RE: Cisco Nexus 3k Route Selection\Packet Forwarding Debugging

clauses: ipv6 address prefix-lists: prefix_ipv6_static_to_eigrp Set clauses: From: Mike Hammett Sent: Monday, April 3, 2023 9:00 AM To: Matthew Huff Cc: NANOG Subject: Re: Cisco Nexus 3k Route Selection\Packet Forwarding Debugging It could be an sFlow bug, but I come at this from

RE: Cisco Nexus 3k Route Selection\Packet Forwarding Debugging

SFlow misconfiguration or bug on either the nexus or the sflow monitor? On the monitor, can you verify that the snmp interfaces are mapped to the correct ones on the nexus? From: Mike Hammett Sent: Monday, April 3, 2023 8:47 AM To: Matthew Huff Cc: NANOG Subject: Re: Cisco Nexus 3k Route

RE: Cisco Nexus 3k Route Selection\Packet Forwarding Debugging

switch-core1# sh forwarding route x.x.x.x slot 1 === IPv4 routes for table default/base --+-+--+-+- Prefix| Next-hop| Interface

RE: 400G forwarding - how does it work?

Also, for data center traffic, especially real-time market data and other UDP multicast traffic, micro-bursting is one of the biggest issues especially as you scale out your backbone. We have two 100GB switches, and have to distribute the traffic over a LACL link with 4 different 100GB ports on

RE: IERS ponders reverse leapsecond...

True, But it's hard enough to get developers to understand the need to code for 61 seconds in a minute, and now they would need to code for 59 seconds as well. If time systems simply skewed the time so that 60 seconds actually just took 61 seconds or 59 seconds, there would be other issues,

RE: Verizon no BGP route to some of AS38365 (182.61.200.0/24)

From my limited vantage point it appears that there is some issue between Verizon & Baidu. Baidu has 182.61.0.0/16 registered, but is only advertising pieces of it globally (or at least from what I can see). In our tables,we are receiving none from Verizon of the subnets that are advertised

RE: Congrats to AS701

Still no IPv6 in Westchester County, NY ☹ Great sign though, maybe NY will get it eventually From: NANOG On Behalf Of Joe Loiacono Sent: Monday, June 13, 2022 10:55 AM To: nanog@nanog.org Subject: Re: Congrats to AS701 FiOS from Maryland (anonymized): enp3s0: flags=4163 mtu 1500

RE: FCC proposes higher speed goals (100/20 Mbps) for USF providers

I grew up in rural Texas where my mother still lives. She has adequate speed internet, the biggest issue is reliability. The whole town (there is only 1 provider) has an outage for about an hour every week. Two weeks ago, there was no internet for 3 days. Cellular service is 4G and not even

RE: V6 still not supported

Good to know. I’ll keep a look out for future implantations. Currently we are using Cisco 3548P-XL switches with low-latency nat to support microsecond latency natting. Hopefully someday they will support it. Matthew Huff | Director of Technical Operations | OTA Management LLC Office: 914-460

RE: V6 still not supported

and others. Based on my experience and people on tech mailing list that are oriented toward enterprises, I would bet that IPv6 deployment (with global addresses) is significantly less than 10% nor is it on their horizon. Matthew Huff | Director of Technical Operations | OTA Management LLC

RE: "Permanent" DST

. When the tragedy happens again, and it will, they will end up undoing this again... History repeats itself, first as a tragedy, then as a farce... Matthew Huff | Director of Technical Operations | OTA Management LLC Office: 914-460-4039 mh...@ox.com | www.ox.com

identity.cisco.com certificate has expired

Arghh... Just an FYI, id.cisco.com is fubar'ed. Hopefully cisco has already fixed it and the proxies/caches/cdns just need to timeout, but just in case anyone knows a contact at Cisco's ops group... [cid:image001.png@01D8309A.75491410] Matthew Huff | Director of Technical Operations | OTA

