44net

44net@mailman.ampr.org

3194 discussions

strange login attempts to AMPR Hosts
by R P 05 Apr '16

05 Apr '16

Hi group The mikrotik router log show me every half minute a telnet and SSH login attempt it last for hours the strange thing is that the IP it is using was not active in the AMR DNS up to yesterday and right after i have add it to the DNS and connected the router the login attempt tried I have traced two off the breakers and one is in Poland and other is in China Is it common that someone try to brake our network hosts ? do you see such things at your hosts too ? how someone discover so quick about an active host in a Whole class A network ? What is your solution \ reaction for such a brake attempts ?? Thanks for every clarifications Regards Ronen - 4Z4ZQ http://www.ronen.org Ronen Pinchooks (4Z4ZQ) WebSite<http://www.ronen.org/> www.ronen.org ronen.org (Ronen Pinchooks (4Z4ZQ) WebSite) is hosted by domainavenue.com

3 2

How to config mikrotik router for IPIP (and more)
by R P 05 Apr '16

05 Apr '16

Hi there I got few hours ago Mikrotik router I must say it look impressive from the web interface it have I have some questions May anyone send me the commands needed to make an IPIP tunnel (lets start with IPIP Tunnel to the UCSD Router) and if any route command needed to be add please write it to me as well Im new to the mikrotik routers but they look very professional certainly comparing the TP-link stuff 2) can a interface of the microtik (say the lan port) have two ip addresses (like the Cisco Router do with the command : ip address a.b.c.d 1.2.3.4 (subnet) secondary ) ? 3) The router lan port have no default gateway and therefore if i connect the router lan (which is also connected to the wifi part of it) Is there any way to connect the router lan port to the net and have it to be able to get a default gateway ? Thanks For any help Regards Ronen - 4Z4ZQ http://www.ronen.org Ronen Pinchooks (4Z4ZQ) WebSite<http://www.ronen.org/> www.ronen.org ronen.org (Ronen Pinchooks (4Z4ZQ) WebSite) is hosted by domainavenue.com

6 15

Re: [44net] How to config mikrotik router for IPIP (and more)
by Rob Janssen 05 Apr '16

05 Apr '16

> The best for now is to give up, and use some Linux device (like > Raspberry Pi) to set 44networking. We've been telling him that for weeks now... Of course, now he has a MikroTik router which is much more flexible than the average router. These things (as tiny as they are) can run a virtual machine! (the feature called Metarouter) It may be possible to run a small virtual machine with Linux on it, that either does the tunnel and RIP processing, or is running the script to re-configure the main router all the time to add/remove the tunnels. That way it may be possible to get it working even on this low-end router, with the advantage that it has multiple ethernet ports and even WiFi. It would actually be nice to have a solution for the appliance operator to get an IPIP tunnel, although there of course are many challenges to overcome. I should find time to play with the Metarouter running plain Linux... Rob

3 5

Re: [44net] How to config mikrotik router for IPIP (and more)
by Rob Janssen 05 Apr '16

05 Apr '16

> I can set it up to run with > cron so that it emails you the list of commands needed to update it > every hour. After a few hours of this, you may understand why it is > provided as an automatic script! This is why a Linux system (e.g. Raspberry Pi) running ampr-ripd is so much easier! Did you ever try to run Linux under Metarouter and run ampr-ripd on that? I think an OpenWRT image is available that could be stripped down to a bare Linux system that could handle the tunnel routing as a Metarouter on certain types of MikroTik. (RB750, RB2011 etc) Of course Ronen will not be able to figure that out himself, but maybe he could run it when a ready-made image is available for download. I have not yet tried Metarouter myself, always enough things to do :-) Rob

2 1

UCSD gateway filters
by Marius Petrescu 01 Apr '16

01 Apr '16

Lately I have a lot of domain response traffic from china, probably a dns amplification attack targeting the host 42.202.148.15. The used address which gets that traffic is mainly 44.182.20.27. Other hosts of this subnet also receive traffic via the ucsd tunnel (44.182.20.*, 44.182.230.*). These addresses have no registered host name and thus should be dropped by the gateway, but this is not happening. Anyone knows an explanation or is it a gateway bug? Marius, YO2LOJ

2 2

Suspend routing
by Assi Friedman 29 Mar '16

29 Mar '16

Is there a simple way to suspend routing from mirrorshades to my segments? Without putting an invalid IP (BAD), or canceling the allocation, I don't see a simple option. I am currently doing a network upgrade and will looe AMPRNet support for a while. Obviously, I can just leave it as is and the host machines will just ignore the traffic. Thanks, Assi

