* need to follow RFC 821 as modified by RFC 1123 so effectively you are limited to LDLDH*LD*{.LDLDH*LD*}+. If you want to buy !#$%^*.com go ahead but please don't expect anyone to change their mail software to support b...@!#$%^*.com as a email address. The DNS has very liberal labels (any octet stream up to 63 octets in length). If you want to store information about a host, in the DNS, using its name then you still need to abide by the rules for naming hosts. Yes this is spelt out in RFC 1035. There are lots of RFCs which confuse domain name with domain style host name. Or confuse domain name with a host name stored in the DNS. Mark That said, the world was much simpler last century. --bill -- -Jh -- Mark Andrews, ISC 1 Seymour St., Dundas Valley, NSW 2117, Australia PHONE: +61 2 9871 4742 INTERNET: ma...@isc.org
Re: network name 101100010100110.net
Joel said: and not just because minnestoaminingandmanufacturing.com is hard to type... Also back then you could only have eight letters in your domain name. But it was free and only took 6-8 weeks to get. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Why ULA: low collision chance (Was: IPv6 fc00::/ 7 — Unique local addresses)
Ray said: .. But then why wouldn't you just ask for a GUA at that point. What's the cost for a /48 GUA from ARIN these days? Why pay for something that you're not going to use? I agree with you but as long as the RIRs charge for integers people will make up their own if they can find a way. If a small shop guy is looking at ether paying for GUA space or affording a more expensive switch that will do SNMP, he's going to get the switch. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: IPv6 fc00::/7 — Unique local addresses
On Thu, Oct 21, 2010 at 5:34 PM, Randy Carpenter rcar...@network1.net wrote: Justification aside, it is quote affordable for a typical power user. For large values of affordable. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Token ring? topic hijack: was Re: Mystery open source switching
On Wed, Nov 3, 2010 at 8:15 AM, Gary Baribault g...@baribault.net wrote: OK, I haven't taken it back out of the box, but anyone still have 8 bit ISA Arcnet with thin coax? No, but I remember controlling stacks of Mulitech modems with an Arcnet RJ-11 connection on Windows 3.1. I think the Arcnet hub is still kicking around here under a pile in the garage. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Clearwire/Clear for branch office connectivity?
Since I'm not with Clearwire anymore (end of contract) I can say that there are people in the core networking that do follow and respond the this list. I can say that their backbone is solid and the people there really do care about the network. If you have serious a backbone issue with Clearwire a message on this list will result in a response.. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Routing Suggestions
There are two companies, Company A and Company B, that are planning to continuously exchange a large amount of sensitive data and are located in a mutual datacenter. They decide to order a cross connect and peer privately for the obvious reasons. Second NIC on a secure server at A wired with a crossover cable to a second NIC a secure server at B. Use an RFC1918 /30 that is null routed on both companies routers. KISS. Hand it off to the developers. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Old Annex question
Michael Loftis mlof...@wgops.com wrote: I could just set the attn_string to say ^A and then I could just hit that and it would work, but it doesn't seem to. Remember if you're using minicom it will escape ^A for it's own menu use. Wolfe.net had a score of those with Multi-tech modems way back in the day. I remember days spent hunting down ring-no-answers in a 400 POTS line hunt group. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Christchurch New Zealand
The other CERT: Community Emergency Response Team. Kind of off-topic for NANOG but I know that most of us are concerned with disaster recovery. This is the first local line. For US folks, there should be a CERT for you city or county, if not ask why. For Canadians, check with PEP. The CERT program trains you what to do when the offal hits the fan and the first responders are overloaded. https://www.citizencorps.gov/cert/about.shtm The Community Emergency Response Team (CERT) Program educates people about disaster preparedness for hazards that may impact their area and trains them in basic disaster response skills, such as fire safety, light search and rescue, team organization, and disaster medical operations. Using the training learned in the classroom and during exercises, CERT members can assist others in their neighborhood or workplace following an event when professional responders are not immediately available to help. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: names are not numbers, was IPv4 address length technical design
On Sat, Oct 6, 2012 at 6:14 PM, John Levine jo...@iecc.com wrote: Hey, I've got a great idea. Let's lose this silly phone number portability nonsense and use phone numbers as routes. You do not want to go down the hell hole that is SS7. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Detection of Rogue Access Points
-- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474 On Sun, Oct 14, 2012 at 1:59 PM, Jonathan Rogers quantumf...@gmail.comwrote: Gentlemen, I'm looking for innovative ideas on how to find such a rogue device, Check ARP tables for MAC address of wireless devices (first few nybbles show manufacturer.) Or for ports with multiple devices where you know there aren't switches. ideally as soon as it is plugged in to the network. That's going to take some decent scripting. Left as an exercise... -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Detection of Rogue Access Points
On Mon, Oct 15, 2012 at 8:54 AM, Roy r.engehau...@gmail.com wrote: Why not give them wireless Internet access only? That will keep all the smartphone users happy. Maybe because he has 130 sites and 130 truck rolls is not cheap. Also company policy says no. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Detection of Rogue Access Points
On Mon, Oct 15, 2012 at 4:06 PM, Sean Harlow s...@seanharlow.info wrote: You are correct that deploying to a number of sites isn't cheap, but the actual relevant question is how does this cost compare to the cost of the original request to detect these things. In this case almost all forms of detection/prevention except possibly looking at TTL will require new equipment to be deployed at the site(s) anyways based on the information we have, negating much of the extra cost. Any active detection on the RF side of things is generally done using WAPs in a managed network or standalone devices that are pretty much repurposed WAP hardware anyways, but cost a lot more. I think it would be cheaper to have a script written that would grab the ARP table of each site and then compare to what is known. Kind of an ARP tripwire. Sure you'll have to take the time with early runs to hunt down non-company owned MACs but that is going to be a lot cheaper than managing a 130 site roll-out. Even if you did put RF monitoring equipment in each site you would still have to monitor and manage it. Either way, you'll be getting a current inventory of devices. From what I read, he wants to detect non-company equipment on his network. It's just WiFi that is the main problem. Even just watching the DHCP leases, which I assume the little Cisco router is providing, will catch most of the rouge devices. Get someone that knows networking and perl on the task for a month. If they don't have the local talent there are a lot of people that would love to take the contract, considering most of it could be done remotely. Jonathan stated that they have health data on the network and only company issued devices are allowed. I would suggest to him that he inventory the equipment via MAC address (I'm guessing that it's mostly standard issue stuff that would be easy to recognize) and then lock down unused ports and setup up monitoring. If a new MAC appears on the network, then it better have been sent there by IT. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Detection of Rogue Access Points
On Thu, Oct 18, 2012 at 7:00 AM, Jonathan Rogers quantumf...@gmail.com wrote: I like the idea of looking at the ARP table periodically, but this presents some possible issues for us. Is it just WAPs that you are worried about or any rouge device at the remote sites? If you're doing medical data then I would think that any non-company device would be suspect. If that is the case then ARP scraping is the better way. Basically you need an inventory of what is at the sites. This you should already have and if you don't, that is your first step. A bit of perl and expect scripting would get you a long way to your goal. Like I mentioned before, if you don't have the time/talent to script the task, call out for a coder-for-hire. I feel that concentration just on WAPs is missing the bigger issue. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Verizon wireless (cdma/LTE) compatible ethernet connectable OOB access device.