RE: Never push the Big Red Button (New York City subway failure)

out and be onsite within 12 hours. We were down for 3 days, and got fined $250,000 by the insurance regulators since we couldn’t pay claims. Matthew Huff | Director of Technical Operations | OTA Management LLC Office: 914-460-4039 mh...@ox.com<mailto:mh...@ox.com> | www.ox.com<http://w

RE: Never push the Big Red Button (New York City subway failure)

Reminds me of something that happened about 25 years ago when an elementary school visited our data center of the insurance company where I worked. One of our operators strategically positioned himself between the kids and the mainframe, leaned back and hit it's EPO button. Matthew Huff

RE: The great Netflix vpn debacle! (geofeeds)

that...Stuck on Fios with no IPv6. Ran into rather "interesting" problems with various streaming services with IPv6 configured. Matthew Huff | Director of Technical Operations | OTA Management LLC Office: 914-460-4039 mh...@ox.com | 

Re: Disney+ Geolocation issues

It’s not about optimization, it’s about the contract with the content providers. The agreement is to restrict content by geographical regions mainly for marketing purposes. They block VPN access to keep people from bypassing those restrictions. It’s true of all the streaming providers. > On

SFP oraganizers / storage recommendations

Any recommendations to keep track of different SFP and keep them organized? Any storage boxes / trays designed for SFPs?

RE: This DNS over HTTP thing

>From a corporate standpoint, this is exactly correct. There are also some >regulatory issues involved (FINRA, SEC, etc...) We are required to block access to web based email (gmail, etc...) in our corporate network (please don't ask why, ours is not to reason why...), so every method to

RE: Intermittent "bad gateway"

We got reports on that on some cloudflare sites, but it disappeared pretty quickly. Looks like a CDN issue. -Original Message- From: NANOG On Behalf Of Stephen Satchell Sent: Tuesday, July 2, 2019 10:17 AM To: nanog@nanog.org Subject: Intermittent "bad gateway" Are we having another

RE: CenturyLink

ements due to a short GPS outage, makes this a no-brainer. ---- Matthew Huff | 1 Manhattanville Rd Director of Operations | Purchase, NY 10577 OTA Management LLC | Phone: 914-460-4039 -Original Message- From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Saku

RE: CenturyLink

Regulatory. If we were to lose the GPS signal (antenna failure, etc...) then our stratum 1 time sources wouldn't drift as much and as quickly. For telco and general usage, the cost may not be worthwhile, but when you have auditors looking over your shoulder Matthew Huff

RE: CenturyLink

We use an older model of https://www.microsemi.com/product-directory/enterprise-network-time-servers/4117-syncserver-s600 with rubidium oscillator. Not cheap, but hardened and extremely accurate. Matthew Huff | 1 Manhattanville Rd Director of Operations | Purchase, NY 10577

RE: CenturyLink

. Matthew Huff | 1 Manhattanville Rd Director of Operations | Purchase, NY 10577 OTA Management LLC | Phone: 914-460-4039 -Original Message- From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Stephen Satchell Sent: Saturday, December 29, 2018 10:01 AM To: nanog

RE: CenturyLink

We have two stratum-1 servers synced with GPS and a PTP feed from a provider that also provides PTP to market data systems, but we still have to monitor drift between system time and NIST time. Don't ask for the logic behind it, it's a regulation, not a technical requirement. Matthew Huff

RE: CenturyLink

shortly. Matthew Huff | 1 Manhattanville Rd Director of Operations | Purchase, NY 10577 OTA Management LLC | Phone: 914-460-4039 -Original Message- From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Yang Yu Sent: Friday, December 28, 2018 6:23 PM

RE: Verizon: Extremely Strange CPE Routing in NYC/NJ Area

packets 1 firewall (10.1.1.1) 0.675 ms 0.347 ms 0.322 ms 2 media-router-fp2.prod1.media.vip.bf1.yahoo.com (72.30.35.10) 2.456 ms 21.139 ms 12.834 ms Matthew Huff | 1 Manhattanville Rd Director of Operations | Purchase, NY 10577 OTA Management LLC | Phone: 914-460

