- NZNOG - lists.nznog.org

Spam from inside qwest.net
by Mark Foster 25 May '02

25 May '02

Im being spammed from a netblock inside qwest... ive made three individual attempts to mail their abuse people and get nothing but their automated bounce message... Has anyone successfully dealt with spam or abuse inside qwest.net ? At this point im considering blocking the MTA concerned from connecting to my server, but then theyll just go to my backup MX (who doesnt want to impose the same restrictions that I am willing to.. *frustrated*. Mark. - To unsubscribe from nznog, send email to majordomo(a)list.waikato.ac.nz where the body of your message reads: unsubscribe nznog

6 10

Looking Glass.
by Simon Lyall 23 May '02

23 May '02

I have a little Looking Glass online at: http://www.usenet.net.nz/lg.cgi that people might be find useful. It's looking at what people are sending to ihug plus ihug's advertisements. -- Simon J. Lyall | Very Busy | Web: http://www.darkmere.gen.nz/ "To stay awake all night adds a day to your life" - Stilgar | eMT. - To unsubscribe from nznog, send email to majordomo(a)list.waikato.ac.nz where the body of your message reads: unsubscribe nznog

1 0

quest.net.nz ?
by Simon Lyall 23 May '02

23 May '02

It's just been pointed out to me that these guys appear to have vanished. Anyone have some further details? I just need to know if I should remove them from the Noc and Ape webpages. Their phone numbers are all disconnected and the domains don't look very healthy either. Simon. -- Simon J. Lyall. | Very Busy | Mail: simon(a)darkmere.gen.nz "To stay awake all night adds a day to your life" - Stilgar | eMT. - To unsubscribe from nznog, send email to majordomo(a)list.waikato.ac.nz where the body of your message reads: unsubscribe nznog

3 3

Ihug Domestic peering prefix update (AS7657)
by Leon Chang 22 May '02

22 May '02

Please change the network 210.55.203.0/24 to 210.55.202.0/23 le 24 Full prefix list attached for your reference. ip prefix-list ihug-networks: 53 entries seq 5 permit 202.36.94.0/23 le 24 seq 10 permit 202.37.21.0/24 seq 25 permit 202.37.162.0/24 seq 30 permit 202.37.182.0/24 seq 40 permit 202.49.88.0/23 le 24 seq 45 permit 202.49.148.0/23 le 24 seq 50 permit 202.49.176.0/24 seq 55 permit 202.49.177.0/24 seq 60 permit 202.49.180.0/24 seq 65 permit 202.49.186.0/24 seq 70 permit 202.49.241.0/24 seq 75 permit 202.49.242.0/24 seq 80 permit 202.49.249.0/24 seq 85 permit 202.49.252.0/23 le 24 seq 90 permit 202.49.255.0/24 seq 95 permit 202.50.103.0/24 seq 100 permit 202.50.84.0/24 seq 105 permit 203.109.128.0/18 le 24 seq 109 deny 203.109.252.0/22 ge 23 seq 110 permit 203.109.192.0/19 le 24 seq 115 permit 203.109.224.0/19 le 24 seq 120 permit 203.173.192.0/19 seq 140 permit 203.96.125.0/24 seq 145 permit 203.173.224.0/20 seq 150 permit 206.17.112.0/21 le 24 seq 155 permit 206.18.96.0/20 le 24 seq 160 permit 207.17.104.0/21 le 24 seq 165 permit 207.212.238.0/23 le 24 seq 175 permit 207.213.218.0/24 seq 180 permit 207.214.12.0/23 le 24 seq 185 permit 207.214.7.0/24 seq 190 permit 209.232.124.0/23 le 24 seq 195 permit 209.233.54.0/23 le 24 seq 200 permit 209.233.56.0/22 le 24 seq 205 permit 209.76.100.0/22 le 24 seq 210 permit 209.76.148.0/22 le 24 seq 215 permit 209.77.128.0/22 le 24 seq 225 permit 209.78.48.0/24 seq 230 permit 209.79.136.0/24 seq 235 permit 209.79.139.0/24 seq 240 permit 209.79.142.0/24 seq 245 permit 210.55.184.0/24 seq 250 permit 210.55.202.0/23 le 24 seq 255 permit 210.55.248.0/24 seq 265 permit 210.55.251.0/24 seq 270 permit 210.55.252.0/24 seq 310 permit 202.50.255.0/24 seq 320 permit 202.37.44.0/24 seq 325 permit 203.173.244.0/22 seq 330 permit 203.173.204.0/23 seq 335 permit 202.49.252.0/22 seq 340 permit 202.49.180.0/23 seq 345 permit 202.49.181.0/24 Leon Chang, CCNP, CCDP Senior Network Engineer The Internet Group Ltd. (IHUG), Auckland, New Zealand AS7657 PH: +64 9 359 2710 --------------------------------------------------------------------- - To unsubscribe from nznog, send email to majordomo(a)list.waikato.ac.nz where the body of your message reads: unsubscribe nznog

