Slashdot Mirror

ISPs are expected to give customers /48 networks, and if they don't, a generous amount of hell will be raised.

See, e.g., http://www.arin.net/policy/ipv6_policy.html#541.

There's a lot of info here too:
Arin
Ripe Ncc
Apnic
Lacnic

I work for a medium sized Engineering & Telecommunications firm (>500 employees all over the east coast). I have a mail filter set up on an intermediate MTA to catch all executable files. This includes .PIF, .BAT, .SCR, .EXE, .COM, etc. When a file of this type comes in, it is parked in a holding folder for 7 days. A notification message is sent to the recipient and back to the sender (I, know this sucks, but bear with me a second) with instructions on how to send another email back with a release code in the subject. When the message with the release code is received by the MTA, it continues delivering the original email to our actual mail server. If no message is received in 7 days, the original mail is deleted.

Now, once the SoBig hit, I made a seperate rule to catch just those files. No notifications were sent. It parked them for 4 days then deleted them. In that time, I've written a small script** that parses the header of all parked files every morning at 7:45am. It grabs the IP# of the originating computer and tosses it into a spreadsheet. Once it has done all parked messages, it tally's them up and sorts them by the most common appearing numbers. Then, when I get in at 8am, I do a WhoIs lookup on the IP as well as an nslookup. I try and contact the owner of the netblock and notify them that they have a computer infected with SoBig on their network and it is attacking us. I have yet to have anyone that hasn't co-operated fully (though, Comcast took a bit of prodding). My worst case was a 3 day period where a single cable modem user in Philadelphia on Comcast.net sent us ~13,000 Sobigs a day. Just this morning I had to contact an ISP/Network Security company in NYC to have a machine there cleaned.

I know it's not my responsibility to see that other people clean their machines, but it is affecting our productivity at work. At the height of the infestation, we were receiving over 28,000 SoBig viruses a day. At ~100Kb each, it was causing massive delays in the mail queue. Keep in mind that most people don't even realize they are infected with it, so they need to be notified so that they can clean it.

-Ab

ps. The script is fairly simple because the built in mail transfer agent in the SoBig is basic (Though I was impressed at the spoofed header-field, X-MailScanner: Found to be clean, that says it's been checked by SpamAssasin(?) and is not Spam. If anyone is interested in the script (it is a VB executable, but I can send the source code or psuedo-code so it can be recreated in perl/python) let me know.

It looks like those IP's are in a reserved block for whatever reason and aren't used on the Internet. Other than the weird IP range, I like the idea of having the room number in one of the octets.

They must already have solved the bandwidth problem.

They also own all these other address spaces.

The grotesque thing is that they probably go through a lot of hassle to prevent external access to these same IP numbers, thus defeating the whole purpose of having a public IP space in the first place.

Here's something kinda ironic. Presumably they don't move to network 10 because of the cost of reconfiguring every single system in their network. But when they go to IPv6 (it's gonna happen eventually), they'll have to do this anyway, and that would be the right time to go to a private network space. The same logic applies to all the companies that hang on to big chunks of the address space even though having it is a headache. So even as IPv6 eliminates the address space problem, it will free up big gobs of address space!

the current system of handing out addresses (which have no value as such and should not be charged for, although an administrative fee can be charged for setting it up, which quite a few ISP's do) is essentially global through RIPE NCC, APNIC, LACNIC and ARIN. So if China runs out, it means we have all run out.

Admittedly, the US has quite a bit of legacy space, but I'm sure that large chunks of it will be reclaimed for everyone, should the need arise.

In the US, the idea is still that the Internet is American, so the US will be ok. That is exactly why the ARIN region is (too) slow to pick up on IPv6.

Ofcourse, IPv6 may not happen in the end (there are still quite a few bugs to be ironed out by the IETF et al), but I hope it does, because NAT is getting old real fast. Port forwarding helps a little, but remains a hack at best. The pain of having several machines do the same things behind one IP address (ICQ, webserver, netmeeting) is simply not worth it when I can get over 65000 subnets (with billions of addresses in each one) assigned to me with IPv6.(Everyone that could subnet, should receive a /48 according to current policy, no extra charge)

We could then finally do all the things that we should have been able to now.

And currently, IPv6 is totally free. Everyone gives free transit to everyone, IPv6 is not taken into account with the fee that the RIR's charge their members (at least in the RIPE region, I think the other regions too).

