We've been waiting since December 2017 with multiple followup. Their most
recent response said that February would probably be when they turn us up,
15 months after our first request.
On Thu, Jan 24, 2019, 1:46 PM Mike Hammett Let us know your success as well. I'll hold off following up on my
>
We circled back with them yesterday on a request we made in late November where
at the time they said they wouldn’t be turned up until 2019 due to holiday
network change freeze.
They responded within about 4 hours, thanked us for our patience and
understanding and said we should expect them to
Let us know your success as well. I'll hold off following up on my requests
until I see that other people are successful. I don't want to contribute to
flooding them with requests.
-
Mike Hammett
Intelligent Computing Solutions
http://www.ics-il.com
Midwest-IX
On 1/24/19 11:46 AM, Mark Andrews wrote:
>On 25 Jan 2019, at 2:14 am, Stephen Satchell wrote:
>> My edge routers block *all* inbound DNS requests -- I was being hit by a
>> ton of them at one point. Cavaet: I don't run a DNS server that is a
>> domain zone master -- I use a DNS service for that.
I hate to necro-thread , but has anyone seen any movement from Amazon on
this? I just got a Strongly Worded Message about it, and according to my
peering team , it's been radio silence for months.
On Sat, Nov 24, 2018 at 12:32 PM JASON BOTHE via NANOG
wrote:
> This is a note I received on
> On 25 Jan 2019, at 12:50 am, Bjørn Mork wrote:
>
> Mark Andrews writes:
>
>> I’ve been complaining for YEARS about lack of EDNS compliance.
>
> Didn't help.
Perfect vs incremental improvement. Please go look at the graphs
on ednscomp.isc.org. You will see the fixes being applied. You
Thanks Jason. I'll have my peering team take another crack at reaching out
and see what happens. Appreciate it!
On Thu, Jan 24, 2019 at 2:21 PM Jason Lixfeld
wrote:
> We circled back with them yesterday on a request we made in late November
> where at the time they said they wouldn’t be turned
> On 25 Jan 2019, at 2:14 am, Stephen Satchell wrote:
>
> On 1/23/19 8:44 PM, Mark Andrews wrote:
>> and they your firewalls don’t block well formed DNS queries (lots of
>> them do by default).
>
> My edge routers block *all* inbound DNS requests -- I was being hit by a
> ton of them at one
On Thu, 24 Jan 2019 04:00:27 +1100, Ben Cooper said:
> You caused again a massive prefix spike/flap,
That's twice now you've said that without any numbers or details.
Care to explain what you mean by "massive" in a world where the IPv4 table has
like 700K+ routes? And as percieved by what
Hey there
We are (couple of NANOGers) planning a small get together in LA area(still
deciding the date). If you are interested in meeting up with others from
industry.
Please feel free to drop me a message offlist.
Thank you
--
Mehmet
+1-424-298-1903
On Thu, 24 Jan 2019 at 18:43, wrote:
> We fight with that all the time,
> I'd say that from the whole Design->Certify->Deploy->Verify->Monitor service
> lifecycle time budget, the service certification testing is almost half of it.
> That's why I'm so interested in a model driven design and
On Thu, 24 Jan 2019 11:22:44 +1100, Mark Andrews may have
written:
> If you run a firewall in front of your DNS server you may be broken.
If you run a firewall in front of your DNS server and the firewall breaks
EDNS, then your firewall is broken. And has been a long, long time. I put a
firewall
We see Juniper firewalls blocking EDNS(1) and NSID by default.
We see Checkpoint firewalls blocking EDNS(1) and EDNS flags by default.
There is a another vendor that blocks EDNS(1).
Juniper and Checkpoint have newer code that doesn’t do this. The old
firewalls are still out there however. You
* morrowc.li...@gmail.com (Christopher Morrow) [Thu 24 Jan 2019, 06:46 CET]:
So, we're asking 'everyone' to do 'something' on behalf of their
domains, their users and the rest of the internet... we can't seem
to do that in a fashion that's traceable, clearly has ownership and
doesn't look like
> On 24 Jan 2019, at 9:02 pm, Mike Meredith wrote:
>
> On Thu, 24 Jan 2019 11:22:44 +1100, Mark Andrews may have
> written:
>> If you run a firewall in front of your DNS server you may be broken.
>
> If you run a firewall in front of your DNS server and the firewall breaks
> EDNS, then your
On 1/23/2019 8:27 PM, Töma Gavrichenkov wrote:
>
>> Replying to throw in my support behind continuing the experiment as well.
> +1. I've yet to see any disruptions caused by the experiment in my area.
>
Speaking of which, were there any statistics gathered and published
before, during and after
On Thu, Jan 24, 2019, 5:40 PM Mike Tancsa wrote:
> On 1/23/2019 8:27 PM, Töma Gavrichenkov wrote:
> > +1. I've yet to see any disruptions caused by the experiment in my area.
> >
> Speaking of which, were there any statistics gathered and published
> before, during and after the experiment about
Mark Andrews writes:
> I’ve been complaining for YEARS about lack of EDNS compliance.
Didn't help.
bjorn@miraculix:~$ dig +edns=42 +noednsnegotiation @1.1
; <<>> DiG 9.11.5-P1-1-Debian <<>> +edns=42 +noednsnegotiation @1.1
; (1 server found)
;; global options: +cmd
;; Got answer:
;;
Hi experts,
I'd appreciate some help on my research in networking technologies that
public cloud providers are using today and maybe in the future too.
