Clayton Dukes via Outages | 25 Oct 06:31 2014

[outages] Dynamic blocklists to IOS ACL

Sorry for the off-topic post, but Google has not yielded much so I thought I would ask here.

Does anyone know of, or have a script that can take in ip blocklists from https://www.iblocklist.com/lists.php and update a router's ACL? (IOS 12.x)




______________________________________________________________

Clayton Dukes
______________________________________________________________
<div><div dir="ltr">Sorry for the off-topic post, but Google has not yielded much so I thought I would ask here.<div>
<br><div>Does anyone know of, or have a script that can take in ip blocklists from&nbsp;<a href="https://www.iblocklist.com/lists.php">https://www.iblocklist.com/lists.php</a> and update a router's ACL? (IOS 12.x)</div>
<div><br></div>
<div><br></div>
<div><br></div>
<div>
<br clear="all"><div>______________________________________________________________ <br><br>Clayton Dukes<br>______________________________________________________________</div>
</div>
</div>
</div></div>
Bill McGonigle via Outages | 24 Oct 11:34 2014

[outages] Intermittent Comcast DNS issues from VT

Since about midnight (Eastern) Comcast's DNS (75.75.75.7[5,6]) has been giving timeouts and the occasional 'no route to host' from Vermont.   Switched our resolvers to use Google's Public DNS (via the same Comcast line) and all services returned to normal.

Packet traces aren't interesting (just outbound traffic, no responses) and traceroutes to the cdn usually succeed.  dns.comcast.net reports no problems.  Queries at the command line sometimes succeed, sometimes fail, sometimes take a long time to finish.

-Bill

<div><div dir="ltr">
<div>
<div>Since about midnight (Eastern) Comcast's DNS (75.75.75.7[5,6]) has been giving timeouts and the occasional 'no route to host' from Vermont.&nbsp;&nbsp; Switched our resolvers to use Google's Public DNS (via the same Comcast line) and all services returned to normal.<br><br>
</div>Packet traces aren't interesting (just outbound traffic, no responses) and traceroutes to the cdn usually succeed.&nbsp; <a href="http://dns.comcast.net">dns.comcast.net</a> reports no problems.&nbsp; Queries at the command line sometimes succeed, sometimes fail, sometimes take a long time to finish.<br><br>
</div>-Bill<br><br>
</div></div>

www.apple.com is gone?

Our monitoring system alerted me to that.  Almost all our DNS servers have
aged it out, except two:

Here's what they return from dig AAAA www.apple.com +short
DNS server: 192.168.0.93
www.isg-apple.com.akadns.net.
www.apple.com.edgekey.net.
e3191.dscc.akamaiedge.net.
e3191.dscc.akamaiedge.net.0.1.cn.akamaiedge.net.

Frank

Kurt Duncan via Outages | 23 Oct 02:37 2014

[outages] FW: Broadvox Down (RESOLVED)

Problem was resolved <15 minutes

 

 

Kurt Duncan

 

From: Kurt Duncan
Sent: Wednesday, October 22, 2014 5:21 PM
To: 'Outages-w8q5NolJmqtAfugRpC6u6w@public.gmane.org'
Subject: Broadvox Down

 

Broadvox  VOIP circuits for inbound DID numbers are 100% down at this time at least on the west coast.  No calls being processed. 

 

 

Kurt Duncan

 

<div>
<div class="WordSection1">
<p class="MsoNormal"><span>Problem was resolved &lt;15 minutes<p></p></span></p>
<p class="MsoNormal"><span><p>&nbsp;</p></span></p>
<div>
<p class="MsoNormal"><span><p>&nbsp;</p></span></p>
<p class="MsoNormal"><span>Kurt Duncan<p></p></span></p>
</div>
<p class="MsoNormal"><span><p>&nbsp;</p></span></p>
<div>
<div>
<p class="MsoNormal"><span>From:</span><span> Kurt Duncan
<br>Sent: Wednesday, October 22, 2014 5:21 PM<br>To: 'Outages@...'<br>Subject: Broadvox Down<p></p></span></p>
</div>
</div>
<p class="MsoNormal"><p>&nbsp;</p></p>
<p class="MsoNormal">Broadvox&nbsp; VOIP circuits for inbound DID numbers are 100% down at this time at least on the west coast.&nbsp; No calls being processed.&nbsp;
<p></p></p>
<p class="MsoNormal"><p>&nbsp;</p></p>
<p class="MsoNormal"><p>&nbsp;</p></p>
<p class="MsoNormal">Kurt Duncan<p></p></p>
<p class="MsoNormal"><p>&nbsp;</p></p>
</div>
</div>
Kurt Duncan via Outages | 23 Oct 02:21 2014

[outages] Broadvox Down

Broadvox  VOIP circuits for inbound DID numbers are 100% down at this time at least on the west coast.  No calls being processed. 