I've used digi.com before, does the job. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re:
nanog:/root#rmuser Please enter one or more usernames: flower_tailor Matching password entry: flower_tailor:*:13204:13204::0:0:User :/home/flower_tailor:/bin/tcsh Is this the entry you wish to remove? y Remove user's home directory (/home/flower_tailor)? y Removing user (flower_tailor): mailspool home passwd. nanog:/root# -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Data Center Installations
Graybar. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474 On Wed, May 1, 2013 at 12:23 PM, Warren Bailey wbai...@satelliteintelligencegroup.com wrote: Do any of you have a go to resource for materials used in installations? Tie wraps, cable management, blahblahblah? I have found several places, but I'm curious to know what the nanog ninja's have to say. //warren
Sr. Net Eng needed.
Lots of travel, 6 month contract, 4G build-out. Contact Voshte at vgustaf...@kforce.com. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Were A record domain names ever limited to 23 characters?
On Fri, Sep 30, 2011 at 02:54:38PM -0700, steve pirk [egrep] wrote: I seem to recollect back the 1999 or 2000 times that I was unable to register a domain name that was 24 characters long... I remember tales from when there was an eight character limit. But that was back when you didn't have to pay for them and they assigned you a class-c block automatically. Of course it took six weeks to register because there was only one person running the registry. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Were A record domain names ever limited to 23 characters?
On Fri, Oct 7, 2011 at 7:30 PM, Jay Ashworth j...@baylink.com wrote: - Original Message - 3com.com I recall that 3M was originally mmm.com because they wouldn't allow a number to start a domain. /me runs whois mmm.com Yep, Created on..: 1988-10-31. but wait, 3m.com Created on..: 1988-05-27. So was the digit as first octet a limitation with some OS or software (BIND, sendmail, gopher?) or do I have brain-fade? -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Cell-based OOB management devices
On Nov 6, 2011 10:15 PM, David Hubbard dhubb...@dino.hostasaurus.com wrote: Hi all, I am looking at cellular-based devices as a higher speed alternative to dial-up backup access methods for out of band management during emergencies. I've used the Digi devices for Clearwire site OOB and in many retail situations where they are use for backup connection and for when the wire line hasn't been delivered yet. They do come with a static IP address if you request (and pay?) for it. They can come from the shared mobile IP range (RFC 2002) so that you can keep the static IP as you move between tower sites. You can also get them piped right in to your net via a VPN, although I suspect that is only affordable for a very large install base. Real world 3G bandwidth is about 1Mb/s down and 300Kb/s down. RTT (ping) is around 185ms to a local IXP (which kinda sucks for terminal support, but still better than a POTS modem.) -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Query : seeking a (low cost secure) turnkey plug-and-play appliance to report network outages
On Thu, Nov 17, 2011 at 6:58 AM, A. Chase Turner ch...@stumpy.com wrote: I am seeking a $100 turnkey micro hardware appliance to plug into a LAN hub... Why micro? Just get a pile of free for the carting-off old Pentium machines and run them headless with a BSD. Set them up to heartbeat to a cacti box. Why buy new when you have a good use for the old stuff that is going to a dump anyway? -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: First real-world SCADA attack in US
This might be of interest to those wishing to dive deeper into the subject. Telecommunications Handbook for Transportation Professionals: The Basics of Telecommunications by the Federal Highway Administration. http://ops.fhwa.dot.gov/publications/telecomm_handbook/ I'm still digging through it to see what they say about network security. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Speed Test Results
On Fri, Dec 23, 2011 at 9:35 PM, Graham Beneke gra...@apolix.co.za wrote: That said - people get fixated on the numbers. 80% of the purchased speed on non-CIR services is cause for a complaint. Our biggest issue is people doing tests to destinations 300+ ms away that only last for a few seconds and then complaining about poor performance. As soon as you mention things like bandwidth delay product the eyes glaze over. Heavy use of lossy WISP access network providers doesn't help. Or that most ADSL lines have about 20% ATM cell tax on them. I did get caught up on a speed test today. I was turning up a GBLX 100Mb circuit. I got the /30 and all the pings were good to the router. I then pinged some known hosts in the Westin (about a block away where GBLX's router was) and saw some not so nice ping times. I then ran a speedtest and only got about 2Mb/s. Come to find out that this was going to be an MPLS path to the company's California office. Since it hadn't been setup fully the router had found some path through it's management network to ping the world through the tester's DSL line on the other side. So, know the path you are testing. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: next-best-transport! down with ethernet!
From: Vitkovsky, Adam avitkov...@emea.att.com -also there some attempts to actually send the information 50 micro sec back in time Please don't let the high-frequency stock traders get a hold of this. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Console Server Recommendation
-1 for Cyclades. At least in Clear's DC plants the PCMCIA modems would often wedgie and require a re-insert. Also, if you have a DC power side fail, they beep and beep and beep. Very annoying when your power people are still catching up when you're trying to commission equipment. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: couple of questions regarding 'lifeline' and large scale nat...
On Fri, Feb 10, 2012 at 1:19 PM, Eric J Esslinger eesslin...@fpu-tn.comwrote: We're toying with the idea of a low bitrate 'lifeline' internet on our cable system, maybe even bundled with a certain level of cable service. First question, if you happen to be doing something like this, what bit rates are you providing. Well, a lifeline telephone is effectively 64kb/s, up and down. Makes me remember when I had my first ISDN line and was happy to get beyond dial-up rates. Second question, though 'real' internet customers all get real IP's, what would you think of doing something like this with 'large scale' nat instead. Understand, we're only talking about basic internet, something like a 256k/96k (or similar) connect, not something that would be used by a serious user. (One thing we are looking at is some older dial up users we still have, most of which could go onto cable just fine but don't want to pay the price). Force SMTP to something sane, block all the 139, etc. MS ports. Basic web, telnet, and ssh. Set it up like a coffee house. Use a proxy and make them register. It's not like they are chatting 911, ya know. If they have NAT issues, then they need a real account. If they can get to google, wikimedia, or what ever a high school student needs to research papers, then they have what they need for a life-line. Let chat protocols through, that's low bandwidth. I'm guessing that this is done as a favor to the customer that won't/can't pay for a real account. But let them know it's not a real account. This is just to give them a taste of real IP and not a solution to all their problems. Shove them a NATted DHCP address and if they can't figure that out then refer them to the local wizkid or a better plan with support. Let them know up front that this is a basic service and don't expect phone support. If you're a cable company then they can call and say the cable is out. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Which P-Touch should I have?
Anyone got a solution for *that* particular problem? Should I get a better TZ-compatible labeler? Brother PT-1400 P-Touch Handheld Labeler ($90ish) is nice in that it will do three lines and also do flags (double print) to tag wires with. Batteries last a good while, and fits in the hand nicely. Good for field work and fairly rugged. Main downside is lack of a qwerty keypad. If you don't have to label a whole data center and just need to pump out a dozen or two a day, it does the job well and won't kill the budget. Fits nice in the tool bag too. http://www.amazon.com/Brother-PT-1400-P-Touch-Handheld-Labeler/dp/B00011KHPG/ref=sr_1_22?ie=UTF8qid=1329441056sr=8-22 -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Which P-Touch should I have?
