to do a
traceroute from both source IPs simultaneously, keeping the results in a
DB. If you find there are many networks actually null routing your
purchased space, you might setup something similar.
------
Jon Lewis, MCP :)
the archives for
the dead horse.
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
lem?
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
having it not be
obvious upon inspection of the documents that the "imposter" document
contains some "specific hash influencing 'gibberish'" would be far more
disturbing.
----------
Jon Lewis, MCP :) | I r
| Fax: 914-694-5669
----------
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
.
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
.
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
cloud controlled networked device,
with no cloud, is not terribly useful.
----------
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
On Fri, 23 Sep 2016, Christopher Morrow wrote:
On Fri, Sep 23, 2016 at 9:24 PM, Jon Lewis <jle...@lewis.org> wrote:
On Fri, 23 Sep 2016, Patrick W. Gilmore wrote:
Is CloudFlare able to filter Layer 7 these days? I was under the
impression CloudFlare was not able to do that.
There hav
7, how are
you going to ÿÿstep in front of the cannonÿÿ? Would you just pass
through all the traffic?
Anycast + load balancers + high powered varnish?
--
Jon Lewis, MCP :) | I route
delivering the
bits too fast (or at least faster than you'd like them to).
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public
ople pinged
one of their servers constantly.
------
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
ng
A Zayo victim and a NANOG Member
------
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
with which there's virtually no traffic being exchanged, just
because we're on the same IX(s). 1-2G to peer seems kind of high. Some
might insist that you move peering to PNI if you're doing >1-2G across an
IX.
----------
J
it
natively from their own ISP. Ideally, HE's v6 tunnel service should
become more or less redundant as more service provider networks dual-stack
their customers.
--
Jon Lewis, MCP :) | I route
over both PNI and IX evenly.
------
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
Cogent transit for IPv6. Problem solved. :)
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
to the Internet.
Anyone know how big really? One org's "Massive DDoS" is another's "oh, is
someone sending us some extra DNS traffic again?"
------
Jon Lewis, MCP :) | I route
?
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
is simply not advertising v6 prefixes to them,
so, how is that cogent's fault?
-Original Message-----
From: Jon Lewis [mailto:jle...@lewis.org]
Sent: Wednesday, March 9, 2016 11:26 AM
To: Jürgen Jaritsch <jjarit...@anexia-it.com>
Cc: Dennis Burgess <dmburg...@linktechs.net>;
urg...@linktechs.net<mailto:dmburg...@linktechs.net>
------
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
On Tue, 1 Mar 2016, Paras Jha wrote:
Does anyone know of any IP space brokers other than Hilco Streambank? I'm
looking to get a feel for the market a little bit.
Addrex.net
--
Jon Lewis, MCP :) | I route
f
peering with multiple networks established without the coordination and
config needed to peer with each network individually.
------
Jon Lewis, MCP :) | I route
| therefore you are
even offer v6.
----------
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
AFAIK, that provides to GOOG
your GPS coordinates. It still might take a week for them to update
everything.
------
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org
der still does not.
----------
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
lose visibility?"
------
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
"running" this runaway train of a mailing list...and who would
someone talk to about volunteering to help manage/moderate it?
------
Jon Lewis, MCP :) | I route
| the
affected by cisco's "defective RAM issue".
Depending on the density you need, an AS5400HPX (and an M13 mux if needed)
might be a reasonable way to go.
------
Jon Lewis, MCP :)
adoption gets more widespread.
------
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
rd for all their installations to be
dual-stack. But here we are, nearly 2016, and they don't have a single
IPv6 customer (AFAIK) yet.
------
Jon Lewis, MCP :) | I route
| therefore you are
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
peering or doing any business with them.
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
might easily implement a filter that doesn't allow all RTP
packets to pass.
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public
?
:)
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
/southflorida/stories/2003/05/12/story1.html?page=all
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
.
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
is.
I think you're confusing computer scientist integrity with journalism and
a desire to attract readers.
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http
.
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
* ^From:.*(jfleming@anet\.com|ipv6nog@gmail\.com|*fleming@unety\.net)
/dev/null
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public
NetHandle: NET-209-17-112-0-1
Parent: NET209 (NET-209-0-0-0-0)
What is the process to get this netblock reclaimed?
