iljitsch.com

blog-onderwerpen: netwerk · BGP / IPv6 / meer · instellingen · zw/w · mijn bedrijf: inet⁶ consult · Twitter · Mastodon · LinkedIn · email · 🇺🇸 🇳🇱

Hoi, ik ben Iljitsch van Beijnum. Dit zijn algemene netwerk-gerelateerde posts.

Documentation ASNs and IP prefixes

As you may have noticed, I write about BGP from time to time. When coming up with example configurations, there's always the challenge of which AS numbers and IP addresses/prefixes to use...

Full article / permalink - posted 2015-04-24

"Get Your Hands Dirty with BGP" tutorial at next month's RIPE meeting

At the RIPE-70 meeting next month in Amsterdam I'll be doing a tutorial on BGP: "Get Your Hands Dirty with BGP".

This is the "light" version of the regular BGP training that I do several times a year: the theory part will be around 30 minutes and then about two hours of hands-on BGP using the Quagga routing software running in a virtual machine on the participant's laptops.

If you're attending the RIPE meeting and you're interested in participating, please go to this page and send me an email so I know how many people to expect.

Permalink - posted 2015-04-15

IPv6: to firewall or not to firewall?

Yesterday I wrote about my new printer, which supports IPv6. I posted a photo on Twitter with the printer's IPv6 address, and before long people attempted to print over the internet. Eventually, two succeeded.

I'm not very happy that Canon allows this by default, and doesn't give you any way to block this other than to disable IPv6 or put the printer behind a firewall.

Here's another link to that part of the story, as the title I used yesterday doesn't mention IPv6 or firewalling.

Permalink - posted 2015-03-04

→ HTTP/2 finished, coming to browsers within weeks

So HTTP 2 multiplexes multiple transfers over a single TCP session. It would be cleaner to do this using SCTP, which implements multiple streams natively. But having to figure out whether you can use SCTP or need to use TCP would be a significant complication, while negotiating the use of HTTP 2 over TCP port 80 should be relatively straightforward.

I'm glad the mandatory encryption didn't happen. Encryption is important, but there are times where it's unneeded, and forcing people to use it when they don't want/need it would just make for even more carelessness with certificates than we're already seeing today. For instance, the server serves the exact same copy of this webpage to anyone who requests it, so there's no point in encrypting it. Encryption would just add more time consuming round trips, use more battery power, and require me to buy a certificate.

Apparently most of the browser makers are already on the case, no mention of Safari, though. I'm interested to see how much faster HTTP 2 will be in practice.

Permalink - posted 2015-02-18

Comparing open source routing platforms

Over the weekend, I wrote posts about trying out OpenBGPD and BIRD.

Here's a bunch more information about these two and other open source routing software...

Full article / permalink - posted 2015-02-02

The BIRD Internet Routing Daemon

Yesterday, I talked about my first experience with OpenBGPD. Which of course raised the question: why not use BIRD instead? It's a lot more mature. So I gave it a try.

Full article / permalink - posted 2015-02-01

oudere posts - nieuwere posts

Search for:
RSS feed

Archives: 2001, 2002, 2003, 2004, 2005, 2007, 2009, 2010, 2011, 2012, 2013, 2014, 2015, 2016, 2018, 2019, 2020, 2021, 2022, 2023, 2024