RPKI invalid logs?

2021-02-20 Thread Hank Nussbacher
Is there a place where one can examine RPKI invalid logs for a specific date & time or even better logs showing those that dropped RPKI invalid announcements? Thanks, Hank

Re: bgp.he.net?

2021-02-18 Thread Hank Nussbacher
On 18/02/2021 15:08, Hank Nussbacher wrote: Is it down? -Hank Back up. -Hank

bgp.he.net?

2021-02-18 Thread Hank Nussbacher
Is it down? -Hank

Re: Problems with newish IP block assignment issues from ARIN

2021-02-08 Thread Hank Nussbacher
On 08/02/2021 22:14, Justin Wilson (Lists) wrote: It acts like the IP block was blacklisted at some point and got on some bad lists but I don’t want ti limit myself to that theory. I have opened up a ticket with ARIN asking for any guidance. Has anyone ran into

Re: RTBH and Flowspec Measurements - Stop guessing when the attack will over

2021-02-02 Thread Hank Nussbacher
On 02/02/2021 19:08, Douglas Fischer wrote: Well... That is a point of view! And I must respect that. Against this position, there are several companies, including some tier 1, that sells this as an

Re: Centurylink having a bad morning?

2020-08-30 Thread Hank Nussbacher
On 30/08/2020 20:08, Baldur Norddahl wrote: https://blog.cloudflare.com/analysis-of-todays-centurylink-level-3-outage/ Sounds like Flowspec possibly blocking tcp/179 might be the cause. But that is Cloudflare speculation.

Re: Centurylink having a bad morning? [EXTERNAL]

2020-08-30 Thread Hank Nussbacher
On 30/08/2020 18:22, Joseph Jenkins wrote: Well at least it looks like the issue is starting to resolve  and stuff is coming back up. On Sun, Aug 30, 2020 at 8:21 AM Matt Hoppes

Bottlenecks and link upgrades

2020-08-12 Thread Hank Nussbacher
At what point do commercial ISPs upgrade links in their backbone as well as peering and transit links that are congested?  At 80% capacity?  90%?  95%?  Thanks, Hank Caveat: The views expressed above are solely my own and do not

ISPs are hit hardest by COVID-19 disruption

2020-08-06 Thread Hank Nussbacher
https://betanews.com/2020/08/04/isps-covid-19-disruption/ Really? -Hank Caveat: The views expressed above are solely my own and do not express the views or opinions of my employer

Re: BGP route hijack by AS10990

2020-08-01 Thread Hank Nussbacher
On 01/08/2020 00:50, Mark Tinka wrote: On 31/Jul/20 23:38, Sabri Berisha wrote: Kudos to Telia for admitting their mistakes, and fixing their processes. Considering Telia's scope and "experience", that is one thing. But for the general

Re: BGP route hijack by AS10990

2020-07-31 Thread Hank Nussbacher
On 30/07/2020 20:32, Sadiq Saif wrote: On Thu, 30 Jul 2020, at 13:09, Patrick Schultz wrote: so, bgp optimizers... again? -- Patrick More like shame on Telia for not filtering properly. But wait - MANRS indicates that Telia

Re: BGP route hijack by AS10990

2020-07-30 Thread Hank Nussbacher
On 30/07/2020 05:46, Clinton Work wrote: See: https://bgpstream.com/event/245264 https://bgpstream.com/event/245265 -Hank Caveat: The views expressed above are solely my own and do not express the views or opinions of my

Re: Survey on the use of IP blacklists for threat mitigation

2020-06-18 Thread Hank Nussbacher
On 16/06/2020 22:08, J. Hellenthal via NANOG wrote: This issue was raised in Reddit and Github: https://www.reddit.com/r/sysadmin/comments/h149em/calls_to_replace_blacklist_whitelist_black_hat/

IBM Cloud global outage caused by "incorrect" BGP routing

2020-06-13 Thread Hank Nussbacher
https://www.bleepingcomputer.com/news/technology/ibm-cloud-global-outage-caused-by-incorrect-bgp-routing/ -Hank Note: the views expressed above are my own and do not necessarily reflect the views of my employer

Spike in traffic to Google caches?

2020-04-21 Thread Hank Nussbacher
Did anyone notice a huge jump in traffic today between 11:30-11:40 (GMT) directed at Google and Akamai caches coming from Amazon and Google? Gaming updates? Thanks, Hank Caveat: The views expressed above are solely my own and do not express the views or opinions of my employer

Re: Backhoe season?

