…are better at building TCP stacks than we are. i came across the track of an interesting project - RemyCC, providing greater efficiency and at the same time a better division and lower delays (on average). it is worth to look.
for a moment, let’s assume those are rumblings of man worn out by pulling couple of all-nighters in one row. we have to assume that security intelligence services will want to listen to everything and everywhere. that includes NSA sniffing all traffic in major interconnection points at largest service providers. and, obviously - we don’t like it. why we can’t get back to original idea, that all point to point communication should be protected by IPsec (ALL COMMUNICATION)....
i’ve stumbled upon an article of Michael Leonard from Juniper. he decided to take a stab at LISP. i usually call such articles with the title of this post, and the article mentioned is all about it. while we’re discussing in open forums with engineers and architects from Juniper, and in most of them we actually do cooperate - including in LISP, which author doesn’t seem to even know about - it’s sad to look at people who believe attacking competition is everything they should do in life....
amazing sweet photo. you can watch this until you drop dead, looking for all details. and this landscape in the background…
very interesting experiment (it’s worth looking other from the series!). it basically shows how people react to very tricky move while walking freely on the street. i bet in Poland the behavior observed would be different… or maybe i’m wrong? will you try? :) (by the way, can you point to movie from which title of this post comes from without looking at google?)
i highly recommend this article from Wired. while we have to live with situation where such wealthy people like Kaspersky himself can influence ITU decisions, we still can stand up and work to make internet free and independent. it’s kind of naive of course, but consequences of having too much money and power - frighten me again every day.
using our new blogging platform, i just published short piece about just announced onePK. i’m watching live discussions for over two years now about network control capabilities. i was one of those distanced guys when it comes to OpenFlow “explosion” in popularity. and as time did show - I was right. today even hardware vendors suddenly slowed down a bit and distance themselves from new standard versions, and development tempo also falls down....
there’s a lot of wisdom in books, presentations and trainings covering “how to achieve success” (however we choose to define it). this can be applied to working with people, managing them - or companies. one of great books helps reader achieve the success by simply structuring it in a simple, three-step program: decide what you want to achieve prepare plan, that will help you achieving what you want execute the plan simple, isn’t it?...
FreeBSD 9.0 did an unannounced appearance lately. it introduces a bunch of different features, two of which are of great interest to me. firstly, we can select different mechanisms to fight traffic congestion for TCP. to do that, you need to change sysctl net.inet.tcp.cc.algorithm from the list available under net.inet.tcp.cc.available. NewRENO, the default one, works quite OK, but in some specific configurations you can select others and check if they’d behave better....
there’s a lot of discussions around the net neutrality, as obviously the subject is currently still pretty hot. from the one side we have enormous amount of money from advertising business, spend in interesting, devious and - tempting way. from the other side, we have the ideal information society, in which all information are free from filtering, and available for all willing to read. we point to China, Iran or Saudi Arabia as bad examples, filtering all that their citizens can view using the Internet - but we all use google....
…but about everyone that hates it. i can highly recommend you two Scott Berkun essays: on substantive discussions without attacking people personally on choice - wise one - of president; it needs to be of course aligned to polish political model, but it has wider applicability :)
Google sponsored a interesting project some time ago and shared the open font project with community. it’s not a news per se, but today while looking at one of the blogs I’ve browsed through sources and found out about it :D the concept is pretty simple and I recommend you to have a look at it (I’m using them already as you can see).
good people at RIPE did some testing and it turns out it’s pretty quick!
…hit me again (in a positive way). i was experimenting in my lab and wanted to define a lot of queues (and i mean a lot of them) in ALTQ. unfortunately, very quickly during parsing of pf.conf pfctl barked out following information: pfctl: DIOCADDALTQ: Cannot allocate memory to overcome the problem, you only need to modify those three files: /usr/include/altq/altq_hfsc.h /usr/src/sbin/pfctl/missing/altq/altq_hfsc.h /usr/src/sys/contrib/altq/altq/altq_hfsc.h where #define HFSC_MAX_CLASSES 64 is defined - to requested value....
