Re: What do you think about this airline vs 5G brouhaha?

On Tue, Jan 18, 2022 at 17:49 Jay Hennigan wrote: > On 1/18/22 15:51, Brandon Martin wrote: > > > Further, it seems that good engineering practice was not used in the > > design of these vulnerable systems and that they are subject to > > interference from broad-spectrum "jammers" (i.e. signals

Re: What do you think about this airline vs 5G brouhaha?

New to the public eye but not orgs like AOPA who’ve been fighting since 2020 but there not multi billion dollar lobby groups. US is more affected because we have more general aviation, and an older fleet overall. And it’s not cheap to replace these radio altimeters (but that’s kind of like

Re: A crazy idea

On Tue, Jul 20, 2021 at 7:48 AM Michael Loftis wrote: > > (Reply in-line) My apologies to everyone using an HTML mail client. Don't try in-line replies with Google's iOS app. *sigh* Really, it's not a blank reply... The gist of my reply was. Don't complain about DNS services when

Re: A crazy idea

(Reply in-line) On Mon, Jul 19, 2021 at 06:11 Stephen Satchell wrote: > First, I know this isn't the right place to propose this; need a pointer > to where to propose an outlandish idea. > > PROBLEM: IPv6 support is still in its birthing pangs. I see a problem > that limits deployment of IPv6

Re: South Africa On Lockdown - Coronavirus - Update!

On Mon, Mar 23, 2020 at 19:25 Owen DeLong wrote: > > I confess I haven’t investigated the implementation details, but is it > possible for one to issue ubikeys > to an employee in a secure way with those features disabled? > Yes. And changing that setup either requires a separate admin pin or

Re: crypto frobs

On Mon, Mar 23, 2020 at 20:08 Michael Loftis wrote: > > > On Mon, Mar 23, 2020 at 18:50 William Herrin wrote: > >> On Mon, Mar 23, 2020 at 5:16 PM Warren Kumari wrote: >> > Well, yes and no. With a Yubiikey the attacker has to be local to >> > physically to

Re: crypto frobs

On Mon, Mar 23, 2020 at 18:50 William Herrin wrote: > On Mon, Mar 23, 2020 at 5:16 PM Warren Kumari wrote: > > Well, yes and no. With a Yubiikey the attacker has to be local to > > physically touch the button[0] - with just an SSH key, anyone who gets > > access to the machine can take my key

Re: South Africa On Lockdown - Coronavirus - Update!

On Mon, Mar 23, 2020 at 4:53 PM Sabri Berisha wrote: > > Hi, > > In my experience, yubikeys are not very secure. I know of someone in my team > who would generate a few hundred tokens during a meeting and save the output > in a text file. Then they'd have a small python script which was

Re: power to the internet

On Wed, Dec 25, 2019 at 19:00 Constantine A. Murenin wrote: > On Wed, 25 Dec 2019 at 19:32, Michael Thomas wrote: > >> On the dark side, this is probably coming to a lot more states and >> countries due to climate change. Australia. Sigh. >> > > Do you have a source for this? It would seem

Re: improving signal to noise ratio from centralized network syslogs

On Thu, Jan 25, 2018 at 8:11 PM Joe Maimon wrote: > Hey All, > > Centralized logging is a good thing. However, what happens is that every > repetitive, annoying but not (usually) important thing fills up the log > with reams of what you are not looking for. > > Networks are

Re: Google DNS intermittent ServFail for Disney subdomain

None of the NS records/delegations are in agreement. com delegations don't agree with authoritative in disney.com, and disney.com's delegations don't agree with studio.disney.com's NSen. On Fri, Oct 20, 2017 at 7:35 AM, Christopher Morrow wrote: > On Fri, Oct 20, 2017

Re: Moving fibre trunks: interruptions?