What I can see today is more or less a mix of classic SP/DC
routing/switching technologies like BGP, MPLS, SR, EVPN, RIFT, Open Fabric,
SFC,
Can you stop this?
You caused again a massive prefix spike/flap, and as the internet is not
centered around NA (shock horror!) a number of operators in Asia and
Australia go effected by your “expirment” and had no idea what was
happening or why.
Get a sandbox like every other researcher, as of
Hello,
Recently on this mailing list, I have seen requests for network monitoring
tools.
Service Fractal, a startup in its early days, is providing a cloud based
network and security monitoring with focus on business outcomes
Service Fractal is vendor-neutral (Cisco, HPE, Allied Telesis and
On Wed, Jan 23, 2019 at 5:27 PM Mark Andrews wrote:
> I’ve been complaining for YEARS about lack of EDNS compliance.
>
> If you run really old Windows DNS servers you are broken.
>
> If you run a firewall in front of your DNS server you may be broken.
>
> If you are QWEST you are broken.
>
>
NANOGers ,
is there anyway for AAA to get special online subscriber usage
information without enable interim accouting on BRAS?
Reading through RADIUS protocol , it seems that if we want to get online
subscriber information enable interim accounting on BRAS is the only way .
> From: Brian Kantor
> Sent: Thursday, January 24, 2019 3:58 PM
>
> I agree.
>
> It seems to me that testing with almost-valid data (well formed, but with
> disallowed values) as well as fuzz-testing are essential parts of software
> quality control.
>
To be frank,
Have blasted packets at the
On Thu, 24 Jan 2019 at 17:52, wrote:
> This actually makes me thing that it might be worthwhile including these
> types of test to the regression testing suite.
I seem to recall one newish entrant to SP market explaining that they
are limited by wall-time in blackbox testing. They would have no
I'm looking for some real world feedback on 10ms DWDM failover times from Omaha
to Denver on 10Gbps transmission waves. I have seen several documents that
report 10 ms failure detection time but I suspect the failover mechanism takes
some time to react and propagate the failed state across
Hi Nanog,
We all know that networks are at the heart of many of the systems we use
today. When these systems break, the underlying networks are often the
first suspects. Networks are hard to diagnose and they are most likely to
be blamed for problems even if they are completely healthy. As
Hello,
Can someone from Security Reliability Engineering at Google contact me
off-list? We're trying to address a re-CAPTCHA issue involving some of our
blocks, but we haven't been getting response on our follow ups.
Thanks!
-Gavin?
On Thu, Jan 24, 2019 at 03:49:46PM -, adamv0...@netconsultings.com wrote:
> This actually makes me thing that it might be worthwhile including these
> types of test to the regression testing suite.
> So that every time we evaluate new code or vendor we don't only test for
> functionality,
> From: Saku Ytti
> Sent: Thursday, January 24, 2019 4:28 PM
>
> On Thu, 24 Jan 2019 at 17:52, wrote:
>
> > This actually makes me thing that it might be worthwhile including
> > these types of test to the regression testing suite.
>
> I seem to recall one newish entrant to SP market
On 1/23/19 8:44 PM, Mark Andrews wrote:
> and they your firewalls don’t block well formed DNS queries (lots of
> them do by default).
My edge routers block *all* inbound DNS requests -- I was being hit by a
ton of them at one point. Cavaet: I don't run a DNS server that is a
domain zone master
> From: James Jun
> Sent: Wednesday, January 23, 2019 7:02 PM
>
> Agreed; Please resume the experiment. We're all operators here, and we
> MUST have confidence that BGP speakers on our network are compliant with
> protocol specification. Experiments like this are opportunities for a
real-life
radius
On Thu, Jan 24, 2019 at 10:37 AM aun Joe wrote:
> NANOGers ,
>
>
> is there anyway for AAA to get special online subscriber usage
> information without enable interim accouting on BRAS?
>
> Reading through RADIUS protocol , it seems that if we want to get
> online subscriber
Or you could simply fix your gear rather than leaving a big hole in your
infrastructure.
*shrug*
On Thu, Jan 24, 2019, 7:25 AM Ben Cooper Can you stop this?
>
> You caused again a massive prefix spike/flap, and as the internet is not
> centered around NA (shock horror!) a number of operators in
It seems that this is even increasingly harder in a MEF/SP-type Layer 2
emulated network of eline, elan, etree type things…
Yeah seems that you have to have synthetic-type traffic generated and inserted
into the data path to measure on…
Isn’t CFM/Ethernet OAM supposed to segment up the
Hi, I don't know what your scale is but setting a 15minute interim radius
update has always worked well for me. A standard freeradius server running
on SSD's would be able to handle the load from 100k users without too much
of a load issue. Above that load balancing radius requests among servers
you are seriously cracking me up... but.
On Thu, Jan 24, 2019 at 6:05 AM Niels Bakker wrote:
> * morrowc.li...@gmail.com (Christopher Morrow) [Thu 24 Jan 2019, 06:46
> CET]:
> >So, we're asking 'everyone' to do 'something' on behalf of their
> >domains, their users and the rest of the
37 matches
Mail list logo