- swinog - vmaill01.sys

### SwiNOG #39 - Agenda ###
by Simon Ryf 11 Sep '24

11 Sep '24

Dear community, The Agenda for SwiNOG #39 – Wednesday 25th of September 2024 is published. https://www.swinog.ch/meetings/swinog39/ Registration is open until September 15th (after that you need to request late registration) https://register.swinog.ch/ Gurtenbahn change Please note, there is a new way how Gurtenbahn (the Cablecar to the event location) is handling tickets. You still don’t have to pay but you need to request a ticket via voucher. We will send all participants detailed instructions a few days before the meeting. Already a big “Thank You” to our Sponsors and Speakers. * A10 Networks<http://www.a10networks.com/> - Gold Sponsor * Swiss Network Solutions AG<https://www.sns.ag/> – Gold Sponsor * Exa Infrastructure<https://exainfra.net> – Gold Sponsor * SwissIX<https://www.swissix.ch> – Supporter * Flexoptix<https://www.flexoptix.net/> – Supporter * Amazon Web Services<https://aws.amazon.com> - Supporter Hope to see many of you soon. --- Simon Ryf SwiNOG Core Team Phone: +41 79 370 41 57 E-Mail: simon(a)swinog.org<mailto:simon@swinog.org> Web: https://swinog.ch

1 0

bluewin.ch mail forwarding problem
by Juerg Reimann 28 Aug '24

28 Aug '24

I would appreciate it if someone from Swisscom in charge of the bluewin.ch mail servers could contact me off-list at my address, jr(a)iplus.pro. We are experiencing an issue with customers who have automatic forwards from bluewin.ch / bluemail.ch addresses not reaching our mail server anymore. Thanks a lot, Juerg Reimann -- iplus.pro Lyrenweg 8 | 079 338 48 00 | Informatik | Planung 8047 Zürich | www.iplus.pro | Umsetzung | Support und Schulung

1 0

Sunrise internet drops
by Beat Eichenberger 11 Jul '24

11 Jul '24

Good morning We just observed some flaps on multiple of our sunrise (former UPC) business links. Anything going on we should be aware of? Replies off-list are also welcome ;-) Many thanks and kind regards Beat

1 0

Research project on Sustainable Networking
by Romain Jacob 09 Jul '24

09 Jul '24

Dear all, My name is Romain; I’m a researcher at ETH Zürich working with Laurent Vanbever. I have led projects on sustainable networking for about 2+ years now. One important challenge the academic community currently faces is the lack of quality data for the energy a router or switch consumes. To address this, we work on fine-grained power modeling of network devices, and we need data to validate their accuracy “in the wild.” To facilitate that, we worked to realize the vision of “RIPE Atlas for power data” I pitched at last winter’s RIPE meeting <https://ripe87.ripe.net/archives/video/1143/>. And I’m happy to say that we are ready to start distributing measurement units! Concretely, we are looking for people willing to * Install measurement units in series of each PSU of routers and switches. The measurement unit is an MCP39F511N <https://www.microchip.com/en-us/development-tool/ADM00706> power meter combined with a Raspberry Pi for management and data collection: We will provide the appropriate cabling. To control the unit, the Pi needs to be connected to a publicly reachable network via RJ45 (WiFi connectivity is technically possible as well, but requires additional setup) * Share device-specific data with us, including at minima o Packet and/or byte counters for the active device interfaces. o Types and numbers of transceivers plugged in. and optionally o PSU-internal measurements o Operating system version o Fan speeds o CPU load o Average room temperature conditions * Let the measurement run for at least one week. * Send us back the measurement units (we provide pre-labeled packaging for that). In return, we can only offer our sincere gratitude and the guarantee that your effort will contribute to the progress of science! I know it s not much, but I hope that’s worth something :-) ➡️ If you are interested, please let me know by replying to this email. Thank you in advance! Note: We want to publish the collected data (in an anonymized way), but that is *optional*. If you are willing to contribute but your organization opposes the data sharing, we won’t publish it, and we will sign NDAs if necessary. Thank you again for reading! Looking forward to hearing from you, -- Romain JACOB Postdoctoral Researcher ETH Zurich Networked Systems Group (NSG) Lead: Prof. Laurent Vanbever www.romainjacob.net <https://www.romainjacob.net/> @RJacobPartner <https://twitter.com/RJacobPartner> @jacobr@discuss.systems <https://discuss.systems/@jacobr> Gloriastrasse 35, ETZ G81 8092 Zurich +41 7 68 16 88 22