If it is in the railroad RoW they may be restricted to daylight working only. Check with your provider or OSP crew. -- "Genius might be described as a supreme capacity for getting its possessors into trouble of all kinds." -- Samuel Butler

Re: BCM5341x

The chip really doesn't even function as an Ethernet switch by itself...all of the behavior is software driven. It's the ... actualization of "software defined networking" -- It provides a lot of low level constructs inside the hardware to support your application, but it's really a software

Re: 10G switch drops traffic for a split second

Yeah you also have to look for not so obvious things like MAC Pause frames sent/received...QoS counters, all sorts of VERY platform specific stuff. Right royal pain, especially since some do not expose these statistics at all. On Tue, Nov 29, 2016 at 3:10 PM, Peter Beckman

Re: 10G switch drops traffic for a split second

Yes it is absolutely possible to overrun the buffers. Any kind of backpressure (FC) from hosts, or 10G->1G transitions can easily cause it. Even if in a 10s window you're not over 1G if the 10G sender attempts to back to back too many frames in a row (Like say sendfile() API type calls) BOOM,

Re: [c-nsp] SFP DOM SNMP Polling?

On Tue, Nov 22, 2016 at 6:32 AM, Tim Durack wrote: > I have a vendor that does not support SFP DOM SNMP polling. They state this > is due to EEPROM read life cycle. Constant reads will damage the SFP. Complete and total garbage. Reading from EEPROM and Flash both DO NOT WEAR.

Re: Standard terminology for a dark fiber path?

IDK what elsewhere uses but strand or (less common) span is the common term I've seen specifically for a passive piece of glass between two points. On Wed, Feb 24, 2016 at 12:55 PM, Fletcher Kittredge wrote: > What is the standard terminology for strands of dark fiber spliced

Fw: new message

Hey! New message, please read <http://startyourdaywithgenius.com/manner.php?lomvd> Michael Loftis

Re: Bandwidth estimation question

On Friday, October 2, 2015, Dylan Ambauen wrote: > ... > Enjoy a worldwide caching reverse proxy with limitless resources, priced > per page view. Maybe someone can recommend a IPv6 capable CDN service. > > Cloudflare. Also does IPv6 on the client facing side while doing IPv4

Re: Level3 NOC Contact

AFAIK theres no longer any way to get their attention unless you're a customer AND have signed up for their online portal system at https://my.level3.com/ - and I wouldn't expect anything stellar then either. You'll likely have to do your own troubleshooting through them as my recent experiences

Re: Google's Safe Browsing Alerts for Network Administrators

My problem with Google's Safe Browsing alerts is that from the admin side they rarely are useful/useable. They make a big loud noisy complaint without ANYTHING to substantiate what the issue is to correct it. You're left searching your own site trying to figure out what in the heck it's

Re: Keeping Track of Data Usage in GB Per Port

IPDR under DOCSIS and generally RADIUS or TACACS(+) for DSL. Unclear personally about fiber/FiOS deployments (never been near enough to know) Flow (sflow, nflow, ipfix, etc) generally doesn't scale and is woefully inaccurate. On Wednesday, October 15, 2014, Colton Conor colton.co...@gmail.com

Re: GApps admin = rogered

This is 4-5 minutes after the OP emailed On Thursday, October 9, 2014, Mitch Patterson via Outages outa...@outages.org wrote: Shows an issue to me TimeDescription 10/9/14 7:11 PM We're investigating reports of an issue with Admin console. We will provide more information shortly. Users

Re: Link Layer Filtering not supported on popular equipment?

On Wed, Mar 26, 2014 at 9:08 AM, hasser css hasserva...@gmail.com wrote: Is there any common equipment that doesn't support this kind of filtering? I have no access to the switches where I work (I am just a CS agent at a smaller service provider), but my boss tells me that they do not support

Re: Dell Power Volt 124T software

Basically anything. It works as a standard SCSI tape changer device using mtx, my, and your favorite archiving software, tar, Amanda, bacula, arkeia, many others. On Thursday, March 13, 2014, Maxime Godonou Dossou godomu...@gmail.com wrote: Hello all I just want to know someone here is using

Re: As path for Junos

http://www.juniper.net/techpubs/en_US/junos13.3/topics/usage-guidelines/policy-configuring-as-path-regular-expressions-to-use-as-routing-policy-match-conditions.html There's no backref support in the regex subset that juniper has chosen to implement, see

