home tags events about login

benjojo rss

Hope you never notice the outages I cause. Knows where the RFC2616 bodies are buried. recurse.com SP'2 18

Follow me using: @benjojo@benjojo.co.uk in your client

benjojo replied 23 Feb 2024 21:46 +0000
in reply to: https://peering.social/users/wrmsr/statuses/111982081686542326

@wrmsr bgp.tools already looks a little bit like what you are describing. I picked up a 2U4N type machine (that I use for the bgp collectors) and coming in a few days is a SN2010!

It's a bit of a hair dryer at the hot aisle though! Turns out if you put a lot of compute in 2U, it jets out some serious hot air!

benjojo posted 23 Feb 2024 12:42 +0000

Even knowing that it's impractical for any real use-case I have, I really want a Supermicro SC101F.

Like look at it! Adorable!

A supermicro server, but it's 1U tall and the size of a house brick. About 3 1U fans wide

benjojo replied 22 Feb 2024 15:51 +0000
in reply to: https://benjojo.co.uk/u/benjojo/h/qsjm5YQ9lqGP7G13hp

Well that was painful (firmware versions mismatching and not upgrading etc)

but we got there!

# ip l | grep BROADCAST | wc -l
23

# sensors
mlxsw-pci-0100
Adapter: PCI adapter
fan1:            7004 RPM
fan2:            7437 RPM
fan3:            7234 RPM
fan4:            7079 RPM
temp1:            +32.0°C  (highest = +32.0°C)
front panel 001:   +0.0°C  (crit =  +0.0°C, emerg =  +0.0°C)
...
front panel 022:   +0.0°C  (crit =  +0.0°C, emerg =  +0.0°C)

coretemp-isa-0000
Adapter: ISA adapter
Core 0:       +18.0°C  (high = +98.0°C, crit = +98.0°C)
Core 1:       +18.0°C  (high = +98.0°C, crit = +98.0°C)
Core 2:       +19.0°C  (high = +98.0°C, crit = +98.0°C)
Core 3:       +19.0°C  (high = +98.0°C, crit = +98.0°C)

# uname -a
Linux bgptools-switch 6.1.78-2fast2benjojo-2 #1 SMP PREEMPT_DYNAMIC Thu Feb 22 13:43:28 UTC 2024 x86_64 GNU/Linux

A working 25G/100G switch running boring debian

benjojo replied 22 Feb 2024 12:21 +0000
in reply to: https://benjojo.co.uk/u/benjojo/h/467Rj2M8KMYH4wtF1T

There is also a mystery QSFP port connector sitting on the side of the switch... with no connector on the other side.

Wonder what it is used for, There seem to be plenty of other programming pins on the board, so I doubt it's a factory programming connector

A QSFP connector without a cage, sitting on the side of the board where there would not be a slot for it on the case

benjojo posted 21 Feb 2024 17:01 +0000

There is something uniquely terrible about the tone of motivational speakers, I feel like they are seconds away from turning into a NFT pitch or whatever the next scam is

benjojo posted 20 Feb 2024 22:49 +0000

DZ: Financial Services Infra Horror

DZ: Financial Services Infra Horror

I just realised you can put full Mastercard/Visa PAN's into a IPv6 /64:

2a0c:2f07:4663:ffff:5200:8282:8282:8210

or

2a0c:2f07:4663:ffff:4000:0082:6000:0000

Who needs to load balance MIPs when you could just use the PAN as a hash for ECMP! You get to also cause pure terror in who ever is doing firewall log compliance for free!

benjojo posted 19 Feb 2024 13:40 +0000

Big Data -> Edge Compute -> Artificial Intelligence

I've realised you can currently gauge what investors are throwing infinity money at by simply looking at what the GitLab home page currently is trying to sell you.

I can't remember what it was before Big Data, maybe the Enterprise Service Bus?

benjojo posted 19 Feb 2024 11:02 +0000

New bgp.tools feature!

You can now click on the little hilbert maps on the IPv4 prefix pages and it will bring up a fully interactive + zoomable map that shows the IPv4 internet and what pings!

Even better, I peeked back into my backups and there are a selection of dates ( + the 2012 Carana Botnet scan ) for you to use to see how the internet has changed over time.

Give it a go! https://map.bgp.tools/ and let me know what you think

A screenshot of bgp.tools, showing a interactive hilbert map

benjojo posted 14 Feb 2024 18:42 +0000

Love it when the Jubilee line does this, feels so urgent for what is almost always "get out of the doors, idiot"

benjojo replied 14 Feb 2024 14:52 +0000
in reply to: https://benjojo.co.uk/u/benjojo/h/Q2j1V7t7RbBwW82Czv

At the time of writing, there are 948 Single Homed AS174 ASNs, and 105 Single Homed to AS2914, according to the bgp.tools (Paid, sorry!) dependency feature

This means the total impact of this is around ~1098 ASNs or 1.37% of all ASNs.

ASN counts are not everything though... Estimating true traffic impact is a lot harder

benjojo replied 14 Feb 2024 14:51 +0000
in reply to: https://benjojo.co.uk/u/benjojo/h/D2Js1tPJ3r7s9XS6Hq

There are a few visible examples of this de-peering causing pain for places that Africa that have a large dependence on Europe for internet connectivity. This traceroute shows a path in Kenya going:

Kenya -> London (cogent) -> (cogent) New York (NTT) -> London (NTT) -> Endpoint.

Looks like this trace has gone from 150ms~ to over 400ms!

A RIPE Atlas traceroute showing Kenya -> London (cogent) -> (cogent) New York (NTT) -> London (NTT) -> Endpoint

benjojo posted 14 Feb 2024 14:20 +0000

It would appear that Cogent AS174 and NTT AS2914 have de-peered in europe.

All europen traffic between them goes via the USA currently. This means that single homed cogent customers in the EU now have to go via the USA to get traffic to single homed NTT customers. Something that will add at least around 80ms~ of latency.

Here we can see from the NTT looking glass a traceroute to the Cogent DNS Root server it going from frankfurt (where cogent has a anycast node for the root server) going all the way to the US, and if we look at bgp.tools 's super looking glass, we can see all of the communities suggesting that EU networks paths between the two are going via the United States

Screen shot of the NTT looking glass, showing a traceroute going to the USA from frankfurt, and next to is a screenshot of the bgp.tools looking glass with highlights of "AS2914: North American country origins"

benjojo posted 14 Feb 2024 13:29 +0000

mmm, Cloudflare IPFS gateway as a malware/scam deployment mechanism. Decentralised stuff cuts both ways I guess (even though cloudflare could clearly censor this)

A screenshot of a email that says "Please find the attachment on PO Request, As per your request I have attach my company documents also. ClICK TO VIEW" where CLICK TO VIEW links to cloudflare-ipfs.com/ipfs/blah

benjojo posted 14 Feb 2024 09:57 +0000

Hows that acquisition integration going HPE? On pure SFP vendoring alone?

The FS.COM SFP Branding selector, with the HPE {ProCurve, Aruba, H3C, and Blade system) all circled, Juniper has a dashed line around it as well

benjojo posted 13 Feb 2024 21:13 +0000

Mildly interesting, the .arab TLD seems to have a wildcard A record for a unroutable v4 address:

$ dig not-registered.arab +short
127.0.53.53
$ dig anything.arab +short
127.0.53.53