There is maintenance in our circuit vendor.
We just ignored this..

We do have a backup circuit between CFMT, but we are trying to figure out why the traffic didn't detour to that one.

Even we as an enterprise client of Cloudflare, they give nothing help when we call them. The ticket has never been replied by CF during this hour.

The prefixes have already been withdrawal from Cloudflare 10 minutes ago. We will ask to advise it once everything is fixed include the primary and backup link.

DMIT received a CHILD ABUSE taken down notice for 154.17.0.52
Please NOTE: DMIT has a zero-tolerance policy for children's abuse and pornography.

Once we received related notices:
- Your account information and payment information will be shared with the related US. Dept
- Your payment account, DMIT account, DMIT Credit, all DMIT services will be terminated or banned in DMIT Inc.

DMIT Inc.

Cloudflare didn't finish the configuration on their side for 2 backup links. They are working on it.
We will announce the route via CFMT ASAP once they finished.

The original Taken Down Notice for 154.17.0.52

This site is under Cloudflare CDN, the original site is in DMIT
DON‘T EVEN THINK CF will protect this kind of infomation for you.

CFMT route is back.
Also, we already set up a 10GE PNI with Cloudflare in LAX.
The PNI link between us with Cloudflare in HKG will be ready soon.

Hey! There is a new product we want you to know:
DMIT Los Angles Anti-DDoS sPro(Secure Pro) VM:
It comes with the DMIT Premium routing profile and Cloudflare Magic Transit.!!
We co-op with Cloudflare to offer you up to 5Tbps Anti-DDoS capacity for your VM.
Also, it has the same route as our Pro(Premium) VM.

Go order: https://www.dmit.io/cart.php?a=add&pid=130

Lifetime 15off code for annual payment: Go-Build-A-Site

BTW, DMIT offer a time-limited 15% recurring aff for this product.

Bandwidth capacity 📈 to the moon

LAX-0290CKN is in maintenance for Ceph. ETA: 30min;
Few VM down.

We found there are lots of orders at yesterday. This full-filled our LAX cluster, even we already added 2 more nodes at last week.

But don’t worry 😧; we already put one more node online to relief the loads. There is another node will be available soon.

Please let us know if your new ordered server cannot boot.

FYI: DMIT plans to install 3 more nodes before we get AMD 3rd GEN EPYC servers.

The below message is for LAX.sPro and HKG.Pro only.

Due to multiple limitations which listed below by our architecture, we need time to do more research on PVE code to make sPro stable and fast.

- Cloudflare required TCP MSS lower than 1450
- Juniper does not support TCP MSS clamping on IRB(VLAN L3) interface
- PVE has no native MTU configuration API.

Our solution is doing modifications on PVE. Before we deploy the code, please use the below scripts to keep your VM’s MTU at 1350.

ip link set mtu 1350 dev eth0
[ ! -e "/var/spool/cron/root" -o -z "`grep 'mtu' /var/spool/cron/root`" ] && { echo -e "@reboot ip link set mtu 1350 dev eth0" >> /var/spool/cron/root;chmod 600 /var/spool/cron/root; }
service crond reload
service crond restart


Above message is for LAX.sPro and HKG.Pro only.

We saw some reports from the client that said noVNC is unusable on the LAX site.
This is due to Proxmox and WHMCS module's limitations;
the DMIT dev team is engaging with this problem. It will be fixed soon.

Fixed; Patch has been loaded.

Clipboard and xTerm.js feature will be available soon.

We will push patch to HKG site ASAP.

This patch will help to reduce the response time of API and VNC.

After a month of cable patching work by CTA, this circuit is ready now. Traffic is loaded and ready to use.

Scheduled maintenance:

Datecenter: LAX

Time: April 10, 4: 00 pm Eastern Time;

Content: DMIT will restart BGP session with AS4809; This will result in the loss of CN2(AS4809) route for 1 hour.

Impact: within the time, China traffic transit by Premium Routing Profile does not pass through AS4809

After maintenance: LAX.sPro no longer needs to modify MTU to avoid packet loss.

Known issues:

Data center: HKG

Issues: high packet loss to China telecom (AS4134).

Service: PVM.HKG (without premium or lite tag)

ETR: April 11th to April 15th.

Fixed at Apr 10;

Fixed but still in observation.

Found new problem; update later.

Due to high deamon on Layer 7 DDoS Protection on sPro serial in LAX;
DMIT team decied to build a in datacenter Layer 7 DDoS firewall soon;
Our management team and NOC team are evaluating firewall appliances from several vendors.

hopefully, the firewall will be ready in June.
At that time, DMIT will offer basic protection for the entire LAX data center(Lite & Pro) and the best protection for sPro.

The diagram shows 3 situations with CFMT, just FYI.

Cloudflare Magic Transit only offer Layer 3/4 protection; so in the basic, all Layer 7 attack will be ignored at present.

The IP will lose routing optimization if the client chose to use Cloudflare CDN/WAF even without CFMT IP.