Category:
Tech matters

Technology, Labs, Standards, LEA/Security, IPv4/IPv6, DNSSEC, Routing

Stop spoofed traffic at the door: Destination-side SAV

By Alden Hilton on 19 Feb 2021

Guest Post: Roughly half of all ASes fail to filter for spoofed traffic as it enters their network border. A new tool helps admins test their own network in real time.

Building your own Fibre-to-Premises Network: The ECFiber Story

By George Sadowsky on 18 Feb 2021

Guest Post: George Sadowsky outlines how to build and operate a FTTH network when existing infrastructure, topography, and low population all work against the need for fast Internet.

RIPE’s RPKI Validator is being phased out, so what are the other options?

By George Michaelson on 17 Feb 2021

There are plenty of alternatives for RPKI validation.

New RDAP profile to improve cross-RIR consistency

By George Michaelson on 16 Feb 2021

The NRO recently registered an RDAP profile with IANA for the RIR community.

An analysis of a large-scale HTTPS interception

By Ram Sundara Raman on 15 Feb 2021

Guest Post: An investigation into an HTTPS interception attack using a custom root CA.

Towards verifying programmable switches at runtime with P6

By Apoorv Shukla on 12 Feb 2021

Guest Post: Bugs can occur at any stage in the P4 pipeline. Static analysis can be hit and miss — so researchers developed P6.

Notes from DNS-OARC 34

By Geoff Huston on 11 Feb 2021

Geoff Huston shares his thoughts from the recent DNS-OARC 34.

DoH the right thing

By George Michaelson on 10 Feb 2021

Opinion: The NSA recently issued some advice on DoH. It wasn’t necessarily bad advice, but it was not well received.

How To: Run Krill behind an NGINX reverse proxy

By Alex Band on 9 Feb 2021

Guest Post: Krill has a built-in HTTPS server but you can also run a production grade webserver as a reverse proxy for easy TLS configuration and additional restrictions.

IPv6 in 2020

By Geoff Huston on 8 Feb 2021

Did the COVID-19 pandemic have any impact on the deployment and use of IPv6?