 

 

Kurt Duncan

 

<div>
<div class="WordSection1">
<p class="MsoNormal">Broadvox&nbsp; VOIP circuits for inbound DID numbers are 100% down at this time at least on the west coast.&nbsp; No calls being processed.&nbsp;
<p></p></p>
<p class="MsoNormal"><p>&nbsp;</p></p>
<p class="MsoNormal"><p>&nbsp;</p></p>
<p class="MsoNormal">Kurt Duncan<p></p></p>
<p class="MsoNormal"><p>&nbsp;</p></p>
</div>
</div>
Everton Marques via Outages | 22 Oct 18:19 2014

[outages] Comcast packet loss

High packet loss from Highwinds towards github.com.
It seems the issue is rooted within Comcast.

Time is 16:16:44.371 Wed Oct 22 2014 GMT-0

ping -t 192.30.252.129

Pinging 192.30.252.129 with 32 bytes of data:
Reply from 192.30.252.129: bytes=32 time=474ms TTL=44
Request timed out.
Reply from 192.30.252.129: bytes=32 time=480ms TTL=44
Reply from 192.30.252.129: bytes=32 time=483ms TTL=44
Reply from 192.30.252.129: bytes=32 time=488ms TTL=44
Request timed out.
Reply from 192.30.252.129: bytes=32 time=485ms TTL=44
Reply from 192.30.252.129: bytes=32 time=485ms TTL=44
Reply from 192.30.252.129: bytes=32 time=481ms TTL=44
Reply from 192.30.252.129: bytes=32 time=484ms TTL=44
Reply from 192.30.252.129: bytes=32 time=478ms TTL=44

Ping statistics for 192.30.252.129:
    Packets: Sent = 11, Received = 9, Lost = 2 (18% loss),
Approximate round trip times in milli-seconds:
    Minimum = 474ms, Maximum = 488ms, Average = 482ms
Control-C

#traceroute 192.30.252.129

Type escape sequence to abort.
Tracing the route to 192.30.252.129

  1 200.147.29.137 [AS 7162] 0 msec 0 msec 0 msec
  2 200.147.29.146 [AS 7162] 0 msec 0 msec 0 msec
  3  *  *  *
  4 173.167.57.1 [AS 7922] 120 msec 120 msec 120 msec
  5 68.86.82.249 [AS 7922] 120 msec 124 msec
    68.86.82.253 [AS 7922] 124 msec
  6  *  *  *
  7  *  *  *
  8 68.86.83.86 [AS 7922] 472 msec 472 msec 472 msec
  9  *  *  *
 10  *  *  *
  
