--- Virus-free.www.avast.com <#DAB4FAD8-2DD7-40BB-A1B8-4E2AA1F9FDF2> -------------- next part -------------- An HTML attachment was scrubbed... URL: From davidphe at gmail.com Thu Nov 6 11:56:01 2025 From: davidphe at gmail.com (David Phelan) Date: Thu, 6 Nov 2025 10:56:01 +1000 Subject: [AusNOG] NZNOG 2026 Call For Presentations Message-ID: *NZNOG 2026 Call for Presentations* The NZNOG Trustees invite presentation proposals for the 23rd NZNOG conference, to be hosted at the Te Pae Christchurch Convention Centre from 23?27 March 2026. *Conference objective:* The NZNOG conference, workshops and tutorials are an opportunity for individuals and organisations involved in Internet operations to meet and share the latest in Internet operations, technologies, practices and receive high quality training. The event is unique in New Zealand and attracts technical, skilled individuals with a genuine interest in Internet operations and Internetworking technologies. Submissions on any aspect of networking are welcome however we are particularly interested in presentations that involve real world operational experience, particularly in New Zealand. Conference registration for accepted presenters will be free. *Submit a proposal:* Presenters are invited to submit presentation proposals. Talks will be reviewed and accepted (or rejected) as they are received. Often we will have a discussion with a potential presenter to refine the proposed content and ensure it is appropriate for our audience. We are also happy to have a chat about your idea before you make a proposal. Please provide your talk title, a short presenter bio and a description of the proposed presentation. Description should be no more than one page long and provide a summary of your networking related subject matter. Normally presentations are 30 min long, are video streamed live and slide decks are posted to the NZNOG website. If you want a different duration or other arrangements please let us know at submission time. To submit your proposal please e-mail: talks at nznog.org www.nznog.org -------------- next part -------------- An HTML attachment was scrubbed... URL: From spoofer-info at caida.org Sun Nov 9 05:00:31 2025 From: spoofer-info at caida.org (CAIDA Spoofer Project) Date: Sat, 8 Nov 2025 10:00:31 -0800 Subject: [AusNOG] Spoofer Report for AusNOG for Oct 2025 Message-ID: <1762624831.314978.10084.nullmailer@caida.org> In response to feedback from operational security communities, CAIDA's source address validation measurement project (https://spoofer.caida.org) is automatically generating monthly reports of ASes originating prefixes in BGP for systems from which we received packets with a spoofed source address. We are publishing these reports to network and security operations lists in order to ensure this information reaches operational contacts in these ASes. This report summarises tests conducted within aus. Inferred improvements during Oct 2025: none inferred Source Address Validation issues inferred during Oct 2025: ASN Name First-Spoofed Last-Spoofed 152107 2024-02-25 2025-10-24 Further information for these tests where we received spoofed packets is available at: https://spoofer.caida.org/recent_tests.php?country_include=aus&no_block=1 Please send any feedback or suggestions to spoofer-info at caida.org From me at anuragbhatia.com Wed Nov 12 22:24:39 2025 From: me at anuragbhatia.com (Anurag Bhatia) Date: Wed, 12 Nov 2025 16:54:39 +0530 Subject: [AusNOG] =?utf-8?q?Assistance_Needed=3A_Restricting_Website_Traff?= =?utf-8?q?ic_to_Cloudflare=E2=80=99s_Network=2E=2E=2E?= In-Reply-To: References: Message-ID: Hi Michael Unsure how well this setup will work with off-net Cloudflare caches. Unsure of unicast IPs used by Cloudflare off-net caches but for other caches including Akamai, GGC, FNA etc - they often sit on eyeball networks address space and send out request from those providers IPs. Cloudflare is little different since they do anycast and use their own IPs facing the end user side. If unicast of those PoPs (which does the cache fill by connecting to origin) is non-Cloudflare IP, this approach may not work. Would be interesting to hear whenever you are able to resolve it. On Wed, Nov 5, 2025 at 5:28?PM Michael Bullut

wrote: > Good Afternoon Good People, > > I am reaching out for some assistance with configuring a client?s website > to accept traffic only from Cloudflare?s network. > > I have attempted to achieve this by editing the .htaccess file to allow > Cloudflare?s IP ranges and deny all other connections. However, after > applying the configuration, I?m receiving a *?Forbidden - Access is > denied?* error. > > Here?s a summary of the situation: > > - *Hosting environment:* nginx on cPanel. > - *Goal:* Restrict direct access to the origin server, allowing only > Cloudflare?s IP addresses. > - *Action taken:* Added allow/deny directives to .htaccess using > Cloudflare?s published IP ranges. > - *Issue:* Website becomes inaccessible *(403 Forbidden).* > > I have double-checked the syntax and updated Cloudflare?s IP list, but the > issue persists. If anyone has experience setting this up or can suggest the > correct configuration or an alternative approach *(e.g., using > server-level configuration instead of .htaccess),* I would greatly > appreciate your insight. > > Warm regards, > > Michael Bullut. > > --- > > *Cellphone:* *+254 723 393 114.* > *Twitter:* *@MichaelBullut* > *Blog:* *http://www.kipsang.com/ * > *E-mail Address:* *main at kipsang.com*