Give me a link to the labeling section and I'll let you know if I've seen it in the wild. I'm out in the field now (got sick of the desk) and see a lot of commercial/retail plants. I doubt that it's going on in retail, except maybe Lowe's Hardware. They do love MM fiber and just did a nation-wide network upgrade to gigabit everywhere in the stores. But then again, the label specs were kinda hit and miss. Sadly I've seen no IPv6 in any retail shops. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474 On Thu, Feb 16, 2012 at 9:20 PM, Kenneth M. Chipps Ph.D. chi...@chipps.comwrote: I don't suppose anyone follows the TIA-606-B Administration Standard for the Telecommunications Infrastructure of Commercial Buildings when labeling things like cables. -Original Message- From: Owen DeLong [mailto:o...@delong.com] Sent: Thursday, February 16, 2012 10:42 PM To: William Herrin Cc: NANOG Subject: Re: Which P-Touch should I have? For cable labeling I've had good results with 3M Scotch Super88 color electrical tape. Pick unique color bands for each cable. Band it identically at both ends. You don't have to squint to see how it's labeled. And the label isn't invalidated merely because you unplugged it from one place and plugged it in somewhere else. I usually use labels printed on all sides in about a 14 point font that have a unique number followed by a - and a length. So, for example, 10294-4.5 is a 4.5' long cable number 10294. You might need to squint a bit to read it, but, 14 points is usually pretty legible and being printed 4 times on the label (3 of which remain visible on the average cat5/cat6 cable) means you usually don't have to futz with twirling the cable to find the label. I usually have the labels installed ~2 from the plug at each end. In a crowded deployment, I think the color bands would be like trying to read resistor color codes in a box of ~1,000 mixed resistors. You're going to end up squinting anyway. With my tactic, you have the additional advantage that you get a defined search radius within which the other end can be located. Using serial-number labels instead of equipment-specific labels means that mine aren't invalidated either. Owen
Re: WW: Colo Vending Machine
Just give me a gumball machine with RJ45 ends and a crimper on a chain. I'll find some wire that can be shorter. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Operation Ghost Click
On Wed, May 2, 2012 at 1:20 PM, valdis.kletni...@vt.edu wrote: It may not be the codec that sucks... Yeah, it is. Sit on hold with some music that is at a low volume and you'll hear part that turn into white noise at times. Mobile operators us codecs that are tuned for human voice. Get sounds away from voice and they turn to mush. Back in a past life when I was a broadcast engineer we would use dial-up lines for remotes. If the remote was in the same CO and it was an analog (mechanical) office we could get 8-10kHz audio through a pair, and flat if we used a bit of equalization. S/N was good enough to play records for an AM station. Of course, now in the day of cell phones the term broadcast quality has lost all meaning. Field reporters using cell phones for live broadcast! There is a reason that the FCC set aside 30kHz channels for electronic news gathering (ENG.) At least some stations still order up ISDN lines for remotes. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: POTS Ending (Re: Operation Ghost Click)
On 2012-05-04, at 09:11, Anurag Bhatia wrote: Curious to know if naked DSL (DSL without dialtone POTS link) is common in North America? Very common for business (retail, etc.) and I have it at home. We often call it a dry-loop. No battery or dial tone is common. Some LECs do deliver with dialtone so the customer can call 911 (emergency) in a pinch. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: IPv6 Ignorance
On Tue, Sep 18, 2012 at 9:47 AM, Cutler James R wrote: ...waste of NANOG list bandwidth. I sure get a chuckle when I read this on a list for people that swing around 10Gb/s pipes all day. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: the economies of scale of a Worldcon, and how to make this topic relevant to Nanog
Jo Rhett said: One of which I forgot to mention. Many of the hotels (I believe all Hilton properties at this time) have sold the facilities space for their wifi network to another company. PSAV is the company. I just installed about 20 Cisco WiFi radios at the Doubletree (a Hilton prop) at Sea-Tac. These covered only the convention space, conf rooms, ball rooms, whatnot. It would seem that the hotel is running their own system in the other public areas such as check-in, coffee shops and bars. Mostly they were well placed, often in the same spot as the existing radios. But I'd never throw a geek-con at that system. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Default Passwords for World Wide Packets/Lightning Edge Equipment
I've been in training with the WWP folks for the last two days (VERY GOOD TRAINING, BTW!) and they got quite a chuckle out of this thread. They say if a customer is willing to pay they can change the initialization method. But I'm guessing that anyone willing to pay would be the type to actually secure the box once it's turned-up. If you got some serious layer 2 stuff to do, these boxes have a really interesting architecture and some trick features (unix type shell, for one.) -Joe -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Default Passwords for World Wide Packets/Lightning Edge Equipment
On Wed, Jan 6, 2010 at 7:19 PM, Dobbins, Roland rdobb...@arbor.net wrote: Which goes to show that they just really don't get it when it comes to security. Maybe they should look here at all the entries for 'default credentials': Roland, this isn't the home wi-fi market we're talking about. Anyone that's going to buy one of these puppies is going to have a clue about putting their password in. BTW: You have to be on the console or the management port on them to use the default password (ok, you could get on the right VLAN too.) Problem solved, except for those cases where the operator is a total idiot. Trust me, the shop I'm working for isn't that way, not with the size of the roll-out we're doing (25k+ switches.) I liked what you said about firewalls vs. servers but, to be honest, in this thread you're really beating a dead horse. -Joe -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Comcast IPv6 Trials
steve pirk: Does G4 count? I have seen fliers from Comcast talking about mobile G4 Comcast is using Clearwire for 4G. Seattle 4G rolled-out about 2 weeks ago. Many more markets to be turned-up this spring. No IPv6 in the configs at this time, but most of the core seems capable. Clear is layer-2 up to the major market POPs so it would seem to be mostly a config/firmware change on the network side. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Hotels in Tampa
I'm going to be in Tampa for two weeks turning up a 4G data center. Any recommendations on good hotels that allow smoking? -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Rogers Canada using 7.0.0.0/8 for internal address space
On Wed, May 25, 2011 at 2:23 PM, Christopher Pilkington c...@0x1.net wrote: Indeed, arbitrary is arbitrary, be it ham radio operators or the DoD. I was trolling hams on the list there, my apologies. FWIW, my box 44.68.16.20 hasn't been up in well over a decade. Would have been nice if that packet radio masses kept up with (or ahead of) the technology of the times. Our network went to 9600 baud user ports, then vanished. DStar systems are using 44/8 now for interconnect.Mine (K7TUL/B) will be up as soon as I make a hill trip and fix the antenna. 73 -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Ready For A Good Laugh
On Thu, Jun 9, 2011 at 8:22 PM, Jimi Thompson jimi.thomp...@gmail.comwrote: Ok, I have to paste this in time order so that the rest of you can play along tl';dr Summary: cheap registers abound. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474 re a
Re: PuTTY alt-keys (was Re: 16-User Network)
On Wed, Aug 31, 2011 at 4:19 AM, Jay R Ashworth j...@baylink.com wrote: Must. Not. Post. After. 1am. Nor su after the third drink. ;) -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Tampa small colo recs?
The switch data (or whatever they are called now, Equinox or something) space is nice, good manager. You'd have to go for a whole rack or cage though. You'd have wikipedia as a neighbor too. I put 40+ racks in there for Clearwire. They are in the building with the big lizard on the side downtown Tampa, 10th floor if I recall. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474 On Thu, Sep 1, 2011 at 5:50 PM, Jay Ashworth j...@baylink.com wrote: Anyone got any opinions on small colo rental in Tampa; anywhere from 8RU to a half-rack? I'd prefer at least one tier 1 uplink, and at least 1 tier 2, dial-a-yield 100Base, and 24 hour access, but I'm flexible. Pinellas County is also fine. Cheers, -- jra -- Jay R. Ashworth Baylink j...@baylink.com Designer The Things I Think RFC 2100 Ashworth Associates http://baylink.pitas.com 2000 Land Rover DII St Petersburg FL USA http://photo.imageinc.us +1 727 647 1274
Re: How to begin making my own ISP?
