Time: February 9, 2015 08:00:00 (CET)
Dear Leaseweb Customer,

Today between 08:00 and 9:00 CET you might have experienced high latency and/or packet loss to/from some destinations due to a DDoS attack on part of our network in FRA-10. The attack has now been filtered and connectivity has been restored.

The following prefixes might have been affected:

37.58.52.0/23
46.165.196.0/22
46.165.200.0/22
46.165.192.0/22
46.165.212.0/22
46.165.204.0/23
46.165.216.0/22
46.165.224.0/22
46.165.236.0/22
91.109.24.0/22
185.17.144.0/24
77.223.144.0/23
78.159.126.0/25
84.16.232.0/24
178.162.171.128/25
178.162.192.0/19
185.28.69.0/24
212.95.36.0/24
185.23.16.0/23
193.104.219.0/24
5.61.32.0/20
37.1.192.0/21
37.1.216.0/21
46.165.208.0/22
46.165.206.0/23
46.165.232.0/22
37.58.48.0/22
46.165.220.0/22
46.165.228.0/22
46.165.240.0/21
46.165.254.0/24
37.58.56.0/22
37.58.60.0/24
217.73.56.0/21
185.17.120.0/22
185.49.68.0/23
46.165.248.0/22
91.109.16.0/21
91.109.28.0/22
185.49.70.0/23
78.159.126.0/25
84.16.232.0/24
178.162.171.128/25
178.162.192.0/19
212.95.36.0/24
77.223.144.0/23
185.28.69.0/24

2A00:C98:2020::/44
2A00:C98:2050::/44
2A00:C98:2200::/40
2A00:C98:2010::/44
2a00:C98:2100::/44
2A01:9260:100::/40
2A01:9260:200::/40
2A00:C98:2030::/44
2A00:C98:2040::/44
2A00:C98:2050::/44

If you notice any issues, please contact our support department via [email protected] or by creating a ticket via SSC.

Time: February 6, 2015 12:14:00 (CET)
Dear LeaseWeb customer,

[Update 12:30]
Some customers might have experienced connectivity issues to part of their services for up to 25 minutes. Blackholling was occurring on one of the links. Issue is now fixed. We are still investigating for the cause.

We experienced a short connectivity issue in part of our FRA-10 setup. We are investigating for the cause. At the moment cause if unknown. Traffic should be back to normal.

Affected ip ranges:

5.61.32.0/20
37.1.192.0/21
37.1.216.0/21
37.58.48.0/22
37.58.52.0/23
46.165.192.0/20
46.165.208.0/21
46.165.216.0/22
46.165.224.0/22
46.165.232.0/22
46.165.236.0/22
91.109.24.0/22
185.17.144.0/24
185.23.16.0/23
193.104.219.0/24
2a00:c98:2100::/44
2A00:C98:2200::/40
2A00:C98:2010::/44
2A00:C98:2020::/44

Time: February 2, 2015 17:10:00 (CET)
Dear LeaseWeb customer,

We are currently facing an issue with transatlantic waves from some of our carriers to the US, possibly causing connectivity issues on this route for a short period of time. We rerouted traffic and traffic levels have been restored.

If you still encounter issues please contact us at [email protected]. We apologize for any inconvenience.

Time: January 30, 2015 09:15:00 (CET)
Dear Leaseweb Customer,

At this moment we are experiencing a network issue on our Ring-1 network in the AMS-11 (Schuberg Philis) data center . The network issues are due to a faulty supervisor. A field engineer is on his way to collect parts and perform replacement.

Estimate time of repair is 13:00 CET. We apologize for any inconvenience caused by this outage.

Time: January 28, 2015 16:00:00 (CET)
Dear LeaseWeb customer,

On January 27, 2015, a GNU C Library (glibc) vulnerability, referred to as the GHOST vulnerability, was announced to the general public. In summary, the vulnerability allows remote attackers to take complete control of a system by exploiting a buffer overflow bug in glibc's GetHOST functions (hence the name). Like Shellshock and Heartbleed, this vulnerability is serious and affects many servers.

Source: http://seclists.org/oss-sec/2015/q1/274

Please do the following to check if your system is affected;

Ubuntu & Debian:
Check the version glibc by looking up the version of ldd (which uses glibc) like this:
ldd –version

If the version of eglibc matches, or is more recent than, the ones listed here, you are safe from the GHOST vulnerability:

• Ubuntu 12.04 LTS: 2.15-0ubuntu10.10
• Ubuntu 10.04 LTS: 2.11.1-0ubuntu7.20
• Debian 7 LTS: 2.13-38+deb7u7

CentOS & RHEL:
If the version of glibc is older than 2.12-1.149.5, your system is vulnerable to GHOST and should be updated. If you are using 2.12-1.149.5 or later, you are safe from the vulnerability.

