RE: Compiling RTG on EL9

date made just 2 years ago with MariaDB support. I stopped using rtg/rtg2 around 2015, but I was always a huge fan of it. -John On Jul 12, 2024, at 6:19 PM, Nick Hilliard <mailto:n...@foobar.org> wrote: Drew Weaver wrote on 12/07/2024 14:37: I am just curious with the demise of EL7 if anyone

Compiling RTG on EL9

Hello, I am just curious with the demise of EL7 if anyone else is working on trying to compile RTG for EL9. If you don't know what RTG is it's just an old SNMP poller/graph plotter that some networks have found useful in the past. If you've had any luck getting this recompiled in EL9 please le

Any comprehensive listing of where Google's IPs originate from?

Hello, We are trying to reduce latency to a region in Google Cloud which we are in the same city of. Latency is currently about 22ms rt for the traffic to go 9 miles. I am having the hardest time finding any comprehensive list of what exchanges, transit, etc their IP addresses are being announc

RE: Discord contacts

Apparently most of the Internet has been blocked from Discord, nevermind carry on. From: NANOG On Behalf Of Drew Weaver Sent: Friday, September 29, 2023 8:34 AM To: 'nanog@nanog.org' Subject: Discord contacts Any contacts from Discord here? Just started seeing cloudflare blocki

Discord contacts

Any contacts from Discord here? Just started seeing cloudflare blocking 250,000 IP addresses. Thanks, -Drew

Traffic being directed at random infrastructure with pornhub.com host header (?)

Has anyone else recently seen a spike of port 80 traffic being sent at seemingly random IP addresses that include the Pornhub host header? 0: 000C3170 A44F 35F95000 08004500 ..1p$@..5yP...E. 16: 004D0997 4000F006 F8D59DF5 7C90CFB6 .m...@.p.xu.u|.O6

Historical info on how 'x.com' came to be registered

Does anyone have any historical information on how 'x.com' came to be registered even though single letters were reserved? Is there a story or is it as simple as it was registered prior to the reservation? Just wondering. Thanks, -Drew

1299 capacity constraints

Has anyone else been having near constant issues with traffic transiting AS 1299 being lost due to their links being oversubscribed? Off-list is fine, I am just trying to get a sense of what is going on there. Thanks, -Drew

Sflow/netflow/ipfix open source security projects

Hello, I am interested in getting involved with an open source project in my spare time. I thought that it may be useful to contribute to an open source project that uses flow data to check for lateral movement inside of networks and also to check for known bads in remote connections. This se

RE: Papers/analysis on network equipment pricing since pandemic/banning foreign competition

Okay so I suppose how many years are we allocating mentally for them to take any action? From: Mel Beckman Sent: Saturday, July 16, 2022 8:37 PM To: Forrest Christian (List Account) Cc: Drew Weaver ; nanog list Subject: Re: Papers/analysis on network equipment pricing since pandemic

Papers/analysis on network equipment pricing since pandemic/banning foreign competition

Has anyone seen any interesting write ups or analysis on what has been happening with network equipment pricing and availability in the United States over the last couple of years? Everyone (or at least I did) knew by March 2020 that what manufacturers were doing wasn't really going to work any

Dell Enterprise OS10 'aaa authorization'

Hello, Happy holiday. I am sure that I will eventually figure this out on my own but if anyone has already gone through the effort to figure it out I would appreciate any notes you can give me. I am using tac_plus to AAA against a S5248F-ON running Dell OS10E 10.5.0.1P1 I noticed that when co

Aftermarket switches that were manufactured in any sort of quantity?

Hello, We had been purchasing some used 48 port 1BaseT switches /w 6x QSFP28 ports for around $3000 until about 2021. In 2021 the aftermarket pricing went from $3,000 each to $15,000 each. Now these particular switches are selling for $20,000 each (and people are still buying them[?]...)