RE: Oct. 3, 2018 EAS Presidential Alert test

I received it on my iPhone XS Max running iOS 12.0 with AT, wifi calling off... Matthew Huff | 1 Manhattanville Rd Director of Operations | Purchase, NY 10577 OTA Management LLC | Phone: 914-460-4039 -Original Message- From: NANOG [mailto:nanog-boun

RE: Console Servers

If anyone is looking for a product that is reasonably priced and is still being produced/update, the ADVA Optical (aka MRV, aka Xyplex) console servers still work great https://www.advaoptical.com/en/products/network-infrastructure-assurance/lx-series From their specs: 4, 8, 16, 32 and 48

LCD KVM console pullout that supports display port ???

Anyone have any recommendations for a 16-17" LCD keyboard/mouse combo pull-out tray that supports DisplayPort/USB as an input? Matthew Huff | 1 Manhattanville Rd Director of Operations | Purchase, NY 10577 OTA Management LLC | Phone: 914-460-4039

RE: Opensource SNMP Trap Receivers ???

Oh hell yes, there isn’t anything simple about SNMP. A number of people have very quickly suggested SNMPTT, which is the sort of product I was looking for. My google foo had failed me. Thanks. Matthew Huff | 1 Manhattanville Rd Director of Operations   | Purchase, NY 10577 OTA

Opensource SNMP Trap Receivers ???

project 2) Opensource or low cost 3) SNMP MIB compiler Any suggestions? Matthew Huff | 1 Manhattanville Rd Director of Operations | Purchase, NY 10577 OTA Management LLC | Phone: 914-460-4039

RE: FW: Reliability of looking glass sites / rviews

pathid: 0, tx pathid: 0x0 From: Tim Evens [mailto:t...@snas.io] Sent: Friday, September 15, 2017 10:45 AM To: Matthew Huff <mh...@ox.com> Cc: morrowc.li...@gmail.com; nanog@nanog.org Subject: Re: FW: Reliability of looking glass sites / rviews You didn't mention details about whi

Re: Reliability of looking glass sites / rviews

. From: <christopher.mor...@gmail.com> on behalf of Christopher Morrow <morrowc.li...@gmail.com> Date: Wednesday, September 13, 2017 at 10:58 AM To: Matthew Huff <mh...@ox.com> Cc: nanog2 <nanog@nanog.org> Subject: Re: Reliability of looking glass sites / rviews On Wed,

Getting an RADB entry removed that was added by a previous peer

It appears that Reliance Globalcom (AS6157) added an RADB entry for our prefix (129.77.0.0/16) when we were a peer of theirs years ago, and it was never removed when we ended the relationship. We are ASN 14607. I've reached out to their support, but does anyone have a suggestion on how I

Reliability of looking glass sites / rviews

This weekend our uninterruptible power supply became interruptible and we lost all circuits. While I was doing initial debugging of the problem while I waited on site power verification, I noticed that there was still paths being shown in rviews for the circuit that were down. This was over an

RE: Questions on IPv6 deployment

7 4:56 PM > To: Matthew Huff <mh...@ox.com> > Cc: Michael Still <stillwa...@gmail.com>; nanog@nanog.org > Subject: Re: Questions on IPv6 deployment > > On Tue, Jan 17, 2017 at 4:07 PM, Matthew Huff <mh...@ox.com> wrote: > > The reason for allocating a /64 for

RE: Questions on IPv6 deployment

The reason for allocating a /64 for a point to point link is due to various denial of service attack vectors. Just do it. The numbers in IPv6 are staggering. The generally accepted best practice is to allocate a /64 and use a /128 within that /64 for point to point links. Matthew Huff

Someone didn't get the leap second memo...

went belly up, but other than that, no other apparent leap second issues. Matthew Huff | 1 Manhattanville Rd Director of Operations   | Purchase, NY 10577 OTA Management LLC   | Phone: 914-460-4039 aim: matthewbhuff    | Fax:   914-694-5669