Fix:
Update glibc (either apt-get update && apt-get dist-upgrade or yum update glibc).

Trusting to have informed you sufficiently,

Time: January 21, 2015 23:40:00 (CET)
Dear Leaseweb Customer,

Between 23:40 and 00:10 CET you might have experienced high latency and/or packet loss due to a DDoS attack in part of our network in AMS-01. The attack has now been filtered and connectivity has been restored.

The following networks might have been affected:

46.243.6.0/23
94.75.236.0/23
95.211.80.0/21
95.211.96.0/22
95.211.100.0/23
85.17.74.0/23
109.69.56.0/22
179.43.174.0/25
188.0.225.128/25
192.36.61.0/24
212.7.196.0/23
212.7.199.64/26
212.7.199.128/25
212.7.209.0

2A01:9400:1::/48
2A03:F85:2::/48
2001:1AF8:4060::/44

If you still notice any issues, please contact our support department via [email protected] or by creating a ticket via SSC.

Time: January 19, 2015 10:00:00 (CET)
Dear Leaseweb Customer,

Between 07:00 and 10:00 CET you might have experienced high latency and/or packet loss due to a DDoS attack in part of our network in AMS-01. The attack has now been filtered and connectivity has been restored.

The following prefixes might have been affected:

37.48.98.0/24
37.48.99.0/24
89.144.18.0/24
95.211.94.0/23
95.211.168.0/21
95.211.184.0/21
95.211.192.0/21
95.211.224.0/21
95.211.240.0/22
145.255.129.0/24
179.43.174.128/26
185.17.184.0/23
185.17.186.0/24
185.17.187.0/24
212.7.198.0/24
212.114.56.0/23

2001:1AF8:4020::/44

If you notice any issues, please contact our support department via [email protected] or by creating a ticket via SSC.

Time: January 18, 2015 06:30:00 (CET)
Dear LeaseWeb customer,

We are currently experiencing connectivity issues in our FRA-10 datacenter. Our engineers are investigating the root cause of this issue.

As result of this failure, the following services are currently unavailable:
mirror.de.leaseweb.net
nscache10.leaseweb.net

Please be assured that we will do our utmost to resolve this issue as soon as possible.

We will update you again once we have more information. Our apologies for the inconvenience caused.

Time: January 15, 2015 22:40:00 (CET)
Dear Leaseweb Customer,

Between 21:30 and 22:40 you might have experienced high latency and/or packet loss due to a DDoS attack on part of our network in FRA-10. The attack has now been filtered and connectivity has been restored.

The following prefixes might have been affected:

37.58.52.0/23
46.165.196.0/22
46.165.200.0/22
46.165.192.0/22
46.165.212.0/22
46.165.204.0/23
46.165.216.0/22
46.165.224.0/22
46.165.236.0/22
91.109.24.0/22
185.17.144.0/24
77.223.144.0/23
78.159.126.0/25
84.16.232.0/24
178.162.171.128/25
178.162.192.0/19
185.28.69.0/24
212.95.36.0/24
185.23.16.0/23
193.104.219.0/24
5.61.32.0/20
37.1.192.0/21
37.1.216.0/21
46.165.208.0/22
46.165.206.0/23
46.165.232.0/22
37.58.48.0/22
46.165.220.0/22
46.165.228.0/22
46.165.240.0/21
46.165.254.0/24
37.58.56.0/22
37.58.60.0/24
217.73.56.0/21
185.17.120.0/22
185.49.68.0/23
46.165.248.0/22
91.109.16.0/21
91.109.28.0/22
185.49.70.0/23
78.159.126.0/25
84.16.232.0/24
178.162.171.128/25
178.162.192.0/19
212.95.36.0/24
77.223.144.0/23
185.28.69.0/24

2A00:C98:2020::/44
2A00:C98:2050::/44
2A00:C98:2200::/40
2A00:C98:2010::/44
2a00:C98:2100::/44
2A01:9260:100::/40
2A01:9260:200::/40
2A00:C98:2030::/44
2A00:C98:2040::/44
2A00:C98:2050::/44

If you notice any issues, please contact our support department via [email protected] or by creating a ticket via SSC.