This will change ofcourse, but IPv6 is already a major improvement over IPv4, the US will feel the pain of coming late everywhere if they don't prepare.

CC

ARIN (American Registry for Internet Numbers) is at http://arin.net/, not the .com domain given above. Drop the IP address you want to find in the "search whois" search box at top-right of the page.

Note: I subscribe to the "death of the triple w". It isn't needed and it's horrible to pronounce and it adds up to an awful lot of wasted typing and space. So where do i sign up?

IPv6 Address Allocation Policy

The minimum allocation size for IPv6 address space is /32.

Below that:

- /48 in the general case, except for very large subscribers

- /64 when it is known that one and only one subnet is needed by design

- /128 when it is absolutely known that one and only one device is connecting.

And I've just hijacked my own /16!

ARIN's IPv4 policy page suggests you only need to be in the range of 2000 - 4000 hosts to get Provider-Independent space. Where does the 16,000 figure come from?

the range of ip adresses that the RIAA owns

just block them on your firewall

The current ATT network was created out of the old ibm as well as other networks, i'm not going to read the entire ipv6 routing table (well, it is short enough to read actually, but i'm being lazy) to check for one of the many ATT legacy ASNs or SBC ASNs that they may be using to operate their IPv6 network. I suggest checking 6bone pTLA listing or with the Regional Internet Registry for people that have been assigned IPv6 address space. In the US at least, it's an InterNIC-type company (remember inernic?) called ARIN

Here are some helpful links:

IPv4 Policies

IPv6 Policies

Here are some helpful links:

IPv4 Policies

IPv6 Policies

Does anyone have a list of RIAA netblocks, not just the lone /24 listed at ARIN? Who does the RIAA/MPAA contract with for Kazaa "junk file" flooding etc..? The only netblock I've found for them is this one. There have to be others. I'll deny them access at our borders if I know what the netblocks are.

Getting some SLOOOW loading time. In my opinion anyone owning a Class A address range should be obligated to make sure they can take the slashdot onslaught. And what? no Google cache?

...but this story is crud on so many levels.

• 3FFE::/16 is the experimental 6bone space, where you try out allocation policies before settling on a real one. They've settled on a real one. Even better, it's the same in all three (er, four) regions. The 6bone's purpose is fulfilled , we're in production mode and, as was always intended, it's time to think about retiring it.
• How many times: IP address don't cost money. Sure, the RIRs charge for the service of allocation, and your ISP is entitled to charge for the services around them. They do their job pretty well, and with consensus of the community (a rarity in this day and age). Great as Bob Fink is, do you really want to continue trusting address allocation to one guy as a volunteer project?
• You get addresses from your ISP.
• You get addresses from your ISP.
• You get addresses from your ISP. There are loads of them. If you need them, you can have them. The expense is not in getting the damn addresses. "Experimental" does not mean "free". "Production" does not mean "business".
• AftanGustur: IPv6 is not a bastard protocol, routers don't need to fragment anymore, and the IETF is not working on a new damn protocol. You don't cite any sources, so I can't refute it. Please do.

Guys, there are a lot of misconceptions about IPv6. I appreciate this - it's not an intuitive subject, and it's possible to believe you know a lot more about it than you actually do. But, the details are there. Please do the reading and start asking your ISP for connectivity. No, your real ISP. There are people out there who want to deploy this, now, and we're waiting for customer demand. Go nuts!

Dave

Keep an eye on these: 2002_7 and 2002_3

Keep an eye on these: 2002_7 and 2002_3

I know that long term we need IPV6 to take care of addressing issues, however... right now there are millions of available IP's out there, if IANA would let them go. Take a look at http://www.arin.net and do a whois on many of the Class A domains?? A good chunk of them are "reserved" status and not in use at all. Examples are domains that are 23.x.y.z and 27.x.y.z Where I work, we just got a new effective full class C (we aren't that big)from our ISP who got a portion of a Class A from IANA.

Well, based on the ARIN stats and APNIC stats that are made available to the public...

IP addresses (US): 1,847,483,219
IP addresses (Japan): 41,943,663
IP addresses (Canada): 61,747,968

The number of users is debatable, but make it, say, around 30% of the population of each country.