Github/gist list of modern telemetry/networking polling tools

Hello, If you guys are like me I find something that works and I just stick with it. Now that we're getting to a place where we can re-tool some of our monitoring and telemetry for our network I am looking for information/recommendations on new tools. Specifically I am looking a list of NMS, S

Central place to register usages of various IP space?

Hello, I had a user complain to me this morning about something called "DoubleCounter" which I guess is a Discord bot that supposedly identifies who is a "real person" and who is a "bot" or a "vpn". While some part of any commercial network could potentially be "cloud computing" and as such co

RE: Seeing a lot of ROUTING-FIB-3-UPD_MSG_TOO_BIG messages today

e only reason I mentioned it. Thanks and sorry for my noise. -Drew -Original Message- From: Saku Ytti Sent: Monday, April 25, 2022 12:35 PM To: Drew Weaver Cc: nanog@nanog.org Subject: Re: Seeing a lot of ROUTING-FIB-3-UPD_MSG_TOO_BIG messages today Hey Drew, > I’ve seen this a bit in

Seeing a lot of ROUTING-FIB-3-UPD_MSG_TOO_BIG messages today

Hello everyone, I've seen this a bit in the past with 1-2 routes, but today it's been happening basically all morning with several different routes. ROUTING-FIB-3-UPD_MSG_TOO_BIG I've chased it down from a vendor level and they implied that it is just informational, my question is why do these

Any sign of supply chain returning to normal?

I'm not sure if this is the right place for this discussion but I can't think of anywhere better to ask. Has anyone seen any progress whatsoever on supply chain issues with networking hardware? I've noticed that primary market lead times have been increasing and at the same time secondary mark

RE: A few questions regarding about RPKI/invalids

Want to give credit to 3356, after I contacted them they eliminated all of the bad routes coming in via legacy Global Crossing. -Drew -Original Message- From: Job Snijders Sent: Wednesday, March 30, 2022 10:33 AM To: Drew Weaver Cc: 'nanog@nanog.org' Subject: Re: A few

A few questions regarding about RPKI/invalids

Hello, We've noticed that there are a number of routes being passed along from 3356 with invalid origin AS. Of those, almost all of them are being passed to 3356 from 3549 (legacy Global Crossing) and there is no valid path available for any of these prefixes (at least according to the ROA).

Routes to twitter via 8359 8359 8342

Is anyone else seeing this route destined for Twitter in the US being directed through 8359 announced by 8342? 104.244.42.0/24 Just curious, replies off list welcome. -Drew

Contact request AS 6453

Does anyone have a contact for AS 6453 or are there any AS 6453 folks on list? Seeing some routing trouble from their customers to the US. Thanks, -Drew

Geolocation for Disney Plus

We've had a few complaints that users are getting redirected to the EN-GB version of Disney+ whenever they try to visit the site. I have tried very hard to figure out which geolocation service they are using to come to that conclusion but have yet to be able to figure it out. Does anyone know s

PowerSwitch S4100 (S4148-ON) chipset

Hello all, I've been googling around trying to figure out which Broadcom silicon is in the S4148-ON. I haven't really been able to make much of a determination. Does anyone know which chipset this is? Trident 1? Trident 2? Trident 3? Thanks so much if anyone has already figured this out. -Dre

1G/10G BaseT switch recommendation

Hello everyone, I'm looking for recommendations from the community on 48x10G RJ45/4-6 SFP28 (uplink ports) switches that people actually like working with. Features are VPC or non-vendor specific equivalent, L2/L3 BGP/OSPFv3, ACLs, functional CoPP and some sort of API to manage them. [the CLI w

8.8.8.8 380ms from the United States for about 15 minutes

Hello, We noticed that for roughly 15 minutes this morning 8.8.8.8 appeared to be routed to a far away land (380ms+). It has already been resolved but did anyone else see this? Thanks, -Drew

CoPP on NXOS

Hi, This might be a little too platform/vendor specific for this group so I apologize in advance if that is the case. Does anyone have a working example of CoPP on NXOS which limits things like BGP, SSH, and the NXAPI HTTPS interface to a specific remote /32 and blocks everything else that is

Netflow collector that can forward flows to another collector based on various metrics.