-Dan
--
Jon Lewis, MCP :) | I route
| therefore you
of their customers probably
don't know what SSH is.
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
version.
That's a scary low bar for comparison.
OpenSolaris (or even Solaris 11), ZFS, Stable. Pick one. Maybe two.
Three? Yeah right. Anyone who's used it hard, under heavy load, should
understand.
--
Jon Lewis, MCP
an RTBH route and
email your NOC.
The tricky part is when to remove the route...since you can't tell if the
attack has ended while the target is black holed by your upstreams.
--
Jon Lewis, MCP :) | I route
, which could matter depending on your network.
On Saturday, November 8, 2014, Jon Lewis jle...@lewis.org wrote:
On Sat, 8 Nov 2014, Miles Fidelman wrote:
Does anyone have any suggestions for mitigating these type of attacks?
The phrase automated offensive cyber counter-attack has been
This may be a long shot, but if there's anyone on-list from PLDT who can
help out with PLDT I-Gate customer prefix filtering updates, I'd
appreciate some help with an issue that's been dragging on for weeks.
--
Jon Lewis, MCP
to the
intersection. Wait a minute here, wait a minute there...
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
?
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
such that legitimate
users can open a window to make their connection, but the rest of the
world never sees your sshd.
Playing whack-a-mole with firewall or access log violations is a waste of
time.
--
Jon Lewis, MCP :) | I
Herrin
--
William Herrin her...@dirtside.com b...@herrin.us
Owner, Dirtside Systems . Web: http://www.dirtside.com/
Can I solve your unusual networking challenges?
--
Jon Lewis, MCP
and stopping
compromised hosts on your network from becoming active in botnets (by
cutting off their command and control).
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http
with multiple full v4
tables.
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
for the next decade.
-Drew
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
On Thu, 22 May 2014, Matthew Petach wrote:
looks like i waited too long again to
reserve a hotel room for nanog...anyone
Did you check the Silver Cloud Inn? It appears to be about a block away.
--
Jon Lewis, MCP
The Hyatt appears to have filled up. :(
Anyone have alternate hotel recommendations?
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp
to reload to affect the v4/v6 route
storage change, but you might lose some blades in the process.
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp
.
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
Research Disk Operating System...if you're old enough.
Who knew DRDOS would become popular [again]?
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp
...and when the customer leaves, there's really
no incentive to clean up and remove the objects.
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis
transit, it can be done on the
secondary market for a fraction of that $100k figure.
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP
internet provider still isn't offering it...so if I wanted
it at home, I'd have to tunnel someplace else.
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http
. Lots of people gave up
on tape for backups years ago.
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
repeatedly lock up requiring
manual/physical resets and causing major problems for our hunt group). We
eventually got them to buy it back as they were unable to resolve their
problems.
--
Jon Lewis, MCP :) | I route
.
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
on them to do it.
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
in, if extra
features need to be added
--
-JH
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
with some intelligence
to fail-over if a link fails (and go back when it recovers) can work
acceptably.
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org
is fine.)
If you mean required in order to load share over multiple circuits, no.
They support LAG in most places now and LAG is their preferred method for
load sharing over multiple links.
--
Jon Lewis, MCP :) | I
only wild guesses.
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
(physical and virtual), so we're not a good demographic to piss
off.
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
B335 D702 0CA7 5A81 C2EE 76A2 46C2 5367 BF90
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
for resolution. ARIN and RIPE are staffed and better
financially backed.
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public
international transit failures.
Please contact me off-list if you're interested.
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP
the customers get connectivity from the provider or not.
Maybe they have Paetec's permission to use the space indefinitely. Maybe
it's an oversight in Paetec's turn-down process that the space was never
reclaimed.
--
Jon
On Wed, 26 Jun 2013, William Herrin wrote:
On Wed, Jun 26, 2013 at 3:17 PM, Jon Lewis jle...@lewis.org wrote:
It's got to be PA space. Paetec isn't in a position to assign PI space.
No distinction is drawn between PA and PI for ARIN-region address
space assigned prior to ARIN's inception
produce a PFC that takes the 6500 to several
million routes, it's probably going to be too late for those to be
available in any real quantity on the secondary market. Maybe that's the
plan.