Users (US): 250 million x 0.2 = 50,000,000
Users (Japan): 120 million x 0.2 = 24,000,000
Users (Canada): 30 million x 0.2 = 6,000,000

Which means the ratio of IP addresses to population is:

US: 36.95 IPs/person
Japan: 2.573 IPs/person
Canada: 10.29 IPs/person

So, as you can see, Japan's getting a little desparate... hell, even Canada has five times more IPv4 addresses per user.

Are you running your porn site on your school's server?

Out of the 15 or so e-mail addresses I have, I may only get 30-50 pieces of spam a day. Most of which arrives at my hotmail and yahoo accounts. The rest I track down and report to their ISP. :-)

I've found two good services for doing such:

ARIN homepage and RIPE's whois database.

j.root-servers.net was 198.41.0.10 in 198.41.0.0/22, owned by VeriSign Global Registry Services.
j.root-servers.net is 192.58.128.30 now, in 192.58.128.0/24, owned by VeriSign Global Registry Services.
Having both a and j in the same netblock was not a good idea (remember what happened to Microsoft when they had all nameservers in the same netblock?).
See ARIN and ARIN again.

j.root-servers.net was 198.41.0.10 in 198.41.0.0/22, owned by VeriSign Global Registry Services.
j.root-servers.net is 192.58.128.30 now, in 192.58.128.0/24, owned by VeriSign Global Registry Services.
Having both a and j in the same netblock was not a good idea (remember what happened to Microsoft when they had all nameservers in the same netblock?).
See ARIN and ARIN again.

No matter what, it wouldn't give up the plain vanilla .com version -- go figure.

Maybe Prexar (their ISP) routes through Canada? Or perhaps they're using a set of IPs that ARIN has listed as Canadian. Who knows, I didn't dig that deeply into it.

At any rate, it sure did a damn good job of keeping me away from google.com. Yes, I know a proxy server would solve the problem... but proxying all of France and Germany? Ouch. Even with Google's lightweight "do the search and get 'em out" philosophy, I wouldn't want that bandwidth bill!

He likely is.

He was COO of Superbusiness Net, Inc. which got merged in with Infonent. The ARIN block for sbusiness.net has as its tech email noc@baytsp.com

So there is some sort of relationship that is ongoing.

As per the article, the provider is banning the RIAA website . So you might want to add 208.225.90.120 to the IP address space. Note that 208.225.90.120 is part of the UUnet Technology (Web Business Unit) IP Address space.

As per the article, the provider is banning the RIAA website . So you might want to add 208.225.90.120 to the IP address space. Note that 208.225.90.120 is part of the UUnet Technology (Web Business Unit) IP Address space.

Cool, who would have ever thought of digging through DNS records to determine where someone may originate from? I know I wouldn't. I suggest you all stop using such patent infringing tools as nslint, dig, whois, nslookup, and even Arin immediately as you may inadvertantly (no excuse!) determine where a system may be. Heavan forbid that armed with such illecit knowledge you then try to distribute some content to them from a reasonable location.

Wow they've learned how do use ARIN. Congratulations!

Ok, I looked at OverPeer's parent company's website, SK.com. Apparently SK also owns SK Telecom which surprise surprise, has a BIG friggin network. Want to bet they're going to leverage some of this address space for their burgeoning new company? My suggestion is to black hole this huge frickin network. You can do what ever you want to your own machines, so I suggest adding "route add -net 63.106.192.0/18 127.0.0.1" to your rc.local, rc.net or autoexec.bat if you sit down to pee. If you run a web server add this command to that server too. If enough peeps do this, they're business will suffer (lets see them operate a telecom that can't get to a bunch of sites). And it's legal. Propagating that route to a misconfigured ISP would be illegal and I DO NOT ENCOURAGE ANYONE TO BREAK THE LAW. You are simply denying this company and it's clients access to your system for political reasons and as a side benefit, may get fewer bogus files on Gnutella.

start here

Almost, not quite.

ICANN stands for "Internet Corporation for Assigned Names and Numbers". It is a non-profit set up a few years back to take over the duties of the Internet Assigned Numbers Authority.

One of these is the clerical duty of assigning /8 blocks of global IPv4 address space and /16 blocks of IPv6 address space to each Regional Internet Registry as needed. The users of the address space decide policy, and it's this policy that the RIRs implement.

Another duty ICANN took over is maintenance of the DNS root (which has been the controversial part), and a third duty is maintenance of the list of protocol numbers (imagine a link to your /etc/services just here - something's stopping me posting triple-slash).

