0

Route leak incident on January 22, 2026

On January 22, 2026, an automated routing policy configuration error caused us to leak some Border Gateway Protocol (BGP) prefixes unintentionally from a router at our data center in Miami, Florida. While the route leak caused some impact to Cloudflare customers, multiple external parties were also affected because their traffic was accidentally funnelled through our Miami data center location.

The route leak lasted 25 minutes, causing congestion on some of our backbone infrastructure in Miami, elevated loss for some Cloudflare customer traffic, and higher latency for traffic across these links. Additionally, some traffic was discarded by firewall filters on our routers that are designed to only accept traffic for Cloudflare services and our customers.

While we’ve written about route leaks before, we rarely find ourselves causing them. This route leak was the result of an accidental misconfiguration on a router in Cloudflare’s network, and only affected IPv6 traffic. We sincerely apologize to the users, customers, and networks we impacted yesterday as a result of this BGP route leak.

We have written multiple times about BGP route leaks, and we even record route leak events on Cloudflare Radar for anyone to view and learn from. To get Continue reading

0

MUST WATCH: BGP: the First 18 Years

If you’re at all interested in the history of networking, you simply MUST watch the BGP at 18: Lessons In Protocol Design lecture by Dr. Yakov Rekhter recorded in 2007 (as you can probably guess from the awful video quality) (HT: Berislav Todorovic via LinkedIn).

0

Meta Platforms Metamorphizing Into An AI Cloud For Sovereigns

Meta Platforms is not happy just being the social network for the world anymore. …

Meta Platforms Metamorphizing Into An AI Cloud For Sovereigns was written by Timothy Prickett Morgan at The Next Platform.

0

IPB192: IPv6 Lab Update

Thinking of setting up an IPv6 lab this year? Our hosts dive into a major update on building and testing modern IPv6 networks, focusing on the game-changing “IPv6-mostly” architecture. They break down the essential components you need to get this working, including DHCP Option 108 and the nitty gritty of client support. In this episode,... Read more »

0

Ingress Security for AI Workloads in Kubernetes: Protecting AI Endpoints with WAF

AI Workloads Have a New Front Door

For years, AI and machine learning workloads lived in the lab. They ran as internal experiments, batch jobs in isolated clusters, or offline data pipelines. Security focused on internal access controls and protecting the data perimeter.

That model no longer holds.

Today, AI models are increasingly part of production traffic, which is driving new challenges around securing AI workloads in Kubernetes. Whether serving a large language model for a customer-facing chatbot or a computer vision model for real-time analysis, these models are exposed through APIs, typically REST or gRPC, running as microservices in Kubernetes.

From a platform engineering perspective, these AI inference endpoints are now Tier 1 services. They sit alongside login APIs and payment gateways in terms of criticality, but they introduce a different and more expensive risk profile than traditional web applications. For AI inference endpoints, ingress security increasingly means Layer 7 inspection and WAF (Web Application Firewall) level controls at the cluster edge. By analyzing the full request payload, a WAF can detect and block abusive or malicious traffic before it ever reaches expensive GPU resources or sensitive data. This sets the stage for protecting AI workloads from both operational Continue reading

0

N4N047: Virtual Router Redundancy Protocol (VRRP)

Go beyond the basics to understand the mechanics that keep your default gateway from becoming a single point of failure. Ethan and Holly demystify Virtual Router Redundancy Protocol (VRRP), which helps provide network redundancy. They break down everything from the VRRP election protocol to the protocol’s unique communication methods. They also look back at previous... Read more »

0

Why Doesn’t netlab Use X for Device Configuration Templates?

Petr Ankudinov made an interesting remark when I complained about how much time I wasted waiting for Cisco 8000v to boot when developing netlab device configuration templates:

For Arista part - just use AVD with all templates included and ANTA for testing. I was always wondering why netlab is not doing that.

Like any other decent network automation platform, netlab uses a high-level data model (lab topology) to describe the network. That data model is then transformed into a device-level data model, and the device-level data structures are used to generate device configurations.

0

Upscale AI Nabs Cash To Forge “SkyHammer” Scale Up Fabric Switch

The first company that can make a UALink switch with high radix – meaning lots of ports – and high aggregate bandwidth across those ports that can compete toe-to-toe with Nvidia’s NVSwitch memory fabric and NVLink ports is going to make a lot of money. …

Upscale AI Nabs Cash To Forge “SkyHammer” Scale Up Fabric Switch was written by Timothy Prickett Morgan at The Next Platform.

