[Outages-discussion] [outages] Fwd: Your Bandwidth support ticket is updated (Connection issue on trunk)

Charles Sprickman spork at bway.net
Mon Sep 27 19:25:09 EDT 2021 

> On Sep 27, 2021, at 6:44 PM, DaZZa <dazzagibbs at gmail.com> wrote:
> 
> You might be jesting, but this does raise an interesting philosophical
> discussion point.
> 
> With so much core voice infrastructure - including emergency calls -
> moving to a VoIP base, how much greater is the risk of loss of
> service?
> 
> I admit to being an old school telco tech in the dim, dark past - and
> the idea that some foreign actor could disrupt phone service to such a
> scale in the days of PoTS was ridiculous. Gross physical events yes -
> but even massive general power outages weren't a problem because (at
> least down here in Australia), any exchange bigger than 100 lines or
> so had both extensive battery and generator backup suitable for days
> of operation.

Even worse, the industry is quickly losing people that can even remember when things were this robust.  And the “new normal” for “high availability” is quite lacking. I only worked as an ISP customer in a few CLEC COs (yay dialup!), but even the engineering involved in these facilities was pretty amazing.

It’s all a little troubling - both where the industry is at and how we still allow bad actors to just run a 800 Gb/s+ DDoS botnet. With cooperation, this could be solved, but now we have Cloudflare and a bunch of other companies running a business model where the bigger the attack is, the more they get paid, and since it is a for-profit business, all the attacker data is proprietary. 

It irks me that these vendors probably have a very good view of the botnet and are basically only giving it to people able to pay. None of this really ends well for anyone, especially any smaller businesses that simply can’t afford to budget for extortion.

Charles 

> 
> With a significant percentage of infrastructure now in third party
> DC's run by "We don't really care, just give us your money" type
> companies who appear to take....casual observance of things like
> backup power amd environmental services, and situations where someone
> in (insert bad actor country of your choice) can marshall a botnet of
> massive proportions, where does the line between critical
> functionality and convenience/cost get drawn?
> 
> D - musing in the morning is never good for the digestion.
> 
> On Sun, 26 Sept 2021 at 09:37, Rusty Dekema <rdekema at gmail.com> wrote:
>> 
>> Maybe it's the work of pro-TDM, anti-VoIP extremists. ;)
>> 
>> -Rusty
>> 
>> On Sat, Sep 25, 2021 at 7:08 PM Peter Beckman via Outages
>> <outages at outages.org> wrote:
>>> 
>>> Our monitoring first detected the issue at 3:00:03pm US EDT (19:00:03 UTC)
>>> and we detected recovery starting at 5:47:49pm US EDT (21:47:49 UTC) for a
>>> total outage of 2h 47m.
>>> 
>>> When I first called at 3:07pm the TAC was not aware of any issues. I opened
>>> a ticket at 3:15pm and the status page was first updated at 3:31pm. Quite a
>>> delay.
>>> 
>>> Thanks for posting this, Bruce! I look forward to the COE/RFO, how it was
>>> mitigated, and how they hope to reduce the impact of DDoS attacks in the
>>> future.
>>> 
>>> After this and the VoIP.ms DDoS, it begs the question who the bad actors
>>> are and what their goals are. Infrastructure attack? Misdirection?
>>> Telephony attack to end-around TFA for targeted individuals? US Government
>>> Red Team?
>>> 
>>> Beckman
>>> 
>>> On Sat, 25 Sep 2021, Bruce Freshwater via Outages wrote:
>>> 
>>>> From the source
>>>> 
>>>> -bruce
>>>> ________________________________
>>>> From: Joe DaSilva (Bandwidth Support) <ticketing at bandwidth.com>
>>>> Sent: Saturday, September 25, 2021 6:06:53 PM
>>>> To: Ben Beige <bbeige at sierraexperts.com>
>>>> Cc: Telephony <telephony at sierraexperts.com>
>>>> Subject: Your Bandwidth support ticket is updated (Connection issue on trunk)
>>>> 
>>>> Joe DaSilva (Bandwidth Support)
>>>> 
>>>> Sep 25, 2021, 6:06 PM EDT
>>>> 
>>>> Good afternoon,
>>>> 
>>>> Bandwidth is currently experiencing a DDoS attack which is intermittently
>>>> impacting our network. Our network operations and engineering teams are
>>>> actively engaged in critical efforts to protect our network and fully
>>>> restore all services as rapidly as possible. We will be sure to post key
>>>> information and updates to status.bandwidth.com as our efforts progress
>>>> and we have additional information to share.
>>> 
>>> ---------------------------------------------------------------------------
>>> Peter Beckman                                                  Internet Guy
>>> beckman at angryox.com                                https://www.angryox.com/
>>> ---------------------------------------------------------------------------
>>> _______________________________________________
>>> Outages mailing list
>>> Outages at outages.org
>>> https://puck.nether.net/mailman/listinfo/outages
>> _______________________________________________
>> Outages-discussion mailing list
>> Outages-discussion at outages.org
>> https://puck.nether.net/mailman/listinfo/outages-discussion
> 
> 
> 
> -- 
> veg·e·tar·i·an:
> Ancient tribal slang for the village idiot who can't hunt, fish or ride
> _______________________________________________
> Outages-discussion mailing list
> Outages-discussion at outages.org
> https://puck.nether.net/mailman/listinfo/outages-discussion

More information about the Outages-discussion mailing list