Any enterprise operators very happy with their MPLS providers?

I'm getting ready to prepare an RFP for our next generation WAN, and would like feedback from anyone else who has 100+ MPLS nodes on their quality of account service and technical performance. My current landscape includes ATT, Sprint, and Verizon. I'm almost completely happy with Sprint-

RE: Link local for P-t-P links? (Was: IPv6 prefixes longer then /64: are they possible in DOCSIS networks?)

Well, traceroutes and other ICMP functions would break. It is occasionally useful to be able to address a specific router interface from someplace other than its connected peer. -Gabriel -Original Message- From: Mike Jones [mailto:m...@mikejones.in] Sent: Wednesday, November 30, 2011

RE: IPv6 prefixes longer then /64: are they possible in DOCSIS networks?

Note that /127 is strongly discouraged in RFC5375 and RFC3627. 3627 suggests using /112 for router links, or /126 at the very most. -Original Message- From: Fred Baker [mailto:f...@cisco.com] ... I see no reason you couldn't use a /127 prefix if the link was point to point. ...

RE: Arguing against using public IP space

Chuck, you're right that this should not happen- but the reason it should not happen is because you have a properly functioning stateful firewall, not because you're using NAT. If your firewall is working properly, then having public addresses behind it is no less secure than private. And if

Re: Arguing against using public IP space

Google for NAT is not a security feature and review all the discussions and unnecessary panic over a lack of NAT support in IPv6. If your SCADA network can reach the public internet then your security is only as good as your firewall, whether you NAT or not. If your SCADA network is completely

Re: BGP conf

Google for team cymru secure bgp template for a good starting point. -Original message- From: Edward avanti edward.ava...@gmail.com To: nanog@nanog.org nanog@nanog.org Sent: Wed, Nov 2, 2011 01:01:37 GMT+00:00 Subject: BGP conf Halo, First, I accept this might not really right list for

RE: Outgoing SMTP Servers

The alternative to centralization is enclosure: segmentation and private ownership of portions of the formerly common resource. Since the internet is already thus enclosed, with each portion completely owned by one autonomous agent or another, the problem at hand is not a commons problem at all

RE: Recommendation for customer monitoring network tool/portal for a large ISP

I'm getting ready to do an eval of Monolith Software's monitoring/management product. They have some very nice multi-tenant dashboarding and reporting capabilities and are extremely scalable. -Gabriel -Original Message- From: Alex Nderitu [mailto:nderitua...@gmail.com] Sent: Thursday,

Re: NANOG:RE: [outages] News item: Blackberry services down worldwide

ActiveSync on Android allows corporate to force compliance with security policy and allow remote wipe. User cannot complete the exchange account setup without permitting the controls. If the user doesn't agree their sync isn't enabled. Moreover, if corporate requirements change sync is disabled