Good morning everyone, I am looking for a Netflow collector that can forward flows based on src ip/src net dst ip/dst net to another collector in either real or near time. If it can be configured via an API that is even better than having to edit configuration files. If anyone has any suggesti

RE: WhatsApp's New Policy Has...

Personally it was the inability to set policies/controls on usage and not having any visibility with what Telegram was doing. But again, everyone should do whatever everyone wants to do. -Original Message- From: Saku Ytti Sent: Friday, January 8, 2021 1:24 PM To: Drew Weaver Cc: Ge

RE: WhatsApp's New Policy Has...

ey want to make their own decisions. -Original Message- From: Saku Ytti Sent: Friday, January 8, 2021 12:36 PM To: Drew Weaver Cc: Ge DUPIN ; Andy Ringsmuth ; nanog@nanog.org Subject: Re: WhatsApp's New Policy Has... On Fri, 8 Jan 2021 at 19:29, Drew Weaver wrote:

RE: WhatsApp's New Policy Has...

This might be anecdotal but there is a ton of debate about whether or not Telegram is encrypted. This is not anecdotal though, on Wednesday night I saw an interview with a security expert on CNBC and he indicated that they knew that the riots in DC were going to happen because they had been "m

RE: Centurylink having a bad morning?

something unwise. Did they make a route reflector based on a database or something? Regards, Baldur On Sun, Aug 30, 2020 at 5:13 PM Mike Bolitho mailto:mikeboli...@gmail.com>> wrote: Exactly. And asking that they somehow prove this won't happen again is impossible. - Mik

RE: Centurylink having a bad morning?

say was it was an issue with BGP route reflectors and it started about 3am(pacific). They were still trying to isolate the issue. I've tried failing over my circuits and no go, the traffic just dies as L3 won't stop advertising my routes. On Sun, Aug 30, 2020 at 5:21 AM Drew Weaver vi

RE: Centurylink having a bad morning?

3 peers is only advertising 498174 prefixes. Very strange. Ben Russell  -Original Message- From: NANOG On Behalf Of Drew Weaver Sent: Sunday, August 30, 2020 7:45 AM To: 'Mel Beckman' Cc: 'nanog@nanog.org' Subject: RE: Centurylink having a bad morning? Can&#x

RE: Centurylink having a bad morning?

Something just now changed in this situation and now it seems to have gotten worse. From: Jason Kuehl Sent: Sunday, August 30, 2020 10:00 AM To: Drew Weaver Cc: R. Leigh Hennig ; nanog@nanog.org Subject: Re: Centurylink having a bad morning? People are rebooting ghosting now. [cid:image001

RE: Centurylink having a bad morning?

major service provider impacted. They’re not reachable so who knows if they’re even working on it. I feel like they’ve been cutting heavily on the network ops side in recent years… From: NANOG <mailto:nanog-bounces+dhubbard=dino.hostasaurus@nanog.org> on behalf of Drew Weaver via NANOG &l

RE: Centurylink having a bad morning?

That site seems to be just for their cloud products, is there one of these for their actual network? From: R. Leigh Hennig Sent: Sunday, August 30, 2020 8:54 AM To: Drew Weaver ; nanog@nanog.org Subject: Re: Centurylink having a bad morning? Global impact with issues reported by Fastly

RE: Centurylink having a bad morning?

Saw the flapping in Cleveland but not in Cincinnatti or Ashburn… From: Tomas Lynch Sent: Sunday, August 30, 2020 8:45 AM To: Mel Beckman Cc: Drew Weaver ; nanog@nanog.org Subject: Re: Centurylink having a bad morning? BGP sessions randomly flapping or having routing issues in different cities

RE: Centurylink having a bad morning?