When we needed an ISP in Yakima back in '95 we found a rich guy in Seattle, got him to hire an old SunOS geek and an illegal Englishman, and a very small space on the 19th floor of the Westin. Then we talked him into putting his first POP in Yakima where he would have immediate paying customers. He was tired of using broken UUCP email for his trading company. That was our hook. That ISP founded what is now SIX, so not all was lost. j...@wolfe.net -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474 On Fri, Sep 16, 2011 at 6:41 PM, Ben McGinnes b...@adversary.org wrote: On 17/09/11 7:34 AM, Charles N Wyble wrote: On 09/16/2011 04:28 PM, hass...@hushmail.com wrote: On Fri, 16 Sep 2011 16:02:39 -0400 Markus unive...@truemetal.org wrote: I didn't receive any such email, sorry. Try resending it if you still have it ? Maybe hushmail blocked it? :) That's not outside the realms of possibility, especially if the sender was using OpenPGP. Hushmail does many odd things with its implementation (e.g. still no support for PGP/MIME or even SHA-2). Regards, Ben
Re: The Cidr Report - 4byte ASN handling
I say we all start using octal two's complement for extended ASNs. (note to self: don't post to NANOG after a night out with a vendor.) -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474 On Fri, Sep 16, 2011 at 9:39 PM, Mark Tinka mti...@globaltransit.netwrote: On Saturday, September 17, 2011 04:49:17 AM Tassos Chatzithomaoglou wrote: btw, am i the only one who finds it easier to remember asdot formatted ASNs? They're easier to remember, but if you operate an ASN for a reasonable period of time, it's okay to assume that you will remember it, whether it's as-plain or otherwise. The same would hold true for your favorite upstreams, peers, customers and role model ISP's :-). Cheers, Mark.
Re: chargen is the new DDoS tool?
On Tue, Jun 11, 2013 at 4:57 PM, Majdi S. Abbas m...@latt.net wrote: I have a hard time blaming a school for this. I have an easy time wondering why printer manufacturers are including chargen support in firmware. Isn't that what printer do? Generate characters? It was in the design spec. /me thinks of PHB going down port list, yep, need that one! -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: recommended outdoor enclosures
Clearwire uses these and they are very nice. www.*ddb*unlimited.com -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474 On Mon, Jun 17, 2013 at 12:36 PM, Chuck Anderson c...@wpi.edu wrote: I'm in need of my first free-standing, pad-mounted outdoor enclosure, 19 rack rails, 12-18 rack units, with about 400W of heat load inside, for use in the Massachusetts climate. What do people recommend as far as contruction, cooling/heating options, NEMA ratings, security options, etc. for this use? I was hoping to keep the inside temperature between 50 and 85 degrees Fahrenheit, although my worst-case components are rated for 41 to 104 F (4 - 40 C). If a full mechanical A/C system can be avoided, even better. A thermo-electric cooler would be nice. Thanks.
Re: One of our own in the Guardian.
Jima said: Really, who has 100/100 at home? Oddly, those living in Grand Coulee, WA. I went there once to setup corporate connectivity for a regional tire store. They ordered the minimal drop, 50/50Mbs. One of the tire changers there told me that he had 100/100 at home for $50/month. This was a town without T-Mobile service. I had to haul out the butt set and clip on to the business POTS lines to turn up the VPN. Most of rural Central Washington has very good fiber connectivity. Forward looking Public Utility Districts FTW! -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: One of our own in the Guardian.
http://www.nwi.net/ I'm thinking. Rides the county's fiber network. I remember delivering them T1s from Seattle back in the day ('96ish). I sure wish I could get some of that love. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474 On Sat, Jul 13, 2013 at 9:32 PM, Grant Ridder shortdudey...@gmail.comwrote: Someone I know in Washington state has 100/100 at home and made the comment to me a year ago that it was one of the slower speeds offered. I am not sure who his ISP is however. -Grant On Sat, Jul 13, 2013 at 9:20 PM, Joe Hamelin j...@nethead.com wrote: Jima said: Really, who has 100/100 at home? Oddly, those living in Grand Coulee, WA. I went there once to setup corporate connectivity for a regional tire store. They ordered the minimal drop, 50/50Mbs. One of the tire changers there told me that he had 100/100 at home for $50/month. This was a town without T-Mobile service. I had to haul out the butt set and clip on to the business POTS lines to turn up the VPN. Most of rural Central Washington has very good fiber connectivity. Forward looking Public Utility Districts FTW! -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: One of our own in the Guardian.
On Sat, Jul 13, 2013 at 9:46 PM, Mark Keymer m...@viviotech.net wrote: He might have been talking about Condo Internet if he is in the Seattle area. They deliver 1Gig connections to your Condo/Apartment, if your in one of the buildings they service. I know the guy that does Condo. He was a very good friend of a very good friend of NANOG. Joe Wood (RIP) from Google, Flying Croc, and Wolfe. They were just starting a CLEC in the Puget Sound area when Joe died. Damn, I miss that bastard. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: 48V DC Terminal server recommendations
I guess Cyclades is now Avocent, used these at Clearwire. Can come with dual 48VDC supplies. Think of a 48 serial port Linux box. Has PCM/CIA slot for modem. Multiple users can be logged in at the same time. http://www.emersonnetworkpower.com/en-US/Products/InfrastructureManagement/SerialConsoles/Pages/AvocentACS6000AdvancedConsoleServer.aspx -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474 On Wed, Jul 24, 2013 at 7:59 AM, Jeremy Bresley b...@brezworks.com wrote: Looking for recommendations on a good terminal server to put into a telco colocate facility. Requirements: 8-16 ports for Cisco console access (RJ-45s preferred, DB9s if we have to) -48V DC power USB/internal modem for OOB access NEBS Level 1 (or better) compliance. So far I've found Perle has several models that meet 3 out of 4, but none that meet all the requirements. The only OpenGear boxes we're seeing with DC power is a little 4 port unit and they don't mention NEBS compliance. Lantronix mentions DC power for their SLC line, but doesn't mention anything about NEBS compliance either. Anybody have any recommendations for one they've used that meets all 4 of those requirements? Thanks! Jeremy TheBrez Bresley b...@brezworks.com
Re: APC UPS Advice/Guidance for Canada 120/240
http://www.amazon.com/Conntek-Locking-Adapter-Straight-Connector/dp/B001H9TSEW If you're not sure, then spend for an hour with a licensed electrician. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474 On Fri, Aug 16, 2013 at 2:47 PM, Nick Khamis sym...@gmail.com wrote: Hello Everyone, We are in the market for a APC UPS, and had a few questions. We are not that familiar with APC, and was hoping for some clarity. Our power demands will be for a unit that will sustain 3 kW/4 kVA scalable to 8 kVA. Input: The first issue is that I see all the units default with 208v input (other inputs 240v). At my location we only have 120 or 240. Also, we do not want to use a transformer (240-120) as it adds another failure point that can be avoided... The unit we are looking is found here: http://www.apc.com/products/resource/include/techspec_index.cfm?base_sku=SYA4K8RMPtotal_watts=500 Output: Hard Wire 4-wire (2PH + N +G)NEMA L14-30R[image: NEMA L14-30R]NEMA L5-20R[image: NEMA L5-20R] What? How do I plug our 120 PDU into this? STONITH: This will be for a cluster that will require stonith capability. Does anyone know if this unit supports that? Not so important as the previous two questions... Kind Regards, Nick.
