IRC Logs

Network: freenode Channel: #cisco

	Enter your search terms Submit search form
	Web www.irclog.org

[22:15]<vwcd>+you can mitigate it with a device, provided you've got the bandwidth to absorb the attack, see http://www.cisco.com/en/US/products/ps5888/index.html
[22:15]<vwcd>+you can ask your upstream(s) to attempt mitigation as well, though many will only block traffic to a particular ip address which leaves the target dead (as was the ddos intent anyway).
[22:16]<jj_jj>+could we ddos from a Cisco router ?
[22:19]<vwcd>+wouldn't be very distributed if you have a single router.
[22:20]<vwcd>+go away.
[22:21]<jj_jj>+i just asked u a question bro
[22:21]<jj_jj>+:(
[22:21]<2zdsnpzz>+Heh
[22:21]<mw9>+:))
[22:21]<2zdsnpzz>+What's wrong with people?
[22:23]<2zrgvj>-hahahaaaa
[22:27]<mw9>+Artaban; hellou:)
[22:27]<znmwzzms1q1>-(:))
[22:27]<znmwzzms1q1>-* *
[22:27]<rzvr2rg>+d14 hi there :}
[22:27]<mw9>+:}
[22:41]<-- dyzyvzf00 xzs fuy>http://www.digital00.com <-- NEW!")
[23:20]<hrcknt|fyzz>-anybody using object tracking and could give me some directions?
[23:21]<hrcknt|fyzz>-or any other method of how to determin when an interface in an BGP AS goes down that does not belong to you ;)
[23:22]<hrcknt|fyzz>-got an mpls cloud and two links to it, so I guess I'll have to use a floating static, as I can't know and won't know when the interface on the ISP router goes down,
[23:22]<hrcknt|fyzz>-but then again if I use a watchlist or something, then I need to add nearly all routes I have in the mpls otherwise if the far end of one office would go down I would reroute via the backup link with lower bandwidth, no?
[23:23]<2zrgvj>-if the remote office's link goes down, why would you want the local office to take another path?
[23:24]<2zrgvj>-let me rephrase...
[23:24]<2zrgvj>-if the remote office's link goes down, why would you want traffic TO the local office to take another path?
[23:25]<hrcknt|fyzz>-let's say I am router A in london and have a link via the MPLS ISP's router (B)
[23:25]<hrcknt|fyzz>-I need to know when router's B link to the MPLS goes down
[23:25]<hrcknt|fyzz>-so I can reroute from A via a different link
[23:25]<2zrgvj>-it's directly attached to router a... you will know
[23:26]<hrcknt|fyzz>-in the BGP cloud it is easy I will advise the ISP to advertise a second default with ahigher metric
[23:26]<hrcknt|fyzz>-it is, but it isn't mine
[23:26]<hrcknt|fyzz>-so it does not belong to my OSPF area
[23:26]<hrcknt|fyzz>-so I won't know
[23:26]<2zrgvj>-you speak BGP to it...
[23:27]<hrcknt|fyzz>-ISP will never allow
[23:28]<hrcknt|fyzz>-so I touhght I could track the interface or the route but then again I have many routes to track ... to make sure it does not kick in when only one e.g. far end is down
[23:28]<hrcknt|fyzz>-any ideas? hints?
[23:28]<2zrgvj>-if the interface of the PE router goes down, whatever protocol you are using to share prefixes with the ISP (BGP/EIGRP/OSPF/RIP) will detect it
[23:29]<hrcknt|fyzz>-if they would participate in my OSPF yes .... would....
[23:29]<2zrgvj>-if not OSPF, use bgp
[23:30]<hrcknt|fyzz>-they won't let me participate their router
[23:30]<hrcknt|fyzz>-(or can I do it without them? (me noob)
[23:30]<2zrgvj>-what ISP/carrier is this that won't let you peer with them for an MPLS VPN?!
[23:30]<2zrgvj>-is it a managed service?
[23:31]<hrcknt|fyzz>-well I the london cloud is not MPLS
[23:31]<hrcknt|fyzz>-it is manged.. Colt...
[23:31]<hrcknt|fyzz>-managed
[23:32]<hrcknt|fyzz>-I have trhee sites in London and 1 MPLS cloud for the rest of europe and two links from london into the cloud but not directly participating, only a hop given from the ISP
[23:35]<2zrgvj>-how many links are directly into the cloud?
[23:35]<hrcknt|fyzz>+2
[23:35]<hrcknt|fyzz>+(well via their PE)
[23:36]<hrcknt|fyzz>+one straight here next to my router the other one in a different colocation in frankfurt via a ip vpn 4 M line
[23:40]<2zrgvj>-does frankfurt have direct Internet connectivity?
[23:40]<hrcknt|fyzz>+nope
[23:40]<2zrgvj>-yeah, you
[23:40]<2zrgvj>-'re screwed
[23:40]<hrcknt|fyzz>+via London, we have two pipes here in two different sites
[23:41]<hrcknt|fyzz>+hehe thuoght so
[23:41]<2zrgvj>-you need another circui somewhere directly attached to the cloud
[23:41]<hrcknt|fyzz>+but what about the floating static... and tracking the routes?
[23:41]<hrcknt|fyzz>+and i just say if 10 of the 14 or whatever it is goes down... kick in the second route(s)
[23:41]<2zrgvj>-that won't do you any good if all you have are 2 connection points to the MPLS cloud
[23:42]<hrcknt|fyzz>+why not?
[23:43]<2zrgvj>-if you have 2 connection points to the cloud... one in frankfurt, the other in london, then if one goes down?
[23:43]<hrcknt|fyzz>+than I am screwed hehe
[23:43]<hrcknt|fyzz>+but at least not if the ISP's one fail
[23:47]<hrcknt|fyzz>+thx for picking ur brains on this branto - we'll change ISP soon (well kind of) anyway
[23:51]<deee>-HaCKeT|FiZZ: whatever you do .. don't go with NTL's mpls :)
[23:51]<hrcknt|fyzz>+mzzz can't be worse then Colt can it? ;)
[23:53]<deee>-i've only dealt with colt a couple of times and found them ok... NTL is like getting blood from a stone :(
[23:53]<hrcknt|fyzz>+well the people are ok ( our accaountmanager is really good) just that he got behind him is crap....
[23:53]<hrcknt|fyzz>+we got soo many outages
[23:54]<hrcknt|fyzz>+link down here, link down there. cable unplugged in the colocation for 1 day and couldn't find the error...
[23:55]<hrcknt|fyzz>+(seriously) 1 DAY!!! just because some clamsy id...t unplugged a cable somewhere (well two actually he killed the second link as well)
[23:55]<deee>-thats bad!
[23:55]<deee>-we've just had poor speeds with NTL
[23:56]<hrcknt|fyzz>+that as well our 12M internet pipe... the 4M we have in a different office is faster then the 12M
[23:56]<hrcknt|fyzz>+poorest speeds ever
[23:57]<deee>-i think we should've stuck with BT - we were using our own routers so had full control over IOS, SNMP, Netflow etc. and we had good speeds .... but NTL did offer to halve our bill which was always going to win over the management

Back to #cisco
Or go to some related logs:
#netbsd
#gentoo
#gentoo
#gentoo
#suse