0

D2DO292: AI, Augmented Engineers, and the Timeless Principles of Software Architecture

Ned and Kyler sit down with industry analyst Jon Collins for a fun and free-ranging discussion that covers everything from the changing landscape of software engineering to the importance of good architecture (physical and digital). They tackle the pros and cons of “Vibe Coding” as well as the “Augmentation Gap”, the idea that AI tools... Read more »

0

NAN111: Automation, AI, and the Future of Branch Networking: Inside Cisco Unified Branch (Sponsored)

In this sponsored episode, Eric sits down with Lee Peterson, VP of Product Management for Secure WAN, at Cisco. Together they discuss how Cisco Unified Branch is helping organizations scale, automate, and secure their distributed environments. They also define the Branch Network, discuss the major challenges facing network teams, and walk through Cisco’s vision of... Read more »

0

Lab: Distributing Level-2 IS-IS Routes into Level-1 Areas

One of the major differences between OSPF and IS-IS is their handling of inter-area routes. Non-backbone OSPF intra-area routes are copied into the backbone area and later (after the backbone SPF run) copied into other areas. IS-IS does not copy level-2 routes into level-1 areas; level-1 areas (by default) behave like totally stubby OSPF areas with the level-1 routers using the Attached (ATT) bit of level-1-2 routers in the same area to generate the default route.

0

HW068: Vibe Coding for Wireless Engineers

Is AI just a fad or is it fundamentally changing Wi-Fi operations? Keith sits down with Robert Boardman to discuss the reality of AI-augmented Wi-Fi engineering. Robert describes AI as a tool, and explains how it can be useful for automating monotonous tasks and proactive troubleshooting. They also explore the human factor and how experience... Read more »

0

PP093: Security Priorities for 2026 – A Roundtable Discussion

The start of a new year is a good time to assess what’s important. We’ve gathered some Packet Protector listeners to talk about their security priorities for 2026 in a roundtable discussion with hosts JJ and Drew. We talk about key risks for 2026, whether those risks have changed since last year, use cases for... Read more »

0

NGINX is Retiring: Your Step-by-Step Guide to Replacing Ingress NGINX

Your Curated Webinar & Blog Collection

The Ingress NGINX Controller is approaching retirement, and teams need a clear path forward to manage Kubernetes ingress traffic securely and reliably. To make this transition easier, we’ve created a single, curated hub with all the relevant blogs and webinars. This hub serves as your one-stop resource for understanding the migration to Kubernetes Gateway API with Calico Ingress Gateway.

This curated hub is designed to guide your team from understanding Ingress NGINX retirement, through evaluating options, learning the benefits of Calico Ingress Gateway, and ultimately seeing it in action with webinars and a demo.

Use This Collection to Help You Migrate Safely

• One-stop resource: No need to hunt across the site for guidance.
• Recommended reading order: Helps teams build knowledge progressively.
• Actionable takeaways: Blogs explain why and how to migrate; webinars show it in practice.
• Demo access: Direct link to schedule personalized support for your environment.

---

Recommended Reading

0

Paito SGP Terbaik dan Terpercaya sebagai Referensi Data SGP yang Konsisten

---

Pengantar Pentingnya Paito SGP Terbaik dan Terpercaya

Paito SGP terbaik dan terpercaya menjadi rujukan utama bagi pembaca yang membutuhkan ringkasan data harian secara rapi. Banyak orang memilih paito karena tampilannya sederhana namun informatif. Selain itu, paito memudahkan pencatatan tanpa harus membuka data satu per satu.

Di tengah banyaknya sumber, kualitas paito menentukan kepercayaan. Oleh sebab itu, memilih paito SGP yang tepat membantu pembaca memperoleh data SGP yang akurat dan konsisten. Dengan pendekatan ini, pembaca dapat memantau result SGP secara terstruktur.

---

Apa Itu Paito SGP dan Fungsi Utamanya

Secara umum, paito SGP merupakan tabel visual yang menyusun hasil SGP berdasarkan hari dan tanggal. Fungsi utamanya adalah menyederhanakan Continue reading

0

Keindahan dan Legenda di Dalam Gua Jatijajar Kebumen

Sejarah Menarik Gua Jatijajar

Gua Jatijajar berada di Kebumen, Jawa Tengah. Lokasinya berada di wilayah perbukitan kapur yang sangat memukau. Selain itu, gua ini menawarkan kombinasi wisata alam dan kisah sejarah yang membuat banyak wisatawan tertarik.

Konon, masyarakat menemukan gua ini pada abad ke-19. Mereka menemukan gua saat sedang menggali tanah di area persawahan. Sejak itu, warga setempat mulai mengenali potensi wisata gua tersebut. Walau begitu, pemerintah kemudian mengembangkan kawasan ini lebih modern.

Nama Jatijajar memiliki arti unik. Kata “jati” berarti pohon jati dan “jajar” berarti berjajar rapi. Tempat ini dahulu dikelilingi pohon jati yang berdiri berderet. Oleh karena itu, nama tersebut melekat hingga sekarang.