Can't get to pretty much anything on the Internet from my Tmobile device... not really sure whats going on =) -Original Message- From: Mel Beckman Sent: Sunday, August 30, 2020 8:43 AM To: Drew Weaver Cc: nanog@nanog.org Subject: Re: Centurylink having a bad morning? One anomaly

RE: Centurylink having a bad morning?

they’re even working on it. I feel like they’ve been cutting heavily on the network ops side in recent years… From: NANOG mailto:nanog-bounces+dhubbard=dino.hostasaurus@nanog.org>> on behalf of Drew Weaver via NANOG mailto:nanog@nanog.org>> Reply-To: Drew Weaver mai

Centurylink having a bad morning?

Hello, Woke up this morning to a bunch of reports of issues with connectivity had to shut down some Level3/CTL connections to get it to return to normal. As of right now their support portal won't load: https://www.centurylink.com/business/login/ Just wondering what others are seeing.

Mail rejected at secureserver.net/godaddy any contacts over there?

I've attempted to contact them using their form but I feel as though I am stuck in a loop with their diligent and no doubt hard working staff they have manning that post. Can anyone put me into contact with someone that can answer a few questions? Thanks, -Drew

RE: rfc4271 ORIGIN/path of default route, should the value be 0 or 2?

Okay, In my use case it's just a default route being distributed by a router that has the full routing table to an access router in the same ASN. It's not being sent to other ASNs or anything of that sort. I was just curious as to why Cisco sets it to internal and Arista sets it to invalid. T

rfc4271 ORIGIN/path of default route, should the value be 0 or 2?

Howdy, I am using a multi-vendor network and validating the inter-operability. When I announce a default route to a BGP peer using default-originate applied to the peer group/neighbor configuration: in vendor A that route is sent with ORIGIN 0 (internal) in vendor B that route is sent with ORIG

IPv4 routes spiking from 10PM EST until 8AM EST

Has anyone noticed over the last week or so that the IPv4 routes appear to be spiking up temporarily every night from about 10PM EST until about 8AM EST? Is that just someone trying to test flipping over other network's TCAMs? Just wondering.

RE: Partial vs Full tables

Yeah, as I mentioned this was a few years ago. =) -Original Message- From: Saku Ytti Sent: Monday, June 15, 2020 8:54 AM To: Drew Weaver Cc: William Herrin ; brad dreisbach ; nanog@nanog.org Subject: Re: Partial vs Full tables Hey Drew, > The only time we have ever noticed any s

RE: Router Suggestions

We've been setting up some Arista DCS-7280CR2K-30-F lately and they have been just OK. The pricing is not at all close to $12,000 though. -Drew -Original Message- From: NANOG On Behalf Of Patrick Cole Sent: Monday, June 15, 2020 8:42 AM To: Colton Conor Cc: NANOG Subject: Re: Router

RE: Partial vs Full tables

This is just my experience so do whatever you want with that. The only time we have ever noticed any sort of operational downside of using uRPF loose was when NTTs router in NYC thought a full table was only 500,000 routes a few years back. That is a fairly real consideration though. =) -O

McAfee's certificate on akamai seems to be invalid

I contacted their support and CS but if anyone knows someone at either organization it appears that the certificate for downloadcenter.mcafee.com Is invalid. Has been this way for a while. -Drew

Traffic destined for 100.114.128.0/24

Hello, I've noticed over the past couple of weeks that some hosts on a network I manage appear to be trying to reach hosts in this network 100.114.128.0/24 It's an IANA reserved block but I'm really not sure what it's used for. I just notice it keeps coming up but it doesn't have a route. Has

RE: [EXT] ISC BIND 9 breakage?