2020-03-27 Thread Hank Nussbacher
On 26/03/2020 20:02, Aaron Gould wrote: Numerous gov'ts and municipalities, which had planned constructions jobs but postponed them to the summer due to heavy traffic volume, have started to implement all those construction jobs, which includes backhoes. -Hank I heard, and am seeing that

Re: Gmail email blocking is off the rails (again)

2019-12-03 Thread Hank Nussbacher
On 04/12/2019 05:04, Matthew Pounsett wrote: Cute way to promote Google Groups over Mailman.  Gotta give 'em credit for being creative :-) -Hank For some reason Gmail has started blocking mailman administrative emails to someone who's an admin on a list I host.  Their SMTP 552 error

Re: "Using Cloud Resources to Dramatically Improve Internet Routing"

2019-10-07 Thread Hank Nussbacher
On 07/10/2019 17:42, Stephane Bortzmeyer wrote: On Fri, Oct 04, 2019 at 03:52:26PM -0400, Phil Pishioneri wrote a message of 9 lines which said: Using Cloud Resources to Dramatically Improve Internet Routing UMass Amherst researchers to use cloud-based ‘logically centralized control’

Re: Art and Tech is madness

2019-09-05 Thread Hank Nussbacher
On 05/09/2019 08:09, Kasper Adel wrote: No.  This is art & tech from 12 years ago: https://www.youtube.com/watch?v=_y36fG2Oba0 -Hank In SPRING a time when segment and routing had no mismatch, a time when isis and ospf ate a forbidden encap, all they had to do was forward bgp like its hot,

Looking for Cloudfront clue

2019-09-04 Thread Hank Nussbacher
Can someone with routing/BGP/peering clue in AWS's Cloudfront, please contact me offlist? Thanks, Hank

Re: Mx204 alternative

2019-09-02 Thread Hank Nussbacher
On 02/09/2019 11:16, Mark Tinka wrote: On 8/Aug/19 05:33, Brandon Martin wrote: MX204 is a very nice pizza box router for service providers.  I'm not aware of anything quite like it in terms of having a mature control plane.  I like the JunOS config language better than Cisco-style that

Re: Corporate Identity Theft: Azuki, LLC -- AS13389, 216.179.128.0/17

2019-08-14 Thread Hank Nussbacher
On 15/08/2019 06:16, Ronald F. Guilmette wrote: - If the resource owner is no where to be found, why should we as a community care? I'm so glad you asked. Regardless, in -either- the case where no heir can be found -or- in the case where the rightful heir is either just too dumb or just too

Re: RPKI adoption

2019-08-13 Thread Hank Nussbacher
On 14/08/2019 06:24, John Curran wrote: When you did that Whois look up at the ARIN website, you did agree to terms of use for the Whois service which contains indemnification provisions and are legally enforceable. If you instead used a

Re: Corporate Identity Theft: Azuki, LLC -- AS13389, 216.179.128.0/17

2019-08-13 Thread Hank Nussbacher
On 13/08/2019 22:17, Ronald F. Guilmette wrote: Just as an observer to your long resource theft postings: - Do you attempt to contact directly the organization or person who have had their resource taken over? - Do they care or are they apathetic? - If the resource owner is no where to be

Re: Bgpmon alternatives?

2019-07-18 Thread Hank Nussbacher
On 18/07/2019 08:44, Töma Gavrichenkov wrote: On Thu, Jul 18, 2019 at 3:16 AM TJ Trout wrote: Anyone know of a hosted alternative to bgpmon? I'm testing Qrator but I can't determine if it will notify in real-time of a prefix hijack? Qrator guy there. Real-time notifications are there but are

Re: Performance metrics used in commercial BGP route optimizers

2019-07-16 Thread Hank Nussbacher
On 16/07/2019 20:41, Job Snijders wrote: On Tue, Jul 16, 2019 at 3:33 PM Mike Hammett > wrote: More like do whatever you want in your own house as long as you don't infringe upon others. That's where the rub is; when using "BGP optimisers" to influence public

Re: CloudFlare issues?

2019-06-25 Thread Hank Nussbacher
On 25/06/2019 08:17, Christopher Morrow wrote: On Tue, Jun 25, 2019 at 12:49 AM Hank Nussbacher wrote: On 25/06/2019 03:03, Tom Beecher wrote: Disclaimer : I am a Verizon employee via the Yahoo acquisition. I do not work on 701. My comments are my own opinions only. Respectfully, I believe

Re: CloudFlare issues?

2019-06-24 Thread Hank Nussbacher
On 25/06/2019 03:03, Tom Beecher wrote: Disclaimer : I am a Verizon employee via the Yahoo acquisition. I do not work on 701.  My comments are my own opinions only. Respectfully, I believe Cloudflare’s public comments today have been a real disservice. This blog post, and your CEO on Twitter

Re: Russian Anal Probing + Malware

2019-06-23 Thread Hank Nussbacher
On 24/06/2019 00:23, Randy Bush wrote: e.g. i am aware of researchers scanning to see patching spread and trying to make a conext paper dreadline this week or infocom next month. hard to tell the sheep from the goats and the wolf from the sheep. i get the appended. sheep or wholf? i sure do

Re: Bgpmon alternatives?

