Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


View this topic in a long page with up to 500 replies per page Create new topic
1 | 2 | 3 | 4 | 5 | 6
BDFL - Memuneh
59056 posts

Uber Geek
+1 received by user: 10338

Administrator
Trusted
Geekzone
Subscriber

  Reply # 1079764 4-Jul-2014 09:16
2 people support this post
Send private message

This is normal behaviour it seems. From previous experiences when things get bad there's a concerted move to be quiet about it - see what happened with whole Netflix/cache problem before.

Sorry Vodafone folks, nothing personal, just an observation on how the company behaves.





784 posts

Ultimate Geek
+1 received by user: 103
Inactive user


  Reply # 1079780 4-Jul-2014 09:47
Send private message

All a bit sad really as when UFB hits most of us will kiss goodbye to VF ....

 
 
 
 


BDFL - Memuneh
59056 posts

Uber Geek
+1 received by user: 10338

Administrator
Trusted
Geekzone
Subscriber

  Reply # 1080780 4-Jul-2014 10:25
Send private message

I have asked Vodafone Comms people for something we can pass it on. I got an ACK so will wait for an update and post later.





4 posts

Wannabe Geek


  Reply # 1080819 4-Jul-2014 11:33
Send private message

One 'solution' (funny that we should have to come up with solutions to Vodafone's network problems!) is to run split DNS if you can.

I stick 'default' stuff out OpenDNS' servers (which do content filtering for the kiddies), and anything that relies on geolocation (akamai, microsoft, steam etc) through the Telstraclear DNS servers.

It seems to work pretty well, in that I haven't noticed too many DNS issues myself this week...

BDFL - Memuneh
59056 posts

Uber Geek
+1 received by user: 10338

Administrator
Trusted
Geekzone
Subscriber

  Reply # 1081138 4-Jul-2014 19:10
Send private message

Ok, received some information from Vodafone on this... Basically, yes the DNS resolvers are under excessive load, which seems to be the result of open CPEs being used as part of amplification attacks. 

The blocking of DNS resolvers to anyone outside of Vodafone's own network is a move to mitigate this. Vodafone is proactively contacting people who have open DNS resolvers in their CPE configurations. 

Here is the report:


The HFC DNS servers are experiencing degraded performance issues due to excessive load.  The excessive load is a side effect of DNS amplification attacks being conducted on the Internet.

The reason that these attacks are impacting the HFC DNS servers is that a number of HFC customer devices are misconfigured and are acting as open DNS resolvers. The HFC DNS servers are also currently configured as open resolvers. Open resolvers are used to carry out DNS amplification attacks and this is the cause of the excessive load impacting the HFC DNS servers. It is important to note that these attacks are not specifically targeting either the HFC customer or the HFC DNS servers.

To resolve this issue, the HFC DNS servers are being reconfigured to only respond to queries from Vodafone customer networks. Also all customers with misconfigured devices are being contacted and given instructions in how to disable the open resolver configuration. As this will take time a number of network mitigations are being put in place as well, such as rate-limiting of DNS queries and enabling Denial of Service mitigation features within the network.


I would say this issue should be resolved/mitigated after today (Vodafone tech folks originally posted a message in the NZNOG mailing list saying the changes would happen on the 3rd July). More information in this thread.






784 posts

Ultimate Geek
+1 received by user: 103
Inactive user


  Reply # 1081160 4-Jul-2014 19:41
Send private message

Thanks for the update..but even if fixed it will only be temp.!

1438 posts

Uber Geek
+1 received by user: 339


  Reply # 1081897 6-Jul-2014 16:57
Send private message

they don't seem to have done it yet?

C:\Users\Madengineer>nslookup
Default Server: BoB.Orcon
Address: 10.1.1.1

> server 203.109.129.67
Default Server: ns1.ihug.co.nz
Address: 203.109.129.67

> google.com
Server: ns1.ihug.co.nz
Address: 203.109.129.67

Non-authoritative answer:
Name: google.com
Addresses: 2404:6800:4006:803::1007
74.125.237.102
74.125.237.105
74.125.237.104
74.125.237.96
74.125.237.99
74.125.237.103
74.125.237.98
74.125.237.101
74.125.237.110
74.125.237.100
74.125.237.97


2242 posts

Uber Geek
+1 received by user: 353

Trusted
Subscriber

  Reply # 1081916 6-Jul-2014 17:42
Send private message

I think you're looking up against the wrong servers

Earlier on page 1 they said to use 203.97.78.43 & 203.97.78.44. 

Not sure why their authoritative name servers allow recursive lookups....