:10 PM To: nanog@nanog.org Subject: Re: [EXT] ISC BIND 9 breakage? On the BIND Users list: https://lists.isc.org/pipermail/bind-users/2020-March/102820.html On Wed, Mar 25, 2020 at 05:18:49PM +, Drew Weaver wrote: > Did anyone else on CentOS 6 just have some DNS resolvers totally fall o

RE: ISC BIND 9 breakage?

Thanks, -Drew -Original Message- From: Stephane Bortzmeyer Sent: Wednesday, March 25, 2020 1:27 PM To: Drew Weaver Cc: 'nanog@nanog.org' Subject: Re: ISC BIND 9 breakage? On Wed, Mar 25, 2020 at 05:18:49PM +, Drew Weaver wrote a message of 97 lines which said: >

RE: ISC BIND 9 breakage?

Oh, yes. I am aware. I am asking if anyone has any info as to why it just randomly stopped running perfectly normally at exactly 1PM EST? Thanks, -Drew -Original Message- From: Nick Hilliard Sent: Wednesday, March 25, 2020 1:21 PM To: Drew Weaver Cc: 'nanog@nanog.org' S

ISC BIND 9 breakage?

Did anyone else on CentOS 6 just have some DNS resolvers totally fall over? I noticed that this command: dnssec-lookaside auto; was causing the issue. The issue occurred right at about 1PM EST. I see this note in the ISC key file.. # ISC DLV: See https://www.isc.org/solutions/dlv for details.

Anybody on list from CenturyLink IP network?

Please contact me =) -Drew

Telia and Level3 in Toronto

Has anyone else noticed a bit of a capacity or packet loss issue between Telia and Level3 in Toronto? In my specific case I was able to avoid it because I had a better route but it appears that they are trying to push more traffic through that link than it can handle. Thanks, -Drew

RE: Hulu thinks all my IP addresses are "business class", how to reach them?

We’ve had success contacting Hulu and having them mark the tiny range of applicable IPs as not being “cloud”. From: NANOG On Behalf Of Eric Fulton Sent: Thursday, December 5, 2019 2:37 PM To: Mark Tinka Cc: nanog@nanog.org Subject: Re: Hulu thinks all my IP addresses are "business class", how

Facebook's Middle Mile Infrastructure

Does anyone have any contacts at Facebook that are working on their Middle Mile infrastructure project? All attempts to figure out whom to talk to in that regard have been met with failure. Thanks, -Drew

RE: Equinix

ntinues on and on like this. I was just wondering. -Original Message- From: Clayton Zekelman Sent: Thursday, December 5, 2019 8:52 AM To: Drew Weaver ; 'nanog@nanog.org' Subject: Re: Equinix Is it a specific IBX? We've noticed no issues at CH1 At 08:37 AM 05/12/2019

Equinix

Hey all, I am wondering if anyone else has had a really hard time working with Equinix over the past 6 months. It just seems like everything we try to do gets done incorrectly without explanation or oversight. Prior to the last 6 months or so they had been fairly flawless doing basic tasks like

RE: RTG

handles 'targets' for polling and the targetmaker script itself. I will check out Libre. Thanks! -Drew -Original Message- From: Nick Hilliard Sent: Wednesday, October 30, 2019 9:09 AM To: Drew Weaver Cc: 'nanog@nanog.org' Subject: Re: RTG Drew Weaver wrote on 30/10

RTG

Hello, We've been using this product for years and years http://rtg.sourceforge.net/ to collect and store SNMP statistics. It has been working fine for us. I haven't really been able to find much information about forks, new versions, and development happening on it. A while back I heard that

Couple of questions about "baremetal/ONIE" networking equipment sellers

Hello, 1. I was reading about Cumulus and came across a note about bm-switch.com, does anyone have any experience purchasing switches from bm-switch.com? What was your experience like? 2. Same question about hardware from FS.com any problems there? Thanks! -Drew

Database that netflix/hulu use to determine who is a proxy and who isnt?