Re: Cisco ADSL2/VDSL2 Voip Router
On 13-12-2013 14:54, Nick Cameo wrote: Hello Everyone, I have a customer that is looking for a voip router. The Edgewater EdgeMarc 200 series has worked well for me. The ones that I've used have 2xFXS and 1xFXO ports with ADSL. Lots of knobs in a fairly sane web GUI. http://www.thetelecomspot.com/systems-and-components/sip-and-voip/sip-voip-gateways/edgewater-gateways/edgemarc-200-series.html -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: The Making of a Router
Warren Bailey viahttp://support.google.com/mail/bin/answer.py?hl=enanswer=1311182ctx=mail nanog.org : I propose cage fighting at the next NANOG summit. Reminds me of some of the BOFs in 2000ish. Anyway, Ray's TL;DR I think the backlash against anything but big iron routing is becoming an old way of thinking. should send a message to CJ that for other than Tier 1 providers, a lot of people are looking for something else that pencils out better.. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Customer Support Ticketing
Kayako is what we use. We're happy with it. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474 On Wed, Mar 19, 2014 at 7:35 AM, Tim Burke t...@tburke.us wrote: Kayako is the way to go. IIRC they have a trial up on their website, may be worth checking out. Tim - Original Message - From: Paul Stewart p...@paulstewart.org To: nanog@nanog.org Sent: Wednesday, March 19, 2014 9:01:11 AM Subject: Customer Support Ticketing Hey folks We need a new customer ticketing system and I'm looking for input. I am still working on a scope document on everything we want to do with the new system. The most common problem I run across is that a system is either built for enterprise internal IT helpdesk or it is built like a CRM sales tracking system. We are an ISP among other things and are looking for a powerful and yet reasonable cost system to answer email inquiries, allow customers to open tickets via portal, mobile support, escalation/SLA support, and several other things. Solarwinds NPM integration would be a huge bonus but not a deal breaker. If anyone has a system that they have integrated with Ivue from NISC (our billing platform) I would be really interested in hearing more as well. So my question is meant high level. For those folks that are ISP's supporting business customers (including managed customers) along with residential eyeball traffic what system(s) do you use and what do you like/dislike? I've looked so far at WHD (Solarwinds product), OTRS, RT, RemedyForce, ZenDesk, HappyFox, Kayako and several others. All of them so far would require a fair amount of configuration or modifications based on our still developing wish list. Also worth noting is that we have no full time development staff so hoping to find something that has a lot of promise and then work with the vendor to evolve it into what we feel we need. **This is not an invitation for sales folks to call on me** Thanks, Paul
Re: The FCC is planning new net neutrality rules. And they could enshrine pay-for-play. - The Washington Post
On Thu, Apr 24, 2014 at 2:42 PM, Jack Bates jba...@paradoxnetworks.net wrote: I agree with you, Patrick. Double digit/meg pricing needs to die. Hell, I remember back in '98 when it was triple digit, and not small values at that. We've come a long way. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: linkedin.com abuse admins around?
On Mon, May 5, 2014 at 4:50 PM, goe...@anime.net wrote: If there is anyone from linkedin.com abuse around please let me know. I've been trying for 2 months to get an abuse issue resolved. That's not abuse, that's a feature. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Urgent
On Mon, Aug 18, 2014 at 10:00 AM, ra...@psg.com wrote: Contact for God, please reach out to me offlist. Per Michael Valentine Smith 127.0.0.1 should work. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Fwd: [ PRIVACY Forum ] An Iranian Grand Ayatollah Issues Fatwa Stating High Speed Internet is against Sharia
I'm guessing that he is upset at the price of new Sandvines or whatever they use. Maybe a ploy to bend the vendor on maintenance contract cost. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Keeping Track of Data Usage in GB Per Port
On 10/15/14, 1:38 PM, Colton Conor colton.co...@gmail.com wrote: So based on the response I have received so far it seems cable was a complicated example with service flows involved. Don't forget that between your port on your DSL/Cable modem and the actual port they may be monitoring there could be transitions through various protocols that can chew up bandwidth with framing bits and whatnot. See: http://www.yourdictionary.com/cell-tax as an example. This can, in worse but common cases, be as much as one fifth of the bandwidth. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Self destruction in open source systems (was Re: Linux: concerns over systemd [OT])
On Wed, Oct 22, 2014 at 4:58 PM, Larry Sheldon larryshel...@cox.net wrote: Now I have Thunderbird and Firefox--from people who are committed to the notion that if it works, it must be replaced. If people like it, it must be redesigned. If it is stable, it must be updated. If there is a useless, senseless feature somewhere in the world, these products must be revised to make that feature the focus. And where is my new 1967 VW Microbus? That's all you need if you compile it with --add-heater-fan. So I had to upgrade to a 1998 Volvo V70 wagon. Don't know where I'm going to get a new one when this one wears out. Damn kids, GET OFF MY LAWN! I actually feel with your there, Larry. I really like the *nixes because of the great app store with things like ls, grep, sed, cc and ssh. It's also why for most things I still use one of the BSDs. (Should we call /usr/ports an app store now?) -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: North Korean internet goes dark (yes, they had one)
On Mon, Dec 22, 2014 at 6:05 PM, Valdis Kletnieks valdis.kletni...@vt.edu wrote: Any of you guys want to fess up? :) http://www.msnbc.com/the-ed-show/watch/north-koreas-internet-goes-dark-376097859903 (Yes, I know, they're saying it's a DDoS, not a routing hack...) I was hoping that everyone just put 175.45.176.0/22 in their bogon list. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Dynamic routing on firewalls.
On Feb 5, 2015, at 2:49 PM, Ralph J.Mayer rma...@nerd-residenz.de wrote: a router is a router and a firewall is a firewall. Especially a Cisco ASA is no router, period. Man-o-man did I find that out when we had to renumber our network after we got bought by the French. Oh, I'll just pop on a secondary address on this interface... What? Needed to go through fits just to get a hairpin route in the thing. The ASA series is good at what it does, just don't plan on it acting like router IOS. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: OT - Small DNS appliances for remote offices.