Re: Peering issue - Possible Juniper to Cisco issue

On Fri, Feb 28, 2014 at 8:58 AM, Philip Lavine source_ro...@yahoo.com wrote: To all, I (ASR1001) had an experience recently where the Telco (Juniper) told me that I was sending them 1000+ routes when I attempted to re-establish a BGP session; subsequently they would not allow this and they

Re: Leap Second

On Tue, Jul 2, 2013 at 7:23 AM, Todd S t...@borked.ca wrote: We found we got leap seconds added on some systems over the weekend. There were no leap seconds planned ( http://www.usno.navy.mil/USNO/earth-orientation/leap-second-announcement), however some of our systems got one. We run our

Re: Leap Second

On Tue, Jul 2, 2013 at 7:35 AM, Michael Loftis mlof...@wgops.com wrote: Had a leap happen here on the 30th. My stratum 1 source is a CDMA timekeeper, I'll ping the operator of it and see if he knows anything or if it logged anything. It's probably not isolated at all since all my S2

Re: PDU recommendations

Personally have gotten sick of dealing with basically every other vendors PDU out there but APC. APC PDUs may not have every whiz-bang feature but they work. SNMP or SSH pretty solid. You still probably want them on a closed management network but problems even in the wild 'net with port 22

Re: PDU recommendations

No, I only use APC anymore for PDUs. It's the others I've dealt with I don't like. There's quite a few I've never used but after the painfully expensive experiences I've had with Tripp-Lite, Bay tech, MGE (though I think they're part of Schneider or APC now), Liebert (which at the time looked

Re: OC3/STM-1 Line Card

Most modern gear can go all the way to individual DS0's in a single card without a MUX of any kind. OC3/STM-1 is only like 155mbit. On Sun, Jun 9, 2013 at 10:13 AM, Phil Fagan philfa...@gmail.com wrote: Don't you need to drop DS0's out of that STM for signaling? On Sat, Jun 8, 2013 at 9:58

Re: Data Center Installations

On Wed, May 1, 2013 at 4:33 PM, Mike Lyon mike.l...@gmail.com wrote: For bulk velcro, I found Uline to be fairly cheap. I have to ask, is this an April fools joke? ULine isn't cheap for anything. Monoprice, $13, around $25 delivered depending on where you're at and how yu ship it, for 5x black

Comcast NOC - issues to/from AS13331 (Seattle)

Comcast doesn't appear to have any usable NOC contacts via whois, and this issue is apparently very widespread. Comcast obviously has multiple saturated paths out in this area, so if you're seeing issues getting to your customers on Comcast...well, it's probably Comcast. Sort of an ongoing/me too

Re: Circuit Bandwidth Simulator applet etc

Try http://www.nsnam.org/ (AKA NS2/NS3) whichis GPL/OSS or Tetcos NetSim - http://tetcos.com/ I've never used NetSim FYI, just heard of it. And NS only rarely. On Mon, Feb 25, 2013 at 9:22 AM, JoeSox joe...@gmail.com wrote: I would like a applet or program I can feed it nodes and a network

Re: Suggestions for managed DNS provider?

On Thu, Feb 14, 2013 at 11:58 AM, David Hubbard dhubb...@dino.hostasaurus.com wrote: Hi all, anyone have suggestions for very stable/reliable managed DNS? Neustar/UltraDNS is an obvious option to look at, just curious about alternatives. Cost effective would be nice, but stable under attack is

Re: Super slow HP ILO 2 web interface

I've had issues with HP, Dell, and Super micro in any higher amounts of broadcast traffic, especially ARP requests. The iDRAC 5 and 6 behave very badly in high broadcast environments, failing to respond to http and local ipmi (ipmitool via the smbus or whatever) interface. That's probably where I

Re: why haven't ethernet connectors changed?