That really requires BGP to do right.. and BGP means you have an ASN, which costs money now and you wouldn't be able to get your braodband provider to peer with you anyway.

1.6 million available IP addresses? BZZT, wrong.

See, Joe Sixpack doesn't buy an IP address. He rents it from his ISP.

The ISP is the organisation that actually owns rights to the addresses. And them rights don't get sold in singles.

Peace Region Internet Society serves a few northern Canadian towns totalling maybe 30,000 people. They own 1,280 IP addresses. (199.60.237.x, 64.114.104.0-64.114.107.255) -- this sort of efficiency is the *rare* case.

The government of British Columbia owns 65,536 IP addresses (142.32.0.0-142.32.255.255). They just fired a few thousand employees -- now we're in the 30,000 range. Overkill, eh?

The University of British Columbia owns 65,536 IPs. They have 40,000 students -- you think they all have computers on the net?

The reason there's an IP address crisis is because organisations are sold IP addresses in groups of 256 (2^8), 65,536 (2^16) or (ack!) 16,777,216 (2^24).

When the net was shiny and new, big corporations were given big IP address blocks rather than a lot of small ones. Hence, inefficient distribution of our resources.

(If you're interested in finding out how many addresses other people have, visit http://www.arin.net/whois/. This is only for North American sites -- you'll need RIPE or ApNIC for other continents.)

>John Curran called the meeting to order at 10:20 a.m. EST.
[new officers elected]
[multihoming and address space issues decided]
>Scott Bradner moved to adjourn the meeting at 10:40 a.m. EST.

I was curious which box he was pinging, and did a whois database search... It's at MIT alright, but what was more amazing was that it owns all 18.x.x.x IPs -- quite a large block!!

Massachusetts Institute of Technology (NET-MIT-TEMP)
1 Amherst Street
Cambridge, MA 02139-1986
US

Netname: MIT
Netblock: 18.0.0.0 - 18.255.255.255

I found the inevitable geneology links, a link to his actual web page (check the phone number), and an old link to a web page that has since removed the email.

If I received the spam, and were just the right level of cluelessness (clueless enough to consider hiring a spammer, clueful enough to do a web search on his name), then I may not find a web page claiming him as a spammer. Either Google has removed some content, or it was never indexed. There's no //petemoss.com/robot.txt, so I have to assume the former.

This may mean the folks that sent him back the link heard about it through the anti-spam newsgroups, or some other channel. That's a little different than doing a web search. I can imagine HR folks doing a web search, but maybe not a usenet search. Of course, if you do do the google usenet search, you find a number of links.

While I'm being fair, I did do a few ARIN whois searches. For those out of the know (I was one of them this time last year), the whois database gives information about the entity that registered a particular domain.

Searching for petemoss.com (Neil Schwartzman's prefered domain and the host of the website) gave nothing. I then pinged petemoss.com, got an IP address (206.117.161.122). The query returns the netblock's identity, as well as an administrator name, email, and (important to Shifman) phone and fax.

It seems a little more damning that Mr. Shifman doesn't know about these tools of the trade for tracking down people on the net. Of course, since I'm being fair, it wasn't until I started setting up my own home network and had to decipher firewall logs that I learned about whois...

As nice as it is to have Provider Independant IP Space, as you've found out it's virtually impossible to get without paying through the nose (you can just BS how many hosts you have, if you want to fork over the cash to pay US$2,500/year for a /20 block from ARIN here in the USA). Then there are less clueful orginizations that don't even know they have some, because the current IT staff didn't get along with their predecesor (for instance this block I found for my own local City).

However, it's not required to multihome. Really what you require to multihome is an Autonomous System Number (ASN) and a /24 block from either traditional Class C space, or the 63/8 or 64/8 Class A blocks that were returned a bit ago. No one with a clue should be filtering a /24 from either location.

The biggest downside to using your upstream providers IP space is that it pins you to a single ISP as you must use their IP space, and leaving them requires renumbering (but can be done without downtime within a reasonable transition timeframe of a few days). What we did was pick the largest ISP out there (UUNET), and then one of the top 10 (Sprint) and use both IP space (although we could have chosen to only use UUNET's). We use both provider's IP space on any important box (email, mainly) so that if we were to disconnect from one ISP (not likely), we only have to remove their IPs from our DNS, and the other IPS's IPs are already there and live (plus it gets around odd local routing problems outside of our control, where one remote site can reach one ISP but not the other).