--
Jon Lewis, MCP :) | I
surveillance create house RATs? :)
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
.
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
to eavesdrop on your house any time they want, just in case.
Come to think of it, the latest greatest systems are capable of that.
It sounds so stupid to me, I bet someone's doing it.
--
Jon Lewis, MCP :) | I route
done any IP
stack tuning, or what sort of crashes he's having...but people have been
doing higher bandwith than this on Linux for years.
--
Jon Lewis, MCP :) | I route
| therefore you
?
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
to
blackhole the IP rather than reject the advertisement for an entire CIDR.
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
on.
On Sun, 31 Mar 2013, Jon Lewis wrote:
They should updated their autoconf. It fails on modern 64-bit Linux.
On Sun, 31 Mar 2013, Paul Ferguson wrote:
You mean like this? :-)
http://spoofer.csail.mit.edu/
- ferg
On Sun, Mar 31, 2013 at 7:48 AM, Jay Ashworth j...@baylink.com wrote
appreciate the idea of a
belt and suspenders.
It's time for people to stop passing the buck on BCP38 (we don't do it,
because it really ought to be done at that other level) and start
implementing it where possible.
--
Jon Lewis
.
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
.
--
Jon Lewis, MCP :) | I route
| therefore you are
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
circuit
Even your leased lines can have packets copied off or injected into them,
apparently so easily it can be done by accident.
--
Jon Lewis, MCP :) | I route
Senior Network Engineer | therefore you
on both networks and IP forwarding
enabled. In our setups, we've used IPoIB, but with 1918 addresses and not
routed beyond the IB network.
--
Jon Lewis, MCP :) | I route
Senior Network Engineer | therefore you
returned to normal numbers by about 4:35am.
--
Jon Lewis, MCP :) | I route
Senior Network Engineer | therefore you are
Atlantic Net|
_ http://www.lewis.org/~jlewis/pgp for PGP public
. Network Engineer*
kenneth.mc...@dreamhost.com
Ph: 323-375-3814
www.dreamhost.com
--
Jon Lewis, MCP :) | I route
Senior Network Engineer | therefore you are
Atlantic Net|
_ http
not send mail have PTRs or not. I would not expect anyone to
block my /24 for lack of PTRs on non-mail-sending hosts.
If they're not mail servers, how is the DNSBL listing impacting them
(assuming anyone even uses spamrats)?
--
Jon
]. If you look at the
whois, it looks more like domain tasters have taken it over after its
registration lapsed.
Anyone using it for blocking is resolving all IPs (via a wildcard A
record) to 141.8.225.13.
--
Jon Lewis, MCP
probably introduce the same problem/effect.
--
Jon Lewis, MCP :) | I route
Senior Network Engineer | therefore you are
Atlantic Net|
_ http://www.lewis.org/~jlewis/pgp for PGP public
with the
kernel's TCP socket handling.
--
Jon Lewis, MCP :) | I route
Senior Network Engineer | therefore you are
Atlantic Net|
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
mobiles, de livebox ou de connexions WIFI
partagées (au moins pour la seconde) ?
Merci d'avance,
--
J
--
Pierre-Yves Maunier
--
Jon Lewis, MCP :) | I route
Senior Network Engineer | therefore you
/coating has to be removed in small steps or the fiber breaks :(
First, I wonder if anyone knows why this is? Second, I wonder if a
thermal stripper would help and is preferable to a strictly mechanical
stripper?
--
Jon Lewis
.
--
Jon Lewis, MCP :) | I route
Senior Network Engineer | therefore you are
Atlantic Net|
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
--
Jon Lewis, MCP :) | I route
Senior Network Engineer | therefore you are
Atlantic Net|
_ http://www.lewis.org/~jlewis/pgp for PGP public key_
On Oct 8, 2012, at 5:20 AM, Jon Sands fohdee...@gmail.com wrote:
On 10/7/2012 9:22 PM, Jon Lewis wrote:
has anyone else noticed ATT mobile is blocking ssh (outgoing 22/tcp)
connections?
Not here, have an SSH session open on my phone on port 22 as we speak. I'm on
an android on ATT's 3G
101 - 200 of 442 matches
Mail list logo
