this is how it should work

weekend at countryside kind of suprised me… :) so, Cisco 887VAGW+7-E-K9, a little configuration and here we are. ! chat-script gsm "" "AT!SCACT=1,1" TIMEOUT 15 "OK" ! interface Cellular0 ip address negotiated ip nat outside ip virtual-reassembly in encapsulation slip load-interval 30 dialer in-band dialer idle-timeout 300 dialer string gsm dialer-group 1 async mode interactive ! ip nat translation timeout 60 ip route 0.0.0.0 0.0.0.0 Cellular0 ! dialer-list 1 protocol ip permit ! line 3 exec-timeout 0 0 script dialer gsm modem InOut you’d need to configure profile however. as i didn’t have SIM card and i had poor experience with Orange in Poland, i decided to try challenger - Plus. they had a small sales office in nearby city. ...

May 24, 2015 · Łukasz Bromirski

daily "top" for spam and malware

it’s interesting to take a look. and then a second look - as a lot of well known networks and hosts appear on those maps: SenderBase malware SenderBase spam and for general SenderBase reports, biggest threat intelligence network go here: SenderBase

May 13, 2015 · Łukasz Bromirski

directional ethernet patchcords for audiophiles

you stumble on audiophile-driven discussions, related to exploiting their customer base. I found today, completely at random, category 6 ethernet patchcord that… provides directional audio optimization support: DIRECTIONALITY All audio cables are directional. The correct direction is determined by listening to every batch of metal conductors used in every AudioQuest audio cable. Arrows are clearly marked on the connectors to ensure superior sound quality. For best results have the arrow pointing in the direction of the flow of music. For example, NAS to Router, Router to Network Player. ...

May 9, 2015 · Łukasz Bromirski

you're all virtual anyway

twitter and facebook admit, that at least 10 percent of the user base is likely bots. it’s “official” data, but that article shows, that this estimation may be way undersized. it seems that next dot-com bubble slowly grows and should burst soon. we’ve been discussing this for years now, but it seems the valuation of seemingly worthless, virtual companies producing software is growing year by year. 3 billion dollars for company that builds (poor, by the way) headphones - Apple buys Beats Electronics. but, Beats Electronics at least tries to build something! Facebook just bought WhatsApp for 19.4 billion dollars, that’s about five Nimitz-class aircraft carriers (US has 10 of these), or five and half times more than world health organization spends on food and its distribution in Africa. ...

May 5, 2015 · Łukasz Bromirski

world is changing

failure that Tidal came to be and at the same time success to which Apple Watch is experiencing (the same that has trouble keeping it’s bettery up for ONE day) is troubling. on one side we have market, that is able to verify this poor and blatant run for money organized by multi-billionaires, obviously coupled with lack of any style and market research (which would show there are other, better, faster and with wider selection of artists and capabilities services available already), on the other hand - Apple Watch? really? ...

April 25, 2015 · Łukasz Bromirski

you must never...

April 24, 2015 · Łukasz Bromirski

why i don't give a fuck

after stumbling upon Farnam Street blog, i found another one - that of Mark Manson. and i found it thanks to The Subtle Art of Not Giving a Fuck article. after reviewing this short list i realized how many of those advices i could give to myself seven years ago. it’s worth to read. and think.

April 18, 2015 · Łukasz Bromirski

use keys, not passwords

it’s subject old as world (password-protected world, that is). i had to do some of cleanup on my devices and i hit a problem with 4096 bit keys. so, just as a reference that may be helpful somewhere for someone - you import keys to Cisco IOS without any special problems: router#conf t Enter configuration commands, one per line. End with CNTL/Z. router(config)#ip ssh pubkey-chain router(conf-ssh-pubkey)#username TEST router(conf-ssh-pubkey-user)#key-string router(conf-ssh-pubkey-data)#AAAAB3NzaC1yc2EAAAADAQABAAACAQDCiLBaopUwsFb9YJNhGqVYqBajlrH S/zwD6/yR6N8VcRzrpqMMNCFXe1q5GMGM[...]ANWInd9GHBjTzbJWVwavxy1ooQewii8ErofZuv1l/SXSdXLzfL p0zMoZ0L+BNPS0j4XBS0N3t8Vl8oVixqIeG2BNTCNaDDt6hx2Q== lukasz@bromirski.net router(conf-ssh-pubkey-user)#exit router(conf-ssh-pubkey)#exit for Cisco ASA, keys that are longer than 2048 bits need to be prepared using pkf format, as command line has limit of 512 bytes. so, to move key in OpenSSH compliant format like this one: ...

April 1, 2015 · Łukasz Bromirski

deploy SIDR

google again dropped out of the internet because of failure to filter prefixes. SIDR configuration on Cisco gear is really simple - for IOS-XE, IOS-XR. if you have Juniper it takes like half a second of searching. of course configuring is one thing, visiting RIPE and cerfifying your own resources is another thing. then it’s all done. every prefix signed, and every autonomous system checking for certification data is helping. every single one.

March 15, 2015 · Łukasz Bromirski

SHALL WE?

“Picture a tall, dark figure, surrounded by cornfields… NO, YOU CAN’T RIDE A CAT. WHO EVER HEARD OF THE DEATH OF RATS RIDING A CAT? THE DEATH OF RATS WOULD RIDE SOME KIND OF DOG. Picture more fields, a great horizon-spanning network of fields, rolling in gentle waves… DON’T ASK ME I DON’T KNOW. SOME KIND OF TERRIER, MAYBE. …fields of corn, alive, whispering in the breeze… RIGHT, AND THE DEATH OF FLEAS CAN RIDE IT TOO. THAT WAY YOU KILL TWO BIRDS WITH ONE STONE. …awaiting the clockwork of the seasons. METAPHORICALLY.” ...

March 13, 2015 · Łukasz Bromirski