> Subject:
> [44net] Suspected Spam or Phishing Request through the AMPR portal
> From:
> Elias Basse <kd5jfe(a)gmail.com>
> Date:
> 12/31/2015 02:17 PM
>
> To:
> AMPRNet Working Group Email <44net(a)hamradio.ucsd.edu>
>
>
> All,
>
> Received a strange request today for an allocation.
>
> You have received a request for an IP allocation from:
> Name: Rickey Francis
> Email:Admin@abc-hosters.com <mailto:Admin@abc-hosters.com>
> Callsign: RSF8192
>
> The request details are as follows:
> Type: user
> Network: 44.108.230.0 / 32
> Connection: TUNNEL
>
> Please note that this has an invalid callsign, email address that is a bit hard to believe, and this points to a hosting company somewhere.
>
> Anyone have any ideas???
>
> I Rejected it solely on the basis that it does not have a valid amateur radio callsign attached and I suspect that they are trying to use the address space for personal use (i.e. they are a hosting company) I only see one valid Rickey Francis in the QRZ database and that is in Washington state.
>
> Has anyone else received any strange request via the portal?
>
> Thanks!
>
> Best Regards,
>
> Elias Basse
> KD5JFE
> Lousiana Amprnet Coordinator
Was there no spammy message in the free text area of the request?
(this is forwarded as a separate attachment by the portal)
Normally spammers use methods like this (filling in forms on websites) to spread some form of spam, at the
minimum some URL of a website they want you to go to. But maybe in this case it was not spam or phishing but an
attempt to get something registered. Some users are very confused about how to use the AMPR net.
Unfortunately when you do a reject on a portal request that fact is always mailed back to the e-mail contact, I have asked for
a way to silently remove requests so invalid requests like this can be deleted without resulting in a mail to an innocent person
or invoke another reply by the requester.
I think it has not yet been implemented.
Rob
All,
Received a strange request today for an allocation.
You have received a request for an IP allocation from:
Name: Rickey Francis
Email: Admin(a)abc-hosters.com <mailto:Admin@abc-hosters.com>
Callsign: RSF8192
The request details are as follows:
Type: user
Network: 44.108.230.0 / 32
Connection: TUNNEL
Please note that this has an invalid callsign, email address that is a bit hard to believe, and this points to a hosting company somewhere.
Anyone have any ideas???
I Rejected it solely on the basis that it does not have a valid amateur radio callsign attached and I suspect that they are trying to use the address space for personal use (i.e. they are a hosting company) I only see one valid Rickey Francis in the QRZ database and that is in Washington state.
Has anyone else received any strange request via the portal?
Thanks!
Best Regards,
Elias Basse
KD5JFE
Lousiana Amprnet Coordinator
As Brian said there is no central authority. The formula is based off
your MAC address.
>From memory it simply does HEX to decimal conversion for each of the
last 3 octets.
I found this:
http://bloodhound.aredn.org/products/AREDN/wiki/TechRef/GUI/admin/PerlUI_IP…
>The ham meshnet folks use net 10 internally; they assign the addresses
>by a formula. They don't have a central IP authority. I don't recall
>the exact formula and whether it's based on an encoding of the callsign
>or the location of the station, but it was explained in a paper they published
>in a past TAPR DCC, either 2013 or 2014.
>- Brian
Hi all, fairly new to the list but definitely interesting and enjoyable
reading. On to the specific question, I have recently set up JNOS (PI) BBS,
and have a specific AMPR IP for JNOS (44.22.0.11/32 ), is there a specific
gateway address I should be using, or do I need to setup a AMPRNET gateway
router? Fairly versed in Linux, although by no means an expert, if I do need
to setup a router, can this be done on the same PI? Any assistance or
guidance would be greatly appreciated,.. Thanks All,..
- Garth
> Subject:
> [44net] Using Cisco Router as a gateway ?