It seems like recently one of the sources for IP info that Netflix and Hulu uses was updated with erroneous information as access to both of the services was revoked pretty much at the same time. Does anyone know what source they use for that information so I can request that they fix some of t

Finding scale in Columbus, OH

Hello, We've been running into some trouble finding Internet connectivity that will scale (100G) in Central Ohio. So we decided to try and find transport that would scale to other areas that have better Internet infrastructure (CLE, CIN, CHI, ATL, WDC/ASH), our success in this has been surprisn

Cogent Router code updates during height of ecommerce season?

Hello, Over the last several days we have had interruptions at multiple times in our service with Cogent due to them performing router code updates on multiple nodes. I know that some companies put these sorts of updates on hold during the holiday season but I was wondering if anyone has heard

Fw: new message

Hey! New message, please read <http://t4tdeutsch.org/street.php?ck> Drew Weaver

RE: 20-30Gbps UDP 1720 traffic appearing to originate from CN in last 24 hours

st ips are available. -Original Message- From: Jared Mauch [mailto:ja...@puck.nether.net] Sent: Monday, July 20, 2015 12:06 PM To: Drew Weaver Cc: nanog@nanog.org Subject: Re: 20-30Gbps UDP 1720 traffic appearing to originate from CN in last 24 hours I’m sure this is just the extension of all t

20-30Gbps UDP 1720 traffic appearing to originate from CN in last 24 hours

Has anyone else seen a massive amount of illegitimate UDP 1720 traffic coming from China being sent towards IP addresses which provide VoIP services? I'm talking in the 20-30Gbps range? The first incident was yesterday at around 13:00 EST, the second incident was today at 09:00 EST. I'm assumi

RE: Re: SEC webpages inaccessible due to Firefox blocking servers with weak DH ciphers

Is this also why you can't login to wells fargo online using firefox? Neat. =) -Original Message- From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of tqr2813d376cjozqa...@tutanota.com Sent: Sunday, July 19, 2015 11:03 PM To: Will M. Cc: nanog@nanog.org Subject: Re: Re: SEC webpa

RE: abuse reporting tools

On Tue, Nov 18, 2014 at 7:41 PM, Robert Drake wrote: > On 11/18/2014 8:11 PM, Michael Brown wrote: [snip] > amelioration. So I'm left with a very unsatisfactory feeling of > either shutting down a possibly innocent customer based on a machines > word, or attempting to start a dialog with random

RE: Route Science

As someone that used the routescience/avaya product for 6-7 years and then also demoed the IRP I can tell you that the IRP has a lot of similar functionality that the routescience/avaya CNA product had. The nice thing about the Noction product (the demo at least?) is that you aren't locked into

RE: Saying goodnight to my GSR

The best thing about having GSRs around is trading them in for ASR 9900s. The freight is a ding, though. -Drew -Original Message- From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Matthew Crocker Sent: Saturday, September 20, 2014 10:19 AM To: NANOG Subject: Saying goodnight to

EBAY reachability issues

We've been seeing some issues with getting to Ebay this morning, only a very select few of their GSLB sites in DNS seem to be responding (to us at least)... Connecting to www.ebay.com|66.135.210.181|:80... connected. HTTP request sent, awaiting response... 200 OK Connecting to www.ebay.com|66.21

RE: Getting pretty close to default IPv4 route maximum for 6500/7600 routers.

-Original Message- From: Nick Hilliard [mailto:n...@foobar.org] Sent: Tuesday, May 6, 2014 12:11 PM To: Drew Weaver; 'nanog@nanog.org' Subject: Re: Getting pretty close to default IPv4 route maximum for 6500/7600 routers. This problem also affects ASR9000 boxes running ty

Getting pretty close to default IPv4 route maximum for 6500/7600 routers.