We announce both blocks out both ISPs (to announce UUNET's blocks out Sprint and have them come back the shortest route, we had to get UUNET to "punch a hole" in their larger block and announce the smaller block we had so that both UUNET and Sprint would be announcing equally specific blocks for us... same is true of Sprint announcing their own assignment to us more specifically so they'll route to Sprint or UUNET, as if we only announcing the smaller block out UUNET, then all traffic would go that way unless our UUNET connection was down).

Anyway, not to write a HOW-TO (see Halibi's Internet Routing Architectures ISBN: 157870233X), but that's how to do it.

You don't need a huge router to be multihomed. Even a 2501 would work (as you just take default routes announcements from both ISPs, with the point being to advertise out your own blocks). If you want to take full routes from two ISPs, a 2650 with 128mb of RAM will work fine. If you want to take defaults + ISP-direct-customers, a 2610 with 64mb of RAM will work (it handles ISP-direct-customers from Sprint and UUNET just fine for us).

Lastly, never forget that site redundancy is just as important as internet redundancy. If a backhoe takes out the fiber or copper pairs going to your neck of the woods, more than likely it'll be both ISPs.

Normally I'd never mention my certs, but here they're relevent:
I'm a CCNP (next step past CCNA) and CCDP (next step past CCDA). I've been working for an IT Consulting/Integrater firm for 4 years (help desk positions 3 years before), and we also have our own little ISP on the side. I've worked with all the top 10 ISPs (and plenty of the Tier2/Tier3 folks), and set up a couple hundred of multihomed sites, so I'm not just quoting what I read in a book somewhere.

As nice as it is to have Provider Independant IP Space, as you've found out it's virtually impossible to get without paying through the nose (you can just BS how many hosts you have, if you want to fork over the cash to pay US$2,500/year for a /20 block from ARIN here in the USA). Then there are less clueful orginizations that don't even know they have some, because the current IT staff didn't get along with their predecesor (for instance this block I found for my own local City).

However, it's not required to multihome. Really what you require to multihome is an Autonomous System Number (ASN) and a /24 block from either traditional Class C space, or the 63/8 or 64/8 Class A blocks that were returned a bit ago. No one with a clue should be filtering a /24 from either location.

The biggest downside to using your upstream providers IP space is that it pins you to a single ISP as you must use their IP space, and leaving them requires renumbering (but can be done without downtime within a reasonable transition timeframe of a few days). What we did was pick the largest ISP out there (UUNET), and then one of the top 10 (Sprint) and use both IP space (although we could have chosen to only use UUNET's). We use both provider's IP space on any important box (email, mainly) so that if we were to disconnect from one ISP (not likely), we only have to remove their IPs from our DNS, and the other IPS's IPs are already there and live (plus it gets around odd local routing problems outside of our control, where one remote site can reach one ISP but not the other).

We announce both blocks out both ISPs (to announce UUNET's blocks out Sprint and have them come back the shortest route, we had to get UUNET to "punch a hole" in their larger block and announce the smaller block we had so that both UUNET and Sprint would be announcing equally specific blocks for us... same is true of Sprint announcing their own assignment to us more specifically so they'll route to Sprint or UUNET, as if we only announcing the smaller block out UUNET, then all traffic would go that way unless our UUNET connection was down).

Anyway, not to write a HOW-TO (see Halibi's Internet Routing Architectures ISBN: 157870233X), but that's how to do it.

You don't need a huge router to be multihomed. Even a 2501 would work (as you just take default routes announcements from both ISPs, with the point being to advertise out your own blocks). If you want to take full routes from two ISPs, a 2650 with 128mb of RAM will work fine. If you want to take defaults + ISP-direct-customers, a 2610 with 64mb of RAM will work (it handles ISP-direct-customers from Sprint and UUNET just fine for us).

Lastly, never forget that site redundancy is just as important as internet redundancy. If a backhoe takes out the fiber or copper pairs going to your neck of the woods, more than likely it'll be both ISPs.

Normally I'd never mention my certs, but here they're relevent:
I'm a CCNP (next step past CCNA) and CCDP (next step past CCDA). I've been working for an IT Consulting/Integrater firm for 4 years (help desk positions 3 years before), and we also have our own little ISP on the side. I've worked with all the top 10 ISPs (and plenty of the Tier2/Tier3 folks), and set up a couple hundred of multihomed sites, so I'm not just quoting what I read in a book somewhere.