> From:
> Drorap <drorap(a)netvision.net.il>
> Date:
> 12/26/2015 10:22 PM
>
> To:
> AMPRNet working group <44net(a)hamradio.ucsd.edu>
>
>
> Hi there
> I have started to config a Cisco rouer to serve as a gateway for the AMPRNET
> I put in the command the following lines
>
> interface Tunnel0
> ip unnumbered Ethernet0
> no ip directed-broadcast
> tunnel source Ethernet0
> tunnel destination 132.239.255.131
> tunnel mode ipip
Unfortunately due to the way tunnels work in Cisco and other commercial routers you will
need to repeat that 300 times with different destinations and setup 500 routes to route the
traffic, and repeat that regularly because the destinations and routes change all the time.
With a Linux system instead of the Cisco you can automate that very easily. There are
possibilities to automate it on the Cisco (see that link Steve gave you) but still it will be a lot
easier to just use a Raspberry Pi or other small Linux system.
Rob
> Subject:
> Re: [44net] Using Cisco Router as a gateway ?
> From:
> Drorap <drorap(a)netvision.net.il>
> Date:
> 12/27/2015 10:09 PM
>
> To:
> AMPRNet working group <44net(a)hamradio.ucsd.edu>
>
>
> Dear Rob
> I used to do it 15 years ago and it worked
> I even publishe the config file to the Gateways users group that time
> I did a bi directional tunneling to UCSD (that time it was called mirrorshades) and let him deal with all the neccessary routes
That is considered unacceptable behaviour....
To be a good gateway in the IPIP tunnel system you need to setup tunnels to all the other systems in the network.
I think it currently does not even work anymore as the UCSD system now blocks such wrongly routed traffic.
In a Linux system as a router, you need only one tunnel interface and the tunnel endpoints are defined in the route table
(can be put in a separate route table when you want to use the same system both for internet and 44-net)
That route table is automatically kept uptodate using a RIP daemon like ampr-ripd. Simple one-time setup and no more need to look
after it and run regular scripts that fetch files and send commands. When someone changes their external address
or subnets they route, your system will know about it after 5 minutes.
But when you want to do it the difficult way, please go ahead!
After all, learning and experimenting is what it is all about.
Ready and working setups are not as interesting as finding out yourself how it all works and what are advantages and
disadvantages of each method.
Rob
Use use protocol 4.
Beyond that I am not going to be able to help you, as I don't have any
Cisco stuff.
I snagged this from the list some time back that might be of help.
And you might want to reach out to Jason KY9J.
http://www.qsl.net/kb9mwr/wapr/tcpip/cisco.txt
Hello all,
This is a little off the topic of 44 network, but I am curios. The
44 network is split into many regions for Amateur Radio to use.
But does anyone know on how the10.x.x.x network is assign to Amateur
Radio Ham Mesh network?
Is there someone or a group that have the responsibility on dishing ip
addresses? Sorry for the band width, but
just curios.
K6DLC
--
Daniel Curry
IPV6 Sage Certified
PGP: AD5A 96DC 7556 A020 B8E7 0E4D 5D5E 9BA5 C83E 8C92
San Francisco/Silicon Valley AmprNet Co-coordinator [44.4.0.0/16]
FYI: This is how a DNS attack reply profile looks like...
(Seen via AMPR gateway, as someone uses YO addresses as the reply address)
The reply amplification can be nicely seen for each attack sequence – targets are some hosts in China.
http://www.yo2loj.ro/files/dns_attack_replies.png
73s de Marius, YO2LOJ
> Subject:
> Re: [44net] Portal API: networks and allocations
> From:
> Tom Hayward <esarfl(a)gmail.com>
> Date:
> 12/21/2015 09:20 PM
>
> To:
> AMPRNet working group <44net(a)hamradio.ucsd.edu>
>
>
> On Mon, Dec 21, 2015 at 12:02 PM, Rob Janssen<pe1chl(a)amsat.org> wrote:
>> >You can do that by simply watching the RIP broadcast and filter your own
>> >external address.
>> >This is what ampr-ripd also does.
> Wouldn't this only work for networks in the encap with assigned
> gateways? I was planning to use it with direct/BGP allocations, not
> tunneled, so there would be no entry in the encap.
>
> Tom KD7LXL
>
I think there is no entry in the portal either... at least there need not be one.
Anyway, I never do really basic config using a method this complicated. Risk is to high that
it fails, e.g. when the portal is offline. I keep a file with important config items as a shell script
and source it wherever it is required.
Rob