6 9

SCION ISP Peering at STACK GEN01A?
by Lüthi Marc 18 Jun '24

18 Jun '24

Dear SCION ISPs Dear all We're intending to place SCION CORE of ours in the Romandie; current plan is to go to STACK Infrastructure's GEN01A (Plan-les-Ouates, es SafeHost). Are any of you present at GEN01A too, and would you be willing to explore possibilities to interconnect at GEN01A? Please contact us off-list. Best regards Marc EveryWare AG Marc Lüthi Senior Network Engineer Zurlindenstrasse 52a CH-8003 Zürich T +41 44 466 60 00 F +41 44 466 60 10 marc.luethi(a)everyware.ch<mailto:marc.luethi@everyware.ch> www.everyware.ch<http://www.everyware.ch>

1 0

Anyone from pcloud.com Zug on this List
by Benoît Panizzon 17 May '24

17 May '24

Hi If anyone from pcloud.com is reading this list. Could you please quickly get in contact with me? I know why your domain is listed on the SWINOG URIBL. I would like to look into the root cause. -- Mit freundlichen Grüssen -Benoît Panizzon- @ HomeOffice und normal erreichbar -- I m p r o W a r e A G - Leiter Commerce Kunden ______________________________________________________ Zurlindenstrasse 29 Tel +41 61 826 93 00 CH-4133 Pratteln Fax +41 61 826 93 01 Schweiz Web http://www.imp.ch ______________________________________________________

1 0

Call for Presentations EPF 2024, Vienna, Austria // SwiNOG
by Arnold Nipper 13 May '24

13 May '24

Dear all, This is a Call for Presentations for the European Peering Forum 2024. AMS-IX, DE-CIX, LINX, NETNOD and guest IXP VIX, are happy to host the European Peering Forum (EPF) 2024 from Sunday the 15th to Wednesday 18th September 2024 in Vienna, Austria. The event will welcome peering managers and coordinators from networks connected to the host and guest Internet exchanges. Besides some interesting topical agenda, the three-day event accommodates room for attendees to meet on a one-to-one basis to discuss bilateral peering business opportunities. The programme committee will be looking for presentations related to peering and technical topics of interconnection. Your presentation could address: * Interconnection Automation * Regional Peering * Interconnection / Peering Internet Governance and Regulatory Topics * Economic and Product Trends * Peering / Interconnection strategies * Interesting findings about Peering / Interconnection * 400GE and beyond * Any other hot topic related to Interconnection / Peering Submissions =========== Presentations must be of a non-commercial nature. Product or marketing heavy talks are strongly discouraged. Submissions of presentations should be made to the programme committee epf-pc(a)peering-forum.eu Please include: * Author's name and e-mail address * Presentation title * Abstract * Slides (can be a draft version as long as the storyline is presented clearly) * Time requested (max. 30 minutes incl. Q&A) Submissions will be rated by the programme committee and admitted according to the available time slots. Deadlines ========= Please send in your presentation asap. The latest date for submission is June 16th. More information about the event and other activities around EPF17 may be found at * https://peering-forum.eu/2024/ / On behalf of EPF, Best regards, AMS-IX, DE-CIX, LINX and NETNOD -- Keep calm, keep distance, keep connected! Arnold Nipper email: arnold(a)nipper.de mobile: +49 172 2650958