BDFL - Memuneh
59056 posts

Uber Geek
+1 received by user: 10338

Administrator
Trusted
Geekzone
Subscriber

  Reply # 1081920 6-Jul-2014 17:50
Send private message

From my Snap connection:

Default Server: fritz.box
Address: 192.168.178.1

> Default Server: ns1.acld.clix.net.nz
Address: 203.97.78.43

> Server: ns1.acld.clix.net.nz
Address: 203.97.78.43

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
>





784 posts

Ultimate Geek
+1 received by user: 103
Inactive user


  Reply # 1082137 6-Jul-2014 23:18
Send private message

Its still very quiet....

BDFL - Memuneh
59056 posts

Uber Geek
+1 received by user: 10338

Administrator
Trusted
Geekzone
Subscriber

  Reply # 1082743 7-Jul-2014 20:25
Send private message

This is still happening, not solved at all:

 

 

 



 





2 posts

Wannabe Geek
+1 received by user: 1


  Reply # 1087788 12-Jul-2014 16:21
Send private message

Seems ok now and have switched back as they are much faster than OpenDNS & Google DNS alternatives.  
I wrote a simple bash script to check 98 or so common internet sites and haven't seen any problems since yesterday.  

620 posts

Ultimate Geek
+1 received by user: 161


  Reply # 1090999 17-Jul-2014 20:22
Send private message

Are there still a problem with VF DNS servers? I got two colleagues who are complaining about their home internet for the last few days saying that pages are incomplete i.e. no CSS pages loaded.

 

Also tonight I started to have the same problem on a few US websites and for the first time in three years am getting major jitter on my VoIP 2talk connection on the upstream. But I doubt the VoIP jitter is related to DNS. 

Having to fail over to OpenDNS.





25580 posts

Uber Geek
+1 received by user: 5358

Moderator
Trusted
Biddle Corp
Subscriber

  Reply # 1091006 17-Jul-2014 20:35
2 people support this post
Send private message

jimbob79: Are there still a problem with VF DNS servers? I got two colleagues who are complaining about their home internet for the last few days saying that pages are incomplete i.e. no CSS pages loaded. Also tonight I started to have the same problem on a few US websites and for the first time in three years am getting major jitter on my VoIP 2talk connection on the upstream. But I doubt the VoIP jitter is related to DNS. 

Having to fail over to OpenDNS.


Are you on cable?

I've heard some speculation in the last week or so that the unlimited plans have literally trashed some nodes of the network.. If true it's exactly why the US doesn't have unlimited internet any longer on cable, DOCSIS can struggle when a small number of people smash a shared medium.



10 posts

Wannabe Geek
+1 received by user: 2


  Reply # 1092187 19-Jul-2014 22:00
Send private message

NikT:

The correct DNS servers for Vodafone/exTCL Cable should be 203.97.78.43 & 203.97.78.44.

The Paradise DNS servers, 203.96.152.4 & 203.96.152.12, were previously used as well.


I've been on TC cable in Chch for 5-6 years and have had increasing DNS resolution issues (ie 'server not found') over the last 9 months. Just checked the router and it seems it's still using the Paradise DNS (96.152) even though I upgraded to Fast 50 and the DPC3008 last month. Admittedly I wasn't home when the new modem was installed, and the router was locked, but the installer left no information about checking/changing the DNS addresses.
From what I've read here it looks like these should have been changed sometime ago even if I stayed on the old service.
I obviously missed the memo.

1 | 2 | 3 | 4 | 5 | 6
View this topic in a long page with up to 500 replies per page Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Propel launch Disney Star Wars Laser Battle Drones
Posted 19-Nov-2017 21:26


UFB killer app: Speed
Posted 17-Nov-2017 17:01


The case for RSS — MacSparky
Posted 13-Nov-2017 14:35


WordPress and Indieweb: Take control of your online presence — 6:30 GridAKL Nov 30
Posted 11-Nov-2017 13:43


Chorus reveals technology upgrade for schools, students
Posted 10-Nov-2017 10:28


Vodafone says Internet of Things (IoT) crucial for digital transformation
Posted 10-Nov-2017 10:06


Police and Facebook launch AMBER Alerts system in NZ
Posted 9-Nov-2017 10:49


Amazon debuts Fire TV Stick Basic Edition in over 100 new countries
Posted 8-Nov-2017 05:34


Vodafone VoIP transition to start this month
Posted 7-Nov-2017 12:33


Spark enhances IoT network capability
Posted 7-Nov-2017 11:33


Vocus NZ sale and broadband competition
Posted 6-Nov-2017 14:36


Hawaiki reaches key milestone in landmark deep-sea fibre project
Posted 4-Nov-2017 13:53


Countdown launches new proximity online shopping app
Posted 4-Nov-2017 13:50


Nokia 3310 to be available through Spark New Zealand
Posted 4-Nov-2017 13:31


Nest launches in New Zealand
Posted 4-Nov-2017 12:31



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.