2019-06-16 Thread Hank Nussbacher
On 16/06/2019 12:28, Töma Gavrichenkov wrote: On Sun, Jun 16, 2019, 4:57 AM TJ Trout > wrote: Any simple and easy bgpmon alternatives you guys could recommend? https://radar.qrator.net/ (this is not an advertisement!) -- Töma I have been a subscribed member to

Cisco Crosswork Network Insights - or how to destroy a useful service

2019-05-15 Thread Hank Nussbacher
[mailto:ad...@crosswork.cisco.com] Sent: 15 May 2019 11:39 To: Hank Nussbacher Subject: CCNI Notification Active alarm count 1 starting at 2019-05-15 08:34:42.960762315 + UTC. Please click on the link for each alarm below: https://crosswork.cisco.com/#/alarm/ba7c5084-f05d-4c12-a17f-be9e815d6647

Re: Widespread Firefox issues

2019-05-05 Thread Hank Nussbacher
On 05/05/2019 00:04, Lee wrote: On 5/4/19, Mark Foster wrote: Official update from Mozilla: https://blog.mozilla.org/addons/2019/05/04/update-regarding-add-ons-in-firefox/ where they say Please note: The fix does not apply to Firefox ESR which is what I'm running, so about:config

Re: Open Petition for ARIN-prop-266: BGP Hijacking is an ARIN Policy Violation

2019-04-27 Thread Hank Nussbacher
On 27/04/2019 06:44, William Herrin wrote: On Fri, Apr 26, 2019 at 7:48 PM Owen DeLong > wrote: > Do you honestly believe that hijackings are being committed by ARIN members or even ARIN resource holders that have signed RSAs with ARIN? Wasn't Softlayer (an ARIN

Re: A Deep Dive on the Recent Widespread DNS Hijacking

2019-02-25 Thread Hank Nussbacher
On 25/02/2019 11:37, Ask Bjørn Hansen wrote: On Feb 24, 2019, at 22:03, Hank Nussbacher wrote: Did you have a CAA record defined and if not, why not? If the attacker got a CA to issue the cert because they changed the DNS server to be their own, a CAA record wouldn’t have helped

Re: A Deep Dive on the Recent Widespread DNS Hijacking

2019-02-24 Thread Hank Nussbacher
On 25/02/2019 07:20, Bill Woodcock wrote: On Feb 24, 2019, at 7:41 PM, Montgomery, Douglas (Fed) wrote: In the 3rd attack noted below, do we know if the CA that issued the DV CERTS does DNSSEC validation on its DNS challenge queries? We know that neither Comodo nor Let's Encrypt were DNSSEC

Re: Real-time BGP hijacking detection: ARTEMIS-1.0.0 just released

2018-12-22 Thread Hank Nussbacher
On 21/12/2018 17:10, Jared Mauch wrote: So expect now BGP hijackers to announce /25s from here on in.  They generally adopt BCPs faster than providers. -Hank Folks have studied announcing a /25 etc.. and it can help because many providers will accept them.. it won’t get everyone, but

Re: Should ISP block child pornography?

2018-12-08 Thread Hank Nussbacher
On 07/12/2018 20:48, Max Tulyev wrote: Yes, you may nullroute some IP with some site, but as the collateral damage you will block part of Cloudflare or Amazon, for example. So you have to buy and install additional equipment and software to do it a bit less painful. That's not so cheap, that

Re: trace from behind tata noam

2018-12-05 Thread Hank Nussbacher
On 06/12/2018 01:19, Randy Bush wrote: a host in as4128, 198.180.152.15, is having problems getting to stuff behind as6453 (tata). so i try to get an atlas traceroute toward 198.180.152.15 from as6453. but atlas whines Probes selection: Your selected ASN is not covered by our network so

Re: China ’s Maxim – Leave No Access Point Unexploited: The Hidden Story of China Telecom’ s BGP Hijacking

2018-11-13 Thread Hank Nussbacher
On 05/11/2018 10:54, Tore Anderson wrote: > * Harley H > >> Curious to hear others' thoughts on this.  >> https://scholarcommons.usf.edu/cgi/viewcontent.cgi?article=1050=mca >> >> This paper presents the view that several BGP hijacks performed by China >> Telecom had malicious intent. The

Re: China ’s Maxim – Leave No Access Point Unexploited: The Hidden Story of China Telecom’ s BGP Hijacking

2018-11-07 Thread Hank Nussbacher
On 05/11/2018 10:54, Tore Anderson wrote: > * Harley H > >> Curious to hear others' thoughts on this.  >> https://scholarcommons.usf.edu/cgi/viewcontent.cgi?article=1050=mca >> >> This paper presents the view that several BGP hijacks performed by China >> Telecom had malicious intent. The

