Noction bets on BGP FlowSpec
The post Noction bets on BGP FlowSpec appeared first on Noction.
How Many vMotion Events Can You Expect in a Data Center?
One of my friends sent me this question:
How many VM moves do you see in a medium and how many in a large data center environment per second and per minute? What would be a reasonable maximum?
Obviously the answer to the first part is it depends (please share your experience in the comments), so we’ll focus on the second one. It’s time for another Fermi estimate.
Read more ...When the IPv6 Data Changes, so Should Your Opinion
Sky UK recently completed their rollout of IPv6. The uptake statistics are quite remarkable. If you think that people don’t have IPv6-capable devices, or that their home routers can’t handle IPv6…you really need to look at the data, and re-think your opinion.
APNIC has a long-running program collecting data on IPv6 client capability/preference by country and ASN. This graph shows the data for Great Britain:
So a year ago we had ~5% takeup, and now it’s 20-25%. And here’s the reason for that big jump from April this year – this graph shows the data for AS5607, BSkyB:
So > 80% of clients on the BSkyB network are IPv6-capable.
If someone tells you that people don’t have IPv6-capable devices, or routers: the data does not back that up. A few years ago that may have been true, but people don’t access the Internet using Windows XP desktops anymore: They use iOS and Android mobile devices. These have short replacement lifecycles, so people tend to be running newer versions. These are capable of using IPv6, and will prefer it if it is available.
The other related trend is that people have more wireless devices at home, and they have Continue reading
When the IPv6 Data Changes, so Should Your Opinion
Sky UK recently completed their rollout of IPv6. The uptake statistics are quite remarkable. If you think that people don’t have IPv6-capable devices, or that their home routers can’t handle IPv6…you really need to look at the data, and re-think your opinion.
APNIC has a long-running program collecting data on IPv6 client capability/preference by country and ASN. This graph shows the data for Great Britain:
So a year ago we had ~5% takeup, and now it’s 20-25%. And here’s the reason for that big jump from April this year - this graph shows the data for AS5607, BSkyB:
So > 80% of clients on the BSkyB network are IPv6-capable.
If someone tells you that people don’t have IPv6-capable devices, or routers: the data does not back that up. A few years ago that may have been true, but people don’t access the Internet using Windows XP desktops anymore: They use iOS and Android mobile devices. These have short replacement lifecycles, so people tend to be running newer versions. These are capable of using IPv6, and will prefer it if it is available.
The other related trend is that people have more wireless devices at home, and they have Continue reading
Managing Digital Racket
I read this article, long by today’s standards of fleeting attention. TL;DR. Information bombardment addicted the author with negative effects on his life. And while he’s not done making changes in his life, he has broken the cycle.
I’ve had similar challenges to him, and continue to hone my approach to managing digital racket. I know I’ve written about this before, but the art is evolving for me. Chronicling progress, however minor, is cathartic.
I mute nearly all notifications. This cuts down tremendously on mental intrusions, improving my focus and reducing FOMO. While you’d think turning off notifications would increase FOMO, you realize over time that you aren’t actually missing anything substantial. Once you believe this, the anxiety borne of FOMO fades away.
The only notifications I currently receive are as follows.
- Phone calls. I don’t get many, and most of them are directly related to my business.
- Direct messages from my immediate family.
- Direct messages from my three co-workers and a few close collaborators.
I have deleted most social media apps from my phone. I have a few for the sake of convenience when abroad, but rarely access them. With notifications turned off, the temptation is practically nil. Twitter is my greatest temptation, and therefore do not Continue reading
Test-driving arbitrary data publishing over BGP
BGP is a routing protocol known for its strength in scaling and resilience. It is also flexible and extensible. With its Multi-Protocol extension BGP can support distribution of various data types. Still to extend BGP for every new route data type requires introduction of new address family(AFI/SAFI) and making BGP aware of the new data … Continue reading Test-driving arbitrary data publishing over BGP
How we brought HTTPS Everywhere to the cloud (part 1)
CloudFlare's mission is to make HTTPS accessible for all our customers. It provides security for their websites, improved ranking on search engines, better performance with HTTP/2, and access to browser features such as geolocation that are being deprecated for plaintext HTTP. With Universal SSL or similar features, a simple button click can now enable encryption for a website.
Unfortunately, as described in a previous blog post, this is only half of the problem. To make sure that a page is secure and can't be controlled or eavesdropped by third-parties, browsers must ensure that not only the page itself but also all its dependencies are loaded via secure channels. Page elements that don't fulfill this requirement are called mixed content and can either result in the entire page being reported as insecure or even completely blocked, thus breaking the page for the end user.
What can we do about it?
When we conceived the Automatic HTTPS Rewrites project, we aimed to automatically reduce the amount of mixed content on customers' web pages without breaking their websites and without any delay noticeable by end users while receiving a page that is being rewritten on the fly.
A naive way Continue reading
Yahoo Data Breach Was Likely Perpetrated at One Point of Failure
'They stole the grand piano while the family was home.’