I used one of these for a NAT/DNS box running FreeBSD for connection to our WiFi system. One nice thing is the 4 real serial ports. http://www.amazon.com/Qotom-I37C4-Bluetooth-Computer-Industrial-Computer/dp/B00MQKJYY0 -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474 On Wed, Feb 18, 2015 at 11:43 AM, Rob Seastrom r...@seastrom.com wrote: Justin Wilson - MTIN li...@mtin.net writes: Have you looked at Mikrotik? www.mikrotik.com It may be lacking for DNS options you want, but worth a look. I'd definitely recommend mikrotik for a cheap and cheerful router. DNS server (the original subject of this message)? Not so much. -r
Re: Phone adapter with router
I've run into a few of these and they seem to do a good job. ftp://ftp.edgewaternetworks.com/pub/docs/CD_contents/DOCS/EdgeMarc/200/200%20Series%20Datasheet.pdf -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474 On Mon, Mar 9, 2015 at 4:07 PM, A MEKKAOUI amekka...@mektel.ca wrote: Hi Do you know any good router with phone adapters to provide home phone and internet? We tried couple of them like Linksys, Thomson, etc. and no one does the job perfectly. Any comment will be appreciated. Thank you Karim
Re: Verizon Policy Statement on Net Neutrality
On Fri, Feb 27, 2015 at 7:21 AM, Bob Evans b...@fiberinternetcenter.com wrote: Yes, I am that old. You were not allowed to connect a phone of your own. But that didn't stop most of us old timers on this list. The first digital circuit that I played with as a kid was an old Strowger switch pulled from a junk yard. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Thousands of hosts on a gigabit LAN, maybe not
On Fri, May 8, 2015 at 11:53 AM, John Levine jo...@iecc.com wrote: Some people I know (yes really) are building a system that will have several thousand little computers in some racks. Each of the computers runs Linux and has a gigabit ethernet interface. Though a bit off-topic I ran in to this project at the CascadeIT conference. I'm currently in corp IT that is Notes/Windows based so I haven't had a good place to test it but the concept is very interesting. They distributed way they monitor would greatly reduce bandwidth overhead. http://assimproj.org The Assimilation Project is designed to discover and monitor infrastructure, services, and dependencies on a network of potentially unlimited size, without significant growth in centralized resources. The work of discovery and monitoring is delegated uniformly in tiny pieces to the various machines in a network-aware topology - minimizing network overhead and being naturally geographically sensitive. The two main ideas are: - distribute discovery throughout the network, doing most discovery locally - distribute the monitoring as broadly as possible in a network-aware fashion. - use autoconfiguration and zero-network-footprint discovery techniques to monitor most resources automatically. during the initial installation and during ongoing system addition and maintenance. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Thousands of hosts on a gigabit LAN, maybe not
On Fri, May 8, 2015 at 5:19 PM, Jima na...@jima.us wrote: Dang. The more I think about this project, the more expensive it sounds. Naw, just use WiFi. ;) -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: stacking pdu
This takes me back to the days of old with bread racks full of modems and the mess of wall-warts and power-strips. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474 On Thu, Jun 4, 2015 at 2:52 PM, Rob Seastrom r...@seastrom.com wrote: William Herrin b...@herrin.us writes: Isn't it against the NEC and the fire code to stack power strips? We all do it, but isn't it against code? Sorry to be late to the party (I plead vacation), but no, afaik it is not. About as close as the NEC comes art 400.8 - you can't use flexible cord as a substitute for permanent wiring (think of some of the shenanigans you've seen with extension cords standing in for NM or MC on thereifixed.com or similar sites). Rack wiring is not permanent, but I would not go so far as to claim it is subject to the qualified personnel rules (OSHA subpart S and NFPA 70E). Datacenter workers who could pass a test on LOTO procedures and routinely utilize proper PPE (even gloves, safety glasses, and steel toe shoes) are the exception rather than the rule. As always, when someone asserts that X is against code whether in the form of a statement or a question, the proper response is Citation, please! -r
Re: eBay is looking for network heavies...
On Fri, Jun 5, 2015 at 11:11 PM, Elmar K. Bins e...@4ever.de wrote: eyeronic.des...@gmail.com (Mike Hale) wrote: We need a pool on what percentage of readers just googled traceroute. None of course! No, they read the man page, of course! -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: eBay is looking for network heavies...
Back in 2000 at Amazon, HR somehow decided to have me do the phone interviews for neteng. I'd go through questions on routing and what not, then at the end I would ask questions like, Who was Jon Postel? Who is Larry Wall? Who is Paul Vixie? What are layers 8 9? Explain the RTFM protocol. What is NANOG? Those answers (or long silences) told me more about the candidate than most of the technical questions. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: eBay is looking for network heavies...
Jay said: Original RFC editor. Invented Perl, among other things. Co-designed DNS (did I get that right?) I personally always label layers 8, 9, and 10 as money, management and inside counsel, but I know views differ. I don't RTFM, I google. It's often faster, so many of TFMs are online now. And this... is NANOG! What's my starting rate? :-) Close enough but I look for Evi's t-shirt for layers 89; financial and political. Back in 2000 your starting rate would have been $90k/yr, $25k signing and 9k of stock options at $21. It's that last one that makes me wish I could have drunk the Kool-Aid for 5 years. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Any Verizon datacenter techs about?
On Fri, Jun 26, 2015 at 5:40 PM, John Musbach johnmusba...@gmail.com wrote: . P.S. If there was any way to get a tour inside of there at least I'd totally sign a NDA for that. :) Never been inside, let alone near, a CO before. http://museumofcommunications.org/?page_id=12 -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Anycast provider for SMTP?
On Tue, Jun 16, 2015 at 9:02 PM, Rafael Possamai raf...@gav.ufsc.br wrote: Any luck on a DNS based solution? I'm looking into a F5 GTM solution based out of a colo we have in Europe to direct SMTP between France and the US hubs. Now I just have to work layers 8 9. Remember when users didn't expect sub-minute delivery times? Thanks for everyone's help, you've give me a lot of good ideas to consider and I've learned more than I ever thought I would about anycast. Although I'm not on the BGP end of things anymore I value the minds, personalities and pure history that NANOG brings. Total side note: I remember back at a NANOG in Atlanta, 2000 maybe, at a BOF on ARIN allocations where I was arguing for netblocks less than a /21 because Amazon couldn't justify that much at that time, I mean we only had one public site but still wanted to multi-home. I remember Randy Bush even backed me up on that one. In the end I did get a block for Amazon and brought up BGP. Oh how times have changed (and how I wish I still had those stock options!) Best regards, Joe (ex JH484) -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Anycast provider for SMTP?
On Mon, Jun 15, 2015 at 11:02 AM, Christopher Morrow morrowc.li...@gmail.com wrote: 'when one site goes down' ... then the other works fine, right? smtp is not latency sensitive in the sense that a 30second timeout for a server will mean delivery to the secondary... right? The two MX sites are connected via third party MPLS. The problem is when one MX site loses Internet connectivity the sending MTA may take up to 4 hours to resend and hopefully the DNS coin toss gives it the address of the site that is still connected. (Read as: French ISPs don't seem as robust as I'm use to in the US.) Since our mail traffic is international something like anycast would be nice. Now the other problem is we don't have an ASN or do external BGP ourselves. And not that it matters in a network sense, but this is a Domino mail system. I'm just trying to bring it up to year 2000 standards. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Anycast provider for SMTP?
I have a mail system where there are two MX hosts, one in the US and one in Europe. Both have a DNS MX record metric of 10 so a bastardized round-robin takes place. This does not work so well when one site goes down. My solution will be to place a load balancer in a hosting site (virtual, of course) and have it provide HA. But what about HA for the LB? At first glance anycasting would seem to be a great idea but there is a problem of broken sessions when routes change. Have any of you seen something like this work in the wild? -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Anycast provider for SMTP?
On Mon, Jun 15, 2015 at 12:45 PM, Rafael Possamai raf...@gav.ufsc.br wrote: The other step would be to setup HA in each SMTP node (US and France) such as LB or Failover. Just an idea. I'll look at the AWS doc, thanks. The mailserver is seldom the problem (it's an AS/400) but the ISP pipe experiences prolonged outages. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Anycast provider for SMTP?