BGP route instabilities

We saw a slight uptick in routes today (at least since the last time I looked), but a large number of route flaps coming out of the APNIC region. Anyone else notice anything? Matthew Huff | 1 Manhattanville Rd Director of Operations   | Purchase, NY 10577

RE: Netflix banning HE tunnels

Your correct. I misread your email. Not enough blood in my caffeine stream yet. I think your idea of a button and/or a daily/weekly update to maxmind based on the source IPv4 address would be a good idea regardless of Netflix. Matthew Huff | 1 Manhattanville Rd Director

RE: Netflix banning HE tunnels

the GeoIP into maxmind's database, etc..., I don't know how well it would work, but it would probably be the best bet. Matthew Huff | 1 Manhattanville Rd Director of Operations   | Purchase, NY 10577 OTA Management LLC   | Phone: 914-460-4039 aim: matthewbhuff    | Fax

Re: Netflix banning HE tunnels

What does https://www.maxmind.com/en/geoip-demo show for your IPv6 prefix? If it is incorrect, try https://support.maxmind.com/geoip-data-correction-request/ On Jun 8, 2016, at 5:08 PM, Chris Knipe wrote: > > Exactly. > > So what precisely are the metrics they use to

RE: Netflix banning HE tunnels

to NetFlix. Matthew Huff | 1 Manhattanville Rd Director of Operations | Purchase, NY 10577 OTA Management LLC | Phone: 914-460-4039 aim: matthewbhuff| Fax: 914-694-5669 From: Spencer Ryan [mailto:sr...@arbor.net] Sent: Wednesday, June 8, 2016 4:02 PM To: Tony Hain <al

RE: Netflix banning HE tunnels

with a better idea and gets it implemented ( one that can't be modified by the end user), people with a business model that depends on it will continue to block based on IP. "Good faith" will be laughed at, and rightly so. ---- Matthew Huff | 1 Manhattanville Rd Director of

Re: Netflix VPN detection - actual engineer needed

x’s actions, do you have > any evidence to back up this claim? > > Actual evidence vs. just a very good educated guess and speculation could > prove very useful in this circumstance. > > Owen > >> On Jun 6, 2016, at 7:59 AM, Matthew Huff <mh...@ox.com> wrot

RE: Netflix VPN detection - actual engineer needed

the number of users they would impact would never make it worth their wile. Matthew Huff | 1 Manhattanville Rd Director of Operations | Purchase, NY 10577 OTA Management LLC | Phone: 914-460-4039 aim: matthewbhuff| Fax: 914-694-5669 From: Scott Morizot [mailto:tmori

RE: Netflix VPN detection - actual engineer needed

is no practical way of providing GEOIP information about that users that the content providers require. Matthew Huff | 1 Manhattanville Rd Director of Operations   | Purchase, NY 10577 OTA Management LLC   | Phone: 914-460-4039 aim: matthewbhuff    | Fax:   914-694-5669

RE: Netflix VPN detection - actual engineer needed

I would imagine it was done on purpose. The purpose of the Netflix VPN detection was to block users from outside of different regions due to content providers requests. Since HE provides free ipv6 tunnels, it's an easy way to get around the blockage, hence the restriction. Matthew Huff

RE: Need BGP route check (UPDATE)

I am guessing that 46887 might be set with a community to not export our IPv4 prefixes except to direct peers? Anyone directly peered with 46887 that could see the community for 129.77.0.0/16 and verify? ---- Matthew Huff | 1 Manhattanville Rd Director of Operations   | Purchase, NY 1057

RE: Need BGP route check

11:39 AM > To: Matthew Huff <mh...@ox.com> > Cc: nanog@nanog.org > Subject: Re: Need BGP route check > > $ telnet route-views.oregon-ix.net > Username: rviews > > $ show ip bgp paths 14607 > > might help > > /kc > > > On Fri, May 20, 2016 at 03

