It's been quite some time since I've posted anything on Vox. My last published post was dated November 6, 2008. Wow.
Twitter powered Facebook status updates, sporadic newsgroup posts, and LinkedIn updates have satisfied my need to stay "internet active" until today.
The events in Iran have captivated me. I'm currently in Philadelphia at a conference but I find I'm splitting my attention with a portion of it going to the conference speaker, another portion dedicated to work-related events, and the remainder following the real-time updates of StopAhmadi and Andrew Sullivan's blog (who I am proud to say Six Apart hosts).
I am inspired and engaged by the political events taking place in Iran as it's people navigate the treacherous waters of political self-determination.
Special kudos go out to Twitter, NTT, and our POTUS for dealing with everything today in a way that makes me proud.
"To those (Iranian) people who put so much hope and energy and optimism into the political process... the world is watching and inspired by their participation." - Barak Obama
and a full-sized Viper fighter sure would look nice in the driveway.
http://blog.wired.com/underwire/2008/11/battlestar-gala.html
Section 8 of the Paulson financial bailout package includes the following language:
Decisions by the Secretary pursuant to the authority of this Act are non-reviewable and committed to agency discretion, and may not be reviewed by any court of law or any administrative agency.
Um, excuse me? Would the UnAmerican jackass that put that clause in the bailout plan please go back to the secretive fascist country from which you've apparently escaped?
Seriously.
I'm pretty tired of all the stupid campaign tricks and lying the last few weeks. I'm ready for more substantive discourse and was wondering when the debates would be. If I'm reading this right, here's the schedule. Someone please correct me if I'm wrong.
Paul G. Kirk, Jr. and Frank J. Fahrenkopf, Jr., co-chairmen of the non-partisan, non-profit Commission on Presidential Debates ("CPD" or "the Commission") today announced dates, sites and formats of three presidential and one vice presidential debates for the 2008 general election. The dates and sites are:
First presidential debate:
Friday, September 26
University of Mississippi, Oxford, MS
Vice presidential debate:
Thursday, October 2
Washington University in St. Louis, MO
Second presidential debate:
Tuesday, October 7
Belmont University, Nashville, TN
Third presidential debate:
Wednesday, October 15
Hofstra University, Hempstead, NY
Whoa, what the heck is going on? This morning I woke up to 60 spam messages in my gmail. In the time it took me to go from home to the office, I received 33 more.
Google, why haven't you integrated Postini into gmail yet? I rarely receive spam in my Postini-filtered work address.
Here's my cool Pix/ASA trick of the day. Take the following scenario:
I had a Pix with a sizable jumble of non-concurrent networks behind the inside interface. 192.168.1.0/24, 192.168.50.0/24, and so on. For simplicity I had set a large static route to encompass them all.
pix# show route | i 192.168
S 192.168.0.0 255.255.0.0 [1/0] via 10.0.0.1, inside
At a later time I needed to establish a ipsec tunnel to a remote network with the internal address 192.168.10.0/24. Because the address space overlaps with the static route, hosts on the Pix network were unable to route to the remote site. They actually encountered a routing loop as the inside router (10.0.0.1) and the inside interface of the pix bounced traffic back and forth.
In order to fix the problem I had to let the crypto map for the new tunnel inject the remote sites route into the routing table. The "reverse-route" argument enables this feature.
crypto map mymap 10 set peer 1.1.1.1
crypto map mymap 10 set transform-set 3DES
crypto map mymap 10 set reverse-route
So now when you look at the pix route table you'll see an entry for the remote site.
pix# show route | i 192.168
S 192.168.0.0 255.255.0.0 [1/0] via 10.0.0.1, inside
S 192.168.10.0 255.255.255.0 [1/0] via 2.2.2.2, outside
Wow! Two wonderful things smashed together make a rad band. Powerglove is a Nintendo theme song cover band with a metal twist. On top of that the members all dress up in Nintendo/Gwar inspired dress. They're touring, but doesn't look like they'll make it all the way to California this time.
After spending more than a few days troubleshooting this on a live production network, I thought I'd share. If you're a network engineer troubleshooting a similar problem, hopefully Google brings you here for a quick fix before you open a support ticket.
FTOS 7.6.1 on Force10 hardware may not support mac masquerading when the mac address changes ports . When a mac address floats from one port to another, as it would during a Cisco ASA failover, the arp table is not updated. In order to achieve this functionality you need to enable the following command in your switch config:
mac-address-table station-move refresh-arp
Problem solved.
The Obama campaign made a good move today by launching a "Fight the Smears" website to counter all the false rumours. As I've repeatedly witnessed in business, media, and politics, the best way to fight bad press, screw-ups, or just plain false allegations is to be straight up and face the issues head-on.
"What you won't hear from this campaign or this party is the kind of politics that uses religion as a wedge, and patriotism as a bludgeon – that sees our opponents not as competitors to challenge, but enemies to demonize. Because we may call ourselves Democrats and Republicans, but we are Americans first. We are always Americans first." - Barak Obama, June 3, 2008