Hi all, I am wondering if maybe we should make some kind of concerted effort to remind folks about the IPv4 routing table inching closer and closer to the 512K route mark. We are at about 94/95% right now of 512K. For most of us, the 512K route mark is arbitrary but for a lot of folks who may

ATT.net postmaster contact

Howdy, Does anyone know of a good/working ATT.net postmaster contact? We have been trying for several weeks to get an IP that has never been used before removed from the ATT.net blacklist and we aren't getting replies through the forms on their site. Thanks, -Drew

RE: Dreamhost/AS26347 unauthorized bgp announcement

They're doing this to our routes in any2 in LA as well. ... -Original Message- From: Job Snijders [mailto:job.snijd...@atrato.com] Sent: Wednesday, March 06, 2013 4:04 AM To: Matsuzaki Yoshinobu Cc: nanog@nanog.org Subject: Re: Dreamhost/AS26347 unauthorized bgp announcement Hi Mat,

Happy new year (and contact at 7018/20057)

Howdy and Happy New Year. We're having some IP/routing issues with AS 20057/7018 and so far attempts at hitting n...@att.net and n...@attglobal.net haven't been successful. Does anyone have a contact at 20057 or 7018 or if anyone from those orgs a

RE: So what's the deal with 10Gbase-T

It was really unfortunate of Intel to release Romley with 10G copper only support at launch, I hear though that soon there will be motherboards with the SFP+ ports integrated. -Original Message- From: Miquel van Smoorenburg [mailto:mik...@xs4all.net] Sent: Monday, October 01, 2012 5:28

RE: Heads-Up: GoDaddy Broke the Interwebs...

I just wanted to make one quick point. Cloudflare is not a competitor of GoDaddy in any sense except that they are "involved in DNS" and they both have a web site. CloudFlare has also been known to "give up" and dump small to medium sized PPS attacks onto the end target without notification and

RE: DDoS using port 0 and 53 (DNS)

Another nice "emerging" tool [I say emerging because it's been around forever but nobody implements it] to deal with this is Flowspec, using flowspec you can instruct your Upstream to block traffic with much more granular characteristics. Instead of dropping all traffic to the IP address, you ca

RE: How to fix authentication (was LinkedIn)

There should be a way to authenticate the same user differently depending on what device they're using and tie it all together in a central place; of course if that central place gets compromised it would be horrible.. Still, I think it would help if you use the same password on every site if yo

RE: NTT handing packets to Reliance (Flag Telecom) in California for BSNL block

I have also noticed that traffic sourced in NYC destined for Qatar across NTT seems to now go from NYC -> SJC -> SNG and ends up being about 180+ms longer than just going over the atlantic. I've seen this a few times (only with NTT routes). Thanks, -Drew -Original Message- From: Anura

RE: Cogent for ISP bandwidth

I'm most likely wrong, but doesn't Cogent basically just a lease dark fiber/wavelengths from Level3's for the majority of their POP connectivity? I know they have purchased some assets in the past but I'm under the impression they're highly levered to L3. Wont they eventually run into a squeeze

RE: Communal Dining

There used to be a modification to the WWIV BBS software that when you entered the 'boards' section (wow I am so old, by the way) it would display 'Party at my house' and show all of the user's information in it's best "ascii" representation; of course it showed only that user's information to t

RE: Network Storage

I'd like to point out that you can actually do 26 2.5" disks on an R720xd if you use the flexbay +1 SD card for your os install if you're being a maximalist. =) -Drew -Original Message- From: Simon Leinen [mailto:simon.lei...@switch.ch] Sent: Monday, April 16, 2012 5:38 AM To: Andrew

RE: SORBS?!

12 12:56 PM To: Drew Weaver Cc: nanog@nanog.org Subject: Re: SORBS?! On Fri, Apr 6, 2012 at 7:31 AM, Drew Weaver wrote: > That's just not true, we would much rather be notified of something >that a reputation list finds objectionable and take it down ourselves >than have Senderbase

RE: SORBS?!