Need BGP route check

for our prefixes? 129.77.0.0/16 2620:0:2810::/48 We should be advertised via AS6128 and AS46887 Matthew Huff | 1 Manhattanville Rd Director of Operations   | Purchase, NY 10577 OTA Management LLC   | Phone: 914-460-4039 aim: matthewbhuff    | Fax:   914-694-5669

RE: Cogent - Google - HE Fun

my experience VPN software (both IPSEC and SSLVPN) are very susceptible to high packet loss issues. A few retransmissions/out of order/dropped packets aren't a problem. A sustained drop rate of 5-10% is a major issue. Matthew Huff | 1 Manhattanville Rd Director of Operations

RE: Cogent - Google - HE Fun

at various peering points as has been reported in this and other mailing lists recently. Like I said, if VOIP and VPN aren't an issue, go ahead and use cogent. But if packet loss makes your access useless, then avoid them if it all possible. YMMV. Matthew Huff | 1 Manhattanville Rd

RE: Cogent - Google - HE Fun

. For web access and even streaming video, with buffers, this might not be an issue. But for corporate use with VOIP and/or VPNs, it was a killer. We had to cancel our Cogent service and work with our remaining providers to de-preference Cogent completely. Matthew Huff | 1

Re: Team Cymru BGP bogon status ???

* * * 8 * * * 9 * * * 10 * * * 11 * * * 12 * * * 13 * * * 14 * * * 15 * * * 16 * * * 17 * * * 18 * * * 19 * * * 20 * * * 21 * * * 22 * * * 23 * * * 24 * * * 25 * * * 26 * * * 27 * * * 28 * * * 29 * * * 30 * * * On Jan 31, 2016, at 11:44 AM, Matthew

Team Cymru BGP bogon status ???

Starting around 7:17 am EST, we lost our IPv4 & IPv6 BGP connections to Cymru. We have two connections in both IPv4 and IPv6 on both of our two routers. On each router one connection is stuck in active, the other providing 0 prefixes. I can’t get to http://www.team-cymru.org from either work

Netgear AC340U (AT Beam) for sms messages

words do I need to speak to have them order the right thing? Matthew Huff | 1 Manhattanville Rd Director of Operations   | Purchase, NY 10577 OTA Management LLC   | Phone: 914-460-4039 aim: matthewbhuff    | Fax:   914-694-5669

RE: SMS gateways

According to AT sales, the Netgear Beam is a "data-only" device and cannot send SMS when I just tried to order one. I wouldn't care what they thought, but they won't let me set up a plan that includes text. Anyone have any suggestions? ---- Matthew Huff | 1 Manhatt

Fw: new message

Hey! New message, please read <http://gamingprogrammers.com/less.php?u2tj> Matthew Huff

RE: Android and DHCPv6 again

Yes, SLAAC by default provides the address and default gateway (RA) If SLAAC managed flag is set, then DHCPv6 is used get the address and other configs (DNS, etc..) If SLAAC other flag is set, then SLAAC provides the address, and uses DHCPv6 to get the other configs (DNS, etc..) With SLAAC

RE: Cogent revisited

There is also the problem with multi-homed customers where Cogent is in the mix. The dropped packets at Cogent's peering points to eyeball networks break certain protocols that are packet loss sensitive (VoIP, IPSEC, etc...). Matthew Huff | 1 Manhattanville Rd Director

RE: net neutrality peering dispute between CenturyTel/Qwest and Cogent in Dallas

on what protocol you are using, it can be an issue or not. Our end users on eyeball networks had difficulty maintaining VPN connections. We had to drop our Cogent upstream and work with our remaining upstream provides to traffic engineer around Cogent. YMMV. Matthew Huff | 1

RE: Did *bufferbloat* cause the 2010 flashcrash?

have been at $95.90, then halted, then re-opened at $82.50. The stop order would sell immediately at $82.50, not the $90 people thought. Then the stock could recover and be trading at $95.05 and you could really feel you were screwed. But that's how it is supposed to work. Matthew Huff

RE: SEC webpages inaccessible due to Firefox blocking servers with weak DH ciphers