Spamcop, at its core, is an automated spam processing system. It comes in a free and a pay flavor. Basically, you either cut and paste your spam into a form on their website, headers included, or you forward it as an attachment to your submission address. It slices and dices, looks for links, parses headers, records statistics, and sends notices to appropriate parties, be they ARIN contacts for IPs or abuse.net contacts for domains. There's all sorts of nifty stuff for making sure that your real email address doesn't end up in spammers' hands, instead creating a ReportID@spamcop.net address for each report (my most recent one is in the 4.75 million range). Still though, it's not perfect. Sometimes it's fooled by the mta chain, sometimes it does let an identifying bit of information slip through, and it DOES NOT parse reply-to addresses (grumble). Still though, it does do a pretty good job overall, and lets me send out reports about spam in a fraction of the time it would take to manually parse them.

For spamcop vs. @home, @home bounces anything with an @spamcop.net address, whether it's an automated report or whether it is someone using their @spamcop.net address (each paying member gets an email account that is spam-filtered, which can be used for everyday usage). Myself, I prefer Sneakemail for my mail management. Anyway, not only do they block spamcop reports, but they generally ignore even manual reports from non spamcop.net addresses. Just today, they started sending an auto-acknowledgement with a case ID of something like 1001 for every case (non-incrementing), indicating that they simply don't care anymore.

All in all, SpamCop, despite its problems, is an incredible service. It's open source too, with the code being available on SourceForge. You can use it for free, or pay $36/yr or $1/mb of mail for a lot of advanced features, such as the filtered email address, IMAP/POP3 access, black/whitelists, et al.

Actually IPs do cost $$$$s. ARIN charges based on the number of IP addresses assigned to the ISP. It starts at $2250/year for /14.

So a /20 (the smallest they like to hand out) is 4080 IP addresses that works out to a little over 55 cents per ip/year. Yes it's less than $4.50, but it's not free either.

Actually IPs do cost $$$$s. ARIN charges based on the number of IP addresses assigned to the ISP. It starts at $2250/year for /14.

So a /20 (the smallest they like to hand out) is 4080 IP addresses that works out to a little over 55 cents per ip/year. Yes it's less than $4.50, but it's not free either.

Start here http://www.arin.net/whois/ to back-track this IP:

Judell Enterprises (NETBLK-JUDELLENTERPRISE1)
3744 Roxbury Lane
Alexandria, VA 22309
US
Netname: JUDELLENTERPRISE1
Netblock: 216.84.60.128 - 216.84.60.143
Coordinator:
Crouch, James (JC1498-ARIN) legrump@erols.com
703-780-9462

Record last updated on 10-Aug-2000.
Database last updated on 27-Sep-2001 23:18:25 EDT.

Does this NT 4.0 SP6a, FreeBSD 4.4 running geek have to teach you Linux bodgers everything? ;-)

(I'm assuming with 99% certainty he owns the entire ip block)

A quick glance at ARIN reveals you are correct:

Hot Networking (NETBLK-QWEST-63-236-138-0)
8219 La Riviera Dr.
Sacramento, CA 95826
US

Netname: QWEST-63-236-138-0
Netblock: 63.236.138.0 - 63.236.138.255

Coordinator:
Lyon, Barrett (BL321-ARIN) blyon@theshell.com
(916)387-8649

Record last updated on 28-Dec-1999.
Database last updated on 3-Sep-2001 23:06:38 EDT.

Hick town eh?

Oh yeah, way out there in Fairfax County.

Funny, we have the NRO, one of the largest airports in the US, an 802.11b wireless network, SGI, a linux users group, and an Intel datacenter, not to mention also having a boatload of linux careers. Oh yeah, and don't forget that MAE-East often gets cut by cows chewing on the fiber out here in hickville. Oh, I forgot some little things like ThinkGeek, NSI, and ARIN.
Oh yeah, and that hick high school is getting me my CCNA.

I'm not even going to mention AOL, Erols, or the CIA.

But you get the picture.

- Cary

http://www.arin.net/cgi-bin/whois.pl?queryinput=13 0.49.77.223
Somewhere in Pitt, i don't get it either.