Re: Aptum refuses to SWIP

["Forrest Christian (List Account)" <lists () packetflux com>]

So as another list member pointed out, they MAY have an obligation to do
the swip, depends on the details of the parent address allocation origin
and what their contractual relationship with the registrar is.  Assuming
modern direct allocations from ARIN, this is almost certainly the case.

Just a couple of workaround thoughts:

For the immediate concern will aptum provide you a LoA and would Amazon
accept this instead of the rwhois entries?

I'm also wondering if this might be a "no one that has got the request
actually has a clue how to resolve your issues"  issue.   I've seen
situations where companies don't know how to respond to a request outside
the most common requests they get.  Sometimes some enterprising employee
will also totally misunderstand your request and do stupid things like do
exactly opposite what you want them to do like remove correct information
in an effort to "fix the incorrect info".   And sometimes employees convey
"we don't have a clue" as "we don't do that".

Have you tried any other backchannels other than NANOG?  Like peeringdb
contacts (if you have access) or maybe through linkedin or something like
that?  Or threaten to change providers at the earliest possible moment?


On Fri, May 5, 2023, 11:05 AM Lyndon Nerenberg (VE7TFX/VE6BBM) <
lyndon () orthanc ca> wrote:

> Forrest Christian (List Account) writes:
>
> > I can't speak for aptum, but I'm curious as to why this is important to
> > you?   I'm not trying to discount this at all,  just curious why this
> > matters in the internet of 2023.
>
> Two main reasons.
>
> 1) We are trying to set up internal peering with AWS, and they use
> the rwhois info to validate that the addresses we want to route to
> them are actually assigned to us.
>
> 2) We (Hushmail) often have to deal with overly zealous mail firewall
> administrators (typically, state gov't medically-focused departments)
> who have a bad habit of outright blocking any mail from a non-US
> source.  But we also get this from general mail firewall appliance
> vendors who maintain their own blacklist.  Being able to point them
> at valid rwhois data to verify this mail is coming from a legitimate
> email provider is (or has been) our first step in getting our mail
> relays removed from those lists.
>
> (1) is directly impacting our business right now.  (2) will rear its
> head before long -- we usually run into those cases every three to
> four months.
>
> But the last time I looked, it's also ARIN's policy to require ISPs
> (which Aptum is) to SWIP addresses in order to justify future requests
> for address space.  I'm curious what will happen the next time they
> ask for additional ip6 allocations.  Or maybe they have no growth
> plans?
>
> --lyndon