. Matthew Huff | 1 Manhattanville Rd Director of Operations   | Purchase, NY 10577 OTA Management LLC   | Phone: 914-460-4039 aim: matthewbhuff    | Fax:   914-694-5669 -Original Message- From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Robert Drake

SEC webpages inaccessible due to Firefox blocking servers with weak DH ciphers

to their contacts (webmaster, oig, etc...) but haven't gotten a reply yet. It's possible that I might get a reply eventually, but does anyone have any direct contacts at the SEC? Matthew Huff | 1 Manhattanville Rd Director of Operations   | Purchase, NY 10577 OTA Management LLC

Re: Speaking of NTP...

@nanog.org] On Behalf Of Rafael Possamai Sent: Thursday, July 16, 2015 8:53 AM To: Matthew Huff Cc: nanog@nanog.org Subject: Re: Speaking of NTP... Depending on how exactly you have these servers configured with relation to one another, small variations from one single source can

RE: Dual stack IPv6 for IPv4 depletion

in the corporate world). Remember SHIM? Any reasonable size organization that expects reliable internet connections is going to go BGP/PI. Matthew Huff | 1 Manhattanville Rd Director of Operations   | Purchase, NY 10577 OTA Management LLC   | Phone: 914-460-4039 aim: matthewbhuff

Speaking of NTP...

within +/- 2 msec. Starting last Friday, we started seeing some remote NTP servers with GPS reference consistently offset by 10 msec. Any one else seeing this? Matthew Huff | 1 Manhattanville Rd Director of Operations   | Purchase, NY 10577 OTA Management LLC   | Phone: 914

RE: Dual stack IPv6 for IPv4 depletion

). Matthew Huff | 1 Manhattanville Rd Director of Operations   | Purchase, NY 10577 OTA Management LLC   | Phone: 914-460-4039 aim: matthewbhuff    | Fax:   914-694-5669 -Original Message- From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Marco Teixeira Sent: Thursday

RE: Dual stack IPv6 for IPv4 depletion

the idea of not wanting to not think things through, but IPv6 is how many years old, and we are still arguing about these things? Don’t let the prefect be the enemy of the good. Matthew Huff | 1 Manhattanville Rd Director of Operations | Purchase, NY 10577 OTA Management LLC

RE: Dual stack IPv6 for IPv4 depletion

addresses within a corporate network. In residential networks, it's mostly used for guest networks that can route out to the internet, but not to other local devices. Matthew Huff | 1 Manhattanville Rd Director of Operations   | Purchase, NY 10577 OTA Management LLC

RE: Dual stack IPv6 for IPv4 depletion

of things grew up after the fact. I agree that we can't foresee what will happen in the future, but that to me just proves my point. Worrying about the ability to create complex topologies in home networks that may or may not ever be needed or wanted just seems absurd to me. Matthew Huff

Re: United Airlines is Down (!) due to network connectivity problems

Hmmm, Wall Street Journal and NYSE both down…. WSJ has a static page up… DDOS ??? On Jul 8, 2015, at 10:51 AM, Patrick W. Gilmore patr...@ianai.net wrote: Lifted as of 0920 EDT.

Re: United Airlines is Down (!) due to network connectivity problems

Ferguson fergdawgs...@mykolab.com wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 All completely coincidental networking issues, not related to anything malicious. - - ferg On 7/8/2015 9:26 AM, Matthew Huff wrote: Hmmm, Wall Street Journal and NYSE both down…. WSJ has

Re: United Airlines is Down (!) due to network connectivity problems

Given that the technical resources at the NYSE are significant and the lengthy duration of the outage, I believe this is more serious than is being reported. OTOH, the fact that the market is now mostly decentralized and instruments are multiply listed, the impact of the NYSE is much less

Re: United Airlines is Down (!) due to network connectivity problems

-online.commailto:sh...@ronan-online.com wrote: I think you are over estimating the technical resources at NYSE. On Jul 8, 2015 1:44 PM, Matthew Huff mh...@ox.commailto:mh...@ox.com wrote: Given that the technical resources at the NYSE are significant and the lengthy duration of the outage, I

