Re: Attacks on BGP Routing Ranges

Maybe we are missing a key item here. Ryan, is the attack on the BGP peering range killing your router or is it an attack saturating the link? Do you have some netflow samples of one of these attacks or any kind of hints of what happened? Jean St-Laurent On 04/18/2018 11:01 PM, Roland

Re: Suggestion for Layer 3, all SFP+ switches

I've been testing IPInfusion OcNOS running on Dell Z9100 and S4048. I've run a couple of test cases using MPLS LDP signaled port based and VLAN based VPWS (pseudowire / e-line / xconnect / Juniper CCC) and VPLS (e-lan) over an OSPFv2 IGP. It's working well between Dell/IPI to Dell/IPI boxes. We

Re: Is WHOIS going to go away?

On Sat, Apr 14, 2018 at 05:29:35PM +, Aaron C. de Bruyn via NANOG wrote: > So why are you proposing that I can't run my *personal* "I strongly > believe in {insert emotionally-charged issue} site" without letting psychos > know exactly where I live? A PO box might suffice. There are also

Re: Is WHOIS going to go away?

On Sat, Apr 14, 2018 at 08:20:06PM +, Filip Hruska wrote: > Scraping WHOIS systems for thousands domains at once using the WHOIS > protocol is easy though. There are "WHOIS History" sites which scrape all > domains and then publish the data along with the date of retrieval. Which would not be

Re: Is WHOIS going to go away?

In article <23257.12824.250276.763...@gargle.gargle.howl> you write: >So you think restricting WHOIS access will protect dissidents from >abusive governments? > >Of all the rationalizations that one seems particularly weak. Oh, you're missing the point. This is a meme that's been floating around

Re: Is WHOIS going to go away?

On April 19, 2018 at 22:43 jo...@iecc.com (John Levine) wrote: > In article <23257.12824.250276.763...@gargle.gargle.howl> you write: > >So you think restricting WHOIS access will protect dissidents from > >abusive governments? > > > >Of all the rationalizations that one seems particularly

Re: Is WHOIS going to go away?

On Thu, Apr 19, 2018 at 5:20 PM wrote: > So you think restricting WHOIS access will protect dissidents from > abusive governments? > Every government has subpoena power. Some of them even have the power to beat people with a rubber hose in the back room until they get the

Re: Is WHOIS going to go away?

On April 20, 2018 at 02:58 aa...@heyaaron.com (Aaron C. de Bruyn) wrote: > On Thu, Apr 19, 2018 at 5:20 PM wrote: > > So you think restricting WHOIS access will protect dissidents from > abusive governments? > > > Every government has subpoena power.  Some of

RE: Suggestion for Layer 3, all SFP+ switches

Aren't there issues/concerns with Huawei ? I think we pay about $10k with discounts and about (4) 10 gig port license to slow start our deployment of ACX5048's 10 gig east , 10 gig west , dual 10's facing FTTH OLT (Calix E7) -Aaron

Re: [cooperation-wg] Massive IP blockings in Russia

I know I saw a significant number of suspicious routes from 31133 in the past day or two as well. There appears to be some pretty widespread bogus routing. - jared > On Apr 19, 2018, at 1:36 PM, Sandra Murphy wrote: > > Of possible interest to this group. > > Forwarding

Re: Fwd: [cooperation-wg] Massive IP blockings in Russia

I guess this is already a big issue + this is going to be a problem for people attending the FIFA World Cup using information from the cloud (few people, no?) Ale, El 19/4/18 a las 1:36 p. m., Sandra Murphy escribió: > Of possible interest to this group. > > Forwarding at Alexander’s

RCN and IPv6

Curious if any RCN network guys or gals are on the list and can provide any idea as to when RCN plans on deploying IPv6? I make inquiries every six months or so, but I get the usual canned response that it's in the works, but no ETA.

Re: Fwd: [cooperation-wg] Massive IP blockings in Russia

On 4/19/18 1:36 PM, Sandra Murphy wrote: > Russian ISPs MUST fully block all traffic to such networks. The list is > frequently updated and gets automatically propagated to ISP every once in a > while, failure to block any address may result in 1500eur fine. Per day? That's a cost of doing

Re: Suggestion for Layer 3, all SFP+ switches

Yes, there are issues/concerns with using Huawei in the USA, but in the rest of the world they are the number 2 vendor. Also, $3500 for that box with lifetime support and warranty (their TAC is in Plano, Texas) vs $10,000 for an ACX5048 onetime plus at least $1500 a year for JTAC seems like a big

Re: Is WHOIS going to go away?