it started in a innocent way - my company W510 started to work slower and slower. as it is very busy usually and i need full performance and every bit of power for daily work, obviously i decided to investigate. Windows 7 x64 installed in a clean and very controller manner, 8GB of RAM available and usually not used in more than 50%. so what’s going on? Lenovo is using SSD drives of a different size....
while the experiment was a success, effects were rather modest :) during the entire 9th, if we dismiss connections from bots connecting from University of Pennsylvania (greetings!) and China (really interesting URL mangling techniques), we’ve had 20 unique users and 1145 sessions. late evening, after grand finale additional 80 users visited us, and session counter increased to over 4500. i definitely didn’t do good job of marketing IPv6 availability for WOŚP, or IPv6 geeks were far away from IPv6-enabled internet that day....
I wrote about such ideas over two years ago. it seems the concept of offloading packet forwarding from CPU to GPU may have some merits, and if you’re interested in that - take a look at packetshader. still however, hardware config needed to achieve that kind of performance feat is quite expensive. it demonstrates however that GPU, next to FPGA experiments, can also be viable way of forwarding in high-performance packet forwarding/routing based on PCs....
very interesting article, that led to writing this even more interesting article, describing how computer viruses compare to human.
there’s a very interesting page that shows what’s upcoming in FreeBSD 8 release.
delivering good and interesting presentation is usually challenge people talk about a lot. and that doesn’t even account for sessions in your native or foreign language. presentation, or put in other way - communication between you and other people (one, two, thousand) can trigger sleepless nights and fear often balooning to irrational size (USA surveys show that fear of public speaking is put on the first place, before insects and - watch this - death itself!...
for all of those that are starting to make first steps with VoIP, or believe know everything - i’d like to highly recommend my fathers book that was just published via BTC publishing house. it covers both H.323 and SIP protocols, along with all auxiliary topics - like integration, and signaling over middleboxes like packet filters and stateful firewalls: Telefonia VoIP. Multimedialne sieci IP, Marek Bromirski, ISBN: 83-60233-07-1
i just launched new project - BGP Blackholing PL. i’d like to invite therefore everyone that: is interested in network security is interested in service provider edge security is interested in internet security wants to help actively defend against DoS/DDoS attacks and own network infrastructure wants to learn more about how BGP can be used in internet security …to join over at http://networkers.pl/bgp-blackholing.
finally, i found some time to update the site. children are really time consuming ;) on the other side, i was anyway able to do some things recently. i’ll do some announcements after Cisco Forum 2005. and yes, i’m changing my job ;)
…was born (last saturday in the morning), so i’ll need to delay all current projects. i’m spending time right now doing all new things :) i’ll get back to regular updates sooner or later.
fresh quote from latest ComputerWorlda, from article authored by Lech Bury, general director for PATPOL Patent Attorneys Company: Patenting inventions (including those from IT) is good for the economy as a whole and that includes consumers as well (sic!). It is also beneficial for creative individuals. On the other hand, the patent system is certainly disadvantageous for ordinary imitators who stay in the market by using someone else’s ideas (sic!)....
I was able to read two older Moore books (Downsize this and TV Nation), after reading Stupid White Men a while ago. because of nice party with my friends on friday and then following exams that i’m going to take for the next two days, i didn’t do much for (un)Cisco FAQ PL. i also didn’t found time to migrate off Moveabletype to some other CMS (that decided in the meantime to change license to something of pure absurd)....
i never thought that i’ll be bothered by SCO argument with Open Source community, and with Linux in particular. it seems SCO tried desperately to build credibility by claiming Linux broke copyrights, where there such things took place. reading Linus post how SCO was sending demanding emails to those targeted as easy prey, in pathetic attempt to get some money before rolling up and dying. SCO supposedly is going to take BSD in crosshairs as well “soon”, but i wish them all the worst, including bankrupcy with all my heart (in line with christmas spirit)....
today (but for some of you, it’s still tomorrow), Comedy Theatre will premiere What The Night Is For, with my favorite Gillian Anderson. unfortunately, my travel plans failed, but my friends - Karina Szymczuk and Adam Robiński are there already (with camera ;) ). working people life is unbearable ;)