Everton
<div><div dir="ltr">
<div>High packet loss from Highwinds towards <a href="http://github.com">github.com</a>.</div>
<div>It seems the issue is rooted within Comcast.</div>
<div><br></div>
<div>Time is 16:16:44.371 Wed Oct 22 2014 GMT-0<br>
</div>
<div><br></div>
<div>ping -t 192.30.252.129</div>
<div><br></div>
<div>Pinging 192.30.252.129 with 32 bytes of data:</div>
<div>Reply from <a href="http://192.30.252.129">192.30.252.129</a>: bytes=32 time=474ms TTL=44</div>
<div>Request timed out.</div>
<div>Reply from <a href="http://192.30.252.129">192.30.252.129</a>: bytes=32 time=480ms TTL=44</div>
<div>Reply from <a href="http://192.30.252.129">192.30.252.129</a>: bytes=32 time=483ms TTL=44</div>
<div>Reply from <a href="http://192.30.252.129">192.30.252.129</a>: bytes=32 time=488ms TTL=44</div>
<div>Request timed out.</div>
<div>Reply from <a href="http://192.30.252.129">192.30.252.129</a>: bytes=32 time=485ms TTL=44</div>
<div>Reply from <a href="http://192.30.252.129">192.30.252.129</a>: bytes=32 time=485ms TTL=44</div>
<div>Reply from <a href="http://192.30.252.129">192.30.252.129</a>: bytes=32 time=481ms TTL=44</div>
<div>Reply from <a href="http://192.30.252.129">192.30.252.129</a>: bytes=32 time=484ms TTL=44</div>
<div>Reply from <a href="http://192.30.252.129">192.30.252.129</a>: bytes=32 time=478ms TTL=44</div>
<div><br></div>
<div>Ping statistics for <a href="http://192.30.252.129">192.30.252.129</a>:</div>
<div>&nbsp; &nbsp; Packets: Sent = 11, Received = 9, Lost = 2 (18% loss),</div>
<div>Approximate round trip times in milli-seconds:</div>
<div>&nbsp; &nbsp; Minimum = 474ms, Maximum = 488ms, Average = 482ms</div>
<div>Control-C</div>
<div><br></div>
<div>#traceroute 192.30.252.129</div>
<div><br></div>
<div>Type escape sequence to abort.</div>
<div>Tracing the route to 192.30.252.129</div>
<div><br></div>
<div>&nbsp; 1 200.147.29.137 [AS 7162] 0 msec 0 msec 0 msec</div>
<div>&nbsp; 2 200.147.29.146 [AS 7162] 0 msec 0 msec 0 msec</div>
<div>&nbsp; 3 &nbsp;* &nbsp;* &nbsp;*</div>
<div>&nbsp; 4 173.167.57.1 [AS 7922] 120 msec 120 msec 120 msec</div>
<div>&nbsp; 5 68.86.82.249 [AS 7922] 120 msec 124 msec</div>
<div>&nbsp; &nbsp; 68.86.82.253 [AS 7922] 124 msec</div>
<div>&nbsp; 6 &nbsp;* &nbsp;* &nbsp;*</div>
<div>&nbsp; 7 &nbsp;* &nbsp;* &nbsp;*</div>
<div>&nbsp; 8 68.86.83.86 [AS 7922] 472 msec 472 msec 472 msec</div>
<div>&nbsp; 9 &nbsp;* &nbsp;* &nbsp;*</div>
<div>&nbsp;10 &nbsp;* &nbsp;* &nbsp;*</div>
<div>&nbsp;&nbsp;<br>
</div>
<div>Everton</div>
</div></div>
Frank Bulk via Outages | 22 Oct 00:01 2014

[outages] Email to Microsoft Office 365 users

Our last queue check reported DNS failures looking up <domain
name>.mail.protection.outlook.com for 11 such domains.

Just picking one, staples.com: 

root <at> nagios:/tmp# dig MX staples.com +short
10 staples-com.mail.protection.outlook.com.
root <at> nagios:/tmp# dig  staples-com.mail.protection.outlook.com

; <<>> DiG 9.7.3 <<>> staples-com.mail.protection.outlook.com
;; global options: +cmd
;; connection timed out; no servers could be reached
root <at> nagios:/tmp#
root <at> nagios:/tmp# host MX staples.com
;; connection timed out; no servers could be reached
root <at> nagios:/tmp#

Anyone else seeing this?  A colleague says that O365 is having issues and
will be forwarding me some details.

Regards,

Frank Bulk

Michael Loftis via Outages | 20 Oct 21:57 2014

[outages] Comcast - Seattle (maybe other areas)

Having serious issues getting outside of Comcast's network starting
around 1250 Pacific time from Seattle area.

--

-- 

"Genius might be described as a supreme capacity for getting its possessors
into trouble of all kinds."
-- Samuel Butler
James Cornman via Outages | 17 Oct 22:07 2014

Re: [outages] Equinix Chicago exchange

I tracked it down to an offending device belonging to 123.net. Still haven't received any peep out of Equinix support.


Filtered it..

mac access-list extended equinix-bad-neighbors
 deny   host 8478.ac4e.90be any
 permit any any
!
interface GigabitEthernet0/50

  mac access-group equinix-bad-neighbors in


On Fri, Oct 17, 2014 at 4:06 PM, Nicholas Schmidt <nschmidt-Qg2TNkI2BF61Z/+hSey0Gg@public.gmane.org> wrote:
Seeing similar. 