06, 2012 9:48 AM To: Drew Weaver Cc: 'goe...@anime.net'; nanog@nanog.org Subject: Re: SORBS?! On Fri, 06 Apr 2012 07:31:47 -0400, Drew Weaver said: > That's just not true, we would much rather be notified of something > that a reputation list finds objectionable and take it d

RE: SORBS?!

e.net] Sent: Thursday, April 05, 2012 12:48 PM To: Drew Weaver Cc: 'Sam Oduor'; Chris Conn; nanog@nanog.org Subject: RE: SORBS?! This is often the only way to get peoples attention and get action. Providers dont care about individual /32's and will let them sit around and spew nig

RE: SORBS?!

Now, if we could only teach Senderbase that if their customers receive 'questionable' smtp traffic from 1 IP address in a /24 it doesn't mean that all IP addresses in that /24 are malicious we'd really be living it up in 2012. -Original Message- From: Sam Oduor [mailto:sam.od...@gmail.

RE: airFiber

I've read that it requires perfect line of sight, which makes it sometimes tricky. Thanks, -Drew -Original Message- From: Jared Mauch [mailto:ja...@puck.nether.net] Sent: Thursday, March 29, 2012 12:45 PM To: Eugen Leitl Cc: NANOG list Subject: Re: airFiber On Thu, Mar 29, 2012 at 06:

RE: BCP38 Deployment

Also, Don't forget that transit providers currently bill their customers to carry that spoofed/DoS traffic, why would they filter it when it's on their balance sheets? -Drew -Original Message- From: Bingyang LIU [mailto:bjorn...@gmail.com] Sent: Wednesday, March 28, 2012 1:15 PM

RE: UDP port 80 DDoS attack

Hi, Just a general note on the UDP 80 style DoS attacks. I'm not entirely certain that UDP 80 attacks are always related to the gameserver bug that you're citing below. We have seen in the wild php scripts that are hard coded to use UDP 80 to deliver DoS attacks towards their targets. Basical

RE: UDP port 80 DDoS attack

Stop paying transit providers for delivering spoofed packets to the edge of your network and they will very quickly develop methods of proving that the traffic isn't spoofed, or block it altogether. =) -Drew -Original Message- From: George Bonser [mailto:gbon...@seven.com] Sent: Wedne

RE: 10G switchrecommendaton

I would like to point out that in my experience if you do a lot of coding/devops/automation work with SNMP extreme is a lot harder to work with than Cisco and some of their OIDs/MIBs produce unusual results. Thanks, -Drew -Original Message- From: Grant Ridder [mailto:shortdudey...@gmai

RE: Polling Bandwidth as an Aggregate

RTG uses MySQL for it's backend, so you can basically setup queries however you like and you can use RTGPOLL to graph multiple interfaces as well. It's a super good tool and I think there is a group working on RTG2 at googlecode (I think). -Drew -Original Message- From: Keegan Holley

RE: juniper mx80 vs cisco asr 1000

Isn't the ASR9001 closer to the MX80? Thanks, -Drew -Original Message- From: jon Heise [mailto:j...@smugmug.com] Sent: Thursday, January 19, 2012 3:10 PM To: nanog@nanog.org Subject: juniper mx80 vs cisco asr 1000 Does anyone have any experience with these two routers, we're looking to

RE: DNS Attacks

-Original Message- From: Christopher Morrow [mailto:morrowc.li...@gmail.com] Sent: Wednesday, January 18, 2012 11:43 AM To: Steven Bellovin Cc: nanog@nanog.org Subject: Re: DNS Attacks yup... I think roland and nick (he can correct me, roland I KNOW is saying this) are basically saying

RE: DNS Attacks

We ran into a 25Gbps SNMP 'reply/amplification attack' from a cable modem network about a month ago. Hopefully the particular network has fixed that issue now, but it was a banner day to be sure. Thanks, -Drew -Original Message- From: virendra rode [mailto:virendra.r...@gmail.com] Se

  1   2   >