1 0

on-topic-ness of SCION ?
by Lüthi Marc 30 Apr '24

30 Apr '24

Dear all A quick straw poll to the community: SCION on this list, [yes/no]? I could think of topics like * finding peer persons involved in operating SCION Equipment (COREs, GATEs EDGEs) among the Swiss ISP community [1] * finding/requesting/discussing peering/interconnecting options with other CORE or EDGE operators * ... and a few things more. If not on topic for swinog - might this be a use case for a hypothetical swinog-scion mailing list? Thanks for your thoughts and ideas. And of course, if such a thing as a "Swiss SCION Operators Community" (Web Forum, Discord, Slack, IRC channel, Mailing List....) is already established somewhere else - I'll happily take any pointers. EveryWare AG Marc Lüthi [1] I just came to understand that there's a Mailing List, Slack and Matrix channel at/by https://scion-architecture.net/ - but I take it that this is more for the development side of things.

5 4

AS6830 decoupling
by Martin Schenkel 24 Apr '24

24 Apr '24

Hi there Is there a Sunrise/UPC core network engineer on this list who can enlighten me about the recent AS6830/AS6730 network changes. If yes, please contact me off-list. Thanks, Martin

2 1

Swisscom DNS issue: spectrum-conference.org wrongfully resolves to a bluewin address in swisscom mobile networks
by Marc Balmer 23 Apr '24

23 Apr '24

The domain name spectrum-conference.org <http://spectrum-conference.org/> wrongfully resolves to 195.186.208.193 when queried from bluewin/swisscom mobile networks. It is registered to 46.175.8.9, which is the correct address. Please fix the swisscom/bluewin.ch <http://bluewin.ch/> DNS resolvers.

13 28

IANA AS Numbers Registry Update
by David Dong 11 Apr '24

11 Apr '24

Hi, The IANA AS Numbers registry has been updated to reflect the allocation of the following block to ARIN: 401309-402332 Assigned by ARIN 2024-04-10 You can find the registry at: https://www.iana.org/assignments/as-numbers/ The allocation was made in accordance with the Policy for Allocation of ASN Blocks to Regional Internet Registries: https://www.icann.org/resources/pages/global-policy-asn-blocks-2010-09-21-en Best regards, David Dong IANA Services Sr. Specialist

1 0

Anyone else troubles with abusix.com swisscom 'false positives'?
by Benoit Panizzon 02 Apr '24

02 Apr '24

Hi all Our ISP Email IP Adresses and Domains are, once more, being blacklisted @ Abusix because of, I guess, emails sent to Bluewin Spamtraps. As far as I have figured out, in contact with our customers allegedly sending spam in past cases, those are almost always false positives. There was exactly one case of a business customer indeed sending multiple emails to one or several such bluewin email addresses and did not correctly process the bounces, but then only his dedicated IP was listed, not our customer email domains. But also then, the bluewin addresses he send his newsletters to, he could prove, belonged to his customers. In all other cases, customers sent emails to @bluewin.ch email addresses they knew the owner of. There was even one case where the @bluewin.ch email address in question that was a 'spamtrap' belonged to our customer and he just forwarded his email account with us to his own @bluewin account. It looks like after some 'short' time of inactivity, Swisscom automatically repurposed the bluewin email address of it's customer as 'spamtrap' which of course cause all those issues. Unfortunately I have not yet found anyone @swisscom able to further dig into why this so often causes our email services to get blacklisted or how to avoid this. Abusix.com basically refers to Swisscom as they may not disclose any of those spamtraps and have no information how those bluewin addresses became spamtraps. Can anyone help or knows who @ Swisscom to contact regarding those abusix spamtrap issues? Mit freundlichen Grüssen -Benoît Panizzon- -- I m p r o W a r e A G - Leiter Commerce Kunden ______________________________________________________ Zurlindenstrasse 29 Tel +41 61 826 93 00 CH-4133 Pratteln Fax +41 61 826 93 01 Schweiz Web http://www.imp.ch ______________________________________________________

1 0

Any users of SCION here?
by Rainer Duffner 28 Mar '24

28 Mar '24

Hi, and specifically the hardware the company behind it (anapaya) sells. Best Regards Rainer