Nicholas Schmidt
MediaMath

From: James Cornman via Outages <outages <at> outages.org>
Reply-To: James Cornman <james <at> atlanticmetro.net>
Date: Friday, October 17, 2014 at 3:50 PM
To: "outages-w8q5NolJmqtAfugRpC6u6w@public.gmane.org" <outages-w8q5NolJmqtAfugRpC6u6w@public.gmane.org>
Subject: [outages] Equinix Chicago exchange

Hey all,

Anyone seeing a large influx of broadcast traffic since a little after 3pm EDT on the Equinix exchange in Chicago?

Opening a ticket with Equinix, but just curious if any others have seen anything.



--

James Cornman

Chief Technology Officer
jcornman-q63CSc06zXuqyuYpCWRUfF6hYfS7NtTn@public.gmane.org
212.792.9950 - ext 101

Atlantic Metro Communications, Inc.

4 Century Drive, Parsippany NJ  07054


Data Centers • Managed Hosting • Internet Access • Cloud Computing
Follow  <at> atlanticmetro on Twitter to learn more about daily specials.
www.atlanticmetro.net




--

James Cornman

Chief Technology Officer
jcornman-q63CSc06zXuqyuYpCWRUfF6hYfS7NtTn@public.gmane.org
212.792.9950 - ext 101

Atlantic Metro Communications, Inc.

4 Century Drive, Parsippany NJ  07054


Data Centers • Managed Hosting • Internet Access • Cloud Computing
Follow  <at> atlanticmetro on Twitter to learn more about daily specials.
www.atlanticmetro.net

<div>
<div dir="ltr">I tracked it down to an offending device belonging to <a href="http://123.net">123.net</a>. Still haven't received any peep out of Equinix support.<div><br></div>
<div><br></div>
<div>Filtered it..</div>
<div><br></div>
<div>
<div>mac access-list extended equinix-bad-neighbors</div>
<div>&nbsp;deny &nbsp; host 8478.ac4e.90be any</div>
<div>&nbsp;permit any any</div>
<div>!</div>
<div>interface GigabitEthernet0/50&#8232;</div>
<div>&nbsp; mac access-group equinix-bad-neighbors in</div>
</div>
<div><br></div>
</div>
<div class="gmail_extra">
<br><div class="gmail_quote">On Fri, Oct 17, 2014 at 4:06 PM, Nicholas Schmidt <span dir="ltr">&lt;<a href="mailto:nschmidt@..." target="_blank">nschmidt@...</a>&gt;</span> wrote:<br><blockquote class="gmail_quote">

<div>
<div>Seeing similar.&nbsp;</div>
<div><br></div>
<div>Nicholas Schmidt</div>
<div>MediaMath</div>
<div><br></div>
<span>
<div>
<span>From: </span>James Cornman via Outages &lt;<a href="mailto:outages@..." target="_blank">outages <at> outages.org</a>&gt;<br><span>Reply-To: </span>James Cornman &lt;<a href="mailto:james@..." target="_blank">james <at> atlanticmetro.net</a>&gt;<br><span>Date: </span>Friday, October 17, 2014 at 3:50 PM<br><span>To: </span>"<a href="mailto:outages <at> outages.org" target="_blank">outages@...</a>" &lt;<a href="mailto:outages@..." target="_blank">outages@...</a>&gt;<br><span>Subject: </span>[outages] Equinix Chicago exchange<br>
</div>
<div><div class="h5">
<div><br></div>
<div>
<div>
<div dir="ltr">Hey all,
<div><br></div>
<div>Anyone seeing a large influx of broadcast traffic since a little after 3pm EDT on the Equinix exchange in Chicago?</div>
<div><br></div>
<div>Opening a ticket with Equinix, but just curious if any others have seen anything.</div>
<div><br></div>
<div>
<br clear="all"><div><br></div>
-- <br><span>
<p><span>James Cornman</span></p>
<p><span>Chief Technology Officer<br></span><span><a href="mailto:jcornman <at> atlanticmetro.net" target="_blank"><span>jcornman@...</span></a><br><a href="tel:212.792.9950" value="+12127929950" target="_blank">212.792.9950</a> - ext 101<br><span><br>
Atlantic Metro Communications, Inc.</span></span></p>
<p><span>4 Century Drive, Parsippany NJ&nbsp; 07054</span></p>
<p><span><br></span><span>Data Centers &bull; Managed Hosting &bull; Internet Access &bull; Cloud Computing</span><span><br></span><span>Follow&nbsp;</span><span><a href="http://www.twitter.com/atlanticmetro" target="_blank"><span> <at> atlanticmetro</span></a></span><span>&nbsp;on
 Twitter to learn more about daily specials.</span><span><br><a href="http://www.atlanticmetro.net/" target="_blank"><span>www.atlanticmetro.net</span></a></span></p>
</span>
</div>
</div>
</div>
</div>
</div></div></span>
</div>