2 1

Re: [44net] IP assignment history
by Rob Janssen 29 Mar '16

29 Mar '16

> I don't think git or subversion existed back then According to Wikipedia, SCCS was developed in 1972 and RCS in 1982. However, in those days most of us could not afford a Unix machine. It was only end 1992 when I built a system running Linux and all of this became much easier. I became coordinator in 1996, and my predecessor PA0GRI had used Unix at home much earlier than me. (I think he had a Unix system on packet radio in 1988 or so) He developed the scripts used to send update mails to the robot, which I continue to use. These just save a copy of the mails sent to the robot. That is about 5MB now. Does not seem much, but there have been times this was most of the harddisk capacity of a computer... :-) Rob

1 0

IP assignment history
by Bill Vodall 29 Mar '16

29 Mar '16

Is there any history maintained of the address assignments? I've been thinking it would be interesting if I could pick up the date of my first use back around 1990 in Colorado. 73 Bill, WA7NWP

4 5

Testers/Consideration/Inquiry - Coordinating the Private AS Numbers
by lleachii＠aol.com 27 Mar '16

27 Mar '16

All, ASNs 64,512 to 65,534 of the original 16-bit AS range, and 4,200,000,000 to 4,294,967,294 of the 32-bit range are commonly used amongst persons on the same network to coordinate routing, etc. While, it's not yet feasible, there is much research into technologies (e.g. space elevators), willingness of sponsors for satellites/availability/etc., and availability of machines, embedded devices, network cards, etc. tinkering into consumer-grade hardware capable of multi homing and routing. Also, lets recall, some of our operators have access to carrier-grade devices as well. Considerations: - those on BGP'd islands of the Public Internet (announcing their allocations with LOAs/Public ASNs,etc.) would still be so (this is no different than stations with allocations that use their allocations in a manner that would not route back to AMPR anyway), they must be considered as those taking allocations to use without AMPR connection, but there are more options for current and future connectivity with BGP - RIP44 can still remain in use. In addition, there are multiple methods to remove your own routes and those of others. You simply remove the route of those you peer with, change metrics, etc. - My router (and, I would assume those of many others that have been flashed, etc.) are capable of forwarding packets, regardless of source/destination IP. We could test the possibility of switching from a star (reliance on AMPRGW's 100% uptime for 'real-time' route updates) to a mesh, where we peer with those who choose, have a large connection, are physically interconnected to one another, etc. - (in the future) anyone, including those on the Public Internet, could volunteer to announce more specific routes for IPIP allocations (with the proper authorization requested by the allocation holder) and then maintain a tunnel, RF link, etc. - could connect to someone who could provide the AMPRGW. - there is a movement in many areas to establish HSMM in many regions of the world, but there have been many hindrances to their ability to a.) interconnect beyond their island-of-connectivity and 2.) not rely on the same factor/conditions that could cause a loss of commodity Internet connectivity in order to reach other subnets - in these considerations, AMPRNet's 100% reliance on AMPRGW and not devising methods not to rely on the commodity Internet for Islands of interconnectivity could cause issues in a real emergency scenario Goal: - to attempt to alleviate load/reliance on AMPRGW - provide redundancy - test the possibility to geographical alternatives to AMPRGW - consider test the need of issuance of private ASN space for these purposes TEST: I'm looking for anyone currently using IPIP only that's GEOGRAPHICALLY CLOSER (I am connected to the Internet through Verizon via Ashburn/Wash.DC) to me than AMPRGR, AND/OR a BGP's station willing to coordinate establishment of a point-to-point VPN tunnel, over which we will announce our own allocations and/or those in the AMPR test subnet. I am willing to assist with documentation, graphing etc. To-do: - Establish sessions - setup test hosts - test multihoming, availability, etc. - test route prioritization, etc. - lastly, test (with permission) loss of a stations default route via tunl0 and using the other session - test with stations who may be located physically nearby (fiber, RF, etc.) ***Please let me know your thoughts, opinions, etc.*** 73, - Lynwood KB3VWG

6 29

Re: [44net] IP assignment history
by Rob Janssen 27 Mar '16

27 Mar '16

> Subject: > Re: [44net] IP assignment history > From: > Jay Nugent <jjn(a)nuge.com> > Date: > 03/27/2016 08:49 PM > > To: > AMPRNet working group <44net(a)hamradio.ucsd.edu> > > > Greetings, > I have ALL of my IP Address/Hostname requests (with all contact information for those end users) going back to at least March of 1998 and probably even YEARS further back than that (saved on a different hard disk), from when I was the AMPRnet IP > Address Coordinator for 44.102/16 in the state of Michigan. > > I also have a copy of each and every ENCAP.TXT file saved from the 1st of the every month, also going back to at least March 1998 and probably for years further back that that. > > Doesn't *EVERY* IP Coordinator have good archival records of their activities, and that of their 'customers' for which they serve? Just poking a little fun here... :) I have copies of the mails sent to the DNS robot since January 1994 and also copies of most of the requests received from the users. Unfortunately I have not kept an easily accessible list of contact information. It would be possible to construct it from the request mails, but it would be a lot of work. I'm a bit surprised that the processed robot mails are not saved, but maybe now they are... (disk space has become much cheaper than it was back then) Rob

2 1

Jump to page:

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

44net