> > --- > > > > Virus-free.www.avast.com > > <#m_-3968893697956626161_DAB4FAD8-2DD7-40BB-A1B8-4E2AA1F9FDF2> > _______________________________________________ > AusNOG mailing list > AusNOG at lists.ausnog.net > https://lists.ausnog.net/mailman/listinfo/ausnog > -- Anurag Bhatia anuragbhatia.com -------------- next part -------------- An HTML attachment was scrubbed... URL: From chris at thesysadmin.au Wed Nov 12 22:46:59 2025 From: chris at thesysadmin.au (Christopher Hawker) Date: Wed, 12 Nov 2025 11:46:59 +0000 Subject: [AusNOG] =?utf-8?q?Assistance_Needed=3A_Restricting_Website_Traff?= =?utf-8?q?ic_to_Cloudflare=E2=80=99s_Network=2E=2E=2E?= In-Reply-To: References: Message-ID: NGINX does not support the use of .htaccess files. You would need to convert it to the appropriate NGINX directives. You would need to use something similar to the below, modified for your environment. server { ????listen 80; ????server_name example.com; ????location /admin { ????????allow 192.0.2.0/24; ????????allow 203.0.113.0/24; ????????deny all; ????} ????location / { ????????# Other configurations for the main site ????} } To my knowledge, cPanel only supports the use of NGINX to act as a reverse proxy only, as it still passes web content to an underlying Apache server (see https://docs.cpanel.net/knowledge-base/nginx/nginx-with-reverse-proxy/). Regards, Christopher Hawker ________________________________ From: AusNOG on behalf of Anurag Bhatia Sent: Wednesday, 12 November 2025 10:24 PM To: Michael Bullut

Cc: ausnog at lists.ausnog.net Subject: Re: [AusNOG] Assistance Needed: Restricting Website Traffic to Cloudflare?s Network... Hi Michael Unsure how well this setup will work with off-net Cloudflare caches. Unsure of unicast IPs used by Cloudflare off-net caches but for other caches including Akamai, GGC, FNA etc - they often sit on eyeball networks address space and send out request from those providers IPs. Cloudflare is little different since they do anycast and use their own IPs facing the end user side. If unicast of those PoPs (which does the cache fill by connecting to origin) is non-Cloudflare IP, this approach may not work. Would be interesting to hear whenever you are able to resolve it. On Wed, Nov 5, 2025 at 5:28?PM Michael Bullut

> wrote: Good Afternoon Good People, I am reaching out for some assistance with configuring a client?s website to accept traffic only from Cloudflare?s network. I have attempted to achieve this by editing the .htaccess file to allow Cloudflare?s IP ranges and deny all other connections. However, after applying the configuration, I?m receiving a ?Forbidden - Access is denied? error. Here?s a summary of the situation: * Hosting environment: nginx on cPanel. * Goal: Restrict direct access to the origin server, allowing only Cloudflare?s IP addresses. * Action taken: Added allow/deny directives to .htaccess using Cloudflare?s published IP ranges. * Issue: Website becomes inaccessible (403 Forbidden). I have double-checked the syntax and updated Cloudflare?s IP list, but the issue persists. If anyone has experience setting this up or can suggest the correct configuration or an alternative approach (e.g., using server-level configuration instead of .htaccess), I would greatly appreciate your insight. Warm regards, Michael Bullut. --- Cellphone: +254 723 393 114. Twitter: @MichaelBullut Blog: http://www.kipsang.com/ E-mail Address: main at kipsang.com --- [https://s-install.avcdn.net/ipm/preview/icons/icon-envelope-tick-round-orange-animated-no-repeat-v1.gif] Virus-free.www.avast.com _______________________________________________ AusNOG mailing list AusNOG at lists.ausnog.net https://lists.ausnog.net/mailman/listinfo/ausnog -- Anurag Bhatia anuragbhatia.com -------------- next part -------------- An HTML attachment was scrubbed... URL: From shane at 2000cn.com.au Wed Nov 19 18:02:55 2025 From: shane at 2000cn.com.au (Shane Chrisp) Date: Wed, 19 Nov 2025 15:02:55 +0800 Subject: [AusNOG] MS O365 SPF Records Message-ID: Hi All, Not sure if there is anyone on list from MS, or who has contacts at MS, but I am trying to get this info to them. I have been getting notifications from clients about MS 365 emails being quarantined due to SPF failures. It appears that mail is coming from 2a01:111:f403:e40d::2 which is not matching against the spf.protection.outlook.com record. -- Regards Shane Chrisp 2000 Computers & Networks Pty Ltd Mob 0412 409 856 Email shane at 2000cn.com.au Web http://www.2000cn.com.au From Darren.Moss at cloud365.com.au Fri Nov 21 07:54:33 2025 From: Darren.Moss at cloud365.com.au (Darren Moss) Date: Thu, 20 Nov 2025 20:54:33 +0000 Subject: [AusNOG] Looking for additional transit at ME1 Message-ID: <2653350d1dd34d7e8a5258cfd4768998@mbx05.ap.myhostedexchange.email> Good morning, We are looking for additional transit at ME1. 