Re: United Airlines is Down (!) due to network connectivity problems

for sw updates etc. On Wed, Jul 8, 2015 at 3:02 PM, Matthew Huff mh...@ox.commailto:mh...@ox.com wrote: Traders on the floor are being told that it's a software glitch from new software that was rolled out Tuesday night. Nothing official has been said. The only thing I know for sure

Re: United Airlines is Down (!) due to network connectivity problems

, Brett Frankenberger rbf+na...@panix.com wrote: On Wed, Jul 08, 2015 at 01:55:43PM -0400, valdis.kletni...@vt.edu wrote: On Wed, 08 Jul 2015 17:42:52 -, Matthew Huff said: Given that the technical resources at the NYSE are significant and the lengthy duration of the outage, I believe

Re: REMINDER: LEAP SECOND

Yes, the clock has to be bad. Been there, done that, especially early Sun x86 servers. Leap years and DST are both things people and developers are aware of outside of technology, leap seconds, not so much. On Jun 23, 2015, at 11:33 PM, Harlan Stenn st...@ntp.org wrote: Matthew Huff writes

RE: REMINDER: LEAP SECOND

% safe we would need to do that 24 hours before, but that would be a violation of FINRA regulations. It looks like the safest thing for us to do is to keep our NTP servers running and deal with any crashes/issues. That's better than having to deal with FINRA. Matthew Huff | 1

Re: REMINDER: LEAP SECOND

Does anyone know what the latest that we can run our NTP servers and not distribute the LEAP_SECOND flag to the NTP clients? On Jun 24, 2015, at 2:33 PM, Tore Anderson t...@fud.no wrote: * Majdi S. Abbas On Wed, Jun 24, 2015 at 08:33:14AM +0200, Tore Anderson wrote: Leap years and DST

RE: REMINDER: LEAP SECOND

to the regulations. We could manually run ntpdate on 100+ servers including 50+ windows servers, but that's not a great solution. Matthew Huff | 1 Manhattanville Rd Director of Operations   | Purchase, NY 10577 OTA Management LLC   | Phone: 914-460-4039 aim: matthewbhuff

Re: REMINDER: LEAP SECOND

A backward step is a known issue and something that people are more comfortable dealing with as it can happen on any machine with a noisy clock crystal. Having 61 seconds in a minute or 86401 seconds in a day is a different story. On Jun 23, 2015, at 8:37 PM, Harlan Stenn st...@ntp.org wrote:

Re: Android (lack of) support for DHCPv6

+1 One IP per device will almost most likely be the preference and implementation in corporate/enterprise deployments. Too much procedure, regulation and other roadblocks prevent any other solution. Authentication, Authorization, Accounting, ACLS, NMS, IDS, IP management, custom software, and

RE: dns on fios/frontier

Well, There are frontier users and there are fios users, and now there are frontier fios users (users that were customers of Verizon, but Verizon sold off part their infrastructure to frontier). Matthew Huff | 1 Manhattanville Rd Director of Operations   | Purchase, NY 10577

RE: Galaxy S6 is IPv6 on all US National Mobile carriers

. Matthew Huff | 1 Manhattanville Rd Director of Operations   | Purchase, NY 10577 OTA Management LLC   | Phone: 914-460-4039 aim: matthewbhuff    | Fax:   914-694-5669 -Original Message- From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Joel Esler (jesler) Sent

RE: Galaxy S6 is IPv6 on all US National Mobile carriers

It's much smaller J Other than that, I don't know of anything else. I don't use their router anyway. Matthew Huff | 1 Manhattanville Rd Director of Operations | Purchase, NY 10577 OTA Management LLC | Phone: 914-460-4039 aim: matthewbhuff| Fax: 914-694-5669

Purpose of spoofed packets ???

wouldn't be useful from the attacker if the traffic doesn't return to them, so what gives? BTW, we are in the ARIN region, the report came out of the RIPE region. Matthew Huff | 1 Manhattanville Rd Director of Operations   | Purchase, NY 10577 OTA Management LLC   | Phone: 914-460

Re: Purpose of spoofed packets ???

