Pier Carlo Chiodi

Automatic and feature-rich configurations for #IXP #BGP route servers. github.com/pierky/aroutes…

Interesting reading: "RFC 9234 route leak prevention in the wild!" seclists.org/nanog/2024/Sep… Low-hanging fruit for BGP routing security. Fully supported in ARouteServer for both BIRD and OpenBGPD. github.com/pierky/aroutes…

#BGP bgpipe can now stream a log of a BGP session in #JSON to a remote websocket endpoint 🥳

🗓️ Save the date: ITNOG8, Bologna, 6 - 7 May 2024 We are pleased to announce that #ITNOG8 will take place on 6 - 7 May 2024 at the Palazzo dei Congressi EX-GAM in Bologna. Interested In Sponsoring? Contact us for info 🎟️ Registration will open soon!

The #BGP communities attribute lets network operators signal #RPKI status. But should they? New on #RIPELabs, @stucchimax investigates the propagation of RPKI information in BGP communities. labs.ripe.net/author/stucchi…

@tiomiranhaa Hello, that script is quite old and I've not maintained it over time, it may need some tweaks. Also I've no longer used Zabbix and am not familiar with how to do an integration nowadays. Sorry, can't help you on it.

@pierky hey pierky, how u doing? so, i’m using your ciscocbqos script for zabbix, but its not collecting the items CIR from my router (asr-1001x)… could you give me some help/advice? thanks!

BGP role-based route leak prevention and detection available in ARouteServer >= v1.20.0, thanks to BIRD 2.0.11 and OpenBGPD 7.8 fully supporting RFC9234. Want to learn more? #rfc9234-roles-roles" target="_blank" rel="nofollow noopener">arouteserver.readthedocs.io/en/latest/GENE…

OpenBGPd 7.8 has been released! This release includes support for ASPA verification and RFC8210bis, improved performance, Open-metrics outputs, and more! Read the full announcement here: marc.info/?l=openbsd-tec…

@heymingwei RFC9234 "BGP roles" support has been added recently to ARouteServer. It's also enabled in backward compatibility mode when new deployments are set up from scratch for BGP speakers that support it. github.com/pierky/aroutes…

New blog post: RFC9234 Observed in the Wild. BGP messages with OTC attribute (type 35) intended for preventing route leaks were observed in public collector RIB dump files. rfc.hashnode.dev/rfc9234-observ…

BGP Zombies are a real issue: about 1,x% of the prefixes are still visible in the BGP DFZ table, as shown in a presentation by Lefteris Manassakis (@CodeBGP) #NANOG87! We need to learn to live with BGP Zombies! Does it impact reachability?

rpki-client 8.2 has been released. This release adds support for authenticating Geofeed (RFC 9092) data files, validating Trust Anchor Keys (draft-ietf-sidrops-signed-tal), a new host "shortlist" feature, and a number of additional checks and constraints marc.info/?l=openbsd-ann…

AS-Set name collisions .. is the new way for pesky kids to try to short change your prefix filters. So, use the long notation, instead of the short one. Using the ASnr authorisation of the RIR database AND update your upstreams to use the new AS Set ;-) mailman.nlnog.net/pipermail/nlno…

@erikbais Google-translated English version: mailman-nlnog-net.translate.goog/pipermail/nlno…

More content is now available in the Network Programmability and Automation 2nd Edition, Early Release oreilly.com/library/view/n… Additions: - Brand new #Terraform section to help you manage network services in a dynamic infrastructure - Updated #Ansible, and #Saltstack sections

@ntdvps @LINX_Network @go_containerlab Sure thing! Feel free to drop me an email 👍

@pierky @LINX_Network @go_containerlab yep, that is indeed planned for a full featured IXP lab I wanted to build after the basic one. With a proper L2 underlay based on EVPN or MPLS-LDP as IXPs do it, and the proper route server config powered by arouteserver. For this one I'd like to team up with you ;)

At @LINX_Network #117 I will have 20 minutes to share how users can build IXP-focused lab using @go_containerlab. Perfect environment to test IXP use cases: - route server peerings - ACL/MAC filtering - BGP policies & RPKI validation Tune in on 23Nov linx.net/events/linx117…

@ntdvps BIRD can definitely be used as a route server daemon on IXPs (and it is quite often used as such indeed); for what regards my Docker image, well, that's not designed for prod, but if the plan is to just use it for labs, sure... It's a "use it at your own risk" thing :)

Hi @pierky I am a BIRD noob in search of a container image. Stumbled upon your hub.docker.com/r/pierky/bird and wonder, can someone use it as a standalone Route Server to build labs tailored to IXP use cases?

📣 Just announced: We're changing how we manage the ARIN Trust Anchor Locator (TAL) in response to feedback from the Internet community & in the hope it will accelerate #RPKI deployment in the ARIN region. Learn about the changes and read the updated RPA: arin.net/announcements/…

I was invited to #ITNOG to repeat my presentation "modern bgp design" in which I combine BGP ADD-PATH, BGP PIC and BGP ORR (Optimise Route Reflection) to create a modern, flexible, scalable solution. Thank you all for the the positive feedback. github.com/nmodena/blog/2…

Checkout my blog post on managing a IXP Route Server from @gitlab CI/CD Pipelines with Arouteserver from @pierky: anuragbhatia.com/2022/08/networ… #Blog #Automation