On Mon, Jun 15, 2015 at 1:58 PM, Rafael Possamai raf...@gav.ufsc.br wrote: You're welcome. I hope that helps. On another note, if your internet pipe in Europe isn't as stable as your pipe in the US, then you could also try and have your infrastructure provider blend your uplink with two or more carrier-grade paths. You wouldn't have to worry about signing up for and maintaining an AS, but you could improve your uptime significantly. It seems to be more of a last-mile backhoe fade issue right now. I'm trying to convince them that a manufacturing facility isn't a good place for a data center. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Thoughts On Cheap Chinese xDSL Testers
The Westel A90-750045-07 Frontier branded DSL router has some amazing DSL status screens if you dig in the menu deep enough. I always kept one in the truck when I was doing some service work. Check the local Goodwill/Value Village. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474 On Mon, Jun 29, 2015 at 6:23 PM, Robert Glover robe...@garlic.com wrote: The local ILEC (Verizon) use Colt 250+. They are pretty cool. They do not do layer 3 like the meter you referenced. I'm actually looking for a cost-effective meter that does ADSL+ / VDSL2 / e.SHDSL. it's easy to find one that does the first two, but not all three. Original message From: Lyndon Nerenberg lyn...@orthanc.ca Date: 06/29/2015 5:50 PM (GMT-08:00) To: North American Network Operators' Group nanog@nanog.org Subject: Thoughts On Cheap Chinese xDSL Testers I've been poking around looking for an inexpensive xDSL circuit tester to do some measurements on my home DSL line, in opposition to the telco. $2K+ is not in the budget, so I'm curious about the accuracy of the $300 Chinese units kicking around eBay (e.g. the ST332B). Anyone out there have experience with them? Are they even remotely close to accurate? --lyndon
Re: Level3 routing issue US west coast?
We have an MPLS circuit down in Philly with Level3. No explanation from them. -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: CHP website returning 503
It is late Sunday night. When would you do maintenance? -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474 On Sun, Sep 27, 2015 at 7:50 PM, Grant Ridder <shortdudey...@gmail.com> wrote: > Hey, > > If anyone from CHP (california highway patrol) is listening, your website > is returning a 503. > > curl -v https://www.chp.ca.gov > * Rebuilt URL to: https://www.chp.ca.gov/ > * Hostname was NOT found in DNS cache > * Trying 168.145.114.48... > * Connected to www.chp.ca.gov (168.145.114.48) port 443 (#0) > * TLS 1.2 connection using TLS_DHE_RSA_WITH_AES_256_CBC_SHA > * Server certificate: *.chp.ca.gov > * Server certificate: Entrust Certification Authority - L1K > * Server certificate: Entrust Root Certification Authority - G2 > > GET / HTTP/1.1 > > User-Agent: curl/7.37.1 > > Host: www.chp.ca.gov > > Accept: */* > > > < HTTP/1.1 503 Service Unavailable > < Content-Type: text/html; charset=us-ascii > < Date: Mon, 28 Sep 2015 02:48:23 GMT > < X-Cnection: close > < Content-Length: 326 > < > http://www.w3.org/TR/html4/strict.dtd;> > Service Unavailable > > Service Unavailable > HTTP Error 503. The service is unavailable. > > * Connection #0 to host www.chp.ca.gov left intact > > -Grant >
Re: CHP website returning 503
It might have been the "el-cheapo" server that crashed. If that's what happened, are you going to eat your maintenance window to fix it? -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474
Re: Survey on Middlebox modeling and troubleshooting
On Wed, Jan 6, 2016 at 7:51 PM, Zhang, Ying <ying.zhan...@hpe.com> wrote: > https://www.surveymonkey.com/r/5SFP6G8 One issue that stopped me dead in your monkeysurvey was that you asked how many "Middleboxes" I had without telling me what you consider a middlebox. Then you go into questions that ask me to delve deep into the whitepapers of how they work. I work with a team that supports about 100 international locations on a large MPLS network with Palo Alto, Ipanema, Cisco and homebrew virtual machines. For me to even try to answer your questions the way you state would require me to schedule meetings with all network stakeholders from across the globe. Trust me, we have enough meetings already. And I'm only on a small network of 30,000 users. I think the problem isn't what your are trying to learn, it's how you are asking. There is no motivation for us to answer your survey, there is actually very good security reasons why we wouldn't. You don't explain what you are trying to research but asking us to give, gratis, deep inside depth to our deployments. Most of us would have serious issues with our employers if we gave out that info. -- Joe Hamelin, W7COM, Tulalip, WA, +1 (360) 474-7474 >
Re: Rack Locks
http://www.netbotz.ca/rackbotz.htm Just make sure you put one on both the front and back. Otherwise one could just open the back and unplug the Ethernet cable. -- Joe Hamelin, W7COM, Tulalip, WA, +1 (360) 474-7474 On Fri, Nov 20, 2015 at 6:06 PM, Joe Abley <jab...@hopcount.ca> wrote: > On Nov 20, 2015, at 20:55, Jimmy Hess <mysi...@gmail.com> wrote: > > > You're not going to be able to look at a log and see Joe opened it at > 2:45AM > > 12 months ago, and ever since then, the servers are not quite right. > > And I would have got away with it to, if it wasn't for you kids and > your pesky logs. > > > Joe >
Re: cross connects and their pound of flesh
David said:* Gotta watch out for specifying T1 when you want Ethernet- they could just give you 4 wires on pins 1,2,4,5 :)* I think Patrick was thinking back in the days when Ethernet was just two pairs. You could get away with a lot on 10BaseT, I've even used dry telco pairs between buildings when I was in a tight spot. Nice clean T1 pairs through at DSX panel was quite common before we had fancy things like fiber meet-me-rooms. SIX started with midnight cable runs in the drop ceiling. -- Joe Hamelin, W7COM, Tulalip, WA, +1 (360) 474-7474
Re: Shared cabinet "security"
On Fri, Feb 12, 2016 at 6:58 PM, Mike Hammett <na...@ics-il.net> wrote: > There are more options when you're not just using someone else's > datacenter. Indeed, paying for and maintaining your own generator and UPS system, digging up streets for diverse network paths if you can get a CLEC to play with you, twenty-four hour security and personnel logging, buying and installing your own environmental conditioning. All just for a half rack of kit. Please, tell me about those options. -- Joe Hamelin, W7COM, Tulalip, WA, +1 (360) 474-7474 >
Re: Remote hands mailing lists?