It's not all about density. You *Must* have positive retention and alignment. None of the USB nor firewire standards provide for positive retention. eSATA does sort of in some variants but the connectors for USB are especially delicate and easy to break off and destroy. There's the size of the

Re: Google/Youtube problems

On Mon, Nov 19, 2012 at 6:30 AM, Leo Bicknell bickn...@ufp.org wrote: In a message written on Mon, Nov 19, 2012 at 03:59:22PM +0200, Saku Ytti wrote: What I'm trying to say, I can't see youtube generating anywhere nearly enough revenue who shift 10% (or more) of Internet. And to explain

Re: time-b.netgear.com/time-c.netgear.com dns queries

On Fri, Sep 7, 2012 at 7:36 PM, valdis.kletni...@vt.edu wrote: Interestingly enough, the *hostname* is still in use (by another machine under my desk) - and it gets near zero hits. So it's all hardcoded IP addrs not hostnames. And for NTP implementations that use DNS they also often

Re: raging bulls

On Wed, Aug 8, 2012 at 8:08 AM, Brett Frankenberger rbf+na...@panix.com wrote: Even if you execute the trades based on a GPS timestamp (I'm ignoring all the logistics of preventing cheating here), it doesn't matter, because the computer that got the information first will make the trading

Re: airFiber

On Sat, Mar 31, 2012 at 7:14 AM, ML m...@kenweb.org wrote: Often such a feature is an option within the radio configuration. Where wired side link follows wireless link.  To me that never seemed like a good idea because I need to get into the radio during a wireless link-down situation.  

Re: events

On Fri, Sep 30, 2011 at 11:21 AM, Brandon Kim brandon@brandontek.com wrote: Is it really that expensive, and WORTH the expense? IMO, from price quotes I've gotten in the past, it's astronomically expensive. As for worth it...depends. If you're dealing with events for say payment

Re: Home computer rooms

I've got a Danby portable type dual hose unit which works very well for my office. The single hose units are really no good for getting a room cool as they continually pull in outside air. It's pretty quiet, a lot quieter than the cheaper no-name unit it replaced. 12000BTU - it does really need

Re: Experience with Open Source load balancers?

On Mon, May 16, 2011 at 5:15 PM, Welch, Bryan bryan.we...@arrisi.com wrote: Greetings all. I've been tasked with comparing the use of open source load balancing software against commercially available off the shelf hardware such as F5, which is what we currently use.  We use the load

Re: gmail issues ?

On Tue, Mar 15, 2011 at 3:13 PM, Mike Tancsa m...@sentex.net wrote: Anyone seeing gmail issues ? I checked at http://www.google.com/appsstatus#hl=en I've been having massively delayed incoming mail since about Sunday (2011/03/13) some email taking days to come in, some still hasn't (Amazon

Re: Old Annex question

Never used those but on some gear from that era it had to.be repeated 3x like the Hayes +++ attention sequence. On Feb 12, 2011 9:02 PM, Brian Feeny bfe...@mac.com wrote: Sad but true, I still have a few of these in operation as terminal servers. In reading the documentation I could find it

Re: SmartNet Alternatives

Cisco is making noises that they'll eventually be restricting software access to ONLY those devices which have an active SmartNet contract associated to your CCO account. I don't know where this currently stands, and it sure will be a huge pain in my rear if/when it happens. On Fri, Feb 11, 2011

Re: IPv6 filtering

On Tue, Jan 25, 2011 at 10:49 PM, Mark D. Nagel mna...@willingminds.com wrote: This can bite you in unexpected ways, too.  For example, on a Cisco ASA, if you add a system-level 'icmpv6 permit' line and if this does not include ND, then you break ND responses to the ASA.  This is much unlike

Re: Using IPv6 with prefixes shorter than a /64 on a LAN

On Mon, Jan 24, 2011 at 1:53 PM, Ray Soucy r...@maine.edu wrote: Many cite concerns of potential DoS attacks by doing sweeps of IPv6 networks.  I don't think this will be a common or wide-spread problem.  The general feeling is that there is simply too much address space for it to be done in