Re: Massive Price Increase for X-conns at Telehouse Chelsea, NYC

2018-09-18 Thread Hank Nussbacher
On 18/09/2018 08:02, Christopher Morrow wrote: > > > On Mon, Sep 17, 2018 at 9:44 PM Hank Nussbacher <mailto:h...@efes.iucc.ac.il>> wrote: > > On 17/09/2018 23:26, Phil Lavin wrote: > >> $350/mo seems to be standard. Our DCs are at $250.    Seems >

Re: Massive Price Increase for X-conns at Telehouse Chelsea, NYC

2018-09-17 Thread Hank Nussbacher
On 17/09/2018 23:26, Phil Lavin wrote: >> $350/mo seems to be standard. Our DCs are at $250.Seems more like they >> held onto out of date pricing for a long time then realized it. > For what it's worth, Telehouse London is around 30 USD/month for an x-connect > within the same building. Our

Re: Definition/Classification of Bogon

2018-07-24 Thread Hank Nussbacher
On 25/07/2018 05:37, Aftab Siddiqui wrote: > Exactly, getting the right and updated info is so tricky that people only > filter Private+Reserved ASNs. Because of the same reason more than 600 > unallocated ASNs are in the routing table as per the CIDR-Report. > > Wouldn't that be simple to parse

Re: AS3266: BitCanal hijack factory, courtesy of Cogent, GTT, and Level3

2018-06-27 Thread Hank Nussbacher
On 28/06/2018 04:43, Randy Bush wrote: >> People - please just stop the off topic chatter. It is ludicrous that a >> thread about bgp hijacks morphed into font discussions. >> >> Either contribute to the operational issue at hand by evaluating your terms >> & conditions (or abuse policies) and

Re: AS3266: BitCanal hijack factory, courtesy of Cogent, GTT, and Level3

2018-06-26 Thread Hank Nussbacher
net/archives/video/103/ > > I don't know how other IXPs are handling such cases. Would be interesting > to know. > > Best regards, > IUO > > > On Tue, Jun 26, 2018 at 9:35 AM, Hank Nussbacher > wrote: > > &g

Re: AS3266: BitCanal hijack factory, courtesy of Cogent, GTT, and Level3

2018-06-26 Thread Hank Nussbacher
On 26/06/2018 07:49, Ronald F. Guilmette wrote: You are mistaken.  Cogent and Level3 are signatories to MANRS: https://www.manrs.org/participants/ so this clearly can't happen and you are making this up. :-) -Hank > > > The fact that there exists a jerk like this on the Internet isn't really >

Re: Bezeq Internet (IL) around?

2018-06-05 Thread Hank Nussbacher
On 27/05/2018 17:32, Theo Voss wrote: There are basically two colo sites available in the Tel Aviv area: Med-1 - https://www.medone.co.il/en/ Bezeqint - https://www.bezeqint.net/english/carrier-wholesale-services/data-center-and-dr/jaffa-data-center The first is run by a company that doesn't

Re: ICANN GDPR lawsuit

2018-06-05 Thread Hank Nussbacher
On 31/05/2018 08:14, Badiei, Farzaneh wrote: Gotta love the EU logic: https://inews.co.uk/news/uk/gdpr-eu-commission-not-compliant/ The European Commission is not GDPR compliant even though it was responsible for the new GDPR law "The European Commission has insisted it is *not subject to the

Re: ICANN GDPR lawsuit

2018-06-01 Thread Hank Nussbacher
On 01/06/2018 15:24, niels=na...@bakker.net wrote: > * h...@efes.iucc.ac.il (Hank Nussbacher) [Fri 01 Jun 2018, 06:56 CEST]: >> The entire whois debacle will only get resolved when some hackers attack >> www.eugdpr.org, ec.europa.eu and some other key .eu sites.  When the >&

Re: ICANN GDPR lawsuit

2018-05-31 Thread Hank Nussbacher
On 31/05/2018 21:44, John Peach wrote: > On 05/31/2018 02:37 PM, Dan Hollis wrote: >> On Thu, 31 May 2018, b...@theworld.com wrote: >>> FWIW a German court has just ruled against ICANN's injunction and in >>> favor of Tucows/EPAG. >>>   https://www.icann.org/news/announcement-4-2018-05-30-en >> >>

Re: Whois vs GDPR, latest news

2018-05-22 Thread Hank Nussbacher
On 23/05/2018 04:50, John Levine wrote: >> What about the likely truth that if anyone from Europe mails the list, then >> every mail server operator with subscribers to the list must follow the >> GDPR Article 14 notification requirements, as the few exceptions appear to >> not apply (unless

Re: internet - sparkle

2018-05-16 Thread Hank Nussbacher
On 16/05/2018 19:12, Michael Crapse wrote: HE listed currently in 7th place: http://as-rank.caida.org/ -Hank > Additionally, whilst not "technically" a tier 1 provider, Hurricane > electric should be high on that list. Especially as one of the best > providers of and proponents for IPv6. We'll

Re: The story about MyEtherWallet.com hijack or how to become a millionare in 2 hours.