4 3

IANA AS Numbers Registry Update
by Selina Harrington 23 Mar '24

23 Mar '24

Hi, The IANA AS Numbers registry has been updated to reflect the allocation of the following block to LACNIC: 273821-274844 Assigned by LACNIC 2024-03-22 You can find the registry at: https://www.iana.org/assignments/as-numbers/ The allocation was made in accordance with the Policy for Allocation of ASN Blocks to Regional Internet Registries: https://www.icann.org/resources/pages/global-policy-asn-blocks-2010-09-21-en Best Regards, Selina Harrington IANA Operations Manager

1 0

Historical FTTH availability data: Ready4Order
by Fredy Künzler 02 Feb '24

02 Feb '24

I'm looking for historical Ready4Order data of to visualize the FTTH rollout in Switzerland on a timeline from a scientific perspective. It could become something like this https://ftth.init7.net/ but for example with a time slider. These files are called 999999_35_YYYYMMDD_FTTH_Ready_for_Order_Information.zip and are available for download from the WSG portal to anyone with a BBCS contract of Swisscom. (After login go to Services ==> WSG Information Services ==> FTTx Coverage). However the WSG portal offers only the last five daily snapshots. The file sizes varies from 22Mbyte (2024) to 13Mbyte (2019) and it contains a single .csv file. If you happen to download the file in the recent years, even only occasionally, please let me know off list. Collection of 2023 is almost complete, the one of 2022 mostly ==> the older the better. You may want to ask the person in your company responsible for broadband product management, too. DISCLAIMER: The files must not be made public. They are under NDA which is signed with the BBCS contract. Please don't put it onto a web server w/o .htaccess. Any help would be appreciated. PS. I already asked Swisscom, apparently those files didn't got stored on a regular basis. -- Fredy Künzler Init7 (Switzerland) Ltd. Technoparkstrasse 5 CH-8406 Winterthur https://www.init7.net/

1 0

Contact to Ricardo Abuse Desk or Email Admin?
by Benoit Panizzon 30 Jan '24

30 Jan '24

Hi Team Does anyone have means to contact the Ricardo Abuse Desk or Email Admin? There is a possible issue with phishing regarding the CDN provider they use. Ricardo Customer and myself have attempted to bring the issue to their attention, but cases get repeatedly closed with statements like "Ricardo customer service is not in charge of 'technical' issues" Mit freundlichen Grüssen -Benoît Panizzon- -- I m p r o W a r e A G - Leiter Commerce Kunden ______________________________________________________ Zurlindenstrasse 29 Tel +41 61 826 93 00 CH-4133 Pratteln Fax +41 61 826 93 01 Schweiz Web http://www.imp.ch ______________________________________________________

2 2

Microsoft massive spam outbreak
by Benoit Panizzon 24 Jan '24

24 Jan '24

Hi Users of the SWINOG anti-spam blocklists. At the moment, various Microsoft IP addresses are in a similar state as this one: https://blacklist.imp.ch/entry.php?id=1.0.8.0.0.0.0.0.0.0.0.0.0.0.0.0.2.1.e… Unfortunately, Microsoft has confirmed to me, they use the same bunch of SMTP 'outbound' ip address for customer in similar regions. This is now affecting MSN customer and businesses using Office365. abuse(a)microsoft.com is /dev/null (or mailbox full, depending on their mood) as usual. I'm trying to persuade affected business Office365 customer to escalate this issue within Microsoft Switzerland Management. I also have a contact there to which I repeatedly feed those complaints, without success so far. I am aware, Microsoft Office365 customer service blames this on us 'falsely and for no reason' blocking email from those ip addresses, and when presented with Evidence of what happened, they close the case with 'issue solved' which was never the case. Mit freundlichen Grüssen -Benoît Panizzon- -- I m p r o W a r e A G - Leiter Commerce Kunden ______________________________________________________ Zurlindenstrasse 29 Tel +41 61 826 93 00 CH-4133 Pratteln Fax +41 61 826 93 01 Schweiz Web http://www.imp.ch ______________________________________________________

3 2

Any contact to sunrise / chello.at / libertyglobal Postmaster
by Benoît Panizzon 12 Jan '24

