Skip to content
Sep 19 / thebrotherswisp

TheBrothersWISP 33 – News, Ethics Of BGP Hijacking, UBNT EdgePoint, Electrical Pole Attachment

Greg, Tomas, and Miller talk a little shop. I do mean little, because this one is short and sweet.

Topics Include:
MUM Budapest free vouchers
WISPAPALOOZA Rebook Scam
Arstechnica testing some small routers
Ethical BGP Hijacking?
Electrical pole attachment – mimosa blog
Favorable AF11FX review
UBNT EdgePoint

Keep contacting us! Facebook.com/thebrotherswisp or contact (at) thebrotherswisp.com

To see the video please visit the link below!!!

Sep 4 / Greg

Upgrade Ubiquiti EdgeMax EdgeRouter From CLI

I dusted off my EdgeRouter Lite earlier today, and went to upgrade it, but it turns out my old version of code was buggy and wouldn’t update from the web GUI. A quick google shows there is a method via CLI:

1
add system image http://192.168.1.5/ER-e100.v1.9.0.4901118.tar

I used HSF to run a quick simple webserver on my laptop to transfer the image.

A cool feature of the EdgeRouters is the fact that it maintains two copies of firmware, new/old. This way if the new image fails to boot, it will fall back to the old. You can show the existing images with:

1
show system image

You can find the simple UBNT documentation on it here.

Sep 3 / thebrotherswisp

TheBrothersWISP 32 – Alternative Routing Platforms

Greg, Andrew Thrift, Mike, Tomas, and Tom talk routing platforms today…those other than Mikrotik that is.

We talk about quite a list of things including:
OpenBSD
OpenBSD ripe presentation
SecurityRouter – Gui/CLI packaged OpenBSD
PFSense
OpnSense
CloudRouterFeature listPacketPushers podcast on CR
FreeRTR
Ubiquiti EdgeRouter
Nokia (Alcatel Lucent)SAM
Cisco
Juniper
Fortigate
Brocade
Arista
Brocade vRouter – formerly Vyatta
Cisco’s solution – CSR 1000V
Juniper vMX
Nokia (Alcatel Lucent) – vSR
FortiGate-VM

To see the video please visit the link below!!!

Aug 20 / thebrotherswisp

TheBrothersWISP 31 – Google Fiber Going Wireless, hAPs and Supply Chain, Education

Alex, Tomas, and Greg join today’s cast…Mike showed up to say bye.

We go down the rabbit hole like always, but mostly we talk about:
We talk about:
Unimus 0.2.0 release
Google fiber going wireless
Mikrotik link calculator
International hAPs in US
DFS – dynamic frequency selection – mandatory in ROS 6.37
Education – college(to go or not), continued education

To see the video please visit the link below!!!

Aug 16 / Greg

ARIN’s Route Registry – Why You Need AS-SET

Believe it or not, I’m just now having to create entries in ARIN’s RRs…and I’ve been doing this thing for ages hehehe. A RR is a searchable database of route policy information. There are some that are easy to use with web interfaces, but these are generally pay to play. If you stick with ARIN, it’s free…which means I’m going with ARIN.

Ultimately, what’s the point? When you are peering with other BGP ASNs, they will often seek to verify what information they will allow you to advertise to them. One easy way for them to lookup what to expect from you is to connect to an RR. I can also dictate some more advanced policies inside of special records.

Getting started, ARIN has a very complete list of information on how/what you should submit to them. The problem is, it’s pretty complex. I did a lot of googling, but I eventually happened on Theodore’s blog entry on the subject. This guy is kind enough to explain the basics which will guide you through most of the process.

The most important part for me were the AS-SET entries. In simple terms, this is a list of autonomous systems that peer with you. Since I’m a service provider, this will be all of my customers(not my upstream ISPs) that I’ll be sending traffic sourced from. More and more upstream ISPs have started requiring an AS-SET entry that contains your downstream customer AS’s. I’ve noticed that just because you have this entry, doesn’t mean you don’t need to also tell them all of the subnets to expect as well as the source AS’, because they will. I’ve also noticed that I don’t have to create an RR record including customer subnets, I just need their AS# in my AS-SET list.