2018-04-25 Thread Hank Nussbacher
On 25/04/2018 08:29, Hank Nussbacher wrote: > On 24/04/2018 21:35, Fredrik Korsbäck wrote: > >> TLDR; So it seems that AS10297 (some small hostingprovider in the US) >> suddenly started to announce de-aggregated AWS >> IP-space, containing quite alot of Route53 infrastr

Re: The story about MyEtherWallet.com hijack or how to become a millionare in 2 hours.

2018-04-24 Thread Hank Nussbacher
On 24/04/2018 21:35, Fredrik Korsbäck wrote: > TLDR; So it seems that AS10297 (some small hostingprovider in the US) > suddenly started to announce de-aggregated AWS > IP-space, containing quite alot of Route53 infrastructure, put up resolvers > on their own on the hijacked IP-space and >

Re: Cloudflare 1.1.1.1 public DNS different as path info for 1.0.0.1 and 1.1.1.1 london

2018-04-02 Thread Hank Nussbacher
On 03/04/2018 01:39, Matt Hoppes wrote: You might be interested in these links which compare the services: https://medium.com/@nykolas.z/dns-resolvers-performance-compared-cloudflare-x-google-x-quad9-x-opendns-149e803734e5 https://webxtrakt.com/public-dns-performance -Hank > So in all this

Re: Cloudflare 1.1.1.1 public DNS broken w/ AT CPE

2018-04-02 Thread Hank Nussbacher
On 02/04/2018 18:35, Simon Lockhart wrote: > On Mon Apr 02, 2018 at 11:17:47AM -0400, John Levine wrote: >> So it's routed deliberately but it sure looks like an experiment. >> There's way too much equipment that treats 1.1.1.1 as magic for it to >> work reliably. Captive portals tend to use that

Re: Yet another Quadruple DNS?

2018-03-29 Thread Hank Nussbacher
On 29/03/2018 17:23, Jared Mauch wrote: >> On Mar 29, 2018, at 10:19 AM, Seth Mattinen wrote: >> >> On 3/29/18 7:17 AM, Izaac wrote: And I'd really like not to enrich my ISP's trove of information about my browsing habits by them recording all my DNS lookups. Of

Re: MSFT reverse IP failure?

2018-02-26 Thread Hank Nussbacher
On 27/02/2018 01:25, Christian Kuhtz via NANOG wrote: | 13.67.59.89/32 should reverse to | testconnectivity.microsoft.com | | https://support.office.com/en-us/article/office-365-urls-and-ip-address-ranges-8548a211-3fe7-47cb-abb1-355ea5aa88a2 *Optional:* Remote Connectivity

Comparison of freeware open source switch software?

2018-01-08 Thread Hank Nussbacher
I have seen numerous comparisons and RIPE presentations on performance issues of BIRD vs Quagga vs FRR. I am looking for the same thing for freeware switch software. Has anyone done a feature comparison between: http://openvswitch.org/ https://www.openswitch.net/

Re: a new source for authoritative routing data: ARIN WHOIS

2017-12-19 Thread Hank Nussbacher
On 20/12/2017 00:18, Job Snijders wrote: Wow!  This is great!  I have just started using it and will need to set aside a swath of time to delve deeper into this. Regards, Hank > Dear NANOG, > > I'd like to share an update on some routing security activities that > ARIN, NTT Communications,

Re: Are there inexpensive DWDM products?

2017-11-02 Thread Hank Nussbacher
On 02/11/2017 20:01, LF OD wrote: Try: https://www.packetlight.com/ -Hank > We have several buildings and a couple data centers spread around the city > and interconnected via dark fiber. It's a very simple setup - no ROADM, no > real ring, no extended layer-2 or layer-3 via the optical gear.

Re: 4 or smaller digit ASNs

2017-10-12 Thread Hank Nussbacher
On 12/10/2017 08:47, Mel Beckman wrote: > James, > > As far as I know, you can't buy an existing ASN for any amount of money. You > can buy the company that owns it, but that seems like boiling tea with a > blowtorch. > > I sincerely doubt there are unused low-number ASNs, but you could always

Re: AS PATH limits

2017-09-30 Thread Hank Nussbacher
On 01/10/2017 04:28, Christopher Morrow wrote: > On Sat, Sep 30, 2017 at 12:47 PM, Ken Chase wrote: > >> I dont see that as the solution. Someone else will offend again. >> >> However, I also don't see trusting major backbones as our filters (for many >> other reasons). Our

Re: IPv4 Hijacking For Idiots

2017-06-06 Thread Hank Nussbacher
On 06/06/2017 03:20, William Herrin wrote: Ronald, Here is how I would do it: 1. As you noted in your first email in this thread, find an abandoned ASN, lets call it AS12345, with a POC of supp...@acme.com 2. Create a domain called acme-corp.com and a user called peering 3. Contact an IX,