12 Jan '24

Hi We have a case of emails reproducible disappearing to one specific sunrise recipient. The recipient is quite sure, he has not activated any filtering rule in his sunrise webmail. He requests us as the ISP of the sender, to investigate the issue 'from the source'. We see in our logs: mx0.sunrise.ch has address 213.46.255.61 is happily accepting the email with 200 OK. No late bounce can be found. Does anyone know, how to contact chello.at for such issue? I have tried the contacts registered @ RIPE for this range. They are either 'not in charge and don't know who is' or do not respond. Sunrise seems not to know how to open a case with chello for such an issue (as last time we faced such an issue). -- Mit freundlichen Grüssen -Benoît Panizzon- @ HomeOffice und normal erreichbar -- I m p r o W a r e A G - Leiter Commerce Kunden ______________________________________________________ Zurlindenstrasse 29 Tel +41 61 826 93 00 CH-4133 Pratteln Fax +41 61 826 93 01 Schweiz Web http://www.imp.ch ______________________________________________________

2 1

BGP4nerds
by Fredy Künzler 25 Dec '23

25 Dec '23

While I do know that this mailing list is not intended for product announcements, I allow myself to make an exception. In the past years we have been asked so many times "can you do a BGP4 feed via Fiber7, I have my own ASN and IP space" and my answer was always "technically we can but we need to setup a product in our ERP system first and define the implementation process. This will take a while...". To be honest it wasn't our highest priority, though. Of course we forgot meanwhile to whom we were talking and so we are unable to contact people individually. Most people are certainly from this community. Now your prayers have been answered :-) I'm happy to announce that we have now "BGP4nerds" available. Requirement is a new or existing Fiber7 connection - no BBCS (Copper7) or BBCS-F (Hybrid7) based service. We charge CHF 30 per month extra for the BGP service along with a one time fee. This offering is of course strictly limited to non-commercial use and only available to private customers. If you are interested please send a note to sales at init7 dot net with the subject "BGP4nerds" and we'll send you a spec sheet with all the details. Happy Christmas to everyone! -- Fredy Künzler Init7 (Switzerland) Ltd. Technoparkstrasse 5 CH-8406 Winterthur https://www.init7.net/ https://ftth.init7.net/

2 1

Debugging bluewin.ch emails not going through
by Maxim Samo 08 Dec '23

08 Dec '23

Hi, I'm getting "421 EHLO temporary error - PTR lookup failed" when trying to send any email to @bluewin.ch recipients. My mailserver is mail.swill.org with proper PTR records configured though: $ dig +short -t ptr 203.200-30.135.144.213.in-addr.arpa @8.8.8.8 mail.swill.org. $ telnet 195.186.120.50 25 Trying 195.186.120.50... Connected to 195.186.120.50. Escape character is '^]'. 220 mxbw.bluewin.ch vimdzmsp-mxin03.bluewin.ch Swisscom AG ESMTP server ready ehlo mail.swill.org 421 EHLO temporary error - PTR lookup failed Is there someone from bluewin.ch here that can help me work through this? best, Maxim

2 2

Contacts and Experts for Security Incidents
by Michael Righter 23 Nov '23

23 Nov '23

Hi We are creating an emergency handbook if we would have a critical security incident. Is there someone who can suggest a company which can help to find how the guys hacked the infrastructure and how to fix it? I hope we never have to use it, but be prepared is better Thanks Michael

4 3

Mails from Proton to Outlook land in spam
by Mat Kowalski 06 Nov '23

06 Nov '23

Hi all, I wonder if someone could point me in a correct direction for debugging mails between Proton and Outlook landing in spam... What happens is * my domain XXX plugged to mail.protonmail.ch. * my 2nd domain YYY plugged to mail.protection.outlook.com. * every mail sent from Proton to Outlook lands in spam * headers as seen by Outlook indicate SCL score 5 The content I use for the test is not anything synthetic but a real message. In the headers I can also see that the "basic configuration" is correct, i.e. * SPF passed * DKIM passed * DMARC passed so this gives no useful information sadly. Maybe someone here has experience with debugging Microsoft? The issue is that this makes my private mailbox unusable as whoever out there uses Outlook as their mail service is not getting my emails. Quite sick... Thanks a lot for any help, Mateusz