Here’s an example of my AS-SET:

as-set: AS-MNS-1
password: MyPassword
descr: Managed Network Solutions AS-SET-1
members: AS19366, AS13701, AS16903, AS29808, AS46724, AS32768, AS55291
mbrs-by-ref: ANY
notify: somepeople@gregsowell.com
admin-c: SOWEL6-ARIN
tech-c: SOWEL6-ARIN
mnt-by: MNT-MNSL
changed: somepeople@gregsowell.com 20160519
source: ARIN

aut-num: AS19366
password: MyPassword
as-name: MNS-AS19366
descr: Managed Network Solutions AUT-NUM-1
member-of: AS-MNS-1
notify: somepeople@gregsowell.com
admin-c: SOWEL6-ARIN
tech-c: SOWEL6-ARIN
mnt-by: MNT-MNSL
changed: somepeople@gregsowell.com 20160519
source: ARIN

As you can see my AS-SET simply lists all of my downstream customers. Keeps it pretty simple.

I know there is a lot more you can do with it, and I’m sure some of you kind fellows will be happy to leave me comments on best practices 🙂

Aug 6 / thebrotherswisp

TheBrothersWISP 30 – Ubiquiti EdgeSwitch 16 and UTM Rumors, New FAA Tower Regs, Mimosa Firmware

This go around we have Greg, Mike, Cox, Tomas, and a little Miller.

We go down the rabbit hole like always, but mostly we talk about:
Ubiquiti EdgeSwitch 16 XG
UBNT hiring PF Sense engineer
FAA Tower Regulations 50′-200′
New Mimosa Firmware
WISPA Elections
Fail2Ban

To see the video please visit the link below!!!

Aug 5 / Greg

Ubiquiti EdgeSwitch 16 XG

edgeswitch16

The Ubiquiti EdgeSwitch 16 XG is UBNT’s new 16 port 10Gb switch.

It boasts:

  • 12 SFP+ ports
  • 4 RJ45 ports that support 1Gb or 10Gb
  • 360Gbps throughput
  • 238.1 MPPS
  • 36W of power on chassis alone(no optics)
  • Serial console port
  • Web interface
  • “Industry standard CLI” – Which I take to mean Cisco like
  • Price around $550
  • I’ve heard nothing but good things about the existing edgeswitches, and this one is shaping up to be no different.

    It looks like all ports are line rate, which is really expected from any switch manufactured these days.

    Oddly enough they mention some routing capabilities: Static routing(up to 16 routes), Policy Based Routing, 15 routed interfaces. I don’t believe they have any numbers for routing, so just pretend like this isn’t an option. Looking at the rest of the features, this is truly a switch, and should be treated as such.

    They also mention this can act as a DHCP server…which is also very strange to me. I’m sure there is a use case somewhere for it. Specs show 128 pools with a max of 2048 leases, which would be a fair sized property.

    It also has:

  • IPv4 and IPv6 Mgmnt support
  • SNMP
  • 802.1x for authenticated access to ports
  • 255 VLANs – which should be plenty for most sites
  • 8K MAC addresses – again, should be plenty
  • STP/RSTP/MSTP support for loop prevention
  • 4 MSTP instances
  • 802.1ad for Link Aggregation(LAG){up to 6 instances} – You Cisco guys would call it etherchannel – linux would call it bonding
  • Access lists(filtering traffic) – 100 with up to 10 rules per port
  • Looks like fairly standard QoS support – at these speeds, especially with LAGs, it seems hard to think you would be overrunning port speeds
  • I’m excited to see these guys hit the market. This will, by a WIDE margin, be the cheapest 10Gb switch I’ve seen hit the market. I can’t wait to get my hands on one to test with. At this price point, I won’t be surprised to see it hit the core of some enterprise, not just provider networks.

    At some point in the future I’d love to see multichassis link aggregation(MLAG). This gives you the ability to do a LAG from a single device(like a router) to two different switches. The router has no idea that he is connecting to multiple chassis, yet allows for failure of either switch to be absorbed.

    Let me know your thoughts in the comments…will you guys be putting these to work?