News

Fraud Alert: Telerus Claims to be an Agent

Today we were notified by a customer that they were contacted by a company called Telerus who claimed to be an agent for Roller Network. We have not engaged Telerus for any services, nor does Telerus have any agent or resale agreements with Roller Network.

Telerus is NOT an agent for Roller Network, nor affiliated with Roller Network in any manner. Any claims otherwise are fraudulent.

If you are approached by Telerus claiming to represent Roller Network, we recommend declining to proceed; otherwise you risk falling victim to a scam or other fraud.

Secondary DNS Feature Realignment

We are working on feature realignment for Secondary DNS. Since it’s recently been migrated to paid-only, some options may still refer to requiring a paid account. Some of the paid vs. free features are are in the process of reevaluating are: TSIG support, master server settings, and zone file commands.

UPDATE:

  • DNS TSIG key support for zone transfers are now available on Basic level accounts.
  • A second master server is now allowed on Basic level accounts.

These features previously required a paid account of Personal or higher and were not available on free accounts. Since all Secondary DNS use now requires a paid account, these features have been realigned to an account level of Basic or higher.

Migration to HTTPS and Why HTTPS Everywhere

We’ve recently migrated all of our sites to HTTPS. The account control center and webmail will continue to use Extended Validation certificates like they always have, while everything else will now be using certificates from Let’s Encrypt.

Let’s Encrypt is a free, automated, and open certificate authority (CA), run for the public’s benefit. This helps create a more secure and privacy-respecting web.

Why HTTPS Everywhere?

Recently there’s a lot of buzz about moving to an HTTPS-only web. Previously, the cost of obtaining lots of HTTPS certs, having to manually install them, renew them, and pay fees for them discouraged using HTTPS unless needed. Let’s Encrypt solves many of those problems. Deploying HTTPS does take a little more effort, but there’s another reason why you should do it even if you think your site isn’t really that important to go encrypted: to help protect your visitors from their ISP.

We’ve personally experienced content hijacking with Charter, the local cable provider in Reno, NV (that now likes to be called Spectrum but we’re still going to call them Charter). Charter, for example, will hijack HTTP requests on residential and business coax service to provide content other than what you’ve requested. This is not the same as DNS redirection. HTTPS not only protects your privacy, but encryption ensures that the content you’ve requested passes between you and the site in its original, unaltered form without being rewritten or hijacked by your ISP, in addition to preventing eavesdropping. This is also known as a “man in the middle” attack. References: here, here, here, and here (plus we’ve seen it ourselves on home cable).

It is our opinion that an ISP altering content is entirely unacceptable for any reason. The only way we can truly protect ourselves is with encryption, not laws or depending on ISPs to “do the right thing”. Read more at EFF: Encrypting the Web.

Advanced Business Broadband – Project Canceled

We regretfully must announce the cancellation of the Advanced Business Broadband service we previous mentioned.

In summary, we were working with Straight Path to lease spectrum which we would use to operate this service. It turned out that Straight Path was in trouble with the FCC and was fined $100M (yes, million) in early 2017. Straight Path never followed through with the lease to us in late 2016, which led us to the first announcement. In order to avoid fully paying the FCC fine they were given a few options, one of which was to sell their licenses. We have since learned that the buyer is A&T. Update: Verizon outbid AT&T.

We are clearly disappointed with this outcome. This left us with no choice but to make assumptions based on what little information we have been able to obtain externally. Since it seems highly unlikely that AT&T Verizon is going to turn around and start leasing spectrum instead of using it for themselves, and the lack of communication with Straight Path, this firmly places our plans into the “canceled” category.

Network Changes for 2017

We have some new and exciting network changes in progress for this year. We’ll provide progress updates as we normally do, but here’s the quick summary of what’s happening.

  • A new 10G port for AS11170 to Hurricane Electric will be turned up once their POP comes online. TahoeIX will also gain a separate 10G peering to AS6939.
  • A new 1G peering connection to SFMIX in San Fransisco. Roller Network will gain a direct connection to the San Francisco Bay Area with many new peers. We at AS11170 will openly peer at TahoeIX and SFMIX.
  • Hurricane Electric will also become an option for all colocation customers on a carrier neutral basis through cross connects. Like other carriers, colo customers can contract directly with Hurricane for services.
  • Our connection to Charter/Spectrum AS20115 will be disconnected at some point this year. We could not reach an agreement to retain it because our current assigned account manager failed to engage us appropriately when placed in a position of competing against the multiple carrier options available at our facility. This is an unfortunate departure from the cooperative/assistive approach our old account manager held with us. We have lowered localpref on AS20115 prefixes accordingly.

We’re excited to bring new connectivity options from Hurricane Electric to Reno and look forward to implementing these changes. Although we are a carrier neutral facility, we will encourage customers who are not previously familiar with Hurricane Electric to give them a look as a new entrant into our local area.