Check with colo brokers like Stratcore too. -- Joe Hamelin, W7COM, Tulalip, WA, +1 (360) 474-7474 On Sat, Feb 20, 2016 at 10:54 PM, Daniel Corbe <dco...@hammerfiber.com> wrote: > You may also want to try some places where content providers and content > creators gather like webhostingtalk because there’s often small operators > and individuals there trying to get their names known who may appreciate > picking up extra work. > > > On Feb 20, 2016, at 9:31 PM, Christopher Morrow <morrowc.li...@gmail.com> > wrote: > > > > I think (though I don't see much traffic on it): > > > > newh...@snausages.com > > > > works like this. > > > > On Fri, Feb 19, 2016 at 5:30 AM, nanog <na...@wjp.net> wrote: > >> Sorry if this off-topic. > >> > >> Are there any mailing lists/forums/websites that independent techs can > post > >> availability for remote hands work? > >> > >> I just got let go from my company and am looking for anyone who needs > remote > >> hands work in Phoenix. > >> Server/wiring/fiber/dwdm/design/button-pushing/consulting/etc. > >> > >> Thanks- and apologies again if this isn't on-topic. > >> > >> b > > > >
Re: remote serial console (IP to Serial)
This little guy has proven handy for me. http://www.amazon.com/iPocket232-RS232-to-Ethernet-Converter/dp/B00K309TKY -- Joe Hamelin, W7COM, Tulalip, WA, +1 (360) 474-7474 On Tue, Mar 8, 2016 at 7:35 AM, Christopher Morrow <morrowc.li...@gmail.com> wrote: > also, serial? or usb? (see previous cisco usb console port discussion) > > On Tue, Mar 8, 2016 at 10:33 AM, Christopher Morrow > <morrowc.li...@gmail.com> wrote: > > for singular serial .. there are many, do you want something that's > > "appliance" or are you willing to deploy 18 raspnberry-pi-like > > thingies? > > > > On Tue, Mar 8, 2016 at 10:30 AM, greg whynott <greg.whyn...@gmail.com> > wrote: > >> Recently I have taking over the responsibility of managing about 18 > remote > >> routers and firewalls. None of these have a console port for 'out of > >> band' access accessible today. > >> > >> Most sites has available IPs between the ISP and us (typically a /29) > or a > >> backup DSL connection available for use. I'd like to purchase a IP > to > >> Serial port device I can use for each location in the event I lock > myself > >> out. The requirement would be an Ethernet port, a serial port, and > SSH. > >> > >> > >> Anyone have any recommendations on something like this? > >> > >> thanks much, > >> greg >
Re: DataCenter color-coding cabling schema
I know at Clearwire data centers we used gray for network, blue for management and orange for RS-232 console. At least for the initial build. Later re-work or additions were whatever the tech had on hand ;) They also had labels on each end of each wire showing the path through the system, sometimes up to six lines. It did make it easy to bring up a data center and find cabling errors. To see the system last more than a year or two up upgrades would take some strong rules and oversight. I think it would be worth it if your management system can keep the religion. -- Joe Hamelin, W7COM, Tulalip, WA, +1 (360) 474-7474 On Sat, Mar 12, 2016 at 11:11 AM, Yardiel Fuentes <yard...@gmail.com> wrote: > Hello Nanog-ers, > > Have any of you had the option or; conversely, do you know of “best > practices" or “common standards”, to color code physical cabling for your > connections in DataCenters for Base-T and FX connections? If so, Could you > share any ttype of color-coding schema you are aware of ?…. Yes, this is > actually considering paying for customized color-coded cabling in a Data > Center... > > Mr. Google did not really provide me with relevant answers on the above… > beyond the typical (Orange is for MMF, yellow for SMF, etc)… > > Any reasons for or against it welcome too... > > -- > Yardiel Fuentes >
Re: CDN, Steam, Origin and NAT.
You can always bring up an HE IPv6 tunnel and hand out public IPs that way. -- Joe Hamelin, W7COM, Tulalip, WA, +1 (360) 474-7474 On Wed, Apr 20, 2016 at 7:27 PM, Laurent Dumont <ad...@coldnorthadmin.com> wrote: > Hi, > > We are running a small-ish LAN event in Toronto where we have to use a > single IP address to NAT between 250-350 players. I have been made aware of > possible issues with different services like Steam, Origin and Twitch who > can run into issues when a large number of connections seem to originate > from a single IP address. I just wanted to poke the list to see if anyone > can chime him on their experiences with NATing customers and the impact it > might have on public services. I am usually using public IP address space > for players when designing most large LAN events. Dealing with NAT for a > medium-ish amount of customers is not something I am used to do. > > It feels silly to worry about that when you assume that WISP > sometimes(mostly?) use CGN when providing internet to customers. The same > could be said of most large office buildings around the world. > > I appreciate any input on the matter! > > Thanks > > Laurent >
Re: St. Louis IX Launch
Congrats to St Louis! I put in about 40 racks for Clearwire a few years back and enjoyed the city, even if it was winter. -- Joe Hamelin, W7COM, Tulalip, WA, +1 (360) 474-7474 On Sun, Jan 15, 2017 at 5:26 PM, Mike Hammett <na...@ics-il.net> wrote: > It is a partnership and I may not be the most qualified to speak on the > terms of the partnership. However, the non-commercial side is > not-for-profit, but the commercial side is fully commercial. > > While building out our IX brand, of those that have been able to have a > rational discussion about their anti-commercial IX position, almost all of > them (or maybe even all of them) weren't really anti-commercial. They were > just anti-800-lb-gorilla. They didn't hate the independent building out > IXes in markets that maybe never had a functional IX, but surely didn't > have one now. They hated Equinix, Coresite, etc. They just wanted someone > that wasn't going to be a jerk to them. > > We don't have any aspirations to get to Equinix size. We know we're going > to small time places and that we'll only ever have small time IXes in the > big picture. The building we started at in Indy only advertises something > like 20 or 30 networks in the building. Now we've grown to other buildings > and they aren't going to list every Tom, Dick and Harry, but it's not a 300 > network market. We'll leave that to AMS-IX, DE-CIX, Megaport, etc. > > > > > - > Mike Hammett > Intelligent Computing Solutions > > Midwest Internet Exchange > > The Brothers WISP > > - Original Message - > > From: "Ken Chase" <m...@sizone.org> > To: "NANOG ???[nanog@nanog.org]???" <nanog@nanog.org> > Sent: Sunday, January 15, 2017 6:36:20 PM > Subject: Re: St. Louis IX Launch > > congrats! > > I am curious, is the IX non-for-profit as well? The wikipedia entry for > IX's > doenst indicate which IX's are non-profit. Im curious as to the prevalence > and size (as well as the relative successes) of such IX's vs for profit > models > (equinix etc). > > /kc > > > On Sun, Jan 15, 2017 at 06:30:45PM -0600, Mike Hammett said: > >If you know someone that may be interested, we have a launch event later > this week for our St. Louis IX. St. Louis is a bit different than our > existing market in that we've partnered with a local non-profit that will > be focusing on non-commercial Internet aspects. These sorts of things are > innovation neighborhoods, IoT, healthcare, education, public safety, etc. > They may (or may not) be the big volume things we're used to, but they need > local, low-latency connectivity just as much. > > > >https://www.eventbrite.com/e/st-louis-regional-internet- > exchange-preview-tickets-30329718003?aff=NANOG > > > > > > > > > >- > >Mike Hammett > >Intelligent Computing Solutions > > > >Midwest Internet Exchange > > > >The Brothers WISP > > > > -- > Ken Chase - k...@heavycomputing.ca skype:kenchase23 +1 416 897 6284 > Toronto Canada > Heavy Computing - Clued bandwidth, colocation and managed linux VPS @151 > Front St. W. > >
Re: Why the internal network delays, Gmail?
On Sat, Aug 27, 2016 at 11:24 AM, <valdis.kletni...@vt.edu> wrote: > > And apparently you need to know the secret handshake to get on. I was able to sign-up yesterday, I even saw John's mail about your insecure error. I don't know why I didn't sign up before, my work ITIL is Messaging Manager. -- Joe Hamelin, W7COM, Tulalip, WA, +1 (360) 474-7474