: On 11 Mar 2015, at 6:40, Matthew Huff wrote: I assume the source address was spoofed, but this leads to my question. Since the person that submitted the report didn't mention a high packet rate (it was on ssh port 22), it doesn't look like some sort of SYN attack, but any OS fingerprinting

RE: Large Ontario DC busted for hosting petabytes of child abuse material

Given the size and that the data is stored in encrypted RAR files, I wonder if they just busted a Usenet service provider rather than a P2P / file sharing site. Matthew Huff | 1 Manhattanville Rd Director of Operations   | Purchase, NY 10577 OTA Management LLC   | Phone

RE: Checkpoint IPS

, but the vendor is slow to provide the patch. There is a huge difference in what is good network/security designs between content providers, transit networks, eyeball networks, corporate networks, universities, etc... One size doesn't fit all. Matthew Huff | 1 Manhattanville

RE: Checkpoint IPS

your advice. Matthew Huff | 1 Manhattanville Rd Director of Operations   | Purchase, NY 10577 OTA Management LLC   | Phone: 914-460-4039 aim: matthewbhuff    | Fax:   914-694-5669 -Original Message- From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Roland

RE: OT - Verizon/ATT Cell/4G Signal Booster/Repeater

really have a hold of the FCC. Matthew Huff | 1 Manhattanville Rd Director of Operations   | Purchase, NY 10577 OTA Management LLC   | Phone: 914-460-4039 aim: matthewbhuff    | Fax:   914-694-5669 -Original Message- From: NANOG [mailto:nanog-boun...@nanog.org

RE: OT - Verizon/ATT Cell/4G Signal Booster/Repeater

If your users are all using the latest models... great We still have people using flip phones... We had to shut down our legacy signal booster when a provider sent us a cease and desist letter. We are still looking for a replacement solution that meets the new code. Matthew Huff

RE: Cisco AnyConnect speed woes!

were getting 5-10% packet loss (although the Cisco stats didn't show it), and it was choking on it. Matthew Huff | 1 Manhattanville Rd Director of Operations   | Purchase, NY 10577 OTA Management LLC   | Phone: 914-460-4039 aim: matthewbhuff    | Fax:   914-694-5669

RE: Incident notification

The advantage of SMS is that it is out of band. Any smtp or other IP based solution requires a stable and working network environment, which is what the alert may be trying to tell you is down. Matthew Huff | 1 Manhattanville Rd Director of Operations   | Purchase, NY 10577

Prefix withdrawals in Europe/Russia

BGPMon has been sending out alerts this morning starting around 15:14 UTC about our 129.77.0.0/16 prefix. None of our BGP peers have flapped, and according to the alert, it appears limited to: Netherlands Sweden Kuwait Italy United Kingdom Russia Liechtenstein I haven't seen anything on nanog

NJ Data center equipment movers

I'm looking to have some equipment (2 x HP C7000 blade chassis ( each with 16 blades), 2 x Cisco 7600, and some small misc equipment) from a datacenter in Mahwah, NJ to Secaucus, NJ. Anyone recommend someone?

RE: Ars Technica on IPv4 exhaustion

Doesn't surprise me at all. Another thing I've seen lately is number of software (especially system management software) after being certified/tested with IPv6 no longer function when IPv6 is enabled. At least one vendor that broke IPv6 with a recent patch told me they only tested it once for

Cogent / Internap issue ??

msec 15 63.251.160.18 [AS 14744] 76 msec 76 msec 72 msec 16 * * * 17 * * * 18 * * * 19 * * * 20 * * * 21 * * * 22 * * * 23 * * * 24 * * * 25 * * * 26 * * * 27 * * * 28 * * * 29 * * * 30 * * * Matthew Huff | 1

  1   2   >