10/100G ports. Must be able to trial/test. Network owners only please. Many thanks Regards, Darren Moss General Manager Platform Architect Cloud365 Australia Pty Limited Managed Cloud Computing [p] 1800 888 365 extension 105 [f] 03 9017 2287 [e] Darren.Moss at cloud365.com.au [w] www.cloud365.com.au Kings Business Park, 80 Dorcas Street, Southbank VIC 3006 sent from a mobile device -------------- next part -------------- An HTML attachment was scrubbed... URL: From david.dong at iana.org Sun Nov 23 10:37:42 2025 From: david.dong at iana.org (David Dong) Date: Sat, 22 Nov 2025 23:37:42 +0000 Subject: [AusNOG] IANA AS Numbers Registry Update Message-ID: Hi, The IANA AS Numbers registry has been updated to reflect the allocation of the following block to LACNIC: 274845-275868 Assigned by LACNIC 2025-11-19 Registry: http://www.iana.org/assignments/as-numbers/ The allocation was made as per the Policy for Allocation of ASN Blocks to Regional Internet Registries: https://www.icann.org/resources/pages/global-policy-asn-blocks-2010-09-21-en Best regards, David Dong IANA Services Sr. Specialist -------------- next part -------------- An HTML attachment was scrubbed... URL: From blue.flayme at gmail.com Wed Nov 26 14:07:21 2025 From: blue.flayme at gmail.com (Andrew Oskam) Date: Wed, 26 Nov 2025 13:07:21 +1000 Subject: [AusNOG] Optus Outage / OvertheWire Impact? Message-ID: I'm seeing reports online of an Optus Outage affecting 000 calls. Link: 9News Is anyone else able to confirm this and is anyone using OvertheWire having clients affected by this? We've just opened a ticket with OTW. Just wondering if there is any legitimacy to what I am reading. -- Sent by GMail Webmail -------------- next part -------------- An HTML attachment was scrubbed... URL: From blue.flayme at gmail.com Wed Nov 26 14:18:22 2025 From: blue.flayme at gmail.com (Andrew Oskam) Date: Wed, 26 Nov 2025 13:18:22 +1000 Subject: [AusNOG] Optus Outage / OvertheWire Impact? In-Reply-To: References: Message-ID: Seems to be just our SIP clients that are affected. Our clients have reported no issues experienced over mobile. On Wed, 26 Nov 2025 at 13:12, Damir Mitrovi? wrote: > AussieBroadband mobile (via Optus) connected me fine just now. > > -Damir > > Sent with Proton Mail secure email. > > On Wednesday, 26 November 2025 at 13:08, Andrew Oskam < > blue.flayme at gmail.com> wrote: > > I'm seeing reports online of an Optus Outage affecting 000 calls. > > Link: 9News > > > Is anyone else able to confirm this and is anyone using OvertheWire having > clients affected by this? We've just opened a ticket with OTW. > > Just wondering if there is any legitimacy to what I am reading. > > -- > Sent by GMail Webmail > > > -- Sent by GMail Webmail -------------- next part -------------- An HTML attachment was scrubbed... URL: From jenn at jenn.id.au Wed Nov 26 16:13:21 2025 From: jenn at jenn.id.au (Jennifer Sims) Date: Wed, 26 Nov 2025 16:13:21 +1100 Subject: [AusNOG] Optus Outage / OvertheWire Impact? In-Reply-To: References: Message-ID: This was an Optus outage caused by stolen copper. Optus confirmed services were fully restored by 11.20am on Wednesday after thieves cut through a fibre cable at a Telstra pit on the Mornington Peninsula while attempting to steal copper. ?This is an act of vandalism. These are criminals that are cutting the fibre that provides vital connectivity to customers,? Optus spokeswoman Jane McNamara told ABC Radio Melbourne. The outage affected six mobile sites across the Mornington Peninsula and Frankston, with some customers in Berwick also reporting issues. Optus said it was not aware of any failed emergency calls during the outage, with calls automatically routed to other carriers? networks. https://www.smh.com.au/technology/fresh-optus-outage-impacting-emergency-service-calls-20251126-p5nijs.html On Wed, Nov 26, 2025 at 2:08?PM Andrew Oskam wrote: > I'm seeing reports online of an Optus Outage affecting 000 calls. > > Link: 9News > > > Is anyone else able to confirm this and is anyone using OvertheWire having > clients affected by this? We've just opened a ticket with OTW. > > Just wondering if there is any legitimacy to what I am reading. > > -- > Sent by GMail Webmail > _______________________________________________ > AusNOG mailing list > AusNOG at lists.ausnog.net > https://lists.ausnog.net/mailman/listinfo/ausnog > -------------- next part -------------- An HTML attachment was scrubbed... URL: