0

Busy Week for MANRS, Routing Security, and More at APRICOT 2018

APRICOT 2018 is underway in in Kathmandu, Nepal, and as usual the Internet Society is an active participant in many areas of Asia Pacific’s largest international Internet conference. The workshops are taking place this week, with the conference happening next week. Here are some of the conference activities where we’ll be.

Routing Security BoF

On Sunday, 25 February, from 18:00 to 19:00 (UTC +05:45), Aftab Siddiqui and Andrei Robachevsky will moderate a Birds of a Feather (BoF) session on routing security. From the abstract, the session will provide a space where “…operators can share their approach in securing their own infrastructure and keeping the internet routing table clean as well. Also, this will provide a platform to review and highlight various BCOP documents to address routing security.” The Mutually Agreed Norms for Routing Security (MANRS) initiative is a key piece of the routing security puzzle.

Tech Girls Social

On Monday, 26 February, from 13:00 to 14:00 (UTC +05:45), Salam Yamout will be speaking at the Tech Girls Social. This session provides a space for APRICOT participants to talk and network in an open, friendly environment. The event is open to ANYONE who is interested and is not restricted to Continue reading

0

Understanding IPv6: A Sniffer Full Of 3s (Part 3 of 7)

“What the heck?” Yup, that pretty much summed up my confusion the first time I saw it. A sniffer trace full of threes.

The first thing it reminded me of was my days with Token Ring and locally administered addresses (LAAs). This was for two reasons:

1. I could only see these MAC addresses being used as destination MACs, not as source MACs. This was the same with my experience with LAAs in token ring
2. The MAC addresses seemed so pretty and clean, like the Token Ring LAA typically used for a 3745 IBM front-end process — 4000.3745.0001. Just look at them. Four threes, followed by a bunch of zeros, and then just one little number.

Help from Wireshark

I hope you are familiar with Wireshark; I use it all the time. It shows “reality” on the wire, which is crucial if you are a network detective trying to solve a whodunit.

If you are familiar with Wireshark then you might know that I can configure how the MAC addresses are displayed in the columns via the Wireshark preferences. As you can see below, I have set the preferences to not resolve the MAC addresses for me, Continue reading

0

Understanding IPv6: A Sniffer Full Of 3s (Part 3 of 7)

“What the heck?” Yup, that pretty much summed up my confusion the first time I saw it. A sniffer trace full of threes.

The first thing it reminded me of was my days with Token Ring and locally administered addresses (LAAs). This was for two reasons:

1. I could only see these MAC addresses being used as destination MACs, not as source MACs. This was the same with my experience with LAAs in token ring
2. The MAC addresses seemed so pretty and clean, like the Token Ring LAA typically used for a 3745 IBM front-end process — 4000.3745.0001. Just look at them. Four threes, followed by a bunch of zeros, and then just one little number.

Help from Wireshark

I hope you are familiar with Wireshark; I use it all the time. It shows “reality” on the wire, which is crucial if you are a network detective trying to solve a whodunit.

If you are familiar with Wireshark then you might know that I can configure how the MAC addresses are displayed in the columns via the Wireshark preferences. As you can see below, I have set the preferences to not resolve the MAC addresses for me, Continue reading

0

Network Break 172: Juniper Seeks Enterprise Love; Cisco, Apple Shill Cyber Insurance

Today's Network Break dives into new enterprise products from Juniper, financial results from Cisco & Arista, a new cyber-insurance scheme from Apple and Cisco, and more tech news. The post Network Break 172: Juniper Seeks Enterprise Love; Cisco, Apple Shill Cyber Insurance appeared first on Packet Pushers.

0

Worth Reading: How bad is IPv4 address exhaustion?

I often get asked questions along the lines of “How bad is IPv4 address exhaustion, honestly?”. I take the responsibility of answering questions like these seriously; I think it’s important that a broad cross section of people understand the issue. —Paul Wilson @APNIC

0

리눅스에서 Go를 스크립트 언어로 사용하기

0

New to the INE Video Course Library: Introduction to Azure Design and Implementation

Last week we added a new Azure course to our video library. This is the first course of it’s kind and can be found on the INE streaming site and also for sale on ine.com

 

Why Study Azure:
Azure is Microsoft’s version of web services management. Azure is a great option for DevOps professionals due to it’s diversity. Azure allows you to create intelligent apps using the language of your choice, including Node.js, Java and .NET, and works for both PC and Mac users. With 100+ services and tools to manage apps, Azure Design has become a favorite among many large companies and should be considered an essential study topic for DevOps professionals.

About the course:
Length- 1 hour 23 minutes
Instructor- Gary Bushey

In this Series we will take a look at what Azure is, including what IaaS, PaaS, and SaaS mean. We will thoroughly discuss Azure PaaS and some of the specific technologies used with PaaS, namely containers and artificial intelligence.

In the second section, we will discuss how to move your applications to Azure. The first video will provide an introduction to the Architectural decisions to make when moving your application, including which style Continue reading

0

Enterprise versus Provider?

Two ideas that are widespread, and need to be addressed—

FANG (read this hyper/web/large scale network operators) have very specific needs; they run custom-built single-purpose software in a very big scale. So all the really want/need are dumb boxes and smart people. … Enterprise have another view, they want smart boxes run by dumb people.

First, there is no enterprise, there are no service providers. There are problems, and there are solutions.

When I was young (and even more foolish than I am now) I worked for a big vendor. When this big vendor split the enterprise and service provider teams, I thought this kindof made sense. After all, providers have completely different requirements, and should therefore run with completely different technologies, equipment, and software. When I thought of providers in those days, I thought of big transit network operators, like AT&T, and Verizon, and Orange, and Level3, and Worldcom, and… The world has changed since then, but our desire to split the world into two neat halves has not.

If you want to split the world into two halves, split it this way: There are companies who consider the network an asset, and companies that consider the network a Continue reading

0

IDG Contributor Network: Are you ready for your building’s ‘Super Bowl’ of wireless demand?

Beyond the record-setting day of total offense generated in the Philadelphia Eagles' thrilling 41-33 win over the New England Patriots in Super Bowl 52, there was also a record 16.31 terabytes of Wi-Fi data used during the game, the most ever reported for a single-day, single-building event.While you probably won't have to worry about having almost 70,000 people show up at your building for the day, there are plenty of lessons for any big-building owner or operator to learn from how U.S. Bank Stadium in Minneapolis prepared for its "super" wireless stress test, and how you might better prepare for your own big-demand wireless days, whenever they might arrive.To read this article in full, please click here

0

The Challenges of Securing the Multi-Cloud Network

The digital transformation driving the adoption of multi-cloud networks requires an equivalent security transformation.

0

Worth Reading: How self sufficient do you want to be?

The first car I got decades ago was a simple mechanical beast – you’d push something, and a cable would make sure something else moved somewhere. I could also fix 80% of the problems, and people who were willing to change spark plugs and similar stuff could get to 90+%. —Ivan Pepelnjak

0

Ransomware: Do you pay the ransom? | Salted Hash Ep 19

Robert Gibbons, CTO at Datta, joins host Steve Ragan to talk about why companies pay out ransoms, the role of incident response plans and continuity strategies, and how companies weigh the risks.

0

5 things that will slow your Wi-Fi network

Wi-Fi is quite fickle. The contention between Wi-Fi devices and the dynamic communication medium of the airwaves makes it a sensitive technology with many settings and situations that can slow it down.And even if you aren’t using high-bandwidth devices and applications, faster Wi-Fi is always better.+RELATED: REVIEW: 5 top hardware-based Wi-Fi test tools; 802.11: Wi-Fi standards and speeds explained+To read this article in full, please click here

0

5 things that will slow your Wi-Fi network

Wi-Fi is quite fickle. The contention between Wi-Fi devices and the dynamic communication medium of the airwaves makes it a sensitive technology with many settings and situations that can slow it down.And even if you aren’t using high-bandwidth devices and applications, faster Wi-Fi is always better.+RELATED: REVIEW: 5 top hardware-based Wi-Fi test tools; 802.11: Wi-Fi standards and speeds explained+To read this article in full, please click here

0

Automation Isn’t About Building a Button to Press

This is a guest blog post by Carl Buchmann, Managing Solution Consultant at TeraMach. Carl attended the Building Network Automation Solutions online course in 2017.

There is one thing I regret not doing sooner during my automation journey, and that is adopting Git and a proper IDE/text editor that has built-in source control management. I personally use Microsoft Visual Studio Code, as it has Git built in and has many great extensions to validate code syntax.

Read more ...

0

Plenty of MEC Chatter Expected at Mobile World Congress 2018

HPE, Ericsson, Nokia, and Huawei are expected to show MEC-supported use cases.

0

Security Experts Shine a Spotlight on Automation, Managed Services at Mobile World Congress

The rise of 5G and IoT devices means the threat landscape is larger than ever.

0

Understanding IPv6: Link-Local ‘Magic’ (Part 2 of 7)

For those of you new to IPv6, what I am about to show you is going to look a lot like a magic trick. I’m going to bring up an IPv6 IGP neighbor relationship (OSPFv3) between two routers. This doesn’t sound like a magic trick, I know. But what if I told you I am going to do this without putting any IPv6 addresses into the configurations of either routers?

Like any true magician, I must start my magic act with letting you know I have nothing up my sleeves. So let’s review the facts:

• IPv6 unicast routing is globally enabled on both routers
• IPv6 OSPFv3 is enabled via the one global command, “ipv6 router ospf 6”
• Each router has an interface in an out-of-band management network (OOB mgt.) in the subnet 14.14.14.0/24.
• RouterA is 14.14.14.101 and RouterB is 14.14.14.102 in this OOB management network
• The IPv4 addresses for the OOB management interfaces are the only IP addresses in the configurations
• Gig1/0/1 on both routers only has only two IPv6 commands on it, as shown below
• Router A is monitoring the gig1/0/1 interface and sending the traffic to a Spirent Continue reading

0

Understanding IPv6: Link-Local ‘Magic’ (Part 2 of 7)

For those of you new to IPv6, what I am about to show you is going to look a lot like a magic trick. I’m going to bring up an IPv6 IGP neighbor relationship (OSPFv3) between two routers. This doesn’t sound like a magic trick, I know. But what if I told you I am going to do this without putting any IPv6 addresses into the configurations of either routers?

Like any true magician, I must start my magic act with letting you know I have nothing up my sleeves. So let’s review the facts:

• IPv6 unicast routing is globally enabled on both routers
• IPv6 OSPFv3 is enabled via the one global command, “ipv6 router ospf 6”
• Each router has an interface in an out-of-band management network (OOB mgt.) in the subnet 14.14.14.0/24.
• RouterA is 14.14.14.101 and RouterB is 14.14.14.102 in this OOB management network
• The IPv4 addresses for the OOB management interfaces are the only IP addresses in the configurations
• Gig1/0/1 on both routers only has only two IPv6 commands on it, as shown below
• Router A is monitoring the gig1/0/1 interface and sending the traffic to a Spirent Continue reading

0

Understanding IPv6: The Journey Begins (Part 1 of 7)

IPv6 and I met back in the early 2000s. I really didn’t see the big deal or know what all the RFCs were about. This stuff was easy. Of course, at the time, my thoughts were barely even scratching at the surface, and I still believed IPv6 was just IPv4 with 128 bits. I was in what I now refer to as the “Checklist IPv6” phase.

“Checklist IPv6” was actually a great place for me to start. I had to remember only a few things while I was configuring the routers. Then I could kick back and let the magic of routing protocols work. Voila, IPv6 addresses would show up in the routing table of some other router in the lab. Ping to confirm, and I was done.

IPv6 “I know nothing” phase

The quote “The more you know, the more you realize how much you don’t know. The less you know, the more you think you know,” is attributed to David T. Freeman. I discovered the truth of this as I began digging deeper. The trigger to this phase was when I realized that IPv6 was clearly not IPv4 with 128 bits. When did that happen? When Continue reading