Re: Russian diplomats lingering near fiber optic cables

2017-06-03 Thread Hank Nussbacher
On 02/06/2017 19:46, valdis.kletni...@vt.edu wrote: > On Fri, 02 Jun 2017 15:11:36 -, Rod Beck said: > >> Landing stations can be 10 to 30 kilometers from the beach manhole. I don't >> think it is big concern. Hibernia Atlantic dublin landing station is a good >> example. > So 100% of those

Re: BGP IP prefix hijack detection times

2017-02-27 Thread Hank Nussbacher
On 28/02/2017 07:15, Nagarjun Govindraj via NANOG wrote: So what if you detect in 1.4 minutes of 3.1 minutes? Or even 8 minutes? What then? You certainly couldn't do anything to prevent it after 3.1 minutes. First you need to analyze whether the BGP hijack is a false positive or not. Could be

Re: RPKI coverage statistics

2017-02-20 Thread Hank Nussbacher
On 21/02/2017 08:22, Nagarjun Govindraj via NANOG wrote: > I am trying to solve the problem of BGP IP prefix hijack detection for the > AS we own using RPKI system. > But IP addresses covered under RPKI system is very less under 10%. > How is community dealing with UNKNOWN state for the prefixes

Re: Favorite Speed Test Systems

2016-12-05 Thread Hank Nussbacher
On 05/12/2016 16:50, Graham Johnston wrote: http://openspeedtest.com/ http://labs.comcast.com/beta-testing-a-new-open-source-speed-test -Hank > For many years we have had a local instance of the Ookla speedtest.net on our > network, and while it is pretty good some other tests seem include

Gmail failure recently?

2016-11-14 Thread Hank Nussbacher
I woke today to find that all my Inbox items from May 1-Nov 15, 2016 were missing. All other folders are intact. Missing emails are not in Spam, Trash, Archive or auto-fwded. Did pswd reset and have initiated a request to restore the missing emails, but am wondering whether others have

Re: How to find all of an ISP's ASNs

2016-10-25 Thread Hank Nussbacher
On 26/10/2016 03:14, Yang Yu wrote: > as-set if they keep their routing registry updated? > > something like this > http://bgp.he.net/irr/as-set/AS-RR-Res and if that doesn't work try: http://bgp.he.net/AS3356#_graph4 [replace the ASN with the ASN of your choice to see the interconnections.]

Re: A perl script to convert Cisco IOS/Nexus/ASA configurations to HTML for easier comprehension

2016-10-13 Thread Hank Nussbacher
On 13/10/2016 19:38, Lee wrote: > On 10/13/16, Jesse McGraw wrote: >> Lee, >> >>Check out the setup.sh script, hopefully it does everything necessary >> to get the script working on a Debian-derived Linux system > I'm using Windows + Cygwin; maybe it's just that I don't

Re: A perl script to convert Cisco IOS/Nexus/ASA configurations to HTML for easier comprehension

2016-10-08 Thread Hank Nussbacher
On 07/10/2016 17:59, Lee wrote: > On 10/7/16, Hank Nussbacher <h...@efes.iucc.ac.il> wrote: >> On 07/10/2016 00:33, Lee wrote: >>> dunno about creating web pages, but >>> https://www.nanog.org/meetings/abstract?id=785 >>> has a section on showing f

Re: A perl script to convert Cisco IOS/Nexus/ASA configurations to HTML for easier comprehension

2016-10-06 Thread Hank Nussbacher
On 07/10/2016 00:33, Lee wrote: > dunno about creating web pages, but > https://www.nanog.org/meetings/abstract?id=785 > has a section on showing filters that are defined but not referenced & > referenced but not defined In IOS-XR it is one command "sho rpl unused ?"

Re: "Defensive" BGP hijacking?

2016-09-13 Thread Hank Nussbacher
On 13/09/2016 23:22, Blake Hudson wrote: > Ca By wrote on 9/13/2016 2:53 PM: >> On Tuesday, September 13, 2016, Bryant Townsend >> wrote: >> >> Tip to the RIR policy folks, you may want to make this point very >> crisp. A >> BGP ASN is the fundamental accountability

Re: NANOG67 - Tipping point of community and sponsor bashing?