Menariknya, gua ini juga menyimpan kisah legenda Raden Kamandaka atau Lutung Kasarung. Kisah ini menambah daya tarik budaya dan spiritual. Wisatawan dapat melihat beberapa diorama yang menggambarkan perjalanan tokoh tersebut. Dengan demikian, mereka bisa memahami cerita lokal sambil menikmati suasana alam khas pegunungan kapur.

Selain itu, pemerintah daerah terus menjaga kelestarian gua. Mereka melakukan berbagai perawatan. Jadi, area wisata tetap aman dan nyaman. Hingga kini, Gua Jatijajar menjadi salah satu ikon wisata unggulan Kebumen. Bahkan, banyak wisatawan Continue reading

0

KERIS TAMING SARI: SENJATA LEGENDA YANG SARAT NILAI SEJARAH

Asal Usul Keris Taming Sari

Legenda Keris Taming Sari selalu menarik perhatian banyak orang. Senjata ini terkenal sebagai keris sakti yang menyimpan kisah luar biasa. Menurut cerita rakyat, keris ini pertama kali muncul di Kerajaan Majapahit. Keris tersebut kemudian menjadi milik Hang Tuah, seorang pahlawan terkenal dari Kesultanan Malaka.

Para pandai besi hebat dipercaya menempa keris ini dengan teknik tingkat tinggi. Karena itu, Taming Sari dianggap unik. Selain itu, setiap detailnya menunjukkan karya seni kelas tinggi. Walaupun banyak legenda, para sejarawan tetap menilai benda ini sebagai simbol kejayaan masa lalu.

Selain sejarah Majapahit, hubungan dengan Malaka juga sangat kuat. Hang Tuah memakai keris ini dalam berbagai pertempuran. Oleh karena itu, sosok Hang Tuah selalu identik dengan Keris Taming Sari. Cerita tersebut terus bertahan dari generasi ke generasi.

Lebih jauh lagi, masyarakat percaya bahwa keris ini memiliki kekuatan mistis. Banyak dongeng menyebutkan keris mampu menang sendiri tanpa tuannya. Hal tersebut membuat banyak orang menganggapnya sebagai benda pusaka paling berpengaruh di Nusantara.

---

Ciri Khas Keris Taming Sari

Bila membahas keris legendaris ini, Continue reading

0

Burung yang Hanya Ada di Indonesia: Cucakrawa

Keindahan Burung Endemik dengan Suara Merdu

Burung Cucakrawa atau dikenal sebagai Cucak Rawa menjadi salah satu burung yang sangat istimewa di Indonesia. Selain itu, burung ini juga memiliki kicauan merdu yang memukau banyak pecinta burung. Karena itu, banyak orang merasa terpikat oleh pesonanya. Bahkan, mereka rela menghabiskan banyak uang untuk memilikinya. Namun, keberhasilan dalam melestarikan burung endemik ini tetap menjadi fokus penting.

Selain itu, Cucakrawa juga memperlihatkan warna tubuh yang menarik. Bulunya terlihat cokelat zaitun dengan kombinasi putih bersih di beberapa bagian. Kemudian, bentuk tubuhnya tampak gagah dan elegan. Karena itu, burung ini semakin populer. Hingga kini, keberadaannya tetap menjadi simbol kekayaan alam Indonesia.

Asal Usul dan Habitat Alami

Secara ilmiah, Cucakrawa memiliki nama Pycnonotus zeylanicus. Burung ini hanya hidup di Indonesia, terutama di wilayah Sumatra, Jawa, dan sebagian Kalimantan. Mereka hidup di rawa, hutan sekunder, serta daerah lembap. Oleh karena itu, mereka sangat bergantung pada lingkungan yang alami dan terjaga.

Selain itu, burung ini juga senang tinggal pada pepohonan tinggi. Mereka memilih tempat yang Continue reading

0

On MPLS Paths, Tunnels and Interfaces

One of my readers attempted to implement a multi-vendor multicast VPN over MPLS but failed. As a good network engineer, he tried various duct tapes but found that the only working one was a GRE tunnel within a VRF, resulting in considerable frustration. In his own words:

How is a GRE tunnel different compared to an MPLS LSP? I feel like conceptually, they kind of do the same thing. They just tunnel traffic by wrapping it with another header (one being IP/GRE, the other being MPLS).

Instead of going down the “how many angels are dancing on this pin” rabbit hole (also known as “Is MPLS tunneling?”), let’s focus on the fundamental differences between GRE/IPsec/VXLAN tunnels and MPLS paths.

0

IP Addresses through 2025

It's time for another annual roundup from the world of IP addresses. Let’s see what has changed in the past 12 months in addressing the Internet and look at how IP address allocation information can inform us of the changing nature of the network itself.