</blockquote>
</div>
<br><br clear="all"><div><br></div>-- <br><span><p><span>James Cornman</span></p>
<p><span>Chief Technology Officer<br></span><span><a href="mailto:jcornman@..." target="_blank"><span>jcornman@...</span></a><br>212.792.9950 - ext 101<br><span><br>Atlantic Metro Communications, Inc.</span></span></p>
<p><span>4 Century Drive, Parsippany NJ&nbsp; 07054</span></p>
<p><span><br></span><span>Data Centers &bull; Managed Hosting &bull; Internet Access &bull; Cloud Computing</span><span><br></span><span>Follow&nbsp;</span><span><a href="http://www.twitter.com/atlanticmetro" target="_blank"><span> <at> atlanticmetro</span></a></span><span>&nbsp;on Twitter to learn more about daily specials.</span><span><br><a href="http://www.atlanticmetro.net/" target="_blank"><span>www.atlanticmetro.net</span></a></span></p></span>
</div>
</div>
James Cornman via Outages | 17 Oct 21:50 2014

[outages] Equinix Chicago exchange

Hey all,

Anyone seeing a large influx of broadcast traffic since a little after 3pm EDT on the Equinix exchange in Chicago?

Opening a ticket with Equinix, but just curious if any others have seen anything.



--

James Cornman

Chief Technology Officer
jcornman-q63CSc06zXuqyuYpCWRUfF6hYfS7NtTn@public.gmane.org
212.792.9950 - ext 101

Atlantic Metro Communications, Inc.

4 Century Drive, Parsippany NJ  07054


Data Centers • Managed Hosting • Internet Access • Cloud Computing
Follow  <at> atlanticmetro on Twitter to learn more about daily specials.
www.atlanticmetro.net

<div><div dir="ltr">Hey all,<div><br></div>
<div>Anyone seeing a large influx of broadcast traffic since a little after 3pm EDT on the Equinix exchange in Chicago?</div>
<div><br></div>
<div>Opening a ticket with Equinix, but just curious if any others have seen anything.</div>
<div><br></div>
<div>
<br clear="all"><div><br></div>-- <br><span><p><span>James Cornman</span></p>
<p><span>Chief Technology Officer<br></span><span><a href="mailto:jcornman <at> atlanticmetro.net" target="_blank"><span>jcornman@...</span></a><br>212.792.9950 - ext 101<br><span><br>Atlantic Metro Communications, Inc.</span></span></p>
<p><span>4 Century Drive, Parsippany NJ&nbsp; 07054</span></p>
<p><span><br></span><span>Data Centers &bull; Managed Hosting &bull; Internet Access &bull; Cloud Computing</span><span><br></span><span>Follow&nbsp;</span><span><a href="http://www.twitter.com/atlanticmetro" target="_blank"><span> <at> atlanticmetro</span></a></span><span>&nbsp;on Twitter to learn more about daily specials.</span><span><br><a href="http://www.atlanticmetro.net/" target="_blank"><span>www.atlanticmetro.net</span></a></span></p></span>
</div>
</div></div>
Morgan Miskell via Outages | 17 Oct 15:51 2014

[outages] Windstream Long Distance

Windstream Long Distance appears to be down for us....might be a decent
size issue for them since I've been on hold to report the issue for 15
minutes which I interpret to mean that their call center is getting
slammed!
--

-- 
Morgan A. Miskell
CaroNet Data Centers
704-643-8330 x206
----------------------------------------------------------------------------
The information contained in this e-mail is confidential and is intended
only for the named recipient(s). If you are not the intended recipient
you must not copy, distribute, or take any action or reliance on it. If
you have received this e-mail in error, please notify the sender. Any
unauthorized disclosure of the information contained in this e-mail is
strictly prohibited.
----------------------------------------------------------------------------


Gmane