You still have the same end result. Bad data. I could use a mail forwarding service or fake the record entirely. My VoIP provider probably won't cough up who owns the phone number without a warrant. Probably the same for HelloFax. And the only name verification that goes on at my domain

Fwd: [cooperation-wg] Massive IP blockings in Russia

Of possible interest to this group. Forwarding at Alexander’s suggestion, who says he has already shared info in the NANOG facebook group "(with updated prefixlist)". —Sandy > Begin forwarded message: > > From: Alexander Isavnin > Subject: [cooperation-wg] Massive IP

Re: Suggestion for Layer 3, all SFP+ switches

Łukasz, Out of all those Cisco models, which meets the OP requirements of " (at least 24) SFP+ ports 10G and at least a couple of upstream ports 40G capable" and a " The budget is around 3000-5000 $ each, possibly. "? The Nexus 7000's look very large with the smallest being 3U in size, so I

Re: Suggestion for Layer 3, all SFP+ switches

Colton, > On 19 Apr 2018, at 03:32, Colton Conor wrote: > > Cisco has mutliple options, but mainly the NCS based on your port count I > think. Supposely the C3850 and C9500 now support MPLS? There is a new 16 > port 10G version of the C9500. I haven't looked into Nexus

Re: Suggestion for Layer 3, all SFP+ switches

Thank you very much to everyone. The budget is around 3000-5000 $ each, possibly. There are many devices that could match our needs but as usual the dark side of this market is the platforms compatibility. We deployed many Mikrotik and Ericsson devices, hope they will "match" with a Cisco or

Re: Suggestion for Layer 3, all SFP+ switches

Ben, The Dell options intrigue me. First question is who do you talk to at Dell about their solutions as most sales guys just seem to know their laptop and server lines? How does Dell's pricing compare with Edge-Core. Considering most of the hardware is the same Broadcom chipset, what are the

Re: Fwd: [cooperation-wg] Massive IP blockings in Russia

Thanks for sharing, Note of caution - there is a mess going on with this blocking so if some IP range/domain is not in any list it doesn't necessary mean it is not blocked. Lists are created/updated pretty sporadically (e.g. the list does not say so but there are reports of blocked DigitalOCean

RE: Attacks on BGP Routing Ranges

You are not supposed to announce that range anyway as you shouldn't be announcing your infrastructure range for your protection. Ask your upstream providers not to expose that range too. There are many ways around that selective redistribution or they can just protect that range. How they do

Re: Juniper Config Commit causes Cisco Etherchannels to go into err-disable state

Not sure exactly what your environment looks like, but we encountered something similar when trunking Cisco-DELL and Cisco-Juniper switches. We run RSTP on DELL and Juniper switches, but RPVST+ on Cisco. In the beginning we just allow those VLANS we need between Cisco-DELL/Juniper switches, then

Re: Suggestion for Layer 3, all SFP+ switches

The ZTE 5960 with 48x SFP+ and 4x QSFP28 (40G and 100G capable) will do it within the budget listed. We use it for MPLS and VPLS. Regards Baldur Den tor. 19. apr. 2018 18.17 skrev Giuseppe Spanò - Datacast Srl < sp...@datacast.it>: > Thank you very much to everyone. > > The budget is around

Re: RCN and IPv6

On 4/19/18 1:38 PM, Bryan Holloway wrote: Curious if any RCN network guys or gals are on the list and can provide any idea as to when RCN plans on deploying IPv6? I make inquiries every six months or so, but I get the usual canned response that it's in the works, but no ETA. Clarification:

RE: Is WHOIS going to go away?

Inline... On April 19, 2018 at 22:24 fa...@gatech.edu (Badiei, Farzaneh) wrote: > “Granted there's > that gray area of dissident political movements etc. but their full > time job is protecting their identity.” > > > > You think? The median number of domain name registration that used

Re: Is WHOIS going to go away?

One of the memes driving this WHOIS change is the old idea of "starving the beast". People involved in policy discussions complain that "spammers" -- many only marginally fit that term other than by the strictest interpretation -- use the public WHOIS data to contact domain owners. I've

Re: Is WHOIS going to go away?

I just want to add my voice to basically the same sentiment (way below...) With all the data breaches it's almost become easier to list companies who haven't had a massive data breach lately. And once someone walks off with that db it's out there forever tho admittedly still a little more