2016-06-14 Thread Hank Nussbacher
On 14/06/2016 20:49, Randy Bush wrote: > the O in nanog is operator, not sponsor, panderer, suck up, ... we're > spending millions for half debugged underperforming crap and we are > cornered by infrastructure providers (e.g. ixps) who run us over time > and again if it makes an extra penny. I

Re: Verizon and Level3 DNS flush

2016-06-01 Thread Hank Nussbacher
On 01/06/2016 21:16, Mike wrote: > > > On 06/01/2016 10:59 AM, Jürgen Jaritsch wrote: >> Dear NANOGers, >> >> is there anyone from Verizon and Level3 who can help me with DNS >> caching issue? We're running a global service for a customer and we >> had to change to NS IPs via Glue Records. At the

Re: BGP FlowSpec

2016-04-27 Thread Hank Nussbacher
On 27/04/2016 18:58, John Kristoff wrote: > On Thu, 21 Apr 2016 09:46:13 +0200 > Martin Bacher wrote: > >> - Intra-AS BGP FlowSpec deployment: Who is running it? For which kind >> of attacks are you using it? Are you only dropping or rate-limiting >> certain traffic or

Re: GeoIP database issues and the real world consequences

2016-04-11 Thread Hank Nussbacher
On 12/04/2016 00:41, Ricky Beam wrote: > On Mon, 11 Apr 2016 12:55:11 -0400, Chris Boyd > wrote: >> Interesting article. >> >> http://fusion.net/story/287592/internet-mapping-glitch-kansas-farm/ > ... > > "Until you reached out to us, we were unaware that there were

Re: Some doubts on large scale BGP/AS design and black hole routing risk

2016-04-04 Thread Hank Nussbacher
On Mon, 4 Apr 2016, Christopher Morrow wrote: ​different providers, different entrance facilities in the building(s), different conduits out of the area... and hope that somewhere along the path providerA and B didn't share conduit or capacity-swap you to a single path :)​ I would suggest

Re: Any large IPv4 space brokers?

2016-03-02 Thread Hank Nussbacher
On 02/03/2016 19:28, Brough Turner wrote: > https://www.arin.net/resources/transfer_listing/facilitator_list.html > > Thanks, > Brough There was a RIPE site: https://www.ripe.net/manage-ips-and-asns/resource-transfers-and-mergers/transfers but most of the links are broken (like Brokers and IP

Re: Is there a DNS lookup, traceroute, ping and HTTP GET as a service?

2015-11-18 Thread Hank Nussbacher
At 14:38 18/11/2015 -0200, Kurt Kraut via NANOG wrote: Try: https://asm.ca.com/en/ -Hank Hi, Thank you for the quick replies. Sorry for not being clear enough: I need it to have an API so I can integrate it with my own solution, generate my own metrics. So looking glasses are pretty much

Re: Updated Ookla Speedtest Server Requirements

2015-11-09 Thread Hank Nussbacher
At 15:27 09/11/2015 -0600, Lorell Hathcock wrote: Esteemed Legions of NANOG: Does anyone have better and more modern recommendations for the hardware of an Ookla speedtest server? Here is the link to their recommendations. http://www.ookla.com/support/a26461638/ After 5 happy years of using

Re: Prefix hijacking by AS20115

2015-09-28 Thread Hank Nussbacher
At 23:11 28/09/2015 -0400, Josh Luthman wrote: Start announcing their prefixes? Contact the upstreams of AS20115 - Cogent, Level3, HE and XO. -Hank Josh Luthman Office: 937-552-2340 Direct: 937-552-2343 1100 Wayne St Suite 1337 Troy, OH 45373 On Sep 28, 2015 11:09 PM, "Seth Mattinen"

Re: Synful Knock questions...

2015-09-26 Thread Hank Nussbacher
At 11:42 25/09/2015 -0700, Jake Mertel wrote: Looks like Cisco's Talos just released a tool to scan your network for indications of the SYNful Knock malware. Details @ http://talosintel.com/scanner/ . More details here: http://blogs.cisco.com/security/talos/synful-scanner -Hank --

Re: Prefix-Hijack by AS7514

2015-07-17 Thread Hank Nussbacher
At 06:15 17/07/2015 +, Jürgen Jaritsch wrote: Hi, does anyone else see some prefix hijacks from AS7514? They started to announce some of our /24 Worldwide. -Hank Thanks best regards Jürgen Jaritsch Head of Network Infrastructure ANEXIA Internetdienstleistungs GmbH Telefon:

Re: AW: Prefix-Hijack by AS7514

2015-07-17 Thread Hank Nussbacher
At 06:23 17/07/2015 +, Jürgen Jaritsch wrote: We already informed AS2497 but I have no idea if they we'll cooperate. All prefixes I see have the first octet as being 2 digits rather than 3. That is common among about 30 different alerts I have received. Curious if this is common

Re: 'gray' market IPv4

2015-07-14 Thread Hank Nussbacher
At 15:39 14/07/2015 +0200, Seth Mos wrote: We had the same thing finding a broker for a /24 pi in the RIPE region. Not all of the brokers have the size you want, eg a /20 when you need a /24. https://www.ripe.net/manage-ips-and-asns/resource-transfers-and-mergers/ipv4-transfers/brokers