4 4

ip-plus.net SPF Policy invalid
by Mario Rimann 02 Nov '23

02 Nov '23

Hoi zäme One of our customers includes the SPF-Policy of ip-plus.net in his domain. Through this (and our monitoring of it), we noticed a problem that popped up this morning. If someone at ip-plus.net / Swisscom could have a look into it, that would be great. ➜ ~ dig +short TXT ip-plus.net | grep spf "v=spf1 ip4:193.222.75.178 ip4:212.243.7.144/29 ip4:194.209.127.144/29 ip4:212.243.190.136/29 ip4:164.128.36.0/24 ip4:164.128.36.32 ip4:195.65.89.0/24 ip4:164.128.223.0/24 ip4:217.192.233.192/29 " "a:mailout.ip-plus.net ip4:138.190.0.0/16 ip4:193.222.81.96/27 ip4:212.243.177.176/29 ip4:138.188.166.0/24 ip4:138.188.176.0/24 ip4:212.243.37.66" "ip4:212.243.96.74 ip4:164.128.243.19 mx -all" The problematic part is the missing space before the second-last "ip4:" block (after 212.243.37.66). Error message the SPF validator throws is: SPF Permanent Error: Invalid IP4 address: ip4:212.243.37.66ip4:212.243.96.74 Best wishes, Mario

1 0

Operational announcement: transition from NSEC3 to NSEC in the CH/LI zone
by Daniel Stirnimann 30 Oct '23

30 Oct '23

Hi list, We plan a DNSSEC signing change for the ch. and li. zone files. Introduction: Both NSEC and NSEC3 are mechanisms that provide signed DNS records as proof of non-existence for a given name or associated Resource Record Type in a DNSSEC signed zone. While they serve the same primary purpose, NSEC3 offers added features, such as not directly disclosing bounding domain name pairs and providing "opt-out support." This latter feature allows large registries to cover blocks of unsigned delegations with a single NSEC3 record, thereby only signing as many NSEC3 records as there are signed DS or other RRsets in the zone. Recent trends and developments: Since 2021, there's been a notable increase in the percentage of domain names with DNSSEC for .ch, jumping from 6% to 49% [1]. Additionally, the TLD zone files for both .ch and .li have been made publicly accessible for download in recent years [2]. These developments have rendered the argument for using NSEC3 with opt-out less compelling. Our action plan: SWITCH is set to transition from NSEC3 (utilizing opt-out) to NSEC for both the .ch and .li TLD zones. Given the high percentage of domain names already employing DNSSEC, this shift will result in only a modest increase in the size of the zone files. Importantly, transitioning to NSEC offers several benefits [3]: * Enhanced performance and reduced latency * Decreased resource utilization on both authoritative and recursive servers * Potential bolstering of resilience against specific types of DoS attacks Scheduled transition dates: .li: 10th November 2023, 8 am CET .ch: 10th November 2023, 10 am CET Impact assessment: We expect no operational impacts for end users. However, we value feedback and observations. If you have concerns or notice any anomalies related to this transition, please don't hesitate to contact us. [1] https://www.nic.ch/statistics/dnssec/ [2] https://zonedata.switch.ch/ [3] https://datatracker.ietf.org/doc/html/rfc8198 -- Daniel Stirnimann, SWITCH-CERT Werdstrasse 2, P.O. Box, 8021 Zurich, Switzerland phone +41 44 268 15 15, direct +41 44 268 16 24 https://switch.ch https://swit.ch/linkedin https://swit.ch/twitter

1 0

Rack Cooling getting trashed?
by Steven Glogger 21 Oct '23

21 Oct '23

Hi There I’m looking for a ventilator / aka rack cooler. If someone is about to trash it, please let me know :) I’m willing to compensate in Beer, etc. :) [cid:f10ef73e-36c2-417c-bc2f-9aae0fcfc9d3@eurprd03.prod.outlook.com] greetings -steven

1 0

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

swinog