Re: IPv6 - real vs theoretical problems

On Fri, Jan 7, 2011 at 3:44 PM, Owen DeLong o...@delong.com wrote: snip There are multiple purposes to /48s to residential end users. DHCP-PD allows a lot of future innovations not yet available.        Imagine a house where the border router receives a /48        from the ISP and delegates

Re: POE bump-in-the-wire conversion

On Fri, Dec 31, 2010 at 10:49 AM, Robert E. Seastrom r...@seastrom.com wrote: I was aware of this device (being a big Ubiquiti fan), but have yet to find anyone who has direct experience with using them on a 3524-PWR. Have you actually tried this (on a 3524-PWR, not a 3550 or anything

Re: Want to move to all 208V for server racks

On Fri, Dec 3, 2010 at 10:33 PM, Jay Ashworth j...@baylink.com wrote: And in fact, much carrier class equipment can be had with -48V power, there are ATX and similar power supplies for PCs that are -48, and I *think* I've commercial small UPSs (3kVa) that give with -48 as well... using 48V

Re: Want to move to all 208V for server racks

On Sat, Dec 4, 2010 at 12:45 PM, Jay Ashworth j...@baylink.com wrote: I phrased my comment poorly, which mislead you.  I was suggesting a UPS which took 208VAC on on the charge side, and charged 48VDC batteries with it, providing -48 to a rack full of equipment which took that. People

Re: Low end, cool CPE.

On Fri, Nov 12, 2010 at 8:36 AM, Matthew Kaufman matt...@matthew.at wrote: On 11/11/2010 10:55 PM, Michael Loftis wrote: I have sort of recently gone from a little netscreen 5 to a mikrotik rb750g. Happily running for about 4 months. Way more of a power user or net admin than consumer

Re: Low end, cool CPE.

I have sort of recently gone from a little netscreen 5 to a mikrotik rb750g. Happily running for about 4 months. Way more of a power user or net admin than consumer oriented device. Fast though, loads faster than the netscreen On Nov 11, 2010 6:41 PM, Leo Bicknell bickn...@ufp.org wrote: I've

Re: Current trends in capacity planning and oversubscription

On Tue, Nov 9, 2010 at 10:26 PM, Sean Donelan s...@donelan.com wrote: While the answer is always it depends, I was wondering what the current rules of thumb university network engineers are using for capacity planning and oversubscription for resnets and admin networks? For K-12, SETDA

Re: Current trends in capacity planning and oversubscription

On Wed, Nov 10, 2010 at 10:31 AM, Steve Meuse sme...@mara.org wrote: Michael Loftis expunged (mlof...@wgops.com): Actually...I'm not sure anywhere has that high of a ratio here in the states, at least for wired connectivity. I would say that's highly dependent on your geographical location

Re: do you use SPF TXT RRs? (RFC4408)

--On Monday, October 04, 2010 9:54 AM -0700 John Adams j...@retina.net wrote: Without proper SPF records your mail stands little chance of making it through some of the larger providers, like gmail, if you are sending in any high volume. You should be using SPF, DK, and DKIM signing. I

Re: Inquiries to Acquire IPs

Makes one wonder what dead:beef::/32 and c0ff:ee00::/32 will go for? :) --On Friday, July 02, 2010 9:48 PM +0100 Rob Evans internetplum...@gmail.com wrote: I saw a few reports of those today and wrote a short note to forewarn some other European RE networks, plus our customers.

Re: Consumer Grade - IPV6 Enabled Router Firewalls.

--On Sunday, December 13, 2009 9:17 AM -0800 Joel Jaeggli joe...@bogus.com wrote: UPnP is a bad idea that (fortunately) doesn't apply to IPv6 anyway. You don't need UPnP if you'r not doing NAT. wishful thinking. you're likely to still have a staeful firewall and in the consumer space

Re: Consumer Grade - IPV6 Enabled Router Firewalls.

--On Wednesday, December 02, 2009 6:23 PM -0800 Mehmet Akcin meh...@akcin.net wrote: Would you consider Juniper SSG5 as a Consumer Grade router? They do IPv6 and they are pretty good in general, and cheap as well. Not as usable in the consumer space due to lack of UPnP (and Juniper is