Re: Route leak in Bangladesh

2015-06-30 Thread Hank Nussbacher
At 10:27 30/06/2015 +0200, Grzegorz Janoszka wrote: We have just received alert from bgpmon that AS58587 Fiber @ Home Limited has hijacked most of our (AS43996) prefixes and Hurricane Electric gladly accepted them. Anybody see their prefixes hijacked as well? Welcome to the party :-) Not

Re: Route leak in Bangladesh

2015-06-30 Thread Hank Nussbacher
At 18:03 30/06/2015 +0900, Randy Bush wrote: be nice if some technical details were included Your prefix: xx.104.150.0/24: Prefix Description: Update time: 2015-06-30 07:39 (UTC) Detected by #peers: 8 Detected prefix: xx.104.150.0/24 Announced by: AS58587

Re: NTT-HE earlier today (~10am EDT)

2015-06-29 Thread Hank Nussbacher
Kudos Mike for saying it very clearly! Hank On Jun 30, 2015 12:18 AM, Mike Leber mle...@he.net wrote: NTT's customer Sofia Connect leaked our routes to NTT.  NTT accepted these routes instead of properly filtering their customer announcements.  As a network of non-trivial size, announcing

Re: NTT-HE earlier today (~10am EDT)

2015-06-29 Thread Hank Nussbacher
Kudos Mike for saying it very clearly! Hank On Jun 30, 2015 12:18 AM, Mike Leber mle...@he.net wrote: NTT's customer Sofia Connect leaked our routes to NTT.  NTT accepted these routes instead of properly filtering their customer announcements.  As a network of non-trivial size, announcing

Re: World's Fastest Inte rnet™ in Canadaland

2015-06-27 Thread Hank Nussbacher
At 14:09 26/06/2015 -0400, Clayton Zekelman wrote: Singapore averages 130Mb/sec and has ISPs that average 500Mb/sec: http://www.netindex.com/download/2,17/Singapore/ Rogers currently averages over 60Mb/sec: http://www.netindex.com/download/2,7/Canada/ -Hank They needed to do this.

Re: Whats' a good product for a high-density Wireless network setup?

2015-06-20 Thread Hank Nussbacher
At 10:41 20/06/2015 +, Sina Owolabi wrote: http://www.extricom.com/ specializes in hi-density Wifi. See: http://www.extricom.com/category/large-venues http://www.extricom.com/category/Event_Installations -Hank Thanks everybody. I've been corrected on density... I've been informed that

Looking for reputable seller of SFPs

2015-06-15 Thread Hank Nussbacher
Looking for a reputable seller of SFPs in the US that ships overseas. Please reply off-list. Thanks, Hank

Re: Open letter to Level3 concerning the global routing issues on June 12th

2015-06-13 Thread Hank Nussbacher
At 17:32 12/06/2015 +0200, Martin Millnert wrote: Interesting that Level3 is a member of http://www.routingmanifesto.org/ or see http://www.internetsociety.org/news/network-operators-around-world-demonstrate-their-commitment-secure-and-resilient-internet to quote Level3 As one of the most

RE: Historical records of POCs

2015-04-19 Thread Hank Nussbacher
At 17:22 18/04/2015 +, Colin Bodor wrote: Maybe https://arin.net/resources/whowas/index.html would work? As per a question I asked 2 years ago and the response I received from ARIN - I have confirmed that Whowas reports only go back to conversion in 2002 (when Org IDs were created and

Re: ASN to IP Mapping

2015-03-08 Thread Hank Nussbacher
On Sun, 8 Mar 2015, Geoff Huston wrote: https://www.nro.net/wp-content/uploads/nro-extended-stats-readme5.txt Users of this report should be aware that there are some subtle deviations from this spec in the published data: - the RIPE NCC uses the non-ISO 3166 2 letter code 'EU' for some

Re: ASN to IP Mapping

2015-03-07 Thread Hank Nussbacher
At 14:37 08/03/2015 +1100, Geoff Huston wrote: On 8 Mar 2015, at 1:39 pm, Randy Bush ra...@psg.com wrote: If you want to know the registry assignments / allocations made to a single entity and be able group together these assignments of address prefixes and ASNs you should retrieve the

Re: ASN to IP Mapping

2015-03-07 Thread Hank Nussbacher
At 15:37 07/03/2015 +, Andrew Iwamoto wrote: Is there a tool or method to determine IP blocks assigned to an organization by ASN? I.e. if I have an organization's ASN number I want to know all blocks assigned to that ASN. I use the excellent tool: http://bgp.he.net/ and select the

Re: Unwanted Traffic Removal Service (UTRS)

2014-10-10 Thread Hank Nussbacher
At 22:58 09/10/2014 +0200, Christian Seitz wrote: Allowing ASN to blackhole a prefix based on AS sets is dangerous from my point of view. In the RIPE database you can add any AS to your AS set without verification. Ok, it doesn't make much difference because most IP transit providers also

  1   2   3   >