ammar

@networkservice wow they copied cloudflare workers

ARGH I suggested this in so so so many situations and everyone EVERY ONE looked at me cross aaaaaarrrrrrgggghhhhhhhhhhh

@boristane @traskjd welcome 🦀

@traskjd very satisfying to rely on the type system for the majority off error it only took going through the rust book

I am now one of the type safe maniacs

@Scott_Helme @BenjaminEHowe @digitalocean Do you drop traffic from non-CF IPs? Some folks will scan the Internet for your origin

@impl_u64 @BenjaminEHowe @digitalocean It’s already behind CF, I don’t know how they got the origin IP.

Sooooo I guess a bunch of my sites will just be down for a while @digitalocean?.. 🤷‍♂️ 3 hours and counting now with no response. I don't know how answering those questions is supposed to help, but I did anyway.

@Scott_Helme @BenjaminEHowe @digitalocean not necessarily, it connects outbound so it works behind NAT etc too. but if you’re just protecting HTTP stuff, you can solve your problem by getting a new IP and putting it behind CF

@BenjaminEHowe @digitalocean But you're going to need a public IP to connect the tunnel, no?

@networkservice OHR: “i disable ipv6 for security reasons, you cant convince me otherwise”

I still read r/networking to remind me how actual people reason about networks: the gear, sizing, features, vendors, etc. my favorites are a good title from a clearly over their head but “IT enough” poster and the absolutely…unhinged would be my wording…replies.

@sctan why

@impl_u64 Well this is awkward… 🫣

@heymingwei @adam_chal ill ruin it for you “you’re not gonna make it” i am a spreader of knowledge

@adam_chal i refuse to look up yngmi

if your CEO's GitHub doesn't look like this, yngmi

@stubarea51 I have seen the obscurity side effect save a real company’s bacon against a very motivated attacker

We love to joke about security via obscurity, but it's not completely without merit for #IPv6, I setup a throwaway Win 10 box in Vultr and gave it an IPv6 GUA. There are no scanning hits on the FW externally for that box (2+ weeks timeframe) which is currently open to the IPv6 Internet for RDP on that host. I'm not sure how an attacker would ever find it tbh. Note: Before the infosec types jump in and vehemently suggest this shouldn't be the only layer of security, i'm not suggesting this is a prod setup...only observations from a test environment.

@tompaseka @DrPeering @ripelabs what about running your personal lab network in the DFZ? does that count as playing in the playground?

@DrPeering @ripelabs the DFZ isn't a playground. I'm fine in people learning routing. I'm fine with people creating a fake overlay internet exchange. Neither should be in the DFZ using public resources.

This @ripelabs article says: “there has been an increasing trend in natural persons registering ASNs, indicating a growing popularity for individuals to operate networks.” Is having a personal ASN the new geek badge-of-honor? Is FOMO the reason for this? What’s your personal ASN?

What's "data fabric"? Wrong answers only

@thdxr youtu.be/AbSehcT19u0?si…

state of banking 1. we need to move some money 2. the money is in a canadian bank 3. there's a $5k limit on wires 4. we can mail a check but destination bank can't receive checks 5. ok we can take a picture of it 6. they can only send it to a us address and the person doing this lives in canada 7. ok i live in the us so i can receive the check and send a picture to the canadian so they can upload it 8. my mailbox has a hole in it and its rainy season 9. i have to go buy a new mailbox

@tstrickx @heymingwei thems fighting wordz!!!

The best way to learn about what's in these IRR databases is to build toolings around it. While I'm doing my homework there, what's your pain point on accessing the IRR data? Throw me some ideas and I'll reinvent a IRRKIT for you.

@tompaseka those were the search keywords i needed, thank you 🙏

@impl_u64 They’re a unique key to each the booking systems, which is primarily two companies (Sabre and Amadeus). Sabre and Amadeus use different formats so you get a collision.

how do airline PNRs get generated? there doesnt seem to be an obvious pattern so what stops two airlines generating the same PNR for unrelated bookings?

@jwbensley pretty sure its not stable for production but github.com/osrg/rustybgp

@overunderlay @networkservice eh

@networkservice Cisco is missing a trick here Silicon One has an opportunity to pick up the torch & run with it

the tofino is officially a hobbyist platform. sad. it could’ve done much more but damn it did a lot

@tompaseka @jwbensley and the IP packets in previous OSPF versions are still encapped in Ethernet, no?

@tompaseka @jwbensley doesn’t ospfv3 use LLAs?