1 0

RE: WIX/APE route servers (WARNING useful content)
by Frank March 22 May '02

22 May '02

> -----Original Message----- > From: Joerg Micheel [SMTP:joerg(a)cs.waikato.ac.nz] > Sent: Thursday, 23 May 2002 09:41 > To: Roger De Salis > Cc: Dean Pemberton; NZNOG List; k claffy; David Moore > Subject: Re: WIX/APE route servers (WARNING useful content) > > On Wed, May 22, 2002 at 08:24:59PM +1200, Roger De Salis wrote: > > APNIC quote several examples of poor policy within national > > communications framework where local traffic travels to the US > > backbone and back, due to local regualtions that make peering > > impossible. (India is a classic example.) > > We have backbone data from an OC48MON in San Jose which confirms > this kind of erratic routing for a number of countries in the > Asia Pacific. If you need more details, we should get CAIDA > involved in this discussion. > This discussion has a direct bearing on the matter of international Internet charging about which I have posted on a number of occasions. There is a widespread movement in intergovernmental organisations (APEC TEL, APT, ITU-T, ITU-D) attempting to first measure international traffic (nothing wrong with that), second assess who benefits (by some yet to be determined means), and then through some regulatory mechanism institute a 'fairer' cost sharing mechanism. There is no prize for essays outlining the numerous pitfalls in all of this. At the same time, there is some evidence that NZ is quite disadvantaged cf US operators by the present 'smallest ISP/carrier carries all the connnection costs' system. For example we have some very new survey results indicating that 18% of NZ firms with 50+ staff locate their web sites off shore (presumably, mainly in the US). Having better peering systems world-wide would not actually assist NZ much in this as we face the same problem with links to Australia and Asia as we do to the US. Nevertheless, saner peering would reduce costs overall and increase reliability, decrease latency, etc. I would very much appreciate anyone with information relating to influences on current traffic flows and especially regulatory effects, such as the regulatory system in India which prevents local peering, contacting me directly. Frank March Specialist Advisor, IT Policy Group Ministry of Economic Development, PO Box 1473, Wellington, NZ Ph: (+64 4) 474 2908; Fax: (+64 4) 471 2658 Any opinions expressed in this message are not necessarily those of the Ministry of Economic Development. This message and any files transmitted with it are confidential and solely for the use of the intended recipient. If you are not the intended recipient or the person responsible for delivery to the intended recipient, be advised that you have received this message in error and that any use is strictly prohibited. Please contact the sender and delete the message and any attachment from your computer. - To unsubscribe from nznog, send email to majordomo(a)list.waikato.ac.nz where the body of your message reads: unsubscribe nznog

2 1

Xtra APE circuit down
by Peter Fitchett 22 May '02

22 May '02

FYI Xtra's APE circuit went down this morning at about 4.20am The fault is under action. regards peter - To unsubscribe from nznog, send email to majordomo(a)list.waikato.ac.nz where the body of your message reads: unsubscribe nznog

1 0

RPSL on rs2.ape.net.nz - a request for help.
by Simon Blake 21 May '02

21 May '02

Hi Folks ASJL and I are working on RPSL on the second route server on APE, we're investigating ways of making the route servers better, stronger, more trustworthy, and easier to use for the ISP's out there. To that end, we need as many peers advertising routes into the route server as we can lay our grubby mitts on. So, a request please - if you're on APE, can you set up a peering session with 192.203.154.2 on ASN 9560, and drop me a line with your prefix list in it. At this stage, I'd recommend ignoring everything you receive from the route servers. Thanks muchly Si - To unsubscribe from nznog, send email to majordomo(a)list.waikato.ac.nz where the body of your message reads: unsubscribe nznog

1 1

RE: Red Alert - sharp increase port 1433 (MS SQL) scans
by Arjen De Landgraaf 21 May '02

21 May '02

For those who are interested, a rolling update on the 1433/SQL Snake outbreak is published in "Latest Security News" at www.e-secure-it.us The document Port 1433/SQL Snake Update(text)is updated whenever new details become available. Arjen - To unsubscribe from nznog, send email to majordomo(a)list.waikato.ac.nz where the body of your message reads: unsubscribe nznog

1 0

RE: Red Alert - sharp increase port 1433 (MS SQL) scans
by Michael Bordignon 21 May '02

21 May '02

we've been getting alot of these too - 3 connections from each host, 21 so far (all today, between 11am and 4pm) - michael -----Original Message----- From: Arjen De Landgraaf [mailto:arjen.de.landgraaf(a)cologic.co.nz] Sent: Tuesday, 21 May 2002 3:44 PM To: nznog(a)list.waikato.ac.nz Subject: Red Alert - sharp increase port 1433 (MS SQL) scans Importance: High We just issued a "Red Alert" on a rapid and sharp increase in port 1433 TCP probes. If you have MS SQL Server behind web services, you should monitor. Further information will be available shortly under newsitems at: www.e-secure-it.us www.e-secure-it.co.nz Arjen de Landgraaf E-Secure-IT - To unsubscribe from nznog, send email to majordomo(a)list.waikato.ac.nz where the body of your message reads: unsubscribe nznog

4 3

Red Alert - sharp increase port 1433 (MS SQL) scans
by Arjen De Landgraaf 20 May '02

20 May '02

We just issued a "Red Alert" on a rapid and sharp increase in port 1433 TCP probes. If you have MS SQL Server behind web services, you should monitor. Further information will be available shortly under newsitems at: www.e-secure-it.us www.e-secure-it.co.nz Arjen de Landgraaf E-Secure-IT - To unsubscribe from nznog, send email to majordomo(a)list.waikato.ac.nz where the body of your message reads: unsubscribe nznog

1 0